1. Website Privacy Policy
We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).
Controller
The controller responsible for the described data collection and processing is named in the imprint.
Usage Data
When you visit our website, the data collected from the use of the website is temporarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:
- the page, from which the data is requested,
- the name of the data file,
- the date and time of the query,
- the amount of data transferred,
- the access status (file transmitted, file not found),
- a description of the type of browser used,
- the IP address of the requesting computer shortened to such an extent that no reidentification of any persona data is possible.
The listed usage data is stored anonymously.
2. Data Transfer to Third Parties
Data Transfer to Third Parties
We transfer your data to service providers who support us in the operation of our website and the associated processes. This transference is made under the scope of a data pro-cessing agreement in accordance to Art. 28 GDPR. Our service providers are bound to us by strict instructions and contractual obligations. We use the following service providers: Google Analytics USA and the Hosting-service provider of this domain.
Data Transfer to Third Countries (Non-EU Countries)
In some cases, we may transfer personal data to third countries outside the EU. In each case, we ensure an appropriate level of data protection according to European standards.
In the case of [Google Analytics (USA)], an appropriate level of data protection is ensured by the corresponding participation in the Privacy Shield Agreement (Art. 45 para. 1 GDPR).
3. Cookies
Google Analytics
We use cookies on our website. Cookies are small pieces of data that are stored and read in your end-device. A distinction is made between session cookies, which are deleted when you close your browser, and permanent cookies, which are stored even after your visit has expired. Cookies may contain data that enables the recognition of the device being used. However, in some cases cookies only contain information on certain settings which are not personal data.
We use session cookies and permanent cookies on our website. The data is processed in accordance to Art. 6 para. 1 s. 1 lit. f GDPR and in the interest of optimizing and improving our website presence.
Please be aware that you can set your browser to inform you when cookies are being stored or used on the website you are visiting. Thus, any use of cookies is transparent to you. You have the possibility to delete your browser configuration at any time and pre-vent any use of new cookies. In the event you refuse the use of cookies, please note that our web sites may not be displayed optimally and some functions are then no longer technically available.
To change your data privacy settings click here.
Matomo
We use Matomo for web analytics, a service of InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, NZBN 6106769. The protection of your data is important to us, therefore we have additionally configured Matomo so that your IP address is only recorded in a shortened form. We therefore process your personal usage data anonymously. It is not possible for us to draw conclusions about your person. You can find further information on Matomo's terms of use and data protection regulations at https://matomo.org/privacy/
4. Trackingtools
Google Analytics
We use Google Analytics to create pseudonymous user profiles for improving and design-ing our website on demand. Google Analytics uses “cookies”, which are text files placed on your end device and can be read by us. In this way, we are able to recognize and count returning visitors. This data processing is carried out on the basis of Art. 6 para. 1 s. 1 lit. f GDPR or § 15 para. 3 TMG and in the interest of finding out how often our website is viewed by different users.
The information generated by the cookies about your use of the website will be transmit-ted to and stored by Google on its servers in the United States. We have activated IP-anonymization on this website, your IP address will be truncated within the area of Member States of the European Union. Only in exceptional cases is the whole IP address transferred to a Google server in the USA and truncated there (an adequate level of data protection is ensured according to Art. 45 para. 1 GDPR because Google is a participant in the Privacy Shield Agreement). We have also concluded a contract with Google Inc. (USA) for commissioned data processing / order processing pursuant to Art. 28 GDPR. Accordingly, Google will solely use collected data for the purposes intended, which are to evaluate the use of the website and to compile reports on website activities.
You can withdraw your consent to the processing at any time. Please use one of the follow-ing options:
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you proceed accordingly you may not be able to benefit from the full functionality of this website.
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link http://tools.google.com/dlpage/gaoptout?hl=en.
5. Retargeting Google
If you use our website, you agree to the following data processing:
We use Google's retargeting technologies in order to offer you advertising, on other web-sites, that is tailored to your interests. Data processing is carried out on the basis of Art. 6 para. 1 s. 1 lit. a GDPR.
How does remarketing work?
When you visit our website, recognition features of your browser or end device are re-trieved, your IP address is evaluated or a recognition feature is stored as a small text file (e. g. so-called third-party cookie) on your end device. Furthermore, it is possible that Google connects your visit of our website with your usage behavior which is recorded when you visit various websites. The characteristics are designed pseudonymously. If you are logged in with your Google account, these features can be assigned directly to your profile. Google can link and store your visits to our web pages with your features to display target-ed advertising on other Internet sites.
The aforementioned recognition features are pseudonymous and we can use Google to recognize your end device on other internet pages. Your device and your browser will be recognized by Google, e.g. when you visit a page that displays advertisements on Google's behalf.
We can add to our website so called remarketing tags. We may add keywords to our webpages that contain statements about the content of the website, such as offered products. Google receives these keywords which contain neither personal nor sensitive information. When you visit a page with certain keywords related to products, Google stores them and assigns them to your pseudonymous recognition features. Google can use this link to determine whether and, if so, which of our advertisements will be displayed to you.
We can therefore commission Google to place advertisements on other websites based on the pages you visited. If you visit another website that participates in Google's display network, Google can use recognition features and keywords stored for this purpose to determine whether and, if so, which of our ads should be displayed.
For more information on how Google remarketing technologies work, visit https://www.google.com/policies/technologies/ads/.
What does cross-device remarketing mean?
If you sign in to Google services with your own credentials or use one or more of your own Google accounts, Google may link the recognition features of different browsers and devices. So once Google has created a unique identifier for the laptop, desktop, smartphone or tablet you are using, you can associate those identifiers with one another by using or having used your sign-in information to use a Google service. In this way, Google can also play our advertising campaigns beyond the end device in a targeted manner. However, Google will only do this if you have agreed to this data processing in your dealings with Google.
You Have the Option to Define Advertising Settings
You can object to this form of advertising at any time. To do this, please visit https://support.google.com/ads/answer/2662922 and deactivate personalized advertising. Please note that these settings may not affect all devices and browsers. Further information is also available at https://support.google.com/ads/answer/2662922.
6. Social Media Plugins
For data protection reasons, we do not integrate any social media plugins directly into our website. Therefore, when you access our pages, no data is transferred to social media services such as Facebook, Twitter, XING or Google+. A profiling by third parties is thus excluded.
However, you still have the option of sharing selected pages by clicking on the Facebook, Twitter, XING or Google+ buttons, and you can see how often a page has been shared in the past when you view the post. We use the so-called Shariff solution developed by the German c't Magazine to offer a data protection compliant alternative to the classic social plug-ins.
What's behind it? The Shariff solution means that as a first step, all the data and functions required to display Facebook, Twitter, XING or Google+ buttons are provided by our web server. Only when you decide to share a post via the corresponding button and click on it, does a data transfer to the operator of the respective social media service takes place.
7. Explanation of Data Security Measures
Data Security
To avoid unauthorized access to your data, we have implemented technical and organizational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology. You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with https://.
8. Rights as a User
Your Rights as a User
As a website user, the GDPR grants you certain rights when processing your personal data.
1. Right of access (Art. 15 GDPR):
You have the right to obtain confirmation at to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR.
2. Right to rectification and erasure (Art. 16 and 17 GDPR):
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data completed.
You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.
3. Right to restriction of processing (Art. 18 GDPR):
If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination.
4. Right to data portability (Art. 20 GDPR):
In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.
5. Right to object (Art. 21 GDPR):
If the data is processed pursuant to Art. 6 para. 1 s. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.
6. Right to lodge a complaint with a supervisory authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringes data protection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.
9. Contact Details of the Data Protection Officer
Please contact our data protection officer if you have any further questions, suggestions or wishes regarding data protection:
Dr. Uwe Schläger
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen
Web: www.datenschutz-nord-gruppe.de
E-Mail: [email protected]
Telephone: +49 421 69 66 32 0
10. Further Content of a Website Privacy Policy
10.1. Sweepstakes
Information you submit to take part in a sweepstake or surveys will only be used in order to identify and contact the winner (Art. 6 para. 1 s. 1 lit. f GDPR). The winners will be notified in writing. We will not use your data for advertising purposes. Relevant data will be deleted immediately after the prize is handed over or if you withdraw your consent to processing of your personal data.
If you wish to object to the processing of your data, please send an email to [email protected].
10.2. Contact Form
You have the opportunity to contact us via a web form. To use our contact form and to check and answer your request, we need your name, the subject, your e-mail address, your telephone number and your concerns briefly described. You may or may not provide further information. This data is processed only within our group of companies and only as long as it is necessary for the settlement and if this is not subject to legal or technical retention requirements.
We use Google's reCaptcha service to determine if a human or computer makes a specific entry in our contact form. Google verifies the following data, whether you are a human or a computer: IP address of the device used, the website that you visit and on which the captcha is integrated, the date and duration of the visit, The recognition data of the browser and operating system type used, the Google account, if you are logged in to Google, mouse movements on the reCaptcha surfaces, and tasks that require you to identify images. The legal basis for the data processing described is Art. 6 (1) (f) of the General Data Protection Regulation, as this processing is based on our legitimate interest in ensuring the security of our website and servers.
CONSENT
By sending this mail form, you agree that the data you provide will be electronically collected, stored and processed solely for consideration and response to your concern within the group. The legal basis of the processing is Art. 6 para. 1 sentence 1 lit. a GDPR. We use your data exclusively to process your request. Your consent may be revoked at any time, e.g. by e-mail to [email protected].
10.2. Company Facebook Page
We operate several official facebook pages based on Art. 6 para. 1 s. 1 lit. f GDPR. We nev-er collect, store or process personal data of our users on this site. Furthermore, no other data processing is carried out or initiated by us. The data you enter on our Facebook page, such as comments, videos or images, will not be used or processed by us at any time for any other purpose.
Facebook uses web tracking methods on this site. Please be aware that Facebook may use your profile data to evaluate your habits, personal relationships, preferences, etc. We have no influence on the processing of your data by Facebook.