Information on data protection about our processing of customer and prospect data in accordance with Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR)
In accordance with the requirements of Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR), we hereby inform you about the processing of your personal data and your related data protection rights. Which data is processed in detail and how it is used depends largely on the requested or agreed services. In order to ensure that you are fully informed about the processing of your personal data in the context of the performance of a contract or the implementation of pre-contractual measures, please take note of the information below.
1. Responsible body in terms of data protection law
Phone +49 171 22 44 343
Chief Executive Officer: Ramona Shabla, Assaad Maalouf
2. Purposes and legal basis of processing
We process your personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG), insofar as these are necessary for the establishment, execution, fulfillment and implementation of pre-contractual measures. Insofar as personal data is required to initiate or carry out a contractual relationship or as part of the implementation of pre-contractual measures, processing in accordance with Art. 6 para. 1 lit. b GDPR lawful.
If you give us express consent to the processing of personal data for specific purposes (e.g. disclosure to third parties, evaluation for marketing purposes or advertising by email), the processing is lawful on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. A given consent can be revoked at any time with future effect (see section 9 of this data protection information). If necessary and legally permissible, we process your data beyond the actual contractual purposes to fulfill legal obligations in accordance with Art. 6 Para. 1 lit. c GDPR. In addition, processing is carried out, if necessary, to safeguard the legitimate interests of us or third parties and to defend and assert legal claims in accordance with Art. 6 (1) lit. f GDPR. If necessary, we will inform you separately, stating the legitimate interest, insofar as this is required by law.
3. Categories of personal data
We only process data that are related to the establishment of the contract or the pre-contractual measures. This can be general data about you or your company (name, address, contact details, etc.) as well as any other data that you provide to us in the context of the contract.
4. Source of the data
We process personal data that we receive from you when you contact us or establish a contractual relationship or as part of pre-contractual measures or that you provide via our contact forms.
5. Recipient of the data
We only pass on your personal data within our company to those areas and people who need this data to fulfill their contractual and legal obligations or to implement our legitimate interest.
Otherwise, data will only be passed on to recipients outside the company, insofar as this is permitted or required by law, the transfer for processing and thus for the fulfillment of the contract or, at your request, for the implementation of pre-contractual measures is necessary, we have your consent or we are authorized to provide information. Under these conditions, recipients of personal data can e.g. B. be:
External tax advisor
Public bodies and institutions (e.g. public prosecutor, police, supervisory authorities, tax office) if there is a legal or official obligation.
6. Duration of data storage
If necessary, we process and store your personal data for the duration of our business relationship or for the fulfillment of contractual purposes. This includes a. also the initiation and execution of a contract.
In addition, we are subject to various storage and documentation obligations, which result, among other things, from the Commercial Code (HGB) and the Tax Code (AO). The retention and documentation periods specified there are two to ten years.
Finally, the storage period is also based on the statutory limitation periods, e.g. B. according to §§ 195 ff. Of the Civil Code (BGB) usually three years, but in some cases up to thirty years.
7. Your Rights
Every data subject has the right to information according to Art. 15 GDPR, the right to correction according to Art. 16 GDPR, the right to deletion according to Art. 17 GDPR, the right to restriction of processing according to Art. 18 GDPR, the right to notification according to Art. 19 GDPR and the right to data portability according to Art. 20 GDPR.
In addition, you have the right to lodge a complaint with a data protection supervisory authority in accordance with Art. 77 GDPR if you believe that the processing of your personal data is not lawful. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
If the processing of data is based on your consent, you are entitled under Art. 7 GDPR to revoke your consent to the use of your personal data at any time. Please note that the cancellation only applies to the future. Processing that took place before the revocation is not affected. Please also note that we may have to keep certain data for a certain period of time in order to comply with legal requirements (see section 6 of this data protection information).
To protect your rights, you can use the contact details given in section 1 turn us.
8. Necessity to provide personal data
The provision of personal data for the decision to conclude a contract, the fulfillment of the contract or to carry out pre-contractual measures is voluntary. However, we can only make a decision within the framework of contractual measures if you provide such personal data that is necessary for the conclusion of the contract, the fulfillment of the contract or pre-contractual measures.
What exactly are cookies?
Cookies store certain user data from you, such as language or personal page settings. When you visit our site again, your browser transmits the “user-related” information back to our site. Thanks to cookies, our website knows who you are and offers you your usual standard setting. In some browsers, each cookie has its own file, in others, such as Firefox, all cookies are stored in a single file. There are both first-party cookies and third-party cookies. First-party cookies are created directly by our website, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie is to be assessed individually, since each cookie stores different data. The expiration time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other “pests”. Cookies also cannot access information from your PC.
For example, cookie data can look like this:
– Name: _ga
– Expiry time: 2 years
– Use: Differentiation of website visitors
– Exemplary value: GA1.2.1326744211.152321163087
A browser should support the following minimum sizes:
– A cookie should contain at least 4096 bytes
– At least 50 cookies should be saved per domain
– A total of at least 3000 cookies should be saved.
What types of cookies are there?
The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly explain the different types of HTTP cookies. There are four types of cookies:
Strictly necessary cookies
These cookies are necessary to ensure basic functions of the website. For example, these cookies are required if a user places a product in the shopping cart, then surfs on other pages and only later checks out. These cookies do not delete the shopping cart, even if the user closes his browser window.
These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies also measure the loading time and behavior of the website in different browsers.
These cookies make it easier to use. For example, entered locations, font sizes or form data are saved.
These cookies are also called targeting cookies. They serve to deliver customized advertising to the user. This can be very convenient, but it can also be very annoying, usually when you first visit a website you will be asked which of these types of cookies you want to allow. And of course this decision is also saved in a cookie.
How I can delete Cookies?
What about my data protection?
If you want to know more about cookies and do not shy away from technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments by the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.
Our goal with this website is clear: We want to offer you the best possible service. The statistics and data from Google Analytics help us to achieve this goal. The statistically evaluated data give us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site so that interested people can find it more easily on Google. On the other hand, the data help us to better understand you as a visitor. We therefore know exactly what we need to improve on our website in order to offer you the best possible service. The data also help us to carry out our advertising and marketing measures more individually and more cost-effectively. After all, it only makes sense to show our products and services to people who are interested in it. Google Analytics uses a tracking code to create a random, unique ID that is linked to your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a “returning” user. All collected data is saved together with this user ID. This makes it possible to evaluate pseudonymous user profiles in the first place. Your interactions on our website are measured using labels such as cookies and app instance IDs. Interactions are all types of actions that you perform on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics can be linked to third-party cookies. Google does not share Google Analytics data unless we as the website operator approve it. Exceptions may occur if required by law.
Google Tag Manager
For our website we use the Google Tag Manager from Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA). This tag manager is one of many helpful marketing products from Google. Using Google Tag Manager, we can centrally install and manage code sections from various tracking tools that we use on our website.
The Tag Manager itself is a domain that does not set cookies and does not save any data. It acts as a mere “administrator” of the implemented tags. The data capture the individual tags of the different web analysis tools. The data is virtually passed through to the individual tracking tools in Google Tag Manager and not saved, but the situation is completely different with the integrated tags of the various web analysis tools, such as Google Analytics. Depending on the analysis tool, various data about your web behavior are usually collected, saved and processed with the help of cookies. For this purpose, please read our data protection texts on the individual analysis and tracking tools that we use on our website. In the account settings of Tag Manager, we have allowed Google to allow Google to receive anonymized data from us. However, this is only about the use and use of our Tag Manager and not about your data that is saved via the code sections. We enable Google and others to receive selected data anonymously. We therefore consent to the anonymous disclosure of our website data. Despite extensive research, we were unable to find out exactly which summarized and anonymous data were forwarded. In any case, Google deletes all information that could identify our website. Google combines the data with hundreds of other anonymous website data and creates user trends as part of benchmarking measures. Benchmarking compares your own results with those of your competitors. Processes can be optimized based on the information collected.