Responsible for the content according to §10 section 3 MDStVG
Managing Partners: Marta Epelde, Guntram Kopp, Rohan Pamani
Registration Office: District Court Munich
Registration number: HRB 210724
We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).
The controller responsible for the described data collection and processing is named in the imprint.
Storage of Your IP address
We store the IP address transmitted by your web browser for a period of seven (7) days, strictly for the purpose of identifying, restricting and eliminating attacks on our website. After seven (7) days, we delete or anonymize your IP address. The legal basis for the processing of this personal data is provided for in Art. 6 para. 1 s. 1 lit. f GDPR.
When you visit our website, the data collected from the use of the website is temporarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:
- the page, from which the data is requested
- the name of the data file,
- the date and time of the query,
- the amount of data transferred,
- the access status (file transmitted, file not found),
- a description of the type of browser used,
- the IP address of the requesting computer shortened to such an extent that no reidentification of any persona data is possible.
The listed usage data is stored anonymously.
2. Data Transfer to Third Parties
Data Transfer to Third Parties
We transfer your data to service providers who support us in the operation of our website and the associated processes. This transference is made under the scope of a data processing agreement in accordance to Art. 28 GDPR. Our service providers are bound to us by strict instructions and contractual obligations. We use the following service providers: newsletter service providers (Mailchimp).
Data Transfer to Third Countries (Non-EU Countries)
In some cases, we may transfer personal data to third countries outside the EU. In each case, we ensure an appropriate level of data protection according to European standards.
In the case of [MailChimp (USA)], an appropriate level of data protection is ensured by the corresponding participation in the Privacy Shield Agreement (Art. 45 para. 1 GDPR).
We use session cookies on our website. The data is processed in accordance to Art. 6 para. 1 s. 1 lit. f GDPR in the interest of offering you a better browsing experience, analyze site traffic, and personalize content.
4. Social Media Plugins
For data protection reasons, we do not integrate any social media plugins directly into our website. Therefore, when you access our pages, no data is transferred to social media services such as Facebook, Twitter, XING or Google+. A profiling by third parties is thus excluded.
However, you still have the option of sharing selected pages by clicking on the Facebook, Twitter, XING or Google+ buttons, and you can see how often a page has been shared in the past when you view the post. We use the so-called Shariff solution developed by the German c't Magazine to offer a data protection compliant alternative to the classic social plug-ins.
What's behind it? The Shariff solution means that as a first step, all the data and functions required to display Facebook, Twitter, XING or Google+ buttons are provided by our web server. Only when you decide to share a post via the corresponding button and click on it, does a data transfer to the operator of the respective social media service takes place.
5. Explanation of Data Security Measures
To avoid unauthorized access to your data, we have implemented technical and organizational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology. You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with https://.
6. Rights as a User
As a website user, the GDPR grants you certain rights when processing your personal data.
1. Right of access (Art. 15 GDPR):
You have the right to obtain confirmation at to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR.
2. Right to rectification and erasure (Art. 16 and 17 GDPR):
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data completed.
You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.
3. Right to restriction of processing (Art. 18 GDPR):
If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination.
4. Right to data portability (Art. 20 GDPR):
In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.
5. Right to object (Art. 21 GDPR):
If the data is processed pursuant to Art. 6 para. 1 s. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.
6. Right to lodge a complaint with a supervisory authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringes data protection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.
7. Contact Details of the Data Protection Officer
Please contact our data protection officer if you have any further questions, suggestions or wishes regarding data protection:Dr. Uwe Schläger
datenschutz nord GmbH
28217 Bremen, Germany Web: www.datenschutz-nord-guppe.de
Telefon: 0421 69 66 32 0
8.1 Company Facebook Page
We operate an official facebook page based on Art. 6 para. 1 s. 1 lit. f GDPR under the URL https://www.facebook.com/eightydots. We never collect, store or process personal data of our users on this site. Furthermore, no other data processing is carried out or initiated by us. The data you enter on our Facebook page, such as comments, videos or images, will not be used or processed by us at any time for any other purpose.
8.2 Embedded YouTube videos
On some of our websites we embed YouTube videos. Opening these websites results in YouTube content being downloaded. In this context, YouTube also receives your IP address, which is technically necessary for retrieving the contents. We have no influence on the further processing by YouTube. However, when embedding the videos, we activated the extended data protection mode offered by YouTube.