1) Introduction and contact details of the responsible person
1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we will inform you about how we handle your personal data when you use our website. Personal data is any data with which you can be personally identified.
1.2 The controller of data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is PerNaturam GmbH, An der Trift 8, 56290 Gödenroth, Germany, Tel.: 06762-96362-0, Fax: 06762-96362-222, E-Mail: bestellung@pernaturam.de. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
1.3 The Controller has appointed a data protection officer, who can be contacted as follows: "CerDat GmbH - 68309 Mannheim - Lindenstraße 11, datenschutz@pernaturam.de
1.4 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or enquiries to the person responsible). You can recognise an encrypted connection by the string "https://" and the lock symbol in your browser line.
2) Data collection when visiting our website
During the mere informational use of our website, i.e. if you do not register or otherwise transmit information to us, we only collect data that your browser transmits to our server (so-called "server log files"). When you call up our website, we collect the following data, which is technically necessary for us to display the website to you:
- Our visited website
- Date and time at the time of access
- Amount of data sent in bytes
- Source/reference from which you reached the page
- Browser used
- Operating system used
- IP address used (if applicable: in anonymised form)
The processing is carried out in accordance with Art. 6 para. 1 lit. f DSGVO on the basis of our legitimate interest in improving the stability and functionality of our website. The data is not passed on or used in any other way. However, we reserve the right to check the server log files retrospectively, should specific
indications of unlawful use.
3) Cookies
In order to make visiting our website more attractive and to enable the use of certain functions, we use cookies, i.e. small text files that are stored on your terminal device. In some cases, these cookies are automatically deleted again after the browser is closed (so-called "session cookies"), in other cases, these cookies remain on your end device for longer and allow page settings to be saved (so-called "persistent cookies"). In the latter case, you can find the storage period in the overview of the cookie settings of your web browser.
If personal data is also processed by individual cookies used by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b DSGVO either for the performance of the contract, in accordance with Art. 6 para. 1 lit. a DSGVO in the case of consent given or in accordance with Art. 6 para. 1 lit. f DSGVO to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.
You can set your browser in such a way that you are informed about the setting of cookies and can decide individually about their acceptance or can exclude the acceptance of cookies for certain cases or generally.
Please note that if you do not accept cookies, the functionality of our website may be limited.
4) Contacting
4.1 Tidio
This website uses a live chat system of the following provider: Tidio Poland Sp. z o.o., Wojska Polskiego 81, 70-481 Szczecin, Poland
The processing of personal data transmitted via the chat takes place either in accordance with Art. 6 (1) lit. b DSGVO, because it is
necessary for the initiation or
execution of the contract,
or in accordance with Art. 6 (1) lit. f DSGVO due to our legitimate interest in the effective support of our site visitors.
Subject to any statutory retention periods to the contrary, your data transmitted in this way will be deleted when the matter in question has been conclusively clarified.
In addition, for the purpose of creating pseudonymised user profiles, further information may be collected and evaluated with the help of cookies, although this information does not serve to identify you personally and is not merged with other data records. If this information has a personal reference, the processing is carried out in accordance with Art. 6 Para. 1 lit. f DSGVO on the basis of our legitimate interest in the statistical analysis of user behaviour for optimisation purposes.
The setting of cookies can be prevented by appropriate browser settings. However, the functionality of our website may be limited in this case. You can object to the collection and storage of data for the purpose of creating a pseudonymised user profile at any time with effect for the future.
We have concluded an order processing contract with the provider, which ensures the protection of our site visitors' data and prohibits unauthorised disclosure to third parties.
4.2 When contacting us (e.g. via contact form or e-mail), personal data is processed exclusively for the purpose of processing and responding to your request and only to the extent necessary for this purpose. The legal basis for processing this data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f DSGVO. If your contact is aimed at a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO. Your data will be deleted when the circumstances indicate that the matter concerned has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.
5) Data processing when opening a customer account
In accordance with Art. 6 para. 1 lit. b DSGVO, personal data will continue to be collected and processed to the extent necessary in each case if you provide us with this data when opening a customer account. The data required for opening an account can be found in the input mask of the corresponding form on our website. Deletion of your customer account is possible at any time and can be done by sending a message to the above address of the person responsible. After deletion of your customer account, your data will be deleted, provided that all contracts concluded via it have been fully processed, no legal retention periods are opposed and no legitimate interest on our part in the continued storage exists.
6) Use of customer data for direct advertising
6.1 Subscription to our e-mail newsletter
If you register for our e-mail newsletter, we will regularly send you information about our offers. Only your e-mail address is required for sending the newsletter. The provision of further data is voluntary and is used to address you personally. For sending the newsletter, we use the so-called double opt-in procedure, which ensures that you only receive newsletters if you have expressly confirmed your consent to receive the newsletter by clicking on a verification link sent to the specified e-mail address.
By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a DSGVO. We store your IP address entered by your internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later date. The data we collect when you register for the newsletter is used strictly for the intended purpose. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a corresponding message to the responsible person named at the beginning. After unsubscribing, your email address will be deleted from our newsletter distribution list immediately, unless you have expressly consented to further use of your data or we reserve the right to use your data in a way that goes beyond this and is permitted by law and about which we inform you in this declaration.
6.2 Sending the e-mail newsletter to existing customers
If you have provided us with your e-mail address when purchasing goods or services, we reserve the right to regularly send you offers for similar goods or services to those already purchased from our range by e-mail. In accordance with Section 7 (3) of the German Unfair Competition Act (UWG), we do not need to obtain your separate consent for this. In this respect, the data processing is carried out solely on the basis of our legitimate interest in personalised direct advertising in accordance with Art. 6 Para. 1 lit. f DSGVO. If you have initially objected to the use of your e-mail address for this purpose, we will not send you any e-mails. You are entitled to object to the use of your e-mail address for the aforementioned advertising purpose at any time with effect for the future by notifying the responsible person named at the beginning. This will only incur transmission costs for you according to the basic rates. After receipt of your objection, the use of your e-mail address for advertising purposes will cease immediately.
6.3 Advertising by letter post
Based on our legitimate interest in personalised direct advertising, we reserve the right to store your first name and surname, your postal address and - insofar as we have received this additional information from you within the framework of the contractual relationship - your title, academic degree, year of birth and your occupational, industry or business designation in accordance with Art. 6 Para. 1 lit. f DSGVO and to use it to send you interesting offers and information about our products by letter post.
You can object to the storage and use of your data for this purpose at any time by sending a message to the person responsible.
7) Data processing for order handling
7.1 Insofar as necessary for the processing of the contract for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6 Para. 1 lit. b
DSGVO to the commissioned transport company and the commissioned credit institution.
If we owe you updates for goods with digital elements or for digital products on the basis of a corresponding contract, we will process the contact data (name, address, email address) provided by you when placing the order in order to inform you personally about upcoming updates within the legally stipulated period within the scope of our statutory duty to inform pursuant to Art. 6 (1) lit. c DSGVO by suitable means of communication (e.g. by post or email). Your contact details will be used strictly for the purpose of informing you about updates owed by us and will only be processed by us for this purpose to the extent necessary for the respective information.
In order to process your order, we also work together with the following service provider(s), who support us in whole or in part in the execution of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information.
7.2 Use of payment service providers (payment services)
- PAYONE
If you choose a payment method from the payment service provider PAYONE, the payment will be processed via the payment service provider PAYONE GmbH, Lyoner Straße 9, 60528 Frankfurt/Main, to whom we will pass on the information you provided during the ordering process, together with information about your order, in accordance with Art. 6 (1) lit. b DSGVO. Your data will only be passed on for the purpose of processing payment with the payment service provider PAYONE and only insofar as it is necessary for this purpose.
- Paypal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "payment by instalments" via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal") as
part of the payment processing. The transfer takes place in accordance with Art. 6 Para. 1 lit. b DSGVO and only insofar as this is necessary for the payment processing. - PayPal
reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" or "payment by instalments" via PayPal. For this purpose, your payment data may be passed on to credit agencies
in accordance with Art. 6 Para. 1 lit. f DSGVO on the basis of PayPal's legitimate interest in determining your solvency. PayPal uses the result of the credit check in terms of the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. For
further information on data protection law, including information on the credit agencies used, please refer to PayPal's data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for the contractual processing of payments. - Stripe
If you choose a payment method from the payment service provider Stripe, the payment will be processed via the payment service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will pass on the information you provided during the ordering process, together with information about your order (name, address, account number, bank sort code, credit card number if applicable, invoice amount, currency and transaction number) in accordance with Art. 6 (1) lit. b DSGVO. You can find more information on Stripe's data protection at the URL https://stripe.com/de/privacy#translation.
Stripe reserves the right to carry out a credit check on the basis of mathematical-statistical procedures in order to safeguard the legitimate interest in determining the solvency of the user. The personal data necessary for a credit check and obtained in the course of payment processing may be transmitted by Stripe to selected credit agencies, which Stripe discloses to users upon request. The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Stripe uses the result of the credit check in relation to the statistical probability of non-payment for the purpose of deciding on the authorisation to use the selected payment method.
You can object to
this processing of your data at any time by sending a message to Stripe or the appointed credit agencies.
However, Stripe may still be entitled to process your personal data if this is necessary for the contractual processing of payments.
8) Online marketing
8.1 Facebook Pixel for the creation of Custom Audiences (with Cookie Consent Tool) Within our online offer, the so-called "Facebook Pixel" of the social network Facebook is used, which is operated by Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland ("Facebook").
If a user clicks on an advertisement placed by us and played on Facebook, an addition is added to the URL of our linked page by Facebook Pixel. If our site allows data to be shared with Facebook via Pixel, this URL parameter is inscribed in the user's browser via a cookie that our linked site sets itself. This cookie is then read by Facebook Pixel and enables the data to be forwarded to Facebook.
With the help of the Facebook Pixel, it is possible for Facebook, on the one hand, to determine the visitors to our online offer as a target group for the display of advertisements (so-called "Facebook Ads"). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Facebook (so-called "Custom Audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and do not have a harassing effect. This allows us to further evaluate the effectiveness of the Facebook ads for statistical and market research purposes by tracking whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion").
The data collected is anonymous for us, so we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage policy (https://www.facebook.com/about/privacy/). The data can enable Facebook and its partners to place advertisements on and outside of Facebook.
The data processing associated with the use of the Face book pixel is only carried out with your express consent in accordance with Art. 6 Para. 1 lit. a DSGVO. You can revoke your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.
8.2 - Google AdSense
This website uses Google AdSense, a web advertising service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google AdSense uses cookies, which are text files placed on your computer, to help the website analyse how users use the site. In addition, Google AdSense also uses so-called "web beacons" (small invisible graphics) to collect information, through the use of which simple actions such as visitor traffic on the website can be recorded, collected and evaluated. The information generated by the cookie and/or web beacon (including your IP address) about your use of this website is usually transmitted to a Google server and stored there. This may also involve transmission to the servers of Google LLC. in the USA.
Google uses the information obtained in this way to carry out an evaluation of your usage behaviour with regard to the AdSense ads. The IP address transmitted by your browser as part of Google AdSense will not be merged with other Google data. The information collected by Google may be transferred to third parties where required to do so by law and/or where such third parties process the information on Google's behalf.
All processing described above, in particular the reading of information on the end device used via cookies and/or web beacons, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 Para. 1 lit. a DSGVO. Without this consent, Google AdSense will not be used during your visit to the site.
You can revoke your consent at any time with future effect by deactivating
this service in the "cookie
consent tool"
provided on the website.
Google's privacy policy can be viewed here: https://www.google.de/policies/privacy/
9) Web analytics services
9.1 Google (Universal) Analytics
This website uses Google (Universal) Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google (Universal) Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States.
This website uses Google (Universal) Analytics exclusively with the extension "_anonymizeIp()", which ensures anonymisation of the IP address by shortening it and excludes direct personal reference. The extension means that your IP address is shortened beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google LLC.server in the USA and shortened there. Google will use this information on our behalf for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage. In this context, the IP address transmitted by your browser as part of Google (Universal) Analytics will not be merged with other Google data. Google Analytics also enables the creation of statistics with statements about the age, gender and interests of site visitors on the basis of an evaluation of interest-based advertising and with the inclusion of third-party information via a special function, the so-called "demographic characteristics". This allows the definition and differentiation of user groups of the website for the purpose of targeting marketing measures. However, data records collected via the "demographic characteristics" cannot be assigned to a specific person.
Details on the processing triggered by Google Analytics and on
Google's
handling of
website data can be found here: https://policies.google.com/technologies/partner-sites All processing described above, in particular the setting of Google Analytics cookies for reading out information on the end device used, will only be carried out if you have given us your express consent to do so in
accordance with Art. 6 (1) lit. a DSGVO. Without this consent, Google Analytics will not be used during your visit to the website.
You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "Cookie
Consent Tool"
provided on the website. We have concluded an order processing agreement with Google for the use of Google Analytics, which obliges Google to protect the data of our site visitors and not to pass it on to third parties.
For the transfer of data from the EU to the USA, Google refers to the so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with the European level of data protection in the USA.
Further information on Google (Universal) Analytics can be found here: https://policies.google.com/privacy?hl=de&gl=de
9.2 Google Analytics 4
This website uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), to analyse the use of websites.
When using Google Analytics 4, so-called "cookies" are used as standard. Cookies are text files that are stored on your terminal device and enable an analysis of your use of a website. The information collected by cookies about your use of the website (including the IP address transmitted by your terminal device, shortened by the last few digits, see below) is usually transmitted to a Google server and stored and processed there. This may also result in the transmission of information to the servers of Google LLC, which is based in the USA, where the information may be further processed.
When using Google Analytics 4, the IP address transmitted by your terminal device when you use the website is always collected and processed automatically and by default only in an anonymised manner, so that the information collected cannot be directly related to a person. This automatic anonymisation is carried out by Google shortening the IP address transmitted by your terminal device within member states of the European Union (EU) or other contracting states of the Agreement on the European Economic Area (EEA) by the last digits.
Google uses this and other information on our behalf to evaluate your use of the website, to compile reports about your website activities and usage behaviour and to provide us with other services related to your website and internet usage. In this context, the IP address transmitted and shortened by your terminal device within the scope of Google Analytics 4 will not be merged with other data from Google. The data collected in the context of the use of Google Analytics 4 will be stored for 2 months and then deleted.
Google Analytics 4 also enables the creation of statistics with statements about age, gender and interests of website users on the basis of an evaluation of interest-based advertising and with the inclusion of third-party information via a special function, the so-called "demographic characteristics". This makes it possible to determine and distinguish user groups of the website for the purpose of targeting marketing measures.
However, data collected via the "demographic characteristics" cannot be attributed to a specific person and thus not to you personally. This data collected via the "demographic characteristics" function is kept for two months and then deleted.
All processing described above, in particular the setting of Google Analytics cookies for the storage and reading of information on the end device used by you for the use of the website, will only take place if you have given us your express consent for this in accordance with Art. 6 (1) lit. a DSGVO. Without your consent, Google Analytics 4 will not be used during your use of the website. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service via the "Cookie Consent Tool" provided on the website.
We have concluded a so-called order processing agreement with Google for our use of Google Analytics 4, which obliges Google to protect the data of our website users and not to pass it on to third parties.
To ensure compliance with the European level of data protection, also in the event of any transfer of data from the EU or the EEA to the USA and possible further processing there, Google refers to the so-called standard contractual clauses of the European Commission, which we have contractually agreed with Google.
Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at
https://policies.google.com/privacy?hl=de&gl=de and at
https://policies.google.com/technologies/partner-sites
10) Page functionalities
10.1 - Edudip
You can register for our webinars on our website. The data collected for the registration for the webinar (first name and surname, email address, payment data, if applicable) are collected and stored exclusively for your participation and the implementation of the respective webinar in accordance with Art. 6 Para. 1 lit. b DSGVO. To conduct our webinars, we use the service of edudip GmbH, Jülicher Straße 306, 52070 Aachen ("edudip"), which processes your data collected for the purpose of conducting the seminar on our behalf in order to provide the technical infrastructure and manage participation authorisations. For this purpose, we have concluded an order processing contract with edudip, in which we oblige edudip to protect our customers' data and not to pass it on to third parties. To confirm your registration for a webinar, you will receive an invitation link by e-mail. After clicking on the invitation link, a connection is established to the servers of edudip. For the purpose of clearly assigning the webinar access and thus for checking and guaranteeing the individual participant admission, Edudip collects information on our behalf about the websites visited as well as your IP address in accordance with Art. 6 Para. 1 lit. b DSGVO.
Your data will be processed exclusively for the purpose of conducting the booked webinar and will be deleted afterwards, unless legal retention periods require further storage. Your data will not be used in any other way or passed on to third parties. You can find further information on the handling of user data in the Edudip data protection statement at: https://www.tidio.com/datenschutz
10.2 Applications to job advertisements by e-mail
We advertise current vacancies on our website in a separate section, for which interested parties can apply by e-mail to the contact address provided.
Inclusion in the application process requires that applicants provide us with all personal data necessary for a well-founded and informed assessment and selection together with the application by e-mail. The required information includes general personal information (name, address, telephone or electronic contact details) as well as performance-related evidence of the qualifications required for a position. If necessary, health-related information may also be required, which must be given special consideration under labour and social law in the interest of social protection in the person of the applicant.
The components that an application must contain in order to be considered in each individual case and the form in which these components must be sent by e-mail can be found in the respective job advertisement.
After receipt of the application sent using the specified e-mail contact address, the applicant data will be stored by us and evaluated exclusively for the purpose of processing the application. For queries arising in the course of processing, we use, at our discretion, either the e-mail address provided by the applicant with his/her application or a telephone number provided. The
legal basis for this processing, including contacting us for queries, is generally Art. 6 Para. 1 lit. b DSGVO (for processing in Germany in conjunction with § 26 Para. 1 BDSG), in the sense of which the application process is considered to be the initiation of an employment contract.
Insofar as special categories of personal data within the meaning of Art. 9 (1) DSGVO (e.g. health data such as information on severely disabled status) are requested from applicants as part of the application process, the processing is carried out in accordance with Art. 9 (2) lit. b. DSGVO. DSGVO so that we can exercise the rights arising from labour law and social security and social protection law and fulfil our obligations in this regard.
Cumulatively or alternatively, the processing of the special categories of data may also be based on Art. 9(1)(h) GDPR if it is carried out for the purposes of preventive health care or occupational medicine, for the assessment of the applicant's fitness for work, for medical diagnosis, care or treatment in the health or social sector or for the management of systems and services in the health or social sector.
If the applicant is not selected in the course of the evaluation described above or if an applicant withdraws his or her application prematurely, his or her data transmitted by e-mail as well as all electronic correspondence including the original application e-mail will be deleted at the latest after 6 months following notification. This period is measured on the basis of our legitimate interest in answering any follow-up questions about the application and, if necessary, to be able to comply with our obligations to provide evidence under the regulations on equal treatment of applicants.
In the event of a successful application, the data provided will be further processed on the basis of Art. 6 para. 1 lit. b DSGVO (for processing in Germany in conjunction with § 26 para. 1 BDSG) for the purposes of implementing the employment relationship.
10.3 Microsoft Power BI
For the internal visualisation of business processes and for user-defined analyses of business processes, we use the "Microsoft Power BI" service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Where applicable, personal customer data may be the subject of visualisation and analysis processes and may be processed by Microsoft BI for this purpose. In this case, Microsoft processes personal data as a processor bound by instructions in accordance with Art. 28 DSGVO and has made a contractual commitment to us to protect this data in accordance with the legal requirements. For this purpose, Microsoft uses state-of-the-art encryption procedures and guarantees the exclusive use of data processing procedures in billing centres within the EU.
You can find out
more about the data protection measures for Power BI at https://www.microsoft.com/de-de/trustcenter/security/powerbi-security.
11) Rights of the data subject
11.1 The applicable data protection law grants you the following data subject rights (rights of access and intervention) vis-à-vis the controller with regard to the processing of your personal data, whereby reference is made to the stated legal basis for the respective prerequisites for exercising these rights:
- Right to information pursuant to Art. 15 DSGVO;
- Right to rectification pursuant to Art. 16 DSGVO;
- Right to erasure pursuant to Art. 17 DSGVO;
- Right to restriction of processing pursuant to Art. 18 DSGVO;
- Right to information pursuant to Article 19 of the GDPR;
- Right to data portability pursuant to Art. 20 DSGVO;
- Right to revoke consent given in accordance with Art. 7 (3) DSGVO;
- Right to lodge a complaint pursuant to Article 77 of the GDPR.
11.2 RIGHT OF OBJECTION
IF WE PROCESS YOUR PERSONAL DATA WITHIN THE FRAMEWORK OF A BALANCING OF INTERESTS ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, WE RESERVE THE RIGHT TO CONTINUE PROCESSING IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING IS FOR THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS.
IF WE PROCESS YOUR PERSONAL DATA FOR THE PURPOSES OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSES OF SUCH MARKETING. YOU MAY EXERCISE THE RIGHT TO OBJECT AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.
12) Duration of the storage of personal data
The duration of the storage of personal data is determined by the respective legal basis, the purpose of processing and - if relevant - additionally by the respective statutory retention period (e.g. retention periods under commercial and tax law).
When processing personal data on the basis of explicit consent pursuant to Art. 6 (
1) a DSGVO, this data is stored until the data subject revokes his/her consent.
If there are statutory retention periods for data that is processed
within the scope of legal or quasi-legal obligations on the basis of Art. 6 (1) (b) DSGVO, this data will be routinely deleted after the retention periods have expired, provided that it is no longer required for the fulfilment of the contract or the initiation of the contract and/or there is no justified interest on our part in continuing to store it.
When processing personal data on the basis of Art. 6(1)(f) DSGVO, this data is stored until the data subject exercises his or her right to object pursuant to Art. 21(1) DSGVO, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
When processing personal data for the purpose of direct marketing on the basis of Art. 6 (1) lit. f DSGVO, this data is stored until the data subject exercises his/her right to object pursuant to Art. 21 (2) DSGVO.
Unless otherwise indicated in the other information in this statement on specific processing situations, stored personal data are otherwise deleted when they are no longer necessary for the purposes for which they were collected or otherwise processed.