Privacy Policy

We protect your data. It is generally not necessary to provide personal data in order to use our websites. If the processing of personal data is necessary in order to make use of a service or an offer, we will in all cases obtain the consent of the person concerned. In doing so, we observe the General Data Protection Regulation (GDPR), which came into force on May 25, 2018. Furthermore, we naturally also observe the other regulations (e.g. BDSG) for the processing of personal data. This data protection declaration provides information about the type, scope and purpose of the personal data collected, used and processed by us. This data protection declaration also serves to inform you about your rights. With our measures, we offer the best possible protection of your personal data and its processing. Due to possible gaps in the technology of data transmission, absolute protection cannot be guaranteed. If in doubt, you should therefore transmit your personal data to us by telephone or by another means.

As a responsible company, we do not use automated decision-making or profiling of visitors to our website and our customers.

 

1. Definitions

This data protection declaration uses terms that are specified by the General Data Protection Regulation (GDPR). To make this data protection declaration easier to understand, the most important terms are explained using the wording of the regulation text. For the purposes of the regulation, the expression refers to:

A) Personal Data

“personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

B) Data Subject

“data subject” means any identified or identifiable natural person whose personal data are processed by the controller.

C) Processing

“processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

D) Restriction of Processing

“restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future;

E) Profiling

“profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements;

F) Pseudonymisation

“pseudonymisation” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person;

G) Controller or Controller for the Processing

“controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

H) Processor

“processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

I) Recipient

“recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;

J) Third Party

“third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;

K) Consent

“consent” of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

2. Name and Address of the Controller

Controller within the meaning of the General Data Protection Regulation and other data protection regulations is:

starkpartners consulting GmbH
Hauptstr. 92
40688 Meerbusch
Germany
Tel.: 02150-7058200
E-mail: datenschutz@starkpartners.de
Website: starkpartners.de

3. Name and Address of the Data Protection Officer

The data protection officer of the controller is:

Any data subject can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.

4. Cookies

Cookies are files that serve as identification marks. We transmit these to your computer’s hard drive with the help of your web browser and can read the cookies during each visit to our websites. With these so-called permanent cookies, we use a pseudonym to protect your data. Cookies contain a cookie ID. This is a unique identifier of the cookie. This allows us to assign Internet pages and servers to the Internet browser. Our short-term cookies are not specially encrypted by us. However, they are protected against being read by third parties by the security standard of your browser. Your browser is recognized through the use of cookies. This makes it possible for us to tailor our offer to your preferences. In the help function of your web browser you will find instructions on how to instruct your browser to display new cookies, not to accept a new cookie or to deactivate all received cookies. In addition, you can object to the creation of your user profile with the help of cookies at any time.

5. General Data and Information Collection

With each visit to one of our Internet pages, we collect general data and information via an automated system, which is stored in log files on the server. The collection mainly concerns the browser type used, its versions, the operating system on which the browser is operated, the last Internet page from which the visitor came to our Internet page (referrer), under websites which are referred to our Internet page via another system, the date and time of access to the respective Internet page, the Internet Protocol address (IP address), the identifier of the Internet service provider and other data and information that serve security purposes. This data is not used by us to draw conclusions about the person concerned. This data is only collected for the purpose of presenting our website in an optimized manner and to further improve our systems and to provide this data to law enforcement authorities if we become the victim of a hacker attack. In this respect, we use your data to support system administration, to create statistics and, if necessary, to comply with our legal obligations. Data from the log files are always stored separately from other personal data.

6. Registration, Newsletter

If the possibility to register is opened on our website for the use of our services and for obtaining information (e.g. newsletter), the respective personal data entered will be transmitted to the controller for processing. With the registration, the Internet Protocol address as well as the date and time are stored. This personal data is collected, stored and used exclusively for the fulfillment of these services or for the requested transmission of information and only internally. The transfer of personal data by the controller to processors will, if necessary, also only take place for these exclusive purposes. The personal data collected during registration will be deleted from the records of the controller upon request by the data subject. The data subject has the right to request information about the personal data stored about him/her at any time by means of a corresponding request.

7. Tracking Pixels

Our websites and newsletters may contain tracking pixels. These are small embedded graphics that we use to record a log file and then analyze it. If you open a page or the newsletter, the tracking pixel is loaded from a server on the Internet and registered with us with the IP address you are using and, if applicable, additionally with your cookie ID (see Cookies). This allows us to track exactly which pages you have visited and what actions you have taken there. We may use the information we have obtained about you to specifically present our Internet advertising to you on our advertising websites or to optimize and personalize content in our newsletters. This data will not be passed on. If you do not wish to have an automated personalized evaluation, you can object at any time. To do so, send us an e-mail to “datenschutz@starkpartners.de”. In this case, cookies will still be set, but only to exclude you from the evaluation. Your personal data will then no longer be evaluated by us.

8. Contact via the Website

Our website contains corresponding information for contacting our company. If a data subject contacts us by e-mail or via our contact form, personal data will be stored. The storage takes place solely for the purpose of contacting the data subject. This personal data will not be passed on to third parties.

9. Deletion and Blocking of Personal Data

Personal data will be regularly blocked and/or deleted in accordance with the laws and regulations on data protection to which the controller is subject, after the purpose of storage has ceased to apply and, if applicable, after the expiry of a storage period prescribed by the legislator.

10. Rights of the Data Subject

A data subject has the right to request confirmation from the controller as to whether personal data relating to him or her are being processed.

A data subject has the right to obtain from the controller, free of charge, information about the personal data relating to the data subject stored (as a copy). The following information is provided in this respect: the purposes of the processing, the categories of data, the recipients or categories of recipients, where possible the planned duration for which the personal data will be stored or the criteria for determining this duration, the existence of a right to rectification or erasure of the personal data or to restriction of processing by the controller or a right to object to such processing, the existence of a right of appeal to a supervisory authority, information about the origin of the data, the existence of automated decision-making, including profiling, and information about the transfer of personal data to a third country or to an international organization. Furthermore, the information contains all other information prescribed by the General Data Protection Regulation.

A data subject has the right to rectify their stored personal data.

A data subject has the right to erasure (right to be forgotten) of their stored personal data.

A data subject has the right to restriction of processing of their personal data.

A data subject has the right to data portability of their personal data, which has been provided to the controller by the data subject. This means in detail that the controller must provide the data subject with the personal data in a structured, commonly used and machine-readable format. The data subject also has the right to have the controller provide the personal data to another controller. However, this only applies if the other requirements of the GDPR are met.

A data subject has the right to object to the processing of personal data concerning him or her and to profiling based on it under the conditions of the GDPR with the corresponding legal consequences.

A data subject has the right to withdraw their consent to the processing of personal data.

With regard to all rights, the data subject can contact an employee of the controller.

11. Use of Google Analytics (with Anonymization Function)

The controller uses the add-on “_gat._anonymizeIp” for web analysis via Google Analytics. By means of this add-on, the IP address of the Internet connection of the data subject is shortened and anonymized by Google if access to our Internet pages is from a member state of the European Union or from another state party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website.

Google Analytics places a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. Through each call-up of one of the individual pages of this website, which is operated by the controller and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which Google uses, among other things, to track the origin of visitors and clicks and subsequently enable commission statements.

By means of the cookie, personal information, such as the access time, the location from which an access originated and the frequency of visits to our website by the data subject, is stored. With each visit to our Internet pages, this personal data, including the IP address of the Internet connection used by the data subject, is transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.

The data subject can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.

Furthermore, the data subject has the option to object to and prevent the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on from the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is evaluated by Google as an objection. If the data subject’s information technology system is deleted, formatted or reinstalled at a later time, the data subject must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person within their sphere of control, the browser add-on can be reinstalled or reactivated.

Further information and Google’s current privacy policy can be found at https://www.google.de/intl/de/policies/privacy/ and http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.

12. Legitimate Interests in the Processing Pursued by the Controller or a Third Party

The processing of personal data may be in the legitimate interest of carrying out our business activities for the benefit of our employees and shareholders, Art. 6 para. 1 lit. f GDPR.

13. Legal and Contractual Provisions for the Provision of Personal Data

Finally, we declare that personal data must be stored in part on the basis of laws or in the event that contractual obligations exist to do so. In particular, personal data must be collected and stored in the event that a contract is concluded. For further clarification of his rights, the data subject must contact one of our employees before providing personal data.

 

_________________

Status: May 25, 2018