data protection
Information in accordance with EU GDPR & BDSG
It's nice that you're here
We look forward to your visit to our website and the associated services, as well as the associated data protection that comes with the EU GDPR and the BDSG. The security of your data is important for us. It is generally possible to use our website without providing any personal data. However, if you would like to use a service, processing of personal data is necessary. Therefore, to protect your data, there is a detailed data protection declaration for the use of this website and services, as well as the corresponding measures taken, which we would like to inform you about and explain in detail here.
In general, all business processes are adapted through technical and organizational measures so that they always correspond to the current state of the art in order to ensure that the need for protection of personal data is guaranteed at all times. For this purpose, new technologies are regularly implemented or tested and/or expanded and adapted to technological progress. Below we will inform you about the purposes for which your data is collected and processed and how you can exercise your rights.
The data protection declaration is based on the terms used by the European legislator for directives and regulations when issuing the General Data Protection Regulation (EU-GDPR), as well as the BDSG, the Federal Data Protection Act. The detailed data protection declaration follows.
The responsible body within the meaning of data protection law is
SKRP GbR
Robin Preis & Sascha Kass
Am Güterbahnhof 3
33034 Brakel
General contact
Tel.: +49 (0) 5272 - 3921113
Mail:
Contact details of the data protection officer
Robin Price & Sascha Kass
At freight station 3
33034 Brakel
Tel.: +49 (0) 5272 - 3921113
Mail:
General explanations of terms
The data protection declaration is based on the terms used by the European legislators for directives and regulations when issuing the General Data Protection Regulation EU-GDPR & BDSG.
Personal Data
Personal data is all information that relates to an identified or identifiable natural person (hereinafter “data subject”), including, among other things, the name, address, e-mail address or telephone number. A natural person is considered to be identifiable if he or she can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
Affected person
Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.
processing
Processing is any operation or series of operations carried out on personal data, whether or not by automated means, such as the collection, recording, organisation, structuring, storage, adaptation or modification, reading, querying, use, Disclosure by transmission, distribution or other form of provision involves matching or association, restriction, deletion or destruction.
Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.
Profiling
Profiling is any type of automated processing of personal data which consists in using these personal data to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal Analyze or predict the preferences, interests, reliability, behavior, location or movements of that natural person.
Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data cannot be assigned to an identified or identifiable natural person.
Controller or person responsible for processing
The person responsible or responsible for processing is the natural or legal person, public authority, institution or other body which, alone or jointly with others, decides on the purposes and means of processing personal data. If the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Processor
Processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the controller.
Recipient
The recipient is a natural or legal person, public authority, institution or other body in which personal data is disclosed, regardless of whether it is a third party or not. However, public authorities which may receive personal data in the context of a specific investigative task under Union or Member State law shall not be considered as recipients.
Third
Third party is a natural or legal person, authority, institution or other body other than the data subject, the controller, the processor and the persons authorized under the direct responsibility of the controller (e.g. Dr. Jörg Feiler) or the processor to process the personal data.
consent
Consent is any voluntary, informed and unambiguous expression of wishes given by the data subject for a specific case, in the form of a statement or other unambiguous confirmatory act, by which the data subject indicates that he or she agrees to the processing of personal data concerning him or her is, in whatever form and extent.
General information about visiting this website
In principle, you can visit our website without providing any personal, identifiable data.
Our website uses SSL or SSL to protect your data and the associated transmission. TLS encryption. You can recognize the encrypted connection by the string “https://” and the lock symbol in your browser bar. Data collection when you visit our website
When you access the website, we may collect data from you, which is stored in the so-called “server log files”.
When you access our website, we collect the following data, which is technically necessary for us to display the website to you and is created by the web host in a log file: (1) The website/subpage visited
(2) Date and time of access Files and subpages
(3) Amount of data sent in bytes
(4) Source/reference from which you came to the page
(5) The browser used
(6) The operating system used
(7) The IP address used at the time in anonymized form Form
Processing takes place in accordance with Article 6 Paragraph 1 Letter f of the GDPR on the basis of our legitimate interest in improving the stability and functionality of our website, as well as to check technical processes. There is no other use of the data. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use.
Detailed privacy policy
Below is the detailed information on the data protection declaration for each individual area or function. If you have difficulty understanding any of the areas, please contact the data protection officer.
Data storage & duration
The duration of storage of your personal data depends on the respective legal basis, the purpose of processing and, if so, the respective legal retention period (e.g. tax law, etc.). The general processing of personal data is based on express consent in accordance with Art. 6 Para. 1 lit. a GDPR; this data is stored until the person concerned revokes their consent.
If there are statutory retention periods for the stored and processed data, this is done in accordance with Art. 6 Para. 1 lit. b GDPR. The data is not subject to any further retention periods and is routinely deleted after, for example, contract fulfillment.
When processing data in accordance with Art. 6 Para. 1 lit. f GDPR, this data will only be stored until the data subject exercises his or her right to object in accordance with Art. 21 Para. 1 GDPR, unless we can provide special reasons for this Prove processing that outweighs the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims and/or contracts arising from it. As part of direct advertising, we comply with Article 6 Paragraph 1 Letter f of the GDPR. The data will only be stored until the person concerned exercises their right to object in accordance with Article 21 (2) GDPR.
Due to data minimization, we regularly delete data that is no longer needed and allows this, provided it is not affected by other retention periods.
General contact
As part of general contact with us (e.g. by telephone, email, or even by post), the data you provide to us will be collected and therefore processed. Which data is collected can be seen from the respective situation and the data provided by the visitor/interested party. This data will be processed and used exclusively for the purpose of answering your request or similar or for contacting you, etc. The legal basis for processing is either our legitimate interest in accordance with Article 6 (1) (f) or processing based on your request in accordance with Article 6 (1) (b) of the GDPR. Your data will be deleted after your request has been processed, unless it is subject to a different retention period or the public interest (e.g. law enforcement) is higher than that of the visitor/interested party.
Cookies - General
Cookies are text files that contain data from visited websites and are stored by a browser on the user's computer. A cookie is primarily used to store information about a user during or after their visit to an online offering. The information stored can include, for example, the language settings on a website, the login status, a video that was watched, etc. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g. when user information is stored using pseudonymous online identifiers, also known as “user IDs”).
Temporary cookies
(also: session or session cookies) are deleted at the latest after a user has left an online offer and closed their browser.
Permanent cookies
These remain stored even after the browser is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. The interests of users, which are used to measure reach or for marketing purposes, can also be stored in such a cookie.
Necessary cookies
Essential or absolutely necessary cookies can, on the one hand, be absolutely necessary for the operation of a website (e.g. to save logins or other user input or for security reasons).
Third-party cookies
Third-party cookies are mainly used by advertisers (so-called third parties) to process user information, e.g. analysis tools.
Statistics, marketing and personalization cookies
Cookies are also generally used as part of reach measurement and when a user's interests or behavior (e.g. viewing certain content, using functions, etc.) are stored in a user profile on individual websites become. Such profiles are used, for example, to show users content that corresponds to their potential interests. This process is also known as “tracking”, that is, tracking the potential interests of users. If we use cookies or “tracking” technologies, we will inform you separately in our data protection declaration or when obtaining consent.
Notes on legal bases
The legal basis on which we process your personal data using cookies depends on whether we ask you for consent. If this is the case and you agree to the use of cookies, the legal basis for processing your data is the declared consent (Art. 6 Para. 1 S. 1 lit. a. GDPR). Otherwise, the data processed using cookies will be processed on the basis of our legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR) (e.g. in the commercial operation of our online offering and its improvement) or if the use of cookies is necessary is to fulfill our contractual obligations (Art. 6 Para. 1 lit. b GDPR) and to protect the website (Art. 6 Para. 1 lit. e GDPR).
Storage period
Unless we provide you with explicit information about the storage period of permanent cookies (e.g. as part of a so-called cookie opt-in), please assume that the storage period can be up to 365 days.
General information on revocation and objection (opt-out):
Depending on whether the processing is based on consent (Art. 6 Para. 1 S. 1 lit. a. GDPR) or legal permission, you have the option at any time to to revoke the consent given or to object to the processing of your data through cookie technologies (collectively referred to as “opt-out”). You can first declare your objection using your browser settings, for example by deactivating the use of cookies (which may also limit the functionality of our online offering). You can optionally use our cookie manager to adjust your settings at any time. An objection to the use of cookies for online marketing purposes can also be made using a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/ be explained. You can also receive further objection information as part of the information about the service providers and cookies used.
Processing of cookie data based on consent
We use a procedure for cookie consent management, within which the user's consent (Art. 6 Para. 1 S. 1 lit. a. GDPR) to the use of cookies , or the processing and providers mentioned as part of the cookie consent management process, can be obtained and managed and revoked by users. The declaration of consent is saved so that it does not have to be asked again and to be able to prove consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie, or using comparable technologies) in order to be able to assign the consent to a user or their device.
Types of data & people processed
Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), users (e.g. website visitors, users of online services).
Settings for the respective browsers
Internet Explorer: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
Firefox: https://support.mozilla.org/de/kb/cookies -allow-and-reject
Chrome: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
Safari: https://support.apple.com/de-de/guide /safari/sfri11471/mac
Opera: http://help.opera.com/Windows/10.20/de/cookies.html
Cookie consent tool (manager)
Our website uses a so-called “cookie manager” to obtain user consent in the area of cookies, for cookies requiring consent and their applications. When visiting the website for the first time, the cookie manager gives all site visitors the opportunity, in the form of an interactive user interface, to set their consent for certain cookies and/or applications or to object to them. With the help of the tool, all cookies/services requiring consent are only loaded if the user has given the relevant consent. This ensures that such cookies are only loaded if consent has been given. Subsequent changes via the cookie manager are possible at any time on any subpage.
Technically necessary cookies cannot be saved or changed by the user in the cookie manager; this is done for the security of the website; these are only necessary technical cookies. By setting the settings in the cookie manager, a cookie is set to save the settings, as a result of which the processing takes place in accordance with (Art. 6 Para. 1 lit. f GDPR) and (Art. 6 Para. 1 S. 1 lit. a. GDPR) based on our legitimate interest in legally compliant, user-specific and user-friendly consent for cookies or your direct consent.
Another legal basis for processing is Article 6 Paragraph 1 Letter c GDPR.
Unless otherwise specified, the duration of storage of consent for cookies and its services can be up to 365 days. Here, a pseudonymous user identifier is created and stored with the time of consent, information about the scope of the consent (e.g. which categories of cookies and/or service providers) as well as the browser, system and device used.
The consent or revocation for the setting of cookies is logged by the system for the purpose of proof and stored for the duration of the consent or objection. The data only includes the IP address, the date and a pseudonym.
Google Analytics
Web analysis (also referred to as "reach measurement") is used to evaluate the flow of visitors to our online offering and can include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values.
With the help of reach analysis, we can, for example, identify at what time our online offering or its functions or content are used most frequently or invite reuse. We can also understand which areas require optimization. In addition to web analysis, we can also use testing procedures, for example to test and optimize different versions of our online offering or its components.
For these purposes, so-called user profiles can be created and stored in a file (so-called “cookie”) or similar procedures can be used for the same purpose.
This information may include, for example, content viewed, websites visited and elements used there and technical information such as the browser used, the computer system used and information about times of use. If users have consented to the collection of their location data, this can also be processed, depending on the provider. The users’ IP addresses are also stored.
However, we use an IP masking process (ie pseudonymization by shortening the IP address) to protect users. In general, as part of web analysis, A/B testing and optimization, no clear user data (such as email addresses or names) is stored, but rather pseudonyms. This means that we and the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures. Notes on legal bases
If we ask users for their consent to the use of third-party providers, the legal basis for processing data is consent.
Otherwise, user data will be processed based on our legitimate interests (i.e. interest in efficient, economical and beginner-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this data protection declaration. Types of data processed
Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Affected persons
users (e.g. website visitors, users of online services).
Purposes of processing
Reach measurement (e.g. access statistics, recognition of returning visitors), profiles with user-related information (creation of user profiles).
Security measures
IP masking (pseudonymization of the IP address), as well as settings to be set by the customer through the cookie manager with a clear declaration of intent for or against tracking with Google.
Legal basis
Consent (Art. 6 Para. 1 S. 1 lit. a. GDPR), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).
Services and service providers used
Google Analytics: reach measurement and web analysis
Service provider
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA;
YouTube videos
There are currently no videos from Google (YouTube) actively integrated on this site. If you are interested in the videos, we ask you to take a look at the relevant video portal.
Google reCAPTCHA
To ensure the security of this website, we also use the reCAPTCHA function from Google. This serves exclusively to protect the website, but also to protect your data. The reCAPTCHA function, which is provided by Google, is only integrated into input options on the website, such as the contact forms, and prevents improper use, manipulation of requests and protection against spam.
reCAPTCHA function
Google reCAPTCHA analyzes whether the potential visitor is real or whether it is a so-called " Bots that only have the goal of spreading spam
Types of data processed
Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
Affected persons
: users/customers (e.g. website visitors, users/customers of online services).
Purposes of processing
Provision of our online offering and user-friendliness, provision of contractual services and customer service, as well as the security of the website.
Legal basis
Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR), consent (Art. 6 Para. 1 S. 1 lit. a. GDPR), contract fulfillment and pre-contractual inquiries (Art. 6 Para. 1 S 1 lit. b. GDPR).
Service provider
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA;
Google privacy policy
https://policies.google.com/privacy
Social media plugins
We currently do not use any social media plugins on our website that can further enhance the user experience or evaluate the user, e.g. Facebook Pixel. If you would like to share content from our site, you must do this by copying and pasting the URL or content onto your device.
Information, blocking, provision or deletion of data
Below is detailed information about your rights and how you can exercise them.
Right to information - Article 15 EU GDPR
In particular, you have the right to information about your personal data processed by us, the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data has been or will be disclosed, the planned storage period and the criteria for this Determination of the storage period, the existence of a right to correction, deletion, restriction of processing, objection to processing, complaint to a supervisory authority, the origin of your data if it was not collected from you by us, the existence of automated decision-making including profiling and If necessary, meaningful information about the logic involved and the scope affecting you and the intended effects of such processing, as well as your right to be informed about what guarantees exist in accordance with Art. 46 GDPR when your data is forwarded to third countries.
Correction - Article 16 EU GDPR
You have the right to immediate correction of incorrect data concerning you and/or completion of incomplete data stored by us.
Deletion of data - Article 17 EU GDPR
You have the right to request the deletion of your personal data if the requirements of Article 17 Para. 1 GDPR are met. However, this right does not apply in particular if the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
Restriction of processing - Article 18 EU GDPR
You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data that you dispute is verified, if you refuse to have your data deleted due to unlawful data processing and instead request the restriction of the processing of your data if you reject your data to assert, exercise or defend legal claims after we no longer need this data after the purpose has been achieved or if you have lodged an objection for reasons relating to your particular situation, as long as it is not yet clear whether our legitimate reasons outweigh them.
Right to information in accordance with Article 19 EU GDPR
You have the right to be notified of the disclosure, correction, deletion or restriction of the data processed by us or you, provided you have agreed this with us or this is required by law.
Data portability - Article 20 EU GDPR
You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another person responsible, if this is technically feasible.
Right to object Art. 21 EU GDPR
If we process your personal data based on our overriding legitimate interest as part of a balancing of interests, you have the right at any time to object to this processing with future effect for reasons arising from your particular situation. If you exercise your right to object, we will stop processing the data concerned. If personal data is processed in order to conduct direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected to such direct advertising. If you object to the processing for direct advertising purposes, the personal data will no longer be processed for these purposes.
Revoke consent - Article 7 Paragraph 3 EU GDPR
You have the right to withdraw your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent before its revocation.
Complaints to a supervisory authority Art. 77 EU GDPR
If you believe that the processing of your personal data violates the GDPR, you have the right - without prejudice to any other administrative or judicial remedy - to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged violation.
The responsible supervisory authority is:
State Commissioner for Data Protection and Freedom of Information
North Rhine-Westphalia
Kavalleriestraße 2 - 4
40213 Düsseldorf
Download complaint form & further information
https://www.ldi.nrw.de/kontakt/ihre-beschwerde
Fax: +49 (0) 211 38424-999
E-mail:
Final words on the GDPR and data protection declaration
This data protection provision to protect your personal data will be revised from time to time due to new case law as of May 25, 2018.
You should therefore consult the Privacy Policy from time to time to stay informed about how your data is protected, processed or stored. The content and technical requirements are constantly being improved to ensure the highest level of security. The protection of your data is a personal concern for us.
Sources
Last updated on October 2nd, 2023