We take data protection seriously
The protection of your privacy when processing personal data is an important concern for us. When you visit our website, our web servers save the IP of your internet service provider, the website from which you visit us, the web pages you visit on our website and the date and duration of your visit as a standard feature. This information is absolutely necessary for the technical transmission of the web pages and secure server operation. A personalised evaluation of this data does not take place.
If you send us data via the contact form, this data is stored on our servers as part of the data backup process. Your data will only be used by us to process your request. Your data will be treated as strictly confidential. It will not be passed on to third parties.
Im Mediapark 8a
Phone: +49 221 165 323 87
Personal data is data about your person. This includes your name, address and e-mail address. You do not have to disclose any personal data to visit our website. In some cases, we need your name and address as well as other information in order to be able to offer you the requested service.
The same applies in the event that we supply you with information material on request or when we answer your enquiries. In these cases we will always point this out to you. In addition, we only store the data that you have provided to us automatically or voluntarily.
When you use one of our services, we generally only collect the data that is necessary to provide you with our service. We may ask you for further information, but this is voluntary. Whenever we process personal data, we do so in order to provide you with our service or to pursue our commercial objectives.
Automatically stored data
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Date and time of the request
- Name of the requested file
- Page from which the file was requested
- Access status (file transferred, file not found, etc.)
- Web browser and operating system used
- Complete IP address of the requesting computer
- Amount of data transferred
This data is not merged with other data sources. The processing is carried out in accordance with Art. 6 Para. 1 Letter f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website.
For reasons of technical security, in particular to defend against attempted attacks on our web server, we store this data for a short period of time. It is not possible for us to draw conclusions about individual persons on the basis of this data. After seven days at the latest, the data is anonymised by shortening the IP address at domain level, so that it is no longer possible to establish a link to the individual user. The data is also processed in anonymised form for statistical purposes; it is not compared with other data or passed on to third parties, even in extracts. Only within the framework of our server statistics, which we publish every two years in our activity report, is a presentation of the number of page views made.
When you visit our website, we may store information on your computer in the form of cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited Internet pages and servers to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific internet browser can be recognised and identified via the unique cookie ID.
Through the use of session cookies, the controller can provide the users of this website with more user-friendly services that would not be possible without the cookie setting. Without consent, we only use technically necessary cookies on the legal basis of legitimate interest pursuant to Art. 6 (1) Letter f GDPR.
We only use personal cookies to improve our website or for marketing/advertising purposes with your consent. On your first visit, you can voluntarily agree to tracking or analysis by clicking on the cookie banner. Your data may be passed on to partners or third-party providers. These cookies will only be stored if you explicitly agree to this; the legal basis is then your consent in accordance with Art. 6 Para. 1 Letter a GDPR.
[borlabs-cookie type=”btn-cookie-preference” title=”Privacy Settings”/]
How do we use Borlabs Cookie?
This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consents. Borlabs cookie does not process any personal data.
The borlabs-cookie cookie stores your consents that you gave when you entered the website. If you wish to revoke these consents, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked again for your cookie consent.
How do we use Google services?
We use the technologies of Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), which are described below. The information automatically collected by Google technologies about your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. There is no adequacy decision of the European Commission for the USA. Our cooperation is based on standard data protection clauses of the European Commission.
How do we use Google Tag Manager?
This website uses Google Tag Manager. The Tag Manager does not collect any personal data. The tool provides for the triggering of other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager. You can find Google’s privacy notice for this tool here: https://www.google.com/analytics/terms/tag-manager/
How do we use Google Analytics?
We have integrated the Google Analytics component (with anonymisation function) on this website via the provider MonsterInsights. For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which usage profiles are created using pseudonyms. Cookies may be used for this purpose. As a matter of principle, your IP address will not be merged with other Google data. Data processing is carried out on the basis of an order processing agreement by Google.
For the purpose of optimised marketing of our website, we have activated the data release settings for “Google products and services”. This allows Google to access the data collected and processed by Google Analytics and subsequently use it to improve Google services. Data sharing with Google under these data sharing settings is based on an additional agreement between data controllers. We have no influence on the subsequent data processing by Google.
For the creation and execution of tests, we also use the Google Analytics Google Optimize extension function.
For web analysis, the Google Analytics Google Signals extension function enables so-called “cross-device tracking”. Insofar as your internet-enabled devices are linked to your Google account and you have activated the “personalised advertising” setting in your Google account, Google can generate reports on your usage behaviour (in particular cross-device user figures), even if you change your terminal device. We do not process personal data in this respect; we only receive statistics compiled on the basis of Google Signals.
For web analysis and advertising purposes, the Google Analytics extension function, the so-called DoubleClick cookie, enables your browser to be recognised when you visit other websites. Google will use this information to compile reports on website activity and to provide other services related to website usage.
How do we use Google Ads?
For advertising purposes in Google search results as well as on third-party websites, the so-called Google Remarketing Cookie is set when you visit our website, which automatically enables interest-based advertising by collecting and processing data (IP address, time of visit, device and browser information as well as information on your use of our website) and by means of a pseudonymous CookieID and on the basis of the pages you visit. Any further data processing will only take place if you have activated the “personalised advertising” setting in your Google account. In this case, if you are logged in to Google while visiting our website, Google uses your data together with Google Analytics data to create and define target group lists for cross-device remarketing.
How do we use Google Web Fonts?
For the uniform display of content on our website, data (IP address, time of visit, device and browser information) is collected by the script code “Google Fonts”, transmitted to Google and then processed by Google. We have therefore embedded the fonts on our own server in a data protection-compliant manner so that no data is transmitted to Google.
How do we use Google Remarketing?
The function is used to present interest-based advertisements to website visitors within the Google advertising network. The technology enables us to serve automatically generated, targeted advertisements after your visit to our website. The ads are based on the products and services you clicked on the last time you visited our website. For this purpose, a so-called “cookie” is stored in the browser of the website visitor, which makes it possible to recognise the visitor when he or she visits websites that belong to Google’s advertising network. Cookies are small text files that are stored in your browser when you visit our website. Google usually stores information such as your web request, IP address, browser type, browser language, date and time of your request. This information is used to associate the web browser with a specific computer. On the pages of the Google advertising network, the visitor can then be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google’s remarketing function.
How do we use GA Audience?
Further information on data protection when using GA Audience can be found at the following link: https://support.google.com/analytics/answer/2700409?hl=en&ref_topic=2611283
How do we use LinkedIn Analytics and LinkedIn Ads?
We use the conversion tracking technology and the retargeting function of the LinkedIn Corporation on our website.
This technology can be used to serve personalised ads to visitors of this website on LinkedIn. Furthermore, it is possible to create anonymous reports on the performance of the advertisements and information on website interaction. For this purpose, the LinkedIn Insight tag is embedded on this website, which establishes a connection to the LinkedIn server if you visit this website and are logged into your LinkedIn account at the same time.
How do we use Amazon SES?
For the management of our email traffic and also for sending our newsletters, we use the service “Amazon Simple Email Service” of the technical service provider Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, USA (“Amazon SES”).
Amazon SES operates as a platform for organizing, sending and receiving e-mails and enables the connection to various mail service providers and mail clients.
When sending newsletters using Amazon SES, your newsletter data (mail address, name data for salutation purposes, if applicable) is first transmitted to Amazon Web Services servers and then forwarded to the actual mail client for the purpose of sending.
The server locations of Amazon Web Services are within the EU (Dublin, Frankfurt, Paris, etc.). In individual cases, however, data may also be transferred to Amazon Web Services, Inc. in the USA.
The legal basis for the processing of data using Amazon SES is our legitimate interest in the best possible technical organization and handling of our email traffic, as well as optimizing the provision of content and deliverability pursuant to Art. 6 (1) lit. f DSGVO.
We have concluded an order processing agreement with Amazon SES (“Data Processing Addendum”, viewable at https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf), with which we oblige Amazon SES to protect our customers’ data and not to pass it on to third parties.
How do we use Vimeo plugins?
We use the provider Vimeo, among others, for the integration of videos. Vimeo is operated by Vimeo, LLC with headquarters at 555 West 18th Street, New York, New York 10011.
We use plugins from the provider Vimeo on some of our internet pages. When you call up the internet pages of our website that are equipped with such a plugin – for example, our media library – a connection is established to the Vimeo servers and the plugin is displayed. This transmits to the Vimeo server which of our Internet pages you have visited. If you are logged in as a Vimeo member, Vimeo assigns this information to your personal user account. When using the plugin, such as clicking on the start button of a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your Vimeo user account before using our website and deleting the corresponding cookies from Vimeo.
As an additional protective measure, the videos from Vimeo are always integrated in the “Do Not Track” variant, so that personal data are only transmitted to Vimeo in a minimal way.
Further information on data processing and notes on data protection by Vimeo can be found at https://vimeo.com/privacy
How do we use MonsterInsights?
By installing the MonsterInsights plugin, a Google Analytics tracking code is embedded into our WordPress website. With this, Google Analytics creates a random, unique ID that is linked to your browser cookie. This way, you are recognized as a new visitor to our website. If you visit us again, you will be recognized as a so-called “returning” user. This user ID is then used to store all collected data. In this way, pseudonymous user profiles are created and evaluated. Your actions on our website are stored in cookies and app instance IDs. If you are linked to other Google services, the generated data can also be linked to third-party cookies.
All tracking is performed and stored by Google Analytics. MonsterInsights passes all data directly to Google Analytics to process on behalf of MonsterInsights. Google only shares this data if we allow it or it is required by law. MonsterInsights does not use its own cookies to store data, but the code added by MonsterInsights loads Google Analytics, which adds cookies.
The use of MonsterInsights requires your consent, which we have obtained through our cookie consent banner. According to Art. 6 (1) lit. a DSGVO, this consent constitutes the legal basis for the processing of personal data as it may occur when collected by web analytics tools.
If you want to learn more about the WordPress plugin MonsterInsights, we recommend the website https://www.monsterinsights.com/.
How do we use Rank Math?
The Rank Math tool works without cookies and does not collect personal data. The Rank Math tool triggers other tags, which in turn may collect data. Rank Math does not access this data. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags implemented with Rank Math.
We contract Rank Math to use this anonymized information to analyze website usage and compile reports on website activity. In this way, we aim to make our website more attractive and informative for you. The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG and Art 6 para 1 lit a (consent) of the DSGVO.
We have implemented technical and administrative security measures to protect your personal data against loss, destruction, manipulation and unauthorised access. All our employees and service providers working for us are bound by applicable data protection laws.
Whenever we collect and process personal data, it is encrypted before it is transmitted. This means that your data cannot be misused by third parties. Our security measures are subject to a continuous improvement process and our data protection statements are constantly being revised. Please ensure that you have the latest version.
Data subject rights
You have a right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.
Right to information
You can request information from us as to whether and to what extent we process your data.
Right to rectification
If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.
Right to erasure
You may request that we erase your data if we are processing it unlawfully or if the processing disproportionately interferes with your legitimate interests in protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.
Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory obligation to retain data in this respect.
Right to restriction of processing
You may request us to restrict the processing of your data if
- you dispute the accuracy of the data, for a period of time that allows us to verify the accuracy of the data.
- the processing of the data is unlawful, but you object to erasure and request restriction of data use instead,
- we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
- you have objected to the processing of the data.
Right to data portability
You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that
- we process this data on the basis of a revocable consent given by you or for the performance of a contract between us, and
- this processing is carried out with the aid of automated procedures.
If technically feasible, you may request us to transfer your data directly to another controller.
Right to object
If we process your data for legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the assertion, exercise or defence of legal claims. You may object to the processing of your data for the purpose of direct marketing at any time without giving reasons.
Right of complaint
If you are of the opinion that we violate German or European data protection law when processing your data, please contact us so that we can clarify any questions. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.
If you wish to assert any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.
All interested parties and visitors to our website can contact our external data protection officer, Mr. Christian Volkmer, if necessary at:
Mr. Christian Volkmer
Projekt 29 GmbH & Co. KG
Tel.: 0941 2986930
Fax: 0941 29869316