1.1 What are personal data
Personal data refers to information that discloses or could disclose the user’s identity. We adhere to the principle of data avoidance. Wherever possible, we avoid collecting personal data.
1.2 Handling of personal data
Your personal data shall be processed only if we have received your consent (point (a) of Article 6(1) of the GDPR) or where processing is necessary for the purposes of our legitimate interests and where such interests are not overridden by your interests or fundamental rights and freedoms (point (f) of Article 6(1) of the GDPR).
We may use processors to process your personal data, but beyond this we shall not, as a matter of principle, pass on personal data to any third parties.
Your personal data shall be processed exclusively within the EU, unless otherwise stated in the following.
1.3 Usage data
When you visit a website, general technical information is collected. This information comprises the IP address used, the time, duration of visit, browser type and, possibly, the site of origin. These usage data are registered in a log file for technical reasons and may be used and stored for the purposes of statistical analysis of the website. These usage data are not linked to any further personal data concerning you.
1.4 Storage period
Once the purpose for which the data were collected is concluded, we store your personal data only for as long as is required by the legal (in particular, tax law) provisions.
2 Your rights
2.1 Right of access
You have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, you have the right to obtain access to this personal data and the further information specified in Article 15 of the GDPR.
2.2. Right to rectification
You have the right to rectification of inaccurate personal data concerning you, and the right to have incomplete personal data completed, in accordance with Article 16 of the GDPR.
2.3. Right to erasure
You have the right to obtain from us the erasure of personal data concerning you without undue delay. We are obliged to delete these data without delay, in particular where one of the following grounds applies:
• Your personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
• You withdraw consent on which the processing is based and there is no other legal ground for the processing.
• Your data have been unlawfully processed.
There is no right to erasure if your personal data are required for the establishment, exercise or defence of our legal claims.
2.4. Right to restriction of processing
You have the right to obtain from us the restriction of processing where one of the following applies:
• You contest the accuracy of the data and we therefore need to verify the accuracy of the data;
• The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
• We no longer need the personal data, but you require them for the establishment, exercise or defence of legal claims;
• You have objected to processing of your data and it has not yet been verified whether our legitimate grounds override your grounds.
2.5 Right to data portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller without hindrance from us, provided that the processing is based on consent or a contract and the processing is carried out by automated means.
2.6 Right of withdrawal
Where processing of your personal data is based on consent, you have the right to withdraw your consent at any time.
2.7 General information and right of appeal
The exercising of your above-mentioned rights shall not, in principle, be subject to charge. If you have any complaints, you have the right directly to contact the supervisory authority that is responsible for us, the state data protection commissioner.
3 Data security
3.1 Data security
All the data on our website are protected by technical and organisational measures against loss, destruction, access, modification and dissemination.
3.2 Sessions and cookies
4 Presence on social media platforms
We use the following social media platforms to present our company and for communication (we refer explicitly to the data privacy statements and opt-out options linked to below).
Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Data privacy statement: https://www.facebook.com/about/privacy/
Opt-out: https://www.facebook.com/settings?tab=ads alternatively http://www.youronlinechoices.com
LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland)
Data privacy statement: https://www.linkedin.com/legal/privacy-policy
Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany)
Data privacy statement and opt-out: https://privacy.xing.com/de/datenschutzerklaerung.
YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)
Data privacy statement: http://www.youtube.com/t/privacy/.
These social media platforms may process personal data outside the EU, we refer in this context to the existing data privacy statements from the social media platforms.
The respective social media platforms may create usage profiles on the basis of your usage behaviour and your resulting interests and actions, and they may store cookies on your computer in which your usage behaviour is stored. If you have an account on the social media platform in question and you are logged in, your usage behaviour can also be saved independently of the device. Your usage profile may be used, for example, to place advertisements that are presumed to match your interests.
We process your personal data exclusively for communication with you via the social media platform of your choice, as well as for optimisation of our online presence, and we make sure that this does not affect any interests of yours that override our legitimate interests (point (f) of Article 6(1) of the GDPR). If you have already given your effective consent to the relevant data processing by the respective operator of the social media platform, your personal data shall be processed on the basis of this consent (Article 6(1) of the GDPR).
5 Services from third-party providers
5.1 Google Analytics
This website uses Google Analytics, a web analysis service from Google, operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) and this website collects and stores data using this web analysis service to create pseudonymous usage profiles. The usage profiles created in this way are used to analyse visitor behaviour so that we can arrange the services provided by this website according to demand and optimise them. Google Analytics uses what are known as “cookies”, small text files that are stored on your computer and that enable an analysis of your use of the website. The information generated by the cookie regarding your use of the website is generally transferred to a Google server in the USA, where it is stored. If you activate IP anonymisation on this website, Google first abbreviates your IP address within the member states of the European Union or member states of the European Economic Area. Only in exceptional cases is the IP address transferred to a Google server in the USA and then abbreviated there. On behalf of the operator of this website, Google uses this information to analyse your use of the website, in order to compile reports on website activities and to provide other services connected to website usage and Internet usage to the website operator. The IP address transferred from your browser in the context of Google Analytics is not merged with other data by Google. The usage profiles, which are listed under pseudonyms, are not merged with other personal data concerning the user without the user’s specific explicit consent. Thus it can be assumed that there are no overriding interests on your part to oppose this (point (f) of Article 6(1) of the GDPR). You can prevent the storage of cookies by making the relevant settings in your browser software; however, we would advise that this may result in you being unable to make full use of all the functions on this website. Furthermore, you can prevent the recording of the data that is generated in the cookie and that refers to your use of this website (including your IP address) by Google and you can prevent the processing of this data by Google by downloading and installing the browser plug-in available from the following link (http://tools.google.com/dlpage/gaoptout?hl=de).
5.2 Social media links
We have our own social media pages on third-party providers, which can be reached via links on this website. When you use these links, you are taken to the corresponding website provided by third-parties (e.g. Facebook, Twitter, Google+). In order to avoid any unnecessary data transfer, we recommend logging out of the third-party provider in question yourself before clicking on the link, to prevent the possibility of usage profiles being created by the third-party provider when you use the link.
5.3 Use of YouTube
This website and its integrated services contain embedding of videos from YouTube. These enable a connection to YouTube and the videos stored there. YouTube is provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). This does not affect any user interests that override the technical need to embed videos (point (f) of Article 6(1) of the GDPR). For details of the purpose and scope of data collection and data usage by Google and your rights and configuration options for protection as a customer of YouTube, please see the data protection information from YouTube. You can find this at: http://www.youtube.com/t/privacy/.
5.4 Google Fonts
We use what are known as web fonts from Google in order to display a uniform font on our website. These are stored in your browser cache automatically when you access one of our pages, in order to enable the desired display. If your browser does not support the web fonts used, a standard font of your computer’s may be used. This does not affect any user interests that override this technical need (point (f) of Article 6(1) of the GDPR). You can view the Google data privacy statement at: https://www.google.com/policies/privacy/. For more information about Google Fonts, see https://developers.google.com/fonts/faq
5.6 Zendesk (formerly Zopim)
On this website, technologies from Zendesk Inc., 1019 Market St, San Francisco, USA (www.zendesk.com) are used to collect and store pseudonymised data for the purposes of web analytics and for operating the live chat system for responding to live support queries. These pseudonymised data may be used, among other purposes, to create pseudonymous usage profiles. Cookies may be used for this purpose. Cookies are small text files that are stored locally on the Internet browser cache of the visitor to the site. Among other purposes, cookies enable the Internet browser to be recognised on subsequent visits. If the information collected in this way contains a reference to a person, it is processed in accordance with point (f) of Article 6(1) of the GDPR, on the basis of our legitimate interests in effective customer support and statistical analysis of the usage behaviour for optimisation purposes.
Without the specific consent of the person in question, data collected using the Zendesk technologies shall not be used to identify the visitor to this website in person and they shall not be merged with personal data concerning the bearer of the pseudonym. To prevent storage of Zendesk cookies, you can configure your Internet browser so that no cookies are stored on your computer in future, and you can delete cookies that have already been stored. However, deactivating all cookies may result in some of the functions on our website no longer being available. You can deactivate data collection and data storage for the purposes of creating a pseudonymised usage profile, at any time and with future effect, by sending us an email informing us of your objection to the email address listed in the legal notice.
Zendesk Inc., based in the USA, is certified for the US-European “Privacy Shield” data protection convention, which ensures compliance with the data protection level that applies in the EU. For the details of how Zendesk handles your personal data and for information of how it collects and stores the data, see the Zendesk data privacy information at https://www.zendesk.com/company/customers-partners/privacy-policy/.
To contact us concerning data privacy, please use the following contact information. Data controller as defined in the GDPR:
Digades GmbH Digitales und analoges Schaltungsdesign GmbH
Äußere Weberstraße 20
02763 Zittau, Germany
Phone: +49 (0) 35 83 57 75-0