Privacy Policy

The responsible provider of this website in the sense of data protection law is:


Serana Europe GmbH

represented by: Jaret Kambeitz, Tamara Kambeitz


Dorfstrasse 17

14641 Pessin

Germany


Phone: +49 33237 85 92 53

Fax: +49 33237 85 92 58

E-Mail: info@serana-europe.com


The data protection officer is:


LOROP GmbH 

Dennis Schulz

Landgrafenstraße 16

10787 Berlin

Germany


E-Mail: datenschutz@lorop.de

With regard to the data processing described below, users and data subjects have the right to:


• obtain confirmation as to whether personal data concerning them is being processed and to receive information about this data (Art. 15 GDPR)


• request the correction of inaccurate or incomplete personal data (Art. 16 GDPR)


• request the deletion of their personal data where the legal requirements are met (Art. 17 GDPR)


• request the restriction of processing where the legal requirements are met (Art. 18 GDPR)


• receive their personal data in a structured, commonly used and machine-readable format and transmit it to another controller (Art. 20 GDPR)


• lodge a complaint with a supervisory authority if they believe their personal data is being processed in violation of data protection regulations (Art. 77 GDPR)


In accordance with Art. 21 GDPR, users also have the right to object to the future processing of their personal data if the processing is based on Art. 6 (1) (f) GDPR.


For technical reasons, particularly to ensure a secure and stable website, data is transmitted by your internet browser to us or to our hosting provider.


Our website is hosted by:


Odoo S.A.

Chaussée de Namur 40

1367 Grand-Rosière

Belgium


When you access our website, so-called server log files may be processed. These may include:


• browser type and version

• operating system used

• referring website (referrer URL)

• pages visited on our website

• date and time of access

• IP address


This processing takes place to ensure the functionality, security and stability of the website.


The legal basis for this processing is Art. 6 (1) (f) GDPR (legitimate interest), which relates to the purposes mentioned above.


We have concluded a data processing agreement (DPA) with Odoo in accordance with Art. 28 GDPR.


The data processing takes place primarily within the European Union.

However, technical service providers may process data in other countries in compliance with applicable data protection regulations.


Further information about Odoo’s privacy practices can be found at:

https://www.odoo.com/privacy

If you contact us via contact form, email or other communication channels, the data you provide will be processed for the purpose of handling your request.


Providing this data is necessary in order to respond to your inquiry. Without this information, we may not be able to respond or may only be able to respond to a limited extent.


The legal basis for this processing is Art. 6 (1) (b) GDPR. The legal basis for this processing is Article 6(1)(b) of the GDPR, as well as our legitimate interest pursuant to Article 6(1)(f) of the GDPR, which is to process your inquiry effectively and efficiently.


Your data will be deleted once your request has been fully processed, provided that no statutory retention obligations prevent deletion.

Personal data transmitted by you for the purpose of purchasing goods or services will be processed for the purpose of fulfilling the contract.


The legal basis for this processing is Art. 6 (1) (b) GDPR.


Without providing this data, it is not possible to conclude or perform a contract.


As part of contract fulfillment, your data may be shared with service providers involved in the execution of the contract, for example:


• shipping providers responsible for the delivery of goods

• payment providers responsible for payment processing


We use the website platform Odoo to operate our website and process customer inquiries and transactions.


Data will be deleted after the contract has been fully processed, subject to statutory retention obligations under tax and commercial law.

Online Job Applications   

We offer the opportunity to apply for jobs through our website.


If you submit an application online, the personal data you provide will be collected and processed electronically for the purpose of carrying out the application process.


The legal basis for this processing is Art. 6 (1) (b) GDPR in connection with pre-contractual measures.


If an employment relationship is established following the application process, the application data will be stored in the personnel file for the purpose of the usual organisational and administrative processes.


If the application is rejected, the transmitted data will be deleted automatically six months after notification of the rejection unless legal provisions require longer storage.


If you consent to longer storage of your data for inclusion in a candidate database, processing will take place on the basis of Art. 6 (1) (a) GDPR. Consent may be revoked at any time.

Our website may contain links to external social media platforms.


LinkedIn


Provider:

LinkedIn Ireland Unlimited Company

Wilton Plaza

Wilton Place

Dublin 2

Ireland


Privacy policy:

https://www.linkedin.com/legal/privacy-policy


When accessing LinkedIn through our website, LinkedIn’s own privacy policy applies.


These Terms of Service govern the use of this website operated by Serana Europe GmbH.


By accessing this website, you agree to these terms.


The content of this website is provided for informational purposes only. We reserve the right to modify, suspend or discontinue any part of the website at any time without prior notice.


Use of this website does not create a contractual relationship unless explicitly stated otherwise.

Our website provides a restricted customer login area for authorized users only. Access is not available through self-registration. Customer accounts are created only after a successful application and approval process by Serana.

https://www.serana.de/de/web/login

Purpose of the Login Area

The customer login area is provided to enable authorized customers to access customer-specific information, services, documents, orders, and other content related to their business relationship with us.

Account Creation and Access

To obtain access to the customer login area, interested users must submit an application. Upon approval, we create a user account and provide login credentials. The account is intended solely for the authorized user and may not be shared with third parties.

Processed Data

When you use the customer login area, we process the following data as necessary:

  • Email address (used as username)
  • Password (stored in encrypted/hashed form)
  • Login and authentication data
  • Date and time of logins
  • Technical log data (e.g., IP address, browser information, device information)
  • Activities performed within the customer portal, where required for security, administration, and service provision

Purpose and Legal Basis

The processing of personal data within the customer login area is carried out for:

  • Providing secure access to customer-specific services and information;
  • Managing and maintaining customer accounts;
  • Ensuring IT security and preventing unauthorized access;
  • Fulfilling contractual obligations and providing customer support.

The legal basis for this processing is generally the performance of a contract or pre-contractual measures (Art. 6(1)(b) GDPR) and our legitimate interest in maintaining the security and functionality of our online services (Art. 6(1)(f) GDPR).

Password Reset

Users may request a password reset through the login page. In this case, we process the email address and related authentication information solely for the purpose of verifying identity and restoring access to the account.

Last updated: March 2026