realvirtual GmbH
Finkenweg 36-38
D 76547 Sinzheim, Germany
Phone: +49 7221 7028510
Email: info@realvirtual.io
Managing Director: Dr. Thomas Strigl
Dr. Thomas Strigl
realvirtual GmbH
Finkenweg 36-38
D 76547 Sinzheim, Germany
Phone: +49 7221 7028510
Email: info@realvirtual.io
We collect and use personal data of our users only to the extent necessary to provide a functional website as well as our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for practical reasons and the processing of data is permitted by law.
Insofar as we obtain the consent of the data subject for processing of personal data, Art. 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
For the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations necessary for the performance of pre-contractual measures.
Insofar as the processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6(1)(d) GDPR serves as the legal basis.
If processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and the interests, fundamental rights and freedoms of the data subject do not override such interests, Art. 6(1)(f) GDPR serves as the legal basis for processing.
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.
We send newsletters via the service provider Newsletter2Go (Sendinblue). For sending the newsletter, we collect the following data: first name, last name, and email address. Registration is done via a double opt-in procedure. You can unsubscribe from the newsletter at any time. An unsubscribe link is included in every newsletter. The legal basis for sending the newsletter is Art. 6(1)(a) GDPR (consent). The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected, i.e., when the user's email address is no longer needed for sending the newsletter, for example after unsubscribing from the newsletter.
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected:
The data is stored in the log files of our system. This data is not stored together with other personal data of the user. Storage in log files is done to ensure the functionality of the website. In addition, the data serves to optimize the website and to ensure the security of our information technology systems. The data is rendered unidentifiable by deletion or anonymization after seven days at the latest. The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, the user has no possibility of objection. The legal basis for the temporary storage of data is Art. 6(1)(f) GDPR.
Our website uses only technically necessary session cookies. These cookies do not contain personal data and are automatically deleted after closing the browser. User data collected through technically necessary cookies is not used to create user profiles. The legal basis for the processing of personal data using technically necessary cookies is Art. 6(1)(f) GDPR.
Our website contains a contact form that can be used for electronic communication. The contact form is provided via the Jotform service, which operates in compliance with the GDPR. Required fields are name and email address. Optional fields include company, phone number, and the message itself. The data entered in the form is transmitted to us by email. Alternatively, you can contact us via the provided email address. In this case, the personal data transmitted with the email will be stored. In this context, no data is passed on to third parties. The data is used exclusively for processing the conversation. The legal basis for the processing of data is Art. 6(1)(a) GDPR, provided the user has given consent. The legal basis for the processing of data transmitted in the course of sending an email is Art. 6(1)(f) GDPR. The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. For personal data from the contact form and data sent by email, this is the case when the respective conversation with the user has ended.
Payment processing for purchases through our website is handled by the payment service provider Stripe (Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA). Stripe is PCI DSS Level 1 certified. When using Stripe, your payment data (e.g., credit card number, expiration date, CVC) is transmitted directly to Stripe. We do not store any complete financial data on our servers. The legal basis for data processing is Art. 6(1)(b) GDPR (contract performance). For more information on data protection at Stripe, please visit: https://stripe.com/privacy.
The Starter version of our software is available through the Unity Asset Store. We do not receive any personal customer data from Unity Technologies. All transactions and customer data are managed exclusively by Unity Technologies. You can find Unity Technologies' privacy policy at: https://unity.com/legal/privacy-policy.
We embed YouTube videos on our website using the enhanced privacy mode. The operator of the video platform is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. In enhanced privacy mode, no cookies are set and no data is transmitted to YouTube as long as you do not play the video. Only when a video is played is data transmitted to YouTube. We have no influence on this data transfer. For more information on data protection at YouTube, please refer to their privacy policy: https://policies.google.com/privacy. The legal basis for embedding is Art. 6(1)(f) GDPR (legitimate interest in an appealing presentation of our content).
Registration is required for access to certain areas of our website (downloads, customer system). The following data is collected: Unity ID or username, email address, and company name. We do not store passwords. Authentication is performed via third-party login systems. The collected data is used exclusively for the provision of the respective service. The legal basis for processing is Art. 6(1)(b) GDPR (contract performance) and Art. 6(1)(f) GDPR (legitimate interest).
Our forum at forum.realvirtual.io is operated via the UserEcho service. When using the forum, data such as username, email address, and posts you create are stored. UserEcho acts as a data processor in accordance with Art. 28 GDPR. For more information on data protection at UserEcho, please refer to their privacy policy. The legal basis for processing is Art. 6(1)(b) GDPR (contract performance) and Art. 6(1)(f) GDPR (legitimate interest).
For uploading files (e.g., in the context of support requests), we use the TransferNow service. Uploaded files are automatically deleted after 30 days. TransferNow acts as a data processor in accordance with Art. 28 GDPR. The legal basis for processing is Art. 6(1)(b) GDPR (contract performance).
You have the right to obtain confirmation from us as to whether personal data concerning you is being processed by us. If such processing is taking place, you may request information about the following: the purposes of the processing, the categories of personal data being processed, the recipients or categories of recipients to whom the personal data has been or will be disclosed, the planned duration of storage or the criteria for determining the storage duration, the existence of a right to rectification or erasure, a right to restriction of processing or a right of objection, the existence of a right of complaint to a supervisory authority, and all available information on the origin of the data if the personal data is not collected from the data subject.
You have a right to rectification and/or completion vis-a-vis the controller, insofar as the processed personal data concerning you is inaccurate or incomplete. The controller shall carry out the rectification without undue delay.
You may request restriction of processing of your personal data under the following conditions: if you contest the accuracy of the personal data concerning you, for a period enabling the controller to verify the accuracy of the personal data; if the processing is unlawful and you oppose the erasure of the personal data and instead request the restriction of their use; if the controller no longer needs the personal data for the purposes of the processing, but you require them for the establishment, exercise or defense of legal claims; or if you have objected to the processing pursuant to Art. 21(1) GDPR and it has not yet been determined whether the legitimate grounds of the controller override your grounds.
You may request that the controller erase the personal data concerning you without undue delay, and the controller shall be obliged to erase such data without undue delay, where one of the following grounds applies: the personal data is no longer necessary for the purposes for which it was collected or otherwise processed; you withdraw your consent on which the processing was based and there is no other legal ground for the processing; you object to the processing and there are no overriding legitimate grounds for the processing; the personal data has been unlawfully processed; or the erasure of the personal data is required for compliance with a legal obligation under Union or Member State law.
If you have exercised the right to rectification, erasure or restriction of processing vis-a-vis the controller, the controller is obliged to communicate such rectification or erasure of data or restriction of processing to all recipients to whom the personal data concerning you has been disclosed, unless this proves impossible or involves a disproportionate effort. You have the right vis-a-vis the controller to be informed about these recipients.
You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, where the processing is based on consent or a contract and the processing is carried out by automated means.
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6(1)(e) or (f) GDPR. The controller shall no longer process the personal data concerning you unless the controller can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.
You have the right to withdraw your data protection consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR. The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
Data protection measures are subject to constant technical evolution. Please inform yourself regularly about our data protection measures by revisiting this privacy policy.