We protect your data. In principle, it is not necessary to provide personal data in order to use our website. Should the processing of personal data be necessary in order to make use of a service or offer, we will obtain the consent of the respective person in all cases. In doing so, we observe the General Data Protection Regulation (DSGVO/GDPR), which came into force on 25.05.2018. Furthermore, we naturally also observe the other regulations (e.g. BDSG) for the processing of personal data. This data protection declaration provides information on the type, scope and purpose of the personal data we collect, use and process. This data protection declaration also serves to inform you about your rights. With our measures, we offer the best possible protection for your personal data and its processing. Due to possible gaps in the technology of data transmission, absolute protection cannot be guaranteed. In case of doubt, you should therefore transmit your personal data to us by telephone or by other means.
As a responsible company, we refrain from automated decision-making or profiling of visitors to our website and our customers.
This data protection declaration uses terms specified by the General Data Protection Regulation (DSGVO). In order to make this data protection declaration easier to understand, the most important terms are explained using the wording of the text of the regulation. For the purposes of the Regulation, the term means:
(a) personal data
“personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
(b) data subject
“data subject” means any identified or identifiable natural person whose personal data are processed by the controller.
“processing” means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
(d) restriction of processing
“restriction of processing” means the marking of stored personal data for the purpose of limiting their future processing;
“profiling” means any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location;
“pseudonymisation” means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data are not attributed to an identified or identifiable natural person;
(g) controller or data controller.
‘controller’ means the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for by Union or Member State law;
“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller;
“recipient” means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. 2However, authorities which may receive personal data in the context of a specific investigative task under Union or Member State law shall not be considered as recipients; the processing of such data by the said authorities shall be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing;
(j) third party
“third party” means a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons who, under the direct responsibility of the controller or the processor, are authorised to process the personal data;
“Consent” of the data subject means any freely given specific, informed and unambiguous indication of his or her wishes in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to personal data relating to him or her being processed;
2. the name and address of the controller.
The controller within the meaning of the General Data Protection Regulation and other data protection provisions is:
starkpartners consulting GmbH
3. name and address of the data protection officer
The data protection officer of the data controller is:
Any data subject may contact our data protection officer directly at any time with any questions or suggestions regarding data protection.
5 General data and information collection
Every time one of our Internet pages is called up by an automatic system, we collect general data and information which is stored in the server’s log files. The collection primarily concerns the type of browser used, its versions, the operating system on which the browser is operated, the last website from which the visitor accessed our website (referrer), among websites which are referred to our website via another system, the date and time of access to the respective website, the Internet protocol address (IP address), the identifier of the Internet service provider as well as other data and information which serve security purposes. We do not use this data to draw conclusions about the data subject. This data is only collected with the aim of optimising our website and to continue to improve our systems, as well as to provide law enforcement authorities with this data if we become the victim of a hacker attack. In this respect, we use your data to support system administration, to compile statistics and, if necessary, to comply with our legal obligations. Log file data is always stored separately from other personal data.
6 Registration, newsletter
If, in order to use our services and to obtain information (e.g. newsletters), the option of registering on our website is provided, the respective personal data entered will be transmitted to the controller for processing. With the registration, the internet protocol address and the date with time are also stored. These personal data are collected, stored and used exclusively for the fulfilment of these services or for the requested transmission of information and only internally. The transfer of personal data by the responsible party to order processors will, if necessary, also only take place for these exclusive purposes. The personal data collected during registration will be deleted from the data controller’s inventory upon request by the data subject. The data subject may at any time request information about the personal data stored about him or her by submitting a corresponding request.
7. tracking pixels
Our websites and newsletters may contain tracking pixels. These are small embedded graphics that we use to record and then analyse a log file. When you open a page or the newsletter, the tracking pixel is loaded from a server on the Internet and registered with us along with the IP address you used and, if applicable, also with your cookie ID (see Cookies). This enables us to track exactly which pages you have visited and what actions you have taken there. We may use the information obtained about you to present you with targeted Internet advertising on our advertising websites or to optimise and personalise the content of our newsletters. This data will not be passed on. If you do not wish to receive an automated personalised evaluation, you can object at any time. To do so, send us an e-mail to “email@example.com”. In this case, cookies will still be set, but only to exclude you from the evaluation. Your personal data will then no longer be evaluated by us.
8. contact via the website
In order to contact our company, our website contains corresponding information. If a data subject contacts us by e-mail or via our contact form, personal data will be stored. This data is stored solely for the purpose of contacting the data subject. This personal data will not be passed on to third parties.
9. deletion and blocking of personal data
Personal data will be regularly blocked and/or deleted in accordance with the laws and regulations on data protection to which the controller is subject after the purpose for which it was stored has ceased to apply and, if applicable, after the expiry of a storage period prescribed by law.
10. rights of the data subject
A data subject shall have the right to obtain confirmation from the controller as to whether the controller is processing personal data relating to the data subject.
A data subject has the right to obtain from the controller, free of charge, information (as a copy) about the personal data stored concerning the data subject. The following information is provided in this respect: Purposes of processing, categories of data, recipients or categories of recipients, where possible the planned duration of the storage of the personal data or criteria for determining this duration, the existence of a right to rectification or erasure of the personal data or to restriction of processing by the controller or a right to object to processing, the existence of a complaints tribunal with a supervisory authority, information about the origin of the data, the existence of automated decision-making, including profiling, and information about the transfer of the personal data to a third country or to an international organisation. Furthermore, the information shall include any other information required under the General Data Protection Regulation.
A data subject shall have the right to have his/her personal data stored rectified.
A data subject has the right to erasure (right to be forgotten) of their stored personal data.
A data subject has the right to restriction of the processing of their personal data.
A data subject has the right to data portability of his/her personal data provided by the data subject to the controller. This means in detail that the controller must provide the personal data to the data subject in a structured, common and machine-readable format. The data subject also has the right to have the controller provide the personal data to another controller. However, this only applies if the other requirements of the GDPR are met.
A data subject has the right to object to the processing of personal data concerning him or her and to any profiling based thereon, subject to the conditions of the GDPR with the corresponding legal consequences.
A data subject has the right to withdraw consent to the processing of personal data.
With regard to all rights, the data subject may contact an employee of the controller.
11. Use of Google Analytics (with anonymisation function)
The controller uses the add-on “_gat._anonymizeIp” for web analysis via Google Analytics. By means of this addition, the IP address of the Internet connection of the data subject is shortened and anonymised by Google if access to our Internet pages is from a Member State of the European Union or from another State party to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website and to provide other services in connection with the use of our website.
Google Analytics sets a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyse the use of our website. Each time one of the individual pages of this website operated by the data controller is called up and on which a Google Analytics component has been integrated, the internet browser on the data subject’s information technology system is automatically caused by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which Google uses, among other things, to track the origin of visitors and clicks and subsequently to enable commission calculations.
By means of the cookie, personal information such as the time of access, the location from which access originated and the frequency of visits to our website by the data subject are stored. Each time the data subject visits our website, this personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected via the technical process with third parties.
The data subject can prevent the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used, as already described above, and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programmes.
Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.
12. legitimate interests in processing pursued by the controller or a third party.
The processing of personal data may be in the legitimate interest of conducting our business for the benefit of our employees and our shareholders, Art. 6 (1) lit. f DSGVO.
13. legal and contractual requirements for the provision of personal data
Finally, we explain that personal data must be stored in part due to laws or in the event that there are contractual obligations to do so. Personal data must be collected and stored in particular in the event of the conclusion of a contract. For further clarification of his or her rights, the data subject must contact one of our employees before providing personal data.
Status: 25 May 2018