Privacy policy
Thank you for your interest in our online presence. The protection of your personal data is very important to us. At this point we would like to inform you about data protection in our company. Of course, we observe the legal provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), the Telemedia Act (TMG) and other data protection regulations.
You can trust us with your personal data! They are encrypted by modern security systems and transmitted to us. Our websites are protected against damage, destruction or unauthorized access by technical and organizational measures.
data subject rights
You will receive information about your data stored by us at any time without giving reasons.
You have the right:
- to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data was or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if not collected from us, and the existence of automated decision-making including profiling and, if necessary, meaningful information about their details;
- in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
- According to Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required;
- pursuant to Art. 18 GDPR, to request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you use them to assert, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 GDPR;
- in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another person responsible;
- pursuant to Art. 7 Para. 3 GDPR, to revoke the consent you have given to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future and
- to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company.
right of withdrawal
You can have the data we have collected blocked, corrected or deleted at any time, provided that your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR and pseudonymised data collection and storage for the purpose of optimizing our website contradict. This objection is based on Art. 21 GDPR. You can also revoke your consent to data collection and use at any time without giving reasons. To do this, please use the contact address provided. We are always at your disposal for further questions about our information on data protection and the processing of your personal data..
Please note that data protection regulations and data protection practices, e.g. B. at Google, can change continuously. It is therefore advisable and necessary to keep up to date with changes in legal provisions and company practice, e.g. B. Google, to keep you informed.
data security
We use the widespread SSL method (Secure Socket Layer) in connection with the highest level of encryption supported by your browser. You can recognize this by the key or lock symbol in your browser.
Furthermore, we use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. We continuously improve our security measures in line with technological developments.
subject of data protection
The subject of data protection is personal data. According to Art. 4 Para. 1 GDPR, these are individual details about personal or factual circumstances of a specific or identifiable natural person. This includes e.g. B. Information such as name, postal address, e-mail address or telephone number, but possibly also usage data such as your IP address.
Additional definitions for better understanding
It is important to us that you can easily understand our data protection declaration, which is why we would like to briefly explain important terms at this point:
Affected person:
That's you as the owner of your own data. Within the scope of your rights as a data subject, you may have a say in how your data is processed and may also revoke the processing.
Responsible:
This is us, as we are responsible for the proper processing of your data.
Processing:
This is the process or a series of processes in connection with personal data from the collection of the data through use to deletion or destruction. We can carry this out ourselves or service providers directly commissioned by us are involved.
Pseudonymization:
With pseudonymization, the data is processed in such a way that it can no longer be assigned to a specific data subject without additional information. In principle, however, pseudonymization can always be canceled if the relevant data is brought together.
Anonymization:
The personal data will be deleted or alienated in such a way that under normal circumstances it is no longer possible to identify the individual person. When we make evaluations or statistics, we try to work with anonymous data wherever possible.
Scope of data collection and storage
Access to our website
Affected persons can generally use our website without having to provide any information about their personal data. However, the processing of personal data may become necessary if the person concerned would like to receive certain services, such as our newsletter or further product information.
When you visit our website, we collect the following data that is technically necessary for us. We need the data to show you our website and to ensure stability and security:
- IP address of the requesting computer,
- Date and time of the request
- name and URL of the retrieved file,
- Website from which the request comes (referrer URL),
- Browser used and, if applicable, the operating system of your computer and the name of your access provider.
The data mentioned are processed by us for the following purposes:
- Ensuring comfortable use of our website,
- Ensuring a smooth connection establishment of the website,
- Evaluation of system security and stability as wel
- for further administrative purposes in the context of the fulfillment of the contract or to fulfill legal or regulatory requirements on us.
The processing is based on Art. 6 I lit. a GDPR if you have given us your consent to the processing of your personal data for one or more specific purposes.
The processing is based on Art. 6 I lit. b GDPR if the processing is necessary to fulfill a contract to which the data subject is a party. This also applies to pre-contractual measures taken at the request of the data subject.
The processing is based on Art. 6 I lit. c GDPR if the processing is necessary to fulfill a legal obligation to which we are subject.
The processing is based on Art. 6 I lit. d GDPR if the processing is necessary to protect the vital interests of the data subject or another natural person. This can then be a rare case when a person concerned is seriously injured and his personal data is therefore passed on to a doctor, for example.
The processing is based on Art. 6 I lit. f GDPR if the processing is necessary to protect the legitimate interests of the person responsible or a third party, unless the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, prevail.
Collection and storage of usage data
To optimize our website, we collect and store data such as B. Date and time of the page view, the page from which you accessed our site and the like, provided you do not object to this data collection and storage.
This is done anonymously without personally identifying the user of the site. If necessary, user profiles are created using a pseudonym. Here, too, there is no connection between the natural persons behind the pseudonym and the usage data collected. We also use cookies to collect and store usage data.
These are small text files that are stored on your computer and are used to store statistical information such as the operating system, your Internet usage program (browser), IP address, the previously accessed website (referrer URL) and the time. We collect this data exclusively for statistical purposes in order to further optimize our website and to make our website even more attractive.
The collection and storage takes place exclusively in an anonymous or pseudonymised form and does not allow any conclusions to be drawn about you as a natural person.
contact form
If you have an inquiry for our company, you have the option of contacting us via a contact form provided on our website. A valid e-mail address is required so that we know who sent the request and can respond to it. All other details are optional.
Data processing for the purpose of contacting us takes place in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR on the basis of your voluntarily given consent.
Provision of services and delivery of goods
In order for us to be able to provide our services, we may need your personal data. This applies to the sending of information material or ordered goods as well as to answering individual inquiries. We collect this data to meet your request. This data is only used for a specific purpose.
If you commission us to provide a service or send goods, we only collect and store your personal data to the extent that it is necessary for the provision of the service or the execution of the contract and for legal reasons. It may be necessary to pass on your personal data to companies that we use to provide the service or to process the contract. These are e.g. B. Transport companies or other service providers. We oblige these service providers to comply with data protection requirements within the framework of the statutory provisions.
After the contract has been completed, your data will be blocked and deleted after the tax and commercial law regulations have expired, unless you have expressly consented to further use of the data.
Integration of third-party content and services
Data collection through the use of Google Analytics and the use of cookies
Our website uses Google Analytics, a web analytics service provided by Google Inc.( https://www.google.de/about ), 1600 Amphitheater Parkway, Mountain View, CA 94043, USA), hereinafter "Google". Google Analytics uses so-called "cookies" and pseudonymised usage profiles are created in this context. "Cookies" are text files that are stored on your computer and enable an analysis of your use of the website. For example:
- Information about the operating system
- to the browse
- Your IP address (host name of the accessing computer)
- the website you previously accessed (referrer URL)
- Date and time of the server request.
The information generated by this text file about the use of our website is transmitted to a Google server in the USA and stored there. Google will use this information to evaluate your use of our website, to compile reports on website activity for website operators and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of these websites. If this is required by law or if third parties process this data on behalf of Google, Google will also pass this information on to these third parties. This use is anonymous or pseudonymised (IP masking).
You can prevent the installation of cookies by setting your internet user program (browser) accordingly. However, we would like to point out that this may mean that not all functions can be used. To do this, you must switch off the storage of cookies in your Internet browser. For more information on this, please refer to the instructions for use of your Internet browser. In addition, you can prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on ( https://tools.google.com/dlpage/gaoptout?hl=de ).
The data processed by cookies are required for the stated purposes to protect our legitimate interests and those of third parties in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR.
Further data protection information from Google can be found at: https://www.google.de/intl/de/policies/privacy
Online map service ‘Google Maps’
The website integrates the online map service ‘Google Maps’ (‘map service’). The service is provided and operated by ‘Google’ Ireland Limited, Gordon House, Barrow Street, Dublin 4 (‘Google’). Google is a company incorporated and operated under Irish law (registration number: 368047).
We integrate the map service for the purpose of displaying an interactive map directly on our website. The map service enables you to use the website conveniently. The map service enables us to offer you this helpful function and thus expand our website with an exciting and user-friendly function.
We integrate the map service on our website via an interface. The interface is a so-called inline frame (‘iframe’). An iframe is a website element (HTML element) that is used to integrate web content, such as the map service, as an independent document on a website. To protect your data, the interface is only activated when you click on the map service (so-called two-click solution). The two-click solution works as follows: first click = you come to our site; second click = you click on the map service and activate it.
We implement the integration of the map service via the interface and the two-click solution because, although the map service is integrated by us on the website, it is only provided and executed by our cooperation partner Google. The map service is provided and executed as follows: Your browser sends a request (so-called HTTP request) to the Google server. Your browser transmits your IP address (including other connection data), the content of your search request and the coordinates (longitude and latitude) via the Internet to the Google server in order to establish the connection to the server and subsequently provide Google with a correct response to your map service search request.
The legal basis for the integration of the map service on our website by us is Art. 6 para. 1 sentence 1 letter f GDPR. Our legitimate interest is to enable you to use the map service and thus add an exciting and user-friendly function to our website. The legal basis for storing and reading the cookie on your computer, which documents the activation of the map service, is Art. 6 para. 1 sentence 1 letter a GDPR (your consent). You declare this via our consent banner. We delete the cookie after 6 months. The period begins at the end of your visit to our website.
In order to map the embedding of the map service and the data protection responsibilities, we have concluded an agreement ‘Google Controller-Controller Data Protection Terms’ (‘Agreement’) with Google. This agreement governs the processing of your data by Google and us. We have agreed with Google that each of us is responsible for our own part. For our part, we each determine the purposes and means of processing in accordance with the provisions of the GDPR and other applicable data protection laws. Furthermore, we have agreed that data can only be transferred to third countries on the basis of and in accordance with the GDPR and that, as a data subject within the meaning of the GDPR, you can contact Google and us with regard to all rights.
Please note: Once the map service has been activated, Google is the data controller under data protection law for this data transfer and other associated data processing. If you are logged in to Google, Google can assign the processed data directly to your Google user account. If you do not want such an assignment by Google, you should log out of your Google user account beforehand. Even if you are not logged in, Google can assign an identification number (‘ID’) to you and recognise you as a user. Google may store this data in the form of user profiles and use it for the purposes of advertising, market research and/or customising the website, e.g. to offer you products tailored to your interests.
It is possible that your data could be transferred to the USA or another third country. According to Section 5 of the agreement, such a transfer could only take place in accordance with the GDPR.
Further information on the processing of your data by Google can be found here:
https://policies.google.com/privacy (Privacy policy)
https://policies.google.com/terms (Terms of use)
YouTube
We have integrated YouTube components on our website.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
When you access an individual page of our website that contains a YouTube component (video), your Internet browser is prompted by the component to download a corresponding representation of the component. This tells YouTube which specific subpages you have visited.
If you are logged in to YouTube at the same time, YouTube can track which of our subpages containing a video you have visited.
If you do not want information to be transmitted to YouTube, log out of YouTube before you visit our website.
You can find further data protection information from Google and YouTube at: https://www.google.de/intl/de/policies/privacy/
Duration of storage and routine deletion and blocking of personal data
We store your personal data only for the time frame that results from the purpose-specific processing or other legal regulations. For the duration of storage, we comply with the statutory retention periods. Your data will then be blocked or deleted as a matter of routine if the storage purpose no longer applies or the statutory retention period has expired.
The temporary storage of the IP addresses of the website visitors can be justified with the protection of the legitimate own interests, if this is necessary to ensure the security of the website against attacks.
Existence of automated decision-making
We do not use automated decision-making.
Purpose-Restricted Use of Data
We observe the principle of earmarked use of data and collect, process and store your personal data only for the purposes for which you have given it to us. Your personal data will not be passed on to third parties without your express consent, unless this is necessary for the provision of the service or for the execution of the contract. The transmission to state institutions and authorities entitled to receive information also only takes place within the framework of the statutory information obligations or if we are obliged to provide information by a court decision.
We also take internal data protection very seriously. Our employees and the service companies commissioned by us have been sworn to secrecy and to compliance with data protection regulations.
AUpdating and changing this data protection declaration
This data protection declaration is currently valid and has the status of October 2022. The further development of our website and our offer as well as legal and official requirements require the regular review and, if necessary, amendment of our data protection guidelines. The current status of our data protection declaration can be accessed at any time on our website.