隐私政策

Information on the processing of personal data as at 02.12.2023

Thank you for visiting our website and for your interest in our company. The protection of your data is of the utmost importance to us. With the following information on data protection, we would like to inform you about the purposes for which and the extent to which we collect and process your personal data when you use our websites and how we protect your privacy when you provide us with your data.

1 General information

(1) In the following, we provide information about the collection of personal data when using our website.

Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behavior.

(2) The controller pursuant to Art. 4 (7) GDPR is:

EUROGATE GmbH Co. KGaA, KG

President-Kennedy-Platz 1A, 28203 Bremen

Phone: +49 40/7405-2031, e-mail: compliance@eurogate.eu

 

(3) Name and address of the data protection officer

The data protection officer of the controller is:

Dipl.- Ing. Jörg Hagen
Jhcon data protection consulting
Königstrasse 50a
30175 Hanover
E-mail: info@jhcon.de

2 Your rights and revocation

  1. a) Your rights

You have the right to obtain information from the website operator about the personal data concerning you (Art. 15 GDPR) that is processed by us. You also have the right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) or restriction of processing (Art. 18 GDPR) and the right to data portability (Art. 20 GDPR).

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. In order to safeguard the rights and freedoms as well as the legitimate interests of the data subject, you therefore have at least the right to express your point of view and to challenge the decision.

You also have the right to lodge a complaint with the relevant data protection supervisory authority at any time. To do so, please contact the State Commissioner for Data Protection at the address below.

  1. b) Right to object to your consent or to data processing

If you have given your consent to the processing of your data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 1 lit. a GDPR), you have the right to withdraw this consent at any time.

The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to the collection of data in special cases and to direct marketing (Art. 21 GDPR)

If data processing is carried out on the basis of Art. 6 para. 1 lit. e) or f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This also applies to profiling based on these provisions. The respective legal bases on which processing is based can be found in this privacy policy. If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims (objection pursuant to Art. 21 (1) GDPR). If your personal data are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection pursuant to Art. 21 (2) GDPR).

For concerns of this kind, please use the company contact details above.

3 Processing of personal data when visiting our website

(1) If you use the website for purely informational purposes, i.e. if you do not log in to use the website, register or otherwise provide us with information, we do not process any personal data, with the exception of the data that your browser transmits to our server. In accordance with Art. 6 para. 1 lit. f GDPR, we process the following technically necessary data in order to display our website to you and to ensure stability and security:

  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status / HTTP status code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and its interface
  • Language and version of the browser software.

(2) If you contact us by e-mail or via a contact form, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We will only pass this data on to third parties without your consent if this is necessary to fulfill your request. This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us on the basis of Art. 6 para. 1 lit. f GDPR or on your consent in accordance with Art. 6 para. 1 lit. a GDPR if this has been requested. The data you send to us via contact requests will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

4 Use of cookies

Our Internet pages do not use so-called “cookies”.

5 Web analytics

 

  1. Plausible analytics

We use the privacy-friendly service Plausible for website analysis. Although the purpose of Plausible Analytics is to track the use of a website, this can still be done without collecting personally identifiable information, without using cookies and respecting the privacy of website visitors.

With Plausible, we don’t track people on their devices and across websites and apps they visit. All data is isolated to a single tag, just a single website and device. There is no way to know if the same person is visiting a website from more than one device or visiting a different website. See the full list of what makes Plausible a privacy-first web analytics tool here.

The goal of Plausible is to track the overall trends of our website traffic, it is not about individual visitors. We do not use cookies, we do not generate persistent identifiers and we do not collect or store any personal or identifiable data. All data is aggregated data only and there is no personal data.

By using Plausible Analytics, the entire location measurement is completely anonymous. We only measure the most important data points and nothing else.

Counting visitors is an integral part of web analytics. Plausible tries to find a reasonable balance between analysis and respect for the privacy of visitors.

Plausible does not attempt to create a device-specific identifier as it is considered personal data under the GDPR. No cookies, browser cache or local storage are used. We do not store or extract anything from the visitor’s devices.

Each individual HTTP request sends the IP address and the user agent to the server. This generates a daily changing identifier with the visitor’s IP address and user agent. To anonymize these data points and make it impossible to identify the user, a hash function with a rotating salt is used.

hash(daily_salt + website_domain + ip_address + user_agent)

This generates a random series of letters and numbers that are used to calculate unique visitor numbers for the day. The raw IP address and user agent data is never stored in our logs, databases or anywhere on disk.

All data is encrypted and hosted on a 100% renewable energy server in Falkenstein, Germany. The server is owned by Hetzner, a European company. This ensures that all website data is covered by the strict data protection laws of the European Union.

You can read more about Plausible’s data protection in their privacy policy.

We carry out the website analysis on the basis of Art. 6 (f) GDPR as a legitimate interest of ours in improving the website content.

We have concluded a contract with Plausible for order processing in accordance with Art. 28 GDPR.

6 Web Fonts

Google Fonts are used on this website. Google Fonts is a service provided by Google Inc (“Google”). This font is installed on our own web server. This prevents a request to the Google server and prevents data from being passed on to Google.

7 Social media sites from EUROGATE

EUROAGTE’s social media offers can only be accessed via a link to the offers on the respective platforms. Only when you click on the respective service symbol will you be forwarded to the selected service. Until then, no personal data about you from the use of our website will be transmitted to the respective services.

How your data is handled when using the respective services and how data protection is guaranteed is explained in the following sections.

  1. Facebook and Instagram

This privacy policy contains more detailed information on the processing of personal data when using our meta offers.

We are jointly responsible for the use of our Facebook and Instagram offers together with Meta Platforms Ireland Limited (Facebook Ireland Limited) – hereinafter referred to as Meta – , 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, https://www.facebook.com/help/contact/540977946302970, as joint controllers pursuant to Art. 26 GDPR and the Facebook Page Insights Supplement (https://www.facebook.com/legal/terms/page_controller_addendum ). If personal data is to be transferred to the USA, Meta has submitted to the EU-US Data Privacy Framework, https://www.dataprivacyframework.gov/s/.

Meta. processes (personal) data when you use Meta services – including when you visit our Facebook or Instagram page – even if you are not registered with any of the Meta services. Meta describes which (personal) data these are in detail, how, for what purposes and on what legal basis they are processed in its data policy (https://www.facebook.com/privacy/policy/?section_id=13-HowToContactMeta), which applies to all Meta services. Information on how to contact Meta and on the settings options for advertisements, cookies, etc. can also be found there. The data may be transferred to countries outside the European Union.

Meta provides more information about the cookies that Meta uses when a Meta Account exists, Meta Offerings (including the Website and Apps) are used or other websites and apps that use the Meta Offerings (including the “Like” button or other Facebook technologies) are visited in the Cookie Policy (https://www.facebook.com/policies/cookies/ ). Information on how you can manage information about you can also be found at this link: https://www.facebook.com/policies/cookies/

When you visit our Facebook or Instagram page, Meta collects your IP address, among other things. Together with other information that Meta receives through cookies, Meta provides us, as the operator of the Meta service, with statistical information about the use of the respective service (so-called page insights). This is summarized data that shows how users interact with the site. These Page Insights may be based on personal data collected by Meta in connection with a visit or interaction of Users on or with our respective Meta Service and its content. Meta provides more information on this here: https://www.facebook.com/about/privacy.

We can use Page Insights to anonymously analyze reach, page views, time spent on video posts, actions (likes, comments, sharing posts) and by age, gender and location (as specified by users in their respective Facebook (meta) profiles). Settings can be made for the evaluation of the reach or corresponding filters can be set with regard to the selection of a time period, the viewing of a specific post and demographic groupings (e.g. female, 20-30 years old). This data is anonymized, aggregated and abstracted. These settings therefore do not allow us to draw any conclusions about individuals. The evaluation serves to optimize the offer on our pages for the purpose of public relations. The
legal basis for this data processing is Art. 6 para. 1 lit. a and f GDPR.

As the provider of the information service, we do not collect or process any other data from the use of the pages.

Irrespective of your rights against us, you have the right to lodge a complaint with the Irish Data Protection Commission (responsible for Meta Platforms Ireland Limited (Facebook Ireland Limited)) (Art. 77 GDPR).

If you have specific questions about the protection of your data, please contact our Data Protection Officer or the Data Protection Officer of Meta Platforms Ireland Limited. https://www.facebook.com/help/contact/540977946302970

  1. Use of LinkedIn

We manage our account in accordance with the principles set out below:

We are jointly responsible with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland https://www.linkedin.com/help/linkedin/answer/1581/hilfe-erhalten-und-den-linkedin-kundenservice-kontaktieren?lang=de hereinafter referred to as the “platform operator”.

We only process your personal data, such as your surname and first name, your email address and IP address, etc., if there is a legal basis for doing so.  You can find more detailed information on processing by the platform operator in the platform operator’s privacy policy.

Data is therefore only passed on to third parties if there is a legal basis for the processing. For example, we pass on personal data to persons or companies who work for us as processors in accordance with Art. 28 GDPR. A processor is anyone who processes personal data on our behalf – i.e. in particular in a relationship of instruction and control with us

In accordance with the requirements of the GDPR, we conclude a contract with each of our processors in order to oblige them to comply with data protection regulations and thus ensure comprehensive protection of your data.

We would like to point out that your data may also be passed on to third parties by the platform operator. However, we have no influence on this.

You can find more detailed information on processing by the platform operator in the platform operator’s privacy policy.

We store all personal data that you transmit to us only for as long as it is required to fulfill the purposes for which this data was transmitted or as long as this is required by law. Once the purpose has been fulfilled and/or the statutory retention periods have expired, we will delete or block the data, insofar as this is technically possible for us.

Information on data storage by the platform operator can be found in the platform operator’s privacy policy, see above.

This platform uses SSL encryption for security reasons and to protect the transmission of confidential content, such as the inquiries you send to us or the platform operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. There is no separate indication within apps that SSL encryption is in place.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

Collection and storage of personal data and the nature and purpose of its use

When you access the platform operator’s website, the browser used on your device, or the app automatically sends information to the platform operator’s server. This information is temporarily stored by the platform operator in a log file. The following information is collected without any action on your part and stored until it is automatically deleted:

  • IP address of the requesting device
  • Date and time of access
  • Type of device you are using
  • Name and URL of the retrieved file
  • Website from which the access is made (referrer URL)
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider

However, this data is only available to the platform operator. It is not possible for us to access this data. Further information can be found in the platform operator’s privacy policy, see above.

We do not collect any personal data about you. However, it is possible to obtain pseudonymized data in the form of statistics about the users of our site over a certain period of time. The software for analyzing user statistics is usually provided by the platform operator itself, but in some cases it is also possible to integrate third-party software (e.g. Google Analytics). This can collect data about the users of the site, such as age, gender, country of origin, browser used and interests.

However, this data is always pseudonymized and it is not possible for us to make statements about individual users on the basis of this data alone. We use this data exclusively to optimize the content we offer and its marketing and to adapt it to the respective user interests. This is a legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.

It is also possible for you to interact with our account. You can do this, for example, by marking a post with “Like”, sharing or commenting on it or by writing to us directly.

When you interact with us, data processing by us is usually inevitable, as we can see your account and thus gain access to your personal data, such as your username, your profile picture or the date or time of the interaction.

We use this data exclusively to optimize the content we offer and its marketing and to adapt it to the respective user interests. This is a legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the above-mentioned reason for optimizing the content we provide on our profile. Furthermore, the data collected is information that is only made available to us when you interact with our profile. This establishes a relevant and appropriate relationship between you and our profile.

If deletion by us is possible, personal data will be deleted by us after 28 days at the latest, unless there is a legal basis for further processing beyond this period.

Further information on data processing by the platform operator can be found in the platform operator’s privacy policy, see above.

This platform uses cookies. We have no control over which cookies the platform operator uses. You can find more information in the platform operator’s privacy policy at the following link: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

To enforce your rights, you can contact the platform operator directly if the processing is carried out by the platform operator. We have provided the contact details of the platform operator as the controller responsible for data processing at the beginning of this document. Of course, you can also contact us to enforce your rights.

Changes to the privacy policy

Regarding changes to the data protection declarations by the platform operator, please refer to its data protection declaration, see above.

  1. XING

For the processing of personal data on XING, we define the purposes and means together with XING SE, Dammtorstraße 30, 20354 Hamburg – Germany

Phone: +49 40 419 131-0
Fax: +49 40 419 131-11
E-mail: info@xing.com

The data protection officer of Xing is:

Felix Lasse, Dammtorstraße 30, 20354 Hamburg, Germany
E-Mail: Datenschutzbeauftragter@xing.com

The purpose of the processing is to present the company and interact with our users via the XING platform. The purpose of our XING presence is therefore to provide information about our company, our products and services, combined with the opportunity for users to interact with us in a targeted manner. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is, in particular, our business interest in sharing information with our users and being able to communicate with them.

If we publish images of persons, this is done via consent (legal basis: Art. 6 para. 1 lit. a GDPR), on the basis of a contractual agreement (legal basis: Art. 6 para. 1 lit. b GDPR) and in exceptional cases on the basis of legitimate interests (legal basis: Art. 6 para. 1 lit. f. GDPR in conjunction with Section 23 (1) No. 3 of the Art Copyright Act).

We expressly point out that we have no influence on data processing by Xing. Please check which personal data you share via Xing and adjust your settings in your Xing profile accordingly. You can find the privacy policy here.

You can exercise your right to information, correction and deletion of data at any time. Simply contact us in the ways described above. If you wish your data to be deleted but we are still legally obliged to retain it, access to your data will be restricted (blocked). The same applies in the event of an objection. You can exercise your right to data portability insofar as the technical possibilities are available to the recipient and to us.

If your rights must be asserted against XING, we will forward your request to XING. Further information regarding the exercise of your data subject rights vis-à-vis XING can be found in XING’s privacy policy at https://privacy.xing.com/de/datenschutzerklaerung.

You have the option of lodging a complaint with a data protection supervisory authority at any time.

8 External links

For your optimal information, you will find links on our site that refer to third-party sites.

These links will take you to websites that we find helpful.

When you leave our website, no further personal data is generally processed by us.

As far as this is not obviously recognizable, we point out that it is an external link. We have no influence on the content and design of websites of other providers and therefore refer to their data protection declarations. The guarantees of this data protection declaration therefore naturally do not apply to third-party websites.