Policy

Privacy policy

PRIVACY POLICY

 

This privacy policy explains the type, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and the websites, functions and content associated with it, as well as external online presences, such as our social media profiles (hereinafter jointly referred to as “online offering”). With regard to the terms used, such as “processing” or “person responsible”, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

 

TYPES OF DATA PROCESSED:

 

– Inventory data (e.g., names, addresses). – Contact data (e.g., e-mail, telephone numbers). – Content data (e.g., text entries, photographs, videos). – Usage data (e.g., websites visited, interest in content, access times). – Meta/communication data (e.g., device information, IP addresses).

 

CATEGORIES OF AFFECTED PERSONS

 

Visitors and users of the online offer (hereinafter we refer to the affected persons collectively as “users”).

 

PURPOSE OF PROCESSING

 

– Making the online offer, its functions and contents available. – Answering contact requests and communicating with users. – Security measures. – Reach measurement/marketing

 

TERMS USED

 

“Personal data” is all information that relates to an identified or identifiable natural person (hereinafter “affected person”); a natural person is considered identifiable if he or she can be identified directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more special characteristics that express the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. “Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means. The term is broad and covers virtually any handling of data. “Pseudonymisation” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person. “Profiling” means any form of automated processing of personal data which consists in the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements. The “controller” is the natural or legal person, public authority, agency or other body which alone or jointly with others decides on the purposes and means of the processing of personal data. “Processor” means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

 

RELEVANT LEGAL BASIS

 

In accordance with Art. 13 GDPR, we will inform you of the legal basis for our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies: The legal basis for obtaining consent is Art. 6 Para. 1 lit. a and Art. 7 GDPR, the legal basis for processing to fulfill our services and carry out contractual measures as well as answering inquiries is Art. 6 Para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 Para. 1 lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art. 6 Para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) lit. d GDPR serves as the legal basis.

 

SECURITY MEASURE

 

In accordance with Art. 32 GDPR, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different likelihood and severity of the risk to the rights and freedoms of natural persons, we take appropriate technical and organizational measures to ensure that the data is processed in accordance with the risk.

Leave a Reply

Your email address will not be published. Required fields are marked *