PRIVACY POLICY
§ 1 INFORMATION ABOUT THE COLLECTION OF PERSONAL DATA
(1) The following information concerns the collection of personal data while using this website. Personal data are all data that can be personally related to you, e.g. name, address, email addresses, user behaviour.
(2) The controller pursuant to Article 4 (7) EU General Data Protection Regulation (GDPR) is SCHLUTIUS Data Privacy & Compliance GmbH (see our
imprint).
(3) When you contact us by email or using a contact form, the data you give us (your email address, your name and phone number if applicable) is stored by us in order to answer your question.
(4) For the processing operations carried out by us, we indicate in each case how long the data will be stored by us and when it will be deleted or blocked. Unless an explicit storage period is specified below, your personal data will be deleted or blocked as soon as the purpose or legal basis for the storage no longer applies. In principle, your data will only be stored on our servers in Germany, subject to any transfer that may take place in accordance with the regulations in § 1 (6) and (7).
However, storage may take place beyond the specified time in the event of a (threatened) legal dispute with you or other legal proceedings, or if storage is provided for by legal regulations to which we are subject as the responsible party (e.g. Section 257 HGB, Section 147 AO). If the storage period prescribed by the statutory provisions expires, the personal data will be blocked or deleted unless further storage by us is necessary and there is a legal basis for this.
(5) We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties (e.g. TSL encryption for our website), taking into account the state of the art, implementation costs and the nature, scope, context and purpose of the processing, as well as the existing risks of a data breach (including its probability and impact) for the data subject. Our security measures are continuously improved in line with technological developments.
(6) We use external domestic and foreign service providers (e.g. for IT, logistics, telecommunications, sales and marketing) to process our business transactions. These service providers only act on our instructions and are contractually obligated to comply with data protection regulations in accordance with Article 28 GDPR.
(7) In the course of our business relationships, your personal data may be passed on or disclosed to third party companies. These may also be located outside the European Economic Area (EEA), i.e. in third countries. Such processing takes place exclusively for the fulfillment of contractual and business obligations and to maintain your business relationship with us (the legal basis in each case is Article 6 (1) sentence 1 lit. b or lit. f in conjunction with Article 44 et seq. GDPR). We will inform you about the respective details of the transfer in the relevant places.
The European Commission certifies data protection comparable to the EEA standard for some third countries by means of so-called adequacy decisions. However, in other third countries to which personal data may be transferred, there may not be a consistently high level of data protection due to a lack of legal provisions. If this is the case, we ensure that data protection is adequately guaranteed. This is possible via binding company regulations, standard contractual clauses of the European Commission for the protection of personal data pursuant to Art. 46 (1) and (2) lit. c GDPR, certificates or recognized codes of conduct.
(8) We do not intend to use personal data collected from you for an automated decision-making process (including profiling).
§ 2 YOUR RIGHTS(1) You have the following rights towards us with regard to your personal data:
- Right to information
- Right to correction or deletion
- Right to restriction of processing
- Right to refusal of processing
- Right to data portability
(2) You also have the right to lodge a complaint about our processing of your personal data with a data protection authority.
§ 3 COLLECTION OF PERSONAL DATA WHEN YOU VISIT OUR WEBSITE
1. Visiting the website
If you are only using the website for information and do not register or transmit information to us in any other way, we only collect the personal data which your browser transmits to our server. If you wish to view our website, we collect the following data that are technically necessary for us to display our website to you and guarantee its stability and security (the legal basis is Article 6 (1) sentence 1 lit. f GDPR):
- IP address
- Date and time of the enquiry
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status / HTTP status code
- Quantity of data transferred in each case
- The website from which the request comes
- Browser
- Operating system and its interface
- Language and version of the browser software
2. Cookies
(1) Cookies are stored on your computer system whenever you use our website. Cookies are text files that are stored in the internet browser or by the internet browser in your computer system. A cookie can be stored in your operating system whenever you access a website. This cookie contains a characteristic string of characters that allow your browser to be identified when you visit the website again in the future.
(2) Cookies can be differentiated in different ways:
First, we can differentiate between first-party cookies and third-party cookies, depending on the origin of the cookie:
First-party cookies are cookies that are placed and retrieved by the website operator as the controller or a processor commissioned by the website operator. Third-party cookies are cookies that are placed and retrieved by parties that are controllers other than the website operator which do not act as processors on behalf of the website operator.
We can also differentiate between transient and persistent cookies, depending on their duration:
Transient cookies (session cookies) are cookies that are deleted automatically when you close your browser. Persistent cookies are cookies that remain stored on your end device for a certain period of time after you have closed your browser.
Furthermore, we can differentiate between cookies that do not require consent and cookies that require consent:
Depending on their function and purpose, the use of certain cookies may require the user’s consent. In this respect, cookies can be differentiated depending on whether their use requires the user’s consent. Cookies that are required for the operation of the website (technically necessary cookies) do not require consent.
(3) You can give your consent using a “cookie banner”:
When you access our website, we display a “cookie banner”. Our cookie banner allows you to declare that you consent to the use of all cookies requiring consent on this website by clicking on “Allow all”. If you do not provide such consent, we do not enable any cookies requiring consent. By clicking on “Deny”, you can completely reject the use of cookies that require consent, or by clicking on "Allow selection", you can consent to the use of cookies in the previously selected cookie categories ("Necessary", "Preferences", "Statistics" and "Marketing"). Alternatively, you have the option to access our "Cookie Dashboard" by
clicking on the "Details" link. In the cookie dashboard, you can make an
individual selection of cookies. Furthermore, by clicking on the icon displayed
at the bottom right of the website you can also see the status of your consent at any time and revoke or change your consent (clicking on "Change your consent" will take you back to the cookie dashboard). We store your cookie settings on your end device in the form of a - technicall necessary and therefore consent-free - cookie to determine whether you have already made decisions regarding cookies from our website when you visit our website again.
Cookies that are required for the operation of the website cannot be disabled using the cookie management feature of this website. However, you can disable such cookies in general in your browser at any time. Different browsers provide different options for the configuration of cookie settings in the browser. Additional comprehensive information on this subject can be found on http://www.allaboutcookies.org/ge/cookies-verwalten, for example. Please note, however, that some features of the website may not properly work (anymore) if you disable cookies in your browser in general.
§ 4 REVOCATION OR WITHDRAWAL OF CONSENT TO THE PROCESSING OF YOUR DATA
(1) If you have agreed to the processing of your data, you can revoke this at any time. After you have pronounced it to us, the revocation influences the permissibility of processing your personal data.
(2) If we base the processing of your personal information on consideration of interests, you can revoke your consent to processing. This is the case, in particular, if processing is not necessary for fulfilment of a contract with you, which is always outlined by us in the subsequent description of the functions. When exercising the right of revocation, we ask you to cite the reasons why we should not process your personal information as we have previously done. In the case of a justified revocation, we will examine the situation and either stop or adjust the data processing or convey to you our protection-worthy and necessary reasons for continuing the processing.
(3) Of course, you can revoke consent to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your advertising revocation at the following contact points: info@schlutius-privacy.de.