Privacy policy

We appreciate your visit to our website. Below, we would like to inform you about how we handle your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR). We appreciate your visit to our website. Below, we would like to inform you about how we handle your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).

Person in charge

The entity named in the Imprint is responsible for the data processing described below.

Usage data

When you visit our websites, our web server temporarily evaluates so-called usage data for statistical purposes in order to improve the quality of our websites. This data set consists of

  • the date and time of the query,
  • the name and address of the requested content,
  • the amount of data transferred,
  • the access status (content transferred, content not found),
  • the description of the web browser and operating system used,
  • the referral link, which indicates which site you came to ours from,
  • the IP address of the requesting computer, which is shortened in such a way that it can no longer be traced back to a specific person.

The aforementioned log data will only be evaluated anonymously.

Storage of IP addresses for security purposes

In addition, we store the complete IP address transmitted by your web browser for a period of seven days strictly for the purpose of detecting, limiting, and eliminating attacks on our websites. After this period has expired, we delete or anonymize the IP address. The legal basis for this is Art. 6 (1) (f) GDPR.

Data security

We take technical and organizational measures to protect your data as comprehensively as possible from unwanted access. We use an encryption method on our websites. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the closed padlock symbol in the status bar of your browser and the address line beginning with https://.

Order processor

We pass on your data within the scope of order processing in accordance with Art. 28 GDPR to service providers who support us in operating our websites and the associated processes. These include, for example, hosting service providers. Our service providers are strictly bound by our instructions and are contractually obliged to comply with them.

Below, we list the processors with whom we work, unless we have already done so in the above text of the privacy policy. If data is transferred outside the EU or the EEA in this context, we provide information on the appropriate level of data protection.

Processor: Strato AG
Purpose: Web hosting and support
Adequate level of data protection: Processing only within the EU/EEA

Your rights as a data subject

When processing your personal data, the GDPR grants you, as the data subject, certain rights:

Right of access (Art. 15 GDPR)
You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have the right to access this personal data and to the information specified in Art. 15 GDPR.

Right to rectification (Art. 16 GDPR)
You have the right to request the immediate rectification of inaccurate personal data concerning you and, where applicable, the completion of incomplete data.

Right to erasure (Art. 17 GDPR)
You have the right to request that personal data concerning you be erased without delay if one of the reasons listed in detail in Art. 17 GDPR applies.

Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR applies, e.g. if you have objected to the processing, for the duration of the review by the controller.

Right to data portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transfer of this data to a third party.

Right of withdrawal (Art. 7 GDPR)
If the processing of data is based on your consent, you are entitled under Art. 7 (3) GDPR to withdraw your consent to the use of your personal data at any time. Please note that the revocation only applies to the future. Processing that took place before the revocation is not affected.

Right to object (Art. 21 GDPR)
If data is collected on the basis of Art. 6 (1) (f) GDPR (data processing to safeguard legitimate interests) or on the basis of Art. 6 (1) (e) GDPR (data processing to safeguard public interests or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of data concerning you violates data protection regulations. The right to lodge a complaint can be exercised in particular with a supervisory authority in the Member State of your habitual residence, your place of work, or the place of the alleged infringement.

Asserting your rights
Unless otherwise described above, please contact the office named in the legal notice to assert your rights as a data subject.

Contact details of the data protection officer

Our external data protection officer will be happy to provide you with information on the subject of data protection. You can contact them using the following details:

datenschutz nord GmbH
Hamburg branch
Sechslingspforte 2
22087 Hamburg

Website: https://www.dsn-group.de/
Email: office@datenschutz-nord.de

When contacting our data protection officer, please also indicate the responsible body named in the Imprint.