1. Data protection at a glance
General notes
The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data are all data with which you can be personally identified. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
Data collection on our website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. His contact details can be found in the imprint of this website.
How do we collect your data?
On the one hand, your data is collected when you provide it to us. This may, for example, be data that you enter in a contact form.
Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure that the website is provided without errors. Other data can be used to analyse your user behaviour.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data, taking into account the statutory retention periods. You can contact us at any time at the address given in the legal notice if you have further questions on the subject of data protection. You also have the right to lodge a complaint with the competent supervisory authority.
Analysis tools and third-party tools
When you visit our website, your surfing behaviour can be statistically evaluated. This is mainly done with cookies and with so-called analysis programs. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You will find detailed information on this in the following data protection declaration.
You can contradict this analysis. We will inform you about the possibilities of objection in this privacy policy.
2. General notes and compulsory information
Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this data protection declaration.
When you use this website, various personal data is collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Note on the Responsible body
The person responsible for data processing on this website is:
Medias Klinikum GmbH & Co. KG
Krankenhausstraße 3a
D-84489 Burghausen
Phone: 08677 / 9160 – 0
E-mail: info@medias-klinikum.de
The responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke any consent already given at any time. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing carried out up to the time of revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the case of infringements of the DPAs, the persons concerned have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, place of work or place of the suspected infringement. This right of appeal is without prejudice to other administrative or judicial remedies.
Competent supervisory authority
Bavarian State Office for Data Protection Supervision (BayLDA)
Promenade 27
91522 Ansbach
Phone: +49 (0) 981 53 1300
E-mail: poststelle@lda.bayern.de
Right to data transferability
You have the right to have data, which we process automatically on the basis of your consent or in fulfilment of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only take place to the extent that it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, blocking, erasure and correction
Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients and the purpose of the data processing and, if necessary, the right to request the correction, blocking or deletion of this data, taking into account the statutory retention periods. You can contact us at any time at the address given in the legal notice if you have further questions on the subject of personal data.
Right to limit processing
You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time at the address given in the imprint. The right to restrict processing exists in the following cases:
- If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the review, you have the right to request that we limit the processing of your personal data.
- If the processing of your personal data was/is carried out unlawfully, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you do need it to exercise, defend or assert legal claims, you have the right to request that we limit the processing of your personal data instead of deleting it.
- If you have lodged an objection under Art. 21 para. 1 DSGVO, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests outweigh the interests of the parties, you have the right to demand that the processing of your personal data be restricted.
If you have restricted the processing of your personal data, such data may be processed – apart from their storage – only with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.
Security measures
We shall take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons.
The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, transfer, assurance of availability and separation of the data. We also have procedures in place to ensure the exercise of data subjects’ rights, deletion of data and response to data compromise. Furthermore, we already take the protection of personal data into account in the development and selection of hardware, software and procedures, in accordance with the principle of data protection through technology design and through data protection-friendly default settings (Art. 25 DSGVO).
Cooperation with contract processors and third parties
If, in the course of our processing, we disclose data to other persons and companies (order processors or third parties), transmit it to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.g. if a transmission of the data to third parties, such as to payment service providers, is necessary for the performance of the contract pursuant to Art. 6 (1) lit. b DSGVO), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called “order processing agreement”, this is done on the basis of Art. 28 DSGVO.
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this is done in the context of using third-party services or disclosing or transferring data to third parties, this is only done if it is done in order to fulfil our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or allow the processing of data in a third country if the special requirements of Art. 44 ff. DSGVO are met. This means that the processing is carried out, for example, on the basis of special guarantees, such as the officially recognised determination of a level of data protection corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognised special contractual obligations (so-called “standard contractual clauses”).
Objection to advertising emails
We hereby object to the use of contact data published within the scope of the imprint obligation to send advertising and information material not expressly requested. The operators of this website expressly reserve the right to take legal action in the event that unsolicited advertising information is sent, for example by spam e-mails.
3. Data protection officer
Data Protection Officer required by law
We have appointed a data protection officer for our company.
Mr. Siegfried Floßmann
Siegfried Floßmann Datenschutz GmbH & Co KG
Mühlbachstraße 48
84547Emmerting
http://sf-datenschutz.eu
Phone: +49-151 / 22 33 13 96
E-mail: flossmann@sf-datenschutz.eu
4. Data collection on our website
Cookies
The Internet pages partly use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognize your browser the next time you visit us.
You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or in general and to activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimised provision of its services.
In addition to functional and strictly necessary cookies (e.g. to manage consent), we use cookies to personalise content and ads, offer social media features and analyse traffic to our website. Our partners may combine this information with other data that you have provided to them or that they have collected in the course of your use of the services.
You can edit your consent to these cookies used in the cookie tool we offer (cookie policy).
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources.
These data are recorded on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website – for this purpose, the server log files must be recorded.
Contact form
If you send us enquiries via the contact form, your details from the enquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent.
The processing of the data entered in the contact form is thus exclusively based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent for storage or the purpose for which the data was stored no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.
Inquiry by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, your inquiry, including all personal data (name, inquiry), will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.
This data is processed on the basis of Art. 6 Para. 1 letter b DSGVO if your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on your consent (Art. 6 para. 1 lit. a DSGVO) and/or on our legitimate interests (Art. 6 para. 1 lit. f DSGVO), as we have a legitimate interest in the effective processing of the inquiries addressed to us.
The data sent to us by you via contact enquiries will remain with us until you request us to delete it, revoke your consent for storage or the purpose for which the data was stored no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular, statutory retention periods – remain unaffected.
trustedoctor
With the tool TrustedDoctor, we offer interested parties and patients the possibility of a video consultation. For the use of this platform, you leave our website, and we point out that we have no influence on the further data processing by the service provider, but that we require data processing in accordance with the requirements of the GDPR through an agreement on commissioned processing.
Registration with Facebook Connect
Instead of registering directly on our website, you can register with Facebook Connect. This service is provided by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
If you decide to register with Facebook Connect and click on the “Login with Facebook” / “Connect with Facebook” button, you will be automatically redirected to the Facebook platform. There you can log in with your usage data. This will link your Facebook profile with our website or our services. This link gives us access to your data stored on Facebook. These are above all:
- Facebook name
- Facebook profile and cover picture
- Facebook cover picture
- email address registered with Facebook
- Facebook ID
- Facebook friend lists
- Facebook Likes (“I like-me” information)
- Birthday
- Gender
- Country
- Language
This information is used to set up, provision and personalize your account.
Registration with Facebook Connect and the associated data processing procedures are based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time with effect for the future.
For more information, please see the Facebook Terms of Use and the Facebook Privacy Policy. These can be found at: https://www.facebook.com/privacy/policy/ and https://www.facebook.com/legal/terms/.
Use of Facebook Social Plugins
We use social plugins (“plugins”) of the social network facebook.com, which is operated by Facebook Ireland Ltd. DSGVO) social plugins (“plugins”) of the social network facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). This may include, for example, content such as images, videos or texts and buttons with which users can share content of this online offer within Facebook. The list and appearance of Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
Facebook is certified under the Privacy Shield agreement and thereby offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
When a user calls up a function of this online offer that contains such a plugin, his or her device establishes a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to the user’s device and integrated into the online offer by the latter. In the process, user profiles can be created from the processed data. We therefore have no influence on the scope of the data that Facebook collects with the help of this plugin, and therefore inform users according to our level of knowledge.
By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offer. If the user is logged in to Facebook, Facebook can assign the visit to his or her Facebook account. If users interact with the plugins, for example by clicking the Like button or posting a comment, the corresponding information is transmitted from their device directly to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and store his or her IP address. According to Facebook, only an anonymized IP address is stored in Germany.
The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as the related rights and setting options for protecting the privacy of the users, can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/.
If a user is a Facebook member and does not want Facebook to collect data about him or her via this online offer and link it to his or her membership data stored on Facebook, he or she must log out of Facebook and delete his or her cookies before using our online offer. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US-American page http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.
Privacy policy Google Remarketing and similar target groups
This website contains plugins for Google Remarketing or similar target group functions of Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA are implemented. For this purpose, so-called “cookies” (text files), which are stored on your computer and which enable an analysis of your use of the website, are used after your consent.
The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. The data is thus processed in an unsafe third country without an adequate level of data protection. It is therefore possible to target them on other websites in the “Google Display Network” with personalized and interest-based advertising.
You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this, you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser add-on available under the following link: https://www.google.com/settings/ads/plugin. The browser add-on for deactivating Google Analytics is compatible with Chrome, Internet Explorer, Safari, and Firefox. You can also disable the use of cookies by third parties. To do so, please follow the instructions of the Network Advertising Initiative (http://www.networkadvertising.org/choices/).
For more information about Google Remarketing’s terms of use and privacy policy, please follow this link: http://www.google.com/policies/technologies/ads/.
5. Business-related processing
External payment service providers
We use external payment service providers through whose platforms users and we can make payment transactions (e.g., each with a link to the privacy policy, Paypal (https://www.paypal.com/myaccount/privacy/privacyhub), Klarna (https://www.klarna.com/ca/privacy-and-security/), Skrill (https://www.skrill.com/en/comprehensive-privacy-notice/), Visa (https://www.visa.ca/en_CA/legal/global-privacy-notice.html), Mastercard (https://www.mastercard.ca/en-ca/vision/corp-responsibility/commitment-to-privacy/global-privacy-policy.html), American Express (https://www.americanexpress.com/en-ca/company/legal/privacy-centre/privacy-statement/)
In the context of the fulfilment of contracts, we use the payment service providers on the basis of Art. 6 para. 1 lit. b. DSGVO. Furthermore, we use external payment service providers on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f. DSGVO in order to offer our users effective and secure payment options.
The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as the contract, totals and recipient-related information. The details are required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored with them. I.e. we do not receive any account or credit card-related information, but only information with confirmation or negative information of the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the terms and conditions and data protection information of the payment service providers.
The terms and conditions and data protection notices of the respective payment service providers apply to the payment transactions and can be accessed within the respective websites or transaction applications. We also refer to these for further information and the assertion of revocation, information and other data subject rights.
Administration, financial accounting, office organization, and contact management.
We process data in the context of administrative tasks as well as the organization of our operations, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the context of providing our contractual services. The processing bases are Art. 6 para. 1 lit. c. DSGVO, Art. 6 para. 1 lit. f. DSGVO. Customers, interested parties, business partners and website visitors are affected by the processing. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, i.e. tasks that serve the maintenance of our business activities, performance of our tasks and provision of our services. The deletion of data with regard to contractual services and contractual communication corresponds to the information provided in these processing activities.
We disclose or transmit data to the tax authorities, advisors such as tax advisors or auditors, as well as other fee offices and payment service providers.
6. Analysis tools and advertising
Google Analytics
This website uses the functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies”. These are text files which are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
The storage of Google Analytics cookies and the use of this analysis tool are based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the analysis of user behaviour in order to optimize both his website and his advertising.
IP Anonymization
We have activated the IP anonymization function on this website. This means that your IP address will be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on the website activities and to provide further services to the website operator in connection with the use of the website and the Internet. The IP address transmitted by your browser within the scope of Google Analytics is not combined with other data from Google.
browser plugin
You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this,s you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout.
Opposition to data collection
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie is set to prevent the collection of your information on future visits to this site: Disable Google Analytics.
For more information on how Google Analytics handles user data, please see Google’s privacy policy: https://support.google.com/analytics/answer/6004245.
Shared responsibility
In order to comply with the strict requirements of the German data protection authorities when using Google Analytics, we have concluded a shared responsibility agreement with Google. In this context, we would like to point out that Google carries out analyses on its own responsibility, over which we have no influence.
Google AdWords and Google Conversion Tracking
This website uses Google AdWords. AdWords is an online advertising programme of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).
In the context of Google AdWords, we use the so-called conversion tracking. When you click on an ad placed by Google, a cookie is set for conversion tracking. Cookies are small text files that the web browser places on the user’s computer. These cookies expire after 30 days and are not used to personally identify users. If the user visits certain pages of this website and the cookie has not expired, Google and we may recognize that the user clicked on the ad and was redirected to that page.
Every Google AdWords customer receives a different cookie. The cookies cannot be tracked through the websites of AdWords customers. The information collected through the conversion cookie is used to compile conversion statistics for AdWords customers who have opted in to conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you don’t want to participate in tracking, you can opt out of this use by slightly disabling the Google Conversion Tracking cookie on your web browser under User Preferences. You will then not be included in the conversion tracking statistics.
The storage of “conversion cookies” and the use of this tracking tool are based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in the analysis of user behaviour in order to optimize both his website and his advertising.
For more information about Google AdWords and Google Conversion Tracking, please see the Google Privacy Policy: https://policies.google.com/privacy.
You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or in general, and to activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.
Facebook pixel
Our website uses the visitor action pixel of Facebook, Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) to measure conversion.
This allows the behaviour of site visitors to be tracked after they have been redirected to the provider’s website by clicking on a Facebook ad. This allows the effectiveness of Facebook Ads to be evaluated for statistical and market research purposes and future advertising campaigns to be optimized.
The data collected is anonymous for us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, in accordance with the Facebook data usage policy can use the data for its own advertising purposes. This enables Facebook to display advertisements on Facebook pages as well as outside of Facebook. This use of the data cannot be influenced by us as the site operator.
The use of Facebook pixels is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in effective advertising measures, including social media.
You can find more information about protecting your privacy in Facebook’s privacy policy: https://www.facebook.com/privacy/policy/.
You can also use the remarketing feature “Custom Audiences” in the Advertising Settings section under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen disable. You must be logged in to Facebook to do this.
If you do not have a Facebook account, you can disable usage-based advertising from Facebook on the European Interactive Digital Advertising Alliance website: https://www.youronlinechoices.com/uk/your-ad-choices.
7. plugins and tools
Integration of third-party services and content
The 2-click solution ensures that your internet browser does not initially establish a connection to the servers of the provider of the respective plug-in when you call up the website. When you access the website, the provider of the respective plug-in cannot initially collect any personal data from you via the respective plug-in. The respective plug-in is only activated when you click the button provided for this purpose to activate the respective plug-in. As a result of the activation, a connection to the servers of the provider of the respective plug-in is established. As a result, the provider of the respective activated plug-in may also collect personal data from you. Activating the respective plug-in is technically comparable to clicking on a link to an external website, with the difference that the content called up in the process does not appear in a new window/tab of your internet browser, but is optically embedded in our website. The data exchange initiated by the activation and use of the plug-in by you takes place exclusively between your internet browser and the servers of the provider of the respective plug-in. If you activate a third-party plug-in, you are therefore using a functionality offered by the provider of the respective plug-in under its responsibility, which is visually embedded in the presentation of our website.
When activating the respective plug-in, the provider of the respective plug-in (comparable to calling up an external website via a link) may, in particular, receive your IP address and the address (URL) of the website from which you are activating it. In addition, the provider of the respective activated plug-in may receive information from any cookies of the respective provider stored in your internet browser. The provider of the respective plug-in can therefore already receive, through the activation of the respective plug-in initiated by you, at least the information that our website was accessed under the IP address assigned to you at the time of the call. If you are registered as a user with the respective third-party provider, the provider of the respective plug-in can usually also assign the data received to your user account. We would like to point out that we have no knowledge of the specific data collected by the provider of the respective plug-in. We also have no knowledge about the specific purposes of the processing of the collected data by the provider of the respective plug-in or about further details of the data processing of the respective provider. In particular, we do not know whether the respective provider processes the collected data only to provide the functionality of the respective plug-in (i.e. e.g. for sharing certain content or submitting a comment) or for any additional purposes (e.g. to create user profiles or to personalize advertising).
YouTube in embedded privacy mode
This website embeds videos from YouTube. The operator of the pages is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the disclosure of data to YouTube partners is not necessarily excluded by the extended data protection mode. Thus, YouTube establishes a connection to the Google DoubleClick network, regardless of whether you watch a video.
As soon as you start a YouTube video on this website, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, after starting a video, YouTube may store various cookies on your end device or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve the user experience and prevent fraud attempts.
If applicable, further data processing operations may be triggered after the start of a YouTube video over which we have no control.
YouTube is used in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 (1) f DSGVO. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO; the consent can be revoked at any time.
For more information about privacy at YouTube, please see their privacy policy at: https://policies.google.com/privacy.
Google Maps
This site uses the map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an attractive presentation of our online offers and easy findability of the locations we have indicated on the website. This represents a legitimate interest in the sense of Art. 6 Para. 1 lit. f DSGVO.
More information on the handling of user data can be found in Google’s privacy policy: https://policies.google.com/privacy.
Audio and conference systems
Among other things, we use online conferencing tools to communicate with our customers. The tools that we use in detail are listed below. If you communicate with us via video or audio conference over the internet, your personal data will be personal data is collected and processed by us and the provider of the respective conferencing tool.
The conference tools collect all the data that you provide/enter to use the tools (e-mail address and/or your telephone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “contextual information”. of participants and other “contextual information” in connection with the communication process (metadata).
Furthermore, the provider of the tool processes all technical data required for the processing of online communication. In particular, this includes IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and connection type, microphone or loudspeaker and connection type.
If content is exchanged, uploaded or otherwise made available within the tool, this is also stored on the servers of the tool providers. stored on the servers of the tool provider. This content includes, in particular, cloud recordings, chat/instant messages and voicemails, uploaded photos and videos, files, whiteboards and other information shared while using the service. Please note that we do not have complete control over the data processing operations of the tools used. Our options are largely determined by the company policy of the respective provider. Further information on data processing by the conference tools can be found in the privacy policies of the tools used, which we have listed below this text.
Purpose of the legal basis
The conference tools are used to communicate with potential or existing contractual partners or to offer our customers certain services (Art. 6 para. 1 sentence 1 lit. b GDPR). services to our customers (Art. 6 para. 1 sentence 1 lit. b GDPR). Furthermore, the use of the tools serves the general simplification and acceleration of communication with us or our company (legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR). Insofar as consent has been requested, the tools in question are used on the basis of this consent; consent can be revoked at any time with effect for the future.
Duration of storage
The data collected by us directly via the video and conference tools will be deleted from our systems as soon as you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies. Stored cookies remain on your end device until you delete them. Mandatory statutory retention periods remain unaffected. We have no influence on the storage period of your data, which is stored by the operators of the conference tools for their own purposes. For details, please contact the operators of the conference tools directly.
Tools used
TrusteDoctor, Zoom, Teams, Teamviewer
Information from applicants according to the GDPR:
Information from business partners according to DS-GV O obligations:
Website analysis with Google Analytics
This website uses Google Analytics 4, a web analytics service from Google LLC, after obtaining user consent. The relevant authorities are Google Ireland Limited for users in the EU, EEA, and Switzerland. Google Analytics 4 anonymizes IP addresses by default, meaning your IP is immediately shortened when interacting with this site. In rare cases, a full IP address may be sent to a Google server in the U.S. before being anonymized. Google asserts that IP addresses collected via Google Analytics are never combined with other Google data.
Google Analytics 4 is activated only with user consent through the cookie banner and can be revoked at any time via cookie settings.
Processed Data
Google Analytics collects:
- Usage data (page views, website interactions, general location, and session duration)
- Communication data (shortened IP addresses, user-agent, language settings, and screen resolution)
These data help Google evaluate website usage, compile reports, and analyze website performance. This processing is legal, based on user consent under GDPR (Article 6(1)(a)) and TDDDG (Section 25(1)).
Data Recipients & Storage
The recipients of this data are Google Ireland Limited, Google LLC, and Alphabet Inc.. Website usage data is generally sent to a U.S.-based Google server, legitimized by the EU-U.S. Data Privacy Framework (July 10, 2023). Data associated with cookies is automatically deleted after a set period—monthly for expired data, and up to two years for Google Analytics cookies.
For Google’s terms of service and privacy policy, visit:
Cookies & Anonymization
Google Analytics uses cookies, small text files stored on a visitor’s computer, enabling the analysis of website usage. The data generated (including shortened IPs) is typically sent to a Google server and stored. This website exclusively uses Google Analytics with “_anonymizeIp()”, ensuring that IP addresses are truncated within the EU/EEA, preventing personal identification. In rare cases, full IPs may be transferred to the U.S. before anonymization.
User Control & Opt-Out
Google Analytics can be prevented by adjusting cookie settings. Users can also opt out of data collection by:
- Installing the Google Analytics opt-out browser add-on: Google Opt-Out
- Clicking an opt-out link provided on the website, setting a special Opt-Out Cookie to block future data collection
For more details on Google’s data use, settings, and opt-out options, refer to:
Let me know if you need any refinements!
Spam protection with Google reCAPTCHA
We have implemented Google reCAPTCHA in forms on our website to check whether the data entered in the forms comes from human visitors or from machines or automated programs, also known as “bots”. This tool automatically analyzes the behaviour of website visitors as soon as they interact with the website, using various information such as IP address, length of stay and mouse movements. The data processed includes usage data such as the website accessed, date and time of access and mouse movements as well as communication data such as IP addresses, browser type and operating system. This processing is aimed at website visitors and users of online services. The main purpose of this processing is to prevent misuse of our contact form and thereby increase security. The legal basis for this is our legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f. GDPR. The data recipients are Google Ireland Ltd, based at Google Building Gordon House, Barrow St, Dublin 4, Ireland (https://policies.google.com/privacy) and our website hosting provider. While your personal data is processed within the EU, the retention period for the processed data is determined by Google Ireland Limited. Further information can be found in Google reCAPTCHA’s privacy policy: https://policies.google.com/privacy
Website analysis (Jimdo statistics)
When you visit our website, we collect information about your usage through a web analytics tool provided by our hosting service. This tool collects and combines your IP address and your user agent, shortens them and stores this data with a hash function. This process creates a visitor identifier that is encrypted with a randomly generated value (SALT) that changes every 24 hours. This method ensures that your IP address cannot be reconstructed from the stored visitor identifier, thus preserving your anonymity. In addition, we do not merge this information with other data, and it is only stored on the hosting provider’s server.
We also process web analytics data, HTTP data and web analytics profile data. The web analytics tool we use creates and stores a web analytics profile that contains details about your use of the website, such as page views, frequency of visits, time spent on each page and the user agent of your device. This includes usage data (such as web pages visited and access times) and communication data (such as browser type, operating system and IP addresses).
By processing this data, we want to analyze user behaviour in a summarized form in order to improve the presentation and content of our website. The legal basis for this processing is our legitimate interest (Art. 6 para. 1 lit. (f) GDPR), in particular in carrying out web measurements in order to improve our products and our website.
The data collected is shared with our website hosting provider and processed within the EU.