Our privacy policy in accordance with GDPR
Marketing cookies are currently disabled. To enable them, click here. The website will then be reloaded.
Marketing cookies are currently enabled. To disable them, click here. The website will then be reloaded.
1. Privacy policy
We look forward to your visit on our website. Below we would like to inform you about the handling of your data according to Art. 13 General Data Protection Regulation (GDPR).
2. Data controller
The entity stated in the legal notice is responsible for the data processing described below.
3. Usage data
When you visit our website, our web server temporarily evaluates usage data for statistical purposes in order to improve the quality of our website. This data includes the following:
- the name and address of the requested content,
- the date and the time of the query,
- the transferred data volume,
- the access status (content transferred, content not found),
- the description of the used web browser and operating system,
- the referral link, which indicates from which page you reached ours,
- the IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established.
The above-mentioned website log data will only be evaluated anonymously.
4. Data protection and security
We take technical and organisational measures to protect your data as comprehensively as possible from unwanted access. These measures include encryption procedures on our web pages. Your data is transferred from your computer to our server and vice versa via the internet using TLS encryption. You can usually recognise this by the fact that the lock symbol in the status bar of your browser is closed and the address line begins with https://.
5. Cookies
5.1. Required cookies
On our website we use cookies which are necessary for the operation of our web pages.
Cookies are small text files that are stored on your end device and can be read. There is a difference between session cookies, which are erased when you close your browser, and persistent cookies, which remain on your end device after a specific session ends.
We do not use these required cookies for analysis, tracking, or advertising purposes.
In some cases, these cookies only contain information on certain settings and cannot be linked to a person. They may also be necessary to enable user guidance, security, and implementation of the site.
We use these cookies on the basis of Article 6 para. 1 p.1 lit. f GDPR.
You can set your browser to inform you about the placement of cookies. This is in order to make the use of cookies transparent for you. You can also delete cookies or prevent the setting of new cookies at any time by using the appropriate browser settings. Please note that if you delete certain cookies, our web pages may not be displayed correctly, and some functions may no longer be available.
5.2. More than required cookies
When you enter our website, we inform you about the types of cookies we use and give you the option to agree or not to individual types of cookies. We do not load non-essential cookies until you have consented to their use by type.
6. Data processors
We share your data with service providers who support us in the operation of our websites and related processes as part of order processing pursuant to Art. 28 GDPR. These are, for example, hosting service providers. Our service providers are strictly bound by instructions to us and are contractually obligated accordingly.
7. Google Analytics
We use the web analysis tool “Google Analytics” to design our websites in line with requirements. Google Analytics creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your terminal device and read by us. In this way, we are able to recognise returning visitors and count them as such.
In the context of Google Analytics, we are supported by Google Ireland Limited and Google LLC. (USA) as processors according to Art. 28 GDPR. The data processing may therefore also take place outside the EU or the EEA. With regard to Google LLC, an adequate level of data protection cannot be assumed due to processing in the USA. There is a risk that authorities may access the data for security and monitoring purposes without you being informed or having legal recourse. Please keep this in mind if you decide to give your consent to our use of Google Analytics.
The data processing is based on your consent according to Art. 6 para. 1 p. 1 lit. a GDPR if you have given your consent via our banner. The transfer to a third country takes place on the basis of Art. 49 para. 1 lit. a GDPR.
You can revoke your consent at any time. To do so, please click on “data privacy” at the bottom of the page and then click on the corresponding link in the first paragraph. The website will be reloaded and the cookie banner will be displayed again.
8. Google Tag Manager
For reasons of transparency please note that that we use the Google Tag Manager. The Google Tag Manager itself does not collect personal data. It facilitates the integration and management of our tags.
Tags are small code elements which serve to measure traffic and visitor behaviour, to detect the impact of online advertising and social channels, to employ remarketing and targeting of target groups, or to test and optimise our websites. We use the Tag Manager for Google Analytics. For further information on the Google Tag Manager, see: https://www.google.com/intl/de/tagmanager/use-policy.html
9. Third-party tracking technologies for advertising purposes
We use cross-device tracking technologies so that you can be shown targeted advertising on other websites based on your visit to our website and we can see how effective our advertising measures have been. The data processing is based on your consent according to Art. 6 para. 1 lit. a GDPR. Your consent is voluntary and can be revoked at any time with effect for the future. If you wish to withdraw your consent, please delete the cookies in your browser.
How does the tracking work?
When you visit our websites, it is possible that the third-party providers mentioned below retrieve recognition features for your browser or end device (e.g., a so-called browser fingerprint), evaluate your IP address, store or read recognition features on your end device (e.g., cookies), or gain access to individual tracking pixels. The individual characteristics can be used by the third-party providers to recognise your end device on other websites. We can commission the corresponding third-party providers to display advertising based on the pages visited on our site.
What does cross-device tracking mean?
If you log in to the third-party provider with your own user data, the respective recognition features of different browsers and end devices can be linked to each other. If, for example, the third-party provider has created a separate feature for the laptop, desktop PC, smartphone, or tablet you use, these individual features can be assigned to each other as soon as you use a service of the third-party provider with your login data. In this way, the third-party provider can also target our advertising campaigns across different end devices.
Which third-party providers do we use in this context?
Below we list the third-party providers with whom we cooperate for advertising purposes. If the data is processed outside the EU or EEA in this context, please note that there is a risk that authorities may access the data for security and monitoring purposes without you being informed or having the right to appeal. If we use providers in insecure third countries, the transfer to a third country is based on Art. 46 para. 2 lit. a GDPR (standard data protection clauses).
Facebook (USA and/or Ireland)
Tool: Facebook Custom Audience, Facebook Connect
Adequate level of data protection: No adequate level of data protection. The transfer is made on the basis of standard data protection clauses pursuant to Art. 46 para. 2 lit. c GDPR.
Withdrawal of consent: If you wish to withdraw your consent, please delete the cookies in your browser.
You can find further information on data processing here https://www.facebook.com/about/privacy/.
10. Contact form
You have the possibility to contact us via our contact form. If you want to use our contact form, you must fill in the fields marked as mandatory.
We use this data on the basis of Art. 6 para. 1 p. 1 lit. f GDPR to answer your inquiry.
In addition, you can decide for yourself whether you would like to provide us with further information. This information is provided voluntarily and is not mandatory for contacting you. We process your voluntary information on the basis of your consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR.
Your data will only be processed to respond to your inquiry. We will delete your data if it is no longer required and there are no legal retention obligations to the contrary.
Insofar as your data transmitted via contact form is processed on the basis of Art. 6 para. 1 p. 1 lit. f GDPR, you can object to the processing at any time. In addition, you can revoke your consent to the processing of voluntary data at any time. To do so, please contact the e-mail address stated in the legal notice.
11. Storage period
Unless we have already informed you in detail about the storage period, we delete personal data when they are no longer required for the aforementioned processing purposes and no legal retention obligations prevent deletion.
12. Your rights as a data subject
When processing your personal data, the GDPR grants you certain rights as a data subject:
Right of access by the data subject (Art. 15 GDPR)
You have the right to obtain confirmation as to whether personal data concerning you are being processed; if this is the case, you have the right to be informed of this personal data and to receive the information specified in Art. 15 GDPR.
Right to rectification (Art. 16 GDPR)
You have the right to rectification of inaccurate personal data concerning you and, taking into account the purposes of the processing, the right to have incomplete personal data completed, including by means of providing a supplementary statement without delay.
Right to erasure (Art. 17 GDPR)
You have the right to obtain the erasure of personal data concerning you without undue delay if one of the reasons listed in Art. 17 GDPR applies.
Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g., if you have objected to the processing, for the duration of the data controller’s examination.
Right to data portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format, or to request that this data be transferred to a third party.
Right to withdraw consent (Art. 7 GDPR)
If the processing of data is based on your consent, you are entitled to withdraw your consent to the use of your personal data at any time in accordance with Art. 7 para. 3 GDPR. Please note that the withdrawal is only effective for the future. Processing that took place before the withdrawal is not affected.
Right to object (Art. 21 GDPR)
If data is collected on the basis of Art. 6 para. 1 p.1 lit. f GDPR (data processing for the purpose of our legitimate interests) or on the basis of Art. 6 para. 1 p. 1 lit. e GDPR (data processing for the purpose of protecting public interests or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are compelling legitimate grounds for the processing which override your interests, rights, and freedoms or if data is still needed for the establishment, exercise, or defence of legal claims.
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
According to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. This right may be asserted in particular with a supervisory authority in the Member State of your habitual residence, your place of work or the place of the suspected infringement.
Asserting your rights
Unless otherwise described above, please contact the entity stated in the legal notice to assert your rights.
13. Contact details of the data protection officer
Our external data protection officer is available to provide further information on data protection via the following contact details:
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen
Web: www.datenschutz-nord-gruppe.de
Email: office@datenschutz-nord.de
When contacting our data protection officer, please specify the name of the responsible entity stated in our legal notice.
