1. Name and address of the person responsible
The responsible person in terms of the basic data protection regulation and other national data protection laws of the member states and other data protection regulations is:
Tel. 02452 97626-630
2. Name and address of the Data Protection Officer
A data protection officer in the sense of the basic data protection regulation is not necessary for us due to the relevant regulations.
3. General information on data processing
3.1. Scope of the processing of personal data
As a matter of principle, we process personal data of our users only to the extent necessary to provide a functional website, contents and services. The processing of personal data of our users only takes place with the user’s consent. An exception is made in those cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.
3.2. Legal basis for the processing of personal data
The legal basis for processing operations involving personal data for which we obtain the consent of the data subject is Art. 6 para. 1 letter a DSGVO.
The legal basis for processing operations of personal data which are necessary for the performance of a contract or for pre-contractual measures to which the data subject is a party is Art. 6 para. 1 letter b DPA.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which we are subject, Art. 6 para. 1 lit. c DSGVO serves as the legal basis.
Insofar as the processing is necessary to safeguard a legitimate interest of our company or of a third party, Art. 6 para. 1 lit. f DSGVO serves as the legal basis for the processing.
The personal data of the person concerned will be deleted or blocked as soon as the purpose of the storage no longer applies. Furthermore, data may be stored if we are required to do so for legal reasons or if it is necessary to store the data for the conclusion or fulfilment of a contract.
4. Provision of the website and creation of log files
4.1. Description and scope of data processing
Whenever our website is called up, our system automatically records data and information from the computer system of the calling computer.
The following data is collected:
- Information about the browser type and version used
- The user’s operating system
- The Internet service provider of the user
- The IP address of the user
- Date and time of access
- Websites from which the user’s system accesses our website
- Websites that are called up by the user’s system via our website
The data is also stored in the log files of our system. The IP address is made completely anonymous and this data is not stored together with other personal data of the user.
4.2. Purpose of the data processing
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.
The storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
4.3. Duration of storage
The data will be deleted as soon as it is no longer necessary for the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session is ended.
In the case of data storage in log files, this is the case after 190 days at the latest. Storage beyond this period is possible. In this case the IP addresses of the users are deleted or alienated, so that an allocation of the calling client is no longer possible.
5. Verwendung von Cookies
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognize your browser the next time you visit us.
6. Web analysis by Matomo
We use the open source software tool Matomo (formerly PIWIK) on our website to analyse the surfing behaviour of our users. The software sets a cookie on the user’s computer (for cookies see above). If individual pages of our website are called up, the following data are stored:
- Two bytes of the IP address of the calling system of the user
- The accessed website
- The website from which the user has reached the accessed website (referrer)
- The subpages that are called from the called web page
- The time spent on the website
- The frequency of visiting the website
The software runs exclusively on the servers of our website. A storage of the personal data of the users only takes place there. The data will not be passed on to third parties.
The software is set up in such a way that the IP addresses are not stored completely, but 2 bytes of the IP address are masked (e.g.: 192.168.xxx.xxx). In this way it is no longer possible to assign the shortened IP address to the calling computer.
The processing of users’ personal data enables us to analyse the surfing behaviour of our users. By evaluating the data obtained, we are able to compile information on the use of the individual components of our website. This helps us to constantly improve our website and its user-friendliness.
The data is deleted as soon as it is no longer required for our recording purposes.
In our case this is the case after 3 years.
We offer our users the possibility of an opt-out from the analysis procedure. In this way, another cookie is set on your system, which signals our system not to store the user’s data. If the user deletes the corresponding cookie from his own system in the meantime, he must set the opt-out cookie again.
For more information about the privacy settings of the Matomo software, please follow this link: https://matomo.org/docs/privacy/.
7. Contact form and e-mail contact
On our website there is a contact form which can be used for electronic contact. If a user takes advantage of this possibility, the data entered in the input mask is transmitted to us via a secure SSL/TLS encryption and stored. These data are:
- E-Mail addresse
- Your message
At the time the message is sent, the IP address of the sender is also saved.
It is also possible to contact us via the e-mail address provided. In this case, the user’s personal data transmitted with the e-mail will be stored. Your data will be used by us exclusively for processing the conversation.
The data is deleted as soon as it is no longer necessary for the purpose for which it was collected.
8. Rights of the data subject
As far as we process personal data of you, you are entitled to the following rights against the responsible person:
8.1. Right of access to information
You may request confirmation from the person responsible as to whether personal data concerning you is being processed by us.
8.2. Right of rectification
You have the right to ask the data controller to correct and/or complete the data if the personal data processed concerning you is incorrect or incomplete. The data controller shall make the correction without delay.
8.3. Right to limit processing
They have the right to limit the processing of their personal data, insofar as the processing of the data is not necessary.
8.4. Right of cancellation
You may request the controller to delete personal data relating to you immediately and the controller shall be obliged to delete such data immediately unless the processing is necessary.
8.5. Right to information
If you have exercised the right of rectification, deletion or limitation of processing vis-à-vis the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of such rectification, deletion or limitation of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed of these recipients by the person responsible.
8.6. Right to data transferability
You have the right to receive the personal data concerning you that you have provided to the data controller in a structured, common and machine-readable format.
8.7. Right of objection
You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you which is carried out pursuant to Art. 6, paragraph 1, letter e or f FADP;
8.8. Right to withdraw the declaration of consent under data protection law
You have the right to revoke your data protection declaration of consent at any time. Revocation of your consent does not affect the legality of the processing that has taken place on the basis of your consent until revocation.
8.9. Right of appeal to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State in which you are resident, your place of work or the place of the suspected infringement, if you consider that the processing of personal data concerning you is in breach of the DPA.
The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and the results of the complaint, including the possibility of a legal remedy under Art. 78 DSGVO.