We are delighted that you are visiting our websites. In the following we would like to inform you about how we deal with your data in accordance with Art. 13 General Data Protection Regulation (GDPR).
Responsible Person
The post named in the imprint is responsible for data collection and processing as described below.
Storage of the IP address for security purposes
In addition, we store the complete IP address transmitted by your web browser for a strictly limited period of seven days in the interest of being able to recognize, limit and eliminate attacks on our web pages. After this period, we delete or anonymize the IP address. The legal basis is Art. 6 para. 1 p. 1 lit. f GDPR.
Usage data
When you visit our web site, temporary so-called usage data is saved on our web server in the form of a log for statistical purposes in order to improve the quality of our web site. This set of data consists of:
- the name and address of the requested content,
- the date and time of the request,
- the amount of data transferred,
- the access status (content transferred, content not found),
- the description of the web browser and operating system used,
- the referral link, which indicates the page from which you came to ours,
- the IP address of the requesting computer, which is shortened so that a personal reference can no longer be established.
The log data described is only saved anonymously.
Storage of the IP address for security purposes
In addition, we store the complete IP address transmitted by your web browser for a strictly limited period of seven days in the interest of being able to recognize, limit and eliminate attacks on our web pages. After this period, we delete or anonymize the IP address. The legal basis is Art. 6 para. 1 p. 1 lit. f GDPR.
Data security
In order to protect your data from unwanted access as comprehensively as possible, we take technical and organizational measures. We use an encryption procedure on our websites. Your data is transferred from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the fact that the lock symbol is closed in the status bar of your browser and the address line begins with https://.
Matomo
We use the web analysis tool "Matomo" to design our websites according to demand. Matomo creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your terminal device and read by us. In this way, we are able to recognize returning visitors and count them as such.
The data processing is based on your consent according to Art. 6 para. 1 p. 1 lit. a GDPR or § 15 para. 3 p. 1 TMG, if you have given your consent via our banner.
You can revoke your consent at any time.
Contact form
You have the option of contacting us via our contact form. To use our contact form, we first need the data marked as mandatory fields from you.
We use this data on the basis of Art. 6 para. 1 p. 1 lit. f GDPR to answer your inquiry.
In addition, you can decide for yourself whether you would like to provide us with further information. This information is provided voluntarily and is not mandatory for contacting you. We process your voluntary information on the basis of your consent in accordance with Art. 6 (1) p. 1 lit. a GDPR.
Your data will only be processed to respond to your inquiry. We will delete your data if it is no longer required and there are no legal retention obligations to the contrary.
Insofar as your data transmitted via contact form is processed on the basis of Art. 6 para. 1 p. 1 lit. f GDPR, you can object to the processing at any time. In addition, you can revoke your consent to the processing of voluntary data at any time. To do so, please contact the e-mail address stated in the imprint.
Map services
On our websites, we embed map services that are not stored on our servers. To ensure that calling up our web pages with embedded map services does not automatically lead to content from the third-party provider being reloaded, we only display locally stored preview images of the maps in a first step. This does not provide the third-party provider with any information.
Only after a click on the thumbnail, the content of the third party provider is reloaded. This provides the third-party provider with the information that you have accessed our site as well as the usage data technically required in this context. We have no influence on the further data processing by the third-party provider. By clicking on the preview image, you give us your consent to reload content from the third-party provider.
The embedding takes place on the basis of your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR or § 15 para. 3 p. 1 TMG, provided that you have previously given your consent by clicking on the preview image.
Please note that the embedding of some map services leads to your data being processed outside the EU or EEA. In some countries, this poses the risk that authorities may access the data for security and monitoring purposes without you being informed or having legal recourse. If we use providers in unsafe third countries and you consent, the transfer to an unsafe third country will be based on Art. 49 (1) lit. a GDPR.
Provider
OpenStreetMap
Adequate level of data protection
Processing only within EU/EEA
Withdrawl of consent
Once you have clicked on a preview image, the third-party contend is immediately reloaded. If you do not want such reloading on other pages, please do not click the thumbnails anymore.
Storage period
Unless we have already informed you in detail about the storage period, we delete personal data when they are no longer required for the aforementioned processing purposes and no legal retention obligations prevent deletion.
Other order processors
We pass on your data to service providers as part of order processing pursuant to Art. 28 GDPR, who support us in the operation of our websites and related processes. These are, for example, hosting service providers. Our service providers are strictly bound by instructions to us and are contractually obligated accordingly.
In the following, we will name the order processors with whom we work, if we have not already done so in the preceding text of the data protection declaration. If data is transferred outside the EU or EEA in this context, we provide information on the appropriate level of data protection.
ORDER PROCESSORS
domain factory
PURPOSE
Web hosting Webserver and support
ADEQUATE LEVEL OF DATA PROTECTION
Processing only within EU/EEA
Your rights as a user
When processing your personal data, the GDPR grants you certain rights as a data subject:
Right of access (Art. 15 GDPR).
You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have the right to be informed about this personal data and to receive the information listed in detail in Art. 15 GDPR.
Right to rectification (Art. 16 GDPR).
You have the right to request without undue delay the rectification of any inaccurate personal data concerning you and, where applicable, the completion of any incomplete data.
Right to erasure (Art. 17 GDPR).
You have the right to request that personal data concerning you be erased without delay, provided that one of the reasons listed in detail in Art. 17 GDPR applies.
Right to restriction of processing (Art. 18 GDPR).
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR applies, e.g. if you have objected to the processing, for the duration of the review by the controller.
Right to data portability (Art. 20 GDPR).
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.
Right of withdrawal (Art. 7 GDPR).
If the processing of data is based on your consent, you are entitled to revoke your consent to the use of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.
Right of objection (Art. 21 GDPR).
If data is collected on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR (data processing to safeguard legitimate interests) or on the basis of Art. 6 para. 1 sentence 1 lit. e GDPR (data processing to safeguard public interest or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR).
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data concerning you violates data protection provisions. The right of complaint can be asserted in particular before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.
Assertion of your rights
Unless otherwise described above, to assert your data subject rights, please contact the office mentioned in the imprint.
Contact details of the Data Protection Officer
Our external Data Protection Officer is happy to provide you with information and advice on the topic of data protection:
Dr. Uwe Schläger
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen
Web: www.datenschutz-nord-gruppe.de
Email: office@datenschutz-nord.de
Telephone: +49 421 69 66 32 0
If you contact our data protection officer, please also state the responsible office named in the imprint.