Thank you for your interest in our online presence. The protection and security of your personal data is our top priority. Personal information includes all types of information that identifies you as a person. Therefore, we adhere strictly to the statutory provisions of the Federal Data Protection Act (BDSG-new), the EU Data Protection Regulation (DSGVO) and the Telemedia Act (TMG).
Please note that Internet-based data transmission (for example, in the case of communication via e-mail) can have security gaps and that complete protection of the data from access by third parties is thus impossible. Therefore, it is recommended to use the postal service when sending very sensitive data or information.
1. Responsible in terms of the EU-DSGVO
2. Collecting general information
3.1 Technically necessary cookies set by our website
4. Data security
5. Contact form and use of our e-mail address
6. Deletion or blocking of data
7. Web Analysis
8. Social Media Plugins
9. Your rights towards the data controller
9.1 Right to information
9.2 Right to rectification
9.3 Right to cancellation (right to be forgotten)
9.3.1 Information to third parties
9.4 Right to restriction of processing
9.5 Right to information
9.6 Data transferability
9.7 Right to object
9.8 Automated decisions in individual cases including profiling
9.9 Right of revocation of the data protection consent
9.10 Right to complain to a supervisory authority
10. Existence of automated decision-making including profiling
11. Need to provide personal information
12. Legal basis of processing
1. Responsible in terms of the EU-DSGVORolf Kollosch
Klevinghauser Str. 33
Fon: +49 2338 5919320
Fax: +49 2338 5919486
2. Collecting general informationWhen you access our website, information of a general nature is automatically recorded. This information (server log files) contain
Browser type and version,
used operating system,
Website from which you visit us (referrer URL),
Website you visit (called URLs),
Date and time of your access,
Your Internet Protocol (IP) address,
the Internet service provider of the accessing computer.
These anonymous data are stored separately from any personal information that you may provide and so do not allow any conclusions to be drawn about a particular person.
This information is technically necessary and must be obtained when using the internet. This information is required in order to (1) correctly deliver the contents of our website, (2) to optimize the content of our website and to advertise it, (3) to ensure the long-term functioning of our information technology systems and the technology of our website, and (4 ) to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyberattack.
Anonymously collected data of this kind are statistically evaluated by us with the aim of optimizing our internet presence and the underlying technology as well as increasing data protection and data security in order to ensure the best possible level of protection for the personal data processed by us.
The anonymous data of the server log files are stored separately from all specified personal data.
3. CookiesOur website uses so-called cookies. Cookies are text files that are stored on your computer in the Internet browser or by the Internet browser.
Some elements of our website require that the calling browser can be identified even after a page change. For example, to store login information. The cookies we use are technically necessary cookies which are automatically deleted when the browser is closed. Some cookies remain stored on your device and enable recognition the next time you visit the site. The legal basis for data processing is Art. 6 Para. 1 lit. f of the Basic Data Protection Regulation (DSGVO), which enables us to process data in the event of a justified interest. In this case, our legitimate interest is to offer you a technically error-free and functionally optimised website.
You can set your browser so that you are informed about the setting of cookies and then allow these cookies only in individual cases. You can also generally exclude the acceptance of cookies or accept them only in certain cases. You can also set your browser so that cookies are deleted after closing the browser window. Each browser differs in the way it manages the cookie settings. These are described in the help menu of each browser, which explains how you can change your cookie settings.
Please note that if you do not accept cookies, our website will not function properly.
3.1 Technically necessary cookies set by our websiteThe cookie PHPSESSIDD is a so-called session cookie. As anonymous user information, this cookie contains a unique ID that is used to associate the user with the page visited in order to ensure the basic functionality of this Web site. The session cookie is usually deleted when the browser is closed.
4. Data securityTo protect the security of your data during transmission, we use state-of-the-art encryption procedures over an SSL or TLS connection.
By encrypting your sensitive personal data can not be intercepted and viewed by unauthorized third parties. An encrypted connection is indicated by the fact that the address line of the browser starts with "https: //" and the lock symbol in the browser line.
5. Contact form and use of our e-mail addressIf you contact us by e-mail or contact form, the information you provide will be used and stored for the purpose of processing the request and for possible follow-up questions. The mandatory information in the form of the contact form can be recognized by the correspondingly marked input fields. Upon completion of the process, your data will be deleted. A passing on to third does not take place. A comparison of the data collected with data, which may be collected by other components of our site, is also not done.
6. Deletion or blocking of dataWe adhere to the principles of data avoidance and data economy. Therefore, we only store your personal data for as long as is necessary to achieve the purposes stated here, or as provided for by the legislator's commercial and fiscal storage and retention periods.
After discontinuation of the respective purpose or expiry of these deadlines, the corresponding data will be routinely and in accordance with the statutory provisions blocked or deleted, if they are no longer required to fulfill the contract or contract.
7. Web AnalysisWe do not use web analytics tools.
8. Social Media PluginsOur websites do not use social media plugins.
If you want to claim rights as an affected person, you can contact the person responsible under point 1 at any time.
9.1 Right to informationAny person concerned by the processing of personal data shall have the right at any time to obtain from the controller any information free of charge concerning the personal data stored about him and a copy of that information. You can also get information about the following information:
- the processing purposes,
- the categories of personal data being processed,
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular for recipients in third countries or international organizations,
- if possible, the planned duration for which the personal data are stored or, if this is not possible, the criteria for determining that duration,
- the existence of a right to rectification or erasure of the personal data concerning him, or of processing by the person responsible or a right to object to such processing,
- the existence of a right to complain to a supervisory authority (responsible is the state data protection officer of the federal state in which we are located, addresses and links can be found here),
- if the personal data are not collected from the data subject: all available information on the source of the data,
- the existence of automated decision-making including profiling in accordance with Article 22 (1) and (4) DSGVO and, at least in these cases, meaningful information about the logic involved and the scope and intended impact of such processing on the data subject.
In addition, the data subject has a right of access as to whether personal data has been transmitted to a third country or to an international organization. If that is the case, then the data subject has the right to obtain information about the appropriate guarantees in connection with the transfer.
9.2 Right to rectificationAny person affected by the processing of personal data has the right to demand the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.
9.3 Right to cancellation (right to be forgotten)Each data subject shall have the right to require the controller to immediately delete the personal data concerning him, provided that one of the following reasons is satisfied and the processing is not required:
- The personal data has been collected for such purposes or otherwise processed for which they are no longer necessary.
- The person concerned revokes the consent on which the processing was based on the provisions of Article 6 (1) (a) DSGVO or Article 9 (2) (a) DSGVO and lacks any other legal basis for the processing.
- According to Art. 21 (1) DSGVO, the data subject submits an objection to the processing and there are no legitimate reasons for the processing, or the person concerned objects to the processing pursuant to Art. 21 (2) DSGVO.
- The personal data were processed unlawfully.
- The erasure of personal data is necessary to fulfill a legal obligation under Union or national law to which the controller is subject.
- The personal data were collected in relation to information society services offered pursuant to Art. 8 (1) DSGVO.
If one of the above reasons is correct and an affected person wishes to arrange for the deletion of personal data stored by us, they may at any time contact the person responsible under point 1 above. The deletion request will be fulfilled immediately.
9.3.1 Information to third partiesIf the person responsible for data processing has made the personal data relating to you public and is in accordance with. Article 17 (1) of the DSGVO, it shall take appropriate measures, including technical means, to inform data controllers who process the personal data that you have been identified as being affected, taking into account available technology and implementation costs Persons requesting deletion of all links to such personal data or of copies or replications of such personal data. The person responsible under point 1 will arrange the necessary in individual cases.
9.3.2 ExceptionsThe right to erasure does not exist if the processing is necessary
- to exercise the right to freedom of expression and information;
- to fulfill a legal obligation required by the law of the Union or of the Member States to which the data controller is subject, or to carry out a task which is in the public interest or in the exercise of public authority delegated to the controller;
- for reasons of public interest in the field of public health pursuant to Art. 9 (2) lit. h and i and Art. 9 (3) DSGVO;
- for archival purposes of public interest, scientific or historical research purposes or for statistical purposes acc. Article 89 (1) DSGVO, to the extent that that law is likely to render impossible or seriously affect the attainment of the objectives of that processing, or
- to assert, exercise or defend legal claims.
9.4 Right to restriction of processingAny person affected by the processing of personal data shall have the right to require the controller to restrict the processing if any of the following conditions apply:
- The accuracy of the personal data is contested by the data subject for a period of time that enables the controller to verify the accuracy of the personal data.
- The processing is unlawful, the data subject refuses to delete the personal data and instead requests the restriction of the use of personal data.
- The controller no longer needs the personal data for the purposes of processing, but the data subject requires them to assert, exercise or defend legal claims.
- The person concerned has objection to the processing acc. Art. 21 para. 1 DSGVO and it is not yet clear whether the legitimate reasons of the person responsible outweigh those of the data subject.
If one of the above conditions is met and an affected person wishes to request the restriction of personal data stored by us, they may at any time contact the person named under point 1. He will cause the restriction of processing.
9.5 Right to informationIf you have asserted the right of rectification, erasure or restriction of the processing to the controller of the data processing, it is obliged to notify all recipients to whom the personal data you have disclosed this rectification or deletion of the data or restriction of processing because, this proves to be impossible or is associated with a disproportionate effort.
You have a right to the person responsible to be informed about these recipients.
9.6 Data transferabilityAny person affected by the processing of personal data shall have the right to receive in a structured, common and machine-readable format personal data relating to him / her provided to a controller by the data subject. It also has the right to transmit this data to another person without hindrance by the controller to whom the personal data was provided, provided that the processing is based on the consent pursuant to Art. 6 (1) (a) DSGVO or Art. 9 (2) Subparagraph (a) of the DSGVO or on a contract pursuant to Article 6 (1) (b) DSGVO and processing by means of automated procedures, unless the processing is necessary for the performance of a public-interest or public-authority task; which has been transferred to the responsible person.
Furthermore, in exercising their right to data portability under Article 20 (1) of the DSGVO, the data subject has the right to obtain that the personal data are transmitted directly from one controller to another, insofar as this is technically feasible and if not so the rights and freedoms of others are affected.
9.7 Right to objectAny person affected by the processing of personal data shall have the right, at any time, for reasons arising from their particular situation, to prevent the processing of personal data relating to them which, on the basis of Article 6 (1) lit. e or f DSGVO takes action to file an objection with effect for the future. This also applies to profiling based on these provisions.
In the event of an objection, we will no longer process personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh the interests, rights and freedoms of the data subject or the processing is for the purpose of asserting, exercising or defending legal claims.
If we process personal data in order to operate direct mail, the data subject has the right to object at any time to the processing of personal data for the purposes of such advertising. This also applies to the profiling, as far as it is associated with such direct mail. If the data subject objects to processing for direct marketing purposes, we will no longer process the personal data for these purposes.
The data subject is free, in the context of the use of information society services, notwithstanding Directive 2002/58 / EC, to exercise his right of opposition by means of automated procedures using technical specifications.
9.8 Automated decisions in individual cases including profilingAny person concerned by the processing of personal data shall have the right not to be subject to a decision based solely on automated processing (including profiling), which has a legal effect on it or similarly significantly impairs it, unless Decision (1) does (2) is permissible under Union or Member State legislation to which the controller is subject, and where such legislation provides for appropriate measures to safeguard the rights and freedoms, and the legitimate interests of the data subject or (3) with the express consent of the data subject.
If the decision (1) is required for the conclusion or performance of a contract between the data subject and the controller or (2) it is done with the express consent of the data subject, we shall take appropriate measures to safeguard the rights, freedoms and legitimate interests of the data subject person, including at least the right to obtain the intervention of a person by the controller, to express his / her own position and to contest the decision.
9.9 Right of revocation of the data protection consentAny person affected by the processing of personal data has the right to withdraw consent to the processing of personal data at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
9.10 Right to complain to a supervisory authorityWithout prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of its residence, place of work or place of alleged infringement, if you believe that the processing of the personal data concerning you is against the DSGVO violates.
The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the General Data Protection Regulation.
10. Existence of automated decision-making including profilingAs a responsible company we refrain from automatic decision-making or profiling.
11. Need to provide personal informationWe clarify that the provision of personal data is partly required by law (eg tax regulations) or may arise from contractual arrangements (eg details of the contracting party). Sometimes it may be necessary for you to conclude a contract that you provide us with personal data that must subsequently be processed by us.
For example, you may be required to provide us with personal information when we contract with you. Failure to provide your personal information would mean that the contract could not be concluded with you. The responsible person can inform you on a case-by-case basis whether the provision of the personal data is required by law or contract or for the conclusion of the contract, if there is an obligation to provide the personal data and what would have resulted from the non-provision of the personal data. For this purpose, contact the person responsible under point 1.
12. Legal basis of processingArt. 6 para. 1 lit. a DSGVO serves as a legal basis for processing operations where we obtain consent for a particular processing purpose. If the processing of personal data is necessary to fulfill a contract of which the data subject is a party, as is the case, for example, in processing operations necessary for the supply of goods or the provision of any other service or consideration, processing shall be based on Art. 6 para. 1 lit. b DSGVO. The same applies to processing operations that are necessary to carry out pre-contractual measures, for example in cases of inquiries regarding our products or services.
If our company is subject to a legal obligation which requires the processing of personal data, such as the fulfillment of tax obligations, the processing is based on Art. 6 para. 1 lit. c DSGVO. In rare cases, the processing of personal data may be required to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our premises were injured and his or her name, age, health insurance or other vital information would have to be passed on to a doctor, hospital or other third party. Then processing would be based on Art. 6 para. 1 lit. d DSGVO are based.
In the end, processing operations could be based on Art. 6 para. 1 lit. f DSGVO are based. This legal basis is based on processing operations that are not covered by any of the above mentioned legal bases if processing is necessary to safeguard our legitimate interests or a third party, provided the interests, fundamental rights and fundamental freedoms of the data subject do not prevail. Such processing operations are particularly allowed to us because they have been specifically mentioned by the European legislator. In that regard, it considered that a legitimate interest could be assumed if the data subject is a customer of the controller (Recital 47, second sentence, DSGVO).