Privacy policy
Data privacy policy
The operators of these pages take the protection of your personal data very seriously.
1. privacy policy
This website (hereinafter “website”) is provided by CiS electronic GmbH (hereinafter “us” or “we”). Further information about the provider of the website can be found in our legal notice.
1.1 Name and address of the person responsible
The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is the:
CiS electronic GmbH
Europark Fichtenhain A 15
47807 Krefeld – Germany
Tel.: +49 2151 3787-0
E-Mail: info(at)cis.de
Website: www.cis.de1.2 Name and address of the data protection officer
The data protection officer of the controller is
Peter Breidbach
admeritia GmbH
Elisabeth-Selbert-Str. 1
40764 Langenfeld – GermanyTel. +49 (2173) 203630
Mobil +49 (1523) 69146 77
Fax +49 (2173) 20363 29
E-Mail: peter.breidbach(at)admeritia.de
Website: www.admeritia.de1.3 Basics of data processing
1.3.1 Purpose and scope of the processing of personal data
We collect and use our users' personal data only to the extent necessary to provide a functional website and our content and services.
The collection and use of personal data of our users only takes place regularly with the consent of the user.
An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by other statutory provisions.
- Consent Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
- Performance of a contract When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
- Legal obligation Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
- Vital interests In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR as the legal basis.
- Legitimate interests If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.
1.3.2 Storage period and data deletion
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies.
Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject.
Blocking (“restriction”) or deletion of the data also takes place if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.
1.3.3 Possibility of objection
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, the user has no option to object.
1.4 Handling of personal data
In the following, we would like to inform you about our handling of personal data when you use this website. Unless otherwise described in the following sections, the legal basis for the processing of your personal data results from the necessity of processing for the provision of the functionalities requested by you on this website (Art. 6(1)(b) General Data Protection Regulation).
1.5 Use of the website
1.5.1 Accessing the website
When you visit our website, your browser transmits certain data to our web server for technical reasons in order to provide you with the information you have requested.
To enable you to visit the website, the following data is collected, temporarily stored and used:
- IP address - date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Operating system and its access status / HTTP status code
- Amount of data transferred
- Website from which the request to our website originates
- Websites that are accessed by the user of our website
- Browser, language and version of the browser software
In addition, we store this data for a limited period of time to safeguard our legitimate interests in order to initiate a derivation of personal data in the event of unauthorized access or attempted access to local servers (Art. 6(1)(f) General Data Protection Regulation).
1.5.2 Use of cookies
What cookies are
We use so-called “cookies” on this website.
Cookies are small text files that are stored in the memory of your end device via your browser. Cookies store certain information (e.g. your preferred language or page settings), which can be sent back to us by your browser when you visit the website again (depending on the lifespan of the cookie).Which cookies we use
We distinguish between two categories of cookies: (1) technically necessary (functional) cookies, without which the functionality of our website and the provision of services for website users would be restricted, and (2) optional cookies for website analysis and marketing purposes.In principle, you can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or in general. If you do not accept cookies, the functionality of our website may be restricted.
We process the following optional cookies on this website:
Web analysis with Google Analytics
The purpose of processing these cookies is to assign a randomly generated ID for your device, which we use to recognize your device on your next visit. These cookies are stored for 6 months. Details on website analysis can be found below in the relevant section.Subject to your consent
We only use these optional cookies with your prior consent (Art. 6(1)(a) General Data Protection Regulation).When you visit our website for the first time, a banner appears on our website in which we ask for your consent to the use of optional cookies. If you give your consent, we will store a cookie on your computer and the banner will not be displayed again for the lifetime of the cookie. Thereafter, or if you actively delete this cookie beforehand, the banner will be displayed again the next time you visit our website in order to obtain your consent again.
How to prevent the use of cookies
Of course, you can also use our website without cookies. You can configure or completely deactivate the use of cookies in your browser settings at any time. However, this may restrict the functions or user-friendliness of our website. You can object to the use of optional cookies at any time by using the corresponding objection option in the table above.1.5.3 Google Analytics
On this website we use Google Analytics, a web analysis service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).
Google analyzes your use of this website on our behalf. Among other things, we use cookies for this purpose, which are described in detail in the cookie table above. The information collected by Google about your use of this website (e.g. the referring URL, pages visited on our website, the web browser you use, your language setting, the operating system you use or your screen resolution) is transferred to a Google server in the USA, stored there, analyzed and the result made available to us in anonymized form. Your usage data is not linked to your full IP address. We have activated the IP anonymization function offered by Google on this website so that the last octet (IPv4 type) or the last 80 bits (IPv6 type) of your IP address are deleted.
Google is certified in the EU-US Privacy Shield, so that an appropriate level of data protection is established for data at Google in the USA.The legal basis for the evaluation of your data using Google Analytics is a legitimate interest (i.e. interest in the analysis, optimization and economic operation of our apps) within the meaning of Art. 6 (1) (f) GDPR).
You can revoke your consent to web analysis at any time by either downloading and installing the available browser plugin from Google or by revoking your consent in the table above, whereby an opt-out cookie is set. Both options prevent web analysis only as long as you use a browser on which you have installed the plugin or as long as you do not delete the opt-out cookie.
Further information on Google Analytics can be found in the Google Analytics Terms of Use, in the Google Analytics Security and Privacy Policy and in the Google Privacy Policy.1.5.4. Google reCAPTCHA
On this website we use reCAPTCHA, a Catcha service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).
The use of reCAPTCHA serves to distinguish whether an input is made by a human or abusively by automated, machine processing. The query in this regard includes sending your IP address and any other data required by Google for the reCAPTCHA service to Google, where it is analyzed.
The legal basis for the evaluation of your data by reCAPTCHA is our legitimate interest in the correctness of data (e.g. to avoid automatic registrations or orders) (Art. 6 para. 1 lit. f GDPR).
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary to prevent bots and the economic operation of our online offer. The user has no option to object to this.
Google is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id= a2zt000000001L5AAI&status=Active).
Further information on Google reCAPTCHA and Google's privacy policy can be found at the following links: www.google.com/intl/de/policies/privacy/ and
https://www.google.com/recaptcha/intro/android.html1.5.5. Dealfront
Our website uses the technologies of Dealfront (Liidio Oy as part of Dealfront Group GmbH) to analyze visitor behavior.
In this process, the IP address of a visitor is processed.
The IP address is processed to help us understand which companies (B2B) visit our website. As part of the processing, the IP address is enriched with associated information such as the company name or industry code.
For this purpose, the IP address of the website visitor and the corresponding session data are compared with an extensive whitelist of known companies at the start of the session.
In order to increase the data protection of our visitors, we have activated “IP address anonymization” so that only shortened values are saved instead of the actual IP addresses and displayed with Dealfront. When this function is activated, we do not store the actual IP address anywhere in our systems, not even in the logs. This anonymization makes it impossible to establish a connection to external IP address information later on, which prevents the identification of an individual person. As part of this processing, so-called first-party cookies are used by Dealfront to analyze visitor behavior.
The resulting processing of personal data is based on our legitimate interest in optimizing our products, services, sales and marketing (in accordance with Art. 6 (1) lit. f GDPR).to prevent this processing, website visitors can limit the use of cookies to essential cookies as part of the privacy settings in their browser.
The data will be deleted as soon as it is no longer required for the intended purposes. However, statutory retention obligations may lead to a longer retention period for the data concerned.
We have concluded a data processing agreement with Dealfront to ensure compliance with the applicable data protection standards.
1.5.6 Use of contact forms
The sole purpose of processing personal data in the contact forms is to make contact.
You have the option of providing us with the following information in particular:
- First and last name, salutation
- Country - Contact details (e.g. e-mail address, telephone number)
- Message
We collect, process and use the information you provide via contact forms exclusively for processing your specific request. No data will be passed on to third parties in this context.
The legal basis for the transfer of data is consent in accordance with Art. 6 para. 1 lit. a GDPR in the case of registration.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR.
If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
We use the data for this purpose until the respective conversation with you has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The user has the option to revoke their consent to the processing of personal data at any time. If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.
1.5.7 Registration on our website
On our website, we offer users the opportunity to register by providing personal data in order to access certain content and services on our website.
The following data is entered into an input mask and transmitted to us and stored:
- All fields of the forms
- Operating system of the user
- Browser of the user - Name
- IP address
- Date/time of registrationThis data is stored in the WordPress databases and then sent by e-mail.
In the further registration process, the user's consent to the processing of their data is obtained.
The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR if the user has given consent.
The data will not be passed on to third parties.
The data will be deleted as soon as it is no longer required for the purpose for which it was collected.
1.5.8 Advertising contradictions
If you object to advertising purposes, we will add your personal contact details (name, address, telephone number, fax number, e-mail address) to a blacklist. This will ensure that we no longer send you unsolicited advertising.
The legal basis is a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR, whereby the legitimate interest is that we comply with our obligations arising from your objection to advertising. The data will only be stored for this purpose until you exercise your right to erasure in accordance with Art. 16 GDPR.
1.5.9 External services and content on our website
We integrate external services or content on our website. If you use such a service or if third-party content is displayed to you, communication data will be exchanged between you and the respective provider for technical reasons.
In addition, the provider of the respective services or content may process your data for other purposes of its own. We have configured services or content from providers that are known to process data for their own purposes to the best of our knowledge and belief in such a way that either communication for purposes other than to display the content or services on our website does not take place, or communication only takes place when you actively decide to use the service.
However, as we have no influence on the data collected by third parties and its processing by them, we cannot provide any binding information on the purpose and scope of the processing of your data.
For further information on the purpose and scope of the collection and processing of your data, please refer to the data protection notices of the respective providers of the services or content integrated by us who are responsible under data protection law:
– Youtube (Videos)
– Google Maps1.5.10. Google Web Fonts
Google Web Fonts are implemented on our websites. These are responsible for displaying fonts. By using Google Web Fonts, a Google server in the USA is called up unless your browser can access a local copy in the cache. Your IP address will be transmitted to Google. If you are also logged in to Google with an existing user account while visiting our websites, Google may also be able to associate your visit to our websites with your user behavior. We have no influence on this procedure and do not receive any information from Google about the transmitted content.
The provider is Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Further information on data protection at Google Inc. can be found at: https://www.google.com/intl/de/policies/privacy/
1.5.11. jQuery / ajax.googleapis.com
We use the JavaScript library jQuery on our websites. This library primarily enables a modern design of our websites. To increase the loading speed of our websites, we use Google's CDN (Content Delivery Network) to load this library. It is very likely that you have already downloaded jQuery from the Google CDN by visiting another website. In this case, your browser can access the copy stored in the cache. If your browser has not saved a copy in the cache or has downloaded the file from the Google CDN for another reason, your IP address will be transmitted to Google during the connection to the Google server. If you are also logged in to Google with an existing user account while visiting our websites, Google may also be able to associate your visit to our websites with your user behavior. In addition, other cookies may be sent to your browser by Google. We have no influence on this procedure and do not receive any information from Google about the transmitted content.
The provider is Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Further information on data protection at Google Inc. can be found at: http://www.google.de/policies/privacy/
1.5.12. Font Awesome
We process connection data and browser data with our processor Fontawesome, Fonticons, Inc, 6 Porter Road, Apartment 3R, Cambridge, MA 02140, USA, for the purpose of providing the fonts required by the web browser to display the website. This data is only processed for the duration required to select and transmit the fonts.
The legal basis for data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the ‘website’ service expressly requested by you by calling it up) in accordance with Art. 6 Para. 1 lit. f GDPR.
Soweit durch Fontawesome eine weitergehende eigenständige Verarbeitung der Daten erfolgt, ist Fontawesome dafür alleinige Verantwortliche. Details finden Sie in der Datenschutzerklärung von Fontawesome.
1.5.13. Google Maps
Im Fall der Erteilung Ihrer Einwilligung verarbeiten wir mit dem Dienst Google Maps, Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA, als gemeinsame Verantwortliche Ihre personenbezogenen Daten zum Zweck der Anzeige interaktiver Karten auf unserer Website.
We enable the service to collect connection data, to collect data from your web browser and to place an advertising cookie. By placing advertising cookies, Google is able to calculate an individual user ID for each user. This personal data, which is suitable for unambiguous identification, is then processed within the advertising network operated by Google.
Soweit durch Google eine weitergehende eigenständige Verarbeitung der Daten insbesondere im Rahmen des Werbenetzwerkes von Google erfolgt, ist Google dafür alleinige Verantwortliche. Details finden Sie in der Datenschutzerklärung von Google.
Die Nichterteilung der Einwilligung hat lediglich zur Folge, dass Ihnen der Dienst Google Maps nicht zur Verfügung gestellt wird. Eine bereits erteilte Einwilligung können Sie widerrufen, indem Sie die Datenschutzeinstellungen ändern.
Die Rechtsgrundlage für die Datenverarbeitung ist Ihre Einwilligung gemäß Art. 6 Abs 1 lit. a DSGVO. Die Rechtsgrundlage für die Übermittlung in die USA ist der Durchführungsbeschluss der EU-Kommission C/2016/4176 sowie die erfolgte Privacy Shield Zertifizierung.
1.5.14. Social media presences / social networks in general
CiS maintains online presences within social networks. In this context, they process user data in order to communicate with active users or to offer information.
CiS would like to point out that user data may be processed outside the European Union. This may result in risks for users, e.g. the enforcement of users' rights could be made more difficult.
As a rule, user data within social networks can be processed for market research and advertising purposes. For example, user profiles can be created based on user behaviour and the resulting interests of the users. The user profiles can in turn be used, for example, to place adverts within and outside the networks that may correspond to the interests of the users. For this purpose, cookies are usually stored on the user's computer, in which the user's usage behaviour and interests are stored. Furthermore, data can be stored in user profiles regardless of the devices used by the users.
The description of the respective processing and the possibilities of objection (opt-out) can be found in the data protection declarations and information provided by the operators of the respective social networks.
In the case of requests for information and the assertion of data subject rights, we would like to point out that these should be asserted with the providers. Only they have access to the user's data and can take measures and provide information.
Facebook: CiS is jointly responsible with Facebook Ireland Ltd. for the collection (but not the further processing) of data from visitors to our Facebook page (so-called ‘fan page’). This includes information about the types of content users view or interact with, or the actions they take (see Facebook Data Policy: https://www.facebook.com/policy ‘Things done and provided by you and others"), as well as information about the devices used by users (see “Device Information” in the Facebook Data Policy Statement: https://www.facebook.com/policye.g. IP addresses). Facebook also collects and uses information to provide analytics services, known as ‘Page Insights’, for page operators so that they can gain insights into how people interact with their pages and the content associated with them. We have concluded a special agreement with Facebook that regulates the security measures that Facebook must observe and in which Facebook has agreed to fulfil the rights of data subjects (see https://www.facebook.com/legal/terms/page_controller_addendum‘Information on Page Insights’, users can, for example, send information or deletion requests directly to Facebook). The rights of users are not restricted by the agreements with Facebook. Comprehensive information on Page Insights can be found here: https://www.facebook.com/legal/terms/information_about_page_insights_data.
- Processed data types:Inventory data (e.g. names, addresses), contact data (e.g. email, telephone numbers), content data (e.g. entries in online forms), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
- Persons concerned:Users (e.g. website visitors, users of online services).
- Purposes of the processing:Contact requests and communication, tracking (e.g. interest/behavioural profiling, use of cookies), remarketing, reach measurement (e.g. access statistics, recognition of returning visitors).
- Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).
Services used and service providers:
- Instagram:In Anspruch genommene Dienstleistungen und Dienstleistungsanbieter: https://www.instagram.com; privacy policy https://instagram.com/about/legal/privacy.
- Facebook:Social network; service provider: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, parent company: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA; Website: https://www.facebook.com; privacy policy https://www.facebook.com/about/privacy; Possibility to object (opt-out): Settings for adverts: https://www.facebook.com/settings?tab=ads.
- LinkedIn:Social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com; privacy policy https://www.linkedin.com/legal/privacy-policy; Possibility of objection (opt-out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
- Xing:Social network; Service provider: XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany; Website: https://www.xing.de; privacy policy https://privacy.xing.com/de/datenschutzerklaerung.
Social Mediaplattform Linkedin
CiS electronic GmbH uses the data available on LinkedIn under https://www.linkedin.com/company/cis-electronic-gmbh/ offered information service on the technical platform and the services of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
We would like to point out that you use this LinkedIn page and its functions at your own risk. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating).
When you visit our LinkedIn page, LinkedIn collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. This information is used to provide us, as the operator of the LinkedIn pages, with statistical information about the use of the LinkedIn page. LinkedIn provides more information on this under the following link: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv.
The data collected about you in this context is processed by LinkedIn Inc. and may be transferred to countries outside the European Union. LinkedIn describes in general terms what information LinkedIn receives and how it is used in its data usage guidelines. There you will also find information on how to contact LinkedIn and on the settings options for advertisements. The data usage guidelines are available at the following link:
https://www.linkedin.com/legal/privacy-policy
How LinkedIn uses the data from visits to LinkedIn pages for its own purposes, to what extent activities on the LinkedIn page are assigned to individual users, how long LinkedIn stores this data and whether data from a visit to the LinkedIn page is passed on to third parties is not conclusively and clearly stated by LinkedIn and is not known to us.
When you access a LinkedIn page, the IP address assigned to your end device is transmitted to LinkedIn. According to LinkedIn, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. LinkedIn also stores information about the end devices of its users (e.g. as part of the “login notification” function); LinkedIn may thus be able to assign IP addresses to individual users.
If you are currently logged in to LinkedIn as a user, a cookie with your LinkedIn ID is stored on your device. This enables LinkedIn to track that you have visited this page and how you have used it. This also applies to all other LinkedIn pages. LinkedIn buttons integrated into websites enable LinkedIn to record your visits to these websites and assign them to your LinkedIn profile. This data can be used to tailor content or advertising to you.
If you want to avoid this, you should log out of LinkedIn or deactivate the “stay logged in” function, delete the cookies on your device and close and restart your browser. In this way, LinkedIn information that can be used to directly identify you will be deleted. This allows you to use our LinkedIn page without revealing your LinkedIn identifier. If you access interactive functions on the site (like, comment, share, message, etc.), a LinkedIn login screen will appear.
After logging in, you will again be recognizable to LinkedIn as a specific user.
Information on how to manage or delete information about you can be found on the following LinkedIn support pages:
https://www.linkedin.com/legal/privacy-policy
As the provider of the information service, we do not collect and process any other data from your use of our service.
1.5.15 Borlabs Cookie
Auf unserer Website verwenden wir das Plugin Borlabs Cookie, um Cookie-Einwilligungen gemäß der DSGVO einzuholen und zu verwalten. Dieses Plugin ermöglicht es, die Zustimmung der Nutzer zu verschiedenen Cookie-Arten (z. B. Marketing, Analyse) zu speichern und zu dokumentieren.
Legal basis:
The processing is carried out on the basis of Art. 6 para. 1 lit. c GDPR (legal obligation) and Art. 6 para. 1 lit. a GDPR (consent).Storage duration:
Consent will be stored for the duration required by law. Further information can be found at: Borlabs Cookie.1.5.16 Virtual Spaces / iFrame / Virtual tour
Our website uses Virtual Spaces to display virtual tours. This content is integrated via iFrames, which means that your IP address and other communication data are transmitted to the provider's server for technical reasons.
Legal basis:
The use is based on your consent (Art. 6 para. 1 lit. a GDPR), which you can give when accessing the corresponding content.Provider:
- Omnia360 GmbH, Münsterstraße 5, 40476 Düsseldorf, Deutschland
Further information: Omnia360 Datenschutzerklärung. - Virtual Spaces from CiS: Virtual Spaces Datenschutz.
- Omnia360 GmbH, Münsterstraße 5, 40476 Düsseldorf, Deutschland
1.5.18 Personio (Vacancies / API)
Our website uses Personio, a software for the integration of job advertisements. Job advertisements are automatically integrated via the Personio API. When using the functions, personal data such as your IP address and data entered by you may be transmitted to Personio.
Legal basis:
Processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR (contract initiation for applications) and Art. 6 para. 1 lit. a GDPR (consent).Provider: Personio GmbH, Rundfunkplatz 4, 80335 München, Deutschland
Further information: Personio privacy policy.1.5.19 ShortPixel Image Optimizer
On our website we use ShortPixel, a plugin for image optimization. Your IP address and technical data from your browser may be transmitted to the ShortPixel servers.
Legal basis:
The use is based on our legitimate interest in optimizing website performance in accordance with Art. 6 para. 1 lit. f GDPR.Provider: IDSC Holdings, Inc. (ShortPixel), 6 Liberty Square #964, Boston, MA 02109, USA
Further information: ShortPixel privacy policy.
1.6 Forwarding of data for processing on our behalf
We sometimes use specialized service providers to process your data. We carefully select and regularly monitor our service providers.
They process personal data only on our behalf and strictly in accordance with our instructions on the basis of corresponding order processing contracts.
The legal basis for the use of these processors is a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. for the pursuit of our business purposes, in particular the implementation of the services described in this privacy policy. A conflicting interest is not apparent because we have concluded a contract with the respective contractors in accordance with Art. 28 GDPR.
1.6.1 Involvement of processors for hosting
Raidboxes
Wir hosten unsere Website bei unserem Auftragsverarbeiter Raidboxes, RAIDBOXES GmbH, Friedrich-Ebert-Straße 7, 48153 Münster, Deutschland.
Connection data is processed for the purpose of providing and delivering the website. For the sole purpose of delivering and providing the website, the data is not stored beyond the call.
The legal basis for data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the “website” service expressly requested by you by calling it up) in accordance with Art. 6 Para. 1 lit. f GDPR.
To operate the website, the connection data and other personal data are also processed as part of various other functions and services. Detailed information on this is provided in this privacy policy for the individual functions and services.
1.6.2 Involvement of processors for administration, troubleshooting and support services
For administrative, troubleshooting and support services for our website, we use an external service provider, Robert Wegner | Germaniastr. 39 | 47800 Krefeld, who may therefore also have access to your personal data.
In principle, Mr. Wegner does not store personal data. Only in exceptional cases will such data be stored, for example if this should be necessary in connection with the rectification of technical problems.
In these cases, data will only be stored to the extent and for the duration required.
1.7 Processing of data outside the EU / EEA
Some of your data is also processed in countries outside the European Union (“EU”) or the European Economic Area (“EEA”), where the level of data protection may generally be lower than in Europe.
In these cases, we ensure that an adequate level of data protection is guaranteed for your data, e.g. through contractual agreements with our contractual partners (copy available on request), or we ask for your express consent.
1.8 Information about your rights
You have extensive rights under the applicable data protection laws.
1.8.1 Right to information
You can request confirmation from the controller as to whether personal data concerning you is being processed by us.
If such processing has taken place, you can request the following information from the controller:
(1) the purposes for which the personal data are processed;
(2) the categories of personal data that are processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the planned duration of storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the duration of storage;
(5) the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) all available information on the origin of the data if the personal data are not collected from the data subject;
(8) the existence of automated decision-making including profiling in accordance with Art. 22 (1) and (4) GDPR and - at least in these cases - meaningful information on the logic involved and the scope and intended effects of such processing for the data subject.
You have the right to request information as to whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer.1.8.2 Right to rectification
You have a right to rectification and/or completion vis-à-vis the controller if the processed personal data concerning you is incorrect or incomplete.
Der Verantwortliche hat die Berichtigung unverzüglich vorzunehmen.1.8.3 Right to restriction of processing
You may request the restriction of the processing of your personal data under the following conditions:
(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
(2) the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
(3) the controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims, or
(4) if you have objected to the processing pursuant to Art. 21 (1) GDPR and it is not yet certain whether the legitimate reasons of the controller outweigh your reasons.If the processing of personal data concerning you has been restricted, such data may only be processed - apart from being stored - with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.
1.8.4. Right to erasure
a) Obligation to delete
You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent on which the processing was based pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR and there is no other legal basis for the processing.
(3) You object to the processing pursuant to Art. 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) GDPR.
(4) The personal data concerning you has been processed unlawfully.
(5) The deletion of personal data concerning you is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject.
(6) The personal data concerning you were collected in relation to information society services offered in accordance with Art. 8 para. 1 GDPR.b) Information to third parties
If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17(1) GDPR, it shall take reasonable steps, including technical measures, taking into account the available technology and the cost of implementation, to inform controllers which are processing the personal data that you as the data subject have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
c) Exceptions
The right to erasure does not exist if the processing is neces
(1) to exercise the right to freedom of expression and information;
(2) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the area of public health pursuant to Art. 9 para. 2 lit. h and i and Art. 9 para. 3 GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Art. 89 para. 1 GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing, or
(5) for the assertion, exercise or defense of legal claims.1.8.5 Right to information
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the controller.
1.8.6 Right to data portability
You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to which the personal data has been provided, where
(1) the processing is based on consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract pursuant to Art. 6 para. 1 lit. b GDPR and
(2) the processing is carried out by automated means.In exercising this right, you also have the right to have the personal data concerning you transmitted directly from one controller to another, where technically feasible. The freedoms and rights of other persons must not be affected by this.
The right to data portability does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
1.8.7 Right of objection
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.
The controller will no longer process the personal data concerning you unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
In connection with the use of information society services - notwithstanding Directive 2002/58/EC (ePrivacy Directive) - you have the option of exercising your right to object by automated means using technical specifications.
1.8.8 Right to revoke the declaration of consent under data protection law
You have the right to revoke your declaration of consent under data protection law at any time.
The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
1.8.9 Automated decision-making in individual cases including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
This does not apply if the decision
(1) is necessary for the conclusion or performance of a contract between you and the controller,
(2) is authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
(3) with your explicit consent. However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a (“explicit consent” or g GDPR (“public interest”) applies and appropriate measures have been taken to protect the rights and freedoms as well as your legitimate interests.
In the cases referred to in (1) and (3), the data controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.
1.8.10. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.
The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
1.9 Adaptation of the privacy policy
We reserve the right to update this privacy policy from time to time. Updates to this privacy policy will be published on our website.
Changes apply from the time of their publication on our website. We therefore recommend that you visit this page regularly to check for any updates.
Status: September 15, 2024