Privacy Policy
The management of Köttker Kommunikation places great value on data protection. In principle, it is possible to use the websites of Köttker Kommunikation without providing personal data. However, should a data subject wish to make use of specific services offered by our company on our website, it may be necessary to process personal data. Should it be necessary to process personal data and if no legal basis exists for such processing, we generally seek the consent of the data subject.
The processing of personal data, for example the name, address, email address or telephone number of a data subject always occurs in accordance with the General Data Protection Regulation and in accordance with the national data protection regulations applicable to Köttker Kommunikation. With this privacy policy our company wishes to inform the public about the type, scope and purpose of the personal data, collected, used and processed by us. Furthermore, this privacy policy informs data subjects of the rights they have.
Köttker Kommunikation as the data controller has implemented numerous technical and organisational measures in order to ensure that the protection of the personal data processed through this website is as complete as possible. However, internet-based data transfers may inherently have safety gaps so that an absolute protection cannot be guaranteed. Therefore, each data subject is free to convey personal data to us via another channel, for example by phone.
1. Definition of Terms
The privacy policy of Köttker Kommunikation is based on the terms used by the European legislators when issuing the General Data Protection Regulation (GDPR). Our privacy policy should be easy for the general public but also for our clients and business partners to read and understand. To ensure that this is the case, we first wish to explain the terms used.
In this privacy policy we use among other things the following terms:
a) Personal Data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
b) Data Subject
The data subject is any identified or identifiable natural person whose personal data is processed by the competent data controller.
c) Processing
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
d) Restriction of Processing
The restriction of processing means the marking of stored personal data with the aim of limiting its processing in the future.
e) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.
f) Pseudonymisation
Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
g) Data Controller
Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
h) Order Processor
Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
i) Recipient
Recipient means a natural or legal person, public authority, agency or another body, to which the personal data is disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.
j) Third Party
Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
k) Consent
Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to them.
2. Name and Address of the Data Controller
The controller in the sense of the GDPR, other applicable data protection legislation in the Member States of the European Union and other provisions relating to data protection is:
Köttker Kommunikation
Schiffbauerdamm 40
10117 Berlin
Germany
Tel.: 03080494222
Email: info@koettker.com
Website: www.koettker.com
3. Cookies
Köttker Kommunikation websites use cookies. Cookies are text files which are placed and stored on a computer system by a web browser.
Numerous websites and servers use cookies. Many cookies comprise a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It is made up of a series of characters with which websites and servers can be attributed to the specific web browser in which the cookie was stored. This enables it to distinguish the websites and servers visited and the individual browser of the data subject from other internet browsers which have cookies. A specific web browser can be recognised and identified because of the unique cookie ID.
Köttker Kommunikation uses cookies in order to offer the users of this website more user-friendly services; it would be unable to do so if no cookies were placed.
We use cookies to optimise the information and offerings on our website for the benefit of the user. Cookies enable us, as already mentioned, to recognise the users of our website. The purpose of this recognition is to facilitate use of our website by our users. For example, the user of a website which uses cookies does not need to re-enter their access data every time they visit the website, because the cookie stored by the website on the computer system of the user does this for them. Another example is the cookie of a shopping basket in the online store. The online store uses a cookie to remember the items placed by a customer in their virtual shopping basket.
The data subject can prevent the placing of cookies by our website at any time by adjusting the corresponding settings of the web browser they use and can thus permanently reject the placing of cookies. Furthermore, cookies which have already been placed can be erased at any time via a web browser or other software programmes. This is possible in all standard web browsers. Should the data subject deactivate the setting of cookies in the web browser used, it may not be possible to fully use all of our website’s features.
4. Collection of General Data and Information
The website of Köttker Kommunikation collects a range of general data and information each time the website is accessed either by a data subject or an automated system. This general data and information is stored in the server’s logfiles. The (1) type and version of browser used, (2) the operating system used by the accessing system, (3) the website from which an accessing system retrieves our website (so-called referrer), (4) the sub-websites, which are accessed via an accessing system on our website, (5) the date and time our website is accessed, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing systems and (8) other similar data and information which is used to protect our IT systems in case of attacks.
When using this general data and information, Köttker Kommunikation does not draw any conclusions about the data subject. On the contrary, this information is used (1) to properly deliver the content of our website, (2) to optimise the content of our website as well as the advertising on it, (3) to guarantee the stable functioning of our IT system and the technology used on our website as well as (4) to provide law enforcement agencies with the information necessary for prosecution in the event of a cyber attack. Therefore, this anonymously collected data and information is analysed by Köttker Kommunikation both statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server logfiles is stored separately from all other personal data provided by a data subject.
5. Contact Options on the Website
Due to statutory provisions, the website of Köttker Kommunikation includes information which enables swift electronic contact to be made to our company as well as direct communication with us; this also comprises a general electronic postal address (email address). If a data subject contacts the controller either by email or by using a contact form, the personal data transmitted by the data subject is stored automatically. Personal data such as this which is freely transmitted to the controller by a data subject is stored either for the purposes of processing or for making contact to the data subject. This personal data is not forwarded to third parties.
6. Comment Feature in the Blog on the Website
Köttker Kommunikation offers users the option of leaving individual comments about blog contributions in the blog located on the website of the controller. A blog is a portal on a website which is usually publicly accessible in which one or more persons who are called bloggers or web bloggers post articles or write thoughts in so-called blog posts. Blog posts can usually be commented upon by third parties.
Should a data subject leave a comment in the blog published on this website, details about the time of the comment as well as the user name (pseudonym) chosen by the data subject are stored and published alongside the comments left by the data subject. Furthermore, the IP address of the data subject assigned by the internet service provider (ISP) is also recorded. The IP address is stored for security reasons and in case the data subject violates third-party rights with a comment made or in case they post unlawful content. Therefore, this personal data is stored in the interests of the controller so that they can exculpate themselves, if necessary, in case the law is breached. The personal data collected in this way is not forwarded to third parties unless it is legally prescribed to do so or unless it serves the legal defence of the controller.
7. Subscribing to Comments in the Blog on the Website
In principle, comments made in the Köttker Kommunikation blog can be subscribed to by third parties. In particular, it is possible for a commentator to subscribe to the comments following from their comment on a specific blog contribution.
Should a data subject decide to subscribe to comments, the controller will send an automatic confirmation email to check by means of the double opt-in procedure whether the owner of the email address really has chosen this option. The option to subscribe to comments can be terminated at any time.
8. Routine Erasure and Blocking of Personal Data
The controller processes and stores the personal data of the data subject only for the period required to fulfil the purpose for which it was stored and insofar as this was provided for in the laws and provisions of either the European or other legislators to which the controller is subject.
Should the purpose of storage lapse or should a retention period provided for by the European or another competent legislator expire, the personal data shall be routinely blocked or erased in accordance with the statutory provisions.
9. Rights of the Data Subject
a) Right to Confirmation
The EU legislator has granted each data subject affected by the processing of personal data the right to request confirmation from the controller that their personal data is being processed. Should a data subject wish to make use of this right, they can contact one of the controller’s employees with regard to this matter at any time.
b) Right of Access
The European legislator has granted each data subject affected by the processing of personal data the right to obtain at any time information free of charge from the controller about the personal data stored on them as well as a copy of this information. Furthermore, the European legislator has granted the data subject access to the following information:
the purposes of processing
the categories of personal data which are processed
the recipients or categories of recipients personal data was disclosed to or will be disclosed to including but not limited to recipients in third-party states or international organisations
if possible, the planned retention period for the personal data or, if this is not possible, the criteria upon which this period is determined
the existence of a right to rectification or erasure of your personal data or to restrict processing by the controller or to object to this type of processing
the existence of the right to lodge a complaint with a supervisory authority
if the personal data was not collected from the data subject: All information available on the origin of the data
the existence of automated decision-making including profiling pursuant to Article 22(1) and (4) GDPR, and for these cases at least, meaningful information about the logic involved as well as the scope and the desired effects of such processing for the data subject
Furthermore, the data subject has a right to access information on whether personal data was transferred to a third state or an international organisation. Should this be the case, the data subject also has the right to obtain information on the appropriate guarantees in connection with the transfer.
Should a data subject wish to make use of this right of access, they can contact one of the controller’s employees with regard to this matter at any time.
c) Right to Rectification
The EU legislator has granted each data subject affected by the processing of personal data the right to request immediate rectification of personal data relating to them which is inaccurate. Furthermore, the data subject has the right to request, taking the purposes of processing into consideration, the completion of incomplete personal data, also by way of a supplementary declaration.
Should a data subject wish to make use of this right to rectification, they can contact one of the controller’s employees with regard to this matter at any time.
d) Right to Erasure (Right to be Forgotten)
The EU legislator has granted each data subject affected by the processing of personal data the right to request that the controller erase their personal data without delay provided that one of the following grounds applies and processing is not necessary:
Personal data was collected for such purposes or otherwise for which it is no longer required.
The data subject withdraws their consent which was the basis for processing pursuant to point (a) of Art. 6(1) GDPR or point (a) of Art. 9(2) GDPR and there is no other legal basis for processing.
The data subject objects to processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for processing or the data subject objects to processing pursuant to Art. 21(2) GDPR.
The personal data was processed unlawfully.
The erasure of personal data is necessary to fulfil a legal obligation pursuant to EU or Member State law to which the controller is subject.
The personal data was collected in reference to services provided by the information society pursuant to Art. 8(1) GDPR.
Should one of the reasons referred to above apply and should a data subject wish to have personal data stored by Köttker Kommunikation erased, they may contact one of the controller’s employees with regard to this at any time. The Köttker Kommunikation employee will ensure that the wish for erasure is carried out without delay.
If personal data was made public by Köttker Kommunikation and if our company is obliged as the controller pursuant to Art. 17(1) GDPR to erase the personal data, then Köttker Kommunikation will take appropriate measures, also technical measures, which take into consideration the technology available and the implementation costs in order to inform other controllers processing the published personal data that the data subject has requested that these other controllers erase all links to this personal data or copies or reproductions of it, provided that processing is not required. The Köttker Kommunikation employee will take the necessary steps on a case-by-case basis.
e) Right to Restrict Processing
The EU legislator has granted each data subject affected by the processing of personal data the right to request that the controller restrict processing when one of the following conditions is met:
The accuracy of the personal data is contested by the data subject and for a period which enables the controller to examine the accuracy of the personal data.
The processing is unlawful, the data subject rejects the erasure of the personal data and requests instead that use of the personal data be restricted.
The controller no longer requires the personal data for processing purposes, however, the data subject needs it to establish, exercise or defend legal claims.
The data subject has lodged an objection to processing in accordance with Art. 21(1) GDPR and it has not yet been established whether the legitimate reasons of the controller outweigh those of the data subject.
Should one of the conditions referred to above apply and should a data subject wish to have personal data stored by Köttker Kommunikation restricted, they may contact one of the controller’s employees with regard to this at any time. The Köttker Kommunikation employee will take the necessary steps on a case-by-case basis.
f) Right to Data Portability
The EU legislator has granted each data subject affected by the processing of personal data the right to receive the personal data relating to them which they provided to the controller in a structured, commonly used and machine-readable format. They also have the right to transfer this data to another controller without hindrance from the controller to which the personal data was provided, provided that the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point (b) of Article 6(1) GDPR and the processing is carried out by automated means unless processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, in exercising their right to data portability pursuant to Art. 20(1) GDPR, the data subject shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible and as long as this does not affect the rights and freedoms of others.
The data subject can contact one of Köttker Kommunikation’s employees at any time to enforce the right of data portability.
g) Right to Object
The EU legislator has granted each data subject affected by the processing of personal data the right to object, on grounds relating to their particular situation, at any time to the processing of personal data concerning them which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.
In the event of an objection, Köttker Kommunikation shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
Should Köttker Kommunikation process personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of the personal data for such marketing purposes. This also applies to profiling insofar as it is associated with such direct marketing. Should the data subject object to Köttker Kommunikation about processing for direct marketing purposes, Köttker Kommunikation will no longer process the personal data for these purposes.
Moreover, the data subject has the right for reasons arising from their specific situation to object to the processing of personal data relating to them which is carried out by Köttker Kommunikation for scientific or historical research purposes or statistical purposes pursuant to Art. 89(1) GDPR unless such processing is necessary to fulfil a task which is in the public interest.
The data subject may directly contact one of Köttker Kommunikation’s employees or any other employee to exercise the right to object. Furthermore, the data subject is free in connection with the use of the services of the information society, irrespective of Directive 2002/58/EU, to exercise their right to object by way of automated procedures which use technical specifications.
h) Automated Decisions on a Case-by-Case Basis Including Profiling
The EU legislator has granted each data subject affected by the processing of personal data the right to not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them unless the decision (1) is necessary for entering into, or performance of a contract between the data subject and the controller or (2) is authorised by EU or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests or (3) is based on the data subject’s explicit consent.
If the decision (1) is necessary to conclude or perform a contract between the data subject and the controller or (2) if it occurs with the explicit consent of the data subject, Köttker Kommunikation shall take the appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the data subject which include at least the right to obtain human intervention on the part of the controller, to express their point of view and to contest the decision.
Should the data subject wish to assert rights in relation to automated decision-making, they can contact one of the controller’s employees with regard to this matter at any time.
i) Right to Revoke Consent under Data Protection Law
The EU legislator has granted each data subject affected by the processing of personal data the right to revoke consent to the processing of personal data at any time.
Should a data subject wish to assert this right to revoke consent, they can contact one of the controller’s employees with regard to this matter at any time.
10. Data Protection Provisions on the Use of Facebook
The controller has integrated components of the company Facebook on this website. Facebook is a social network.
A social network is a social meeting place operated on the internet, an online community which generally enables users to communicate with each other and interact in a virtual space. A social network can also serve as a platform for the exchange of opinions and experiences or it enables the internet community to make available personal or company-related information. Facebook enables users of the social network to create among other things private profiles, upload photos and network via friendship requests.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. The controller responsible for processing personal data if a data subject lives outside the USA or Canada is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Every time one of the individual pages of this website which is operated by the controller and which has an integrated Facebook component (Facebook plug-in) is accessed, the respective Facebook component automatically causes the web browser on the IT system of the data subject to download a depiction of the corresponding Facebook components from Facebook. An overall overview of all Facebook plug-ins can be retrieved at https://developers.facebook.com/docs/plugins/?locale=de_DE Within the framework of this technical procedure, Facebook receives information about the specific sub-page of our website which the data subject visited.
If the data subject is logged onto Facebook at the same time, Facebook will recognise the specific sub-page on our website visited by the data subject every time they access our website and for the duration of the respective visit to our website. This information is collected by the Facebook components and assigned by Facebook to the respective Facebook account of the data subject. Should the data subject click one of the Facebook buttons integrated on our website, for example the “like” button or should the data subject make a comment, Facebook will assign this information to the data subject’s personal Facebook user account and will store this personal data.
Facebook is informed via its Facebook components every time the data subject visits our website if the data subject is logged onto Facebook when they access our website; this occurs regardless of whether the data subject clicks on Facebook components or not. If the data subject does not wish for information to be transferred to Facebook in this manner, they can prevent it by logging out of their Facebook account before accessing our website.
The Privacy Policy published by Facebook which can be accessed at https://de-de.facebook.com/about/privacy/ gives insight into the collection, processing and use of personal data by Facebook. Furthermore, explanations can be found on the settings offered by Facebook to protect the privacy of data subjects. Moreover, a range of applications are available which enable the transfer of data to Facebook to be suppressed. Such applications can be used by the data subject to suppress the transfer of data to Facebook.
Facebook Fan Page: We operate a fan page on Facebook’s websites. When using the fan page, cookies may be placed, and personal data may be processed by Facebook; responsibility for this lies with us and with Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. This joint responsibility is regulated in the Facebook page, insights-addendum www.facebook.com/legal/terms/page_controller_addendum All important information on data processing on the fan page can be found in the Facebook Privacy Policy, www.facebook.com/about/privacy and the Facebook Cookie Policy, www.facebook.com/policies/cookies/.
You will also find information on the type and scope of the personal data processed as well as your right to access, confirmation, rectification, erasure, restriction, data portability and to lodge a complaint.
The legal basis for data processing of the fan page is the legitimate interest of ourselves and Facebook as well as of its customers in advertising, recommendations, insight and measurements (point (f) of Art. 6(1) GDPR). You can object to Facebook about data processing (cf. the Facebook Privacy Policy and Cookie Policy). Cookies which have already been stored can be removed by erasing temporary websites. Please note that your objection may potentially also be stored in a cookie. Should you erase this cookie, you will have to re-state your objection.
We have no influence on data processing by Facebook. We do not receive data from Facebook which would enable us to identify a user of the fan page or analyse its user behaviour. Nor do we use any tools of our own within the framework of the fan page which would enable such identification or analysis.
11. Data Protection Provisions on the Use of Google Analytics (with Anonymisation Function)
The controller has integrated components of the company, Google Analytics (with anonymisation function) on this website. Google Analytics is a web analysis service. Web analysis is the collection and analysis of data on the behaviour of website visitors. A web analysis service collects among other things data on the internet site from which a data subject accessed a website (so-called referrer), on which sub-pages of the website are accessed or how often and for how long a sub-page was viewed. Web analysis is used mainly to optimise a website and for a cost-benefit analysis of online advertising.
The operating company for Google Analytics components is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
The controller uses the add-on “_gat._anonymizeIp” for web analysis carried out by Google Analytics. This add-on abbreviates and anonymises the IP address of the data subject’s internet connection if our websites are accessed from within a Member State of the European Union or another state party to the Agreement on the European Economic Area.
The purpose of Google Analytics components is to analyse the flow of visitors to our website. Google uses the data and information accumulated to analyse among other things the use of our website, to compile online reports which illustrate activities on our websites and to provide additional services linked to the use of our website.
Google Analytics places a cookie on the data subject’s IT system. An explanation on what cookies are was provided above. By placing cookies, Google can analyse use of our website. Every time one of the individual pages of this website which is operated by the controller and which has an integrated Google Analytics component is accessed, the respective Google Analytics component automatically causes the web browser on the IT system of the data subject to transfer data to Google for the purpose of web analysis. Within the framework of this technical procedure, Google obtains knowledge of personal data, such as the IP address of the data subject, which is used among other things by Google to track the origin of visitors and clicks which subsequently enables commission to be calculated.
The cookie enables personal information such as the time of access, the place from where the site was accessed and the frequency of site visits by the data subject to be stored. Every time our website is accessed, this personal data, including the IP address of the internet connection used by the data subject is transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may under certain circumstances forward the personal data collected using the technical procedure to third parties.
As outlined above, the data subject can at any time prevent the placing of cookies by our website by adjusting the corresponding settings of the web browser they use and can thus permanently reject the placing of cookies. Adjusting the web browser used would also prevent Google from placing a cookie on the data subject’s IT system. Moreover, a cookie which has already been placed by Google Analytics can be erased at any time via the web browser or other software programmes.
Furthermore, the data subject has the opportunity of objecting to and preventing the collection of data generated in relation to the use of this website by Google Analytics as well as to the processing of this data by Google. To do so, the data subject must download a browser add-on under the link https://tools.google.com/dlpage/gaoptout and install it. This browser add-on informs Google Analytics via JavaScript that a transfer of data and information on website visits to Google Analytics is not permitted. The installation of the browser add-on is classified as an objection by Google. If the IT system of the data subject is deleted, formatted or re-installed at a later date, the data subject must re-install the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or any other person from their sphere of influence, it is possible to re-install or re-activate the browser add-on.
Further information and the valid privacy policy of Google can be retrieved from https://www.google.de/intl/de/policies/privacy/ and http://www.google.com/analytics/terms/de.html Google Analytics is explained more accurately under this link https://www.google.com/intl/de_de/analytics/
12. Data Protection Provisions on the Use of Google AdWords
The controller has integrated Google AdWords on this website. Google AdWords is an internet advertising service which enables advertisers to advertise in the search engine results of Google as well as in the Google advertising network. Google AdWords enables an advertiser to determine specific keywords with which an advert is only displayed in the search engine results by Google if the user uses the search engine to retrieve a search result which contains a relevant keyword. Adverts are shared on thematically relevant websites in the Google advertising network by means of an automatic algorithm and observing keywords which are determined in advance.
The operating company for Google AdWords services is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
The purpose of Google AdWords is to promote our website by displaying advertising of interest on the websites of third parties and in the search engine results of the Google search engine and a display of third-party advertising on our website.
Should a data subject reach our website via a Google advert, a so-called conversion cookie will be placed by Google on the IT system of the data subject. An explanation on what cookies are was provided above. A conversion cookie becomes invalid after thirty days and is not used to identify the data subject. Provided that the conversion cookie has not expired, it is used to track whether certain sub-pages, for example the shopping basket of a web shop system were accessed on our website. We and Google can use the conversion cookie to track whether a data subject who accessed our website via an AdWords advert has generated revenue, i.e. has completed or discontinued a purchase of goods.
By using data and information collected by the conversion cookie, Google can draft statistics on visits to our website. These visit statistics are in turn used by us to determine the total number of users referred to us by AdWords adverts, thus to determine the success or failure of the respective AdWords advert and to optimise our AdWords adverts in future. Neither our company nor other advertising customers of Google AdWords obtain any information from Google with which the data subject could be identified.
Personal information is stored by the conversion cookie, for example the websites visited by the data subject. Every time our website is accessed, personal data, including the IP address of the internet connection used by the data subject is thus transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may under certain circumstances forward the personal data collected using the technical procedure to third parties.
As outlined above, the data subject can at any time prevent the placing of cookies by our website by adjusting the corresponding settings of the web browser they use and can thus permanently reject the placing of cookies. Adjusting the web browser used would also prevent Google from placing a conversion cookie on the data subject’s IT system. Moreover, a cookie which has already been placed by Google AdWords can be erased at any time via the web browser or other software programmes.
Furthermore, it is possible for the data subject to object to interest-related advertising by Google. To do so, the data subject must access the link www.google.de/settings/ads from any of the Internet browsers they use and adjust the settings there as required.
Further information and the valid privacy policy of Google can be retrieved from https://www.google.de/intl/de/policies/privacy/
13. Data Protection Provisions on the Use of Instagram
The controller has integrated components of the service Instagram on this website. Instagram is a service which qualifies as an audio-visual platform and enables users to share photos and videos and moreover enables the proliferation of such data on other social networks.
The operating company of the services of Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.
Every time one of the individual pages of this website which is operated by the controller and which has an integrated Instagram component (Insta button) is accessed, the respective Instagram component automatically causes the web browser on the IT system of the data subject to download a depiction of the corresponding Instagram components from Instagram. Within the framework of this technical procedure, Instagram receives information about the specific sub-page of our website which the data subject visited.
If the data subject is logged onto Instagram at the same time, Instagram will recognise the specific sub-page visited by data subject every time they access our website and for the duration of the respective visit to our website. This information is collected by the Instagram components and assigned by Instagram to the respective Instagram account of the data subject. If the data subject clicks one of the Instagram buttons integrated on our website, the data and information transferred will be assigned to the data subject’s personal Instagram user account and stored and processed by Instagram.
With its Instagram components, Instagram is informed every time the data subject visits our website if the data subject is logged onto Instagram when they access our website; this occurs regardless of whether the data subject clicks on Instagram components or not. If the data subject does not wish for information to be transferred to Instagram in this manner, they can prevent it by logging out of their Instagram account before accessing our website.
Further information and the valid privacy policy of Instagram can be retrieved from https://help.instagram.com/155833707900388 https://www.instagram.com/about/legal/privacy/
14. Data Protection Provisions on the Use of LinkedIn
The controller has integrated components of the LinkedIn Corporation on this website. LinkedIn is a web-based social network which enables users to connect with existing business contacts as well as to make new business contacts. Over 400 million registered users use LinkedIn in more than 200 countries. This currently makes LinkedIn the largest platform for business contacts and one of the world’s most visited websites.
The operating company of LinkedIn is the LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland is responsible for data protection matters outside the USA.
Every time our website, which is equipped with a LinkedIn component (LinkedIn plug-in), is accessed, this component causes the browser used by the data subject to download a corresponding depiction of the LinkedIn component. Further information on the LinkedIn plug-ins can be retrieved from https://developer.linkedin.com/plugins Within the framework of this technical procedure, LinkedIn receives information about the specific sub-page of our website which was visited by the data subject.
If the data subject is logged onto LinkedIn at the same time, LinkedIn will recognise the specific sub-page on our website visited by the data subject every time they access our website and for the duration of the respective visit to our website. This information is collected by the LinkedIn components and assigned by LinkedIn to the respective LinkedIn account of the data subject. Should the data subject click a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.
With its LinkedIn components, LinkedIn is informed every time the data subject visits our website if the data subject is logged onto LinkedIn when they access our website; this occurs regardless of whether the data subject clicks on LinkedIn components or not. If the data subject does not wish for information to be transferred to LinkedIn in this manner, they can prevent it by logging out of their LinkedIn account before accessing our website.
Under https://www.linkedin.com/psettings/guest-controls LinkedIn offers the option of unsubscribing to email messages, SMS messages and targeted advertising as well as managing display settings. Furthermore, LinkedIn uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, who may place cookies. Such cookies can be rejected under https://www.linkedin.com/legal/cookie-policy The valid privacy policy of LinkedIn can be retrieved under https://www.linkedin.com/legal/privacy-policy LinkedIn’s cookie policy is retrievable under https://www.linkedin.com/legal/cookie-policy
15. Data Protection Provisions on the Use of Twitter
The controller has integrated components of Twitter on this website. Twitter is a multilingual publicly accessible micro-blogging service on which users can publish and share so-called tweets, i.e. short messages which are limited to 280 characters. These short messages can be accessed by anyone, therefore, also by people who are not registered with Twitter. Tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow the tweets of a user. Furthermore, Twitter uses hashtags to enable links or retweets to be addressed to a wider audience.
The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.
Every time one of the individual pages of this website which is operated by the controller and which has an integrated Twitter component (Twitter button) is accessed, the respective Twitter component automatically causes the web browser on the IT system of the data subject to download a depiction of the corresponding Twitter components from Twitter. Further information on Twitter buttons can be retrieved under https://about.twitter.com/de/resources/buttons Within the framework of this technical procedure, Twitter receives information about the specific sub-page of our website which the data subject visited. Twitter components are integrated for the purpose of enabling our users to proliferate the content of this website, to make this website known in the digital world and to increase our visitor numbers.
If the data subject is logged onto Twitter at the same time, Twitter will recognise the specific sub-page on our website visited by data subject every time they access our website and for the duration of the respective visit to our website. This information is collected by the Twitter components and assigned by Twitter to the respective Twitter account of the data subject. If the data subject clicks one of the Twitter buttons integrated on our website, the data and information transferred will be assigned to the data subject’s personal Twitter user account and stored and processed by Twitter.
With its Twitter components, Twitter is informed every time the data subject visits our website if the data subject is logged onto Twitter when they access our website; this occurs regardless of whether the data subject clicks on Twitter components or not. If the data subject does not wish for information to be transferred to Twitter in this manner, they can prevent it by logging out of their Twitter account before accessing our website.
The valid privacy policy of Twitter can be retrieved under https://twitter.com/privacy?lang=de
16. Data Protection Provisions on the Use of Xing
The controller has integrated components of Xing on this website. Xing is a web-based social network which enables users to connect with existing business contacts as well as to make new business contacts. Individual users can set up a personal profile with Xing. For example, companies can create company profiles or publish vacancies on Xing.
The operating company of Xing is XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
Every time one of the individual pages of this website which is operated by the controller and which has an integrated Xing component (Xing plug-in) is accessed, the respective Xing component automatically causes the web browser on the IT system of the data subject to download a depiction of the corresponding Xing components from Xing. Further information on the Xing plug-ins can be retrieved from https://dev.xing.com/plugins Within the framework of this technical procedure, Xing receives information about the specific sub-page of our website which the data subject visited.
If the data subject is logged onto Xing at the same time, Xing will recognise the specific sub-page on our website visited by data subject every time they access our website and for the duration of the respective visit to our website. This information is collected by the Xing components and assigned by Xing to the respective Xing account of the data subject. Should the data subject click a Xing button integrated on our website, for example the “share” button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data.
With its Xing components, Xing is informed every time the data subject visits our website if the data subject is logged onto Xing when they access our website; this occurs regardless of whether the data subject clicks on Xing components or not. If the data subject does not wish for information to be transferred to Xing in this manner, they can prevent it by logging out of their Xing account before accessing our website.
The privacy policy published by Xing which can be accessed at https://www.xing.com/privacy gives insight into the collection, processing and use of personal data by Xing. Furthermore, Xing has published data protection information on the XING share button under https://www.xing.com/app/share?op=data_protection
17. Legal Basis of Processing
Point (a) of Art. 6(1) GDPR serves our company as the legal basis for processing where we have obtained consent for a specific processing purpose. If it is necessary to process personal data in order to perform a contract to which the data subject is party, for example in the case of the processing required for the delivery of goods or the provision of other services or return services, then the processing is based on point (b) of Art. 6(1) GDPR. The same applies for processing processes such as those required for the execution of pre-contractual measures, for example, with regard to enquiries about our products or services. Should our company be subject to a legal obligation which requires personal data to be processed, for example to fulfil tax obligations, then processing is based on point (c) of Art. 6(1) GDPR. In seldom cases, it may be necessary to process personal data in order to protect the vital interests of the data subject or another natural person. For example, this would be the case if a visitor to our company were injured and as a result their name, age, details of their health insurance provider or other vital information had to be disclosed to a doctor, hospital or other third party. In this case, processing would be based on point (d) of Art. 6(1) GDPR. Ultimately, processing could be based on point (f) of Art. 6(1) GDPR. Processing occurs on this legal basis if it cannot be accounted for by any of the aforementioned legal bases and if processing is necessary to safeguard a legitimate interest of our company or a third party unless it is outweighed by the interests, fundamental rights and freedoms of the data subject. We are allowed to carry out such processing especially because it was specifically mentioned by the European legislator. They were of the opinion that a legitimate interest could be assumed if the data subject is a customer of the controller (recital 47, sentence 2 GDPR).
18. Legitimate Interest of the Controller or a Third Party in Processing
Should the processing of personal data be based on point (f) of Art. 6(1) GDPR, our legitimate interest is the execution of our business activity to the benefit of the prosperity of all our employees and shareholders.
19. Retention Period for Personal Data
The respective statutory retention period is the criterion for the duration of storage of personal data. Once the period lapses, the corresponding data is routinely erased as long as it is no longer required for the performance of the contract or to initiate a contract.
20. Statutory or Contractual Regulations on the Provision of Personal Data; Necessity for the Conclusion of Contract; Obligation of the Data Subject to Provide Personal Data; Possible Consequences of Non-Provision
We wish to point out that the provision of personal data is in part legally prescribed (e.g. tax regulations) or may also follow from contractual regulations (e.g. details on the contractual partner). For the conclusion of a contract, it may at times be necessary for a data subject to provide us with personal data which we then have to process. For example, the data subject is obliged to provide us with personal data if they conclude a contract with our company. If no personal data is provided, it would not be possible to conclude the contract with the data subject. The data subject must contact one of our employees before they provide their personal data. With regard to the individual case of the data subject, our employee will clarify for the data subject whether the provision of personal data is a statutory or contractual provision or required for the conclusion of contract, whether there is an obligation to provide personal data and the potential consequences if personal data is not provided.
Agentur für PR & Public Affairs in Berlin – spezialisiert auf die Themen Wirtschaft & Umwelt
Mitgliedschaften:
Hope, sustainability and emotional strength: These three factors ensure successful CEO communication
Demonstrating on Fridays or blockading Berlin’s government district: Worldwide, the climate crisis