Privacy policy

Data protection declaration

Status 1 February 2022

List of content

I. Name and address of the data controller
II. Contact details of the data protection officer
III. Rights of the data subject
IV. Provision of the website and creation of log files
V. Use of cookies
VI. Registration and processing
VII. House configurator
VIII. Newsletter
IX. Email contact
X. Contact form
XI. Application by email and application form
XII. Company appearances on social media
XIII. Use of company presences in career-oriented networks
XIV. Content Delivery Networks
XV. Plugins used
XVI. Transfer of personal data to a third country

 

I. Name and address of the data controller

The responsible party within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:

WeberHaus GmbH & Co. KG
Am Erlenpark 1
77866 Rheinau-Linx
Germany

+49 (0)7853 83-0
info(at)weberhaus.de
www.weberhaus.de

II. Contact details of the data protection officer

The data protection officer of the responsible party is:

DataCo GmbH
Nymphenburger Str. 86 
80636 Munich
Germany

datenschutz(at)weberhaus.de

II. Rights of the data subject

If personal data from you are processed, you are a data subject within the meaning of the GDPR and you are entitled to the following rights vis-à-vis the controller:

1. Right to information

You can request a confirmation from the controller whether personal data, which relate to you, are processed by it.

If such processing occurs, you may request information from the controller on the following:

  • the purposes, for which the personal data are processed;
  • the categories of personal data, which are processed;
  • the recipients respectively the categories of recipients, towards which personal data relating to you were disclosed or will be disclosed still;
  • the planned duration of the storage of the personal data relating to you or, if concrete details in this respect are not possible, criteria for the stipulation of the storage duration;
  • the existence of a right to rectification or erasure of the personal data relating to you, of a right to restriction of the processing by the controller or a right to object to this processing;
  • the existence of a right to lodge a complaint at a supervisory authority;
  • all available information regarding the origin of the data if the personal data are not collected from the data subject;
  • the existence of an automated decision-making including profiling pursuant to Art. 22 Para. 1 and 4 GDPR and at least in these cases - feasible information regarding the logic involved as well as the scope and the intended implications of such processing for the data subject.

You have the right to request information whether the personal data relating to you are transmitted to a third country or to an international organisation. In this context you may request to be notified about the suitable guarantees pursuant to Art. 46 GDPR in connection with the transmission.

This right to information can be restricted to the extent that it is expected to make the realisation of the research or statistical purposes impossible or seriously impairs such purposes and the restriction is necessary for fulfilling the research or statistical purposes.

2. Right to rectification

You have a right to rectification and/or completion towards the controller insofar as the processed personal data, which relate to you, are incorrect or incomplete. The controller has to carry out the rectification without delay.

Your right to rectification may be restricted to the extent that it is expected to make realisation of the research or statistical purposes impossible or seriously impairs such purposes and the restriction is necessary for fulfilling the research or statistical purposes.

3. Right to restriction of the processing

Under the following prerequisites you may request the restriction of the processing of the personal data relating to you:

  • If you dispute the accuracy of the personal data relating to you for a duration, which enables the controller to check the accuracy of the personal data;
  • the processing is unlawful, and you refuse the erasure of the personal data and instead request the restriction to the use of the personal data;
  • the controller no longer requires the personal data for the purposes of the processing; however you require these for the assertion, exercising or defence of legal claims, or
  • if you have filed an objection to the processing pursuant to Art. 21 Para. 1 GDPR and it has not been determined yet whether the justified reasons of the controller outweigh your reasons.

If the processing of the personal data relating to you was restricted these data - apart from their storage - may only be processed with your consent or for the assertion, exercising or defence of legal claims or for the protection of the rights of another natural person or legal entity or for reasons of an important public interest of the Union or of a member state.

If the restriction of the processing was limited according to the aforementioned prerequisites you will be notified by the controller before the restriction is revoked.

Your right to restriction of the processing may be limited to the extent that it is expected to make the realisation of the research or statistical purposes impossible or seriously impairs such purposes and the limitation is necessary for fulfilling the research or statistical purposes.

4. Right to erasure

a) Erasure obligation

You may request from the controller that the personal data relating to you are erased without delay and the controller is obliged to erase these data without delay insofar as one of the following reasons applies:

  • The personal data relating to you are no longer necessary for the purposes, for which they were collected or processed in any other manner.
  • You revoke your consent, on which the processing is supported pursuant to Art. 6 Para. 1 S. 1 lit. a or Art. 9 Para. 2 lit. a GDPR, and there is no other legal basis for the processing.
  • You file an objection to the processing pursuant to Art. 21 Para. 1 GDPR and there are no prior legitimate reasons for the processing, or you file an objection to the processing pursuant to Art. 21 Para. 2 GDPR.
  • The personal data relating to you were processed unlawfully.
  • The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
  • The personal data relating to you were collected with regard to offered services of the information society pursuant to Art. 8 Para. 1 GDPR.

b) Information to third parties

If the controller has published the personal data relating to you and if it is obliged to erase these pursuant to Art. 17 Para. 1 GDPR then it shall take adequate measures, also of a technical kind, by taking the available technology and the implementation costs into consideration, in order to inform persons responsible for the data processing, who process the personal data, that you as a data subject have requested from said responsible persons the erasure of all links to these personal data or of copies or replications of these personal data.

c) Exceptions

The right to erasure shall not exist insofar as the processing is necessary

  • for exercising the right to express a free opinion and information.
  • to fulfil a legal obligation, which requires the processing according to the law of the Union or the member states, which the controller is subject to, or to perform a task, which lies in the public interest or is carried out while exercising public force, which was assigned to the controller;
  • for reasons of public interest in the area of public health pursuant to Art. 9 Para. 2 lit. h and i as well as Art. 9 Para. 3 GDPR
  • for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Art. 89 Para. 1 GDPR, insofar as the right stated under Section a) is expected to make the realisation of the objectives of this processing impossible or seriously impairs such objectives, or
  • for the assertion, exercising or defence of legal claims.

5. Right to notification

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to communicate this rectification or erasure of the data or restriction of processing to all recipients to whom the personal data concerning you have been disclosed, unless this proves impossible or involves a disproportionate effort.

You have the right towards the controller to be notified of these recipients.

6. Right to data portability

You have the right to receive the personal data relating to you, which you have provided to the controller, in a structured, common and machine-readable format. In addition, you have the right to transmit these data to another controller without impediment by the controller, to which the personal data were provided, insofar as

  • the processing is based on a consent pursuant to Art. 6 Para. 1 S. 1 lit. a GDPR or Art. 9 Para. 2 lit. a GDPR or on a contract pursuant to Art. 6 Para. 1 S. 1 lit. b GDPR and
  • the processing is carried out by using an automated procedure.

In exercising this right you furthermore have the right to achieve that the personal data relating to you are transmitted directly by one controller to another controller insofar as this is technically possible. Freedoms and rights of other persons may not be impaired hereby.

The right to data portability shall not apply to processing of personal data, which is necessary for performing a tasks, which is in the public interest or is carried out while exercising public force, which was assigned to the controller.

7. Right to object

You have the right, for reasons, which arise from your particular situation, to file an objection at any time against the processing of the personal data relating to you that is carried out owing to Art. 6 Para. 1 S. 1 lit. e or f GDPR; this shall also apply to a profiling supported on these provisions.

The controller will no longer process the personal data relating to you, unless it can prove mandatory reasons worthy of protection for the processing, which outweigh your interests, rights and freedoms, or the processing serves the assertion, exercising or defence of legal claims.

If the personal data relating to you are processed in order to conduct direct marketing you have the right at any time to object to the processing of the personal data relating to you for the purpose of such marketing; this shall also apply to the profiling, insofar as it is associated with such direct marketing.

If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You have the possibility, in the context of the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by means of automated procedures using technical specifications.

You also have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out for scientific or historical research purposes or for statistical purposes pursuant to Article 89 Para. 1 GDPR.

Your right to object may be limited to the extent that it is likely to render impossible or seriously impede the achievement of the research or statistical purposes and the limitation is necessary for the fulfilment of the research or statistical purposes.

8. Right to revocation of the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The lawfulness of the processing carried out based on the consent until the revocation shall not be affected by the revocation of the consent.

9. Automated decision-making in an individual case including profiling

You have the right not to be submitted to a decision exclusively based on an automated processing - including profiling -, which has a legal effect towards you, or which substantially impairs you in a similar manner. This shall not apply if the decision

  • is necessary for the conclusion or the fulfilment of a contract between you and the controller,
  • is admissible owing to legal regulations of the Union or the member states, which the controller is subject to, and these legal regulations contain adequate measures for safeguarding your rights and freedoms as well as your legitimate interests or
  • is carried out with your explicit consent.

However, these decisions may not be based on special categories of personal data according to Art. 9 Para. 1 GDPR insofar as Art. 9 Para. 2 lit. a or b GDPR does not apply, and adequate measures were taken for the protection of the rights and freedoms as well as your legitimate interests.

With regard to the cases stated in 1. and 3. the controller will take adequate measures in order to safeguard the rights and freedoms as well as your legitimate interests, which shall at least include the right to achieve the intervention of a person on the part of the controller, to presentation of the own point of view and to contestation of the decision.

10. Right to lodge a complaint at a supervisory authority

Irrespective of a legal remedy otherwise under administrative law or in court you have the right to lodge a complaint at a supervisory authority, in particular in the member state of your place of abode, of your workplace or the place of the presumed breach, if you are of the opinion that the processing of the personal data relating to you breaches the GDPR.

The supervisory authority, to which the complaint was submitted, will notify the complainant of the status and the results of the complaint including the possibility of a legal remedy in court according to Art. 78 GDPR.

IV. Provision of the website and creation of log files

1. Description and scope of data processing

With each call up of our website our system automatically records data and information from the computer system of the calling computer.

The following data are collected hereby:

  • Information about the type of browser and the version used
  • The operating system of the user
  • Date and time of access
  • Websites, from which the system of the user reaches our website (so-called Referrer URL)
  • Websites, which are called up by the user’s system via our website
  • IP address of the user

This data is stored in the log files of our system. A storage of these data together with other personal data of the user does not take place.

2. Purpose of data processing

The storage in log files is carried out in order to ensure the functionality of the website. Moreover, the data serve to optimise the website and to ensure the security of our IT systems. The data are not evaluated for marketing purposes in this context.

These purposes also constitute our legitimate interest in the data processing according to Art. 6 Para. 1 S. 1 lit. f GDPR.

3. The legal basis for the data processing

The legal basis for the temporary storage of the data is Art. 6 Para. 1 S. 1 lit. f GDPR.

4. Recipients

Our website is hosted by our data processor Leaseweb Deutschland GmbH (Kleyerstraße 75-87 60326 Frankfurt am Main, Germany) exclusively on servers in the location of Germany. In doing so, Leaseweb processes your personal data only on the basis of our instructions and is bound accordingly with contracts under data protection law as defined in Article 28 GDPR.

5. Duration of storage

The data will be erased as soon as they are no longer necessary for achieving the purpose for which they were collected. In the event of the collection of the data for the provision of the website this is the case if the respective session is ended.

6. Possibility for objection and remedy

The collection of the data for provision of the website and the storage of the data in log files is absolutely essential for the operation of the website. There is consequently no possibility for objection on the part of the user.

V. Use of cookies

1. Description and scope of data processing

Our website uses cookies. Cookies are text files, which are stored in the internet browser or by the internet browser on the computer system of the user. When a user calls up a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic character string, which enables a clear identification of the browser when the website is called up once again.

We use cookies in order to design our website more user-friendly. Several elements of our website render it necessary that the calling browser can also be identified after a change in site.

The following data are stored and transmitted in the cookies:

    • Login information

We also use cookies on our website that enable an analysis of the user's surfing behaviour.

In this way, the following data can be transmitted:

    • Frequency of site call-ups
    • Use of website functions

The user data collected in this way is pseudonymised by technical precautions. Therefore, an allocation of the data to the calling user is no longer possible. The data are not stored together with other personal data of the users.

2. Purpose of data processing

The purpose of the use of technically necessary cookies is to facilitate the use of websites for the users. Several functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is also recognised again after a change in site.

We require cookies for the following applications:

    • Login and user information

The user data collected by technically necessary cookies will not be used for creating user profiles.

The use of the analysis cookies is carried out for the purpose of improving the quality of our website and iis contents. Through the analysis cookies we find out how the website is used and can this way consistently optimise our range of offers.

Technically not necessary cookies are used to generate analytical and statistical values for marketing and distribution purposes.

3. The legal basis for the data processing

The legal basis for the processing of personal data by using technically not necessary cookies is Art. 6 Para. 1 S. 1 lit. a GDPR.

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 Para. 1 S. 1 lit. f GDPR.

4. Duration of the storage, possibility for objection and remedy

Cookies are stored on the user’s computer and are transmitted hereby to our site. Therefore, as user you also have the full control over the use of cookies. Through a change in the settings in your internet browser you can deactivate or restrict the transfer of cookies. Already stored cookies can be deleted at any time. This may also be automated. If cookies are deactivated for our website it is possible that all functions of the website may no longer be used in full.

If you use a Safari browser from Version 12.1 cookies will be deleted automatically after seven days. This also relates to opt-out cookies, which are set for the prevention of tracking measures.

Name of Cookie Purpose of use Duration of storage Type of Cookie
omCookieConsent Consent and configuration Cookie 365 days Essential
weberhaus_shariff Consent for display of external media such as Google Maps, YouTube or Facebook 365 days External media
fe_typo_user Login for service portal myWeberHaus, form prefilling Session or 7 days Essential
housebuilder_guestkey 
(EXT:housebuilder) 
House configurator usage 365 days Essential
_gcl_au Is used by Google AdSense to understand how users interact with the website. 90 days Statistics
_gid Randomly generated User-ID with which Google Analytics recognizes returning users and merges the data. 24 hours Statistics
_fbp Used by Facebook to display a range of advertising products, such as real-time bids from third party advertisers. 3 months Marketing
GPS Registers a unique ID on mobile devices to enable tracking based on GPS geographic location. 1 day External media
VISITOR_INFO1_LIVE Attempts to estimate user bandwidth on pages with integrated YouTube videos. 179 days External media
YSC Registers a unique ID to keep statistics of the videos from YouTube that the user has seen. Session External media
_ga This Google Analytics cookie enables the identification of the user. 2 years Statistics
_gat_UA-16674227-1 This cookie limits the frequency of data collection by Google Analytics. Until the end of the session Statistics

VI. Registration and processing

1. Description and scope of data processing

In the case of registration: On our website we offer users the possibility to register by entering personal data. The data are entered here in an input mask and are transmitted to us and stored. The data will not be passed on to third parties.

In the event of the placement of an order: In order to be able to offer you and build your suitable dream house we must process your personal data. The processing of personal data is hereby not the main object of the service provision by WeberHaus GmbH & Co. KG, but rather to be qualified as a reflex-based unavoidable secondary consequence of the service provision by WeberHaus GmbH & Co. KG. Nevertheless, it cannot be ruled out that personal data within the meaning of Art. 4 Nos. 2, 8 GDPR will be processed in the course of the provision of services. This essentially concerns the collection, entry, organisation, classification, storage, adjustment or change, reading, querying, use, disclosure by transmission, distribution or any other form of provision, comparison or linking, restriction, erasure or destruction.

In particular the following personal data from you are processed hereby:

  • Personal master data such as last name, first name
  • Contact and communication data such as telephone / mobile phone number, mobile phone number and email address, current address or future address
  • Pseudonym
  • IP address of the calling computer
  • Date and time of registration
  • Product interest, start of construction, property possession, property search
  • Contract master data (contractual relationship, product or contract interest)
  • Contract billing and payment data
  • Planning and control data
  • Bank data
  • Consents
  • Information with regard to your desired object 

Within the scope of the registration process a consent of the user will be obtained for the processing of these data.

2. Purpose of data processing

The data collection and processing serve the following purposes:

- Examination, assessment and planning of your Weber-Haus dream home;

- Fulfilment of a contract, of which you are a contractual party as a data subject;

- Execution of contractual measures following your application;

- Assertion, exercising and/or defence of your legal claims and

- (Direct) marketing measures.

 In addition, we use your data for statistical purposes in order to design our offer according to your needs.

3. The legal basis for the data processing

The legal basis for the processing of your personal data is with the availability of your consent Art. 6 Para. 1 S. 1 lit. a GDPR.

If the processing of your personal data serves to initiate or fulfil a contract (examination, assessment and planning of your WeberHaus dream home, fulfilment of contractual obligations), of which you are or are to be a contractual party, then the additional legal basis for the processing of the data is Art. 6 Para. 1 S. 1 lit. b GDPR.

The legal basis for the use of the IP address and, if applicable, other information provided by you (in particular Postal Code) Art. 6 Para. 1 lit. f GDPR, based on our legitimate interests:

- Product development and further development

- Modification and improvement of our service by, among other things, testing and improving our objects and services

- Obligation to provide evidence and proof

4. Duration of storage

The data will be erased as soon as they are no longer necessary for achieving the purpose for which they were collected.

This is the case for the data collected during the registration process for fulfilling a contract or for the execution of pre-contractual measures if the data are no longer necessary for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to comply with contractual or legal obligations.

If we determine that you are no longer interested in our offers, your data will be anonymised after 36 months and then only processed for statistical purposes.

5. Recipients and categories of recipients of personal data in the context of a house purchase and order fulfilment

Your personal data will, depending on the individual case and commissioned service, forwarded to:

  • Data processors in the form of software companies, printers, etc.
  • Independently responsible craft enterprises for e.g. the installation of heating systems, the assembly of scaffolding, the installation of windows and window boxes, bricklayers/concrete workers, carpenters, tinsmiths, roofers, window builders, carpenters, electricians, plumbers/heating/ventilation companies, plasterers, drywallers, screed layers, tilers, staircase builders, metal construction, painters, etc.
  • Suppliers of raw materials, consumables and supplies
  • Engineers
  • Construction companies for civil engineering and/or garden and landscape construction
  • Architects and energy consultants

6. Obligation for the provision of personal data

You are not obliged to enter your personal data. Please note however that without your personal data we cannot conclude respectively fulfil a contract with you.

7. Possibility for objection and remedy

As a user you have the possibility to dissolve the registration at any time. You can have the data stored in relation to you changed at any time.

In the logged-in area, you have the option of changing data at any time. Furthermore, the change to the data or deletion of the account can be carried out by email.

If the data are required to fulfil a contract or for the execution of pre-contractual measures a premature erasure of the data is only possible insofar as an erasure is not opposed by contractual or statutory obligations.

 

VII. Use of our WeberHaus house configurator


1. Scope of the processing of personal data

On our website we offer you the possibility to compile your WeberHaus dream house according to own ideas and wishes. Personal data (client ID, blueprint ID) from you are processed in our house configurator for this purpose. We use the personal data for the creation of an offer and the presentation of your dream house. In order to also be able to store your blueprints you must additionally register on our website.

2. Purpose of data processing

The purpose of the presented processing of personal data is to provide a functional house configurator in order to be able to present you all possibilities within the scope of your house planning. The service for you as a client and the cooperation with your building consultant is to be improved hereby. The described processing also serves the initiation of a contract as well as the possibility to be able to submit you individualised offers. We also use the information from our house configurator to improve our own quality and our products in order to enable you a better client experience.

3. Legal basis for the processing of personal data

The legal basis for the processing of the personal data is the initiation of a contract, which is carried out at the request of the data subject, Art. 6 Para. 1 S. 1 lit. b GDPR.

The use of the information for improving our quality and our products is carried out, as well as our marketing measures, on the basis of Art. 6 Para. 1 S.1 lit. f GDPR. We hereby assume that, as a rule, we have the same interests as our users in the provision (respectively use) of high-quality products and services. Insofar as we use the accruing data von of existing clients for marketing purposes our legitimate interest lies in achieving an increase in revenue through direct marketing. With potential new clients we support our marketing measures on your consent within the meaning of Art. 6 Para. 1 S. 1 lit. a GDPR.

4. Recipients

Your personal data, as well as your blueprints and possible details in free text fields, will be transmitted into the MyDecoCloud, where they are stored and managed. The company Method in the Madness SARL (23, rue des Glacières, 67000 Strasbourg, France) insofar receives access to your data.

In addition, it cannot be excluded that the company Insignio CRM GmbH (Ludwig-Erhard-Str. 14, 34131 Kassel, Germany), the company pixelpublic GmbH, (Pariser Platz 1, 76532 Baden-Baden, Germany) and the company Konmedia GmbH, (Gartenstraße 10, 77815 Bühl, Germany) for the purposes of our website and database maintenance receive hypothetical access to the information from the house configurator.

With all of these service providers we have – as far as necessary – concluded corresponding data processing agreements within the meaning of Art. 28 GDPR in order to guarantee the lawfulness of a hypothetical access.

5. Duration of storage 

The personal data of the data subject will be erased or blocked as soon as the purpose of the storage ceases to exist.

This is the case for the data collected during the registration process for fulfilling a contract or for the execution of pre-contractual measures if the data are no longer necessary for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to comply with contractual or legal obligations.

If we determine that you are no longer interested in our offers, your data will be anonymised after 36 months and then only processed for statistical purposes.

6. Possibility of revocation, objection and remedy

Insofar as we support the processing on your consent you can revoke this for the future informally at any time towards our customer service.

Insofar as we process your data on the basis of Art. 6 Para. 1 lit. e or f GDPR you have, if applicable, the right for reasons which arise from your particular situation at any time to file an objection against the processing. This shall also apply to profiling supported on these provisions. The controller will no longer process the personal data, unless it can prove mandatory reasons worthy of protection for the processing, which outweigh the interests, rights and freedoms of the data subject, or the processing serves the assertion, exercising or defence of legal claims. Insofar as we process your data in the context of direct advertising, you can object to this processing at any time by informally contacting our customer service. Then your data will no longer be processed for measures of direct marketing in future.

7. Data erasure and storage period

The personal data of the data subject will be erased or blocked as soon as the purpose of the storage ceases to exist. A storage can be carried out beyond this period if this was envisaged by the European or national legislators in Union law ordinances, laws or other regulations, which the controller is subject to. A blocking or erasure of the data shall also be carried out if a storage deadline stipulated by the stated standards expires, unless a further storage of the data is necessary for the conclusion or fulfilment of a contract.

 

 

VIII. Newsletter

1. Description and scope of data processing

On our website there is the possibility to subscribe to a free newsletter. The data from the input mask will be transmitted to us with the registration to the newsletter.

    • Email address
    • Last name
    • First name
    • Pseudonym
    • Telephone / mobile phone number
    • Address
    • Date and time of registration
    • Product interest, property ownership

No data will be forwarded to third parties in connection with the data processing for the sending of newsletters. The data are exclusively used for sending the newsletter.

2. Purpose of data processing

The collection of the email address of the user serves to serve the newsletter.

The collection of other personal data within the scope of the registration process serves to prevent misuse of the services or the used email address.

3. The legal basis for the data processing

The legal basis for the processing of the data after registration to the newsletter by the user with the availability of a consent of the user is Art. 6 Para. 1 S. 1 lit. a GDPR.

4. Duration of storage

The data will be erased as soon as they are no longer necessary for achieving the purpose for which they were collected. The email address of the user will accordingly be stored as long as the subscription of the newsletter is active.

The other personal data collected within the scope of the registration process will, as a rule, be erased after a deadline of seven days.

5. Possibility for objection and remedy

The subscription of the newsletter can be terminated by the user concerned at any time. Each newsletter contains a corresponding link for this purpose.

This way a revocation of the consent to the storage of the personal data collected during the registration process is also made possible.

 

IX. Email contact

1. Description and scope of data processing

On our website it is possible to contact us via the provided email address. In this case, the personal data of the user transmitted with the email will be stored.

The data are exclusively used for processing the conversation.

2. Purpose of data processing

In the event of contact by email this also constitutes the necessary legitimate interest in the processing of the data.

3. The legal basis for the data processing

The legal basis for the processing of the data with the availability of a consent of the user is Art. 6 Para. 1 lit. a GDPR.

The legal basis for the processing of the data, which are transmitted over the course of the sending of an email, is Art. 6 Para. 1 lit. f GDPR. If the email contact is aimed at the conclusion of a contract then the additional legal basis for the processing is Art. 6 Para. 1 lit. b GDPR.

4. Duration of storage

The data will be erased as soon as they are no longer necessary for achieving the purpose for which they were collected. For the personal data, which were sent by email, this is the case if the respective conversation with the user has been ended. The conversation is deemed as ended when it can be concluded from the circumstances that the fact concerned has been finally clarified.

The personal data additionally collected during the submission process will be erased after a deadline of seven days at the latest.

5. Possibility for objection and remedy

The user has the possibility at any time to revoke his consent to the processing of the personal data. If the user contacts us by email, then he can object to the storage of his personal data at any time. In such a case the conversation may not be continued.

The revocation / objection can be carried out by email.

All personal data, which were stored over the course of the contact, will be erased in this case.

 

X. Contact form

1. Description and scope of data processing

A contact form is available on our website that can be used for contacting us using electronic means. If a user uses this option, then the data entered in the input mask will be transmitted to us and stored.

The following data will be stored at the time the message is sent:

    • Email address
    • Last name
    • First name
    • Address
    • Telephone / mobile phone number
    • Date and time of contact
    • Product interest: Start of construction, property ownership, property search in town and area search (postal code), move-in date, property ownership, budget, free text, appointment, magazine order, details of how users became aware of our offer.

Within the scope of the submission process your consent will be obtained for the processing of the data and reference will be made to this privacy policy.

Alternatively, it is possible to contact us via the provided email address. In this case, the personal data of the user transmitted with the email will be stored.

The data are exclusively used for processing the conversation.

2. Purpose of data processing

The personal data from the input mask are solely processed by us for the purpose of processing the contact. In the event of contact by email this also constitutes the necessary legitimate interest in the processing of the data.

The other personal data processed during the submission process serve to prevent misuse of the contact form and to ensure the security of our IT systems.

3. The legal basis for the data processing

The legal basis for the processing of the data with the availability of a consent of the user is Art. 6 Para. 1 S. 1 lit. a GDPR.

The legal basis for the processing of the data, which are transmitted when sending an email, is Art. 6 Para. 1 S. 1 lit. f GDPR. If the aim of the email contact is to conclude a contract, then the additional legal basis for the processing is Art. 6 Para. 1 S. 1 lit. b GDPR.

4. Duration of storage

The data will be erased as soon as they are no longer necessary for achieving the purpose for which they were collected. This is the case for the personal data from the input mask of the contact form and those, which were sent by email when the respective conversation has been ended with the user. The conversation is deemed as ended when it can be concluded from the circumstances that the fact concerned has been finally clarified.

The personal data additionally collected during the submission process will be erased after a deadline of seven days at the latest.

5. Possibility for objection and remedy

The user has the possibility at any time to revoke his consent to the processing of the personal data. If the user contacts us by email, he can object to the storage of his personal data at any time. In such a case the conversation may not be continued.

The revocation / objection can be carried out by email.

All personal data, which were stored over the course of the contact, will be erased in this case.

 

XI. Application by email and application form

1. Scope of the processing of personal data

An application form is available on our website that can be used for the electronic application. If an applicant uses this option, the data entered in the input mask will be transmitted to us and stored. These data are:

    • Form of address
    • First name
    • Last name
    • Address
    • Telephone / mobile phone number
    • Email address
    • Desired salary
    • Details of training, further education and schooling
    • Language skills
    • Curriculum vitae
    • Certificates and references
    • Photo
    • Date of birth, place of birth, nationality, marital status, severe disability, starting date, car available, driving licence, source of the job advertisement and further details, video file, audio file and cover letter

For the processing of your data, your consent is obtained during the submission process and reference is made to this data protection declaration.

Alternatively, you can also send us your application by email. In this case we will collect your email address and the data communicated by you in the email.

After you send your application you will receive a confirmation of the receipt of your application documents from us by email.

Your data will not be forwarded to third parties. The data are exclusively used for processing your application.

2. Purpose of data processing

The processing of the personal data from the application form solely serves the purpose for us to process your application. In the event of contact by email this also constitutes the necessary legitimate interest in the processing of the data.

The other personal data processed during the submission process serve to prevent misuse of the application form and to ensure the security of our IT systems.

3. The legal basis for the data processing

The legal basis for the processing of your data is the initiation of a contract which is carried out at the request of the data subject, Art. 6 Para. 1 S.1 lit. b Alt. 1 GDPR and Section 26 Para. 1 S. 1 German Federal Data Protection Act [Bundesdatenschutzgesetz – BDSG].

4. Duration of storage

After completion of the application procedure the data will be stored still up to six months. Your data will be erased after expiry of the six months at the latest. In the event of a statutory obligation the data will be stored within the scope of the applicable provisions.

The personal data additionally collected during the submission process will be erased after a deadline of seven days at the latest.

5. Possibility for objection and remedy

The applicant has the possibility at any time to object to the processing of the personal data. If the applicant contacts us by email, he can object to the storage of his personal data at any time. In such a case the application can no longer be taken into consideration.

The change or erasure of the data can be carried out by email.

All personal data, which were stored over the course of the electronic applications, will be erased in this case.

XII. Company presences in social networks

Use of company presences in social networks

Instagram:

Instagram, Part of Meta Platforms Ireland Limited, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland


On our corporate site we make information available and offer the Instagram users the possibility for communication. If you carry out an action on our Instagram company presence (for example comments, contributions, Likes, etc.) in doing so it is possible that you publish personal data (for example clear name or a photo of your user profile). Since we however as a rule or to a large extent have no influence on the processing of your personal data by the Instagram company that has co-responsibility for the WeberHaus GmbH & Co. KG company presence we cannot provide any binding details regarding the purpose and scope of the processing of your data.

Our company presence in social networks is used for communication and for exchanging information with (potential) clients. We particularly use the company presence for:

In order to bind clients information is published regarding the products, events, innovations, actions and competitions.

The publications via the company presence may hereby include the following contents:

    • Information about products
    • Information about services
    • Competitions
    • Advertising
    • Client contact

Each user is at liberty to publish personal data through activities.

The legal basis for the data processing is Art. 6 Para.1 S.1 lit. a GDPR.


We store your activities and personal data published via our Instagram company presence until the revocation of the consent. In addition, we adhere to the statutory storage deadlines.
We further process data from our company presence in our systems. These are stored there for the following period of time: Personal data of a user are merely published on the platform. WeberHaus itself does not store these data.
You can object to the processing of your personal data, which we collect within the scope of your use of our Instagram company presence, at any time and assert your rights as data subject stated under IV. of this privacy policy. For this purpose, please send us an informal email to datenschutz(at)weberhaus.de. \n With regard to the processing of your personal data by Instagram and the corresponding possibilities for objection you can find further information here:

Instagram: https://help.instagram.com/519522125107875

Pinterest:

Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland


On our corporate site we make information available and offer the Pinterest users the possibility for communication. If you carry out an action on our Pinterest company presence (for example comments, contributions, Likes, etc.) in doing so it is possible that you publish personal data (for example clear name or a photo of your user profile). Since, as a rule, or to a large extent we do not have any influence on the processing of your personal data by the Pinterest company that has co-responsibility for the WeberHaus GmbH & Co. KG company presence, we cannot provide any binding details with regard to the purpose and scope of the processing of your data.

Our company presence in social networks is used for communication and for exchanging information with (potential) clients. We particularly use the company presence for:

In order to bind clients information is published regarding the products, events, innovations, actions and competitions.

The publications via the company presence may hereby include the following contents:

  • Information about products
  • Information about services
  • Competitions
  • Advertising
  • Client contact

Each user is at liberty to publish personal data through activities.

The legal basis for the data processing is Art. 6 Para.1 S.1 lit. a GDPR.


We store your activities and personal data published via our Pinterest-company presence until revocation of the consent. In addition, we adhere to the statutory storage deadlines.
We further process data from our company presence in our systems. These are stored there for the following period of time: Personal data of a user are merely published on the platform. WeberHaus itself does not store these data.
You can object to the processing of your personal data, which we collect within the scope of your use of our Pinterest company presence, at any time and assert your rights as a data subject stated under IV. of this privacy policy. For this purpose, please send us an informal email to datenschutz(at)weberhaus.de.

With regard to the processing of your personal data by Pinterest and the corresponding possibilities for objection you can find further information here:

Pinterest: https://policy.pinterest.com/de/privacy-policy

Twitter:

Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, Ireland


On our corporate site we make information available and offer the Twitter users the possibility for communication. If you carry out an action on our Twitter company presence (for example, comments, contributions, Likes, etc.) in doing so it is possible that you publish personal data (for example clear name or a photo of your user profile). Since, as a rule, or to a large extent we do not have any influence on the processing of your personal data by the Twitter company that has co-responsibility for the WeberHaus GmbH & Co. KG company presence, we cannot provide any binding details with regard to the purpose and scope of the processing of your data.

Our company presence in social networks is used for communication and for exchanging information with (potential) clients. We particularly use the company presence for:

In order to bind clients information is published regarding the products, events, innovations, actions and competitions.

The publications via the company presence may hereby include the following contents:

    • Information about products
    • Information about services
    • Competitions
    • Advertising
    • Client contact

Each user is at liberty to publish personal data through activities.

The legal basis for the data processing is Art. 6 Para.1 S.1 lit. a GDPR.

We store your activities and personal data published via our Twitter company presence until revocation of the consent. In addition, we adhere to the statutory storage deadlines.
We further process data from our company presence in our systems. These are stored there for the following period of time: Personal data of a user are merely published on the platform. WeberHaus itself does not store these data.
You can object to the processing of your personal data, which we collect within the scope of your use of our Twitter company presence, at any time and assert your rights as a data subject stated under IV. of this privacy policy. For this purpose, please send us an informal email to datenschutz(at)weberhaus.de. \n With regard to the processing of your personal data by Twitter and the corresponding possibilities for objection you can find further information here:

Twitter: https://twitter.com/de/privacy

YouTube:

YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, United States


On our website we make information available and and offer the YouTube – users the possibility for communication. If you carry out an action on our YouTube – company presence (for example comments, contributions, Likes, etc.) in doing so it is possible that you publish personal data (for example clear name or a photo of your user profile). Since, as a rule, or to a large extent we do not have any influence on the processing of your personal data by the YouTube company that has co-responsibility for the WeberHaus GmbH & Co. KG company presence, we cannot provide any binding details with regard to the purpose and scope of the processing of your data.

Our company presence in social networks is used for communication and for exchanging information with (potential) clients. We particularly use the company presence for:

In order to bind clients information is published regarding the products, events, innovations, actions and competitions.

The publications via the company presence may hereby include the following contents:

    • Information about products
    • Information about services
    • Competitions
    • Advertising
    • Client contact

Each user is at liberty to publish personal data through activities.

The legal basis for the data processing is Art. 6 Para.1 S.1 lit. a GDPR.

We store your activities and personal data published via our YouTube company presence until revocation of the consent. In addition, we adhere to the statutory storage deadlines.
We further process data from our company presence in our systems. These are stored there for the following period of time: Personal data of a user are merely published on the platform. WeberHaus itself does not store these data.
You can object to the processing of your personal data, which we collect within the scope of your use of our YouTube company presence, at any time and assert your rights as a data subject stated under IV. of this privacy policy. For this purpose, please send us an informal email to datenschutz(at)weberhaus.de. \n With regard to the processing of your personal data by YouTube and the corresponding possibilities for objection you can find further information here:

YouTube: https://policies.google.com/privacy?gl=DE&hl=de

XIII. Use of company presences in career-oriented networks

1. Scope of the data processing

We use the possibility of company presences on vocation-oriented networks. We maintain a company presence on the following vocation-oriented networks:

  • Kununu: XING kununu Prescreen GmbH, Schottenring 2-6, 1010 Vienna, Austria.
  • LinkedIn: LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland.
  • XING: XING SE, Dammtorstraße 30, 20354 Hamburg, Germany.
  • Stepstone: StepStone Deutschland GmbH, Völklinger Straße 1, 40219 Düsseldorf, Germany.

On our website, we provide information and offer users the opportunity to communicate.

The company presence is used for applications, information/PR and active sourcing.

No details are available to us with regard to the processing of your personal data by the companies that have co-responsibility for the company presence. You can find further information in this respect in the privacy policy of:

If you carry out an action on our company website (for example, comments, posts, likes, etc.), it is possible that you will make personal data (for example, clear name or photo of your user profile) public.

2. The legal basis for the data processing

The legal basis for the processing of your data in connection with the use of our company presence is Art.6 Para.1 S.1 lit. f GDPR.

3. Purpose of data processing

We use our company presence for the purpose of informing the users about our services. Each user is at liberty in this case to publish personal data through activities.

4. Duration of storage

We store your activities and personal data published via our company presence until revocation of the consent. In addition, we adhere to the statutory storage deadlines.

5. Possibility for objection and remedy

You can object to the processing of your personal data, which we collect within the scope of your use of our company presence, at any time and assert your rights as a data subject. For this purpose, please send us an informal email to the email address stated in this data protection declaration.

You can find further information relating to possibilities for objection and remedy here:

 

XIV. Content Delivery Networks

1. Description and scope of data processing

We use functions of the Content Delivery Networks on our website

  • Amazon CloudFront der Amazon Web Service Inc. (410 Terry Avenue North, Seattle WA 98109, USA),
  • LeaseWeb CDN (Leaseweb Deutschland GmbH, Kleyerstraße 75-87 60326 Frankfurt am Main, Germany) and
  • Google Hosted Libraries der Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland)

A Content Delivery Network (CDN) is a network of regionally distributed servers that are connected through the internet, with which contents - in particular large media files such as e.g. videos – are delivered. These networks offer web optimisation and security services, which we use to improve the loading times of our website and to protect it against misuse. When you call up our website a connection is established to the servers of the respective networks in order e.g. to retrieve content. This way personal data may be stored in server log files and evaluated, above all the activity of the user (in particular which pages have been visited) and devices and browser information (in particular the IP address and the operating system).

You can obtain further information relating to the collection and storage of the data here: 

2. Purpose of data processing

The use of the CDNs serves to deliver and accelerate online applications and contents.

3. The legal basis for the data processing

These data are collected on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically fault-free presentation and optimisation of its website – for this purpose, the server log files must be recorded.

4. Duration of storage

Your personal information is stored as long as this is necessary in order to fulfil the purposes described in this privacy policy or as long as stipulated by law.

5. Possibility for objection and remedy

You can obtain information relating to possibilities for objection and remedy here: 

 

XV. Plugins used

We use plugins for various purposes,for which we provide fundamental information here and subsequently present the individual tools in detail

1. The legal basis for the processing of personal data

The legal basis for the processing of the personal data of the users when using plugins is principally the user’s consent according to Art. 6 Para. 1 S.1 lit. a GDPR.

2. Duration of the storage

Insofar as no concrete information is made available below your personal information will be stored as long as this is necessary in order to fulfil the purposes described in this privacy policy or as long as stipulated by law.

3. Possibilities of objection and remedy

You have the right to revoke your declaration of consent under data protection law at any time. The lawfulness of the processing carried out based on the consent until the revocation shall not be affected by the revocation of the consent.
You can prevent the collection as well as the processing of your personal data by Vimeo by preventing the storage of cookies of third party providers on your computer, by using the "Do Not Track"-function of a supporting browser, by deactivating the execution of Script-Code in your browser or by installing a Script-Blocker such as e.g. NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.
 

The following tools are used:

Use of Facebook plugins

We use functions of the social network Meta Platforms Inc., 1 Hacker Way, Menlo Park, CA 94025, USA and its representative in the Union Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, D2 Dublin, Ireland (hereinafter: Facebook). Please note that data may be transferred hereby to servers of Facebook in the USA. In order to protect these data transfers, we rely on standard contractual clauses of the EU Commission.

You can find concrete information relating to the individual plugins further below.

In addition you will also find further information relating to the processing of the data by Facebook under the following link:
https://de-de.facebook.com/policy.php

 

Use of Facebook Comments

1. Scope of the processing of personal data                                                 
We use Facebook Comments to extend the functionality of our online presence. Users can comment on contents on our online presence with their Facebook account through Facebook Comments. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on) as well as devices and browser information (in particular the IP address and the operating system). We do not have any details regarding the precise scope of the collection of personal data.

2. Purpose of the data processing

The use of the Facebook Comment plugin serves to improve the user-friendliness of our online presence. We use this plugin in order to be able to offer an embedded comment function directly at Facebook without users having to leave our online presence.

Use of Facebook pixel

1. Scope of the processing of personal data

We use the Facebook pixel on our online presence. With its help we can track the actions of users, after these have seen or clicked on a Facebook advertisement. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), devices and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs). We can thus record the effectiveness of the Facebook advertisements for statistical and market research purposes.
The thus recorded data are anonymous for us, i.e. we do not see the personal data of individual users. These data are however stored and processed by Facebook. Facebook can connect these data with your Facebook account and also use these for its own advertising purposes in accordance with Facebook’s data use policy.

2. Purpose of the data processing

The use of the Facebook pixel serves to analyse and optimise advertising measures.

 

Use of Instagram plugin

1. Scope of the processing of personal data

We use plugins of the Instagram service of Facebook. The integrated Instagram buttons are used by us to enable a link to our Instagram profile. A Widget is also integrated, which enables us to depict certain photos and videos of our Instagram profile in our online presence. When you visit a page of ours, which contains such a plug-in, your browser establishes a direct connection to a Facebook server. The contents of the plugins will be transmitted hereby directly to your browser and integrated into the online presence. Data are hereby transferred automatically to Instagram and stored on its servers. These transmitted data include connection data (such as e.g. your IP address, date and time, the called URL) as well as the used browser and the operating system. 

Your visit to our pages can thus be tracked by Instagram, even if you do not actively use the plugin functions. If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking on the Instagram button. This way Instagram can allocate the visit to our pages to your user account. If you would like to prevent this direct allocation you must log-out of Instagram before your visit to our online presence.
You can find further information in this respect in the privacy policy of Instagram:
https://help.instagram.com/155833707900388

2. Purpose of the data processing

The use of the Instagram plugin serves to improve the external presentation of our company.

3. Possibilities of objection and remedy

You can find more information on the possibilities of objection and remedy vis-à-vis Instagram at:
https://help.instagram.com/155833707900388

Use of Pinterest

1. Scope of the processing of personal data

On our online presence we use the Pinterest plugin of Pinterest Inc., 808 Brannan Street San Francisco, CA 94103-490, USA (hereinafter referred to as: Pinterest). Users can store contents of our online presence with the Pinterest plugin in their Pinterest account. Your browser hereby establishes a connection with the servers of Pinterest in the USA. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on) as well as devices and browser information (in particular the IP address and the operating system). 
In this case the data may be transferred to servers of Pinterest in the USA. Pinterest has submitted to the Privacy Shield Agreement concluded between the European Union and the USA and is certified. Pinterest hereby undertakes to comply with the standards and regulations of the European data protection law. For more detailed information please refer to the entry linked below:
https://www.privacyshield.gov/participant?id=a2zt00000008VVzAAM&status=Active
We would like to point out that we as a provider of the sites do not receive any knowledge of the content of the transmitted data as well as their use by Pinterest.
You can obtain further information relating to the processing of the data by Pinterest here:
https://policy.pinterest.com/de/privacy-policy

2. Purpose of the data processing

The use of Pinterest serves to improve the user-friendliness of our site.

3. Possibilities of objection and remedy

You can find further information relating to possibilities for objection and remedy towards Pinterest at:
https://policy.pinterest.com/de/privacy-policy

 

Use of Twitter

1. Scope of the processing of personal data

We use the social plugins of Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (hereinafter: referred to as Twitter).
With the social plugins we can integrate contents of Twitter (in particular Tweets, or moments) or links to the platform of Twitter (in particular Tweet or Follow button) on our online presence. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on) as well as devices and browser information (in particular the IP address and the operating system).
The servers of Twitter are situated in the USA, where the data are entered and processed. Twitter has submitted to the Privacy Shield Agreement concluded between the European Union and the USA and is certified. Twitter hereby undertakes to comply with the standards and regulations of the European data protection law. Please refer to the entry linked below for more detailed information:
https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
When using Twitter and the function "Re-Tweet" the online presences visited by you will be connected with your Twitter account and announced to third parties. We do not receive any information on the content of the transmitted data and their use by Twitter.
You can obtain further information relating to the processing of the data by Twitter here:
https://twitter.com/de/privacy

2. Purpose of the data processing

The integration of the Twitter plugin serves to improve the user-friendliness. Contents of Twitter can be presented embedded, and users of the Twitter service can use functions of Twitter.

3. Possibilities of objection and remedy

You can find further information relating to possibilities for objection and remedy towards Twitter at:
https://twitter.com/de/privacy

Use of Bing Ads

1. Scope of the processing of personal data

We use the Conversion Tracking Tool Bing Ads of the Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter referred to as: Microsoft). A cookie is stored on your computer in this case by Bing Ads insofar as you have reached our online presence via a Bing Ads advertisement. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), devices and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs). We are hereby only informed of the total number of users that have clicked on a Bing advertisement and were then forwarded to the conversion page.
You can obtain further information relating to the processing of the data by Microsoft here:
https://privacy.microsoft.com/de-de/privacystatement

2. Purpose of the data processing

Microsoft Bing and we can recognise this way that someone has clicked on an advertisement, was forwarded to our online presence and reached a previously determined target page (conversion page).

3. Possibilities of objection and remedy

With the following link you can deactivate the use of your personal data by Microsoft:
https://account.microsoft.com/privacy/ad-settings/
You can find further information relating to the possibilities for objection and remedy towards Microsoft at:
https://privacy.microsoft.com/de-de/privacystatement .

 

Use of Google plugins

We use plugins of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). Please note that in this case data will be transferred to servers of Google in the USA. In order to protect these data transfers, we rely on standard contractual clauses of the EU Commission.

Possibilities of objection and remedy at Google Plugins:

You can prevent the transfer of the data generated by the cookie and that refer to your use of the online presence (incl. your IP address) to Google as well as the processing of these data by Google by downloading and installing the browser plugin available under the following link:
https://tools.google.com/dlpage/gaoptout?hl=de
With the following link you can deactivate the use of your personal data by Google:
https://adssettings.google.de
You can find further information relating to possibilities for objection and remedy towards Google at:
https://policies.google.com/privacy?gl=DE&hl=de

 

Use of Google AdWords

1. Scope of the processing of personal data

We use Google AdWords. We place advertising with this service. Google hereby places a cookie on your computer. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), devices and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs).

2. Purpose of the data processing

We only receive knowledge of the total number of users that have reacted to our advertisement. No information is forwarded, with which we could identify you. The use does not serve the purpose of tracking.

 

Use of Google Ads Remarketing

1. Scope of the processing of personal data


We use Google Ads Remarketing. Google Remarketing is used to address visitors of the online presence once again for marketing purposes via Google Ads. With the help of Google Ads Remarketing target groups („similar target groups “) can be created, which have for example called up certain sites. This way it is possible to identify the user on other online presences and to display target-oriented advertising. Google hereby places a cookie on the computer of the user. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), devices and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs).

2. Purpose of the data processing

The purpose of the processing of the der personal data lies in the specific address of a target group. The cookies stored on the terminal devices of the users recognise these when visiting an online presence and can therefore display advertising to them suitable for their interests.

 

Use of Google Tag Manager

1. Scope of the processing of personal data


We use the Google Tag Manager (https://www.google.com/intl/de/tagmanager/). With the Google Tag Manager tags of the services of Google and of third-party providers can be managed and bundled embedded on an online presence. Tags are small code elements on an online presence, which among others serve to measure visitor numbers and behaviour, to record the effect of online advertising and social channels, to use remarketing the orientation to target groups and to test and optimise online presences. If a user visits the online presence the current tag-configuration sent to the browser of the user. It contains instructions, which tags are to be triggered. Google Tag Manager ensures that other tags are triggered, which on their part under certain circumstances record data. You can find information in this respect in the passages relating to the use of the corresponding services in this privacy policy. Google Tag Manager does not access these data.
You can find further information relating to the Google Tag Manager at https://www.google.com/intl/de/tagmanager/faq.html and in the privacy policy of Google: https://policies.google.com/privacy?hl=de

2. Purpose of the data processing

The purpose of the processing of the personal data lies in the collected and clear management as well as an efficient integration of the services of third party providers.

3. Duration of the storage

Advertising data in server logs is made anonymous by Google's own information that parts of the IP address and cookie information are deleted after 9 and 18 months respectively.

 

Use of Google Maps

1. Scope of the processing of personal data


We use the plugin of Google Maps in order to be able to visually present geographical data and to be able to embed these on our online presence. By the use of Google Maps on our online presence information on the use of our online presence, your IP address and addresses entered with the route plan function are transmitted to a Google server and stored there.
You can obtain further information relating to the processing of the data by Google here:
https://policies.google.com/privacy?gl=DE&hl=de

2. Purpose of the data processing

The use of the Google Maps plugIn serves to improve the user-friendliness and an attractive presentation of our online presence.

 

Use of Google Analytics

1. Scope of the processing of personal data


We use Google Analytics, a web analysis service. Google Analytics examines among others the origin of the visitors, their dwelltime on individual pages as well as the use of search engines and thus permits a better success control of advertising campaigns. Google hereby places a cookie on your computer. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), devices and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs). The information generated by the cookie on your use of this online presence is transferred to a server of Google in the USA and stored there. In the event of the activation of the IP anonymisation on this online presence, your IP address will be previously truncated by Google however within member states of the European Union or in other contracting states of the Treaty on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a server of Google in the USA and truncated there.
By order of the operator of this online presence Google will use this information to evaluate your use of the online presence, to compile reports on the activities of the online presence and to provide further services associated with the use of the online presence and the internet use towards the operator of the online presence. The IP address transmitted by your browser within the scope of Google Analytics will not be aggregated with other data of Google. You can prevent the storage of the cookies by a corresponding setting of your browser software; we would like to point out however that in this case you may not be able to use all functions of our online presence in full.
You can obtain further information relating to the processing of the data by Google here:
https://policies.google.com/privacy?gl=DE&hl=de

2. Purpose of the data processing

The purpose of the processing of the personal data lies in the specific address of a target group, which has already shown an initial interest through the site visit.

3. Duration of the storage

Advertising data in server logs is made anonymous by Google's own information that parts of the IP address and cookie information are deleted after 9 and 18 months respectively.

 

Use of YouTube

1. Scope of the processing of personal data


We use the plugin of YouTube operated by Google, of YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. We use the plugin of YouTube to embed videos of YouTube on our online presence. When you visit our online presence your browser establishes a connection with the servers of YouTube. Personal data can be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on) as well as devices and browser information (in particular the IP address and the operating system).
We have no influence on the content of the plugin. Insofar as you are logged into your YouTube account during the visit YouTube can allocate your visit to the online presence to this account. By interaction with this plugin this corresponding information is transmitted directly to YouTube and stored there.

2. Purpose of the data processing

The use of the YouTube plugIn serves to improve the user-friendliness and an attractive presentation of our online presence.

 

Use of Netigate

1. Scope of the processing of personal data

We use functionalities of the Insight platform Netigate of Netigate Deutschland GmbH, Untermainkai 27-28, 60329 Frankfurt am Main, Germany (hereinafter referred to as: Netigate). Netigate is a provider of solutions for conducting customer and employee surveys as well as for market research purposes. With the participation in surveys the following personal data are processed by Netigate:

  • Data, which the company that conducts the survey, has entered about you as respondent, in the majority of cases this is the email address or telephone number, via which you have received the survey link,
  • Answers from the survey
  • Response time
  • Geo-localisation (no IP address)


If the survey is anonymous no data will be entered automatically, which can be linked with you as a participant. In this case only the date and the time of your participation will be stored. The service does not use any cookies for the respondents, except in a certain survey distribution setting with one answer per computer. If this setting was selected a cookie will be placed in the browser by you answering the survey. This way it is ensured that the survey can only be answered by this computer once (in this browser). All personal data made available by you when answering questions shall be deemed as transmitted voluntarily and will be stored pursuant to the local legal regulations. Personal data will not be forwarded to third parties without your explicit consent, unless this is explicitly stated in the survey. Netigate stores the data in Europe (Germany and Sweden).
You can obtain further information relating to the processing of the data by Netigate here:
https://www.netigate.net/de/impressum/#datenschutzundsicherheit and https://www.netigate.net/de/impressum/cookies-und-umfrageteilnehmer/#

2. Purpose of the data processing

The use of Netigate makes it possible to conduct surveys for market research purposes and regarding customer and employee satisfaction.

3. Duration of the storage

The data stored by Netigate will be erased according to Art. 17 and 18 GDPR or their processing will be restricted. Insofar as not explicitly stated within the scope of this privacy policy the data stored at Netigate will be erased as soon as they are no longer required for their intended purpose and the erasure is not opposed by any statutory storage obligations and/or no legitimate interest exists in the continued storage. Insofar as the data are not erased, because they are required for other purposes and purposes admissible by law, their processing will be restricted. i.e. the data will be blocked and not processed for other purposes. This applies e.g. to data, which must be stored for commercial or tax law reasons.

4. Possibilities for objection and remedy

You can revoke your consent to the processing of the data at any time. You can exercise your revocation at any time by email to us or to datenschutz(at)netigate.de .
You can find further information relating to possibilities for objection and remedy towards Netigate here: https://www.netigate.net/de/impressum/#datenschutzundsicherheit

 

Use of Vimeo

1. Scope of the processing of personal data

We use the plugin of Video-Portals Vimeo, of Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA. Vimeo is an online video streaming portal. When you visit our online presence, your browser will establish a connection with the servers of Vimeo in the USA. Information regarding your visit to the online presence and your IP address will be forwarded to Vimeo.
This takes place irrespective of whether you have a Vimeo account and whether you are logged into this. If you are logged in Vimeo can link the collected data with your account.
You can obtain further information relating to the processing of the data by Vimeo here:
https://vimeo.com/privacy

2. Purpose of the data processing

The provision of the Vimeo plugIn serves to provide and embed videos.

3. Possibilities for objection and remedy

You can find further information relating to the possibilities for objection and remedy towards Vimeo at:
https://vimeo.com/privacy

 

XVI. Transfer of personal data to a third country

Insofar as we transmit data to recipients in a third country (registered seat outside of the European Economic Area) you can see this from the aforementioned details relating to the individual processing activities. For some third countries the European Commission has stipulated a data protection standard in so-called adequacy decisions, which satisfies the demands of the GDPR. You can find a list of these countries under the following link.  If no comparable level of data protection exists, we will ensure by other measures, such as for example standard data protection clauses of the European Commission, that your data are protected.