Privacy Policy
Last updated: July 14, 2026
1. Controller
The company identified below is responsible for the processing of personal data described in this Privacy Policy: Company name: WISDOM Playgrounds International GmbH Registered address: schönherr.fabrik, Schönherrstraße 8, 09113 Chemnitz, Germany Telephone: +49 162 831 92 11 Privacy contact email: p.koumoth@wisdomplaygroundsint.com The company determines the purposes and means of processing personal data through the website and its associated dealer, contact, quotation, customization, and order-request functions.
2. Hosting and Server Logs
The website, its frontend application, and its backend API are operated using production server infrastructure commissioned by WISDOM Playgrounds International GmbH. When the website is accessed, the hosting environment may automatically process technical information including: IP address; date and time of access; requested URL and resource; referring website; browser type and version; operating system and device information; response status; transferred data volume; and technical error and security information. This processing is necessary to deliver the website, maintain availability and security, diagnose errors, investigate misuse, and defend against attacks. The legal basis is Article 6(1)(f) GDPR. The legitimate interests are the secure, reliable, and efficient operation of the website and the protection of the company’s systems and users. The legal name of the production hosting provider and the physical data-centre country are not exposed in the application source code. These details are maintained in the company’s hosting, processor, and infrastructure records and must correspond to the actual production deployment. Server log data is normally deleted after 14 days. Data required to investigate a security incident, misuse, fraud, or a legal claim may be retained until the relevant matter has been resolved.
3. Cookies and Consent Settings
The website uses the first-party cookie wp_cookie_consent to store the current consent version and the user's choices for the necessary, analytics, and externalServices categories. Necessary storage remains enabled for core website functions. Analytics and external services are disabled by default and are enabled only after consent. The current implementation uses SameSite=Lax, Path=/, and a storage period of approximately 180 days. Users can change or withdraw optional consent at any time through Cookie Settings in the footer.
4. Contact and Business Requests
The website uses necessary cookies and browser storage to provide essential functions such as consent storage, language selection, dealer authentication, security, and session-related functionality. The first-party cookie wp_cookie_consent stores: the current consent version; whether a consent decision has been made; consent for analytics; and consent for external services. Necessary storage remains enabled because it is required for core website functions. Analytics and external services are disabled by default and are activated only after the user gives the corresponding consent. The consent cookie currently uses: Path: / SameSite: Lax Storage period: approximately 180 days The website may also use necessary storage for language routing and dealer account authentication. The legal basis for optional analytics and external-service storage is consent under Article 6(1)(a) GDPR. Necessary storage is used to provide functions requested by the user and to maintain the security and operation of the website. Users may change or withdraw optional consent at any time by selecting Cookie Settings in the website footer. Withdrawal does not affect processing that took place before consent was withdrawn.
5. Dealer Accounts and Login
The public contact form processes information including: name or company name; telephone number; email address; message content; reCAPTCHA verification token; and related technical request information. Dealer customization, quotation, pricing, and order-request functions may additionally process: selected products and quantities; project information; customization requirements; delivery details; company and contact-person details; comments and instructions; uploaded file references; and associated communication history. The information is used to: answer enquiries; contact the requester; prepare quotations and pricing information; process customization and product requests; prepare or manage orders; provide dealer support; and conduct pre-contractual and contractual communications. Where processing is necessary to take steps requested before entering into a contract or to perform a contract, the legal basis is Article 6(1)(b) GDPR. For general business enquiries that are not directly connected with a contract, the legal basis is Article 6(1)(f) GDPR. The legitimate interest is responding to communications, managing business relationships, and providing information about the company’s products and services. Required fields must be provided where they are necessary to process the relevant request. Without the required information, the company may be unable to answer or process the request. Internal recipient: Authorized members of the WISDOM Playgrounds International GmbH sales and dealer-support team, including the business mailbox p.koumoth@wisdomplaygroundsint.com.
6. Google Analytics 4
Google Analytics 4 is disabled by default and is loaded only after the user gives consent for the analytics category. When enabled, Google Analytics 4 may process: online identifiers; Google Analytics cookies; IP-derived approximate location information; browser, device, and operating-system information; pages viewed; interactions and events; referrer information; and session and usage information. The information is used to understand how the website is used, identify technical or usability issues, and improve website content and functions. The legal basis is consent under Article 6(1)(a) GDPR. The website attempts to disable Google Analytics and remove accessible Google Analytics cookies when analytics consent is withdrawn. Withdrawal does not affect processing performed before withdrawal. The configured retention period for Google Analytics user-level and event-level data is 14 months. Aggregated reports that no longer identify individual visitors may be retained for longer. Google services may be provided by Google Ireland Limited and may involve other Google group companies and service providers.
7. Google reCAPTCHA v2
Google reCAPTCHA v2 is disabled by default and is loaded only after the user gives consent for the external-services category. It is used on the public contact form to help detect and prevent spam, abuse, and automated submissions. When reCAPTCHA is enabled, Google may process information including: IP address; browser and device information; date and time; referring page; user interactions required for abuse detection; cookies or online identifiers; and the reCAPTCHA verification result. A reCAPTCHA token is sent to the website backend with the protected request. The backend must verify the token before accepting the submission. The legal basis is consent under Article 6(1)(a) GDPR. If consent for external services is not provided, reCAPTCHA is not loaded and the protected contact form cannot be submitted. Users may instead contact the company by email or telephone. Consent may be withdrawn at any time through Cookie Settings.
8. Data Retention
Personal data is deleted or anonymized when it is no longer required for the purpose for which it was collected, unless legal retention obligations, security requirements, or the establishment, exercise, or defense of legal claims require longer retention. The following standard retention periods apply: Server logs: Normally 14 days. Logs connected with a security incident or legal matter may be retained until the matter has been resolved. Contact enquiries and unsuccessful business requests: Normally 12 months after the request has been answered or closed. Quotation and customization requests: Normally 24 months after the request has been completed or becomes inactive, unless the request results in a contract or longer retention is required for legal claims. Dealer accounts: Retained while the dealer relationship or account remains active. Following closure, account data is normally deleted or anonymized within 90 days unless it is connected with transactions, statutory records, unresolved claims, or security incidents. Contracts, orders, invoices, and accounting records: Retained for the applicable German commercial and tax-law period. Depending on the type of document, this is generally between 6 and 10 years. Consent records: The consent cookie is stored for approximately 180 days. A new consent decision may be requested when the consent version changes. Google Analytics 4 data: User-level and event-level data is retained for 14 months. Data may be retained for longer where: a statutory obligation applies; a legal claim is pending or reasonably anticipated; the data is required to investigate fraud or misuse; or the data must be preserved following a request from a competent authority.
9. Your Rights
Subject to the applicable statutory requirements, data subjects may exercise the following rights: right of access under Article 15 GDPR; right to rectification under Article 16 GDPR; right to erasure under Article 17 GDPR; right to restriction of processing under Article 18 GDPR; right to data portability under Article 20 GDPR; right to object under Article 21 GDPR; and right to withdraw consent under Article 7(3) GDPR. Where processing is based on legitimate interests, data subjects may object on grounds relating to their particular situation. Where processing is based on consent, consent may be withdrawn at any time with future effect. Withdrawal does not affect the lawfulness of processing carried out before withdrawal. The company may request information necessary to verify the identity of the person making a request. Contact for privacy requests: p.koumoth@wisdomplaygroundsint.com Data subjects also have the right to lodge a complaint with a competent data-protection supervisory authority.
11. Security
WISDOM Playgrounds International GmbH uses technical and organizational measures appropriate to the nature, scope, context, purposes, and risks of the processing. These measures may include: encrypted transmission using HTTPS; access controls and account permissions; authentication and session controls; restricted administrative access; logging and monitoring; backups and availability measures; protection against unauthorized access and misuse; consent-based loading of optional third-party services; and regular maintenance and security updates. Access to personal data is limited to persons who require it for their assigned responsibilities. No method of internet transmission or electronic storage can guarantee absolute security. Users should protect their login credentials and notify the company promptly if they become aware of suspected unauthorized access.

