Privacy Policy
We are pleased that you are interested in our company. Data protection is particularly important to the senior management of B-COMMAND GmbH. It is generally possible to use the websites of B-COMMAND GmbH without disclosing any personal data. If a data subject wants to use special services from our company via our website, however, the processing of personal data could be required. If processing personal data is required and is there is no legal basis for such processing, we generally obtain the consent of the data subject.
Processing personal data, for example, the name, address, email address or telephone number of a data subject, is always done in harmony with the General Data Protection Regulation and in accordance with the country-specific data protection regulations that apply to B-COMMAND GmbH. Using this Privacy Policy our company would like to inform the public about the type, extent and purpose of the personal data we collect, use and process. Furthermore, data subjects will have the rights to which they are entitled clarified by this Privacy Policy.
B-COMMAND GmbH as the data controller has implemented numerous technical and organisational measures in order to ensure as complete protection as possible of the personal data processed via this website. Nevertheless, internet-based data transmission can generally have gaps in security so that absolute protection cannot be guaranteed. For this reason, data subjects are free also to transmit personal data to us using alternative paths, for example by telephone.
1. Definition of terms
The Privacy Policy of B-COMMAND GmbH relates to terms that were applied by European directive and regulation legislators when enacting the General Data Protection Regulation (GDPR). Our Privacy Policy is intended to be easily legible and comprehensible both to the public and also for our customers and business partners. In order to guarantee this, we would like to explain some of the terms used in advance.
We use the following terms among others in this Privacy Policy:
a) Personal data
Personal data is all information that relates to an identified or identifiable natural person (subsequently “data subject”). A natural person is seen to be identifiable if they can be identified, directly or indirectly, in particular by allocation to an identifier such as a name, an identification number, location data, an online identifier or to one or more special characteristics that are an expression of the physical, physiological, genetic, psychological, financial, cultural or social identity of this natural person.
b) Data subject
A data subject is every identified or identifiable person whose personal data can be processed by the data controller.
c) Processing
Processing is every process or series of processes executed with or without the help of automated procedures in connection with personal data, such as collecting, recording, organising, arranging, storing, adjusting or amending, reading, retrieving, using, disclosing through transmission, distributing or any other form of provision, comparison or linking, restricting, erasing or destroying.
d) Restriction of processing
Restriction of processing is marking stored data with the aim of restricting its future processing.
e) Profiling
Profiling is every type of automated processing of personal data that consists of this personal data being used in order to evaluate certain personal aspects that relate to a natural person, in particular in order to analyse or forecast aspects regarding work performance, their financial situation, health, personal preferences, interests, reliability, conduct, place of residence or change of location of this natural person.
f) Pseudonymisation
Pseudonymisation is the processing of personal data in a manner in which the personal data cannot be allocated to a specific data subject without drawing on additional information, if this additional information is separately stored and subject to technical and organisational measures that guarantee that the personal data is not attributed to an identified or identifiable natural person.
g) Controller or data controller
A controller or data controller is the natural person or legal entity, public authority, institution or other centre that decides on the purpose and means of processing personal data alone or together with others. If the purpose and means of this processing are stipulated by Union law or the law of the member states, the controller can be provided with the certain criteria for this appointment in accordance with Union law or the law of the member states.
h) Order processor
The order processor is a natural person or legal entity, public authority, institution or other centre that processes personal data on behalf of the controller.
i) Recipient
A recipient is a natural person or legal entity, public authority, institution or other centre to whom personal data is disclosed, regardless of whether a third party is concerned or not. However, public authorities that within the scope of a certain investigation mandate in accordance with Union law or the law of the member states that possibly receive personal data are not deemed to be recipients.
j) Third party
A third party is a natural person or legal entity, public authority, institution or other centre apart from the data subject, the controller, the order processor and the persons authorised under the direct responsibility of the controller or the order processor, to process the personal data.
k) Consent
Consent is every declaration of intent given by a data subject voluntarily for the certain case in an informed manner in the form of a declaration or another clearly made action with which the data subject intimates that they consent to the processing of the relevant personal data.
2. Name and address of the data controller
The controller in accordance with the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions with a data protection character is:
B-COMMAND GmbH
Grützmühlenweg 46
22339 Hamburg
Germany
Tel.: +49-(0)40-538092-50
Email: info(at)b-command.com
Website: www.b-command.com
3. Cookies
The websites of B-COMMAND GmbH use cookies. Cookies are text files deposited and stored on a computer system via an internet browser.
Numerous websites use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a clear identifier of the cookie. It consists of a string through which websites and the server can be allocated to the concrete internet browser in which the cookie is stored. This enables the websites and servers visited to differentiate the data subject from other internet browsers that contain cookies. A certain internet browser can be recognised and identified via the clear cookie ID.
Through the use of cookies B-COMMAND GmbH can provide users of this website user-friendly services that would not be possible without setting the cookies.
By using a cookie, the information and offers on our website can be optimised in users’ interests. Cookies enable us, as has already been mentioned, to recognise the users of our website. The purpose of this recognition is to make the use of our website easier. For example, the user of a website that uses cookies does not have to input their access data again because this is done by the website and the cookies placed on the user’s computer system. Another example is the cookie of a shopping basket in the online shop. The online shop notices articles that a customer has placed in the virtual shopping basket using a cookie.
The data subject can prevent cookies being set at any time by correspondingly setting the internet browser used and thus permanently preventing the setting of cookies. Furthermore, cookies that have already been set can be deleted via an internet browser or another software program at any time. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the internet browser used, under some circumstances it will not be possible to use all the functions of our website.
4. Recording general data and information
The website of B-COMMAND GmbH records a range of general data and information on every retrieval of the website by a data subject or an automated system. This general data and information will be stored in the server log files. The following can be recorded: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which the accessing system came to our website (so-called referrer), (4) the sub-websites that are steered to our website via an accessing system, (5) the date and time of an access to the website, (6) an Internet Protocol address (IP address), (7) the Internet Service Provider of the accessing system and (8) other similar data and information that serve to avert dangers in the event of attacks on our information technology systems.
When using this general data and information, B-COMMAND GmbH will not draw any conclusions about the data subject. Instead, this information is required to (1) correctly deliver the contents of our website, (2) optimise the contents of our website and the advertising for it, (3) guarantee the permanent functionality of our information technology systems and the technology of our website and (4) to provide the information necessary to investigate crimes to the criminal investigation authorities in the event of a cyberattack. This anonymously collected data and information is therefore evaluated by B-COMMAND GmbH on the one hand, statistically, and furthermore, with the aim of improving data protection and data security in our company in order ultimately to ensure an optimal level of protection for the personal data we process. The anonymous data in the server log files is stored separately from all the personal data given by the data subject.
5. Registration on our website
The data subject has the possibility to register on the website of the data controller with the disclosure of personal data. Which personal data is transmitted here to the data controller results from the relevant input screen used for the registration. The personal data inputted by the data subject is used exclusively for internal use at the data controller and is collected and stored for in-house purposes. The data controller can forward data to one or more order processors, for example a package service provider, which must also use the personal data exclusively for internal use, which has to be attributed to the data controller.
Furthermore, by registering on the website of the data controller, the IP address issued to the data subject by the Internet Service Provider (ISP), and the date and time of the registration will be stored. Data is stored against the background that this is the only way misuse of our services can be prevented and that this data enables any crimes that have been committed to be solved. In this respect the storage of this data is required to protect the data controller. This data will generally not be transmitted to third parties if there are no legal obligations for transmission or the transmission does not serve the purposes of a criminal investigation.
The registration of the data subject with voluntary disclosure of personal data serves the data controller to offer the data subject contents or services that due to the nature of the matter can only be offered to registered users. Registered persons are free to amend the personal data given for registration or to have it completely deleted from the database of the data controller at any time.
The data controller will issue to every data subject on request information about which personal data is stored about the data subject. Furthermore, the data controller will correct or delete personal data on request or inform the data subject insofar as no legal retention obligations contradict this. The Data Protection Officer specified in this Privacy Policy and the entirety of the employees of the data controller are available as contacts to the data subject in this connection.
6. Getresponse
This website uses GetResponse for sending newsletters. Provider is the GetResponse Sp. Z o.o. with registered office in Gdansk, Poland, ul. Arkonska 6, A3, 80-387 Gdansk, commercial register number (KRS): 0000187388, VAT registration number: 9581468984.
GetResponse is a service used by u.a. the dispatch of newsletters can be organized and analyzed. The data entered by you for the purposes of newsletter subscription is stored on the servers of GetResponse.
6.1 Data analysis by GetResponse
When we send newsletters using GetResponse, we can determine if a newsletter message has been opened and which links have been clicked.
GetResponse also allows us to divide the newsletter recipients into different categories (so-called tagging). In this case, the newsletter recipients can be e.g. subdivided by gender, personal preference (e.g., vegetarian or non-vegetarian) or customer relationship (e.g., customer or potential customer). In this way, the newsletters can be better adapted to the respective target groups. For more information, please visit: https://getresponse.de.
If you do not want to be analyzed by GetResponse, you must unsubscribe from the newsletter. For this we provide in each newsletter message a corresponding link. Furthermore, you can unsubscribe from the newsletter directly on the website.
6.2 Legal basis
Data processing is based on your consent (Article 6 (1) (a) GDPR). You can revoke this consent at any time. The legality of the already completed data processing operations remains unaffected by the revocation.
6.3 storage time
The data deposited with us for the purpose of subscribing to the Newsletter will be stored by us from the newsletter until your cancellation and will be deleted from our servers as well as from the servers of GetResponse after cancellation of the newsletter. Data that has been stored for other purposes with us (such as e-mail addresses for the members area) remain unaffected.
For details, please refer to the privacy policy of GetResponse at: https://www.getresponse.de/email-marketing/legal/datenschutz.html.
6.4 Conclusion of an order data processing contract
We have entered into a contract data processing contract with GetResponse, in which we commit GetResponse to protect our customers’ data and not to disclose them to third parties.
7. Newsletter tracking
The Newsletter of B-COMMAND GmbH contains so-called tracking pixels. A tracking pixel is a miniature graphic embedded in such emails that are sent in HTML format in order to enable log file recording and a log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns to be conducted. On the basis of the embedded tracking pixels B-COMMAND GmbH can recognise whether and when an email is opened by a data subject and which links in the email were retrieved by the data subject.
Such personal data collected via tracking pixels contained in the Newsletters will be stored and evaluated by the data controller in order to optimise the despatch of the Newsletter and adjust the content of future Newsletters even better to the interests of the data subject. This personal data will not be transmitted to third parties. Data subjects are entitled to revoke the special declaration of consent given in this respect via the double opt-in procedure at any time. After a revocation the data controller will erase this personal data. Unsubscribing from receipt of the Newsletter automatically indicates a revocation to B-COMMAND GmbH.
8. Contact possibilities via the website
Due to legal regulations, the website of B-COMMAND GmbH includes disclosures that enable making quick electronic contact with our company and direct communication with us, which also includes a general address for so-called electronic post (email address). If a data subject makes contact with the data controller by email or via a contact form, the personal data transmitted by the data subject will be stored automatically. Such personal data transmitted by a data subject on a voluntary basis to the data controller will be stored for the purposes of processing or making contact with the data subject. This personal data will not be transmitted to third parties.
9. Routine erasure and blocking of personal data
The data controller processes and stores personal data of data subjects only for the period of time required to achieve the purpose of storage or if this is provided for by European directive and regulation legislators or by another legislator in acts or regulations to which the data controller is subject.
If the storage purpose lapses or if a storage period set by European directive and regulation legislators or another competent legislator expires, the personal data will be routinely blocked or erased in accordance with legal regulations.
10. Rights of the data subject
a) Right to confirmation
Every data subject has been granted the right by European directive and regulation legislators to demand confirmation from the data controller whether relevant personal data is processed. If a data subject would like to claim this confirmation right, they can contact our Data Protection Officer or another employee of the data controller at any time.
b) Right to information
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to receive information free of charge from data controllers about the personal data stored about them and a copy of this information. Furthermore, European directive and regulation legislators entitle data subjects to receive the following information:
- The processing purposes The categories of personal data processed
- The recipients or categories of recipients to whom the personal data is disclosed or is still to be disclosed, in particular concerning recipients in third countries or at international organisations
- If possible the planned duration for which the personal data is stored or, if this is not possible, the criteria for setting this duration
- The existence of a right to correct or erase the personal data that affects them or to restrict processing by the controller or a right of revocation of this processing
- The existence of a right of complaint to a supervisory authority
- If the personal data is not collected from the data subject: all available information about the origin of the data
- The existence of automated decision-making including profiling as per Article 22 (1) and (4) GDPR and — at least in these cases — meaningful information about the logic involved and the scope and desired effects of such processing on the data subject
Furthermore, the data subject is entitled to a right of information about whether personal data has been transmitted to a third country or to an international organisation. If this is the case, the data subject otherwise has the right to receive information about suitable guarantees in connection with the transmission.
If a data subject would like to claim this information right, they can contact our Data Protection Officer or another employee of the data controller at any time.
c) Right to correction
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to demand the immediate correction of inaccurate personal data relating to them. Furthermore, the data subject is entitled to the right to demand, taking into consideration the purpose of the processing, the completion of incomplete personal data — including by means of a supplementary declaration.
If a data subject would like to claim this correction right, they can contact our Data Protection Officer or another employee of the data controller at any time.
d) Right of erasure (right to be forgotten)
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to demand from the controller that they erase the relevant personal data without delay, if one of the following reasons apply and insofar as processing is not required:
- The personal data was collected or otherwise processed for purposes for which it is no longer necessary.
- The data subject revokes their consent on which processing is based as per Art. 6 (1) a GDPR or Art. 9 (2) a GDPR and there is no other legal basis for the processing.
- The data subject objects to the processing as per Art. 21 (1) GDPR and there are no overriding legal grounds for the processing or the data subject objects to the processing as per Art. 21 (2) GDPR.
- The personal data was illegally processed.
- It is necessary to erase the personal data to meet a legal obligation in accordance with Union law or the law of the member states to which the controller is subject.
- The personal data was collected in relation to the services offered by the information company as per Art. 8 (1) GDPR.
If one of the grounds specified applies and a data subject would like to erase personal data stored at B-COMMAND GmbH, they can contact our Data Protection Officer or another employee of the data controller for this purpose at any time. The Data Protection Officer of B-COMMAND GmbH or another employee will ensure the erasure request is met without delay.
If the personal data was made public by B-COMMAND GmbH and if our company is obliged to erase the personal data as the controller as per Art. 17 (1) GDPR, B-COMMAND GmbH will take appropriate actions, taking into consideration the available technology and the implementation costs, including of a technical nature, in order among others to inform the data processing controller that processes the published personal data that the data subject affected by this other data processing controller has demanded the erasure of all links to this personal data or copies or duplicates of this personal data, insofar as the processing is not required. The Data Protection Officer of B-COMMAND GmbH or another employee will ensure the necessary actions are carried out in the individual case.
e) Right to restriction of processing
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to demand the restriction of processing by the controller if one of the following conditions applies:
- The accuracy of the personal data is disputed by the data subject and this is disputed for a period that enables the controller to check the accuracy of the personal data.
- The processing is illegal, the data subject rejects the erasure of the personal data and demands instead the restriction of use of the personal data.
- The controller no longer requires the personal data for the purposes of processing but the data subject requires it to assert, exercise or defend legal claims.
- The data subject has objected to processing as per Art. 21 (1) GDPR and it has not yet been established whether the justified grounds of the controller outweigh those of the data subject.
If one of the conditions specified exists and a data subject would like to demand the restriction of personal data stored at B-COMMAND GmbH, they can contact our Data Protection Officer or another employee of the data controller for this purpose at any time. The Data Protection Officer of B-COMMAND GmbH or another employee will ensure the restriction of the processing.
f) Right to data portability
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to receive the personal data relating to them, which was provided by the data subject to a controller, in a structured, common and machine-readable format. The data subject also has the right to transmit this data to another controller without impediment by the controller to whom the personal data was provided, if the processing relates to the consent as per Art. 6 (1) a GDPR or Art. 9 (2) a GDPR or to a contract as per Art. 6 (1) b GDPR and the processing is done with the help of automated procedures, if the processing is not required to carry out a task that is in the public interest or in exercising public authority, which was transferred to the controller.
Furthermore, the data subject has the right when exercising their right as per Art. 20 (1) GDPR to effect that the personal data is transmitted directly from one controller to another controller, insofar as this is technically feasible and if the rights and freedoms of other persons are not impaired.
To assert the right to data portability the data subject can contact the Data Protection Officer appointed by B-COMMAND GmbH or another employee.
g) Right to objection
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to object on grounds that result from their particular situation to the processing of personal data that relates to them that is done on the basis of Art. 6 (1) e or f GDPR. This also applies to any profiling done based on these provisions.
In the event of an objection B-COMMAND GmbH will no longer process the personal data, unless we can prove mandatory grounds worthy of protection for the processing that outweigh the interests, rights and freedoms of the data subject or the processing serves to assert, exercise or defend legal claims.
If B-COMMAND GmbH processes personal data in order to make direct advertising, the data subject has the right to object to the processing of the personal data for the purposes of such advertising at any time. This also applies to profiling, insofar as this is connected with such direct advertising. If the data subject makes an objection to B-COMMAND GmbH against processing for the purposes of direct advertising, B-COMMAND GmbH will no longer process the personal data for these purposes.
In addition, the data subject has the right, on grounds that result from their particular situation, to object to the processing of personal data relating to them done at B-COMMAND GmbH for scientific or historical research purposes or for statistical purposes as per Art. 89 (1) GDPR, unless such processing is required for a task that is in the public interest.
To exercise the right of objection the data subject can directly contact the Data Protection Officer of B-COMMAND GmbH or another employee. Furthermore, the data subject is free to exercise their right of objection in connection with the use of services of the information company, regardless of Directive 2002/58/EC, by means of an automated procedure for which technical specifications are used.
h) Automated decisions in individual cases including profiling
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators not to be subject to a decision relating exclusively to automated processing — including profiling — that has a legal effect on them or considerably disadvantages them in a similar manner, if the decision (1) is not required to conclude or fulfil a contract between the data subject and the controller, or (2) on the basis of legal regulations of the Union or the member states to which the controller is subject this is permissible and these legal regulations contain appropriate measures to protect the rights and freedoms as well as the justified interests of the data subject or (3) is taken with the explicit consent of the data subject.
If the decision (1) is required to conclude or fulfil a contract between the data subject and the controller or (2) is taken with the explicit consent of the data subject, B-COMMAND GmbH will take appropriate measures in order to protect the justified interests of the data subject, which includes at least the right to effect the intervention of a person by the controller, to present their own viewpoint and to appeal against the decision.
If a data subject would like to assert this right in connection with automated decisions, they can contact our Data Protection Officer or another employee of the data controller at any time.
i) Right to revoke data protection consent
Every data subject affected by the processing of personal data has been granted the right by European directive and regulation legislators to revoke any consent given to process personal data at any time.
If a data subject would like to assert their right to revoke any consent, they can contact our Data Protection Officer or another employee of the data controller at any time.
11. Data protection for applications and in application procedures
The data controller collects and processes the personal data of applicants for the purposes of transacting the application procedure. This processing can also be done via electronic pathways. This is the case in particular if an applicant transmits application documents using electronic pathways, for example, by email or via a web form on the website, to the data controller. If the data controller concludes a contract of employment with an applicant, the transmitted data will be stored to transact the employment relationship in compliance with legal regulations. If the data controller does not conclude a contract of employment with an applicant, the application documents will be automatically erased two months after notification of the rejection decision, if an erasure is not contradicted by any other justified interests of the data controller. Another justified interest in this sense can be, for example, proceedings in accordance with the German Equality Act (Allgemeines Gleichbehandlungsgesetz, or AGG).
12. Legal basis of processing
Art. 6 (I) a GDPR serves as the legal basis for our company for processing procedures for which we obtain consent for a certain processing purpose. If processing personal data is required to fulfil a contract whose contracting party is the data subject, for example, as is the case for processing procedures that are necessary to deliver merchandise or provide another service or return service, this processing relates to Art. 6 (I) b GDPR. The same applies to such processing procedures that are required to conduct pre-contractual measures, such as in cases of enquiries about our products or services. If our company is subject to a legal obligation that requires a processing of personal data, for example, to fulfil taxation obligations, the processing will be based on 6 (I) c GDPR. In rare cases the processing of personal data can be required in order to protect essential interests of the data subject or of another natural person. This would be the case, for example, if a visitor to our business were injured and as a result, their name, age, health insurer data or other essential information had to be transmitted to a doctor, a hospital or another third party. Then the processing would relate to Art. 6 (I) d GDPR. Finally, processing procedures can relate to Art. 6 (I) f GDPR. Processing procedures that are not covered by any of the aforementioned legal bases are based on this legal basis, if the processing is required to protect a justified interest of our company or a third party, if these do not outweigh the interests, fundamental rights and fundamental freedoms of the data subject. We are therefore permitted to carry out such processing procedures because these are mentioned in particular by European legislators. These legislators are of the opinion that a justified interest could be assumed if the data subject is a customer of the controller (recital 47 sentence 2 GDPR).
13. Justified interests in processing pursued by the controller or a third party
If the processing of personal data is based on Article 6 (I) f GDPR, our justified interest is conducting our business activity in favour of the wellbeing of all our employees and our shareholders.
14. Term for which personal data is stored
The criterion for the term of storage of personal data is the relevant legal retention period. After expiry of this period the corresponding data is routinely erased, if it is no longer required to fulfil a contract or to initiate a contract.
15. Legal or contractual regulations for providing personal data; requirement for conclusion of a contract; obligation of the data subject to provide the personal data; possible consequences of non-provision
We must explain to you that the provision of personal data is in part legally stipulated (e.g. tax regulations) or may result from contractual regulations (e.g. disclosures on the contractual partner). Sometimes, in order to conclude a contract, it can be required that a data subject provides us with personal data that we consequently have to process. For example, the data subject is obliged to provide personal data if our company concludes a contract with them. The consequence of non-provision of personal data is that the contract could not be concluded with the data subject. Before the data subject provides personal data, the data subject must contact our Data Protection Officer. Our Data Protection Officer will explain to the data subject whether the provision of personal data is legally or contractually stipulated or is required to conclude the contract, whether there is an obligation to provide the personal data and which consequences the non-provision of the personal data would have.
16. Existence of automated decision-making
As a responsible company we waive the use of any automated decision-making or profiling.
17. Data privacy policy for the use of Google Analytics (with IP-Anonymisation)
On this website, the controller has integrated the component of Google Analytics. Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in order to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to evaluate the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
Google Analytics places a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, Google is enabled to analyse the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by the controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject will automatically submit data through the Google Analytics component for the purpose of online advertising and the settlement of commissions to Google. During this technical procedure, the enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which the access was made, and the frequency of visits to our website by the data subject. With each visit to our Internet site, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. Google stores these personal data in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google Analytics may be deleted at any time via a web browser or other software programs.
In addition, the data subject has the possibility of objecting to a collection of data that are generated by Google Analytics, which is related to the use of this website, as well as the processing of this data by Google and the chance to preclude any such. For this purpose, the data subject must download a browser add-on under the link https://tools.google.com/dlpage/gaoptout and install it. This browser add-on tells Google Analytics through a JavaScript that any data and information about the visits of Internet pages may not be transmitted to Google Analytics. The installation of the browser add-ons is considered an objection by Google. If the information technology system of the data subject is later deleted, formatted, or newly installed, then the data subject must reinstall the browser add-ons to disable Google Analytics. If the browser add-on was uninstalled by the data subject or any other person who is attributable to their sphere of competence or is disabled, it is possible to execute the reinstallation or reactivation of the browser add-ons.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ & http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/.
We use on our website “Google Tag Manager”, a service provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as “Google”). Google Tag Manager enables us, as marketers, to manage website tags through an interface. The Google Tag Manager tool that implements the tags is a cookie-less domain and does not itself collect any personal information. Google Tag Manager is responsible for triggering other tags, which in turn may collect data. Google Tag Manager does not access this data. If disabled at the domain or cookie level, it will remain disabled for all tracking tags implemented with Google Tag Manager.
Third party information: Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland
You can find further information on data protection on the following Google websites:
Privacy policy: https://policies.google.com/privacy?hl=en&gl=en
FAQ Google Tag Manager: https://www.google.com/intl/de/tagmanager/faq.html
Terms of use Google Tag Manager: https://www.google.com/intl/de/tagmanager/use-policy.html
18. chat with Tawk.to
We use on our website the live chat system provided by tawk.to inc. (187 East Warm Springs Rd, SB298, Las Vegas, NV 89119, USA, “tawk.to”). The data processing serves the purpose of communication between you and us as the provider. In the process, anonymized data is processed for the operation of the system as well as for web analysis purposes. User profiles can be created from this data under a pseudonym, whereby cookies can be used. The cookies enable the recognition of the Internet browser. The collected data will not be used to personally identify the visitor to this website without the separately granted consent of the person concerned. Your data may be transferred to the USA. For the USA, there is no adequacy decision of the EU Commission. The processing of your personal data is based on Art. 6 (1) lit. f DSGVO from our overriding legitimate interest in direct customer communication. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
19. Data protection provisions about the application and use of Google-AdWords
On this website, the controller has integrated Google AdWords. Google AdWords is a service for Internet advertising that allows the advertiser to place ads in Google search engine results and the Google advertising network. Google AdWords allows an advertiser to pre-define specific keywords with the help of which an ad on Google’s search results only then displayed, when the user utilizes the search engine to retrieve a keyword-relevant search result. In the Google Advertising Network, the ads are distributed on relevant web pages using an automatic algorithm, taking into account the previously defined keywords.
The operating company of Google AdWords is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
The purpose of Google AdWords is the promotion of our website by the inclusion of relevant advertising on the websites of third parties and in the search engine results of the search engine Google and insertion of third-party advertising on our website.
If a data subject reaches our website via a Google ad, a conversion cookie is filed on the information technology system of the data subject through Google. The definition of cookies is explained above. A conversion cookie loses its validity after 30 days and is not used to identify the data subject. If the cookie has not expired, the conversion cookie is used to check whether certain sub-pages, e.g., the shopping cart from an online shop system, were called up on our website. Through the conversion cookie, both Google and the controller can understand whether a person who reached an AdWords ad on our website generated sales, that is, executed or canceled a sale of goods.
The data and information collected through the use of the conversion cookie are used by Google to create visit statistics for our website. These visit statistics are used in order to determine the total number of users who have been served through AdWords ads to ascertain the success or failure of each AdWords ad and to optimize our AdWords ads in the future.
Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject.
The conversion cookie stores personal information, e.g., the Internet pages visited by the data subject. Each time we visit our Internet pages, personal data, including the IP address of the Internet access used by the data subject, is transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America.
Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, at any time, prevent the setting of cookies by our website, as stated above, by means of a corresponding setting of the Internet browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a conversion cookie on the information technology system of the data subject. In addition, a cookie set by Google AdWords may be deleted at any time via the Internet browser or other software programs.
The data subject has a possibility of objecting to the interest-based advertisement of Google. Therefore, the data subject must access from each of the browsers in use the link www.google.de/settings/ads and set the desired settings.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/.
20. Data protection provisions about the application and use of Google-Maps
This site uses the Google Maps map service via an API. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
Further information about handling user data, can be found in the data protection declaration of Google at https://www.google.de/intl/de/policies/privacy/.
21.Data Privacy Statement for the use of Facebook-Plugins (Like-Button)
Plugins of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA are integrated in our websites. You will recognize these plugins by the Facebook logo or the “Like-Button” on our website. Here you may find an overview over the Facebook plugins: http://developers.facebook.com/docs/plugins/.
If you are visiting our pages, the plugin will connect your browser directly to the Facebook server. Thereby Facebook gets the information, that you have visited our website with your IP address. If you click the Facebook “Like-Button” while logged in at your Facebook account, you are able to link contents of our websites to your Facebook profile. Thus Facebook can assign the visit of our websites to your user account. We would like to point out that we (as provider of the websites) gain no knowledge of the content of the transferred data or of its utilization through Facebook. You will find further information about the data privacy statement of Facebook on http://de-de.facebook.com/policy.php. If you don’t like Facebook to be able to assign the visit of our websites to your Facebook user account, please log out of your Facebook account.
22. Integrating Google+ plug-ins
In order to make our web presence more attractive and more user-friendly, this website contains links to social plug-ins of Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (hereafter: “Google+”). A link from our website to your Google+ account can be established by the transmission of this data to Google+ via this plug-in. Activating this function involves two steps: to activate the “Google+1” button, you must first click the link found on our website. This activates the Google+ plug-ins and your browser establishes a connection to the Google+ server. By clicking a second time you transmit your recommendation. If you are already logged onto your Google+ account, a second click isn’t necessary; your visit to this webpage can then be associated with your Google+ account.
Should you wish to prevent data transfer of this kind, you need to cancel the link to your Google+ account before you click.
For information on the scope and purpose of data collection through Google+ as well as on how they process and make use of your data there, please refer to the data protection policy on the Google+ website ( www.google.com/intl/de/+/policy/+1button.html). There you will find more information about data protection rights and configuration options for protecting your privacy.
23. Data Privacy Statement for the use of Twitter
Functions of the service Twitter are integrated in our websites. These are offered by Twitter, Inc. 1355 Market St, Suite 900, San Francisco, CA 94103, USA. If you are using Twitter and the function “Re-Tweet”, the websites visited by you are linked with your Twitter account and therefore made public for other users. Thus data is also transferred to Twitter.
We would like to point out that we (as provider of the websites) have no knowledge of the content of the transferred data or of its utilization by Twitter. You will find further information about the data privacy statement of Twitter on
You are able to change your Twitter data privacy settings at http://twitter.com/account/settings.
24. Data Privacy Statement for the use of Pinterest
Our website employs the services of pinterest.com.
Pinterest.com is a service of Pinterest, Inc., 808 Brannan St, San Francisco, CA 94103, USA. Through the “Pin it“ button integrated into our website, Pinterest is informed that you have accessed that particular page of our site. If you are logged into Pinterest, Pinterest can associate your visit to our site with your Pinterest account and thereby create a link to the data collected. Pinterest stores the data that is transferred through clicks on “Pin it“ buttons. You can find more information with respect to the purpose and extent of data collected, how it is processed and used as well as your rights in this regard and what settings you can use to protect your privacy by consulting the Pinterest data protection policy, which you can access at http://pinterest.com/about/privacy/. To prevent Pinterest from associating your visit to our website to your Pinterest account, you must first log out of your Pinterest account before visiting our site.
25. Data Privacy Statement for the Analysis by wiredminds
Our website uses a counting pixel technology provided by wiredminds GmbH ( www.wiredminds.de) to analyze visitor behavior. If necessary, data is collected, processed and stored, from which user profiles are created under a pseudonym. Wherever possible and reasonable, these usage profiles are completely anonymized. Cookies can be used for this purpose. Cookies are small text files that are stored in the visitor’s Internet browser and serve to recognize the Internet browser. The collected data, which may also contain personal data, will be transmitted to wiredminds or collected directly by wiredminds. wiredminds may use information that is left by visiting the websites to create anonymized usage profiles. The data obtained without explicit consent of the affected person will not be used to personally identify the visitor of this website and will not be merged with personal data of the bearer of the pseudonym. Whenever IP addresses are recorded, their immediate anonymization takes place by deleting the last number block.
Opt-Out-Link
26. Managing cookies
Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:
Chrome Browser: https://support.google.com/chrome/answer/95647?hl=en
Internet Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies
Mozilla Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
Safari: https://support.apple.com/kb/PH21411
27. Data Protection Officer
Asc-Dienstleistungs GmbH
Danziger Strasse 21
37083 Göttingen
datenschutz@asc46.de