In the following we would like to inform you about our data protection declaration. Here you will find information about the collection and storage of personal data and your rights with regard to the use of this data when using our website. You can call up this declaration at any time on our website. We expressly point out that data transmission on the Internet (e.g. when communicating by e-mail) has security gaps and cannot be completely protected from access by third parties.
The use of the contact data in our imprint for commercial advertising is expressly not desired, unless we have given our prior written consent or a business relationship already exists. The provider and all persons named on this website disagree hereby any commercial use and disclosure of their data.
Use of data, personal data
You can visit our website without providing any personal data. If necessary, data is collected, processed and used for statistical purposes when you visit our website (to evaluate the number of page views, the duration of use, etc.). For example, the IP address of the requesting computer, the file request of the client and the http response codes as well as the website from which our site is accessed are temporarily recorded. However, this information is not evaluated on a personal basis.
Personal data is all information relating to an identified or identifiable natural person. The person concerned can be identified directly or indirectly, in particular by information such as name, address or e-mail address. Information that cannot be directly linked to the identity of the data subject (data for statistical purposes) is not included.
As far as on our sides personal data are raised, this takes place on voluntary basis. This data will not be passed on to third parties without your express consent. If a contractual relationship between you and us is to be established, developed or changed, or if you make an inquiry to us, we collect, store and process personal data from you, insofar as this is necessary for these purposes. All personal data will only be stored for as long as this is necessary for the stated purpose (processing of your inquiry or processing of a contract), taking into account the legal retention periods.
Cookies are used on our website to control the session. These are small text files that your web browser receives when you visit our site. Such cookies do not contain any personal data. You have the option to deactivate the use of such cookies in your browser settings or to delete existing cookies.
Google Analytics by Alphabet Inc. would like to access your data with the attributes IP address, browser information (browser type, referrer/exit pages, files displayed on our website, operating system, date/time stamp and/or clickstream data), usage data (views, clicks) and web analytics. This website uses functions of the web analysis service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
Collection of data
Demographic features on Google Analytics
This website uses the “demographic features” function of Google Analytics. This allows reports to be created that contain information on the age, gender and interests of site visitors. This data comes from interest-related advertising by Google and from visitor data from third-party providers. This data cannot be assigned to a specific person. You can disable this feature at any time from your Google Account display preferences or opt-out collecting your information by Google Analytics as described in the “Opt-out of data collection” section.
Use of Google-Maps
as well as the additional terms and conditions for “Google Maps”: https://www.google.com/intl/de_de/help/terms_maps.html
Use of YouTube components with enhanced data protection mode
On our website we use components (videos) from YouTube, LLC 901 Cherry Ave, 94066 San Bruno, CA, USA, a company of Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA. Here we use the option” – extended data protection mode -” provided by YouTube. When you access a page that has an embedded video, it connects to the YouTube servers and displays the content on the website by notifying your browser. According to YouTube, in ” – extended privacy mode -” only data is transmitted to the YouTube server, especially which of our websites you have visited when you are watching the video. If you are logged in to YouTube at the same time, this information will be associated with your YouTube account. You can prevent this by logging out of your member account before visiting our website.
Further information on YouTube’s data protection is provided by Google under the following link: https://www.google.de/intl/de/policies/privacy/
Facebook Custom Audiences Pixel wants to access your data with the attributes http header (IP address, browser information, location, referrer, user agent), pixel-specific data (pixel ID, Facebook cookie), (optional parameters to be defined by the advertiser – e.g. conversion value) to public relations, retargeting. We use components of the provider facebook.com on our site. Facebook is a service of facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA, hereinafter referred to as “Facebook”. Every time you visit our website, which is equipped with such a “facebook” component, this component causes the browser you are using to download a corresponding representation of the component from Facebook. This process informs Facebook which specific page of our website you are currently visiting. If you visit our site while logged in to Facebook, Facebook uses the information collected by the component to identify which specific page you are visiting and to associate this information with your personal account on Facebook. In addition, the information that you have visited our site will be shared with Facebook. This happens regardless of whether you click on the component or not.
External tools are also available on the market to block Facebook social plug-ins with add-ons for all major browsers http://webgraph.com/resources/facebookblocker/
An overview of the Facebook plugins can be found at https://developers.facebook.com/docs/plugins/
Using the Google Tag Manager
This website also uses the Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through a single interface. The Tool Tag Manager itself (which implements the tags) is a cookieless domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been made at the domain or cookie level, it will remain in effect for all tracking tags implemented with Google Tag Manager. All information about the Google Tag Manager can be found here: http://www.google.de/tagmanager/use-policy.html
You can also contact us directly via chat on our website.
Intercom wants to access your data with the attributes IP address, date and time, browser information, operating system, device information, visited pages, clicked elements, location information, including location information, which is automatically provided by your device, until customer support, customer behavior analysis, offer optimization.
On our websites we offer you the possibility to access our company’s internet presence in social networks (Facebook, Twitter, Instagram, Xing, LinkedIn). These are only integrated on our website as an external link to the corresponding services. After clicking on the integrated graphic you will be forwarded to the page of the respective provider, i.e. only then user information will be transferred to the respective provider. If you do not want that the mentioned Social Networks receive data, please do not click on the graphics. For information on how your personal data is handled by the social networks, please refer to the respective data protection regulations of the providers:
Publication of job advertisements / online job applications
Your application data will be collected and processed electronically by us for the purpose of handling the application procedure. If your application is followed by the conclusion of an employment contract, your transmitted data may be stored by us in your personnel file for the purpose of the usual organisational and administrative process in compliance with the relevant legal regulations.
If your application is rejected, the data you have submitted will automatically be deleted three months after notification of rejection. This does not apply if longer storage is necessary due to legal requirements (e.g. the burden of proof according to the General Equal Treatment Act).
On our website we offer you the possibility to contact us via a contact form. In this case, the information provided by the user will be stored for the purpose of processing the contact. The data will not be passed on to third parties. A comparison of the data collected in this way with data that may be collected by other components of our site does not take place either.
Legal basis of the processing
Art. 6 I lit. a GDPR serves our company as a legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as it is the case e.g. with processing operations necessary for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6 I lit. b GDPR. The same applies to such processing processes that are necessary to carry out pre-contractual measures, for example in case of enquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, for example to fulfil tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information had to be passed on to a doctor, a hospital or other third parties. The processing would then be based on Art. 6 I lit. d GDPR. Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject do not prevail. Such processing procedures are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the person concerned is a customer of the person responsible (recital 47, second sentence, GDPR).
Rights of the data subject
Right to confirmation
Every data subject should have the right granted by the European legislator of directives and regulations to require the controller to confirm whether personal data concerning him/her are being processed. If a data subject wishes to exercise this right of confirmation, he or she may contact our data protection officer or another employee of the data controller at any time.
Right to information
Any person concerned by the processing of personal data should have the right granted by the European legislator of directives and regulations to obtain, at any time and free of charge, information from the controller concerning the personal data relating to him/her stored and a copy of that information. Furthermore, the European regulator has granted the data subject the following information:
the processing purposes
the categories of personal data to be processed
the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular recipients in third countries or international organisations
if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
the existence of a right of rectification or deletion of personal data concerning him or of a restriction on processing by the controller or of a right of opposition to such processing
the existence of a right of appeal to a supervisory authority
if the personal data is not collected from the data subject: All available information about the origin of the data
the existence of automated decision-making, including profiling in accordance with Article 22(1) and (4) GDPRs, and – at least in these cases – meaningful information on the logic involved and the scope and intended effects of such processing for the data subject. Furthermore, the data subject has a right of information as to whether personal data have been transferred to a third country or an international organisation. If this is the case, the data subject also has the right to obtain information on the appropriate guarantees in connection with the transfer.
If a data subject wishes to exercise this right to information, he or she may contact our data protection officer or another employee of the data controller at any time.
Right to rectification
Any person subject to the processing of personal data should have the right granted by the European legislator of directives and regulations to request the immediate correction of inaccurate personal data concerning him/her. Furthermore, taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration.
If a data subject wishes to exercise this right of rectification, he may contact our data protection officer or another employee of the controller at any time.
Right to erasure (‘right to be forgotten’)
Any person concerned by the processing of personal data should have the right granted by the European legislator of directives and regulations to require the data controller to request that the personal data concerning him/her be deleted immediately, provided that one of the following reasons applies and insofar as the processing is not necessary:
The personal data have been collected or otherwise processed for such purposes for which they are no longer necessary.
The data subject withdraws his/her consent on which the processing was based pursuant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, and there is no other legal basis for the processing.
The data subject opposes processing under Article 21(1) GDPR and there are no overriding legitimate grounds for processing or the data subject opposes processing under Article 21(2) GDPR.
The personal data have been processed unlawfully.
The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
The personal data was collected in relation to information society services offered in accordance with Art. 8 para. 1 GDPR.
If one of the above-mentioned reasons applies and a data subject wishes to have personal data stored at DV-COM GmbH deleted, he or she can contact our data protection officer or another employee of the data controller at any time. The data protection officer of DV-COM GmbH or another employee will arrange the request for deletion to be complied without delay.
If the personal data have been made public by DV-COM GmbH and our company is obliged to delete the personal data in accordance with Art. 17 para. 1 GDPR, DV-COM GmbH should take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform other persons responsible for data processing who process the published personal data, that the data subject has requested the deletion of all links to this personal data or of copies or replications of this personal data from these other persons responsible for data processing, insofar as processing is not necessary. The data protection officer of DV-COM GmbH or another employee will take the necessary steps in individual cases.
Right to restriction of processing
Any person subject to the processing of personal data should have the right granted by the European legislator of directives and regulations to require the controller to restrict the processing if one of the following conditions is met:
The accuracy of the personal data is disputed by the data subject for a period that enables the data controller to verify the accuracy of the personal data. The processing is unlawful, the data subject refuses to delete the personal data and instead requests that the use of the personal data be restricted.
The data controller no longer needs the personal data for the purposes of the processing, but the data subject needs them to assert, exercise or defend legal claims.
The data subject has lodged an objection to the processing pursuant to Art. 21 para. 1 GDPR and it has not yet been determined whether the legitimate reasons of the data subject outweigh those of the data subject.
If one of the above conditions is fulfilled and a data subject wishes to request the restriction of personal data stored at DV-COM GmbH, he or she can contact our data protection officer or another employee of the data controller at any time. The data protection officer of DV-COM GmbH or another employee will arrange for the processing to be restricted.
Right to data portability
Any data subject should have the right granted by the European legislator to receive personal data relating to him/her provided by the data subject to a data controller in a structured, current and machine-readable format. It should also have the right to transmit such data to another data controller without obstruction by the controller to whom the personal data have been made available, provided that the processing is based on the consent provided for in Article 6(1)(a) GDPR or Article 9(2)(a) GDPR or on a contract in accordance with Article 6(1)(b) GDPR and that the processing is carried out using automated procedures, unless the processing is necessary for the performance of a task in the public interest or in the exercise of public authority conferred on the data controller.
Furthermore, in exercising his right to data transferability pursuant to Article 20(1) GDPR, the data subject has the right to obtain that the personal data be transferred directly by a data controller to another data controller, provided this is technically feasible and provided that the rights and freedoms of other persons are not affected at all.
To assert the right to data transferability, the person concerned can contact the data protection officer appointed by DV-COM GmbH or another employee at any time.
Right to object
Any person concerned by the processing of personal data should have the right granted by the European legislator for reasons arising from their particular situation to object at any time to the processing of personal data concerning them under Article 6(1)(e) or (f) of the GDPR. This also applies to profiling based on these provisions.
DV-COM GmbH no longer processes personal data in the event of an objection, unless we can prove compelling reasons worthy of protection for the processing, which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
If DV-COM GmbH processes personal data in order to carry out direct advertising, the person concerned has the right to object at any time to the processing of the personal data for the purpose of such advertising. This also applies to profiling insofar as it is connected with such direct advertising. If the data subject objects to DV-COM GmbH processing for direct advertising purposes, DV-COM GmbH will no longer process the personal data for these purposes.
Furthermore, the data subject has the right to object to the processing of personal data concerning him/her which is carried out at DV-COM GmbH for scientific or historical research purposes or for statistical purposes pursuant to Art. 89 para. 1 GDPR, for reasons arising from his or her particular situation, unless such processing is necessary to fulfil a task in the public interest.
To exercise the right of objection, the person concerned can directly contact the data protection officer of DV-COM GmbH or another employee. The data subject should also be free to exercise his right of opposition in relation to the use of information society services by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.
Automated decisions in individual cases including profiling
Any person subject to the processing of personal data should have the right granted by the European legislator of directives and regulations not to be subject to a decision based exclusively on automated processing, including profiling, which has legal effect against him/her or significantly affects him/her in a similar manner, provided that the decision (1) is not necessary for the conclusion or performance of a contract between the data subject and the data controller, or (2) is admissible under Union or Member State law to which the data controller is subject and that such law contains appropriate measures to safeguard the rights, freedoms and legitimate interests of the data subject, or (3) with the express consent of the data subject.
If the decision (1) is necessary for the conclusion or fulfilment of a contract between the data subject and the data controller or (2) if it is taken with the express consent of the data subject, DV-COM GmbH should take appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the data subject, including at least the right to obtain the intervention of a person by the data controller, to state his/her own position and to challenge the decision.
If the data subject wishes to assert rights relating to automated decisions, he/she may contact our data protection officer or another employee of the controller at any time.
Right to revoke consent under data protection law
Any person concerned by the processing of personal data has the right granted by the European legislator of directives and regulations to revoke consent to the processing of personal data at any time. If the data subject wishes to exercise his/her right to withdraw his/her consent, he/she may contact our data protection officer or another employee of the controller at any time.
Data Protection Officer:
Steffen Tracz, Wilhelm-Becker-Str. 11a, 75179 Pforzheim, Germany
Changes to the data protection information:
We reserve us the right to amend this data protection declaration at any time in compliance with the applicable data protection regulations.
Status: May 2018