D-85551 Kirchheim near Munich
Phone: +49 (0)89 8898 3773
As a user of our website, this data protection declaration provides you with all the necessary information on how, to what extent and for what purpose we or third-party providers collect data from you and use it.
Your data will be collected and used strictly in accordance with the provisions of the EU General Data Protection Regulation (DSGVO-EU), German data protection law in accordance with the DSAnpUG-EU and the German Telemedia Act (TMG) where applicable. We are committed to the confidentiality of your personal data and therefore work strictly within the limits set by the legal requirements. The collection of this personal data takes place on a voluntary basis, if this is possible for us. We also only pass this data on to third parties with your express consent. We ensure a high level of security for particularly confidential data such as in payment transactions or with regard to your enquiries to us by using SSL encryption. At this point we would like to point out the general dangers of Internet use over which we have no control. Especially in e-mail traffic, your data is not secure without further precautions and may be collected by third parties under certain circumstances.
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. “Processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term is broad and covers virtually any handling of data. Controller” means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.
Relevant legal basis In accordance with Article 13 of the GDPR-EU, we inform you of the legal basis for our data processing. If the legal basis is not mentioned in the privacy statement, the following applies:
The legal basis for obtaining consent is Art. 6(1)(a) and Art. 7 DSGVO-EU.
The legal basis for processing for the fulfilment of our services and implementation of contractual measures as well as answering enquiries is Art. 6 (1) lit. b DSGVO-EU.
The legal basis for processing for the fulfilment of our legal obligations is Art. 6 para. 1 lit. c DSGVO-EU
The legal basis for processing to protect our legitimate interests is Art. 6 (1) lit. f DSGVO-EU.
In the event that vital interests of the data subject or another natural person require processing of personal data, Art. 6 (1) lit. d DSGVO-EU serves as the legal basis.
Cooperation with processors and third parties
Insofar as we disclose data to other persons and companies (processors or third parties) in the course of our processing, transmit it to them or otherwise grant them access to the data, this will only be done on the basis of
a legal permission (e.g. data to payment service providers Necessity according to Art. 6 para. 1 lit. b DSGVO-EU for contract fulfilment)
you have consented a legal obligation provides for this, or on the basis of our legitimate interests (e.g. when using agents, web hosts, IT maintenance contracts, etc.).
If we commission third parties with the processing of data on the basis of a so-called “order processing agreement”, this is done on the basis of Art. 28 DSGVO-EU (GDPR).
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if we do so in the context of using third-party services or disclosing or transferring data to third parties, this will only be done if it is necessary for
the fulfilment of our (pre-)contractual obligations
on the basis of your consent
on the basis of a legal obligation or
on the basis of our legitimate interests.
Subject to legal or contractual permissions, we only process or allow the processing of data in a third country if the special requirements of Art. 44 ff. DSGVO-EU. This means, for example, that the processing is carried out on the basis of special guarantees, such as the officially recognised determination of a level of data protection corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognised special contractual obligations (so-called “standard contractual clauses”).
Rights of data subjects
You have the right to request confirmation as to whether data in question is being processed and to information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR-EU. You have in accordance with. Art. 16 GDPR-EU the right to request the completion of the data concerning you or the correction of incorrect data concerning you. In accordance with Article 17 of the GDPR-EU, you have the right to demand that the data in question be deleted without delay, or alternatively, in accordance with Article 18 of the GDPR-EU, to demand that the processing of the data be restricted. You have the right to request that the data concerning you that you have provided to us be received in accordance with Art. 20 GDPR-EU and to request that it be transferred to other data controllers. You also have the right to lodge a complaint with the competent supervisory authority in accordance with Art. 77 GDPR-EU.
Right of withdrawal
You have the right to revoke any consent you have given in accordance with Art. 7(3) of the GDPR-EU with effect for the future.
Right of objection
You may object to the future processing of data relating to you in accordance with Art. 21 GDPR-EU at any time. The objection can be made in particular against processing for direct marketing purposes.
Deletion of data
You have the right to request the correction, blocking or deletion of your data. Exempt from this is data that is kept due to legal regulations or is required for proper business processing. To ensure that a data block can be implemented at any time, data is kept in a blocking file for control purposes. If data is not covered by a legal archiving obligation, we will delete your data at your request. If the archiving obligation applies, we will block your data. For all questions and requests regarding the correction, blocking or deletion of personal data, please contact our data protection officer using the contact details in this data protection declaration or at the address given in the imprint.
Every time a user accesses our website and every time a file is retrieved, data about this process is temporarily stored and processed in a log file. Before storage, each data record is anonymised by changing the IP address. In detail, the following data is stored for each access/retrieval: – Anonymised IP address – Date and time, – Page accessed/name of file retrieved, – Volume of data transferred, – Message as to whether the access/retrieval was successful. This data is only evaluated for statistical purposes and to improve the offer and is then deleted. It is not used in any other way or passed on to third parties.
If we collect personal data, we only collect it to the extent and for as long as it is necessary for the use of our website or as required by law in the context of data avoidance and data economy. If we collect personal data – such as your name, address or e-mail address – this data is collected voluntarily. Without your express consent, this data will not be disclosed to third parties. We take the protection of your personal data seriously and strictly adhere to the relevant legal regulations and this data protection declaration when collecting and processing personal data. If the purpose of the data collection ceases to apply or if the end of the legal storage period has been reached, the collected data will be blocked or deleted. As a rule, our website can be used without disclosing personal data.
- http://www.aboutads.info/choices for the USA
- http://www.youronlinechoices.com/uk/your-ad-choices for Europe.
The hosting services we use serve to provide the following services: – infrastructure and platform services – computing capacity – storage space and database services – security services and technical maintenance services which we use for the purpose of operating this website. In doing so, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors to this website on the basis of our legitimate interests in an efficient and secure provision of this online offer pursuant to Art. 6 (1) lit. f DSGVO-EU in conjunction with Art. 28 DSGVO-EU. Art. 28 DSGVO-EU (conclusion of order processing contract).
Collection of access data and log files
We, or our hosting provider, collect data on every access to our website on the basis of our legitimate interests within the meaning of Art. 6 Para. 1 lit. f. DSGVO-EU, we collect data on every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. These log files do not allow any conclusions to be drawn about you and your person. Log file information is stored for security reasons (e.g. for the clarification of abuse or fraud) for a maximum of 7 days and then deleted. Data whose further storage is necessary for evidentiary purposes is exempt from deletion until the respective incident has been finally clarified.
Third-party content and services
Presence on social networks
We are represented with pages on various social networks. These are listed in detail below. Customers, interested parties and users can use these to communicate with us and find out about our activities and products. In this context, we would like to point out that user data may also be processed outside the European Union. This may result in risks for the users of our websites in social networks. As a rule, social networks also use user data for the purposes of market research and advertising. Usage behaviour is used for advertisements, for example. In doing so, the interests of the users are taken into account. To achieve this, cookies are stored on users’ devices, which allow conclusions to be drawn about usage behaviour and interests. The processing of personal data in social networks is carried out by us on the basis of a legitimate interest according to Art. 6. para. 1 lit. f. GDPR (DSGVO-EU). Our aim is to ensure effective communication with users and to inform you about our activities and products. If consent to data processing is required, the processing is carried out in accordance with Art. 6. para. 1 lit. a. and Art. 7 GDPR (DSGVO-EU). It is not possible for us to trace all processing operations of the social networks. Therefore, please address requests for information directly to the individual operators of the social networks. Only the provider has access to the user data and can therefore provide information or take appropriate measures in the event of the assertion of user rights. However, you can also contact us if you have any questions regarding data protection. For further details or objection options, please refer to the individual pages:
The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland.
The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. You can find XING’s data protection declaration at: https://privacy.xing.com/de/datenschutzerklaerung.
You can register on our website to receive our newsletter. We need your e-mail address for this. In addition, we have to check, in compliance with the relevant legal regulations, whether you are actually the owner of the e-mail address provided and would like to receive the newsletter. We therefore collect information that makes such verification possible. The data collected in this context is used for sending and receiving the newsletter. They have no other purpose and are not passed on to third parties. Apart from the information required for sending the newsletter, no other data is collected by us. As the sending and receiving of the newsletter is dependent on your consent, you can revoke this consent to the collection and storage of your data at any time without giving reasons. To do so, use the “no-email link” provided in the newsletter.
Our website uses SSL encryption when transmitting confidential or personal content of our users. This encryption is activated, for example, when processing payment transactions and when you send us enquiries via our website. Please make sure that SSL encryption is activated on your side for corresponding activities. The use of encryption is easy to recognise: The display in your browser line changes from “http://” to “https://”. Data encrypted via SSL cannot be read by third parties. Only transmit your confidential information when SSL encryption is activated and contact us in case of doubt.
Use of Google Analytics