Legal

GDPR Compliance Statement

Last Updated: November 2025

Admas AI-Systems and Intelligent Management GmbH ("Admas", "we", "us", or "our") is committed to full compliance with the General Data Protection Regulation (GDPR) and all applicable European data protection laws.

This page outlines the measures we take to ensure transparency, security, accountability, and lawful processing of personal data for all users, customers, and partners within the EU and beyond.

1. Our Commitment to GDPR

Admas ensures that:

Personal data is processed lawfully, fairly, and transparently

Data is collected only for specific and legitimate purposes

Data collected is minimal and necessary

Data is accurate and kept up to date

Data is stored only for as long as needed

Strong security measures protect all user data

Users maintain full control over their data

We never sell personal data or use it for purposes not explicitly stated.

2. Lawful Bases for Processing

Under GDPR, Admas processes personal data only when one or more lawful bases apply:

Consent – When users explicitly provide consent

Contractual necessity – To provide requested services

Legitimate interests – To improve service quality and security

Legal obligation – Where required to comply with applicable laws

Vital interests – Protecting an individual's safety if necessary

3. Data Subject Rights

Under GDPR, individuals have the right to:

Access their personal data

Rectify inaccurate or incomplete data

Erase personal data ("Right to be forgotten")

Restrict processing

Object to processing

Data portability (receive data in a machine-readable format)

Withdraw consent at any time

Avoid automated decision-making without human involvement

To exercise any of these rights, users can contact us at:

✉ contact@admasits.com

Requests will be answered within 30 days.

4. International Data Transfers

Where data is transferred outside the EU/EEA, Admas ensures compliance through:

Standard Contractual Clauses (SCCs)

Approved data protection frameworks

Contracts requiring GDPR-level protections

We only work with partners who meet strict compliance standards.

5. Data Security Measures

Admas uses industry-leading security measures, including:

HTTPS/TLS encryption

Secure cloud infrastructure

Access control and authentication

Encrypted storage

Regular audits and compliance reviews

Staff training in data protection

These measures safeguard personal data from unauthorized access, loss, or misuse.

6. Data Retention

We retain personal data only for as long as necessary to:

fulfill service obligations

support legitimate business interests

comply with legal obligations

Once data is no longer required, it is securely deleted.

7. Use of Processors & Third Parties

When working with third-party service providers, Admas ensures:

strict data processing agreements are in place

providers meet GDPR requirements

data is used only for authorized purposes

third parties do not sell or misuse data

All processors operate under contractual confidentiality and security obligations.

8. Data Protection Officer (DPO)

Our appointed Data Protection Officer ensures GDPR compliance across all operations.

✉ Contact the DPO: contact@admasits.com

The DPO monitors:

compliance audits

user rights requests

data protection impact assessments

regulatory communication

9. Breach Notification Procedures

In the event of a data breach:

Admas notifies the relevant supervisory authority within 72 hours (if required)

Affected users are notified without delay if high risk is identified

Internal reviews ensure prevention of future occurrences

10. Questions About GDPR Compliance

For any GDPR-related concerns or clarity:

✉ contact@admasits.com

Hellerhofstraße 18

60327 Frankfurt am Main

Germany

Questions about GDPR compliance?

contact@admasits.com