1 - Information on the collection of personal data
1.1. The following document outlines how we collect personal data when you use our website. Personal data includes all data that can be obtained about your person, such as your name, address, email address and user behaviour.
1.2. The controller as defined by Article 4 (7) of the EU General Data Protection Regulation (GDPR) is Thomas Bauer, Franz-Joseph-Strasse 10 in 80801 Munich, firstname.lastname@example.org, Tel.: +49 (0)89-3801900, Fax: +49 (0)89-380190-90.
1.3. When you contact us via email, the data you provide (your email address and, where applicable, your name and telephone number) is stored by us for the purpose of responding to your enquiries. We delete the personal data collected in this context once its storage is no longer required or limit its processing where there is a legal obligation to retain it.
2 - Collection of personal data when you visit our website
2.1. When you use the website purely for information purposes – that is, if you do not register or otherwise provide us with information – we only collect the personal data transmitted by your browser to our server. When you visit our website, we collect the following data that is technically necessary in order for us to display our website to you and ensure its stability and security (legal basis is Article 6 (1) Clause 1 Letter f GDPR):
- IP address of requesting computer
- Date and time of access
- Name and URL of file accessed
- Website from which access was gained (referrer URL),
- Browser used and, where applicable, the operating system of your computer and the name of your access provider.
The information stored in cookies is generated in connection with the specific device used on each visit. However, this does not mean that we become directly aware of your identity as a result.
We also store temporary cookies on your device for a specific period of time to optimise the user-friendliness of our website. If you visit our site again to make use of our services, the site automatically recognises that you have visited us before and remembers which inputs and settings you made, preventing you from having to enter them again.
The data processed by cookies is required for the aforementioned purposes to safeguard our legitimate interests in accordance with Article 6 (1) Clause 1 Letter f GDPR.
2.3. We use ‘The Webalizer’ tracking tool based on Article 6 (1) Clause 1 Letter f GDPR. We use the subsequent tracking measures to ensure that our website is appropriately designed and continuously optimised. We also use tracking measures to compile statistics about the use of our website and evaluate them for the purposes of optimising our service for you. ‘The Webalizer’ tracking tool collects the following data: IP address of requesting computer, date and time of access, name and URL of the file accessed, website from which access was gained (referrer URL), browser used and, where applicable, the operating system of your computer and the name of your access provider; it then transmits these data to a server operated by ebiz-consult GmbH & Co. KG, Kurt-Schumacher Ring 2, D-63329 Egelsbach. This data is used in anonymised form to evaluate use of the website, compile website activity reports and provide services associated with website and internet use for market research purposes and to ensure that the website is designed appropriately. IP addresses are anonymised and thus cannot be attributed to a user.
2.4. We use social plugins on our website from the social network Facebook to raise awareness of our company based on Article 6 (1) Clause 1 Letter f GDPR. We do this for promotional purposes as part of our legitimate interests as set out in the GDPR. The relevant provider is responsible for ensuring that their operations comply with data protection legislation. We use the ‘Like’ button provided by Facebook. This is a service provided by Facebook.
When you visit a page on our website that contains one of these plugins, your browser makes a direct connection to the Facebook servers. The content of the plug is directly transmitted to your browser and incorporated into the website by Facebook.
By integrating these plugins, Facebook receives information about the fact that your browser has visited the relevant page on our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is directly transmitted by your browser to a Facebook server in the USA and stored there.
If you are logged into Facebook, Facebook can directly assign your website visit to your Facebook account. When you interact with the plugin, e.g. by clicking the ‘Like’ button, the relevant information is transmitted directly to a
3 - Facebook server and stored there. This information is also posted by Facebook and displayed to your Facebook friends.
Facebook can use this information for promotional and market research purposes and to ensure that Facebook pages are appropriately designed. Facebook also creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, inform other Facebook users about your activities on our website and provide other services relating to the use of Facebook.
If you do not wish to allow Facebook to associate the data collected via our website with your Facebook account, you must log out of Facebook before visiting our website.
For more information about the purpose and scope of data collection and further processing and use of this data by Facebook, as well as your associated rights and possible settings to protect your privacy, please consult Facebook’s privacy notices.
3.1. You have the following rights with regard to the personal data we process relating to you:
- Right of access
- Right to rectification or erasure
- Right to restriction of processing
- Right to object to processing
- Right to data portability
3.2. You also have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data.
4 - Right to object
Where your personal data is processed based on our legitimate interests in accordance with Article 6 (1) Clause 1 Letter f GDPR, you have the right to file an objection to the processing of your personal data in accordance with Article 21 GDPR provided that there are grounds to do so arising from your particular situation or where the objection is against direct marketing. In the latter case, you have a general right to object that is implemented by us without a specific situation being indicated.
If you would like to exercise your right of revocation or right to object, it is sufficient to send an email to email@example.com.
5 - Data security
During your website visit, we use the widely-used SSL procedure in conjunction with the highest level of encryption supported by your browser.