Impressum and Privacy Policy

Information according to § 5 TMG:

Qcrypt AG
Kiefholzstrasse 1
12435 Berlin

Represented by:

Mohammad Shefaat (CEO)

Chairman of the Supervisory Board:

Thorsten Hartung


Phone: +49 (0)30 364281 80


Register entry:

Entry in the commercial register.
Register court:Amtsgericht Berlin
Register number: 180352 B

Tax number:


Sales tax identification number:

DE – 308610009

Photo identification:

Qcrypt AG

Reference to EU Dispute Settlement

The European Commission provides a platform for online dispute resolution (OS):
You can find our e-mail address in the imprint above.

Here you will find a privacy policy for online shops, eBay, Amazon & Co.


Privacy Policy

privacy statement

We, Qcrypt AG, appreciate your interest in our Internet portal.

It is generally possible to use our Internet pages without providing personal data. However, if you wish to use special services on our website, such as the newsletter subscription, personal data may have to be processed. If the processing of personal data is necessary, we will generally obtain your consent.

The processing of personal data, for example name, address, e-mail address or telephone number, always takes place in accordance with the Basic Data Protection Regulation (EU-DSGVO) and the country-specific data protection regulations. With this data protection declaration, we would like to inform you about the type, scope and purpose of the personal data collected, used and processed by us and clarify the rights to which you are entitled.

The name and address of the controller

The person responsible within the meaning of the Basic Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions of a data protection nature is the Data Protection Commissioner:

Qcrypt AG

Authorized representative shareholder:

Mohammad Shefaat (CEO)

Kiefholzstr. 1 12435 Berlin

Phone +49 30 810397-34

Fax +49 30 810397-44


Collection and processing of general data

Each access to our Internet portal and each retrieval of a file stored on the portal are logged. The storage serves internal, system-related and statistical purposes. This can be logged: Name of the retrieved file, date and time of the retrieval, transferred data volume, notification of successful retrieval, web browser, operating system, Internet service provider and the IP address of the requesting device. We do not pass on this data to third parties.

This information is required in order to correctly deliver the contents of our website, to optimise the contents of our website, to guarantee the long-term functionality of our website and to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack.

Further personal data is only collected if you provide this information with your knowledge and voluntarily, for example as part of an inquiry or your registration.


Cookies are text files that are stored on your system in order to recognize you again when you call up our Internet portal again. The cookies used contain an anonymous identifier. We use cookies exclusively in order to be able to adapt the contents of our portal better to the users.

If you do not accept cookies, you can restrict or deactivate them in your browser. However, this may result in limited usability of our web content.

Possibility to contact us via the website

Due to legal regulations, our website contains information that enables us to contact our company quickly and electronically and to communicate directly with us, which also includes a general address of the so-called electronic mail (e-mail address). If you contact us by e-mail or via a contact form, the personal data you provide will be stored automatically. Such personal data transmitted to us by you on a voluntary basis will be stored for the purpose of processing or contacting you. This personal data will not be passed on to third parties.

Stored personal data will be deleted if you revoke your consent to their storage, if their knowledge is no longer required to fulfil the purpose for which they were stored, or if their storage is inadmissible for other legal reasons. Upon written request, we will gladly inform you about the personal data stored about you.

We send our newsletter with the newsletter service rapidmail (rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg i.Br., Germany). We transfer your name and e-mail address to rapidmail solely for the purpose of sending you our newsletter. Your data is stored by rapidmail in such a way that other customers of rapidmail or third parties have no access to this data. Further information can be found in rapidmail’s data protection declaration.


You have the possibility to subscribe to our newsletter via our website. For this purpose, we need your e-mail address and your consent for the processing of your data for the purpose of sending the newsletter in accordance with Art. 6 Para. 1 lit a) of the DSGVO.

As soon as you have registered for the newsletter, we will send you a confirmation e-mail with a link to confirm your registration, the so-called double opt-in procedure.

The personal data collected during registration will only be used to send the newsletter. For the processing of the newsletter dispatch we give your e-mail address to the newsletter service provider CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. This does not pass the data on to third parties.

You may cancel your subscription to our newsletter at any time. Please send your cancellation to the following e-mail address: [Enter e-mail address]. You can also revoke your consent to the storage of personal data that you have given us for sending the newsletter at any time. A corresponding link can be found in every newsletter.

In the event of cancellation or revocation, we will immediately delete your data in connection with the newsletter dispatch.

Web analysis

Our website uses functions of the web analysis service Google Analytics. The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Cookies are used for this purpose to enable your users to analyse how they use the website. The information generated in this way is transferred to the provider’s server in the United States of America and stored there.

You can prevent this by setting your browser so that no cookies are stored or by clicking here:

Prohibit Google Analytics from tracking me

Your IP address will be recorded, but immediately pseudonymised. Thus only a rough localization is possible. The relationship with the web analysis provider is based on the EU-US Privacy Shield agreement and complies with data protection regulations. Data processing is carried out on the basis of the legal provisions of Art. 6 para. 1 lit a (consent) and/or f (legitimate interest) of the DSGVO. Further information on the terms of use and data protection guidelines of Google Inc. can be found at and at

Our concern in the sense of the DSGVO (legitimate interest) is the improvement of our offer and our website. Since the privacy of our users is important to us, the user data is pseudonymised. The Google Analytics component is used to analyse the visitor flows on our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website and to provide other services in connection with the use of our website.

Social plug-ins


On our pages are plugins of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA integrated. You can recognize the Facebook plugins by the Facebook logo or the “Like” button on our page. An overview of the Facebook plugins can be found here. When you visit our pages, the plugin establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of our pages to your Facebook profile. This allows Facebook to associate visiting our pages with your user account. We would like to point out that, as the provider of the pages, we do not have any knowledge of the content of the data transmitted or its use by Facebook. Further information on this can be found in facebook’s privacy policy at

If you do not want Facebook to be able to assign visits to our pages to your Facebook user account, please log out of your Facebook user account.


On our pages, components from LinkedIn Corporation are integrated. LinkedIn is an Internet-based social network that allows users to connect to existing business contacts and make new business contacts.

LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For privacy matters outside the United States, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.

Each time you visit a LinkedIn component (LinkedIn plug-in) on our website, that component causes the browser you are using to download an appropriate representation of the LinkedIn component. More information about the LinkedIn plug-ins can be found at . If you are logged in to LinkedIn at the same time, LinkedIn recognizes which specific page you are visiting each time you visit our website and for the entire duration of your stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the person concerned. If you press a LinkedIn button integrated on our website, LinkedIn assigns this information to your personal LinkedIn user account and saves this personal data. If you do not want LinkedIn to receive this information, it may be prevented from doing so by logging out of your LinkedIn account before accessing our website. LinkedIn offers the possibility at to unsubscribe from e-mail messages, SMS messages and targeted ads as well as to manage ad settings. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame who can set cookies. Such cookies may be declined at LinkedIn’s current privacy policy can be found at LinkedIn’s cookie policy is available at


Xing components are integrated on our pages. Xing is an Internet-based social network that enables users to connect to existing business contacts and make new business contacts. The individual users can create a personal profile of themselves at Xing. Companies can, for example, create company profiles or publish job offers on Xing.

Xing’s operating company is XING AG, Dammtorstraße 30, 20354 Hamburg, Germany.

Each time one of the individual pages of this website is accessed, on which an Xing component (Xing plug-in) has been integrated, the Internet browser on your system is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. More information about the Xing plug-ins can be found at . As part of this technical process, Xing receives information about which specific subpage of our website is visited by them.

If you are logged in to Xing at the same time, Xing recognizes which specific page of our website you are visiting. This information is collected by the Xing component and assigned to your Xing account by Xing. If you press one of the Xing buttons integrated on our website, for example the “Share” button, Xing assigns this information to your personal Xing user account and saves this personal data.

Xing always receives information via the Xing component that you have visited our website if you are logged in to Xing at the same time as accessing our website; this takes place regardless of whether you click on the Xing component or not. If you do not want this information to be transmitted to Xing in this way, you can prevent it from being transmitted by logging out of your Xing account before accessing our website.

The data protection regulations published by Xing, which can be accessed at, provide information about the collection, processing and use of personal data by Xing. Furthermore, Xing has published data protection information for the XING Share button at

Data protection for applications and in the application process

We collect and process the personal data of applicants for the purpose of processing the application process. The processing can also be carried out electronically. This is particularly the case if an applicant submits corresponding application documents electronically, for example by e-mail or via a web form on the website, to the data controller. If we conclude an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If we do not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests of the data controller conflict with such deletion. Other legitimate interests in this sense include, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz – AGG).

Legal basis of the processing

Art. 6 I lit. a DS-GVO serves as a legal basis for processing operations in which we obtain their consent for a specific purpose. If the processing of personal data is necessary for the fulfilment of a contract to which you are a party, as is the case, for example, with processing operations which are necessary for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6 I lit. b DS-GVO. The same applies to such processing operations which are necessary for the implementation of pre-contractual measures, for example in cases of inquiries regarding our products or services. If we are subject to a legal obligation requiring the processing of personal data, such as for the fulfilment of tax obligations, the processing is based on Art. 6 I lit. c DS-GVO. In rare cases, the processing of personal data may become necessary in order to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our site were injured and his name, age, health insurance information or other vital information would have to be disclosed to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d DS-GVO. Ultimately, processing operations could be based on Art. 6 I lit. f DS-GVO. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and fundamental freedoms of the data subject do not predominate. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the data subject is a customer of the data controller (recital 47 sentence 2 DS-GVO). If the processing of personal data is based on Article 6 I lit. f DS-GVO, our legitimate interest is the performance of our business activities for the benefit of all our employees and shareholders.

Legal basis of the processing

Regular deletion and blocking of personal data.

We process and store your personal data only for the period of time necessary to achieve the storage purpose or if this is provided for by the European Directive and Regulation Body or another legislator in laws or regulations to which we are subject.

If the storage purpose no longer applies or if a storage period prescribed by the European Directive and Regulation Body or another competent legislator expires, the personal data will be blocked or deleted routinely and in accordance with the statutory provisions.

Your rights

You have the right to information, correction, deletion (“right to be forgotten”), restriction, data transferability, revocation of consent and opposition to your personal data.

Please address your inquiries and requests to us:

by email:
by mail: Qcrypt AG, Kiefholzstraße 1, 12435 Berlin, Germany

The deletion of the stored personal data takes place if you revoke your consent for storage, if their knowledge is no longer necessary for the fulfilment of the purpose pursued with the storage or if their storage is inadmissible for other legal reasons.

If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority. In Germany, these are the locally responsible state data protection officers.