Data protection page


Thank you for visiting our website. The protection of your privacy and the protection of your personal data, the so-called personal data, when using our website is an important concern for us.

According to Art. 4 No. 1 GDPR, personal data is any information relating to an identified or identifiable natural person. This includes, for example, information such as your first and last name, your address, your telephone number, your e-mail address, but also your IP address. Data that cannot be linked to your person, such as anonymization, is not personal data. The processing of personal data (e.g. collection, storage, retrieval, consultation, use, transmission, erasure or destruction) pursuant to Art. 4 No. 2 GDPR always requires a legal basis or your consent. Processed personal data must be erased as soon as the purpose of the processing has been achieved and there are no longer any statutory retention obligations to be observed.

Here you will find information about the handling of your personal data when you visit our website. In order to provide the features and services of our website, it is necessary for us to collect personal data about you. We also explain the type and scope of the respective data processing, the purpose and the corresponding legal basis and the respective storage period.

This privacy policy applies only to this website. It does not apply to other third-party websites to which we merely refer by means of a hyperlink. We cannot be responsible for the confidentiality of your personal data on these third-party websites, as we have no control over whether these companies comply with data protection regulations. You can find out more about the handling of your personal data by these companies directly on these websites.

For project applications and application enquiries, we keep separate data protection information, which can also be accessed on our website under the contact link.

Below you will find the contact details of the responsible body and the data protection officer.


Responsible for the processing of personal data on this website is (see imprint):

MicroBubbles GmbH
Markgrafenstr. 2
04109 Leipzig


Roland Damann
Christian Henning



If you use the website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to ensure its stability and security (the legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR):

  • the browser types and versions used;
  • the operating system used by the accessing system;
  • the website from which an accessing system accesses our website (so-called referrers);
  • the sub-websites, which are accessed via an accessing system on our website;
  • the date and time of access to the website,
  • an Internet Protocol (IP) address;
  • the Internet service provider of the accessing system;
  • other similar data and information used to avert danger in the event of attacks on our information technology systems.


In principle, any processing of personal data is prohibited by law and is only permitted if the data processing falls under one of the following justifications:

  • Art. 6 para. 1 sentence 1 lit. a GDPR (“consent”): If the data subject has voluntarily, in an informed manner and unequivocally indicated by a statement or other unambiguous affirmative act that he or she consents to the processing of personal data concerning him or her for one or more specific purposes;
  • Art. 6 para. 1 sentence 1 lit. b GDPR: If the processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject;
  • Art. 6 para. 1 sentence 1 lit. c GDPR: If the processing is necessary for compliance with a legal obligation to which the controller is subject (e.g. a statutory retention obligation);
  • Art. 6 para. 1 sentence 1 lit. d GDPR: If the processing is necessary to protect the vital interests of the data subject or another natural person;
  • Art. 6 para. 1 sentence 1 lit. e GDPR: If the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or
  • Art. 6 para. 1 sentence 1 lit. f GDPR (“Legitimate interests”): If the processing is necessary for the protection of legitimate (in particular legal or economic) interests of the controller or a third party, provided that the conflicting interests or rights of the data subject do not prevail (in particular if the data subject is a minor).

Furthermore, the storage of information in the terminal equipment by you as the end user as well as access to information that is already stored in your terminal equipment takes place exclusively after the submission of consent in accordance with § 25 (1) TTDSG, unless this is dispensable according to § 25 (2) TTDSG.

In the following, we indicate the applicable legal basis for the processing operations carried out by us. Processing may also be based on several legal bases.


Unless an explicit storage period is specified below, your personal data will be deleted or blocked as soon as the purpose or legal basis for storage no longer applies. As a matter of principle, your data will only be stored on our servers in Germany, subject to any disclosure in accordance with the regulations in No. 7.

However, storage may take place beyond the specified time in the event of an (imminent) legal dispute with you or other legal proceedings or if the storage is provided for by legal regulations to which we as the controller are subject (e.g. § 257 HGB, § 147 AO). When the storage period prescribed by the statutory provisions expires, the personal data will be blocked or deleted, unless further storage by us is necessary and there is a legal basis for this.