DATENSCHUTZERKLÄRUNG
We are very pleased about your interest in our company. Data protection is of particular importance to the management of 'F.Willibald GmbH.' The use of the websites of 'F.Willibald GmbH' is generally possible without providing any personal data. However, if a data subject wishes to make use of special services of our company via our website, the processing of personal data may be required. If the processing of personal data is necessary and there is no legal basis for such processing, we will generally obtain the consent of the data subject.
The processing of personal data, such as the name, address, email address, or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation and in compliance with the country-specific data protection regulations applicable to 'F.Willibald GmbH.' Through this privacy policy, our company seeks to inform the public about the type, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights through this privacy policy.
F.Willibald GmbH,' as the controller responsible for processing, has implemented numerous technical and organizational measures to ensure the most comprehensive protection possible of personal data processed via this website. However, internet-based data transmissions can fundamentally have security gaps, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us via alternative means, such as by telephone.
1. Definitions
The privacy policy of 'F.Willibald GmbH' is based on the terminology used by the European legislator when adopting the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easy to read and understand for both the public as well as our customers and business partners. To ensure this, we would like to explain the terminology used in advance.
In this privacy policy, we use the following terms, among others:
a) Personal data
Personenbezogene Daten sind alle Informationen, die sich auf eine identifizierte oder identifizierbare natürliche Person (im Folgenden „betroffene Person“) beziehen. Als identifizierbar wird eine natürliche Person angesehen, die direkt oder indirekt, insbesondere mittels Zuordnung zu einer Kennung wie einem Namen, zu einer Kennnummer, zu Standortdaten, zu einer Online-Kennung oder zu einem oder mehreren besonderen Merkmalen, die Ausdruck der physischen, physiologischen, genetischen, psychischen, wirtschaftlichen, kulturellen oder sozialen Identität dieser natürlichen Person sind, identifiziert werden kann.
b) Data subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller responsible for the processing.
c) Processing
Processing is any operation or set of operations performed on personal data, whether or not by automated means, such as the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, deletion or destruction.
d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.
e) Profiling
Profiling is any form of automated processing of personal data that involves using that personal data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements of that natural person.
f) Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is stored separately and is subject to technical and organizational measures that ensure that the personal data is not attributed to an identified or identifiable natural person.
g) Controller or controller responsible for processing
Controller or controller responsible for processing is the natural or legal person, authority, agency, or other body that alone or jointly with others determines the purposes and means of processing personal data. If the purposes and means of such processing are determined by Union law or the law of the member states, the controller or the specific criteria for their designation may be provided for by Union law or the law of the member states.
h) Processor
A processor is a natural or legal person, authority, agency, or other body that processes personal data on behalf of the controller.
i) Recipient
A recipient is a natural or legal person, authority, agency, or other body to whom personal data are disclosed, regardless of whether it is a third party or not. Authorities that may receive personal data in the course of a specific investigation under Union law or the law of the member states are not considered recipients.
j) Third party
A third party is a natural or legal person, authority, agency, or other body other than the data subject, the controller, the processor, and the persons who are authorized to process the personal data under the direct authority of the controller or the processor.
k) Consent
Consent is any freely given, specific, informed, and unambiguous indication of the data subject's wishes, expressed in the form of a statement or a clear affirmative action, by which the data subject signifies their agreement to the processing of personal data concerning them.
2. Name and address of the controller responsible for processing
The controller within the meaning of the General Data Protection Regulation, other applicable data protection laws in the member states of the European Union, and other provisions with data protection implications is the:
F.Willibald GmbH
Pfarrheimplatz 3
4873 Frankenburg
Austria
Tel.: +43 7683 8994
E-Mail: willibald@restposten.co.at
3. Cookies
The websites of 'F.Willibald GmbH' use cookies. Cookies are text files that are stored and saved on a computer system via an internet browser.
Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters that allows websites and servers to assign the specific internet browser in which the cookie was stored. This enables the visited websites and servers to distinguish the individual browser of the data subject from other internet browsers that contain different cookies. A specific internet browser can be recognized and identified through the unique cookie ID.
By using cookies, 'F.Willibald GmbH' can provide users of this website with more user-friendly services that would not be possible without the setting of cookies.
Through the use of cookies, the information and offers on our website can be optimized for the user. Cookies allow us, as mentioned before, to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, a user of a website that uses cookies does not have to enter their login credentials again with each visit to the website, as this is taken over by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in an online shop. The online shop remembers the items a customer has added to the virtual shopping cart via a cookie.
The data subject can prevent the setting of cookies by our website at any time by adjusting the settings of the internet browser used, thereby permanently objecting to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject disables the setting of cookies in the internet browser used, it may not be possible to use all features of our website to their full extent.
4. Collection of general data and information
The website of 'F.Willibald GmbH' collects a range of general data and information each time the website is accessed by a data subject or an automated system. This general data and information are stored in the server's log files. The following can be collected: (1) types and versions of browsers used, (2) the operating system used by the accessing system, (3) the website from which an accessing system arrives at our website (so-called referrer), (4) the subpages that are accessed via an accessing system on our website, (5) the date and time of access to the website, (6) an Internet Protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) other similar data and information that serve to prevent dangers in the event of attacks on our information technology systems.
When using this general data and information, 'F.Willibald GmbH' does not draw conclusions about the data subject. Instead, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website as well as the advertising for it, (3) ensure the permanent functionality of our information technology systems and the technology of our website, and (4) provide law enforcement agencies with the necessary information for prosecution in the event of a cyber attack. Therefore, these anonymously collected data and information are evaluated by 'F.Willibald GmbH' both statistically and with the aim of increasing data protection and data security in our company, ultimately ensuring an optimal level of protection for the personal data we process. The anonymous data from the server log files are stored separately from all personal data provided by a data subject.
5. Registration on our website
The data subject has the option to register on the website of the controller responsible for processing by providing personal data. The personal data transmitted to the controller responsible for processing is determined by the respective input mask used for registration. The personal data entered by the data subject is collected and stored exclusively for internal use by the controller responsible for processing and for its own purposes. The controller may arrange for the transfer to one or more processors, such as a parcel delivery service, which also uses the personal data solely for internal use attributable to the controller responsible for processing.
By registering on the website of the controller responsible for processing, the IP address assigned to the data subject by the Internet Service Provider (ISP), as well as the date and time of registration, are also stored. The storage of this data is based on the premise that only in this way can the misuse of our services be prevented, and this data may enable the investigation of offenses if necessary. In this regard, the storage of this data is necessary to secure the controller responsible for processing. This data is generally not shared with third parties unless there is a legal obligation to share it or the sharing serves the purpose of law enforcement.
The registration of the data subject by voluntarily providing personal data serves the controller responsible for processing to offer the data subject content or services that, by their nature, can only be offered to registered users. Registered individuals have the option to change the personal data provided during registration at any time or to have it completely deleted from the records of the controller responsible for processing.
The controller responsible for processing provides each data subject, upon request, with information about which personal data concerning them is stored. Furthermore, the controller corrects or deletes personal data at the request or suggestion of the data subject, provided that there are no legal retention obligations to the contrary. All employees of the controller responsible for processing are available to the data subject as contacts in this regard.
6. Contact options via the website
The website of 'F.Willibald GmbH' contains information required by law that enables quick electronic contact with our company and immediate communication with us, which also includes a general address for so-called electronic mail (email address). If a data subject contacts the controller responsible for processing via email or through a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data voluntarily provided by a data subject to the controller responsible for processing is stored for the purpose of processing or contacting the data subject. This personal data is not shared with third parties.
7. Routine deletion and blocking of personal data
The controller responsible for processing processes and stores personal data of the data subject only for the period necessary to achieve the storage purpose or as provided by the European directive and regulation issuer or another legislator in laws or regulations to which the controller is subject.
If the storage purpose no longer applies or if a storage period prescribed by the European directive and regulation issuer or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with legal regulations.
8. Rights of the data subject
a) Right to confirmation
Every data subject has the right granted by the European directive and regulation issuer to request confirmation from the controller responsible for processing as to whether personal data concerning them is being processed. If a data subject wishes to exercise this right to confirmation, they can contact an employee of the controller responsible for processing at any time.
b) Right to access
Every data subject affected by the processing of personal data has the right granted by the European directive and regulation issuer to receive, at any time, free information from the controller responsible for processing about the personal data stored concerning them and a copy of this information. Furthermore, the European directive and regulation issuer has granted the data subject access to the following information:
the purposes of processing
the categories of personal data that are processed
the recipients or categories of recipients to whom the personal data have been disclosed or will be disclosed, particularly in the case of recipients in third countries or international organizations
if possible, the planned duration for which the personal data will be stored, or, if this is not possible, the criteria used to determine that duration
the existence of a right to rectification or deletion of personal data concerning them, or to restrict processing by the controller, or a right to object to such processing
the existence of a right to lodge a complaint with a supervisory authority
if the personal data are not collected from the data subject: all available information about the source of the data
the existence of automated decision-making, including profiling, as referred to in Article 22(1) and (4) GDPR, and—at least in these cases—meaningful information about the logic involved, as well as the significance and the intended consequences of such processing for the data subject.
Furthermore, the data subject has the right to be informed whether personal data have been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards in connection with the transfer.
If a data subject wishes to exercise this right to access, they can contact an employee of the controller responsible for processing at any time.
c) Right to rectification
Every data subject affected by the processing of personal data has the right granted by the European directive and regulation issuer to request the immediate rectification of inaccurate personal data concerning them. Furthermore, the data subject has the right, taking into account the purposes of processing, to request the completion of incomplete personal data—also by means of a supplementary statement.
If a data subject wishes to exercise this right to rectification, they can contact an employee of the controller responsible for processing at any time.
d) Right to deletion (right to be forgotten)
Every data subject affected by the processing of personal data has the right granted by the European directive and regulation issuer to request the controller to delete personal data concerning them without delay, provided that one of the following reasons applies and the processing is not necessary:
The personal data were collected for purposes or processed in another manner for which they are no longer necessary. The data subject withdraws their consent on which the processing was based in accordance with Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, and there is no other legal basis for the processing.
The data subject objects to the processing in accordance with Article 21(1) of the GDPR, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in accordance with Article 21(2) of the GDPR.
The personal data were processed unlawfully.
The deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject.
The personal data were collected in relation to the offered services of the information society in accordance with Article 8(1) of the GDPR.
If one of the above reasons applies and a data subject wishes to request the deletion of personal data stored at 'F.Willibald GmbH,' they can contact an employee of the data controller at any time. The employee of 'F.Willibald GmbH' will ensure that the deletion request is addressed promptly.
If the personal data has been made public by 'F.Willibald GmbH' and our company, as the controller, is obliged to delete the personal data in accordance with Art. 17 (1) GDPR, 'F.Willibald GmbH' shall, taking into account the available technology and the cost of implementation, take appropriate measures, including technical ones, to inform other data controllers processing the published personal data that the data subject has requested the deletion of all links to this personal data or copies or replications of this personal data, as long as the processing is not required. The employee of 'F.Willibald GmbH' will take the necessary steps in each individual case.
e) Right to Restriction of Processing
Every person affected by the processing of personal data has the right, granted by the European legislator, to request the restriction of processing from the controller if one of the following conditions is met: The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
The processing is unlawful, the data subject opposes the erasure of the personal data and requests instead the restriction of their use.
The controller no longer needs the personal data for the purposes of processing, but the data subject requires them for the establishment, exercise, or defense of legal claims.
The data subject has objected to the processing pursuant to Article 21(1) GDPR, and it has not yet been determined whether the legitimate grounds of the controller override those of the data subject.
If any of the above conditions are met and a data subject wishes to request the restriction of personal data stored by "F. Willibald GmbH," they may contact an employee of the data controller at any time. The employee of "F. Willibald GmbH" will initiate the restriction of processing.
f) Right to Data Portability
Every person affected by the processing of personal data has the right granted by the European legislator to receive the personal data concerning them, which has been provided by the data subject to a controller, in a structured, commonly used, and machine-readable format. They also have the right to transmit those data to another controller without hindrance from the controller to whom the personal data has been provided, provided that the processing is based on consent according to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR or on a contract according to Article 6(1)(b) of the GDPR and that the processing is carried out by automated means, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. Furthermore, when exercising their right to data portability according to Article 20(1) of the GDPR, the data subject has the right to obtain that the personal data be transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others.
To exercise the right to data portability, the data subject can contact a staff member of "F. Willibald GmbH" at any time.
g) Right to Object
Every data subject has the right granted by the European legislator to object at any time, for reasons arising from their particular situation, to the processing of their personal data, which is carried out based on Article 6(1)(e) or (f) of the GDPR. This also applies to profiling based on these provisions. In the event of an objection, “F.Willibald GmbH” will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject, or the processing is necessary for the establishment, exercise, or defense of legal claims.
If “F.Willibald GmbH” processes personal data for the purpose of direct marketing, the data subject has the right to object at any time to the processing of their personal data for such advertising purposes. This also applies to profiling insofar as it is related to such direct marketing. If the data subject objects to the processing for direct marketing purposes, “F.Willibald GmbH” will no longer process the personal data for these purposes.
Additionally, the data subject has the right to object, on grounds relating to their particular situation, to the processing of personal data concerning them that is carried out by “F.Willibald GmbH” for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1) of the GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.
To exercise the right to object, the data subject may directly contact any employee of “F.Willibald GmbH” or another employee. Furthermore, the data subject is free to exercise their right to object in connection with the use of information society services, regardless of Directive 2002/58/EC, using automated procedures that utilize technical specifications.
h) Right to Automated Individual Decisions, Including Profiling
Every person affected by the processing of personal data has the right granted by the European legislator not to be subjected to a decision based solely on automated processing— including profiling—that produces legal effects concerning them or significantly affects them in a similar way, unless the decision (1) is necessary for entering into or fulfilling a contract between the affected person and the data controller, or (2) is permitted by Union or Member State law to which the controller is subject and which provides for appropriate measures to safeguard the rights and freedoms and the legitimate interests of the affected person, or (3) is based on the explicit consent of the affected person.
If the decision (1) is necessary for entering into or fulfilling a contract between the affected person and the data controller, or (2) is made with the explicit consent of the affected person, the "F. Willibald GmbH" will take appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the affected person. This includes at least the right to obtain intervention from a person on the part of the controller, to express their point of view, and to contest the decision.
If the affected person wishes to assert their rights regarding automated decisions, they can contact a member of the data controller's staff at any time.
i) Right to Withdraw Consent for Data Protection
Every individual affected by the processing of personal data has the right granted by the European Regulation and Directive to withdraw their consent for the processing of personal data at any time.
If the affected individual wishes to exercise their right to withdraw consent, they can contact a representative of the data controller at any time.
9. Data Protection in Applications and the Application Process
The controller collects and processes the personal data of applicants for the purpose of managing the application process. The processing may also be carried out electronically. This is particularly the case when an applicant submits their application documents electronically, for example, via email or through a web form located on the website of the controller. If the controller enters into an employment contract with an applicant, the transmitted data will be stored for the purpose of managing the employment relationship in compliance with legal regulations. If no employment contract is concluded by the controller with the applicant, the application documents will be automatically deleted two months after the notification of the rejection decision, unless there are other legitimate interests of the controller that oppose such deletion. Other legitimate interests in this context may include a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).
10. Data Protection Provisions for the Use and Application of Facebook
The data controller has integrated components of the company Facebook on this website. Facebook is a social network.
A social network is an online social gathering place, a virtual community that typically allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for exchanging opinions and experiences or enable the online community to provide personal or business-related information. Facebook allows users of the social network, among other things, to create private profiles, upload photos, and connect through friend requests.
Betreibergesellschaft von Facebook ist die Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. Für die Verarbeitung personenbezogener Daten Verantwortlicher ist, wenn eine betroffene Person außerhalb der USA oder Kanada lebt, die Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Each time an individual page of this website, operated by the data controller and containing a Facebook component (Facebook plug-in), is accessed, the web browser on the affected person's information technology system is automatically prompted by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. An overview of all Facebook plug-ins can be accessed at Facebook Plugins. As part of this technical process, Facebook becomes aware of which specific subpage of our website is being visited by the affected person.
If the affected person is logged into Facebook simultaneously, Facebook recognizes with each visit to our website by the affected person and throughout their stay on our website which specific subpage is being visited. This information is collected by the Facebook component and associated with the respective Facebook account of the affected person. If the affected person clicks one of the integrated Facebook buttons on our website, such as the "Like" button, or leaves a comment, Facebook assigns this information to the personal Facebook user account of the affected person and stores this personal data.
Facebook receives information through the Facebook component whenever the affected person visits our website, as long as the affected person is logged into Facebook at the time of accessing our website; this occurs regardless of whether the affected person clicks on the Facebook component or not. If the affected person does not wish to transmit this information to Facebook, they can prevent the transmission by logging out of their Facebook account before accessing our website.
The data policy published by Facebook, available at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing, and use of personal data by Facebook. It also explains the privacy settings that Facebook offers to protect the affected person's privacy. Additionally, various applications are available that allow users to suppress data transmission to Facebook. Such applications can be utilized by the affected person to prevent data transmission to Facebook.
11. Privacy Policy Regarding the Use of Google Analytics (with Anonymization Feature)
The data controller has integrated the Google Analytics component (with anonymization feature) on this website. Google Analytics is a web analysis service. Web analysis refers to the collection, gathering, and evaluation of data regarding the behavior of visitors to websites. A web analysis service collects data about, among other things, which website a user came from (known as the referrer), which subpages of the website were accessed, how often, and the duration of time spent on a subpage. Web analysis is primarily used to optimize a website and to perform cost-benefit analyses of online advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. The data controller uses the add-on “_gat._anonymizeIp” for web analysis via Google Analytics. This add-on shortens and anonymizes the IP address of the user's internet connection by Google when accessing our websites from a member state of the European Union or from another contracting state of the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the visitor traffic on our website. Google uses the collected data and information to evaluate the use of our website, compile online reports that show the activities on our website, and provide additional services related to the use of our website.
Google Analytics sets a cookie on the information technology system of the affected person. What cookies are has already been explained above. With the placement of the cookie, Google is enabled to analyze the use of our website. Each time a user accesses one of the individual pages of this website, operated by the data controller and on which a Google Analytics component is integrated, the internet browser on the affected person's information technology system is automatically prompted by the respective Google Analytics component to transmit data for online analysis to Google. Within this technical procedure, Google becomes aware of personal data, such as the IP address of the affected person, which Google uses to track the origin of visitors and clicks and subsequently enable commission accounting. The cookie stores personal information, such as the time of access, the location from which the access originated, and the frequency of visits to our website by the affected person. With each visit to our websites, this personal data, including the IP address of the internet connection used by the affected person, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share these personal data collected through the technical process with third parties.
The affected person can prevent the placement of cookies by our website at any time, as previously described, by making a corresponding setting in the browser used, thereby permanently opposing the placement of cookies. Such a setting in the browser would also prevent Google from placing a cookie on the information technology system of the affected person. Additionally, any cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.
Furthermore, the affected person has the option to object to the collection of data generated by Google Analytics related to the use of this website and to prevent its processing by Google. To do this, the affected person must download and install a browser add-on via the link https://tools.google.com/dlpage/gaoptout. This browser add-on communicates with Google Analytics via JavaScript, informing it that no data and information about visits to websites should be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google. If the affected person's information technology system is later deleted, formatted, or reinstalled, the affected person must reinstall the browser add-on to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the affected person or another person within their sphere of influence, there is the option for reinstallation or reactivation of the browser add-on.
Further information and the applicable data protection regulations of Google can be accessed at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail at this link: https://www.google.com/intl/de_de/analytics/.
12. Data Protection Regulations for the Use and Application of Google AdWords
The data controller has integrated Google AdWords on this website. Google AdWords is an online advertising service that allows advertisers to place ads in Google's search results as well as in the Google advertising network. Google AdWords enables an advertiser to predefine certain keywords, whereby an ad is displayed in Google’s search results only when a user retrieves a search result relevant to those keywords. In the Google advertising network, the ads are distributed across theme-relevant websites using an automated algorithm while considering the predefined keywords.
The operating company of the Google AdWords services is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. The purpose of Google AdWords is to promote our website by displaying interest-relevant advertising on third-party websites and in Google's search engine results, as well as displaying third-party advertisements on our website. If an affected person arrives at our website via a Google ad, Google places a so-called conversion cookie on the affected person's information technology system. As explained earlier, cookies are small text files. A conversion cookie expires after thirty days and is not used to identify the affected person. The conversion cookie tracks whether specific subpages, such as the shopping cart of an online shop system, have been accessed on our website, provided the cookie has not yet expired. With the conversion cookie, both we and Google can track whether an affected person who arrived at our website via an AdWords ad generated revenue, meaning whether a purchase was completed or abandoned. The data and information collected through the use of the conversion cookie are used by Google to create visit statistics for our website. We use these visit statistics to determine the total number of users who were referred to us through AdWords ads, allowing us to assess the success or failure of the respective AdWords ad and optimize our future AdWords campaigns. Neither our company nor other advertisers using Google AdWords receive information from Google that could identify the affected person.
Through the conversion cookie, personal information, such as the web pages visited by the affected person, is stored. Therefore, with each visit to our website, personal data, including the IP address of the internet connection used by the affected person, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may disclose the personal data collected through this technical procedure to third parties.
The affected person can prevent the setting of cookies by our website, as previously described, at any time by using the appropriate settings in their internet browser, thereby permanently opposing the setting of cookies. Such a setting in the internet browser would also prevent Google from placing a conversion cookie on the affected person's information technology system. In addition, a cookie already set by Google AdWords can be deleted at any time using the internet browser or other software programs.
Furthermore, the affected person has the option to object to interest-based advertising by Google. To do this, the affected person must access the link www.google.de/settings/ads from each of the internet browsers they use and make the desired settings there.
More information and the applicable privacy policies from Google can be accessed at https://www.google.de/intl/de/policies/privacy/.
13. Datenschutzbestimmungen zu Einsatz und Verwendung von Real Cookie Banner
Zur Verwaltung der eingesetzten Cookies und ähnlichen Technologien (Tracking-Pixel, Web-Beacons etc.) und diesbezüglicher Einwilligungen setzen wir das Consent Tool „Real Cookie Banner“ ein. Details zur Funktionsweise von „Real Cookie Banner“ findest du unter https://devowl.io/de/rcb/datenverarbeitung
Rechtsgrundlagen für die Verarbeitung von personenbezogenen Daten in diesem Zusammenhang sind Art. 6 Abs. 1 lit. c DS-GVO und Art. 6 Abs. 1 lit. f DS-GVO. Unser berechtigtes Interesse ist die Verwaltung der eingesetzten Cookies und ähnlichen Technologien und der diesbezüglichen Einwilligungen.
Die Bereitstellung der personenbezogenen Daten ist weder vertraglich vorgeschrieben noch für den Abschluss eines Vertrages notwendig. Du bist nicht verpflichtet die personenbezogenen Daten bereitzustellen. Wenn du die personenbezogenen Daten nicht bereitstellst, können wir deine Einwilligungen nicht verwalten.
14. Data Protection Provisions for the Use and Implementation of Wipe Analytics
The data controller has integrated components from the company Wipe Analytics on this website. Wipe Analytics is a web analytics service. Web analytics involves the collection, aggregation, and evaluation of data regarding the behavior of visitors to websites. A web analytics service collects data about, among other things, which website a data subject came from (so-called referrers), which subpages of the website were accessed, and how often and for what duration a subpage was viewed. Web analytics is primarily used for optimizing a website and for cost-benefit analysis of online advertising.
The operating company of Wipe Analytics is TENSQUARE GmbH, Wilhelminenstr. 29, 45881 Gelsenkirchen, Germany. Wipe Analytics places a cookie on the data subject's information technology system. What cookies are has already been explained above. Each time one of the individual pages of this website, operated by the data controller and on which a Wipe Analytics component is integrated, is accessed, the internet browser on the data subject's information technology system is automatically prompted by the respective Wipe Analytics component to transmit data to Wipe Analytics for marketing and optimization purposes.
In the course of this technical process, Wipe Analytics gains knowledge of data that is subsequently used to create pseudonymous usage profiles. The usage profiles generated in this way serve to analyze the behavior of the data subject who has accessed the data controller's website and are evaluated with the aim of improving and optimizing the website. The data collected via the Wipe Analytics component is not used to identify the data subject without obtaining separate and explicit consent from the data subject in advance. This data is not merged with personal data or with other data containing the same pseudonym.
The data subject can prevent the setting of cookies by our website, as previously described, at any time by adjusting the settings of their internet browser, thereby permanently objecting to the setting of cookies. Such a setting in the internet browser would also prevent Wipe Analytics from placing a cookie on the data subject's information technology system. Additionally, cookies already set by Wipe Analytics can be deleted at any time via the internet browser or other software programs.
Furthermore, the data subject has the option to object to the collection of data related to the use of this website generated by the Wipe Analytics cookie, as well as to prevent the processing of this data by Wipe Analytics. To do this, the data subject must click the cookie-setting button at the link https://www.wipe-analytics.de/opt-out, which sets an opt-out cookie. The opt-out cookie set with the objection will be stored on the information technology system used by the data subject. If the cookies on the data subject's system are deleted after an objection, the data subject must revisit the link and set a new opt-out cookie.
By setting the opt-out cookie, there is, however, a possibility that the websites of the data controller may no longer be fully usable for the data subject.
The applicable data protection regulations of Wipe Analytics can be accessed at https://www.wipe-analytics.de/privacy.
15. Data Protection Regulations on the Use and Application of golocal and Meinungsmeister
The data controller has integrated the Meinungsmeister widget on this website. The Meinungsmeister widget serves to display information about the reputation of the website operator to visitors. Through the Meinungsmeister widget, visitors can click to access a comprehensive reputation page at www.meinungsmeister.de, where further details can be viewed.
The operating company of the Meinungsmeister widget is GoLocal GmbH & Co. KG, Landsberger Str 94, 80339 Munich, Germany. GoLocal sets a session cookie on the visitor's information technology system. What cookies are has been explained above. The session cookie disappears as soon as the website is left. Each time a visitor accesses one of the individual pages of this website, which is operated by the data controller and on which the Meinungsmeister widget is integrated, the web browser on the visitor's information technology system is automatically prompted for technical reasons to transmit the IP address and the date of access. This data is deleted after 7 days.
The applicable data protection regulations of Meinungsmeister can be accessed at https://www.meinungsmeister.de/datenschutz/.
16. Legal basis for processing
Article 6(1)(a) of the GDPR serves as the legal basis for processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the fulfillment of a contract to which the data subject is a party, as is the case, for example, with processing operations required for the delivery of goods or the provision of other services or benefits, the processing is based on Article 6(1)(b) of the GDPR. The same applies to processing operations necessary for the performance of pre-contractual measures, such as in cases of inquiries regarding our products or services. If our company is subject to a legal obligation requiring the processing of personal data, such as for the fulfillment of tax obligations, the processing is based on Article 6(1)(c) of the GDPR. In rare cases, the processing of personal data may be necessary to protect vital interests of the data subject or another natural person. This would be the case if a visitor were to be injured on our premises and their name, age, health insurance information, or other vital information needed to be disclosed to a doctor, hospital, or other third parties. In this case, the processing would be based on Article 6(1)(d) of the GDPR. Ultimately, processing operations may also be based on Article 6(1)(f) of the GDPR. This legal basis applies to processing operations not covered by any of the aforementioned legal bases, when the processing is necessary for the protection of legitimate interests of our company or a third party, provided that the interests, fundamental rights, and freedoms of the data subject do not override those interests. Such processing operations are particularly permitted as they were specifically mentioned by the European legislator. He expressed the view that a legitimate interest could be assumed if the data subject is a customer of the data controller (Recital 47, sentence 2 of the GDPR).
17. Legitimate Interests in Processing Pursued by the Controller or a Third Party
If the processing of personal data is based on Article 6(1)(f) of the GDPR, our legitimate interest is to conduct our business activities for the benefit of all our employees and stakeholders.
18. Duration for which personal data will be stored
The criterion for the duration of storage of personal data is the respective statutory retention period. Upon expiration of the period, the corresponding data will be routinely deleted, provided that they are no longer necessary for the fulfillment of the contract or for initiating a contract.
19. Legal or contractual regulations regarding the provision of personal data; necessity for contract conclusion; obligation of the data subject to provide personal data; possible consequences of non-provision.
We inform you that the provision of personal data is partly required by law (e.g., tax regulations) or may also arise from contractual agreements (e.g., information about the contracting party). In some cases, it may be necessary for a contract to be concluded that a data subject provides us with personal data, which must then be processed by us. For example, a data subject is obliged to provide us with personal data when our company enters into a contract with them. Failure to provide personal data would result in the inability to conclude the contract with the data subject. Before providing personal data, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of personal data is legally or contractually required or necessary for the conclusion of the contract, whether there is an obligation to provide the personal data, and what the consequences of not providing the personal data would be.
20. Existence of automated decision-making
As a responsible company, we refrain from automated decision-making or profiling.
21. Data Protection Provisions Regarding the Use of reCAPTCHA
On this website, we integrate reCAPTCHA as a feature for identifying so-called bots. This feature is used, for example, in contact forms to prevent spam. User behavior data, such as mouse movements or queries, is evaluated to distinguish humans from bots. The service provider for reCAPTCHA is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For more information about this feature, please visit https://www.google.com/recaptcha/. The information from the privacy policy at https://policies.google.com/privacy apply. You can object to the use (Opt-Out): Opt-Out Plugin http://tools.google.com/dlpage/gaoptout?hl=de, Settings for the Display of Advertisements https://adssettings.google.com/authenticated.
22. Data Protection Provisions Regarding the Use and Implementation of Google Maps
On our website, we use Google Maps to display our location and to create directions. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google."
Through the certification under the EU-US Privacy Shield. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection regulations of the EU are also adhered to when processing data in the USA.
To enable the display of certain fonts on our website, a connection is established to the Google server in the USA when our website is accessed.
If you access the Google Maps component integrated into our website, Google will store a cookie on your device through your internet browser. To display our location and create directions, your user settings and data are processed. In this context, we cannot exclude the possibility that Google may use servers in the USA.
The legal basis is Article 6(1)(f) GDPR. Our legitimate interest lies in optimizing the functionality of our website.
By establishing the connection to Google in this way, Google can determine from which website your request has been sent and to which IP address the directions are to be transmitted.
If you do not agree with this processing, you have the option to prevent the installation of cookies by making the appropriate settings in your internet browser. For details, please refer to the section above on "Cookies."
Additionally, the use of Google Maps and the information obtained through Google Maps is subject to the Google Terms of Service. https://policies.google.com/terms?gl=DE&hl=de and the terms and conditions for Google Maps https://www.google.com/intl/de_de/help/terms_maps.html.
Moreover, Google provides information under
https://adssettings.google.com/authenticated
https://policies.google.com/privacy
provides further information.
23. Privacy Policy on the Use and Application of Google Fonts
On our website, we use Google Fonts to display external fonts. This service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google."
Through the certification under the EU-US Privacy Shield. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection regulations of the EU are also adhered to when processing data in the USA.
To enable the display of certain fonts on our website, a connection is established to the Google server in the USA when our website is accessed.
The legal basis is Article 6 (1) (f) GDPR. Our legitimate interest lies in optimizing and economically operating our website.
By establishing a connection to Google when you access our website, Google can determine from which website your request was sent and to which IP address the font display should be transmitted.
Google provides at
https://adssettings.google.com/authenticated
https://policies.google.com/privacy
provides further information, especially regarding options to prevent data usage.
24. Google Doubleclick
Doubleclick is a service provided by Google Inc., located at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Doubleclick uses cookies to display contextually relevant advertisements. A pseudonymous identification number (ID) is assigned to your browser to check which ads were displayed in the browser and possibly clicked on. The cookies do not contain any personal information. The use of DoubleClick cookies allows Google and its partner websites to serve ads based on previous visits to this or other websites on the internet. The information generated by the cookies is transmitted to a server in the USA for evaluation and stored there.
Google is registered with the U.S. Department of Commerce's "Privacy Shield" program and adheres to its provisions. Data transfer by Google to third parties occurs only as required by law or within the framework of data processing agreements.
You consent to the collection and the aforementioned manner of processing the data as well as the stated purpose. You can prevent the storage of cookies by adjusting the settings of your browser software. Furthermore, you can prevent the collection of data generated by the cookies related to your use of the websites by Google and the processing of this data by Google by visiting the address https://www.google.com/settings/ads/onweb/ download and install the available browser plugin.
This privacy policy was generated by the privacy policy generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as external data protection officer is active in cooperation with the Data protection lawyers at the law firm WILDE BEUGER SOLMECKE | Attorneys at Law. created.
Legal Notice: The EU has established an online procedure for resolving disputes between businesses and consumers. You can find more information at https://ec.europa.eu/consumers/odr/
We do not participate in a dispute resolution procedure before a consumer arbitration board.