1. Data protection at a glance
Data collection on my website
Who is responsible for the data collection on this website?
Data processing on this website is carried out by the website operator. You can find their contact details in thelegal notice of this website.
How do I collect your data?
On the one hand, your data is collected when you provide it to me. This can be, for example, data that you enter in a contact form.
Other data is collected automatically by my IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter my website.
What do I use your data for?
Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyse your user behaviour.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. You can contact me at any time at the address given in the imprint if you have any further questions on the subject of data protection. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Third-party analysis tools and tools
When visiting my website, your surfing behaviour can be statistically analysed. This is done mainly with cookies and with so-called analysis programmes. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you.
You can object to this analysis or prevent it by not using certain tools. You can find detailed information about these tools and about your objection options in the following data protection declaration.
2. General notes and mandatory information
I would like to point out that data transmission on the internet (e.g. communication by e-mail) can have security gaps. Complete protection of the data against access by third parties is not possible.
Note on the responsible body
The data controller for this website is:
Bundesstraße 35 A
Phone: +49 (0) 4624 44 700 98
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
Withdrawal of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke an already granted consent at any time. All you need to do is send me an informal e-mail. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to the collection of data in specific cases and to direct marketing (Art. 21 GDPR)
If your personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection pursuant to Art. 21 (2) GDPR).
Right of appeal to the competent supervisory authority
In the event of breaches of the GDPR, data subjects shall have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, place of work or the place of the alleged breach. The right of appeal is without prejudice to any other administrative or judicial remedy.
Right to data portability
You have the right to have data that I process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to me as the site operator, this site uses an SSL or SSL protocol. TLS-encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you send to me cannot be read by third parties.
Information, blocking, deletion and correction
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if applicable, a right to correction, blocking or deletion of this data. You can contact me at any time at the address given in the imprint if you have any further questions on the subject of personal data.
Right to restrict processing
You have the right to request the restriction of the processing of your personal data. You can contact me at any time at the address given in the imprint. The right to restrict processing exists in the following cases:
If you dispute the accuracy of your personal data held by me, I will usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of erasure.
If I no longer need your personal data, but you need it to exercise, defend or enforce legal claims, you have the right to request restriction of the processing of your personal data instead of deletion.
If you lodge an objection under Art. 21 para. 1 GDPR, a balance must be struck between your interests and mine. As long as it has not yet been determined whose interests prevail, you have the right to demand the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data may – apart from being stored – only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.
Objection to advertising emails
The use of contact data published within the scope of the imprint obligation for the transmission of advertising and information material not expressly requested is herewith objected to. The operator of the pages expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information, for example by spam e-mails.
3. data collection on my website
The internet pages partly use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies are used to make my website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies I use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow me to recognise your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping basket function) are stored on the basis of Art. 6 Para. 1 GDPR gespeichert. The website operator has a legitimate interest in storing cookies for the technically error-free and optimised provision of its services. If other cookies (e.g. cookies to analyse your surfing behaviour) are stored, these are dealt with separately in this data protection declaration.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to me.
- Browser type and version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
This data is not merged with other data sources.
The collection of this data is based on Art. 6 para. 1 GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website – for this purpose, the server log files must be recorded.
If you send me enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored by me for the purpose of processing the enquiry and in the event of follow-up questions. I will not share this data without your consent.
The data entered in the contact form is therefore processed exclusively on the basis of your consent (Art. 6 para. 1 GDPR). You can revoke this consent at any time. All you need to do is send me an informal e-mail. The lawfulness of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with me until you ask me to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after processing your enquiry has been completed). Mandatory statutory provisions – in particular retention periods – remain unaffected.
Request by email or telephone
If you contact me by e-mail or telephone, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by me for the purpose of processing your request. I will not share this data without your consent.
The processing of this data is based on Art. 6 para. 1 GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1a GDPR) and/or on my legitimate interests (Art. 6 para. 1f GDPR), as I have a legitimate interest in the effective processing of the requests addressed to me.
The data you send to me via contact requests will remain with me until you ask me to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.
4. Social media
Social-Media-Plugins with Shariff
Plugins from social media are used on my pages (e.g. Facebook, Instagram, LinkedIn).
You can usually recognise the plugins by the respective social media logos. To ensure data protection on my website, I only use these plugins together with the so-called “Shariff” solution. This application prevents the plug-ins integrated on my website from transmitting data to the respective provider when you first enter the page.
Only when you activate the respective plugin by clicking on the associated button, a direct connection to the provider’s server is established (consent). As soon as you activate the plugin, the respective provider receives the information that you have visited my site with your IP address. If you are logged into your respective social media account (e.g. Facebook) at the same time, the respective provider can assign the visit to my pages to your user account.
Activating the plugin constitutes consent within the meaning of Art. 6 para. 1a GDPR. You can revoke this consent at any time with effect for the future.
Facebook Plugins (Like & Share-Button)
Plugins of the social network Facebook, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, are integrated on my pages. You can recognise the Facebook plugins by the Facebook logo or the “Like” button on my page. You can find an overview of the Facebook plugins here: https://developers.facebook.com/docs/plugins/?locale=de_DE.
If you do not want Facebook to be able to associate your visit to my pages with your Facebook user account, please log out of your Facebook user account.
The use of Facebook plugins is based on Art. 6 para. 1f GDPR. The website operator has a legitimate interest in achieving the greatest possible visibility in social media.
Functions of the Instagram service are integrated on my pages. These functions are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA.
If you are logged into your Instagram account, you can link the content of my pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate the visit to my pages with your user account. I would like to point out that I, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Instagram.
The use of the Instagram plugin is based on Art. 6 para. 1f GDPR. The website operator has a legitimate interest in achieving the greatest possible visibility in social media.
If you would like to receive the newsletter offered on the website, I require an email address from you as well as information that allows me to verify that you are the owner of the email address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. I use this data exclusively for sending the requested information and do not pass it on to third parties.
The data entered in the newsletter registration form is processed exclusively on the basis of your consent (Art. 6 para. 1a GDPR). You can revoke your consent to the storage of data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by me until you unsubscribe from the newsletter and will be deleted after you unsubscribe from the newsletter. Data stored by me for other purposes remain unaffected by this.
6. Plugins and Tools
YouTube with enhanced data protection
My website uses plugins from the website YouTube. The operator of the pages is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
I use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the disclosure of data to YouTube partners is not necessarily excluded by the extended data protection mode. This is how YouTube connects to the Google DoubleClick network – regardless of whether you watch a video.
As soon as you start a YouTube video on my website, a connection to the YouTube servers is established. This tells the YouTube server which of my pages you have visited. If you are logged into your YouTube account, you allow YouTube to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, YouTube can save various cookies on your end device after starting a video. With the help of these cookies, YouTube can obtain information about visitors to my website. This information is used, among other things, to collect video statistics, improve the user experience and prevent fraud attempts. The cookies remain on your terminal device until you delete them.
Gegebenenfalls können nach dem Start eines YouTube-Videos weitere Datenverarbeitungsvorgänge ausgelöst werden, auf die ich keinen Einfluss habe.
YouTube is used in the interest of an appealing presentation of my online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1f GDPR.
Google Maps (with consent)
This site uses the map service Google Maps via an API. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
To ensure privacy on my website, Google Maps is disabled when you first enter my website. A direct connection to Google’s servers is only established when you activate Google Maps yourself (consent according to Art. 6 para. 1a GDPR). This prevents your data from being transferred to Google when you first enter the page.
After activation, Google Maps will store your IP address. This is then usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission after the activation of Google Maps.
I use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on my websites. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
The purpose of reCAPTCHA is to check whether the data input on my websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor on the basis of various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For analysis purposes, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place.
The data processing is based on Art. 6 para. 1f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated spying and from SPAM.