Bu www.contourtrace.com web sitesi KUHN SOLUTIONS'a aittir. Bu nedenle, terim ContourTrace burada KUHN SOLUTIONS ile eşanlamlı olarak da kullanılabilir.
Şirketimize gösterdiğiniz ilgiden dolayı çok memnunuz. Veri koruma, KUHN SOLUTIONS yönetimi için özellikle yüksek bir önceliğe sahiptir. KUHN SOLUTIONS'ın internet sayfalarının kullanımı, herhangi bir kişisel veri belirtilmeksizin mümkündür. Ancak, bir veri konusu web sitemiz aracılığıyla kuruluşumuzun özel hizmetlerini kullanmak isterse, kişisel verilerin işlenmesi gerekli olabilir. Kişisel verilerin işlenmesi gerekliyse ve bu tür bir işlem için yasal bir dayanak yoksa, genellikle veri sahibinin onayını alırız.
Bir veri sahibinin adı, adresi, e-posta adresi veya telefon numarası gibi kişisel verilerin işlenmesi her zaman Genel Veri Koruma Yönetmeliğine ve KUHN SOLUTIONS için geçerli olan ülkeye özgü veri koruma düzenlemelerine uygun olacaktır. Bu veri koruma beyanı aracılığıyla kuruluşumuz, topladığımız, kullandığımız ve işlediğimiz kişisel verilerin niteliği, kapsamı ve amacı hakkında kamuoyunu bilgilendirmek istemektedir. Ayrıca, veri sahipleri bu veri koruma beyanı aracılığıyla hakları konusunda bilgilendirilir.
Kontrolör olarak KUHN SOLUTIONS, bu web sitesi aracılığıyla işlenen kişisel verilerin en eksiksiz şekilde korunmasını sağlamak için çok sayıda teknik ve organizasyonel önlem uygulamıştır. Bununla birlikte, İnternet tabanlı veri aktarımları her zaman güvenlik risklerine karşı savunmasız olabilir, bu nedenle mutlak koruma garanti edilemez. Bu nedenle, her veri sahibi kişisel verilerini bize alternatif yollarla, örneğin telefonla iletmekte serbesttir.
1. Tanımlar
KUHN SOLUTIONS'ın veri koruma beyanı, Avrupa Veri Koruma Denetmeni (EDPS) tarafından Veri Koruma Yönetmeliği (Veri Koruma Yönetmeliği) yayınlanırken kullanılan terimlere dayanmaktadır. Gizlilik politikamız, müşterilerimiz ve iş ortaklarımız için olduğu kadar kamuoyu için de okunması ve anlaşılması kolay olmalıdır. Bunu sağlamak için, kullanılan terminolojiyi önceden açıklamak istiyoruz.
Bu gizlilik bildiriminde diğerlerinin yanı sıra aşağıdaki terimleri kullanıyoruz:
- a) Kişisel verilerKişisel veriler, tanımlanmış veya tanımlanabilir bir gerçek kişiye (bundan böyle "veri sahibi" olarak anılacaktır) ilişkin her türlü bilgi anlamına gelir. Tanımlanabilir bir gerçek kişi, doğrudan veya dolaylı olarak, özellikle bir isim, kimlik numarası, konum verileri, çevrimiçi bir tanımlayıcı gibi bir tanımlayıcıya veya söz konusu gerçek kişinin fiziksel, fizyolojik, genetik, zihinsel, ekonomik, kültürel veya sosyal kimliğine özgü bir veya daha fazla faktöre atıfta bulunarak tanımlanabilen kişidir.
- b) Veri sahibiVeri sahibi, kişisel verileri kontrolör tarafından işlenen tanımlanmış veya tanımlanabilir herhangi bir gerçek kişidir.
- c) İşlemeİşleme, toplama, kaydetme, düzenleme, dosyalama, depolama, uyarlama veya değiştirme, geri alma, danışma, kullanma, iletim yoluyla ifşa etme, yayma veya başka bir şekilde kullanıma sunma, hizalama veya birleştirme, kısıtlama, silme veya imha etme gibi otomatik yollarla olsun veya olmasın kişisel veriler üzerinde gerçekleştirilen herhangi bir işlem veya işlemler dizisidir.
- d) İşlemenin kısıtlanmasıİşlemenin kısıtlanması, saklanan kişisel verilerin gelecekte işlenmesini sınırlandırmak amacıyla işaretlenmesidir.
- e) ProfillemeProfilleme, bir gerçek kişiyle ilgili belirli kişisel hususları değerlendirmek, özellikle de söz konusu gerçek kişinin işteki performansı, ekonomik durumu, sağlığı, kişisel tercihleri, ilgi alanları, güvenilirliği, davranışı, konumu veya konum değişikliği ile ilgili hususları analiz etmek veya tahmin etmek için bu tür kişisel verilerin kullanılmasını içeren kişisel verilerin her türlü otomatik işlenmesidir.
- f) Takma Ad Verme Takma ad verme, kişisel verilerin kimliği belirli veya belirlenebilir bir gerçek kişiye atfedilmemesini sağlamak için söz konusu ek bilgilerin ayrı tutulması ve teknik ve organizasyonel tedbirlere tabi olması kaydıyla, kişisel verilerin ek bilgiler kullanılmaksızın belirli bir veri sahibiyle ilişkilendirilemeyecek şekilde işlenmesidir.
- g) Kontrolör veya işlemeden sorumlu kişi Kontrolör veya işlemeden sorumlu kişi, kişisel verilerin işlenmesinin amaçlarını ve araçlarını tek başına veya diğerleriyle birlikte belirleyen gerçek veya tüzel kişi, kamu makamı, ajans veya diğer organdır. Söz konusu işleme amaçları ve araçlarının Birlik veya Üye Devlet hukuku tarafından belirlendiği hallerde, kontrolör veya kontrolörün belirlenmesine ilişkin spesifik kriterler Birlik veya Üye Devlet hukuku kapsamında sağlanabilir.
- h) İşleyiciİşleyici, kontrolör adına kişisel verileri işleyen gerçek veya tüzel kişi, kamu otoritesi, ajans veya başka bir organdır.
- i) AlıcıAlıcı, üçüncü taraf olsun veya olmasın, kişisel verilerin ifşa edildiği gerçek veya tüzel kişi, kamu makamı, ajans veya diğer organ anlamına gelir. Ancak, Birlik veya Üye Devlet hukuku kapsamında belirli bir soruşturma görevi bağlamında kişisel verileri alabilecek kamu makamları alıcı olarak kabul edilmeyecektir.
- j) Üçüncü tarafÜçüncü taraf, veri sahibi, kontrolör, işleyici ve kontrolör veya işleyicinin doğrudan sorumluluğu altında kişisel verileri işlemeye yetkili olan kişiler dışındaki bir gerçek veya tüzel kişi, kamu otoritesi, kurum veya diğer organ anlamına gelir.
- k) Rıza, veri sahibinin kendisiyle ilgili kişisel verilerin işlenmesini kabul ettiğini belirttiği bir beyan veya başka herhangi bir açık olumlu eylem biçiminde, belirli bir durum için isteklerini bilinçli ve açık bir şekilde özgürce belirtmesidir.
2. Kontrolörün adı ve adresi
Genel Veri Koruma Yönetmeliği, Avrupa Birliği Üye Devletlerinde geçerli olan diğer veri koruma yasaları ve veri koruma niteliğindeki diğer hükümler anlamında kontrolör
KUHN ÇÖZÜMLERİ
Daniel Kuhn
Schottenstraße 73
78462 Konstanz
Almanya
Tel: +49 (0) 7531 717 24 12
E-posta: info@contourtrace.com
Web sitesi: https://contourtrace.com/
3. Çerezler
KUHN SOLUTIONS'ın internet sayfalarında çerezler kullanılmaktadır. Çerezler, bir internet tarayıcısı aracılığıyla bir bilgisayar sisteminde dosyalanan ve depolanan metin dosyalarıdır.
Çok sayıda İnternet sayfası ve sunucusu çerez kullanır. Birçok çerez, çerez kimliği olarak adlandırılan bir kimlik içerir. Çerez kimliği, çerezin benzersiz bir tanımlayıcısıdır. İnternet sayfalarının ve sunucuların, çerezin kaydedildiği belirli İnternet tarayıcısına atanabileceği bir karakter dizisinden oluşur. Bu, ziyaret edilen İnternet sayfalarının ve sunucularının, veri sahibinin bireysel tarayıcısını diğer çerezleri içeren diğer İnternet tarayıcılarından ayırt etmesini sağlar. Belirli bir İnternet tarayıcısı, benzersiz çerez kimliği aracılığıyla tanınabilir ve tanımlanabilir.
Çerezlerin kullanımı sayesinde KUHN SOLUTIONS, bu web sitesinin kullanıcılarına çerez ayarı olmadan mümkün olmayacak daha kullanıcı dostu hizmetler sunabilir.
Bir çerez aracılığıyla, web sitemizdeki bilgiler ve teklifler kullanıcı açısından optimize edilebilir. Çerezler, daha önce de belirtildiği gibi, web sitemizin kullanıcılarını tanımamızı sağlar. Bu tanımanın amacı, kullanıcıların İnternet sitemizi kullanmasını kolaylaştırmaktır. Örneğin, çerez kullanan bir web sitesinin kullanıcısı, web sitesini her ziyaret ettiğinde erişim verilerini yeniden girmek zorunda değildir, çünkü bu web sitesi ve kullanıcının bilgisayar sisteminde depolanan çerez tarafından ele alınır. Bir başka örnek de çevrimiçi bir mağazadaki alışveriş sepetinin çerezidir. Online mağaza, bir müşterinin sanal alışveriş sepetine yerleştirdiği ürünleri bir çerez aracılığıyla hatırlar.
Veri sahibi, kullanılan internet tarayıcısının uygun bir ayarı aracılığıyla web sitemiz tarafından çerezlerin ayarlanmasını istediği zaman önleyebilir ve böylece çerezlerin ayarlanmasına kalıcı olarak itiraz edebilir. Ayrıca, önceden ayarlanmış olan çerezler, bir İnternet tarayıcısı veya diğer yazılım programları aracılığıyla herhangi bir zamanda silinebilir. Bu, tüm yaygın İnternet tarayıcılarında mümkündür. İlgili kişi kullanılan İnternet tarayıcısında çerez ayarını devre dışı bırakırsa, web sitemizin tüm işlevleri tam olarak kullanılamayabilir.
4. Genel veri ve bilgilerin toplanması
KUHN SOLUTIONS web sitesi, web sitesinin bir veri konusu veya otomatik sistem tarafından her çağrılmasıyla bir dizi genel veri ve bilgi toplar. Bu genel veriler ve bilgiler sunucunun günlük dosyalarında saklanır. Aşağıdaki veriler toplanabilir: (1) kullanılan tarayıcı türleri ve sürümleri, (2) erişim sistemi tarafından kullanılan işletim sistemi, (3) erişim sisteminin web sitemize eriştiği web sitesi (yönlendiren olarak adlandırılır), (4) web sitemizdeki erişim sistemi aracılığıyla erişilen alt web siteleri, (5) web sitesine erişim tarihi ve saati, (6) İnternet protokol adresi (IP adresi), (7) erişim sisteminin İnternet servis sağlayıcısı ve (8) bilgi teknolojisi sistemlerimize saldırı durumunda tehlikeyi önlemeye hizmet eden diğer benzer veriler ve bilgiler.
Bu genel veri ve bilgileri kullanırken, KUHN SOLUTIONS veri konusu hakkında herhangi bir sonuca varmaz. Aksine, bu bilgiler (1) web sitemizin içeriğini doğru bir şekilde sunmak, (2) web sitemizin içeriğini ve bunlara yönelik reklamları optimize etmek, (3) bilgi teknolojisi sistemlerimizin ve web sitemizin teknolojisinin uzun vadeli işlevselliğini sağlamak ve (4) bir siber saldırı durumunda kolluk kuvvetlerine kovuşturma için gerekli bilgileri sağlamak için gereklidir. Bu nedenle, KUHN SOLUTIONS, bir yandan anonim olarak toplanan verileri ve bilgileri analiz eder ve diğer yandan, işletmemizin veri korumasını ve veri güvenliğini artırmak amacıyla, işlediğimiz kişisel veriler için optimum düzeyde koruma sağlar. Sunucu günlük dosyalarının anonim verileri, bir veri konusu tarafından sağlanan herhangi bir kişisel veriden ayrı olarak saklanır.
5. Web sitesi üzerinden iletişim imkanı
KUHN SOLUTIONS'ın web sitesi, işletmemizle hızlı bir elektronik iletişimin yanı sıra bizimle doğrudan iletişim kurmayı sağlayan ve aynı zamanda sözde elektronik postanın (e-posta adresi) genel bir adresini içeren yasal gereklilikleri içerir. Bir veri konusu, e-posta yoluyla veya bir iletişim formu kullanarak denetleyiciyle iletişime geçerse, veri konusu tarafından iletilen kişisel veriler otomatik olarak saklanacaktır. Bir veri sahibi tarafından kontrolöre gönüllü olarak iletilen bu tür kişisel veriler, veri sahibinin işlenmesi veya iletişim kurulması amacıyla saklanacaktır. Bu kişisel verilerin üçüncü taraflara ifşa edilmesi söz konusu değildir.
6. Kişisel verilerin rutin olarak silinmesi ve engellenmesi
Kontrolör, veri sahibinin kişisel verilerini yalnızca saklama amacına ulaşmak için gerekli olan süre boyunca veya Avrupa Direktifi ve Tüzüğü veya kontrolörün tabi olduğu yasa veya yönetmeliklerdeki diğer yasa koyucu tarafından öngörülen durumlarda işleyecek ve saklayacaktır.
Saklama amacının geçerliliğini yitirmesi veya Avrupa Direktifi ve Yönetmelik Yapıcı veya başka bir yetkili yasa koyucu tarafından öngörülen bir saklama süresinin sona ermesi durumunda, kişisel veriler yasal hükümlere uygun olarak rutin olarak engellenecek veya silinecektir.
7. Veri sahibinin hakları
- a) Teyit hakkıHer veri sahibi, Avrupa Direktifi ve Yönetmeliği tarafından tanınan, kendisiyle ilgili kişisel verilerin işlenip işlenmediği konusunda kontrolörden teyit alma hakkına sahiptir. Bir veri sahibi bu teyit hakkını kullanmak isterse, herhangi bir zamanda kontrolörün herhangi bir çalışanıyla iletişime geçebilir.
- b) Erişim hakkıKişisel verilerin işlenmesinden etkilenen her kişi, Avrupa Direktifi ve Tüzüğü tarafından tanınan, kendisi hakkında saklanan kişisel verilerle ilgili bilgileri ve bu bilgilerin bir kopyasını kontrolörden istediği zaman ücretsiz olarak alma hakkına sahiptir. Buna ek olarak, Avrupa Direktifi ve Yönetmeliği, veri sahibine aşağıdaki bilgilere erişim hakkı tanımıştır:
- işleme amaçları
- işlenen kişisel veri kategorileri
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular in the case of recipients in third countries or international organizations
- where possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right to obtain the rectification or erasure of personal data concerning them, or to obtain the restriction of processing by the controller, or a right to object to such processing
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the data subject: Any available information on the origin of the data
- the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject
- c) Right of rectificationEvery person affected by the processing of personal data has the right granted by the European Directive and Regulation to request the immediate rectification of inaccurate personal data concerning him or her. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary declaration.If a data subject wishes to exercise this right of rectification, he or she may, at any time, contact any employee of the controller.
- d) Right to erasure (right to be forgotten)Every data subject concerned by the processing of personal data has the right granted by the European Directive and Regulation to obtain from the controller the erasure without delay of personal data concerning him or her, where one of the following grounds applies and insofar as the processing is not necessary:
- The personal data have been collected or otherwise processed for such purposes for which they are no longer necessary.
- The data subject revokes the consent on which the processing was based pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, and there is no other legal basis for the processing.
- The data subject objects to the processing pursuant to Art. 21 (1) DS-GVO and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Art. 21 (2) DS-GVO.
- The personal data have been processed unlawfully.
- The erasure of the personal data is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
- The personal data was collected in relation to information society services offered pursuant to Article 8(1) DS-GVO.
- e) Right to restriction of processingEvery data subject concerned by the processing of personal data has the right, granted by the European Directives and Regulations, to obtain from the controller the restriction of processing where one of the following conditions is met:
- The accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful, the data subject objects to the erasure of the personal data and instead requests the restriction of the use of the personal data.
- The controller no longer needs the personal data for the purposes of the processing, but the data subject needs it for the establishment, exercise or defense of legal claims.
- The data subject has objected to the processing pursuant to Article 21(1) of the GDPR and it is not yet clear whether the legitimate grounds of the controller override those of the data subject.
- f) Right to data portabilityEvery data subject concerned by the processing of personal data has the right, granted by the European Directives and Regulations, to obtain personal data concerning him or her, which has been provided by the data subject to a controller, in a structured, commonly used and machine-readable format. He or she also has the right to transmit such data to another controller without hindrance from the controller to whom the personal data have been provided, provided that the processing is based on consent pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR or on a contract pursuant to Article 6(1)(b) of the GDPR and that the processing is carried out by automated means, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.Furthermore, when exercising his or her right to data portability pursuant to Article 20(1) of the GDPR, the data subject shall have the right to obtain that the personal data be transferred directly from one controller to another controller, where technically feasible and provided that this does not adversely affect the rights and freedoms of other individuals.To assert the right to data portability, the data subject may at any time contact any employee of the KUHN SOLUTIONS.
- g) Right to objectEvery data subject concerned by the processing of personal data has the right, granted by the European Directives and Regulations, to object at any time, on grounds relating to his or her particular situation, to processing of personal data concerning him or her carried out on the basis of Article 6(1)(e) or (f) of the DS-GVO. This also applies to profiling based on these provisions.The KUHN SOLUTIONS shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.If the KUHN SOLUTIONS processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data processed for such marketing. This also applies to the profiling, insofar as it is related to such direct marketing. If the data subject objects to KUHN SOLUTIONS to the processing for direct marketing purposes, KUHN SOLUTIONS will no longer process the personal data for these purposes.In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to processing of personal data concerning him or her which is carried out by the KUHN SOLUTIONS for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the Data Protection Regulation, unless such processing is necessary for the performance of a task carried out in the public interest.In order to exercise the right to object, the data subject may directly contact any employee of the KUHN SOLUTIONS or another employee. The data subject is also free, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise his or her right to object by means of automated procedures using technical specifications.The data subject may exercise the right to object by means of automated procedures using technical specifications.
- h) Automated decisions in individual cases, including profilingEvery data subject concerned by the processing of personal data has the right, granted by the European Directive and Regulation, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her, unless the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is permitted by Union or Member State law to which the controller is subject, and that law contains suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is based on the data subject’s explicit consent.If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the data controller, or (2) it is made with the data subject’s explicit consent, the KUHN SOLUTIONS shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, which include at least the right to obtain the data subject’s involvement on the part of the controller, to express his or her point of view and to contest the decision.If the data subject wishes to exercise the rights concerning automated decisions, he or she may, at any time, contact any employee of the controller.
- i) Right to withdraw consent under data protection lawAny person concerned by the processing of personal data has the right granted by the European Directive and Regulation to withdraw consent to the processing of personal data at any time.If the data subject wishes to exercise the right to withdraw consent, he or she may, at any time, contact any employee of the controller.
8. Privacy policy on the use and application of Facebook
The controller has integrated components of the company Facebook on this website. Facebook is a social network
A social network is a social meeting place operated on the Internet, an online community that generally allows users to communicate and interact with each other in virtual space. A social network can serve as a platform for sharing opinions and experiences or enables the Internet community to provide personal or company-related information. Facebook allows social network users to create private profiles, upload photos, and network via friend requests, among other features.
The operating company of Facebook is Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. The controller of personal data, if a data subject lives outside the U.S. or Canada, is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Facebook Ireland Ltd.
With each call to one of the individual pages of this website operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Facebook component to download a representation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. Within the scope of this technical procedure, Facebook receives knowledge of which specific subpage of our website is visited by the data subject.
If the data subject is logged in to Facebook at the same time, Facebook recognizes which specific sub-page of our website the data subject is visiting with each call-up of our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the data subject. If the data subject activates one of the Facebook buttons integrated on our website, for example the “Like” button, or if the data subject makes a comment, Facebook assigns this information to the personal Facebook user account of the data subject and stores this personal data.
Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is simultaneously logged into Facebook at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Facebook component or not. If such transmission of this information to Facebook is not desired by the data subject, he or she can prevent the transmission by logging out of his or her Facebook account before calling up our website.
The data policy published by Facebook, which can be accessed at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. It also explains what setting options Facebook offers to protect the privacy of the data subject. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.
9. Privacy policy on the use and application of Google+
The controller has integrated the Google+ button as a component on this website. Google+ is a so-called social network. A social network is a social meeting place operated on the Internet, an online community that generally allows users to communicate with each other and interact in virtual space. A social network can serve as a platform for sharing opinions and experiences or enables the Internet community to provide personal or company-related information. Google+ allows social network users to create private profiles, upload photos, and network via friend requests, among other features.
The operating company of Google+ is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
With each call to one of the individual pages of this website operated by the controller and on which a Google+ button has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google+ button to download a representation of the corresponding Google+ button from Google. As part of this technical process, Google receives knowledge of which specific subpage of our website is visited by the data subject. More detailed information on Google+ is available at https://developers.google.com/+/.
If the data subject is logged into Google+ at the same time, Google recognizes which specific sub-page of our website the data subject is visiting with each call to our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the Google+ button and assigned by Google to the respective Google+ account of the data subject.
If the data subject activates one of the Google+ buttons integrated on our website and thus submits a Google+1 recommendation, Google assigns this information to the personal Google+ user account of the data subject and stores this personal data. Google stores the Google+1 recommendation of the data subject and makes it publicly available in accordance with the terms and conditions accepted by the data subject in this regard. A Google+1 recommendation made by the data subject on this website will subsequently be stored and processed together with other personal data, such as the name of the Google+1 account used by the data subject and the photo stored in this account, in other Google services, for example the search engine results of the Google search engine, the Google account of the data subject or in other places, for example on websites or in connection with advertisements. Furthermore, Google is able to link the visit to this website with other personal data stored by Google. Google further records this personal information for the purpose of improving or optimizing Google’s various services.
Google always receives information via the Google+ button that the data subject has visited our website if the data subject is simultaneously logged into Google+ at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Google+ button or not.
If a transmission of personal data to Google is not wanted by the data subject, he or she can prevent such transmission by logging out of his or her Google+ account before calling up our website.
Further information and the applicable privacy policy of Google can be found at https://www.google.de/intl/de/policies/privacy/. Further guidance from Google on the Google+1 button can be found at https://developers.google.com/+/web/buttons-policy.
10. Privacy policy on the use and application of LinkedIn
The controller has integrated components of the LinkedIn Corporation on this website. LinkedIn is an Internet-based social network that allows users to connect with existing business contacts and to make new business contacts. Over 400 million registered individuals use LinkedIn in more than 200 countries. This makes LinkedIn currently the largest platform for business contacts and one of the most visited websites in the world.
The operating company of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. For privacy issues outside the USA, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.
The company’s privacy policy is based on the privacy policy of LinkedIn Ireland.
With each individual retrieval of our website, which is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the data subject to download a corresponding representation of the component from LinkedIn. Further information on LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. As part of this technical procedure, LinkedIn receives knowledge of which specific subpage of our website is visited by the data subject.
If the data subject is logged in to LinkedIn at the same time, LinkedIn recognizes which specific sub-page of our website the data subject is visiting with each call-up of our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the data subject. If the data subject activates a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.
LinkedIn always receives information via the LinkedIn component that the data subject has visited our website if the data subject is simultaneously logged into LinkedIn at the time of calling up our website; this takes place regardless of whether the data subject clicks on the LinkedIn component or not. If such transmission of this information to LinkedIn is not desired by the data subject, he or she can prevent the transmission by logging out of his or her LinkedIn account before calling up our website.
LinkedIn offers the possibility to unsubscribe from e-mail messages, SMS messages and targeted ads as well as to manage ad settings at https://www.linkedin.com/psettings/guest-controls. LinkedIn further uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy. LinkedIn’s applicable privacy policy is available at https://www.linkedin.com/legal/privacy-policy. LinkedIn’s cookie policy is available at https://www.linkedin.com/legal/cookie-policy.
11. Privacy policy on the use and application of Twitter
The controller has integrated components of Twitter on this website. Twitter is a multilingual publicly accessible microblogging service on which users can publish and disseminate so-called tweets, i.e. short messages limited to 280 characters. These short messages can be accessed by anyone, including people who are not registered with Twitter. However, the tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow the tweets of a user. Furthermore, Twitter makes it possible to address a broad audience via hashtags, links or retweets.
The operating company of Twitter is Twitter, Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
With each call to one of the individual pages of this website operated by the controller and on which a Twitter component (Twitter button) has been integrated, the Internet browser on the information technology system of the data subject is automatically caused by the respective Twitter component to download a representation of the corresponding Twitter component from Twitter. Further information on the Twitter buttons can be found at https://about.twitter.com/de/resources/buttons. Within the scope of this technical procedure, Twitter receives knowledge of which specific sub-page of our website is visited by the data subject. The purpose of integrating the Twitter component is to enable our users to disseminate the content of this website, to make this website known in the digital world and to increase our visitor numbers.
If the data subject is logged into Twitter at the same time, Twitter recognizes which specific subpage of our website the data subject is visiting with each call to our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the Twitter component and assigned by Twitter to the respective Twitter account of the data subject. If the data subject activates one of the Twitter buttons integrated on our website, the data and information thus transmitted will be assigned to the personal Twitter user account of the data subject and stored and processed by Twitter.
Twitter receives data and information from the Twitter user account of the data subject.
Twitter always receives information via the Twitter component that the data subject has visited our website if the data subject is simultaneously logged into Twitter at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Twitter component or not. If the data subject does not want this information to be transmitted to Twitter, he or she can prevent the transmission by logging out of his or her Twitter account before calling up our website.
The applicable data protection provisions of Twitter are available at https://twitter.com/privacy?lang=de.
12. Privacy policy on the use and application of Xing
The controller has integrated components of Xing on this website. Xing is an Internet-based social network that allows users to connect with existing business contacts and to make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.
The operating company of Xing is XING SE, Dammtorstrasse 30, 20354 Hamburg, Germany.
Whenever one of the individual pages of this website operated by the controller is called up and on which a Xing component (Xing plug-in) has been integrated, the Internet browser on the information technology system of the data subject is automatically caused by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on the Xing plug-ins can be found at https://dev.xing.com/plugins. As part of this technical procedure, Xing receives knowledge of which specific subpage of our website is visited by the data subject.
If the data subject is logged in to Xing at the same time, Xing recognizes which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Xing component and assigned by Xing to the respective Xing account of the data subject. If the data subject activates one of the Xing buttons integrated on our website, for example the “Share” button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data.
Xing always receives information via the Xing component that the data subject has visited our website if the data subject is logged into Xing at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the Xing component or not. If the data subject does not want this information to be transmitted to Xing, he or she can prevent the transmission by logging out of his or her Xing account before accessing our website.
The privacy policy published by Xing, which can be accessed at https://www.xing.com/privacy, provides information about the collection, processing and use of personal data by Xing. Furthermore, Xing has published privacy notices for the XING Share button at https://www.xing.com/app/share?op=data_protection.
13. Privacy policy on the use and application of YouTube
The controller has integrated components of YouTube on this website. YouTube is an Internet video portal that allows video publishers to post video clips free of charge and other users to view, rate and comment on them, also free of charge. YouTube allows the publication of all types of videos, which is why both complete film and television shows, but also music videos, trailers or videos made by users themselves can be accessed via the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Whenever one of the individual pages of this website operated by the controller is called up and on which a YouTube component (YouTube video) has been integrated, the Internet browser on the information technology system of the data subject is automatically caused by the respective YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information on YouTube can be found at https://www.youtube.com/yt/about/de/. Within the scope of this technical procedure, YouTube and Google receive knowledge of which specific subpage of our website is visited by the data subject.
If the data subject is logged into YouTube at the same time, YouTube recognizes which specific sub-page of our website the data subject is visiting by calling up a sub-page that contains a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the data subject.
YouTube and Google always receive information via the YouTube component that the data subject has visited our website if the data subject is simultaneously logged into YouTube at the time of calling up our website; this takes place regardless of whether the data subject clicks on a YouTube video or not. If such transmission of this information to YouTube and Google is not wanted by the data subject, he or she can prevent the transmission by logging out of his or her YouTube account before calling up our website.
The privacy policy published by YouTube, which is available at https://www.google.de/intl/de/policies/privacy/, provides information about the collection, processing and use of personal data by YouTube and Google.
14. Legal basis of processing
Art. 6 I lit. a DS-GVO serves our company as the legal basis for processing operations in which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations that are necessary for a delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 I lit. b DS-GVO. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation by which a processing of personal data becomes necessary, such as for the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c DS-GVO. In rare cases, the processing of personal data might become necessary to protect vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were to be injured on our premises and as a result his or her name, age, health insurance data or other vital information had to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d DS-GVO.
Lastly, processing operations could be based on Art. 6 I lit. f DS-GVO. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary for the protection of a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject are not overridden. Such processing operations are permitted to us in particular because they were specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the data subject is a customer of the controller (recital 47, second sentence of the GDPR).
15. Legitimate interests in the processing pursued by the controller or a third party
If the processing of personal data is based on Article 6 I lit. f DS-GVO, our legitimate interest is the conduct of our business for the benefit of the well-being of all our employees and our shareholders.
16. Duration for which the personal data will be stored
The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of the period, the corresponding data will be routinely deleted, provided that they are no longer required for the performance of the contract or the initiation of the contract.
17. Legal or contractual requirements to provide the personal data; necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision
We would like to inform you that the provision of personal data is sometimes required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner).
In order to conclude a contract, it may sometimes be necessary for a data subject to provide us with personal data that must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with him or her. Failure to provide the personal data would mean that the contract with the data subject could not be concluded.
Before providing personal data by the data subject, the data subject must contact one of our employees. Our employee will explain to the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data, and what the consequences of not providing the personal data would be.
18. Existence of automated decision-making
As a responsible company, we do not use automated decision-making or profiling.
This data protection declaration was created by the data protection declaration generator of the DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as External Data Protection Officer Bamberg, in cooperation with the IT and data protection lawyer Christian Solmecke.
Further additions to the privacy policy
SSL Encryption
To protect the security of your data during transmission, we use state of the art encryption methods (e.g. SSL) via HTTPS.
SSL encryption
Contact form
If you contact us by e-mail or contact form regarding questions of any kind, you give us your voluntary consent for the purpose of contacting you. For this purpose, it is necessary to provide a valid e-mail address. This serves the assignment of the request and the subsequent response to the same. The provision of further data is optional. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions. After completion of your request, personal data will be automatically deleted.
Use of script libraries (Google Web Fonts)
In order to display our content correctly and in a graphically appealing manner across browsers, we use script libraries and font libraries such as Google Web Fonts (https://www.google.com/webfonts/) on this website. Google Web Fonts are transferred to your browser’s cache to avoid multiple loading. If the browser does not support Google Web Fonts or prevents access, content will be displayed in a standard font.
Calling script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – but currently also unclear whether and possibly for what purposes – that operators of corresponding libraries collect data.
The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/
Use of Google Maps
This website uses Google Maps API to visually display geographical information. When using Google Maps, Google also collects, processes and uses data about visitors’ use of the map functions. For more information about data processing by Google, you can see the Google privacy policy. There you can also change your personal privacy settings in the Privacy Center.
For detailed instructions on managing your own data in connection with Google products, please click here.
Change to our privacy policy
We reserve the right to adapt this privacy policy so that it always complies with the current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.
Questions to the data protection officer
If you have any questions about data protection, please write us an e-mail or contact the person responsible for data protection in our organization directly: Daniel Kuhn
The privacy statement extension was created using privacy statement generator by activeMind AG.