Data pri­va­cy policy

We are very plea­sed about your inte­rest in in our com­pa­ny. Data pro­tec­tion has a par­ti­cu­lar­ly high prio­ri­ty for the manage­ment of Net­Co Pro­fes­sio­nal Ser­vices GmbH. A The use of the Inter­net sides of the Net­Co Pro­fes­sio­nal Ser­vices GmbH is pos­si­ble pos­si­ble without any indi­ca­ti­on of per­so­nal data. If a data sub­ject wants to use spe­cial ser­vices of our enter­pri­se via our web­site our web­site, howe­ver, pro­ces­sing of per­so­nal data could beco­me necessa­ry. pro­ces­sing of per­so­nal data could beco­me necessa­ry. If the pro­ces­sing of per­so­nal data is necessa­ry and the­re is no legal basis for such such pro­ces­sing does not have a legal basis, we will gene­ral­ly obtain the con­sent of the data subject.

The pro­ces­sing of per­so­nal data, for examp­le the name, address, e‑mail address or tele­pho­ne num­ber of a data sub­ject tele­pho­ne num­ber of a data sub­ject shall always be in line with the the Gene­ral Data Pro­tec­tion Regu­la­ti­on and in accordance with the coun­try-spe­ci­fic pro­vi­si­ons app­li­ca­ble to the Net­Co Pro­fes­sio­nal Ser­vices GmbH app­li­ca­ble coun­try-spe­ci­fic Data Pro­tec­tion Act. By means of this data pro­tec­tion decla­ra­ti­on, our com­pa­ny would like to the public about the natu­re, scope and pur­po­se of the data that we collec­ted, used and pro­ces­sed per­so­nal data by us. and pro­ces­sed by us. Fur­ther­mo­re, data sub­jects are infor­med by means of this data pro­tec­tion decla­ra­ti­on about the rights to which they are entitled.

The Net­Co Pro­fes­sio­nal Ser­vices GmbH has as the con­trol­ler, has imple­men­ted nume­rous tech­ni­cal and mea­su­res to ensu­re the most com­ple­te pro­tec­tion of per­so­nal data pro­ces­sed through this web­site. pro­tec­tion of per­so­nal data pro­ces­sed through this web­site. data pro­ces­sed via this web­site. Nevertheless, Inter­net-based data Inter­net-based data trans­mis­si­ons can have secu­ri­ty vul­nera­bi­li­ties, so that an abso­lu­te abso­lu­te pro­tec­tion can­not be gua­ran­te­ed. For this rea­son every data sub­ject is free to trans­mit per­so­nal data to us in alter­na­ti­ve alter­na­ti­ve ways, for examp­le by tele­pho­ne, to trans­mit per­so­nal data to us.

1. Defi­ni­ti­ons

The pri­va­cy poli­cy of Net­Co Pro­fes­sio­nal Ser­vices GmbH is based on the con­cepts set out by the used by the Euro­pean Direc­ti­ve and Regu­la­ti­on Maker when enac­ting the Data Pro­tec­tion Regu­la­ti­on (DSGVO). Our pri­va­cy poli­cy is inten­ded to be easi­ly read­a­ble for the public as well as for our cus­to­mers and busi­ness part­ners to be easy to read and under­stand. To ensu­re this, we would like to exp­lain the terms used in advan­ce. exp­lain the terms used.

We use the fol­lowing terms, among others, in this pri­va­cy policy:

  • a) Per­so­nal data

    Per­so­nal data means any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (her­ein­af­ter “data sub­ject”). An iden­ti­fia­ble natu­ral per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­ti­cu­lar by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or to one or more fac­tors spe­ci­fic to the phy­si­cal, phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or social iden­ti­ty of that natu­ral person.

  • b) Per­son concerned

    Data sub­ject means any iden­ti­fied or iden­ti­fia­ble natu­ral per­son who­se per­so­nal data are pro­ces­sed by the controller.

  • c) Pro­ces­sing

    Pro­ces­sing is any ope­ra­ti­on or set of ope­ra­ti­ons which is per­for­med upon per­so­nal data, whe­ther or not by auto­ma­tic means, such as collec­tion, record­ing, orga­ni­sa­ti­on, filing, sto­rage, adap­t­ati­on or alte­ra­ti­on, retrie­val, con­sul­ta­ti­on, use, dis­clo­sure by trans­mis­si­on, dis­se­mi­na­ti­on or other­wi­se making avail­ab­le, align­ment or com­bi­na­ti­on, restric­tion, era­su­re or destruction.

  • d) Restric­tion of processing

    Restric­tion of pro­ces­sing is the mar­king of stored per­so­nal data with the aim of limi­t­ing their future processing.

  • e) Pro­filing

    Pro­filing is any type of auto­ma­ted pro­ces­sing of per­so­nal data which con­sists in using such data to deter­mi­ne per­so­nal data are used to eva­lua­te cer­tain per­so­nal aspects rela­ting to a natu­ral per­son, in par­ti­cu­lar to eva­lua­te aspects rela­ting to work per­for­mance, eco­no­mic situa­ti­on health, per­so­nal pre­fe­ren­ces, inte­rests, relia­bi­li­ty, beha­viour, whe­rea­bouts or chan­ge of loca­ti­on, beha­viour, loca­ti­on or chan­ge of resi­dence of that natu­ral per­son. ana­ly­se or predict.

  • f) Pseud­ony­mi­sa­ti­on

    Pseud­ony­mi­sa­ti­on is the pro­ces­sing of per­so­nal data in such a way that the per­so­nal data can no lon­ger be attri­bu­t­ed to a spe­ci­fic data sub­ject without the use of addi­tio­nal infor­ma­ti­on, pro­vi­ded that such addi­tio­nal infor­ma­ti­on is kept sepa­r­ate­ly and is sub­ject to tech­ni­cal and orga­ni­sa­tio­nal mea­su­res to ensu­re that the per­so­nal data is not attri­bu­t­ed to an iden­ti­fied or iden­ti­fia­ble natu­ral person.

  • g) Con­trol­ler or per­son respon­si­ble for processing

    The con­trol­ler or per­son respon­si­ble for pro­ces­sing is the natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which alo­ne or joint­ly with others deter­mi­nes the pur­po­ses and means of the pro­ces­sing of per­so­nal data. Whe­re the pur­po­ses and means of such pro­ces­sing are deter­mi­ned by Uni­on or Mem­ber Sta­te law, the con­trol­ler or the spe­ci­fic cri­te­ria for its desi­gna­ti­on may be pro­vi­ded for under Uni­on or Mem­ber Sta­te law.

  • h) Pro­ces­sors

    A pro­ces­sor is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which pro­ces­ses pro­ces­ses per­so­nal data on behalf of the controller.

  • i) Reci­pi­ent

    A reci­pi­ent is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body to whom per­so­nal data are dis­c­lo­sed, whe­ther or not a third par­ty. Howe­ver, public aut­ho­ri­ties that may recei­ve per­so­nal data in the con­text of a spe­ci­fic inves­ti­ga­ti­ve task under Uni­on or Mem­ber Sta­te law shall not be con­si­de­red as recipients.

  • j) Third party

    Third par­ty means a natu­ral or per­son, public aut­ho­ri­ty, agen­cy or other body other than the data sub­ject, the per­son con­cer­ned, the con­trol­ler, the pro­ces­sor and the per­sons who, under the direct respon­si­bi­li­ty of the the con­trol­ler or the pro­ces­sor who are aut­ho­ri­sed to pro­cess the pro­cess the per­so­nal data.

  • k) Con­sent

    Con­sent shall mean any free­ly given spe­ci­fic and infor­med indi­ca­ti­on of the data subject’s wis­hes in the form of a state­ment or other unam­bi­guous affir­ma­ti­ve act by which the data sub­ject signi­fies his or her agree­ment to the pro­ces­sing of per­so­nal data rela­ting to him or her.

2. The name and address of the controller

The respon­si­ble par­ty wit­hin the mea­ning of the Gene­ral Data Pro­tec­tion Regu­la­ti­on, other data pro­tec­tion laws app­li­ca­ble in the Mem­ber Sta­tes of the Euro­pean Uni­on and other pro­vi­si­ons of a data pro­tec­tion natu­re is:

Net­Co Pro­fes­sio­nal Ser­vices GmbH At the Mön­chen­fel­de 13 38889 Blan­ken­burg (Harz) Ger­ma­ny Pho­ne: +49 3944 950–0 E‑mail: info@netco.de web­site: https://www.netco.de

3. Coo­kies

The Inter­net pages of Net­Co Pro­fes­sio­nal Ser­vices GmbH use coo­kies. Coo­kies are text files which are stored on a com­pu­ter sys­tem via an inter­net brow­ser. and stored on a com­pu­ter system.

Nume­rous web­sites and ser­vers use coo­kies. Many coo­kies con­tain a so-cal­led coo­kie ID. A coo­kie ID is a uni­que iden­ti­fier of the coo­kie. It con­sists of a string of cha­rac­ters by which inter­net pages and ser­vers can be assi­gned to the spe­ci­fic inter­net brow­ser in which the coo­kie was stored. This enab­les the visi­ted Inter­net pages and ser­vers to dis­tin­guish the indi­vi­du­al brow­ser of the data sub­ject from other Inter­net brow­sers that con­tain other coo­kies. A spe­ci­fic inter­net brow­ser can be reco­gnis­ed and iden­ti­fied via the uni­que coo­kie ID.

Through the use of coo­kies, the Net­Co Pro­fes­sio­nal Ser­vices GmbH can pro­vi­de the users of this web­site with more user-friend­ly ser­vices that would not be pos­si­ble without the coo­kie setting.

By means of a coo­kie, the infor­ma­ti­on and offers on our web­site can be opti­mi­sed in the sen­se of the user. As alrea­dy men­tio­ned, coo­kies enab­le us to reco­gni­se the users of our web­site. The pur­po­se of this reco­gni­ti­on is to make it easier for users to use our web­site. For examp­le, the user of a web­site that uses coo­kies does not have to re-enter his or her access data each time he or she visits the web­site, becau­se this is done by the web­site and the coo­kie stored on the user’s com­pu­ter sys­tem. Ano­t­her examp­le is the coo­kie of a shop­ping bas­ket in an online shop. The online shop remem­bers the items that a cus­to­mer has pla­ced in the vir­tu­al shop­ping bas­ket via a cookie.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the Inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Fur­ther­mo­re, coo­kies that have alrea­dy been set can be dele­ted at any time via an inter­net brow­ser or other soft­ware pro­gram­mes. This is pos­si­ble in all com­mon inter­net brow­sers. If the data sub­ject deac­ti­va­tes the set­ting of coo­kies in the Inter­net brow­ser used, not all func­tions of our web­site may be ful­ly usable.

a) Coo­kies through social media plugins

Auf unse­rer Web­sei­te wer­den Ver­lin­kun­gen zu unse­ren Social Media Sei­ten bereit­ge­stellt (You­Tube, Lin­kedIn, Xing, Face­book, Insta­gram), was durch die Ein­bet­tung eines Social Media Plugins geschieht („sozia­le Netz­werk-Icons des Page­buil­ders Ele­men­tor“). Dadurch kön­nen Coo­kies über vie­le Web­sei­ten hin­weg ver­wen­det wer­den und Infor­ma­tio­nen über Ihre Online-Akti­vi­tä­ten sam­meln. Die­se Coo­kies wer­den durch Dritt­an­bie­ter wie Wer­be- oder Ana­ly­se­un­ter­neh­men (sozia­le Netz­wer­ke) gesetzt.

4. Collec­tion of gene­ral data and information

The web­site of the Net­Co Pro­fes­sio­nal Ser­vices GmbH collects a seri­es of gene­ral data and infor­ma­ti­on every time a data sub­ject or auto­ma­ted sys­tem calls up the web­site. This gene­ral data and infor­ma­ti­on is stored in the log files of the ser­ver. The fol­lowing data may be collec­ted: (1) the brow­ser types and ver­si­ons used, (2) the ope­ra­ting sys­tem used by the acces­sing sys­tem, (3) the web­site from which an acces­sing sys­tem acces­ses our web­site (so-cal­led refer­rer), (4) the sub-web­sites that are acces­sed via an acces­sing sys­tem on our web­site, (5) the date and time of access to the web­site, (6) an Inter­net pro­to­col address (IP address), (7) the Inter­net ser­vice pro­vi­der of the acces­sing sys­tem and (8) other simi­lar data and infor­ma­ti­on that ser­ve to avert dan­ger in the event of attacks on our infor­ma­ti­on tech­no­lo­gy systems.

When using the­se gene­ral data and infor­ma­ti­on, the Net­Co Pro­fes­sio­nal Ser­vices GmbH does not draw any con­clu­si­ons about the data sub­ject. Rather, this infor­ma­ti­on is nee­ded (1) to deli­ver the con­tents of our web­site cor­rect­ly, (2) to opti­mi­se the con­tents of our web­site and the adver­ti­sing for the­se, (3) to ensu­re the long-term ope­ra­bi­li­ty of our infor­ma­ti­on tech­no­lo­gy sys­tems and the tech­no­lo­gy of our web­site, and (4) to pro­vi­de law enfor­ce­ment aut­ho­ri­ties with the infor­ma­ti­on necessa­ry for pro­se­cu­ti­on in the event of a cyber attack. The­re­fo­re, the Net­Co Pro­fes­sio­nal Ser­vices GmbH ana­ly­zes anony­mous­ly collec­ted data and infor­ma­ti­on on one hand, and on the other hand, with the aim of incre­a­sing the data pro­tec­tion and data secu­ri­ty of our enter­pri­se so that we can ulti­mate­ly ensu­re an opti­mal level of pro­tec­tion for the per­so­nal data we pro­cess. The anony­mous data of the ser­ver log files are stored sepa­r­ate­ly from any per­so­nal data pro­vi­ded by a data subject.

5. How to con­ta­ct us via the website

The web­site of the Net­Co Pro­fes­sio­nal Ser­vices GmbH con­tains legal requi­re­ments which enab­le a quick elec­tro­nic con­ta­ct to our enter­pri­se, as well as direct com­mu­ni­ca­ti­on with us, which also inclu­des a gene­ral address of the so-cal­led elec­tro­nic mail (e‑mail address). If a data sub­ject con­ta­cts the con­trol­ler by e‑mail or by using a con­ta­ct form, the per­so­nal data trans­mit­ted by the data sub­ject will be stored auto­ma­ti­cal­ly. Such per­so­nal data trans­mit­ted on a vol­un­ta­ry basis by a data sub­ject to the con­trol­ler will be stored for the pur­po­ses of pro­ces­sing or con­ta­c­ting the data sub­ject. This per­so­nal data will not be dis­c­lo­sed to third parties.

a) Use of Goog­le reCAPTCHA

reCAP­T­CHA is a free cap­t­cha ser­vice from Goog­le that pro­tects web­sites from spam soft­ware and abu­se by non-human visi­tors. The most com­mon use of this ser­vice is when you fill out forms on the inter­net. A cap­t­cha ser­vice is a kind of auto­ma­tic Turing test desi­gned to ensu­re that an action on the inter­net is per­for­med by a human and not a bot. Clas­sic cap­t­chas work with small tasks that are easy for humans to sol­ve but pre­sent signi­fi­cant dif­fi­cul­ties for machi­nes. With reCAP­T­CHA, you no lon­ger have to actively sol­ve puz­zles. The tool uses modern risk tech­ni­ques to dis­tin­guish humans from bots. Here you only have to tick the text field “I am not a robot” or with Invi­si­ble reCAP­T­CHA — which we use — even that is no lon­ger necessary.

By using reCAP­T­CHA, data is trans­mit­ted to Goog­le to deter­mi­ne whe­ther you are real­ly a human being. reCAP­T­CHA the­re­fo­re ser­ves the secu­ri­ty of our web­site and sub­se­quent­ly also your secu­ri­ty. For examp­le, without reCAP­T­CHA it could hap­pen that a bot regis­ters as many email addres­ses as pos­si­ble during regis­tra­ti­on in order to “spam” forums or blogs with unwan­ted adver­ti­sing con­tent. With reCAP­T­CHA, we can avoid such bot attacks.

reCAP­T­CHA collects per­so­nal data from users in order to deter­mi­ne whe­ther the actions on our web­site actual­ly ori­gi­na­te from peop­le. The IP address and other data requi­red by Goog­le for the reCAP­T­CHA ser­vice may the­re­fo­re be sent to Goog­le. IP addres­ses are almost always shor­ten­ed befo­re­hand wit­hin the mem­ber sta­tes of the EU or other con­trac­ting sta­tes to the Agree­ment on the Euro­pean Eco­no­mic Area befo­re the data ends up on a ser­ver in the USA. The IP address is not com­bi­ned with other data from Goog­le unless you are log­ged in with your Goog­le account while using reCAP­T­CHA. First, the reCAP­T­CHA algo­rithm checks whe­ther Goog­le coo­kies from other Goog­le ser­vices (You­Tube. Gmail, etc.) are alrea­dy pla­ced on your brow­ser. Then, reCAP­T­CHA sets an addi­tio­nal coo­kie in your brow­ser and cap­tures a snapshot of your brow­ser window.

The fol­lowing list of collec­ted brow­ser and user data does not claim to be com­ple­te. Rather, they are examp­les of data that, to our know­ledge, are pro­ces­sed by Google.

  • Refer­rer URL (the address of the page from which the visi­tor comes)

  • IP address (e.g. 256.123.123.1)

  • Info about the ope­ra­ting sys­tem (the soft­ware that enab­les your com­pu­ter to run. Known ope­ra­ting sys­tems are Win­dows, Mac OS X or Linux).

  • Coo­kies (small text files that store data in your browser)

  • Mou­se and key­board beha­viour (every action you per­form with the mou­se or key­board is saved)

  • Date and lan­guage set­tings (which lan­guage or date you have pre­set on your PC will be saved).

  • All Java­Script objects (Java­Script is a pro­gramming lan­guage that allows web­sites to adapt to the user. Java­Script objects can collect all kinds of data under one name).

  • Screen reso­lu­ti­on (shows how many pixels the image dis­play con­sists of)

It is undis­pu­ted that Goog­le uses and ana­ly­ses this data even befo­re you click on the “I am not a robot” check­box. With the Invi­si­ble reCAP­T­CHA ver­si­on, even the ticking is omit­ted and the ent­i­re reco­gni­ti­on pro­cess runs in the back­ground. Goog­le does not tell you in detail how much and which data it stores.

If you do not want any data about you and your beha­viour to be trans­mit­ted to Goog­le, you must log out of Goog­le com­ple­te­ly and dele­te all Goog­le coo­kies befo­re you visit our web­site or use the reCAP­T­CHA soft­ware. In princip­le, data is auto­ma­ti­cal­ly trans­mit­ted to Goog­le as soon as you visit our site. To dele­te this data again, you must con­ta­ct Goog­le sup­port at  https://support.google.com/?hl=de&tid=331589808227 .

The­re­fo­re, by using our web­site, you con­sent to the auto­ma­tic collec­tion, pro­ces­sing and use of data by Goog­le LLC and its agents.

You can learn a litt­le more about reCAP­T­CHA on Google’s web deve­lo­per page at https://developers.google.com/recaptcha/.

6. Rou­ti­ne dele­ti­on and blo­cking of per­so­nal data

The con­trol­ler shall pro­cess and store per­so­nal data of the data sub­ject only for the time necessa­ry to achie­ve the pur­po­se of sto­rage or whe­re pro­vi­ded for by the Euro­pean Direc­ti­ve and Regu­la­ti­on or other legis­la­tor in laws or regu­la­ti­ons to which the con­trol­ler is subject.

If the pur­po­se of sto­rage no lon­ger app­lies or if a sto­rage peri­od pre­scri­bed by the Euro­pean Direc­ti­ve and Regu­la­ti­on or ano­t­her com­pe­tent legis­la­tor expi­res, the per­so­nal data will be rou­ti­nely blo­cked or dele­ted in accordance with the sta­tu­to­ry provisions.

7. Rights of the data subject

  • a) Right to confirmation

    Every data sub­ject has the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to obtain con­fir­ma­ti­on from the con­trol­ler as to whe­ther per­so­nal data con­cer­ning him or her are being pro­ces­sed. If a data sub­ject wis­hes to exer­cise this right, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the controller.

  • b) Right to information

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to obtain from the con­trol­ler, at any time and free of char­ge, infor­ma­ti­on about the per­so­nal data stored about him or her and a copy of that infor­ma­ti­on. Fur­ther­mo­re, the Euro­pean Direc­ti­ve and Regu­la­ti­on has gran­ted the data sub­ject access to the fol­lowing information:

    • the pro­ces­sing purposes

    • the cate­go­ries of per­so­nal data that are processed

    • the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­so­nal data have been or will be dis­c­lo­sed, in par­ti­cu­lar in the case of reci­pi­ents in third coun­tries or inter­na­tio­nal organisations

    • if pos­si­ble, the plan­ned dura­ti­on for which the per­so­nal data will be stored or, if this is not pos­si­ble, the cri­te­ria for deter­mi­ning this duration

    • the exis­tence of a right to obtain the rec­ti­fi­ca­ti­on or era­su­re of per­so­nal data con­cer­ning them or to obtain the restric­tion of pro­ces­sing by the con­trol­ler or a right to object to such processing

    • the exis­tence of a right of appeal to a super­vi­so­ry authority

    • if the per­so­nal data are not collec­ted from the data sub­ject: All avail­ab­le infor­ma­ti­on on the ori­gin of the data

    • the exis­tence of auto­ma­ted decisi­on-making, inclu­ding pro­filing, pur­suant to Arti­cle 22(1) and (4) of the GDPR and, at least in the­se cases, mea­ning­ful infor­ma­ti­on about the logic invol­ved and the scope and inten­ded effects of such pro­ces­sing for the data subject

    Fur­ther­mo­re, the data sub­ject has the right to be infor­med whe­ther per­so­nal data have been trans­fer­red to a third coun­try or to an inter­na­tio­nal orga­ni­sa­ti­on. If this is the case, the data sub­ject also has the right to obtain infor­ma­ti­on on the appro­pria­te safe­guards in con­nec­tion with the transfer.

    If a data sub­ject wis­hes to exer­cise this right of access, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the controller.

  • c) Right of rectification

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on to obtain the rec­ti­fi­ca­ti­on without delay of inac­cu­ra­te per­so­nal data rela­ting to him or her. Fur­ther­mo­re, the data sub­ject has the right to request the com­ple­ti­on of incom­ple­te per­so­nal data, inclu­ding by means of a sup­ple­men­ta­ry decla­ra­ti­on, taking into account the pur­po­ses of the processing.

    If a data sub­ject wis­hes to exer­cise this right of rec­ti­fi­ca­ti­on, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the controller.

  • d) Right to era­su­re (right to be forgotten)

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to obtain from the con­trol­ler the era­su­re without delay of per­so­nal data con­cer­ning him or her, whe­re one of the fol­lowing grounds app­lies and inso­far as the pro­ces­sing is not necessary:

    • The per­so­nal data were collec­ted or other­wi­se pro­ces­sed for pur­po­ses for which they are no lon­ger necessary.

    • The data sub­ject revo­kes the con­sent on which the pro­ces­sing was based pur­suant to Arti­cle 6(1)(a) of the GDPR or Arti­cle 9(2)(a) of the GDPR and the­re is no other legal basis for the processing.

    • The data sub­ject objects to the pro­ces­sing pur­suant to Arti­cle 21(1) of the GDPR and the­re are no over­ri­ding legi­ti­ma­te grounds for the pro­ces­sing, or the data sub­ject objects to the pro­ces­sing pur­suant to Arti­cle 21(2) of the GDPR.

    • The per­so­nal data have been pro­ces­sed unlawfully.

    • The dele­ti­on of the per­so­nal data is necessa­ry for com­pli­an­ce with a legal obli­ga­ti­on under Uni­on or Mem­ber Sta­te law to which the con­trol­ler is subject.

    • The per­so­nal data was collec­ted in rela­ti­on to infor­ma­ti­on socie­ty ser­vices offe­red pur­suant to Art. 8(1) DSGVO.

    If one of the afo­re­men­tio­ned rea­sons app­lies, and a data sub­ject wis­hes to arran­ge for the dele­ti­on of per­so­nal data stored by the Net­Co Pro­fes­sio­nal Ser­vices GmbH, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the con­trol­ler. The data pro­tec­tion offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­t­her employee shall arran­ge for the dele­ti­on request to be com­plied with immediately.

    If the per­so­nal data has been made public by the Net­Co Pro­fes­sio­nal Ser­vices GmbH and our com­pa­ny as the respon­si­ble par­ty is obli­ged to dele­te the per­so­nal data pur­suant to Art. 17 Para. 1 DSGVO, Net­Co Pro­fes­sio­nal Ser­vices GmbH shall imple­ment rea­son­ab­le mea­su­res, inclu­ding tech­ni­cal mea­su­res, to com­pen­sa­te other data con­trol­lers for pro­ces­sing the per­so­nal data publis­hed, taking into account the avail­ab­le tech­no­lo­gy and the cost of imple­men­ta­ti­on, in order to inform the data sub­ject that he or she has reques­ted from tho­se other data con­trol­lers to era­se all links to or copies or repli­ca­ti­ons of the per­so­nal data, unless the pro­ces­sing is necessa­ry. The Data Pro­tec­tion Offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­t­her employee will arran­ge the necessa­ry in indi­vi­du­al cases.

  • e) Right to restric­tion of processing

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to obtain from the con­trol­ler the restric­tion of pro­ces­sing whe­re one of the fol­lowing con­di­ti­ons is met:

    • The accu­ra­cy of the per­so­nal data is con­tes­ted by the data sub­ject for a peri­od enab­ling the con­trol­ler to veri­fy the accu­ra­cy of the per­so­nal data.

    • The pro­ces­sing is unlaw­ful, the data sub­ject objects to the era­su­re of the per­so­nal data and requests ins­tead the restric­tion of the use of the per­so­nal data.

    • The con­trol­ler no lon­ger needs the per­so­nal data for the pur­po­ses of pro­ces­sing, but the data sub­ject needs it for the estab­lish­ment, exer­cise or defence of legal claims.

    • The data sub­ject has objec­ted to the pro­ces­sing pur­suant to Arti­cle 21(1) of the GDPR and it is not yet clear whe­ther the legi­ti­ma­te grounds of the con­trol­ler over­ri­de tho­se of the data subject.

    If one of the afo­re­men­tio­ned con­di­ti­ons is met, and a data sub­ject wis­hes to request the restric­tion of per­so­nal data stored by the Net­Co Pro­fes­sio­nal Ser­vices GmbH, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the con­trol­ler. The data pro­tec­tion offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­t­her employee will arran­ge the restric­tion of the processing.

  • f) Right to data portability

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to recei­ve the per­so­nal data con­cer­ning him or her, which have been pro­vi­ded by the data sub­ject to a con­trol­ler, in a struc­tu­red, com­mon­ly used and machi­ne-read­a­ble for­mat. The data sub­ject shall also have the right to trans­mit such data to ano­t­her con­trol­ler without hin­dran­ce from the con­trol­ler to whom the per­so­nal data have been pro­vi­ded, pro­vi­ded that the pro­ces­sing is based on con­sent pur­suant to Arti­cle 6(1)(a) of the GDPR or Arti­cle 9(2)(a) of the GDPR or on a con­tract pur­suant to Arti­cle 6(1)(b) of the GDPR and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, unless the pro­ces­sing is necessa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest or in the exer­cise of offi­cial aut­ho­ri­ty ves­ted in the controller.

  • Fur­ther­mo­re, when exer­cis­ing his or her right to data por­ta­bi­li­ty pur­suant to Arti­cle 20(1) of the GDPR, the data sub­ject shall have the right to obtain that the per­so­nal data be trans­fer­red direct­ly from one con­trol­ler to ano­t­her con­trol­ler, to the extent that this is tech­ni­cal­ly fea­si­ble and pro­vi­ded that this does not adver­se­ly affect the rights and free­doms of other individuals.

    In order to assert the right to data por­ta­bi­li­ty, the data sub­ject may at any time con­ta­ct the data pro­tec­tion offi­cer appoin­ted by the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­t­her employee.

  • g) Right to object

    Any per­son affec­ted by the pro­ces­sing of per­so­nal data shall have the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to object at any time, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to the pro­ces­sing of per­so­nal data con­cer­ning him or her which is car­ri­ed out on the basis of Arti­cle 6(1)(e) or (f) DSGVO. This also app­lies to pro­filing based on the­se provisions.

    The Net­Co Pro­fes­sio­nal Ser­vices GmbH shall no lon­ger pro­cess the per­so­nal data in the event of the objec­tion, unless we can demons­tra­te com­pel­ling legi­ti­ma­te grounds for the pro­ces­sing which over­ri­de the inte­rests, rights and free­doms of the data sub­ject, or for the asser­ti­on, exer­cise or defence of legal claims.

    If the Net­Co Pro­fes­sio­nal Ser­vices GmbH pro­ces­ses per­so­nal data for the pur­po­se of direct mar­ke­ting, the data sub­ject shall have the right to object at any time to pro­ces­sing of per­so­nal data pro­ces­sed for such mar­ke­ting. This also app­lies to the pro­filing, inso­far as it is rela­ted to such direct mar­ke­ting. If the data sub­ject objects to Net­Co Pro­fes­sio­nal Ser­vices GmbH to the pro­ces­sing for direct mar­ke­ting pur­po­ses, Net­Co Pro­fes­sio­nal Ser­vices GmbH will no lon­ger pro­cess the per­so­nal data for the­se purposes.

    In addi­ti­on, the data sub­ject has the right, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to object to pro­ces­sing of per­so­nal data con­cer­ning him or her which is car­ri­ed out by the Net­Co Pro­fes­sio­nal Ser­vices GmbH for sci­en­ti­fic or his­to­ri­cal rese­arch pur­po­ses, or for sta­tis­ti­cal pur­po­ses pur­suant to Arti­cle 89(1) of the Data Pro­tec­tion Regu­la­ti­on, unless such pro­ces­sing is necessa­ry for the per­for­mance of a task car­ri­ed out for rea­sons of public interest.

    In order to exer­cise the right to object, the data sub­ject may direct­ly con­ta­ct the Data Pro­tec­tion Offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­t­her employee. The data sub­ject is also free to exer­cise his/her right to object by means of auto­ma­ted pro­ce­du­res using tech­ni­cal spe­ci­fi­ca­ti­ons in con­nec­tion with the use of infor­ma­ti­on socie­ty ser­vices, not­with­stan­ding Direc­ti­ve 2002/58/EC.

  • h) Auto­ma­ted decisi­ons in indi­vi­du­al cases inclu­ding profiling

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, not to be sub­ject to a decisi­on based sole­ly on auto­ma­ted pro­ces­sing, inclu­ding pro­filing, which pro­du­ces legal effects con­cer­ning him or her or simi­lar­ly signi­fi­cant­ly affects him or her, pro­vi­ded that the decisi­on (1) is not necessa­ry for ent­e­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the con­trol­ler, or (2) is aut­ho­ri­sed by Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject and that such law lays down appro­pria­te mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, or (3) is made with the data subject’s expli­cit consent.

    If the decisi­on (1) is necessa­ry for ent­e­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the data con­trol­ler, or (2) it is made with the data subject’s expli­cit con­sent, Net­Co Pro­fes­sio­nal Ser­vices GmbH shall imple­ment sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, which inclu­de at least the right to obtain the data subject’s invol­ve­ment on the part of the con­trol­ler, to express his or her point of view and con­test the decision.

    If the data sub­ject wis­hes to exer­cise the rights con­cer­ning auto­ma­ted decisi­ons, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the controller.

  • i) Right to revo­ke con­sent under data pro­tec­tion law

    Any per­son affec­ted by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to with­draw con­sent to the pro­ces­sing of per­so­nal data at any time.

    If the data sub­ject wis­hes to exer­cise the right to with­draw the con­sent, he or she may, at any time, con­ta­ct our data pro­tec­tion offi­cer or ano­t­her employee of the controller.

8. Data pro­tec­tion in app­li­ca­ti­ons and in the app­li­ca­ti­on procedure

The con­trol­ler collects and pro­ces­ses the per­so­nal data of app­li­cants for the pur­po­se of mana­ging the app­li­ca­ti­on pro­ce­du­re. The pro­ces­sing may also be car­ri­ed out by elec­tro­nic means. This is in par­ti­cu­lar the case when an app­li­cant sub­mits rele­vant app­li­ca­ti­on docu­ments to the con­trol­ler by elec­tro­nic means, for examp­le by e‑mail or via a web form avail­ab­le on the web­site. If the con­trol­ler con­clu­des an employ­ment con­tract with an app­li­cant, the trans­mit­ted data will be stored for the pur­po­se of pro­ces­sing the employ­ment rela­ti­ons­hip in com­pli­an­ce with the sta­tu­to­ry pro­vi­si­ons. If the con­trol­ler does not con­clu­de an employ­ment con­tract with the app­li­cant, the app­li­ca­ti­on docu­ments are auto­ma­ti­cal­ly dele­ted two mon­ths after the noti­fi­ca­ti­on of the rejec­tion decisi­on, pro­vi­ded that no other legi­ti­ma­te inte­rests of the con­trol­ler con­flict with such dele­ti­on. Other legi­ti­ma­te inte­rest in this sen­se is, for examp­le, a duty to pro­vi­de evi­dence in pro­cee­dings under the Gene­ral Equal Tre­at­ment Act (AGG).

9. Pri­va­cy poli­cy on the use and app­li­ca­ti­on of Goog­le Ana­ly­tics (with anony­mi­sa­ti­on function)

The con­trol­ler has inte­gra­ted the Goog­le Ana­ly­tics com­po­nent (with anony­mi­sa­ti­on func­tion) on this web­site. Goog­le Ana­ly­tics is a web ana­ly­sis ser­vice. Web ana­ly­sis is the collec­tion, com­pi­la­ti­on and eva­lua­ti­on of data about the beha­viour of visi­tors to web­sites. Among other things, a web ana­ly­sis ser­vice collects data on the web­site from which a data sub­ject has acces­sed a web­site (so-cal­led refer­rers), which sub-pages of the web­site have been acces­sed or how often and for how long a sub-page has been view­ed. A web ana­ly­sis is main­ly used to opti­mi­se a web­site and to ana­ly­se the cos­ts and bene­fits of inter­net advertising.

The ope­ra­tor of the Goog­le Ana­ly­tics com­po­nent is Goog­le Inc., 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, USA.

The con­trol­ler uses the addi­ti­on “_gat._anonymizeIp” for web ana­ly­sis via Goog­le Ana­ly­tics. By means of this addi­ti­on, the IP address of the Inter­net con­nec­tion of the data sub­ject is shor­ten­ed and anony­mi­sed by Goog­le if access to our Inter­net pages is made from a mem­ber sta­te of the Euro­pean Uni­on or from ano­t­her sta­te par­ty to the Agree­ment on the Euro­pean Eco­no­mic Area.

The pur­po­se of the Goog­le Ana­ly­tics com­po­nent is to ana­ly­se the flow of visi­tors to our web­site. Goog­le uses the data and infor­ma­ti­on obtai­ned, among other things, to eva­lua­te the use of our web­site, to com­pi­le online reports for us showing the acti­vi­ties on our web­site and to pro­vi­de other ser­vices in con­nec­tion with the use of our website.

Goog­le Ana­ly­tics sets a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. What coo­kies are has alrea­dy been exp­lai­ned abo­ve. By set­ting the coo­kie, Goog­le is enab­led to ana­ly­se the use of our web­site. Each time one of the indi­vi­du­al pages of this web­site ope­ra­ted by the data con­trol­ler is cal­led up and on which a Goog­le Ana­ly­tics com­po­nent has been inte­gra­ted, the inter­net brow­ser on the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem is auto­ma­ti­cal­ly cau­sed by the respec­ti­ve Goog­le Ana­ly­tics com­po­nent to trans­mit data to Goog­le for the pur­po­se of online ana­ly­sis. As part of this tech­ni­cal pro­cess, Goog­le obtains know­ledge of per­so­nal data, such as the IP address of the data sub­ject, which Goog­le uses, among other things, to track the ori­gin of visi­tors and clicks and sub­se­quent­ly to enab­le com­mis­si­on calculations.

By means of the coo­kie, per­so­nal infor­ma­ti­on, for examp­le the access time, the loca­ti­on from which an access ori­gi­na­ted and the fre­quen­cy of visits to our web­site by the data sub­ject, is stored. Each time the data sub­ject visits our web­site, this per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may pass on this per­so­nal data collec­ted via the tech­ni­cal pro­cess to third parties.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site, as alrea­dy descri­bed abo­ve, at any time by means of an appro­pria­te set­ting of the inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the Inter­net brow­ser used would also pre­vent Goog­le from set­ting a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alrea­dy set by Goog­le Ana­ly­tics can be dele­ted at any time via the inter­net brow­ser or other soft­ware programmes.

Fur­ther­mo­re, the data sub­ject has the opti­on to object to the collec­tion of data gene­ra­ted by Goog­le Ana­ly­tics and rela­ted to the use of this web­site as well as to the pro­ces­sing of this data by Goog­le and to pre­vent such pro­ces­sing. For this pur­po­se, the data sub­ject must down­load and install a brow­ser add-on at the link https://tools.google.com/dlpage/gaoptout . This brow­ser add-on tells Goog­le Ana­ly­tics via Java­Script that no data and infor­ma­ti­on about visits to web­sites may be trans­mit­ted to Goog­le Ana­ly­tics. The instal­la­ti­on of the brow­ser add-on is con­si­de­red by Goog­le as an objec­tion. If the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem is dele­ted, for­mat­ted or reinstal­led at a later date, the data sub­ject must reinstall the brow­ser add-on in order to deac­ti­va­te Goog­le Ana­ly­tics. If the brow­ser add-on is unin­stal­led or deac­ti­va­ted by the data sub­ject or ano­t­her per­son wit­hin his or her con­trol, it is pos­si­ble to reinstall or reac­ti­va­te the brow­ser add-on.

Fur­ther infor­ma­ti­on and the app­li­ca­ble pri­va­cy poli­cy of Goog­le can be found at https://www.google.de/intl/de/policies/privacy/ and can be retrie­ved under http://www.google.com/analytics/terms/de.html This link exp­lains Goog­le Ana­ly­tics in more detail: https://www.google.com/intl/de_de/analytics/ .

10. Data pro­tec­tion pro­vi­si­ons on the use and app­li­ca­ti­on of Goog­le Ads

The con­trol­ler has inte­gra­ted Goog­le Ads on this web­site. Goog­le Ads is an inter­net adver­ti­sing ser­vice that allows adver­ti­sers to dis­play ads both in Google’s search engi­ne results and in the Goog­le adver­ti­sing net­work. Goog­le Ads allows an adver­ti­ser to spe­ci­fy cer­tain key­words in advan­ce, by means of which an ad is dis­play­ed in Google’s search engi­ne results exclu­si­ve­ly when the user retrie­ves a key­word-rele­vant search result with the search engi­ne. In the Goog­le adver­ti­sing net­work, the ads are dis­tri­bu­t­ed on topic-rele­vant web­sites by means of an auto­ma­tic algo­rithm and in com­pli­an­ce with the pre­vious­ly defi­ned key­words. The ope­ra­ting com­pa­ny of the Goog­le Ads ser­vices is Goog­le Inc., 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, USA.

The pur­po­se of Goog­le Ads is to pro­mo­te our web­site by dis­play­ing inte­rest-rele­vant adver­ti­sing on the web­sites of third-par­ty com­pa­nies and in the search engi­ne results of the Goog­le search engi­ne and to dis­play third-par­ty adver­ti­sing on our web­site. If a data sub­ject acces­ses our web­site via a Goog­le adver­ti­se­ment, a so-cal­led con­ver­si­on coo­kie will be stored by Goog­le on the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem. What coo­kies are has alrea­dy been exp­lai­ned abo­ve. A con­ver­si­on coo­kie loses its vali­di­ty after thir­ty days and does not ser­ve to iden­ti­fy the data sub­ject. The con­ver­si­on coo­kie is used to track whe­ther cer­tain sub-pages, for examp­le the shop­ping bas­ket of an online shop sys­tem, have been cal­led up on our web­site, pro­vi­ded the coo­kie has not yet expi­red. The con­ver­si­on coo­kie enab­les both us and Goog­le to track whe­ther a data sub­ject who has acces­sed our web­site via an AdWords ad has gene­ra­ted a sale, i.e. has com­ple­ted or can­cel­led a purcha­se of goods. The data and infor­ma­ti­on collec­ted through the use of the con­ver­si­on coo­kie are used by Goog­le to com­pi­le visit sta­tis­tics for our web­site. The­se visit sta­tis­tics are in turn used by us to deter­mi­ne the total num­ber of users who were refer­red to us via AdWords ads, i.e. to deter­mi­ne the suc­cess or fail­u­re of the respec­ti­ve AdWords ad and to opti­mi­se our AdWords ads for the future. Neit­her our com­pa­ny nor other adver­ti­sers of Goog­le Ads recei­ve infor­ma­ti­on from Goog­le by means of which the data sub­ject could be identified.

By means of the con­ver­si­on coo­kie, per­so­nal infor­ma­ti­on, such as the web­sites visi­ted by the data sub­ject, is stored. Each time the data sub­ject visits our web­site, per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may dis­c­lo­se this per­so­nal data collec­ted via the tech­ni­cal pro­cess to third par­ties. The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the Inter­net brow­ser used, as alrea­dy descri­bed abo­ve, and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the Inter­net brow­ser used would also pre­vent Goog­le from set­ting a con­ver­si­on coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alrea­dy set by Goog­le AdWords can be dele­ted at any time via the inter­net brow­ser or other soft­ware pro­gram­mes. Fur­ther­mo­re, the data sub­ject has the opti­on to object to inte­rest-based adver­ti­sing by Goog­le. To do this, the data sub­ject must call up the link www.google.de/settings/ads from any of the inter­net brow­sers he or she uses and make the desi­red set­tings there.

Fur­ther infor­ma­ti­on and Google’s app­li­ca­ble pri­va­cy poli­cy can be found at https://www.google.de/intl/de/policies/privacy/.

11. Use of Goog­le Remarketing

We also use Google’s remar­ke­ting func­tion. This allows us to play per­so­na­li­sed adver­ti­sing to you on sui­ta­ble adver­ti­sing spaces on other web­sites based on what inte­rests you have shown on our web­site. This opti­on is limi­ted to a maxi­mum of 18 months.

You can find more infor­ma­ti­on on this in the pri­va­cy poli­cy of Goog­le. You can pre­vent inte­rest-based adver­ti­sing with instal­ling this brow­ser plug-in .

12. Use of the Face­book Pixel (Face­book Cus­tom Audiences):

Fur­ther­mo­re, on our web­site we use the so-cal­led “Face­book Pixel” of Face­book Inc. (“Face­book”). This enab­les inte­rest-based adver­ti­se­ments (“Face­book ads”) to be dis­play­ed to users of our web­site when they visit the social net­work Face­book or other web­sites that also use this method. Through the Face­book pixel, your brow­ser auto­ma­ti­cal­ly estab­lis­hes a direct con­nec­tion with the Face­book ser­ver. We have no influ­ence on the scope and fur­ther use of the data collec­ted by Face­book through the use of this tool and the­re­fo­re inform you accord­ing to our sta­te of know­ledge: Through the inte­gra­ti­on of the Face­book pixel, Face­book recei­ves the infor­ma­ti­on that you have cli­cked on one of our adver­ti­se­ments or cal­led up the cor­re­spon­ding web page of our web­site. If you are regis­tered with a Face­book ser­vice, Face­book can assign the visit to your account. Even if you are not regis­tered with Face­book or have not log­ged in, it is pos­si­ble that the pro­vi­der will learn and store your IP address and other iden­ti­fy­ing features.

With the use of the Face­book pixel, we pur­sue the pur­po­se of only dis­play­ing Face­book ads pla­ced by us to tho­se Face­book users who have also shown an inte­rest in our inter­net offer. With the help of the Face­book pixel, we want to ensu­re that our Face­book ads cor­re­spond to the poten­ti­al inte­rest of the users and do not have a haras­sing effect. Fur­ther­mo­re, with the help of the Face­book pixel, we can track the effec­ti­ve­ness of Face­book ads for sta­tis­ti­cal pur­po­ses by see­ing whe­ther users were redi­rec­ted to our web­site after cli­cking on a Face­book ad. The legal basis for the use of the Face­book Pixel is Art. 6 para. 1 lit. f DSGVO.

Third par­ty infor­ma­ti­on: Face­book Inc., 1601 S Cali­for­nia Ave, Palo Alto, Cali­for­nia 94304, USA; http://www.facebook.com/policy.php; Fur­ther infor­ma­ti­on on data collec­tion: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http: //www.facebook .com / about / pri­va­cy / your-info # everyoneinfo. 

13. Legal basis of the processing

Arti­cle 6 I let­ter a DSGVO ser­ves as the legal basis for our com­pa­ny for pro­ces­sing ope­ra­ti­ons in which we obtain con­sent for a spe­ci­fic pro­ces­sing pur­po­se. If the pro­ces­sing of per­so­nal data is necessa­ry for the per­for­mance of a con­tract to which the data sub­ject is a par­ty, as is the case, for examp­le, with pro­ces­sing ope­ra­ti­ons that are necessa­ry for the deli­very of goods or the pro­vi­si­on of ano­t­her ser­vice or con­si­de­ra­ti­on, the pro­ces­sing is based on Arti­cle 6 I let­ter b of the GDPR. The same app­lies to pro­ces­sing ope­ra­ti­ons that are necessa­ry for the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res, for examp­le in the case of enqui­ries about our pro­ducts or ser­vices. If our com­pa­ny is sub­ject to a legal obli­ga­ti­on by which the pro­ces­sing of per­so­nal data beco­mes necessa­ry, such as for the ful­film­ent of tax obli­ga­ti­ons, the pro­ces­sing is based on Art. 6 I let­ter c DSGVO. In rare cases, the pro­ces­sing of per­so­nal data might beco­me necessa­ry in order to pro­tect the vital inte­rests of the data sub­ject or ano­t­her natu­ral per­son. This would be the case, for examp­le, if a visi­tor were to be inju­red on our pre­mi­ses and as a result his or her name, age, health insuran­ce details or other vital infor­ma­ti­on had to be pas­sed on to a doc­tor, hos­pi­tal or other third par­ty. Then the pro­ces­sing would be based on Art. 6 I let­ter d DSGVO. Final­ly, pro­ces­sing ope­ra­ti­ons could be based on Art. 6 I let­ter f DSGVO. Pro­ces­sing ope­ra­ti­ons which are not cove­r­ed by any of the afo­re­men­tio­ned legal bases are based on this legal basis if the pro­ces­sing is necessa­ry for the pro­tec­tion of a legi­ti­ma­te inte­rest of our com­pa­ny or a third par­ty, pro­vi­ded that the inte­rests, fun­da­men­tal rights and free­doms of the data sub­ject are not over­rid­den. Such pro­ces­sing ope­ra­ti­ons are per­mit­ted to us in par­ti­cu­lar becau­se they were spe­ci­fi­cal­ly men­tio­ned by the Euro­pean legis­la­tor. In this respect, it took the view that a legi­ti­ma­te inte­rest could be assu­med if the data sub­ject is a cus­to­mer of the con­trol­ler (reci­tal 47, sen­tence 2 of the GDPR).

14. Legi­ti­ma­te inte­rests in the pro­ces­sing pur­sued by the con­trol­ler or a third party

Whe­re the pro­ces­sing of per­so­nal data is based on Arti­cle 6(I)(f) of the GDPR, our legi­ti­ma­te inte­rest is the con­duct of our busi­ness for the bene­fit of the wel­fa­re of all our employees and our shareholders.

15. Dura­ti­on for which the per­so­nal data are stored

The cri­ter­ion for the dura­ti­on of the sto­rage of per­so­nal data is the respec­ti­ve sta­tu­to­ry reten­ti­on peri­od. After expi­ry of the peri­od, the cor­re­spon­ding data is rou­ti­nely dele­ted if it is no lon­ger requi­red for the ful­film­ent or initia­ti­on of the contract.

16. Legal or con­trac­tu­al requi­re­ments to pro­vi­de the per­so­nal data; neces­si­ty for the con­clu­si­on of the con­tract; obli­ga­ti­on of the data sub­ject to pro­vi­de the per­so­nal data; pos­si­ble con­se­quen­ces of not pro­vi­ding the data

We would like to inform you that the pro­vi­si­on of per­so­nal data is some­ti­mes requi­red by law (e.g. tax regu­la­ti­ons) or may also result from con­trac­tu­al regu­la­ti­ons (e.g. infor­ma­ti­on on the con­trac­tu­al part­ner). Some­ti­mes, in order to con­clu­de a con­tract, it may be necessa­ry for a data sub­ject to pro­vi­de us with per­so­nal data that must sub­se­quent­ly be pro­ces­sed by us. For examp­le, the data sub­ject is obli­ged to pro­vi­de us with per­so­nal data if our com­pa­ny con­clu­des a con­tract with him or her. Fail­u­re to pro­vi­de the per­so­nal data would mean that the con­tract with the data sub­ject could not be con­clu­ded. Befo­re pro­vi­ding per­so­nal data by the data sub­ject, the data sub­ject must con­ta­ct our data pro­tec­tion offi­cer. Our data pro­tec­tion offi­cer will inform the data sub­ject on a case-by-case basis whe­ther the pro­vi­si­on of the per­so­nal data is requi­red by law or con­tract or is necessa­ry for the con­clu­si­on of the con­tract, whe­ther the­re is an obli­ga­ti­on to pro­vi­de the per­so­nal data and what the con­se­quen­ces of not pro­vi­ding the per­so­nal data would be.

17. Exis­tence of auto­ma­ted decisi­on making

As a respon­si­ble com­pa­ny, we do not use auto­ma­tic decisi­on-making or profiling.

This data pro­tec­tion decla­ra­ti­on was crea­ted by the data pro­tec­tion decla­ra­ti­on gene­ra­tor of DGD Deut­sche Gesell­schaft für Daten­schutz GmbH, which acts as a Exter­nal Data Pro­tec­tion Offi­cer Schwein­furt in coope­ra­ti­on with the lawy­er for data pro­tec­tion law Chris­ti­an Solmecke.

If you have any ques­ti­ons about our pri­va­cy poli­cy or the data we hold, plea­se con­ta­ct us at the fol­lowing email address: dsb@netco.de.