Privacy Policy

1 General information

When you use a website, various types of personal data may be collected. In the following, we inform you about the collection of personal data, which takes place during the use of our website and the services connected to it.

We point out that data transmission on the Internet may have security gaps. Complete protection of the data against access by third parties is not possible.

1.1 Processing of personal data

Personal data in the sense of Art. 4 GDPR is all information with which you are personally identified or identifiable. This can be done, for example, on the basis of your name, address, email addresses, etc.

1.2 Responsible body and Data Protection Officer

The responsible body as defined in Art. 4 No. 7 GDPR for the processing of personal data on this website is:

Contact details of our Data Protection Officer

Our Data Protection Officer as defined in Art. 37 GDPR can be reached by postal mail at the following address with the addition - "for the attn. of Data Protection Officer" – or by email via our Privacy Group inbox at moc.qadova@ztuhcsnetad.

Certain processing operations may be carried out under the responsibility of other companies. This is indicated below in the respective processing description, if this is the case.

1.3 Rights of the data subject

You have the following rights as a data subject of the data processing in accordance with the legal provisions regarding the personal data concerning you:

1. • Right of access, Art. 15 GDPR
2. • Right to rectification, Art. 16 GDPR
3. • Right to erasure, the "right to be forgotten", Art. 17 GDPR
4. • Right to restriction of processing, Art. 18 GDPR
5. • Right to object to processing, Art. 21 GDPR
6. • Right to data portability, Art. 20 GDPR.

You also have the right to complain to the competent data protection supervisory authority about the processing of your personal data.

When processing your rights, we may ask you for proof of identity. For more information on how we process your data in this process, see 3.1.

1.4 Revocation of your consent to data processing

Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. To do so, it is sufficient to let us know via email. The legality of the data processing carried out up until you have revoked your consent remains unaffected by said revocation.

1.5 Objection to data processing

Insofar as we base the processing of your personal data on the balance of interests, you may object to the processing. This is the case if the processing is not necessary, in particular, for the fulfillment of a contract with you, which is presented by us in each case in the description of the functions and offers. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will review the factual situation and either discontinue or adapt the data processing or show you our compelling legitimate grounds on the basis of which we will continue the processing.

Of course, you can object to the processing of your personal data for purposes of advertising and data analysis at any time. You can submit your objection for advertising purposes using the contact details provided under 1.2.

1.6 Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

1.7 Disclosure to authorities

We reserve the right to disclose information about you in the event we are required by law to do so by lawful authorities or law enforcement agencies.

Legal basis: Art. 6 (1) p. 1 lit. c GDPR (legal obligation)

2 Collection and processing of personal data when visiting our website

2.1 Server log files

We do not aquire or store any personal information from the user on our server.

2.2 Cookies

This site does not use any cookies.

2.3 External links

We are not responsible for the offers of third parties to which we refer on our website. Further information on the purpose and scope of data collection and its processing by the third-party providers can be found in the data protection declarations communicated below. There you will also receive further information about your rights in this regard and settings options for protecting your privacy.

Addresses of the respective third-party providers and URLs with their privacy notices:

Transfers to third countries are possible. Standard contractual clauses pursuant to Art. 46 GDPR have been concluded. Further information can be found here: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu_de.

3 Other functions and offers (inside and outside the website)

In addition to the purely informational use of our website, we offer various services that you can use if you are interested. For this purpose, you will usually have to provide additional personal data that we use to provide the respective service and to which the aforementioned data processing principles apply.

If we use contracted service companies for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we also state the specified criteria for the storage period.

External service providers that have been carefully selected and commissioned by us, are bound by our instructions and are regularly monitored.

3.1 Request by email, telephone, or fax

If you contact us by email, telephone, or fax, your inquiry including all related personal data (name, inquiry) will be stored and processed by us for the purpose of processing your request. We do not share this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b GDPR, provided that your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6 (1) lit. f GDPR) or on your consent (Art. 6 (1) lit. a GDPR) if this has been requested.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions – in particular retention periods – remain unaffected.

3.2 Processing of data (customer and contract data)

We collect, process, and use personal data only to the extent that they are necessary for the establishment, content or modification, of the legal relationship (master data). This is done on the basis of Art. 6 (1) lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We collect, process, and use personal data about the use of our internet pages (usage data) only to the extent necessary to enable the user to use the service or to bill the user. The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.