Zum Hauptinhalt springen

Privacy Policy

Information on the processing of your data in accordance with Art. 13 of the European General Data Protection Regulation (GDPR). References to legal regulations refer to the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) in the version applicable from 25 May 2018.

 

I. Scope of application:

This privacy policy applies to the website of Nothelle.de for data protection supervision (www.nothelle.de) and to the personal data collected via this website. For websites of other providers to which reference is made, e.g. via links, the data protection notices and declarations there apply.


II Responsibility:

The controller responsible for data processing on this website is

Nothelle Call Centre Services GmbH
Mr Maurice Nothelle
Beekstrasse 30-32
D - 47051 Duisburg 

 

Important note:

For security reasons, we recommend that you only send e-mails in encrypted form. There are considerable risks associated with the transmission of unencrypted messages. Therefore, please do not send us any sensitive data by unencrypted e-mail.

 

III. data protection officer:

We have appointed a data protection officer.

Bernd Ritscher
Moselstr. 9
47051 Duisburg

Telephone: +49 203/ 601 642 40
E-mail: br@23-1.de


IV. Hosting:

The web server for the operation of our website is technically operated by the IT Service Centre of the Free State of Bavaria.

Mittwald CM Service GmbH & Co. KGlegally represented by Robert Meyer, Maik BehringKönigsberger Str. 4 - 632339 Espelkamp

E-Mail: support@mittwald.de

 

 

V. Our handling of your data:
1) Personal data:

According to Art. 4 GDPR, personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Translated with DeepL.com (free version)

 

 

2) Complaint form:

We will only use the personal data that you provide to us in the context of a complaint against a data processing body (controller or processor) in accordance with Art. 77 GDPR via our complaint form as part of the fulfilment of our duties in accordance with Art. 51, 57 GDPR and Section 40 BDSG to process your complaint.
When processing the complaint, it may also be necessary, depending on the circumstances, to transmit your personal data to the data processing organisation (controller or processor) against which your data protection complaint is directed.
If you do not agree to this, please be sure to let us know by indicating this in the option field provided for this purpose in our online form!
If the Bavarian State Office for Data Protection Supervision is not responsible for your request, we will forward your complaint to the responsible data protection supervisory authority and inform you that your submission has been forwarded to the responsible authority.

 

 

3) Notification of data protection officers pursuant to Art. 37 para. 7 GDPR:

Controllers and processors must notify the data protection supervisory authority of the contact details of their data protection officer appointed in accordance with Art. 37 GDPR. The Bavarian State Office for Data Protection Supervision stores the personal data collected in this context on the basis of this legal obligation. After the notification, the data protection officer will receive a notification from us in accordance with Art. 14 GDPR to the e-mail address provided in the notification.

 

4) Notification of data breaches in accordance with Art. 33 GDPR

Controllers and processors must notify the data protection supervisory authority immediately, but no later than 72 hours, in accordance with Art. 33 para. 1, 2 GDPR, if they have suffered a personal data breach. The Bavarian State Office for Data Protection Supervision stores the personal data collected in this context on the basis of this legal obligation and for further processing of the notification as well as for checking whether persons affected by the breach are to be notified in accordance with Art. 34 para. 1 GDPR.

 

 

5) Storage period and retention periods:

The data collected in the context of complaints and data breach reports via our online forms are generally stored for a period of five years in accordance with the notice of segregation . We store the personal data that is communicated to us as part of the notification of the data protection officer in accordance with Art. 37 para. 7 GDPR until a change notification is made, a notification is withdrawn or the notification obligation no longer applies and you inform us of this (e.g. in the event of business closure, relocation to another federal state, etc.). All time limits begin at the end of the year in which the processing of the complaint or enquiry is completed or in which the enquiry or complaint is submitted to the competent data protection supervisory authority.

 

 

6) Usage data:

When you access our websites, you transmit data to our web server via your Internet browser (for technical reasons). The following data is recorded during an ongoing connection for communication between your internet browser and our web server:

Date and time of the request
Name of the requested file
Page from which the file was requested
Access status (file transferred, file not found, etc.)
Web browser and operating system used
Complete IP address of the requesting computer
Amount of data transferred

For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short time. It is not possible for us to identify individual persons from this data. After seven days at the latest, the data is anonymised by shortening the IP address at domain level so that it is no longer possible to establish a link to the individual user. The data is also processed in anonymised form for statistical purposes; it is not compared with other databases or passed on to third parties, even in excerpts. Only in the context of our server statistics, which we publish every two years in our activity report, does a presentation of the number of page views take place.

 

 

VI Recipients or categories of recipients

As a rule, personal data that you provide to us will only be processed by the Bavarian State Office for Data Protection Supervision. However, in order to fulfil our tasks and obligations, it may be necessary for us to disclose the personal data stored about you to natural and legal persons, authorities, institutions or other bodies. In particular, the following categories of recipients come into consideration:

Federal and state data protection supervisory authorities or a member state of the European Union (e.g. in the event that the Bavarian State Office for Data Protection Supervision is not responsible or in the case of cooperation and consistency procedures)
Courts (e.g. in the case of disputed fine proceedings)
Public or non-public bodies, provided that this is the data processing body (controller or processor) against which your complaint is directed.

 

VII. Your rights:

As a user of our website, you have various rights under the GDPR, which arise in particular from Art. 15 to 18, 21 GDPR:

 

1) Right to information:

You can request information in accordance with Art. 15 GDPR about your personal data processed by us. In your request for information, you should specify your request in order to make it easier for us to compile the necessary data. Please note that your right to information may be restricted under certain circumstances in accordance with the statutory provisions (in particular Section 34 BDSG and Art. 10 BayDSG).

 

2) Right to rectification:

If the information concerning you is not (or no longer) accurate, you may request rectification in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.

 

3) Right to erasure:

You can request the erasure of your personal data under the conditions of Art. 17 GDPR. Your right to erasure depends, among other things, on whether the data concerning you is still required by us to fulfil our legal tasks.

 

4) Right to restriction of processing:

Within the framework of the provisions of Art. 18 GDPR, you have the right to request that the processing of data concerning you be restricted.

 

5) Right to object:

In accordance with Art. 21 GDPR, you have the right to object to the processing of data concerning you at any time on grounds relating to your particular situation. However, we cannot always comply with this, e.g. if legal provisions oblige us to process data as part of the fulfilment of our official duties.

 

6) Right to lodge a complaint:

If you are of the opinion that we have not complied with data protection regulations when processing your data, you can contact us with a complaint.

 

Withdrawal of your consent to data processing

Some data processing operations are only possible with your express consent. You can withdraw your consent at any time. An informal notification by e-mail is sufficient to withdraw your consent. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

 

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party. The data will be provided in a machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.


Right to information, rectification, blocking, erasure

You have the right to free information about your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data at any time within the framework of the applicable legal provisions. You can contact us at any time using the contact options listed in the legal notice if you have any further questions on the subject of personal data.

 

SSL and TLS encryption

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognise an encrypted connection by the ‘https://’ address line of your browser and the lock symbol in the browser line.


Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in server log files. This information is

Browser type and browser version
Operating system used
Referrer URL
Host name of the accessing computer
Time of the server enquiry
IP address

This data is not merged with other data sources. The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

 

Contact form

Data transmitted via the contact form, including your contact details, will be stored in order to process your enquiry or to be available for follow-up questions. This data will not be passed on without your consent.

The data entered in the contact form will be processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can withdraw your consent at any time. An informal notification by e-mail is sufficient for the cancellation. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

Data transmitted via the contact form will remain with us until you ask us to delete it, revoke your consent to storage or there is no longer any need to store the data. Mandatory statutory provisions - in particular retention periods - remain unaffected.

 

cookies

Our website uses cookies. These are small text files that your web browser stores on your end device. Cookies help us to make our website more user-friendly, effective and secure.

Some cookies are ‘session cookies’. Such cookies are deleted automatically at the end of your browser session. Other cookies, on the other hand, remain on your device until you delete them yourself. Such cookies help us to recognise you when you return to our website.

With a modern web browser, you can monitor, restrict or prevent the setting of cookies. Many web browsers can be configured so that cookies are deleted automatically when the programme is closed. Deactivating cookies may result in limited functionality of our website.

The setting of cookies, which are necessary for the performance of electronic communication processes or the provision of certain functions desired by you (e.g. shopping basket), takes place on the basis of Art. 6 para. 1 lit. f GDPR. As the operator of this website, we have a legitimate interest in the storage of cookies for the technically error-free and smooth provision of our services. If other cookies are set (e.g. for analysis functions), these are treated separately in this privacy policy.

 

Google Analytics

Our website uses functions of the web analysis service Google Analytics. The provider of the web analysis service is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses ‘cookies.’ These are small text files that your web browser stores on your end device and enable website usage to be analysed. Information generated by cookies about your use of our website is transmitted to a Google server and stored there. The server location is usually the USA.

Google Analytics cookies are set on the basis of Art. 6 para. 1 lit. f GDPR. As the operator of this website, we have a legitimate interest in analysing user behaviour in order to optimise our website and, if necessary, advertising.

 

IP anonymisation

We use Google Analytics in conjunction with the IP anonymisation function. It ensures that Google truncates your IP address within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before transmitting it to the USA. There may be exceptional cases in which Google transmits the full IP address to a server in the USA and truncates it there. Google will use this information on our behalf to analyse your use of the website, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. The IP address transmitted by Google Analytics will not be merged with other Google data.

 

Browser plugin

The setting of cookies by your web browser can be prevented. However, this may restrict some functions of our website. You can also prevent the collection of data relating to your website use, including your IP address and subsequent processing by Google. You can do this by downloading and installing the browser plugin available via the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

 

Objection to the collection of data

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to our website: Deactivate Google Analytics.

Details on how Google Analytics handles user data can be found in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

 

Order processing

We have concluded an order processing contract with Google in order to fully fulfil the statutory data protection requirements.


Demographic characteristics with Google Analytics

Our website uses the ‘demographic characteristics’ function of Google Analytics. It can be used to create reports that contain statements about the age, gender and interests of visitors to the site. This data comes from interest-based advertising from Google and visitor data from third-party providers. It is not possible to assign the data to a specific person. You can deactivate this function at any time. This is possible via the ad settings in your Google account or by generally prohibiting the collection of your data by Google Analytics, as explained in the section ‘Objection to data collection’.

 

Google AdSense

Our website uses Google AdSense. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google AdSense is used to integrate adverts and sets cookies. Cookies are small text files that your web browser stores on your end device in order to analyse the use of the website. Google AdSense also uses web beacons. Web beacons are invisible graphics that make it possible to analyse visitor traffic on our website.

Information generated by cookies and web beacons is transferred to Google servers and stored there. The server is located in the USA. Google may pass this information on to contractual partners. However, Google will not merge your IP address with other data stored by you.

AdSense cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. As the website operator, we have a legitimate interest in analysing user behaviour in order to optimise our website and our advertising.

With a modern web browser, you can monitor, restrict and prevent the setting of cookies. Deactivating cookies may result in limited functionality of our website. By using our website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.

 

Google AdWords and Google Conversion Tracking

Our website uses Google AdWords. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States.

AdWords is an online advertising programme. As part of the online advertising programme, we work with conversion tracking. After clicking on an advert placed by Google, a cookie is set for conversion tracking. Cookies are small text files that your web browser stores on your end device. Google AdWords cookies lose their validity after 30 days and are not used to personally identify users. The cookie allows Google and us to recognise that you have clicked on an ad and have been redirected to our website.

Each Google AdWords customer receives a different cookie. The cookies cannot be tracked via the websites of AdWords customers. Conversion cookies are used to create conversion statistics for AdWords customers who use conversion tracking. AdWords customers find out how many users clicked on their advert and were redirected to pages with a conversion tracking tag. However, AdWords customers do not receive any information that allows users to be personally identified. If you do not wish to participate in tracking, you can object to its use. In this case, the conversion cookie must be deactivated in the user settings of the browser. This also prevents inclusion in the conversion tracking statistics.

‘Conversion cookies’ are stored on the basis of Art. 6 para. 1 lit. f GDPR. As the website operator, we have a legitimate interest in analysing user behaviour in order to optimise our website and our advertising.

Details on Google AdWords and Google Conversion Tracking can be found in Google's privacy policy: https://www.google.de/policies/privacy/.

With a modern web browser, you can monitor, restrict or prevent the setting of cookies. Deactivating cookies may result in limited functionality of our website.

Source: Data protection configurator from mein-datenschutzbeauftragter.de