Privacy Policy

This data protection declaration informs you about the type, scope and purpose of processing your personal data. It applies to all services of Remote-RED of Looking4Cache UG (haftungsbeschr√§nkt) (hereinafter “we” or “our”). Among other things this concerns:

  • The website, hereinafter called “Website”.
  • The Remote-RED extension “node-red-contrib-remote” for Node-RED, hereinafter called “Node-RED extension”.
  • The Remote-RED apps for iOS and Android, hereinafter called “apps”.

The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (German Datenschutzgrundverordnung, hereinafter “DSGVO”).

The purpose of collecting and processing your personal data is the provision of functional services and communication with you.

Name and address of the controller

The controller in terms of the DSVGO and other national data protection laws of the member states as well as other data protection regulations is:

Looking4Cache UG (haftungsbeschränkt)
Oberer Wasen 12
74626 Bretzfeld


You can withdraw your consent to the processing of your personal data at any time without giving reasons by uninstalling the apps and the Node-RED extension.

Rights of the data subject

Based on art. 13 DSGVO we inform you about the legal basis of our data processing. Unless otherwise noted, the processing of your personal data is based on your consent in accordance with Art. 6 para. 1 lit. a DSGVO. Your consent is obtained in accordance with Art. 7 DSGVO.

Right of confirmation and access

You have the right to receive confirmation from us at any time as to whether personal data concerning you is being processed. If this is the case, you have the right to request from us free of charge information about the personal data stored about you together with a copy of this data. Furthermore, there is a right to the following information:

  1. the purposes of the processing;
  2. the categories of personal data being processed;
  3. the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular recipients in third countries or international organisations;
  4. if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration;
  5. the existence of a right to correction or deletion of personal data concerning you or to restriction of the processing by the controller or a right of objection to such processing;
  6. the existence of the right to lodge a complaint with a supervisory authority;
  7. if the personal data is not collected from you, all available information about the origin of the data;
  8. the existence of automated decision-making including profiling in accordance with Article 22(1) and (4) DSGVO and, at least in these cases, meaningful information on the logic involved and the scope and intended effects of such processing for you.

If personal data are transferred to a third country or an international organisation, you have the right to be informed about the appropriate guarantees in accordance with Art. 46 DSGVO in connection with the transfer.

Right to erasure (Right to be forgotten)

In accordance with Art. 17 para. 1 DSGVO, you have the right to demand that we delete personal data concerning you without delay, and we are obliged to delete personal data without undue delay, provided that one of the following reasons applies:

  1. personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  2. you withdraw your consent on which the processing was based pursuant to Art. 6 para. 1 sentence 1 a) DSGVO or Art. 9 para. 2 a) DSGVO, and there is no other legal basis for the processing.
  3. you file an objection to the processing according to Art. 21 para. 1 DSGVO and there are no overriding legitimate reasons for the processing, or you file an objection to the processing according to Art. 21 para. 2 DSGVO.
  4. The personal data have been processed unlawfully.
  5. The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
  6. The personal data was collected in relation to information society services offered in accordance with Art. 8 para. 1 DSGVO.

If we have made the personal data public and we are obliged to delete them according to art. 17 para. 1 DSGVO, we take appropriate measures, also of a technical nature, taking into account the available technology and the implementation costs, to inform those responsible for data processing who process the personal data that you have requested the deletion of all links to this personal data or of copies or replications of this personal data.

Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, that has legal effect on you or significantly affects you in a similar manner.

An automated decision making based on the collected personal data does not take place.

Right to withdraw data protection consent

You have the right to withdraw your consent to the processing of personal data at any time. 

Right of appeal to a supervisory authority

You have the right of appeal to a supervisory authority, in particular in the Member State where you are staying, working or suspected of having infringed the law, if you believe that the processing of personal data concerning you is unlawful.

Security measures

According to Art. 32 DSGVO we take security measures such as the shortening of your IP address and SSL encryption.

IP Address

Your IP address will only be stored in a shortened form. This prevents the identification of your person or makes it much more difficult. A shortening of the IP address is not done for security relevant processes.

SSL Encryption

Our Services transmit your data only with active SSL encryption. You can recognize this by the protocol “https://” in the address line. We automatically redirect you to “https://” if you try to open an unencrypted connection.


Cookies are files that are stored on your computer. They can contain various information, e.g. if you are logged in or which language you have set. Cookies are also often used to recognize you as a user.

There are different types of cookies. Short-lived cookies (often called “session cookie”, “transient cookie” or “temporary cookies”) are deleted immediately after leaving the website. With long-lived cookies (often called “permanent cookies” or “persistent cookies”) the developer decides how long they are valid. These are then usually still available the next time a website is visited. Third-party cookies are cookies that are used by our integrated service providers (e.g. Google Analytics). Cookies that we set ourselves are called “first-party cookies”.

If you do not want cookies to be stored on your computer, you can deactivate the corresponding option in your browser settings. Already stored cookies can be deleted in the settings of your browser.

A general objection to the use of cookies used for online marketing purposes can be declared for many of the services, especially in the case of tracking, via the US site or the EU site

We use short-lived and long-lived cookies. We have also integrated service providers who use their own third-party cookies.

On our website we ask you for your consent to the use of cookies by asking in the bottom section of the website. In this case, the legal basis for this processing is art. 6 par. 1 letter a. DSGVO.

Storage duration

In accordance with the legal requirements we delete your data. If this is not possible, the processing will be restricted.

Unless otherwise stated in the individual sections of this privacy policy, we delete the data as soon as it is no longer required for the purpose for which it was collected and the deletion is not prevented by any legal storage obligations.

If a legal storage obligation (e.g. commercial and tax law reasons, logging of consent) prevents the deletion, the processing of the data is restricted. This means that the data is blocked and not used for other purposes.

Data collected by us

Log files

When our server is accessed, access is logged in log files. This happens when you use our services, i.e. open or use our website and apps.

The following information is saved:

  1. Called URL
  2. Date and time
  3. Anonymized IP address
  4. Complete IP address (for security relevant processes)

The purpose of logging is the traceability of errors and the analysis of the stability of the server. An assignment to your person does not take place.

Different legal basis
The legal basis for logging is our own interest, in accordance with Art. 6 Para. 1 lit. f DSGVO.

Different storage duration
The logs are automatically deleted after 30 days.


The Node-RED extension creates random hash values. These values are transmitted to the remote RED servers and to the apps. Communication is realized via these InstanceHashs.

Additional data is stored to an InstanceHash. This is information for sending notifications as well as technical information like connected port and transferred data volume.

Access to device data


Remote-RED uses the location of your device to monitor geofences you have created.

The location is only determined if you have given us the right to do so and if you have created at least one geofence in the options. This requires the right to determine the location in the background.

It is only checked whether a geofence is entered or left. Your current position is not recorded by Remote-RED. This information (name of the geofence and entering/leaving) is only transmitted to your own Node-RED instance. It is not stored by us.

Integrated systems and service providers

Content Delivery Network (CDN)

We used the CDN service provider Cloudflare to provide our services. A CDN stores static files (e.g. graphics) of a website on regional servers. As soon as you want to access these files, they are loaded from the server of the CDN service provider instead of our server. This gives you faster access to our services and reduces the load on our own servers. Also the DNS service of Cloudflare is used.

Third Country Transfer
Cloudflare has committed itself to the EU-US Privacy Shield (guaranteeing the level of data protection when processing data in the USA):

Different legal basis
The legal basis is our legitimate interest in the secure and efficient provision of our services in accordance with Art. 6 Para. 1 lit. f DSGVO.

Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA
Private Policy:

Error transmission

The apps uses Crashlytics / Firebase from Google Inc. to collect and transfer error messages in case of crashes. The error message contains a reference to the programming that caused the crash, information about the device used (model, version operating system, free RAM memory, free flash memory) and information about the app used (version).

This information is only used to improve the quality of this app.

Different legal basis
The legal basis is our legitimate interest in the secure and efficient provision of our services in accordance with Art. 6 Para. 1 lit. f DSGVO.

Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland
Privacy Policy:

Push Notifications

Firebase from Google Inc. is used to send notifications from the Remote-RED servers to the apps. For this purpose a device token is generated on the used device and transferred to Firebase. This token is also stored on the Remote-RED servers and thus enables the sending of the notifications.

Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland
Privacy Policy: