Responsible:
UpVision
Sebastian Münzinger
Schrannerstr. 28a
D-85551 Kirchheim near Munich
Phone: +49 (0)89 8898 3773
Mail: info@up-vision.eu
As a user of our website, this data protection declaration provides you with all the necessary information on how, to what extent and for what purpose we or third-party providers collect data from you and use it.
Your data will be collected and used strictly in accordance with the provisions of the EU General Data Protection Regulation (DSGVO-EU), German data protection law in accordance with the DSAnpUG-EU and the German Telemedia Act (TMG) where applicable. We are committed to the confidentiality of your personal data and therefore work strictly within the limits set by the legal requirements. The collection of this personal data takes place on a voluntary basis, if this is possible for us. We also only pass this data on to third parties with your express consent. We ensure a high level of security for particularly confidential data such as in payment transactions or with regard to your enquiries to us by using SSL encryption. At this point we would like to point out the general dangers of Internet use over which we have no control. Especially in e-mail traffic, your data is not secure without further precautions and may be collected by third parties under certain circumstances.
Terminology used
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. “Processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term is broad and covers virtually any handling of data. Controller” means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.
Relevant legal basis In accordance with Article 13 of the GDPR-EU, we inform you of the legal basis for our data processing. If the legal basis is not mentioned in the privacy statement, the following applies:
The legal basis for obtaining consent is Art. 6(1)(a) and Art. 7 DSGVO-EU.
The legal basis for processing for the fulfilment of our services and implementation of contractual measures as well as answering enquiries is Art. 6 (1) lit. b DSGVO-EU.
The legal basis for processing for the fulfilment of our legal obligations is Art. 6 para. 1 lit. c DSGVO-EU
The legal basis for processing to protect our legitimate interests is Art. 6 (1) lit. f DSGVO-EU.
In the event that vital interests of the data subject or another natural person require processing of personal data, Art. 6 (1) lit. d DSGVO-EU serves as the legal basis.
Cooperation with processors and third parties
Insofar as we disclose data to other persons and companies (processors or third parties) in the course of our processing, transmit it to them or otherwise grant them access to the data, this will only be done on the basis of
a legal permission (e.g. data to payment service providers Necessity according to Art. 6 para. 1 lit. b DSGVO-EU for contract fulfilment)
you have consented a legal obligation provides for this, or on the basis of our legitimate interests (e.g. when using agents, web hosts, IT maintenance contracts, etc.).
If we commission third parties with the processing of data on the basis of a so-called “order processing agreement”, this is done on the basis of Art. 28 DSGVO-EU (GDPR).
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if we do so in the context of using third-party services or disclosing or transferring data to third parties, this will only be done if it is necessary for
the fulfilment of our (pre-)contractual obligations
on the basis of your consent
on the basis of a legal obligation or
on the basis of our legitimate interests.
Subject to legal or contractual permissions, we only process or allow the processing of data in a third country if the special requirements of Art. 44 ff. DSGVO-EU. This means, for example, that the processing is carried out on the basis of special guarantees, such as the officially recognised determination of a level of data protection corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognised special contractual obligations (so-called “standard contractual clauses”).
Rights of data subjects
You have the right to request confirmation as to whether data in question is being processed and to information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR-EU. You have in accordance with. Art. 16 GDPR-EU the right to request the completion of the data concerning you or the correction of incorrect data concerning you. In accordance with Article 17 of the GDPR-EU, you have the right to demand that the data in question be deleted without delay, or alternatively, in accordance with Article 18 of the GDPR-EU, to demand that the processing of the data be restricted. You have the right to request that the data concerning you that you have provided to us be received in accordance with Art. 20 GDPR-EU and to request that it be transferred to other data controllers. You also have the right to lodge a complaint with the competent supervisory authority in accordance with Art. 77 GDPR-EU.
Right of withdrawal
You have the right to revoke any consent you have given in accordance with Art. 7(3) of the GDPR-EU with effect for the future.
Right of objection
You may object to the future processing of data relating to you in accordance with Art. 21 GDPR-EU at any time. The objection can be made in particular against processing for direct marketing purposes.
Deletion of data
You have the right to request the correction, blocking or deletion of your data. Exempt from this is data that is kept due to legal regulations or is required for proper business processing. To ensure that a data block can be implemented at any time, data is kept in a blocking file for control purposes. If data is not covered by a legal archiving obligation, we will delete your data at your request. If the archiving obligation applies, we will block your data. For all questions and requests regarding the correction, blocking or deletion of personal data, please contact our data protection officer using the contact details in this data protection declaration or at the address given in the imprint.
Personal data
Every time a user accesses our website and every time a file is retrieved, data about this process is temporarily stored and processed in a log file. Before storage, each data record is anonymised by changing the IP address. In detail, the following data is stored for each access/retrieval: – Anonymised IP address – Date and time, – Page accessed/name of file retrieved, – Volume of data transferred, – Message as to whether the access/retrieval was successful. This data is only evaluated for statistical purposes and to improve the offer and is then deleted. It is not used in any other way or passed on to third parties.
If we collect personal data, we only collect it to the extent and for as long as it is necessary for the use of our website or as required by law in the context of data avoidance and data economy. If we collect personal data – such as your name, address or e-mail address – this data is collected voluntarily. Without your express consent, this data will not be disclosed to third parties. We take the protection of your personal data seriously and strictly adhere to the relevant legal regulations and this data protection declaration when collecting and processing personal data. If the purpose of the data collection ceases to apply or if the end of the legal storage period has been reached, the collected data will be blocked or deleted. As a rule, our website can be used without disclosing personal data.
Cookies
We use cookies on our website. These small text files are stored on your PC from our server. They support the display of our website and help you navigate our website. Cookies collect data about your IP address, browser, operating system and internet connection. We do not link this information to personal data and do not pass it on to third parties. Under no circumstances are cookies used by us to bring malware or spyware onto your computer. You can also use our website without the use of cookies, which means that some of the displays and functions of our offer may only work to a limited extent. If you wish to deactivate cookies, you can do so via special settings in your browser. Please use its help function to make the appropriate changes. You can manage online ad cookies via the following links:
- http://www.aboutads.info/choices for the USA
- http://www.youronlinechoices.com/uk/your-ad-choices for Europe.
Hosting
The hosting services we use serve to provide the following services: – infrastructure and platform services – computing capacity – storage space and database services – security services and technical maintenance services which we use for the purpose of operating this website. In doing so, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors to this website on the basis of our legitimate interests in an efficient and secure provision of this online offer pursuant to Art. 6 (1) lit. f DSGVO-EU in conjunction with Art. 28 DSGVO-EU. Art. 28 DSGVO-EU (conclusion of order processing contract).
Collection of access data and log files
We, or our hosting provider, collect data on every access to our website on the basis of our legitimate interests within the meaning of Art. 6 Para. 1 lit. f. DSGVO-EU, we collect data on every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. These log files do not allow any conclusions to be drawn about you and your person. Log file information is stored for security reasons (e.g. for the clarification of abuse or fraud) for a maximum of 7 days and then deleted. Data whose further storage is necessary for evidentiary purposes is exempt from deletion until the respective incident has been finally clarified.
Third-party content and services
The offer on our website may also include content, services and performances from other providers that complement our offer. Examples of such offerings are YouTube videos or third-party graphic representations. YouTube Our website uses plugins from the YouTube site operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA” in “Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account. YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO. Further information on the handling of user data can be found in YouTube’s privacy policy at: https://www.google.de/intl/de/policies/privacy . Calling up these services from third parties regularly requires the transmission of your IP address. This makes it possible for these providers to perceive your user IP address and also to store it. We favour only those third-party providers that use IP addresses solely for the delivery of content. However, we have no influence on which third party provider stores the IP address. This storage may serve statistical purposes, for example. Should we become aware of storage processes by third-party providers, we will immediately inform our users of this fact. In this context, please also note the specific data protection statements of individual third-party providers and service providers whose services we use on our website. You will also find these notices in this data protection declaration.
Presence on social networks
We are represented with pages on various social networks. These are listed in detail below. Customers, interested parties and users can use these to communicate with us and find out about our activities and products. In this context, we would like to point out that user data may also be processed outside the European Union. This may result in risks for the users of our websites in social networks. As a rule, social networks also use user data for the purposes of market research and advertising. Usage behaviour is used for advertisements, for example. In doing so, the interests of the users are taken into account. To achieve this, cookies are stored on users’ devices, which allow conclusions to be drawn about usage behaviour and interests. The processing of personal data in social networks is carried out by us on the basis of a legitimate interest according to Art. 6. para. 1 lit. f. GDPR (DSGVO-EU). Our aim is to ensure effective communication with users and to inform you about our activities and products. If consent to data processing is required, the processing is carried out in accordance with Art. 6. para. 1 lit. a. and Art. 7 GDPR (DSGVO-EU). It is not possible for us to trace all processing operations of the social networks. Therefore, please address requests for information directly to the individual operators of the social networks. Only the provider has access to the user data and can therefore provide information or take appropriate measures in the event of the assertion of user rights. However, you can also contact us if you have any questions regarding data protection. For further details or objection options, please refer to the individual pages:
The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland.
You can find Linkedin’s privacy policy at: https://de.linkedin.com/legal/privacy-policy.
The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. You can find XING’s data protection declaration at: https://privacy.xing.com/de/datenschutzerklaerung.
Newsletter
You can register on our website to receive our newsletter. We need your e-mail address for this. In addition, we have to check, in compliance with the relevant legal regulations, whether you are actually the owner of the e-mail address provided and would like to receive the newsletter. We therefore collect information that makes such verification possible. The data collected in this context is used for sending and receiving the newsletter. They have no other purpose and are not passed on to third parties. Apart from the information required for sending the newsletter, no other data is collected by us. As the sending and receiving of the newsletter is dependent on your consent, you can revoke this consent to the collection and storage of your data at any time without giving reasons. To do so, use the “no-email link” provided in the newsletter.
SSL encryption
Our website uses SSL encryption when transmitting confidential or personal content of our users. This encryption is activated, for example, when processing payment transactions and when you send us enquiries via our website. Please make sure that SSL encryption is activated on your side for corresponding activities. The use of encryption is easy to recognise: The display in your browser line changes from “http://” to “https://”. Data encrypted via SSL cannot be read by third parties. Only transmit your confidential information when SSL encryption is activated and contact us in case of doubt.
Google AdWords
We use Google AdWords on our website, an online advertising programme of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA” in “Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Conversion tracking is also used for this purpose. With this tool, Google AdWords sets a cookie on your PC when you come to our website via a Google advertisement. The cookie is no longer valid after 30 days. It does not serve any personal traceability. If you visit our website as a user and the cookie is still working, it will be recognisable to us together with Google that you clicked on the corresponding advertisement and were redirected to our site. A different cookie is assigned to each Google AdWords customer. Cookies are thus not traceable via the websites of AdWords customers. Conversion statistics for AdWords customers are created with the data collected through conversion cookies. As customers, we thus learn the total number of users who responded to our ad and were then redirected to a website that was tagged with a conversion tracking tag. We do not receive any information during this process with which we could personally identify you as a user. If you reject the tracking procedure, the Google conversion tracking cookie can be deactivated via your internet browser. If necessary, use the browser’s help function for further information. You can find out more about Google’s privacy policy at http://www.google.de/policies/privacy/.
Use of Google Analytics
We use the web analysis service Google Analytics from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA” in “Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This company uses cookies. These are text files that are stored on your PC and allow an analysis of your user behaviour in relation to our website. The cookies generate information that is transferred to a Google server. These servers are usually located in the USA, but follow agreements on the use of the European Economic Area and shorten your IP address before transmission to the United States. Only in exceptional cases will the IP address only be shortened after transmission to the USA. Google evaluates the transmitted information and provides further services for us website operators in this context. The IP address determined is not merged with other Google services. You can prevent cookies from being stored on your computer by changing your browser settings. However, this may result in display and functional restrictions when using our website. A browser plug-in also prevents the collection and use of the data generated by the cookies. You can download it from the following link: https://tools.google.com/dlpage/gaoptout?hl=de Learn more about the data protection conditions of Google and Google Analytics at: http://www.google.com/analytics/terms/de.html or at https://www.google.de/intl/de/policies/.