We hereby inform you about the processing of personal data in connection with the use of our website.
Controller
The controller responsible for this website is Daniel Heller, Stammheimerstr. 129, 50735 Cologne, Germany. Further information about our company and the authorized representatives can be found in our imprint.
Which Data Are Processed?
Legal Basis for Data Processing
In order to provide you with our website and related services, we process personal data based on the following legal grounds:
• Your consent (Art. 6(1)(a) GDPR)
• Performance of a contract or in order to take steps prior to entering into a contract (Art. 6(1)(b) GDPR)
• Based on a balancing of interests (Art. 6(1)(f) GDPR)
• Compliance with a legal obligation (Art. 6(1)(c) GDPR)
We will refer to these terms in connection with the respective data processing operations to allow you to understand the basis on which your personal data are processed.
Where the processing of personal data is based on your consent, you may withdraw your consent at any time with future effect.
Where data processing is based on a balancing of interests, you have the right, subject to the requirements of Art. 21 GDPR, to object to the processing of your personal data.
Access Data
When you visit our website, personal data are processed in order to display the content of the website on your device.
The processing of your device’s IP address and other information about your browser is technically necessary for the correct display of the website.
We are obliged under data protection law to ensure the confidentiality and integrity of personal data processed via our IT systems.
For this purpose, and based on a balancing of interests, the following data are logged:
• IP address (in case of faulty website requests; stored in “Error Log” for a maximum of 7 days)
• Operating system of the accessing device
• Browser version of the accessing device
• Name of the accessed file
• Date and time of the request
• Amount of data transferred
• Referring URL
The IP address is deleted from all systems associated with the operation of this website after no more than 7 days. It is then no longer possible to establish a link to an individual person.
These data are also used to identify and correct errors on the website.
Contact Form
We provide a contact form on our website for requesting information about our products or services or for general inquiries. Mandatory fields are marked accordingly; all other information is voluntary.
The data you submit enable us to process your inquiry, address you appropriately, and respond to you. Processing is carried out for the performance of a contract or to take steps at your request prior to entering into a contract. In the case of general inquiries, processing is based on a balancing of interests.
Inquiries submitted via the contact form are processed electronically and may be reviewed by other departments or third parties as necessary to respond.
Data transmission via the contact form is encrypted.
Newsletter
You may subscribe to an email newsletter on our website. We process only your email address and any voluntary information you provide in the respective form.
You may unsubscribe from the newsletter at any time, either by contacting us directly or via the unsubscribe link included in each newsletter email.
To analyze and optimize the effectiveness of our newsletter mailings, we track whether emails are opened and links are clicked. This analysis is based on a balancing of interests. You may object to this tracking by unsubscribing from the newsletter.
In sending the newsletter, our service provider (“Chimpify”) may engage subcontractors outside the European Union. In such cases, the service provider ensures an adequate level of data protection as required by Art. 44 et seq. GDPR.
Cookies
We use cookies on our website. Cookies are small text files that are stored on your device via your browser.
Cookies are necessary to enable certain functions of our website. We use both session cookies, which are deleted automatically after your browser session ends, and persistent cookies, which remain stored beyond the session.
You can prevent the setting of cookies through your browser settings, but doing so may limit the functionality of our website. Cookies do not install or launch programs or other applications on your device.
Cookies are used based on a balancing of interests to provide a user-friendly website experience.
Web Analytics
This website uses the web analytics tool “Stetic.” The purpose is to tailor the website to user needs, based on a balancing of interests. Web analytics also enable us to detect and correct errors, such as broken links.
Stetic uses cookies to analyze your use of the website. You can prevent the collection of data generated by cookies regarding your website usage by opting out on our website.
Google Webfonts
We use Google Webfonts on our website to improve its visual presentation. This processing is based on a balancing of interests in achieving an attractive website design.
The fonts are loaded from Google servers, typically located in the United States. An adequate level of data protection is guaranteed by Google’s certification under the Privacy Shield framework.
Purpose of Processing Personal Data
We process the above-mentioned data to operate our website and fulfill contractual obligations toward our customers or to safeguard our legitimate interests.
Inquiries received outside an active customer relationship are processed for sales and marketing purposes. You have the right to object to the use of your personal data for marketing purposes at any time.
Voluntary Information
If you voluntarily provide us with data, for example via forms, and such data are not necessary for the fulfillment of contractual obligations, we assume that processing and use of these data are in your interest.
Recipients / Sharing of Data
Data provided to us are generally not disclosed to third parties, particularly not for their advertising purposes.
However, we may use service providers for the operation of our website or related services, and in such cases, the service providers may have access to personal data. We carefully select our service providers, paying particular attention to data protection and data security, and take all measures required under data protection law to ensure lawful processing.
Data Processing Outside the European Union
As noted, personal data may be processed outside the European Union, specifically for sending emails via the service provider “Chimpify,” which uses “Sendgrid.” Appropriate safeguards for data protection have been implemented, particularly through the application of the EU Standard Contractual Clauses, available on the websites of the European Commission.
Data Protection Officer
We are not legally required to appoint a data protection officer.
Your Rights as a Data Subject
You have the right to request access to your personal data at any time. Please direct such requests to us.
If your request for information is not made in writing, we may require proof of your identity.
You also have the right to request the rectification or erasure of your data, or the restriction of processing, as permitted by law.
Furthermore, you have the right to object to the processing of your data within the limits of the law, as well as the right to data portability.
Deletion of Data
Personal data are deleted once they are no longer necessary for the purposes for which they were collected. Retention may be necessary if the data are still required to fulfill contractual obligations, defend or assert legal claims, or comply with statutory retention periods. Data will be deleted once these obligations expire.
Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority concerning our processing of your personal data.
Amendments to this Privacy Notice
We will revise this Privacy Notice whenever changes to our website or other circumstances make it necessary. The current version is always available on this website.