close

Privacy policy

Privacy policy

We take the protection of your data seriously and always try to collect and store as little data as possible. Nevertheless, a certain amount of storage and evaluation of user data is necessary to ensure and improve the operation of this website. In principle, it is possible to use this website without providing any personal data. Nor is any data assigned to a specific person – unless you tell us your name, for example in an e-mail or via one of our forms.

If you use one of the services offered on this website, this regularly requires the collection, processing and storage of personal data, such as your name, address, e-mail address or telephone number. This collection, processing and storage is generally carried out either on the basis of your previously obtained express consent or a corresponding legal authorization and on the basis of the provisions of the European Data Protection Basic Regulation and the German Federal Data Protection Act. We would like to inform you here about the type, scope and purpose of the data collected, processed, stored and used by us via this website, as well as about your rights existing in this context.

We use SSL transport encryption on this page. This serves, among other things, to protect confidential contents, for example, when you send us inquiries. You can see that the connection is actually encrypted in the address line of your browser, which always begins with “https://” and confirms the existing transport encryption with a green lock symbol.

Name and address of the person responsible for processing

is responsible in terms of the basic data protection regulation and other data protection regulations:

Eurocor Tech GmbH
Vivek Ramnani
In den Dauen 6A,
53117 Bonn,
Germany

Data Protection Officer (de: Datenschutzbeauftragter): Katja Hausner
Contact us here

Impressum

Definitions

The data protection law knows special terms, which we also use in this privacy policy in accordance with the legal definitions of the European data protection basic regulation. Therefore, in this data protection declaration the term

“personal data”
any information relating to an identified or identifiable natural person (“data subject”);

data subject” means
any identified or identifiable natural person whose personal data are processed; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, a location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person

“processing” means
any operation or set of operations carried out with or without the aid of automated processes relating to personal data, such as collection, recording, organization, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or any other form of making available, alignment or combination, restriction, deletion or destruction;

“Restriction of processing”
the marking of stored personal data with the aim of restricting their future processing

“profiling”
any automated processing of personal data consisting in the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, whereabouts or change of location of that natural person; as a company committed to data protection, we refrain from any form of profiling;

“Pseudonymization”
the processing of personal data in such a way that the personal data cannot be attributed to a specific data subject without the inclusion of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person

“file system”
any structured collection of personal data accessible according to specific criteria, whether centralized, decentralized or organized according to functional or geographical criteria.

“controller” (or: “data controller”)
the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or national law, provision may be made for the controller or for the specific criteria for his or her designation under Union or national law.

“processor” means
a natural or legal person, authority, body or other entity that processes personal data on behalf of the controller.

“recipient” means
any natural or legal person, public authority, agency or other body to whom personal data is disclosed, whether or not that person is a third party However, authorities which may receive personal data in the context of a specific investigation mandate under Union or Member State law shall not be considered as recipients; the processing of such data by those authorities shall be carried out in accordance with the applicable data protection rules and in accordance with the purposes of the processing.

“third party”
a natural or legal person, public authority, agency or any other body, other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data.

“consent” means
any freely given expression of the data subject’s will in the specific case, in an informed and unequivocal manner, in the form of a declaration or any other unequivocal affirmative act by which the data subject signifies his or her consent to the processing of personal data relating to him or her.

“violation of the protection of personal data”
a breach of security leading to the destruction, loss or alteration, whether accidental or unlawful, or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed

“cross-border processing”
processing of personal data carried out in the course of activities carried out in the Union by establishments of a controller or processor in more than one Member State where the controller or processor is established in more than one Member State, or processing of personal data carried out in the course of the activities of a single establishment of a controller or processor in the Union but which has or may have a substantial impact on data subjects in more than one Member State.

“relevant and reasoned objection”
an objection as to whether or not there has been a breach of this Regulation or whether or not the intended action against the controller or processor is in conformity with this Regulation, such objection clearly indicating the scope of the risks presented by the draft decision in relation to the fundamental rights and freedoms of the data subjects and, where applicable, the free movement of personal data within the Union.

Legal basis of the data processing

The processing of personal data by us takes place on the basis of the provisions of the European Data Protection Basic Regulation and the German Federal Data Protection Act:

  • For processing operations for which we obtain consent for a specific processing purpose, the processing is carried out on the basis of Article 6 paragraph 1 letter a of the Basic Data Protection Regulation.Insofar as the processing of personal data is necessary for the performance of a contract to which the data subject is a party (e.g. for the delivery of goods or the provision of another service or consideration) or for the implementation of pre-contractual measures (e.g. in the event of inquiries about our products or services), the processing is based on Article 6 paragraph 1 letter b of the Basic Data Protection Regulation.
    Insofar as processing of personal data is necessary due to a legal obligation on our part, such
  • as for the fulfillment of tax obligations or commercial law storage regulations, the processing is based on Article 6 paragraph 1 letter c of the Basic Data Protection Regulation.
  • If, exceptionally, the processing of personal data should be necessary to protect vital interests of the data subject or of another natural person, the processing would be carried out on the basis of Article 6(1)(d) of the Basic Data Protection Regulation.
  • The processing of personal data that is necessary to protect a legitimate interest of our company or of a third party would be carried out on the basis of Article 6(1)(f) of the Basic Data Protection Regulation, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data outweigh those of the data subject. Such a legitimate interest also includes the conduct of our business activities for the benefit of the well-being of all our employees and our shareholders. The provision of personal data may be required by law (e.g. under commercial law or tax law) or may be necessary for the execution of contracts. If such data (e.g. information on a contractual partner) is not made available to us for processing, we cannot conclude a corresponding contract.

Logfiles

On our Internet server, as on other web servers, a log file is kept. In this log file data records are stored, in which

  1. Date and time of each access to our website
  2. the exact URL of each web page you visit
  3. the data you have requested from the server
  4. general information about the web browser you use to access the website (in particular the browser type and version) and operating system, and
  5. partly the website from which you came to our Internet offer (the so-called “referrer”)

can be recorded. This information will be

  • for the correct delivery of the respective website
  • for statistical purposes
  • to further improve our Internet offer and to optimize the advertising contained therein,
  • to permanently guarantee the functionality and integrity of our information technology systems, including the prevention of danger in the event of attacks on our information technology systems, and
  • in the event of an attack on our information technology systems to provide the necessary information to law enforcement agencies

is needed and used.

This data is collected anonymously and stored separately from all personal data provided to us by a person concerned. The IP address is stored in a form shortened by the last octet.

Cookies and user profiles

Within the scope of the legal provisions we can

  • to provide user-friendly services that would not be possible without the setting of cookies,
  • for the purpose of advertising, market research and
  • to improve our services and internet offers

Evaluate usage profiles under a pseudonym, but only insofar as you have not exercised your legal right to object to this use of your data. Some of our services require that we use so-called cookies.

Cookies are small amounts of data (text files) that your internet browser stores on your computer. Information about your visit to our website can be stored in cookies which enable us to recognize your browser and distinguish it from the browsers of other persons concerned. Most browsers are set by default to accept cookies. However, you can reconfigure your browser at any time to refuse cookies or to request confirmation from you beforehand. If you refuse cookies, however, this may mean that not all offers and functions of this website will work properly for you or can be used.

Further details on the use of cookies on this website – including the existing opt-out options – can be found in this privacy policy in the sections

  • for internal visitor statistics and
  • Online advertising

E-mail and contact forms

If you send us an e-mail or contact us via a contact form, the personal data voluntarily provided to us will be automatically stored and, if necessary, processed for the purpose of processing or contacting you. This includes – as far as you have given us your name, your address or e-mail address, your telephone number as well as other information given voluntarily by you. If you contact us using one of the forms provided on this website, the IP address used by you for this purpose will also be stored. As a matter of principle, we only use the personal data collected in this process to the extent necessary to process your inquiries and orders. Under no circumstances will this data be passed on to third parties, unless we are legally obliged to do so.

Comments via social networks

If you use the commenting and forwarding functions offered on this website to social networks (such as Twitter, Facebook or Google+), these networks will collect visitor data, the transmission, processing, storage and use of which we have no influence on. You can avoid this by not using these functions.

YouTube video integration

  • We have integrated YouTube videos into our online offering, which are stored at https://www.YouTube.com and can be played directly from our website. These are all integrated in “extended privacy mode”, which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 2 be transferred. We have no influence on this data transfer].
  • By visiting the website, YouTube receives the information that you have visited the corresponding subpage of our website. In addition, the data mentioned in paragraph 3 of this declaration is transmitted. This happens regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want the assignment with your profile on YouTube, you have to log out before activating the button. YouTube stores your data as user profiles and uses them for the purpose of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the purpose of providing need-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.
  • For more information on the purpose and scope of data collection and processing by YouTube, please see the Privacy Policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Integration of Google Maps

  1. On this website we use the offer of Google Maps. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently.
  2. By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned under § 3 of this declaration is transmitted. This happens regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not want the assignment with your profile at Google, you have to log out before activating the button. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide need-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.
  3. Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the provider’s privacy policy. There you will also find further information on your rights and settings to protect your privacy: http://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Integration of Twitter messages

  1. On this website we use the offer of Twitter International Company (Dublin, Ireland) to integrate Twitter messages. This enables us to display suitable tweets directly on the website and enables you to use them conveniently.
  2. By visiting the website, Twitter receives the information that you have visited the corresponding subpage of our website. In addition, the data mentioned in section 4 of this statement will be transmitted. This is done regardless of whether you are logged into Twitter with a user account or not. If you are logged in to Twitter, your data can be directly assigned to your account by Twitter. Twitter may store this data as user profiles and use it for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation can be carried out in particular for the purpose of providing needs-based advertising and informing other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Twitter to exercise this right.
  3. For further information on the purpose and scope of data collection and its processing by Twitter, please refer to the provider’s privacy policy. There you will also find further information on your rights and settings to protect your privacy: https://twitter.com/de/privacy.

Duration of storage, deletion and blocking of personal data

Subject to other legal provisions, personal data of the data subjects shall be processed or stored by the controller only for the period of time necessary to achieve the purpose of storage. A further determining criterion for the duration of the storage of personal data is the respective legal retention period. After the storage purposes have ceased to apply and existing statutory storage periods have expired, the personal data will be blocked or deleted by the data controller in accordance with the statutory provisions and requirements, even without a corresponding request from the person concerned.

Your rights as a data subject

Below we describe the rights that every person affected by the processing of personal data has vis-à-vis the data controller. If you wish to exercise any of these rights, you may contact the data controller at any time. We recommend that you inform us of your wish by e-mail at info@eurocor.de

Every person affected by the processing of personal data has the right to claim against the data controller:

1. the right of confirmation, i.e. the right to obtain from the controller confirmation as to whether personal data concerning him/her are being processed

2. the right of access, i.e. in the case of processing of personal data, the right to be informed about such personal data and to receive the following information

a) the purposes of processing;

b) the categories of personal data being processed;

c) the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular in the case of recipients in third countries or international organizations;

(d) if possible, the envisaged duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration;

(e) the existence of a right of rectification or erasure of personal data relating to him or her or of a right of objection to their processing by the controller;

(f) the existence of a right of appeal to a supervisory authority;

(g) where the personal data are not collected from the data subject, any available information as to their source;

(h) the existence of automated decision making, including profiling, in accordance with Article 22(1) and (4) of the basic Regulation on data protection and, at least in those cases, meaningful information as to the logic involved and the scope and intended impact of such processing on the data subject.

3. in the case of a transfer of personal data to a third country or to an international organization, the right to be informed of the appropriate safeguards pursuant to Article 46 of the basic data protection regulation in relation to the transfer;

4. the right to obtain a copy of the personal data forming the subject-matter of processing operations. For any further copies requested by the data subject, the controller may charge a reasonable fee based on the administrative costs. If the data subject submits the request electronically, the information shall be provided in a standard electronic format, unless the data subject indicates otherwise. This right to receive a copy shall not prejudice the rights and freedoms of other persons;

5. the right of rectification, i.e. the right to request the controller to rectify without delay any inaccurate personal data concerning him/her. Taking into account the purposes of the processing, the data subject shall have the right to request the completion of incomplete personal data, including by means of a supplementary declaration;

6. the right of deletion (“right to be forgotten”), i.e. the right to request the controller to delete personal data relating to them without delay, and the controller is obliged to delete personal data without delay if one of the following reasons applies:

a) the personal data are no longer necessary for the purposes for which they were collected or otherwise processed

(b) the data subject withdraws the consent on which the processing was based pursuant to Article 6(1)(a) or Article 9(2)(a) of the basic data protection regulation and there is no other legal basis for the processing.

(c) the data subject lodges an objection to the processing pursuant to Article 21(1) of the basic data protection regulation and there are no legitimate prior grounds for processing, or the data subject lodges an objection to the processing pursuant to Article 21(2) of the basic data protection regulation

(d) the personal data have been processed unlawfully.

(e) erasure of the personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject

(f) the personal data have been collected in relation to information society services offered in accordance with Article 8(1) Where the controller has made the personal data public and is under an obligation to delete them pursuant to paragraph 1, he shall take reasonable measures, including technical measures, taking into account the available technology and the implementation costs, to inform data controllers who process the personal data that a data subject has requested them to delete all links to such personal data or to make copies or replications of such personal data. This does not apply if the processing is necessary

(a) to exercise the right to freedom of expression and information

(b) to comply with a legal obligation requiring processing under Union or national law to which the controller is subject or to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;

(c) for reasons of public interest relating to public health, in accordance with Article 9(2)(h) and (i) and Article 9(3) of the basic data protection regulation;

(d) for archival, scientific or historical research purposes in the public interest or for statistical purposes as referred to in Article 89(1) of the basic data protection regulation, in so far as the said right is likely to make it impossible or seriously prejudicial to the achievement of the purposes of such processing; or

e) to assert, exercise or defend legal claims.

7. the right to limit processing, i.e. the right of a data subject to request the controller to delete personal data relating to him without undue delay, and the controller is obliged to delete personal data without undue delay if any of the following reasons apply:

(a) the accuracy of the personal data is contested by the data subject, for a period of time sufficient to enable the controller to verify the accuracy of the personal data

(b) the processing is unlawful and the data subject refuses to have the personal data deleted and requests instead that the use of the personal data be restricted;

(c) the controller no longer needs the personal data for the purposes of the processing, but the data subject needs them in order to exercise or defend his rights; or

(d) the data subject has lodged an objection to the processing in accordance with Article 21(1) of the basic data protection regulation, as long as it has not been established that the legitimate reasons of the controller outweigh those of the data subject. If the processing has been restricted pursuant to this provision, such personal data may be processed, with the exception of storage, only with the consent of the data subject or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or a Member State. A data subject who has obtained a restriction on processing shall be informed by the controller before the restriction is lifted.

8. the right to data transferability, i.e. the right of the data subject to receive, in a structured, common and machine-readable format, personal data relating to him/her which he/she has made available to a controller, and the right to transfer such data to another controller without hindrance by the controller to whom the personal data have been made available, provided that

(a) the processing is based on an authorisation pursuant to Article 6(1)(a) or Article 9(2)(a) of the basic data protection regulation or on a contract pursuant to Article 6(1)(b) of the basic data protection regulation; and

(b) processing is carried out by means of automated procedures. In exercising his or her right to data transferability, the data subject shall have the right to obtain that personal data be transferred directly from one controller to another controller to the extent technically feasible. This right must not prejudice the rights and freedoms of other persons. The exercise of this right to data transferability shall not affect the right to erasure (“right to be forgotten”). This right shall not apply to processing which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

9. the right of objection, i.e. the right of the data subject to object at any time, on grounds relating to his particular situation, to the processing of personal data relating to him being carried out on the basis of Article 6(1)(e) or (f) of the basic data protection regulation, including profiling based on those provisions. The controller shall no longer process the personal data unless he can demonstrate compelling legitimate reasons for processing which outweigh the interests, rights and freedoms of the data subject, or unless the processing is for the purpose of asserting, exercising or defending legal claims.

Where personal data are processed for the purpose of direct marketing, the data subject shall have the right to object, at any time, to the processing of personal data relating to him/her for the purpose of such marketing, including profiling, insofar as it relates to such direct marketing.

If the data subject objects to the processing for the purposes of direct marketing, the personal data shall no longer be processed for those purposes. In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, the data subject may exercise his right of objection by means of automated procedures involving technical specifications.

The data subject shall have the right to object, on grounds relating to his particular situation, to the processing of personal data concerning him which is carried out for purposes of scientific or historical research or for statistical purposes, as referred to in Article 89(1) of the basic data protection regulation, except where such processing is necessary for the performance of a task carried out in the public interest.

10. the right not to be subjected to an automated decision in individual cases (including profiling) which has legal effect vis-à-vis it or significantly affects it in a similar manner.

This shall not apply if the decision

(a) is necessary for the conclusion or performance of a contract between the data subject and the controller

(b) is authorised by Union law or the law of the Member States to which the controller is subject and that law contains adequate measures to safeguard the rights and freedoms and legitimate interests of the data subject; or

(c) with the express consent of the data subject. In the cases referred to in points (a) and (c) above, the controller shall take appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject, which shall include at least the right to obtain the intervention of the controller, to put forward his point of view and to appeal against the decision. Automated decisions may not be based on special categories of personal data unless the data subject has given his or her consent or the processing is necessary for reasons of substantial public interest on the basis of Union law or the law of a Member State which is proportionate to the aim pursued, respects the essential content of the right to data protection and provides for adequate and specific measures to safeguard the fundamental rights and interests of the data subject.