Privacy policy

Privacy policy for the website

You can use our online offer without disclosing your identity. If we request personal data on our website, e.g. in contact forms or during registration, this is done on a voluntary basis. We use this information for business purposes (such as sending the requested materials/information).

If you have any questions, we offer you the option of contacting us using a form provided on the website. The data marked as mandatory is required in order to assign and respond to your request. Further information can be provided voluntarily. Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntary consent.

The personal data collected by us for the use of the contact form will be deleted after your request has been processed and after the expiry of the tax and commercial law retention obligations.

You can revoke your consent at any time with future effect without giving reasons, for example for the purpose of sending a newsletter or other interesting information from our company. To do so, you can use the above contact form or another method specified in the newsletter. 

Transfer of data

Your data will not be passed on to third parties for commercial or non-commercial purposes without your express consent. We will only pass on your personal data to third parties if this is legally permissible and/or necessary. We sometimes use service providers for order processing in accordance with Article 28 of the GDPR; for example, the website is hosted by Hetzner Online GmbH and maintained by MAIT in cooperation with VERDURE Medienteam GmbH. We remain fully responsible for data processing. We also use some plugins from other providers on our website; you can find more details below.

We would like to point out that we may also pass on your personal data to other companies within our group for the above-mentioned purposes [see "About us"]. The data transfer takes place on the basis of a legitimate interest in order to be able to offer you a comprehensive range of our services.

These companies may also be located outside the EU/EEA. We ensure an adequate level of data protection by concluding standard contractual clauses/binding corporate rules. You can request these from us at any time free of charge at: datenschutzbeauftragter@mait.de

Cookies and plugins

Our website uses cookies to obtain your consent to the storage of certain cookies on your device or to the use of certain technologies and to document this in accordance with data protection regulations. You can prevent the installation of cookies by adjusting the cookie banner or your browser settings accordingly. You also have the option of revoking your consent at any time in the cookie banner or in the cookie settings [link in settings]. This may mean that you are unable to use all offers in full.

Mamoto – Tracking Tool

We use Matomo (formerly Piwik), an open-source software for statistical analysis of visitor traffic, to deliver cookies. The information generated by the cookie about your use of the website is stored on a server in Germany. The IP address is anonymized immediately after processing and before storage. You can prevent the installation of cookies by changing the settings of your browser software. Please note that if you do so, you may not be able to use all the features of this website. You can decide whether a unique web analytics cookie may be stored in your browser to enable us to collect and analyze various statistical data. 

Conversion tracking with Google Ads

If you consent to the use of tracking cookies, this website uses Google Ads from Google Ireland Limited; Gordon House, Barrow Street, Dublin 4, Ireland. We use Google Ads Conversion to draw attention to our offers on external websites with the help of advertising media (so-called Google Ads). We can determine how successful the individual advertising measures are in relation to the data from the advertising campaigns. Our aim is to show you advertising that is relevant to you, to make our website more interesting for you, and to achieve a fair calculation of advertising costs. These advertising media are delivered by Google via so-called "ad servers." To do this, we use ad server cookies, which allow certain parameters for measuring success, such as the display of ads or clicks by users, to be measured. If you access our website via a Google ad, Google Ads will store a cookie on your device. These cookies expire after 30 days and are not used to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), and information about any revocation (indicating that the user no longer wishes to be targeted) are stored as analysis values for this cookie.

These cookies enable Google to recognize your Internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer can recognize that the user has clicked on the ad and been redirected to that page (visit action evaluation). Each Ads customer is assigned a different cookie. Cookies cannot therefore be tracked across the websites of Ads customers. We ourselves do not collect or process any personal data in the advertising measures mentioned. We only receive statistical evaluations from Google. These evaluations enable us to identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media; in particular, we cannot identify users based on this information. Through the integration of Ads Conversion, Google receives the information that you have accessed the corresponding part of our website or clicked on one of our ads. If you are registered with a Google service, Google can associate the visit with your account. 

Further information on the handling of user data can be found in Google's privacy policy at: www.google.de/intl/de/policies/privacy [external site]. If, at a later date after giving your consent, you decide to withdraw your consent, you can deactivate personalized advertising from Google in the settings of the cookie banner or your browser settings for advertising. These settings are stored in your Google account (if you are logged in) or in your browser (if you are not logged in). Alternatively, you can install a browser plug-in to disable personalized advertising. You can find this here: https://support.google.com/ads/answer/7395996.

Mixpanel

We use analytics software from Mixpanel, Inc., 405 Howard St, Floor 2, San Francisco, CA 94105, USA. Mixpanel places a persistent cookie on your device that records your use of our service and is filled with information. This data is then analyzed by Mixpanel and forwarded to us. This gives us insight into how the service and website are used overall, and we can then decide whether changes to them are necessary or useful. You can find Mixpanel's privacy policy here: https://mixpanel.com/privacy/. If you do not agree to the collection and use of usage data by Mixpanel, you can disable Mixpanel by clicking here to set an opt-out cookie. Please note that setting the cookie only affects the browser you are currently using. In other browsers, Mixpanel can continue to collect usage data until you also deactivate Mixpanel there. In addition, the collection of usage data will resume when you delete the opt-out cookie.

The use of Mixpanel is based on your consent (Art. 6 para. 1 lit. a GDPR).

Facebook

Our website links to the Facebook website. The operator of the site is Facebook Ireland Ltd. (4 Grand Canal Square, Dublin 2, Ireland). Facebook does not automatically process your personal data through the link, but only when you actively click on the Facebook button. However, if you were already logged into your Facebook account when you accessed our website, Facebook will at least process the information about which of our web pages you visited with your IP address, at what time, and via which browser. Facebook may transfer the processed information to third parties, e.g., US authorities, if required by law or if third parties process this data on behalf of Facebook. We have no influence on the type and scope of your personal data processed by Facebook.

We only collect personal data from you via Facebook if you become active on our Facebook fan page, for which we are jointly responsible with Facebook, and disclose your personal data. The processing of this data is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR.

Further information on the handling of your data can be found in Facebook's privacy policy at: https://www.facebook.com/about/privacy [external site].

LinkedIn

Our website links to the LinkedIn website. The site is operated by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. Instead of using plug-ins, we simply link to LinkedIn. Your personal data is not automatically transmitted to LinkedIn when you visit our website. By linking to LinkedIn, LinkedIn will only process your personal data when you actively click on the LinkedIn button. LinkedIn may transfer the processed information to third parties, e.g., US authorities, if required by law or if third parties process this data on behalf of LinkedIn. We have no influence on the type and scope of your personal data processed by LinkedIn.

For more information on how your data is handled, please refer to LinkedIn's privacy policy at: https://www.linkedin.com/legal/privacy-policy?_l=de_DE [external site].

XING

Our website links to the XING website. The operator of the pages is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. We only link to the XING website instead of using plug-ins. Your personal data is not automatically transmitted to XING when you visit our website. By linking to XING, XING will only process your personal data when you actively click on the XING button.

Further information on how your data is handled can be found in XING's privacy policy at: https://privacy.xing.com/de/datenschutzerklaerung [external site].

YouTube

We have integrated videos into our website that are stored on the YouTube video platform and can be played directly from our websites. The operator is Google Ireland Limited; Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). In order for videos to be embedded and displayed in your web browser, your web browser must connect to a Google server, which may also be located in the US, when you visit subpages of our website. The IP address of visitors to our website and which of our pages you have visited are communicated to the YouTube server. This happens regardless of whether you have a YouTube user account or not. If you are logged into your YouTube account, you also enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. The legal basis for the integration is your consent in accordance with Art. 6 para. 1 lit. a GDPR. Without your consent for external content, no connection to YouTube's servers will be made. You can withdraw your consent at any time or adjust your selection. For more information on how user data is handled, please refer to YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy [external site]. 

Instagram

Our website links to the Instagram website. The operator of the site is Facebook Ireland Ltd. (4 Grand Canal Square, Dublin 2, Ireland). We only link to the Instagram website instead of embedding Instagram plug-ins. This means that your personal data is not automatically transmitted to Instagram when you visit our website. Instagram only processes your personal data when you actively click on the Instagram button. However, if you are logged into your Instagram account when you visit our website, Instagram will process your personal data. Instagram may transfer this information to third parties, e.g., US authorities, if required by law or if third parties process this data on behalf of Instagram. We have no influence on the type and scope of your personal data processed by Instagram.

For more information on how your data is handled, please refer to Instagram's data policy at: de-de.facebook.com/help/instagram/155833707900388 [external site].

Cookies

How to disable cookies

You can disable cookies in your browser using the following instructions (please note that the settings system in different browsers changes regularly, so we cannot guarantee that the steps are correct):

1. Firefox:

2. Open the Firefox browser.
3. Select "Menu" and then "Settings" in your function bar.
4. Select the "Privacy" tab.
5. For "Firefox will," select "Use custom settings for history."
6. Uncheck "Accept cookies" and save your settings.

7. Internet Explorer:

8. Open Internet Explorer.
9. Click on the "Tools" button and then on "Internet Options."
10. Click on the "Privacy" tab.
11. Under "Cookies and privacy," select the following option: "Block cookies and website data (may cause problems with websites)."

12. Microsoft Edge:

13. Open Microsoft Edge.
14. Click on the menu button in the top right corner and select "Settings."
15. Scroll down to the bottom and select "View advanced settings."
16. Further down, you will find the "Cookies" category with several options.
17. If you select the option "Block all cookies", these will no longer be stored.
18. Note: Please note that some websites may not function properly without cookies.

19. Google Chrome:

20. Open Google Chrome.
21. Select "Settings."
22. Click on "Advanced."
23. In the "Privacy" tab, click on "Content settings."
24. In the "Cookies" section, disable "Allow sites to save and read cookie files" (recommended).

25. Safari:

26. Open Safari.
27. Select "Settings" from the list of functions (gray gear icon in the upper right corner) and click on "Privacy."
28. Under "Accept cookies," you can specify whether and when Safari should accept cookies from websites.

CookieBot

We use the consent management service Usercentrics, provided by Usercentrics GmbH, Sendlinger Str. 7, 80331 Munich, Germany (Usercentrics). This enables us to obtain and manage the consent of website users for data processing. The processing is necessary to fulfill a legal obligation (Art. 7 para. 1 GDPR) to which we are subject (Art. 6 para. 1 sentence 1 lit. c GDPR). The following data is processed for this purpose: Date and time of access Browser information Device information Geographical location Cookie preferences URL of the page visited The functionality of the website cannot be guaranteed without this processing. Usercentrics is the recipient of your personal data and acts as a processor for us. The processing takes place in the European Union. Further information on your rights to object and to have your data deleted by Usercentrics can be found at: usercentrics.com/de/datenschutzerklaerung/ The data will be deleted after 3 years. Please note our general information on the deletion and deactivation of cookies above.

Logging

Each time you access the website, logs are created and processed for statistical purposes, whereby the individual user remains anonymous:

• Referrer (page from which you accessed this website)
• Search terms (for search engines as referrers)
• IP is evaluated to determine the country of origin and the provider
• Browser, operating system, installed plug-ins, and screen resolution
• Time spent on the pages

The aforementioned data is processed by us on the basis of our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR for the following purposes:

• Ensuring a smooth connection to the website
• Ensuring the comfortable use of our website
• Evaluating system security and stability, and
• for other administrative purposes.

We reserve the right to check this data retrospectively if we become aware of specific indications of illegal use. The data will be deleted immediately if it is no longer necessary for the purpose for which it was collected, but no later than six months after collection. 

Liability for own content

The content of these pages has been created with the utmost care. However, we cannot guarantee that the content is accurate, complete, or up to date. As a service provider, we are responsible for our own content on these pages in accordance with general laws.

Liability for links (content from other providers)

Cross-references ("links") to content provided by other providers must be distinguished from our own content. We have no influence on their content; the respective provider or operator of the linked pages is always responsible for the content of those pages. 

Your rights 

See below

Contact the data protection officer

See below

Data protection when subscribing to a newsletter

You have the option of subscribing to a newsletter at various points. We process your personal data exclusively in connection with the order and receipt of our newsletter in order to send you information about products, services, events, and other interesting information about our company. You can object to this mailing at any time with effect for the future.
 

For statistical purposes, we track which links within the newsletter are clicked on and lead to actions on our website (“conversion”). However, this data is not assigned to you; rather, it is anonymous.

The data you provide is required to send you the newsletter. Without this data, we cannot process your newsletter subscription.

External service providers
 

In order to send you the newsletter, we use a service provider, SC Networks GmbH, which accesses your data within the scope of order processing in accordance with Art. 28 GDPR. The service provider acts in accordance with our instructions, which has been ensured by appropriate contracts.
 

Storage and deletion

The data will be stored until you revoke your consent to receive the newsletter.

In order to ensure that you do not receive any further mailings from us in the future, we will store your data internally in a lock file. This is the only way to ensure that you will not receive any further mailings from us in the future. The legal basis for this is Article 21(3) in conjunction with Article 17(3)(b) and Article 6(1)(f) of the General Data Protection Regulation. If you wish to have your data completely deleted, you can inform us of this informally.

Data protection when processing personal data of our business partners (customers/suppliers; B2B)

As a contractual partner of your company, we process personal data relating to you on the basis of our legitimate interest in preparing quotations and fulfilling contracts in accordance with Art. 6 (1) lit. f GDPR. Processing for the purposes of accounting and cost accounting as well as for the fulfillment of legal obligations (e.g., commercial and tax law) is based on Art. 6 (1) (c) GDPR. The business relationship exists between us and your company. If you are acting as a natural person (e.g., as a sole trader or self-employed person), your data will be processed for the purpose of implementing pre-contractual measures and fulfilling contracts on the legal basis of Art. 6 para. 1 lit. b GDPR.

In the course of external requirements (e.g., in the context of customs/tax law), it may be necessary to compare personal data relating to you with lists published by authorities.

Furthermore, data may also be processed for legitimate purposes in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, such as marketing, internal market research and marketing purposes, internal statistics. The legitimate interests lie in particular in the optimization of processes and cost-based allocation; your interests, fundamental rights, and fundamental freedoms are duly taken into account.

Only if you have given us your consent or if we have informed you appropriately within the scope of data collection in accordance with Section 7 UWG (DE) / Section 107 TKG (AT) will we use your data to send you information about products, services, events, and other interesting facts about our company. You can object to this mailing at any time with effect for the future. 

The data you provide is necessary for the performance of the contractual relationship. Without this data, we cannot fulfill the contract concluded with your company. 

Disclosure 

Group companies 

In order to provide you with the best possible information and services in accordance with the above-mentioned purposes, information relating to the contractual relationship (including personal data) will be transferred within our globally operating <name of the group>-MAIT group of companies (including the USA, Switzerland, and other countries outside the EU/EEA). Those companies within the group that are based outside the EU also ensure an adequate level of data protection by concluding EU standard contractual clauses/binding corporate rules. You can obtain a copy of these regulations here at any time.

Storage and deletion of data

Your data will be stored for as long as necessary for the respective purposes mentioned above. The data will be deleted at the latest after termination of the contractual relationship and after expiry of the statutory retention periods under civil, commercial, and tax law. 

Your rights 

See below

Contacting the data protection officer

See below

Data protection in the context of application procedures

We process your personal data in relation to you in connection with the execution of your application process and to examine your potential suitability for employment . In doing so, we process the information you provide for the purpose of making an informed personnel decision based on Art. 6 (1) (b) GDPR. In addition, evaluations based on objective, non-discriminatory criteria are stored; if permissible in individual cases, publicly accessible personal data relating to you will also be stored.

The data you provide is necessary for the application process. Without this data, we cannot consider your application.

Service providers

Your personal data will be passed on to softgarden e-recruiting GmbH as an external service provider and to other companies within our group of companies in order to support us in the personnel selection process. In some cases, external IT service providers may access your data. In all cases, the service providers act in accordance with our instructions, which has been ensured by appropriate contracts.

Transfer to other companies within the group

Only if you have given us your consent will we pass on your personal data to other companies within our group of companies in order to offer you further entry options within our group of companies. Even those companies within the group that are based outside the EU ensure an adequate level of data protection by concluding EU standard contractual clauses/binding corporate rules. You can obtain a copy of these regulations here at any time.

Storage and deletion of data

Your data will be stored for as long as is necessary for the above-mentioned purposes of the personnel selection process. If you object to the processing of your data during the personnel selection process, the data will be deleted unless there are other legal storage obligations that prevent this. 

The data will be deleted after the application process has been completed and any legal deadlines have expired, unless you have given your consent to store your application for future job opportunities. Unsolicited applications will be stored for a maximum of two years or until you withdraw your consent, and will then be deleted.

Your rights 

See below

Contact the data protection officer

See below

LogMeIn (GoToWebinar und GoToStage)

Description and purpose of data processing
 

On our website, we offer the option to register for our webinars. To do so, you must register with your personal data. For this purpose, we use the services GoToWebinar and GoToStage from LogMeIn Ireland Limited The Reflector10 Hanover Quay Dublin 2, D02R573 Ireland. During registration, you will be asked to provide the following personal data:

• Email address
• First and last name
   
• Phone
• Organ
• Date and time at the time of registration

In addition to the data collected during registration, LogMeIn provides us with the following statistical data:

• The duration of viewing the content in percent
• How often the content was viewed
• The date of the last viewing of the content
   

This personal data is used by LogMeIn and MAIT for participation in webinars (e.g., to send an access link) and similar services, as well as to contact you to inform you about other services offered by the MAIT Group. Consent to this is given by activating a checkbox. Based on our legitimate interest in the sale of products in accordance with Article 6(1)(f) of the EU General Data Protection Regulation, we process contact details for advertising purposes by telephone. For this purpose, MAIT Germany GmbH or the service provider commissioned by us (information on this can be found in the respective webcast) will contact you by telephone. You have the option to object to receiving advertising. This will not result in any disadvantages for you.
 

In addition, the terms of use of LogMeIn https://www.logmeininc.com/de/legal/terms-and-conditions and https://www.logmeininc.com/de/legal/privacy also apply to the use of the webinar offerings.

Legal basis for data processing
 

The legal basis for the processing of data by LogMeIn and MAIT is Art. 6 (1) lit. a GDPR, provided that consent has been given.

Right to object and rights of data subjects
 

You can cancel your registration at any time and have the data stored about you changed or deleted. To cancel your participation in a webinar, please use the link provided in the registration email.

Ticketsystem KIX

We use a ticket system provided by KIX Service Software GmbH (Schönherrstr. 8, 09113 Chemnitz, Germany) to process support requests. 
Personal data is processed for the purpose of efficiently and structurally processing incoming inquiries and improving our customer service. When using the ticket system, we process the following personal data: Name, email address, and, if applicable, telephone number of the person making the inquiry, content of the support request, metadata such as the time of the request and processing status. The data is processed on the basis of Art. 6 (1) lit. b GDPR for the fulfillment of a contract or pre-contractual services. The data will only be stored for as long as is necessary to process the request. Statutory retention periods, in particular in the context of business correspondence, remain unaffected. The data will not be passed on to third parties unless this is necessary for processing the request or there is a legal obligation to do so. Processing takes place exclusively on our own servers or within the EU.

Event-Management-Software evenito

On this website, we use the tool evenito, a software solution for event management, implementation, and organization. Evenito enables us to manage event registrations, store participant data, and offer personalized event experiences. When using evenito, personal data such as your name, email address, and other event-related information will be processed. This data will be used exclusively for the purpose of conducting the event and communicating with participants. The processing of this data is based on the following legal grounds: Art. 6 (1) lit. a GDPR (consent) for marketing communications and optional data processing, as well as Art. 6 (1) lit. f GDPR (legitimate interest) for lead generation (collection of contact data for later advertising purposes within the scope of existing business interests), network and customer loyalty (establishing and maintaining customer or business partner relationships), brand building and image maintenance (promoting awareness of the company through events), product and service marketing (presenting new products or services within the scope of the event), market research and optimization (analyzing the participant structure and interests to improve future events).
 

Evenito acts as a processor within the meaning of Art. 28 GDPR. This means that the software processes personal data on behalf of the event organizer. A corresponding data processing agreement (DPA) is concluded with the provider.

The processing of personal data takes place in Switzerland. As Switzerland is recognized by the European Commission as a safe third country, the transfer of personal data to Switzerland is generally permitted without additional protective measures. However, we ensure that the provider contractually guarantees compliance with the GDPR standards.

Privacy information for Creditreform Boniversum GmbH in accordance with the GDPR

MAIT Germany GmbH regularly checks your credit rating when concluding contracts and in certain cases where there is a legitimate interest, even for existing customers. To do this, we work with Creditreform Boniversum GmbH, Hellersbergstraße 11, 41460 Neuss, from whom we obtain the necessary data. Creditreform Boniversum GmbH is a credit protection organization. It operates an economic database in which creditworthiness information about companies is stored. On this basis, Creditreform Boniversum provides credit information to its customers.

The Creditreform Boniversum database stores information in particular about the name, company name, address, professional activity, marital status, financial circumstances, payment history, and shareholdings of individuals in companies. The purpose of processing the stored data is to provide information about the creditworthiness of the companies requested. We request information about the following data from our customers: Legal entities, first and last names of the managing director and/or authorized signatory, as well as payment defaults.

The legal basis for processing is Art. 6 (1) lit. f GDPR. Creditreform Boniversum may then provide us with information about this data if we can demonstrate a legitimate interest in knowing this information. Our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR are: credit decisions, business initiation, shareholdings, claims, credit checks, enforcement information.

The data will be stored for as long as its knowledge is necessary for the fulfillment of the purpose of storage. Knowledge is generally necessary for an initial storage period of three years. After expiry, we will check whether storage is still necessary; otherwise, the data will be deleted on the exact date. In the event of the completion of a matter, the data will be deleted on the exact date three years after completion. Entries in the debtor register will be deleted on the exact date three years after the date of the registration order in accordance with Section 882e of the German Code of Civil Procedure (ZPO).

You have the right to obtain information from Creditreform Boniversum GmbH about the data stored there about you. If the data stored about you is incorrect, you have the right to have it corrected or deleted. If it cannot be determined immediately whether the data is incorrect or correct, you have the right to have the data blocked until clarification has been obtained. If your data is incomplete, you can request that it be completed.

If you have given your consent to the processing of the data stored at Creditreform Boniversum, you have the right to revoke this consent at any time. The revocation does not affect the legality of the processing of your data based on your consent until revocation.

If you have any objections, requests, or complaints regarding data protection, you can contact the data protection officer at Creditreform Boniversum at any time. He or she will assist you quickly and confidentially in all matters relating to data protection. You can also complain about the processing of data by Boniversum to the state data protection officer responsible for your state.

The data that Creditreform Boniversum has stored about you comes from publicly available sources, from debt collection agencies and from their customers.

In order to describe your creditworthiness, Creditreform Boniversum assigns a score to your data. The score includes data on age and gender, address data, and, in some cases, payment history data. This data is weighted differently in the score calculation. Creditreform Boniversum customers use the scores as an aid in making their own credit decisions.

Right to object:

The data stored at Creditreform Boniversum GmbH is processed for compelling reasons of creditor and credit protection that regularly outweigh your interests, rights, and freedoms, or for the purpose of asserting, exercising, or defending legal claims. You may only object to the processing of your data for reasons arising from your particular situation and which must be proven. If such special reasons are proven, the data will no longer be processed. If you object to the processing of your data for advertising and marketing purposes, the data will no longer be processed for these purposes.

The responsible party within the meaning of Art. 4 No. 7 GDPR is Creditreform Boniversum GmbH, Hellersbergstr. 11, 41460 Neuss, Germany. Your contact there is Consumer Service, tel.: 02131 36845560, fax: 02131 36845570, email: selbstauskunft@boniversum.de.

You can contact the responsible data protection officer at Creditreform Boniversum GmbH at the following address: Creditreform Boniversum GmbH, Data Protection Officer, Hellersbergstr. 11, 41460 Neuss, email: datenschutz@boniversum.de.

Rights of data subjects

We hereby inform you that, in accordance with Article 15 et seq. of the GDPR, you have the right to obtain from us information about the personal data concerning you, as well as the right to rectification or erasure or restriction of processing or to object to processing, and the right to data portability, under the conditions set out therein. You also have the right to lodge a complaint with a data protection supervisory authority ( ) if you believe that the processing of your personal data violates this regulation. If the processing is based on Article 6(1)(a) GDPR or Article 9(2)(a) GDPR (consent), you also have the right to withdraw your consent at any time without affecting the lawfulness of the processing based on the consent until the withdrawal. 

Right to information, Art. 15 GDPR

You have the right to request information about whether and to what extent your personal data is being processed ( , in particular the purpose of the processing, the recipients of the data, the storage period, etc.). 

Right to rectification, Art. 16 GDPR

You have the right to request the correction of your stored data if it is incorrect or incomplete. This includes the right to have it completed by means of supplementary statements or notifications. 

Right to erasure, Art. 17 GDPR

You have the right to request the deletion of your personal data. This is possible, for example, if the data is no longer required for the purposes for which it was collected or if the data must be deleted due to legal obligations. However, this right may be excluded in individual cases.

Right to restriction of processing, Art. 18 GDPR

You have the right to have the processing of your personal data restricted ( ). This is possible, for example, if your data has been recorded incorrectly or if the data processing is unlawful. In the event of a restriction of processing, the data may only be processed in strictly defined cases.

Right to data portability, Art. 20 GDPR

You have the right to request that the data concerning you be disclosed to you or to a controller designated by you in a commonly used, machine-readable data format if you have provided this data yourself. 

Right to object, Art. 21 GDPR

You have the right to object to the processing of personal data concerning you at any time with effect for the future for reasons arising from your particular situation, provided that the data processing is carried out to safeguard legitimate interests (cf. Art. 6 para. 1 lit. e), f) GDPR). In the event of your objection, we will check whether the legal requirements for the processing of your data are met and, if this is not the case, we will refrain from any further processing of your data. 

Right to lodge a complaint with the data protection supervisory authority, Art. 77 GDPR

You have the right to contact the competent supervisory authority of the Union or the member states at any time in the event of possible violations of data protection regulations. 

Contact details of the competent supervisory authority:

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
Kavalleriestr. 2-4
40213 Düsseldorf
Phone:
Fax
Email: poststelle@ldi.nrw.de