Pri­va­cy Policy

We are very plea­sed about your inte­rest in our com­pa­ny. Data pro­tec­tion is of a par­ti­cu­lar­ly high prio­ri­ty for the manage­ment of Net­Co Pro­fes­sio­nal Ser­vices GmbH. The use of the Inter­net pages of the Net­Co Pro­fes­sio­nal Ser­vices GmbH is pos­si­ble wit­hout any indi­ca­ti­on of per­so­nal data. Howe­ver, if a data sub­ject wants to use spe­cial ser­vices of our enter­pri­se via our web­site, pro­ces­sing of per­so­nal data could beco­me neces­sa­ry. If pro­ces­sing of per­so­nal data is neces­sa­ry and the­re is no legal basis for such pro­ces­sing, we will gene­ral­ly obtain the data subject’s consent.

The pro­ces­sing of per­so­nal data, such as the name, address, e‑mail address, or tele­pho­ne num­ber of a data sub­ject shall always be in line with the coun­try-spe­ci­fic data pro­tec­tion regu­la­ti­ons appli­ca­ble to the Net­Co Pro­fes­sio­nal Ser­vices GmbH. By means of this data pro­tec­tion decla­ra­ti­on, our enter­pri­se would like to inform the public about the type, scope and pur­po­se of the per­so­nal data we coll­ect, use and pro­cess. Fur­ther­mo­re, data sub­jects are infor­med of their rights by means of this data pro­tec­tion declaration.

As the con­trol­ler, the Net­Co Pro­fes­sio­nal Ser­vices GmbH has imple­men­ted num­e­rous tech­ni­cal and orga­niza­tio­nal mea­su­res to ensu­re the most com­ple­te pro­tec­tion of per­so­nal data pro­ces­sed through this web­site. Howe­ver, inter­net-based data trans­mis­si­ons can always be vul­nerable to secu­ri­ty risks, which means that abso­lu­te pro­tec­tion can­not be gua­ran­teed. For this reason, every data sub­ject is free to trans­mit per­so­nal data to us by alter­na­ti­ve means, for exam­p­le by telephone.

1. Defi­ni­ti­ons

The data pro­tec­tion decla­ra­ti­on of Net­Co Pro­fes­sio­nal Ser­vices GmbH is based on the terms used by the Euro­pean Direc­ti­ve and Ordi­nan­ce when issuing the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR). Our pri­va­cy poli­cy should be easy to read and under­stand for the public as well as for our cus­to­mers and busi­ness part­ners.
To ensu­re this, we would like to explain the terms used in advance.

We use the fol­lo­wing terms, among others, in this Pri­va­cy Policy.:

  • a) Per­so­nal Data

    Per­so­nal data is any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (her­ein­af­ter “data sub­ject”). An iden­ti­fia­ble natu­ral per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­ti­cu­lar by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or one or more fac­tors spe­ci­fic to the phy­si­cal, phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or social iden­ti­ty of that natu­ral person.

  • b)  Data Subject

    Data sub­ject is any iden­ti­fied or iden­ti­fia­ble natu­ral per­son who­se per­so­nal data are pro­ces­sed by the controller.

  • c)  Pro­ces­sing

    Pro­ces­sing means any ope­ra­ti­on or set of ope­ra­ti­ons which is per­for­med upon per­so­nal data, whe­ther or not by auto­ma­tic means, such as coll­ec­tion, recor­ding, orga­niza­ti­on, fil­ing, sto­rage, adapt­a­ti­on or altera­ti­on, retrie­val, con­sul­ta­ti­on, use, dis­clo­sure by trans­mis­si­on, dis­se­mi­na­ti­on or other form of pro­vi­si­ons, ali­gnment or com­bi­na­ti­on, rest­ric­tion, era­su­re or destruction.

  • d)    Rest­ric­tion of processing

    Rest­ric­tion of pro­ces­sing is the mar­king of stored per­so­nal data with the aim of limi­ting their future processing.

  • e)    Pro­fil­ing

    Pro­fil­ing is any type of auto­ma­ted pro­ces­sing of per­so­nal data which con­sists in using such per­so­nal data to eva­lua­te cer­tain per­so­nal aspects rela­ting to a natu­ral per­son, in par­ti­cu­lar to ana­ly­ze or pre­dict aspects rela­ting to that natu­ral person’s per­for­mance at work, eco­no­mic situa­ti­on, health, per­so­nal pre­fe­ren­ces, inte­rests, relia­bi­li­ty, beha­vi­or, loca­ti­on or chan­ge of location.

  • f)    Pseud­ony­miza­ti­on

    Pseud­ony­miza­ti­on is the pro­ces­sing of per­so­nal data in such a way that the per­so­nal data can no lon­ger be attri­bu­ted to a spe­ci­fic data sub­ject wit­hout the use of addi­tio­nal infor­ma­ti­on, pro­vi­ded that such addi­tio­nal infor­ma­ti­on is kept sepa­ra­te and is sub­ject to tech­ni­cal and orga­niza­tio­nal mea­su­res to ensu­re that the per­so­nal data is not attri­bu­ted to an iden­ti­fied or iden­ti­fia­ble natu­ral person.

  • g)    Con­trol­ler or per­son respon­si­ble for the processing

    The con­trol­ler or per­son respon­si­ble is the natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which alo­ne or joint­ly with others deter­mi­nes the pur­po­ses and means of the pro­ces­sing of per­so­nal data. Whe­re the pur­po­ses and means of such pro­ces­sing are deter­mi­ned by Uni­on law or Mem­ber Sta­te law, the con­trol­ler or the spe­ci­fic cri­te­ria for its desi­gna­ti­on may be pro­vi­ded for under Uni­on law or Mem­ber Sta­te law.

  • h)    Pro­ces­sor

    Pro­ces­sor means a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body that pro­ces­ses per­so­nal data on behalf of the controller.

  • i)    Reci­pi­ent

    A reci­pi­ent is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body to whom per­so­nal data are dis­c­lo­sed, whe­ther or not a third par­ty. Howe­ver, public aut­ho­ri­ties that may recei­ve per­so­nal data in the con­text of a spe­ci­fic inves­ti­ga­ti­ve task under Uni­on or Mem­ber Sta­te law shall not be con­side­red as recipients.

  • j)    Third party

    Third par­ty means any natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body other than the data sub­ject, the con­trol­ler, the pro­ces­sor and the peo­p­le who, under the direct respon­si­bi­li­ty of the con­trol­ler or the pro­ces­sor, are aut­ho­ri­zed to pro­cess the per­so­nal data.

  • k)  Con­sent

    Con­sent shall mean any free­ly given spe­ci­fic and infor­med indi­ca­ti­on of the data subject’s wis­hes in the form of a state­ment or other unam­bi­guous affir­ma­ti­ve act by which the data sub­ject signi­fies his or her agree­ment to the pro­ces­sing of per­so­nal data rela­ting to him or her.

2. Name and address of the data controller

The respon­si­ble par­ty within the mea­ning of the Gene­ral Data Pro­tec­tion Regu­la­ti­on, other data pro­tec­tion laws appli­ca­ble in the Mem­ber Sta­tes of the Euro­pean Uni­on and other pro­vi­si­ons of a data pro­tec­tion natu­re is the:

Net­Co Pro­fes­sio­nal Ser­vices GmbH
Am Mön­chen­fel­de 13
38889 Blan­ken­burg (Harz)
Ger­ma­ny
Pho­ne.: +49 3944 950–0
Email: info@netco.de
Web­site: https://www.netco.de

3. Coo­kies

The inter­net pages of Net­Co Pro­fes­sio­nal Ser­vices GmbH use coo­kies. Coo­kies are text files, which are filed and stored on a com­pu­ter sys­tem via an inter­net browser.

Num­e­rous web­sites and ser­vers use coo­kies. Many coo­kies con­tain a so-cal­led coo­kie ID. A coo­kie ID is a uni­que iden­ti­fier of the coo­kie. It con­sists of a string of cha­rac­ters by which inter­net pages and ser­vers can be assi­gned to the spe­ci­fic inter­net brow­ser in which the coo­kie was stored. This enables the visi­ted inter­net pages and ser­vers to distin­gu­ish the indi­vi­du­al brow­ser of the data sub­ject from other inter­net brow­sers that con­tain other coo­kies. A spe­ci­fic inter­net brow­ser can be reco­gni­zed and iden­ti­fied via the uni­que coo­kie ID.

Through the use of coo­kies, the Net­Co Pro­fes­sio­nal Ser­vices GmbH can pro­vi­de the users of this web­site with more user-fri­end­ly ser­vices that would not be pos­si­ble wit­hout the coo­kie setting.

By means of a coo­kie, the infor­ma­ti­on and offers on our web­site can be opti­mi­zed in the sen­se of the user. Coo­kies allow us, as alre­a­dy men­tio­ned, to reco­gni­ze the users of our web­site. The pur­po­se of this reco­gni­ti­on is to make it easier for users to use our web­site. For exam­p­le, the user of a web­site that uses coo­kies does not have to re-enter his or her access data each time he or she visits the web­site, becau­se this is hand­led by the web­site and the coo­kie stored on the user’s com­pu­ter sys­tem. Ano­ther exam­p­le is the coo­kie of a shop­ping cart in an online store. The online store remem­bers the items that a cus­to­mer has pla­ced in the vir­tu­al shop­ping cart via a cookie.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Fur­ther­mo­re, coo­kies that have alre­a­dy been set can be dele­ted at any time via an inter­net brow­ser or other soft­ware pro­grams. This is pos­si­ble in all com­mon­ly used inter­net brow­sers. If the data sub­ject deac­ti­va­tes the set­ting of coo­kies in the inter­net brow­ser used, not all func­tions of our web­site may be ful­ly usable.

a)  Coo­kies through social media plugins

Links to our social media sites are pro­vi­ded on our web­site (You­Tube, Lin­ke­dIn, Xing, Face­book, Insta­gram), which is done by embed­ding a social media plug­in (“social net­work icons of the page buil­der Ele­men­tor”). This allows coo­kies to be used across many web­sites and coll­ect infor­ma­ti­on about your online acti­vi­ties. The­se coo­kies are set by third-par­ty pro­vi­ders such as adver­ti­sing or ana­ly­tics com­pa­nies (social networks).

4. Coll­ec­tion of gene­ral data and information

The web­site of the Net­Co Pro­fes­sio­nal Ser­vices GmbH coll­ects a series of gene­ral data and infor­ma­ti­on with each call-up of the web­site by a data sub­ject or auto­ma­ted sys­tem. This gene­ral data and infor­ma­ti­on is stored in the log files of the ser­ver. The fol­lo­wing data may be coll­ec­ted: (1) the brow­ser types and ver­si­ons used, (2) the ope­ra­ting sys­tem used by the acces­sing sys­tem, (3) the web­site from which an acces­sing sys­tem acces­ses our web­site (so-cal­led refer­rer), (4) the sub-web­sites that are acces­sed via an acces­sing sys­tem on our web­site, (5) the date and time of access to the web­site, (6) an inter­net pro­to­col address (IP address), (7) the inter­net ser­vice pro­vi­der of the acces­sing sys­tem and (8) other simi­lar data and infor­ma­ti­on that ser­ve to avert dan­ger in the event of attacks on our infor­ma­ti­on tech­no­lo­gy systems.

When using the­se gene­ral data and infor­ma­ti­on, the Net­Co Pro­fes­sio­nal Ser­vices GmbH does not draw any con­clu­si­ons about the data sub­ject. Rather, this infor­ma­ti­on is nee­ded (1) to deli­ver the con­tents of our web­site cor­rect­ly, (2) to opti­mi­ze the con­tents of our web­site and the adver­ti­sing for the­se, (3) to ensu­re the long-term func­tion­a­li­ty of our infor­ma­ti­on tech­no­lo­gy sys­tems and the tech­no­lo­gy of our web­site, and (4) to pro­vi­de law enforce­ment aut­ho­ri­ties with the infor­ma­ti­on neces­sa­ry for pro­se­cu­ti­on in the event of a cyber attack. The­r­e­fo­re, the Net­Co Pro­fes­sio­nal Ser­vices GmbH ana­ly­zes anony­mously coll­ec­ted data and infor­ma­ti­on on one hand, and on the other hand, with the aim of incre­asing the data pro­tec­tion and data secu­ri­ty of our enter­pri­se so that we can ulti­m­ate­ly ensu­re an opti­mal level of pro­tec­tion for the per­so­nal data we pro­cess. The anony­mous data of the ser­ver log files are stored sepa­ra­te­ly from any per­so­nal data pro­vi­ded by a data subject.

5. Cont­act pos­si­bi­li­ty via the website

The web­site of the Net­Co Pro­fes­sio­nal Ser­vices GmbH con­ta­ins legal requi­re­ments which enable a quick elec­tro­nic cont­act to our enter­pri­se, as well as direct com­mu­ni­ca­ti­on with us, which also includes a gene­ral address of the so-cal­led elec­tro­nic mail (email address). If a data sub­ject wis­hes to cont­act us by e‑mail or estab­lishes cont­act with the con­trol­ler via a cont­act form, the per­so­nal data trans­mit­ted by the data sub­ject will be stored auto­ma­ti­cal­ly. Such per­so­nal data trans­mit­ted on a vol­un­t­a­ry basis by a data sub­ject to the con­trol­ler will be stored for the pur­po­ses of pro­ces­sing or cont­ac­ting the data sub­ject. The­re is no dis­clo­sure of this per­so­nal data to third parties.

a) Use of Goog­le reCAPTCHA

reCAPTCHA is a free captcha ser­vice from Goog­le that pro­tects web­sites from spam soft­ware and abu­se by non-human visi­tors. The most com­mon use of this ser­vice is when you fill out forms on the inter­net. A captcha ser­vice is a kind of auto­ma­tic Turing test desi­gned to ensu­re that an action on the inter­net is per­for­med by a human and not a bot. Clas­sic captchas work with small tasks that are easy for humans to sol­ve, but pre­sent signi­fi­cant dif­fi­cul­ties for machi­nes. With reCAPTCHA, you no lon­ger have to actively sol­ve puz­zles. The tool uses modern risk tech­ni­ques to distin­gu­ish humans from bots. Here you only need to check the “I am not a robot” text box, or with Invi­si­ble reCAPTCHA — which we use — even that is no lon­ger necessary.

By using reCAPTCHA, data is trans­mit­ted to Goog­le to deter­mi­ne whe­ther you are real­ly a human being. reCAPTCHA the­r­e­fo­re ser­ves the secu­ri­ty of our web­site and sub­se­quent­ly also your secu­ri­ty. For exam­p­le, wit­hout reCAPTCHA, it could hap­pen that a bot regis­ters as many e‑mail addres­ses as pos­si­ble during regis­tra­ti­on in order to “spam” forums or blogs with unwan­ted adver­ti­sing con­tent. With reCAPTCHA we can avo­id such bot attacks.

reCAPTCHA coll­ects per­so­nal data from users to deter­mi­ne whe­ther the actions on our web­site are real­ly from peo­p­le. This means that the IP address and other data that Goog­le requi­res for the reCAPTCHA ser­vice may be sent to Goog­le. IP addres­ses are almost always shor­ten­ed before­hand within the mem­ber sta­tes of the EU or other con­trac­ting sta­tes to the Agree­ment on the Euro­pean Eco­no­mic Area befo­re the data ends up on a ser­ver in the USA. The IP address is not com­bi­ned with other data from Goog­le unless you are log­ged in with your Goog­le account while using reCAPTCHA. First, the reCAPTCHA algo­rithm checks whe­ther Goog­le coo­kies from other Goog­le ser­vices (You­Tube, Gmail, etc.) are alre­a­dy pla­ced on your brow­ser. Then, reCAPTCHA sets an addi­tio­nal coo­kie in your brow­ser and cap­tures a snapshot of your brow­ser window.

The fol­lo­wing list of coll­ec­ted brow­ser and user data does not cla­im to be com­ple­te. Rather, the­se are examp­les of data that, to our know­ledge, are pro­ces­sed by Google.

  • Refer­rer URL (the address of the page from which the visi­tor comes from)

  • IP address (e.g. 256.123.123.1)

  • Info about the ope­ra­ting sys­tem (the Soft­ware that enables the ope­ra­ti­on of your com­pu­ter. Known ope­ra­ting sys­tems are Win­dows, Mac OS X or Linux)

  • Coo­kies (small text files that store data in your browser)

  • Mou­se and key­board beha­vi­or (every action you per­form with the mou­se or key­board is saved)

  • Date and lan­guage set­tings (which lan­guage or date you have pre­set on your PC will be saved))

  • All Java­Script objects (Java­Script is a pro­gramming lan­guage that allows web­sites to adapt to the user. Java­Script objects can coll­ect all kinds of data under one name)

  • Screen reso­lu­ti­on (shows how many pixels the image dis­play con­sists of)

It is undis­pu­ted that Goog­le uses and ana­ly­zes this data even befo­re you click the “I am not a robot” check­box. With the Invi­si­ble reCAPTCHA ver­si­on, even the ticking is omit­ted and the who­le reco­gni­ti­on pro­cess runs in the back­ground. Goog­le does not tell you in detail how much and which data it stores.

If you do not want any data about you and your beha­vi­or to be trans­mit­ted to Goog­le, you must log out of Goog­le com­ple­te­ly and dele­te all Goog­le coo­kies befo­re you visit our web­site or use the reCAPTCHA soft­ware. Basi­cal­ly, the data is auto­ma­ti­cal­ly trans­mit­ted to Goog­le as soon as you visit our site. To dele­te this data again, you have to cont­act Goog­le sup­port on  https://support.google.com/?hl=de&tid=331589808227.

Thus, by using our web­site, you con­sent to the auto­ma­tic coll­ec­tion, pro­ces­sing, and use of data by Goog­le LLC and its agents.

You can learn a litt­le more about reCAPTCHA on Google’s web deve­lo­per page on https://developers.google.com/recaptcha/.

6. Rou­ti­ne dele­ti­on and blo­cking of per­so­nal data

The con­trol­ler shall pro­cess and store per­so­nal data of the data sub­ject only for the peri­od neces­sa­ry to achie­ve the pur­po­se of sto­rage or whe­re pro­vi­ded for by the Euro­pean Direc­ti­ve and Regu­la­ti­on or other legis­la­tor in laws or regu­la­ti­ons to which the con­trol­ler is subject.

If the pur­po­se of sto­rage no lon­ger appli­es or if a sto­rage peri­od pre­scri­bed by the Euro­pean Direc­ti­ve and Regu­la­ti­on or ano­ther com­pe­tent legis­la­tor expi­res, the per­so­nal data will be rou­ti­ne­ly blo­cked or dele­ted in accordance with the sta­tu­to­ry provisions.

7. Rights of the data subject

  • a)  Right of confirmation

    Every data sub­ject has the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to obtain con­fir­ma­ti­on from the con­trol­ler as to whe­ther per­so­nal data con­cer­ning him or her are being pro­ces­sed. If a data sub­ject wis­hes to exer­cise this right, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the controller.

  • b)  Right to information

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to obtain at any time from the con­trol­ler, free of char­ge, infor­ma­ti­on about the per­so­nal data stored about him or her and a copy of that infor­ma­ti­on. Fur­ther­mo­re, the Euro­pean legis­la­tor has gran­ted the data sub­ject access to the fol­lo­wing information:

    • the pro­ces­sing purposes

    • the cate­go­ries of per­so­nal data that are processed

    • the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­so­nal data have been or will be dis­c­lo­sed, in par­ti­cu­lar in the case of reci­pi­ents in third count­ries or inter­na­tio­nal organizations

    • if pos­si­ble, the plan­ned dura­ti­on for which the per­so­nal data will be stored or, if this is not pos­si­ble, the cri­te­ria for deter­mi­ning this duration

    • the exis­tence of a right to obtain the rec­ti­fi­ca­ti­on or era­su­re of per­so­nal data con­cer­ning them or to obtain the rest­ric­tion of pro­ces­sing by the con­trol­ler or a right to object to such processing

    • the exis­tence of a right of appeal to a super­vi­so­ry authority

    • if the per­so­nal data are not coll­ec­ted from the data sub­ject: all available infor­ma­ti­on about the ori­gin of the data

    • the exis­tence of auto­ma­ted decis­i­on-making, inclu­ding pro­fil­ing, pur­su­ant to Artic­le 22(1) and (4) of the GDPR and — at least in the­se cases — meaningful infor­ma­ti­on about the logic invol­ved and the scope and inten­ded effects of such pro­ces­sing for the data subject

    Fur­ther­mo­re, the data sub­ject shall have the right to obtain infor­ma­ti­on as to whe­ther per­so­nal data have been trans­fer­red to a third coun­try or to an inter­na­tio­nal orga­niza­ti­on. If this is the case, the data sub­ject also has the right to obtain infor­ma­ti­on about the appro­pria­te safe­guards in con­nec­tion with the transfer.

    If a data sub­ject wis­hes to exer­cise this right of access, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the controller.

  • c)  Right to rectification

    Any per­son affec­ted by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to request the imme­dia­te rec­ti­fi­ca­ti­on of inac­cu­ra­te per­so­nal data con­cer­ning him or her. Fur­ther­mo­re, the data sub­ject has the right, taking into account the pur­po­ses of the pro­ces­sing, to request the com­ple­ti­on of incom­ple­te per­so­nal data, inclu­ding by means of a sup­ple­men­ta­ry declaration.

    If a data sub­ject wis­hes to exer­cise this right to rec­ti­fy, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the controller.

  • d)  Right to era­su­re (right to be forgotten)

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to obtain from the con­trol­ler the era­su­re wit­hout delay of per­so­nal data con­cer­ning him or her, whe­re one of the fol­lo­wing reasons appli­es and inso­far as the pro­ces­sing is not necessary:

    • The per­so­nal data were coll­ec­ted or other­wi­se pro­ces­sed for pur­po­ses for which they are no lon­ger necessary.

    • The data sub­ject revo­kes the con­sent on which the pro­ces­sing was based pur­su­ant to Art. 6(1)(a) DSGVO or Art. 9(2)(a) DSGVO and the­re is no other legal basis for the processing.

    • The data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(1) of the GDPR and the­re are no over­ri­ding legi­ti­ma­te grounds for the pro­ces­sing, or the data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(2) of the GDPR.

    • The per­so­nal data were pro­ces­sed unlawfully.

    • The dele­ti­on of the per­so­nal data is neces­sa­ry for com­pli­ance with a legal obli­ga­ti­on under Uni­on or Mem­ber Sta­te law to which the con­trol­ler is subject.

    • The per­so­nal data was coll­ec­ted in rela­ti­on to infor­ma­ti­on socie­ty ser­vices offe­red pur­su­ant to Art. 8 (1) GDPR.

    If one of the afo­re­men­tio­ned reasons appli­es, and a data sub­ject wis­hes to arran­ge for the dele­ti­on of per­so­nal data stored by the Net­Co Pro­fes­sio­nal Ser­vices GmbH, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the con­trol­ler. The Data Pro­tec­tion Offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­ther employee shall prompt­ly ensu­re that the era­su­re request is com­pli­ed with immediately.

    If the per­so­nal data has been made public by the Net­Co Pro­fes­sio­nal Ser­vices GmbH and our com­pa­ny as the respon­si­ble par­ty is obli­ged to dele­te the per­so­nal data pur­su­ant to Art. 17 Para. 1 GDPR, Net­Co Pro­fes­sio­nal Ser­vices GmbH shall imple­ment reasonable mea­su­res, inclu­ding tech­ni­cal mea­su­res, to com­pen­sa­te other data con­trol­lers for pro­ces­sing the per­so­nal data published, taking into account the available tech­no­lo­gy and the cost of imple­men­ta­ti­on, in order to inform the data sub­ject that he or she has reques­ted from tho­se other data con­trol­lers to era­se all links to or copies or repli­ca­ti­ons of the per­so­nal data, unless the pro­ces­sing is neces­sa­ry. The Data Pro­tec­tion Offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­ther employee will arran­ge the neces­sa­ry in indi­vi­du­al cases.

  • e)    Right to rest­ric­tion of processing

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, to obtain from the con­trol­ler the rest­ric­tion of pro­ces­sing whe­re one of the fol­lo­wing con­di­ti­ons is met:

    • The accu­ra­cy of the per­so­nal data is con­tes­ted by the data sub­ject for a peri­od enab­ling the con­trol­ler to veri­fy the accu­ra­cy of the per­so­nal data.

    • The pro­ces­sing is unlawful, the data sub­ject objects to the era­su­re of the per­so­nal data and requests ins­tead the rest­ric­tion of the use of the per­so­nal data.

    • The con­trol­ler no lon­ger needs the per­so­nal data for the pur­po­ses of pro­ces­sing, but the data sub­ject needs it for the asser­ti­on, exer­cise or defen­se of legal claims.

    • The data sub­ject has objec­ted to the pro­ces­sing pur­su­ant to Artic­le 21 (1) of the GDPR and it is not yet clear whe­ther the legi­ti­ma­te grounds of the data con­trol­ler over­ri­de tho­se of the data subject.

    If one of the afo­re­men­tio­ned con­di­ti­ons is met, and a data sub­ject wis­hes to request the rest­ric­tion of per­so­nal data stored by the Net­Co Pro­fes­sio­nal Ser­vices GmbH, he or she may, at any time, cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler. The data pro­tec­tion offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­ther employee will arran­ge the rest­ric­tion of the processing.

  • f)    Right to data portability

    Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to recei­ve the per­so­nal data con­cer­ning him or her, which have been pro­vi­ded by the data sub­ject to a con­trol­ler, in a struc­tu­red, com­mon­ly used and machi­ne-rea­da­ble for­mat. He or she also has the right to trans­mit this data to ano­ther con­trol­ler wit­hout hin­drance from the con­trol­ler to whom the per­so­nal data have been pro­vi­ded, pro­vi­ded that the pro­ces­sing is based on con­sent pur­su­ant to Artic­le 6(1)(a) of the GDPR or Artic­le 9(2)(a) of the GDPR or on a con­tract pur­su­ant to Artic­le 6(1)(b) of the GDPR and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, unless the pro­ces­sing is neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest or in the exer­cise of offi­ci­al aut­ho­ri­ty ves­ted in the controller.

  • Fur­ther­mo­re, when exer­cis­ing his or her right to data por­ta­bi­li­ty pur­su­ant to Artic­le 20(1) of the GDPR, the data sub­ject shall have the right to obtain that the per­so­nal data be trans­fer­red direct­ly
    trans­fer­red from one con­trol­ler to ano­ther con­trol­ler, inso­far as this is tech­ni­cal­ly fea­si­ble and pro­vi­ded that this does not adver­se­ly affect the rights and free­doms of others.

    In order to assert the right to data por­ta­bi­li­ty, the data sub­ject may at any time cont­act the Data Pro­tec­tion Offi­cer appoin­ted by the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­ther employee.

  • g)  Right to object

    Any per­son affec­ted by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to object at any time, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to the pro­ces­sing of per­so­nal data con­cer­ning him or her car­ri­ed out on the basis of Artic­le 6(1)(e) or (f) GDPR. This also appli­es to pro­fil­ing based on the­se provisions.

    The Net­Co Pro­fes­sio­nal Ser­vices GmbH shall no lon­ger pro­cess the per­so­nal data in the event of the objec­tion, unless we can demons­tra­te com­pel­ling legi­ti­ma­te grounds for the pro­ces­sing which over­ri­de the inte­rests, rights and free­doms of the data sub­ject, or for the asser­ti­on, exer­cise or defence of legal claims.

    If the Net­Co Pro­fes­sio­nal Ser­vices GmbH pro­ces­ses per­so­nal data for the pur­po­se of direct mar­ke­ting, the data sub­ject shall have the right to object at any time to pro­ces­sing of per­so­nal data pro­ces­sed for such mar­ke­ting. This also appli­es to the pro­fil­ing, inso­far as it is rela­ted to such direct mar­ke­ting. If the data sub­ject objects to the Net­Co Pro­fes­sio­nal Ser­vices GmbH to the pro­ces­sing for direct mar­ke­ting pur­po­ses, the Net­Co Pro­fes­sio­nal Ser­vices GmbH will no lon­ger pro­cess the per­so­nal data for the­se purposes.

    In addi­ti­on, the data sub­ject has the right, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to object to pro­ces­sing of per­so­nal data con­cer­ning him or her which is car­ri­ed out by the Net­Co Pro­fes­sio­nal Ser­vices GmbH for sci­en­ti­fic or his­to­ri­cal rese­arch pur­po­ses, or for sta­tis­ti­cal pur­po­ses pur­su­ant to Artic­le 89(1) of the Data Pro­tec­tion Regu­la­ti­on, unless such pro­ces­sing is neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public interest.

    In order to exer­cise the right to object, the data sub­ject may direct­ly cont­act the Data Pro­tec­tion Offi­cer of the Net­Co Pro­fes­sio­nal Ser­vices GmbH or ano­ther employee. The data sub­ject is also free, in con­nec­tion with the use of infor­ma­ti­on socie­ty ser­vices, not­wi­th­stan­ding Direc­ti­ve 2002/58/EC, to exer­cise his or her right to object by means of auto­ma­ted pro­ce­du­res using tech­ni­cal specifications.

  • h)  Auto­ma­ted decis­i­ons in indi­vi­du­al cases inclu­ding profiling

    Any data sub­ject con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, not to be sub­ject to a decis­i­on based sole­ly on auto­ma­ted pro­ces­sing, inclu­ding pro­fil­ing, which pro­du­ces legal effects con­cer­ning him or her or simi­lar­ly signi­fi­cant­ly affects him or her, unless the decis­i­on (1) is neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the con­trol­ler, or (2) is per­mit­ted by Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject and that law con­ta­ins sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, or (3) is based on the data subject’s expli­cit consent.

    If the decis­i­on (1) is neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the data con­trol­ler, or (2) if it is made with the data subject’s expli­cit con­sent, Net­Co Pro­fes­sio­nal Ser­vices GmbH shall imple­ment sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, which include at least the right to obtain the data subject’s invol­vement on the part of the con­trol­ler, to express his or her point of view and to con­test the decision.

    If the data sub­ject wis­hes to exer­cise the rights con­cer­ning auto­ma­ted decis­i­ons, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the controller.

  • i)    Right to revo­ke con­sent under data pro­tec­tion law

    Any per­son affec­ted by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to with­draw con­sent to the pro­ces­sing of per­so­nal data at any time.

    If the data sub­ject wis­hes to exer­cise the right to with­draw the con­sent, he or she may, at any time, cont­act our data pro­tec­tion offi­cer or ano­ther employee of the controller.

8. Data pro­tec­tion during appli­ca­ti­ons and the appli­ca­ti­on process

The con­trol­ler coll­ects and pro­ces­ses the per­so­nal data of appli­cants for the pur­po­se of hand­ling the appli­ca­ti­on pro­ce­du­re. The pro­ces­sing may also take place elec­tro­ni­cal­ly. This is the case, in par­ti­cu­lar, when an appli­cant sub­mits rele­vant appli­ca­ti­on docu­ments to the con­trol­ler by elec­tro­nic means, for exam­p­le, by e‑mail or via a web form loca­ted on the web­site. If the con­trol­ler con­cludes an employ­ment con­tract with an appli­cant, the trans­mit­ted data will be stored for the pur­po­se of pro­ces­sing the employ­ment rela­ti­onship in com­pli­ance with the sta­tu­to­ry pro­vi­si­ons. If the con­trol­ler does not con­clude an employ­ment con­tract with the appli­cant, the appli­ca­ti­on docu­ments will be auto­ma­ti­cal­ly dele­ted two months after noti­fi­ca­ti­on of the rejec­tion decis­i­on, pro­vi­ded that no other legi­ti­ma­te inte­rests of the con­trol­ler con­flict with such dele­ti­on. Other legi­ti­ma­te inte­rest in this sen­se is, for exam­p­le, a duty to pro­vi­de evi­dence in pro­cee­dings under the Gene­ral Equal Tre­at­ment Act (“AGG”).

9. Pri­va­cy poli­cy on the use and appli­ca­ti­on of Goog­le Ana­ly­tics (with anony­miza­ti­on function)

The con­trol­ler has inte­gra­ted the Goog­le Ana­ly­tics com­po­nent (with anony­miza­ti­on func­tion) on this web­site. Goog­le Ana­ly­tics is a web ana­ly­sis ser­vice. Web ana­ly­sis is the coll­ec­tion, com­pi­la­ti­on and ana­ly­sis of data about the beha­vi­or of visi­tors to web­sites. A web ana­ly­sis ser­vice coll­ects, among other things, data on which web­site a data sub­ject came to a web­site from (so-cal­led refer­rers), which sub­pages of the web­site were acces­sed or how often and for how long a sub­page was view­ed. A web ana­ly­sis is pre­do­mi­nant­ly used for the opti­miza­ti­on of a web­site and for the cost-bene­fit ana­ly­sis of inter­net advertising.

The ope­ra­ting com­pa­ny of the Goog­le Ana­ly­tics com­po­nent is Goog­le Inc, 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, USA.

The con­trol­ler uses the addi­ti­on “_gat._anonymizeIp” for web ana­ly­sis via Goog­le Ana­ly­tics. By means of this addi­ti­on, the IP address of the inter­net con­nec­tion of the data sub­ject is shor­ten­ed and anony­mi­zed by Goog­le if access to our inter­net pages takes place from a mem­ber sta­te of the Euro­pean Uni­on or from ano­ther sta­te par­ty to the Agree­ment on the Euro­pean Eco­no­mic Area.

The pur­po­se of the Goog­le Ana­ly­tics com­po­nent is to ana­ly­ze the flow of visi­tors to our web­site. Goog­le uses the data and infor­ma­ti­on obtai­ned, among other things, to eva­lua­te the use of our web­site, to com­pi­le online reports for us show­ing the acti­vi­ties on our web­site, and to pro­vi­de other ser­vices rela­ted to the use of our website.

Goog­le Ana­ly­tics sets a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. What coo­kies are has alre­a­dy been explai­ned abo­ve. By set­ting the coo­kie, Goog­le is enab­led to ana­ly­ze the use of our web­site. When­ever you access one of the indi­vi­du­al pages of this web­site, which is ope­ra­ted by the con­trol­ler and on which a Goog­le Ana­ly­tics com­po­nent has been inte­gra­ted, the inter­net brow­ser on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject is auto­ma­ti­cal­ly cau­sed by the respec­ti­ve Goog­le Ana­ly­tics com­po­nent to trans­mit data to Goog­le for the pur­po­se of online ana­ly­sis. As part of this tech­ni­cal pro­cess, Goog­le obta­ins know­ledge of per­so­nal data, such as the IP address of the data sub­ject, which Goog­le uses, among other things, to track the ori­gin of visi­tors and clicks and sub­se­quent­ly enable com­mis­si­on calculations.

By means of the coo­kie, per­so­nal infor­ma­ti­on, for exam­p­le the access time, the loca­ti­on from which an access ori­gi­na­ted and the fre­quen­cy of visits to our web­site by the data sub­ject, is stored. Each time the data sub­ject visits our web­site, this per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may pass on this per­so­nal data coll­ec­ted via the tech­ni­cal pro­ce­du­re to third parties.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site, as alre­a­dy descri­bed abo­ve, at any time by means of an appro­pria­te set­ting of the inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the inter­net brow­ser used would also pre­vent Goog­le from set­ting a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alre­a­dy set by Goog­le Ana­ly­tics can be dele­ted at any time via the inter­net brow­ser or other soft­ware programs.

Fur­ther­mo­re, the data sub­ject has the pos­si­bi­li­ty to object to the coll­ec­tion of data gene­ra­ted by Goog­le Ana­ly­tics and rela­ted to the use of this web­site as well as to the pro­ces­sing of such data by Goog­le and to pre­vent such pro­ces­sing. For this pur­po­se, the data sub­ject must down­load and install a brow­ser add-on under the link https://tools.google.com/dlpage/gaoptout. This brow­ser add-on tells Goog­le Ana­ly­tics via Java­Script that no data and infor­ma­ti­on about visits to inter­net pages may be trans­mit­ted to Goog­le Ana­ly­tics. The instal­la­ti­on of the brow­ser add-on is con­side­red by Goog­le as an objec­tion. If the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject is dele­ted, for­mat­ted or reinstal­led at a later point in time, the data sub­ject must reinstall the brow­ser add-on in order to deac­ti­va­te Goog­le Ana­ly­tics. If the brow­ser add-on is unin­stal­led or deac­ti­va­ted by the data sub­ject or ano­ther per­son within the data subject’s sphe­re of con­trol, it is pos­si­ble to reinstall or reac­ti­va­te the brow­ser add-on.

Fur­ther infor­ma­ti­on and the appli­ca­ble pri­va­cy poli­cy of Goog­le can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Goog­le Ana­ly­tics is dis­cus­sed in fur­ther detail under this link https://www.google.com/intl/de_de/analytics/.

10. Pri­va­cy poli­cy on the use and appli­ca­ti­on of Goog­le Ads

The con­trol­ler has inte­gra­ted Goog­le Ads on this web­site. Goog­le Ads is an inter­net adver­ti­sing ser­vice that allows adver­ti­sers to place ads in Google’s search engi­ne results as well as in the Goog­le adver­ti­sing net­work. Goog­le Ads allows an adver­ti­ser to spe­ci­fy cer­tain key­words in advan­ce, by means of which an ad is dis­play­ed in Google’s search engi­ne results exclu­si­ve­ly when the user retrie­ves a key­word-rele­vant search result using the search engi­ne. In the Goog­le adver­ti­sing net­work, the ads are dis­tri­bu­ted on topic-rele­vant web­sites by means of an auto­ma­tic algo­rithm and in com­pli­ance with the pre­vious­ly defi­ned key­words. The ope­ra­ting com­pa­ny of the Goog­le Ads ser­vices is Goog­le Inc., 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, USA.

The pur­po­se of Goog­le Ads is to adver­ti­se our web­site by dis­play­ing inte­rest-rele­vant adver­ti­sing on the web­sites of third-par­ty com­pa­nies and in the search engi­ne results of the Goog­le search engi­ne and to dis­play third-par­ty adver­ti­sing on our web­site. If a data sub­ject acces­ses our web­site via a Goog­le adver­ti­se­ment, a so-cal­led con­ver­si­on coo­kie is stored by Goog­le on the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem. What coo­kies are has alre­a­dy been explai­ned abo­ve. A con­ver­si­on coo­kie loses its vali­di­ty after thir­ty days and is not used to iden­ti­fy the data sub­ject. The con­ver­si­on coo­kie is used to track whe­ther cer­tain sub­pages, for exam­p­le the shop­ping cart from an online store sys­tem, have been cal­led up on our web­site, pro­vi­ded that the coo­kie has not yet expi­red. Through the con­ver­si­on coo­kie, both we and Goog­le can track whe­ther a data sub­ject who arri­ved at our web­site via an AdWords ad gene­ra­ted a sale, i.e. com­ple­ted or can­cel­led a purcha­se of goods. The data and infor­ma­ti­on coll­ec­ted through the use of the con­ver­si­on coo­kie are used by Goog­le to com­pi­le visit sta­tis­tics for our web­site. The­se visit sta­tis­tics are in turn used by us to deter­mi­ne the total num­ber of users who were refer­red to us via AdWords ads, i.e. to deter­mi­ne the suc­cess or fail­ure of the respec­ti­ve AdWords ad and to opti­mi­ze our AdWords ads for the future. Neither our com­pa­ny nor other adver­ti­sers of Goog­le Ads recei­ve infor­ma­ti­on from Goog­le by means of which the data sub­ject could be identified.

By means of the con­ver­si­on coo­kie, per­so­nal infor­ma­ti­on, for exam­p­le the inter­net pages visi­ted by the data sub­ject, is stored. Each time the data sub­ject visits our web­site, per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may dis­c­lo­se this per­so­nal data coll­ec­ted via the tech­ni­cal pro­ce­du­re to third par­ties. The data sub­ject can pre­vent the set­ting of coo­kies by our web­site, as alre­a­dy descri­bed abo­ve, at any time by means of an appro­pria­te set­ting of the inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the inter­net brow­ser used would also pre­vent Goog­le from set­ting a con­ver­si­on coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alre­a­dy set by Goog­le AdWords can be dele­ted at any time via the inter­net brow­ser or other soft­ware pro­grams. Fur­ther­mo­re, the data sub­ject has the opti­on to object to inte­rest-based adver­ti­sing by Goog­le. To do this, the data sub­ject must call up the link www.google.de/settings/ads from any of the inter­net brow­sers he or she uses and make the desi­red set­tings there.

Fur­ther infor­ma­ti­on and the appli­ca­ble Goog­le pri­va­cy poli­cy can be found at https://www.google.de/intl/de/policies/privacy/.

11. Use of Goog­le Remarketing

We also use the remar­ke­ting func­tion of Goog­le. This allows us to play per­so­na­li­zed adver­ti­sing to you on sui­ta­ble adver­ti­sing spaces on other web­sites based on what inte­rests you have shown on our web­site. This opti­on is limi­t­ed to a maxi­mum of 18 months.

For more infor­ma­ti­on, plea­se refer to the Pri­va­cy Poli­cy of Goog­le. You can pre­vent inte­rest-based adver­ti­sing by instal­ling this brow­ser plug­in.

12. Use of the Face­book Pixel (Face­book Cus­tom Audiences):

Fur­ther­mo­re, we use the so-cal­led “Face­book Pixel” of Face­book Inc. (“Face­book”) on our web­site. This enables inte­rest-based adver­ti­se­ments (“Face­book ads”) to be dis­play­ed to users of our web­site when they visit the Face­book social net­work or other web­sites that also use this method. Through the Face­book pixel, your brow­ser auto­ma­ti­cal­ly estab­lishes a direct con­nec­tion with the Face­book ser­ver. We have no influence on the scope and fur­ther use of the data coll­ec­ted by Face­book through the use of this tool and the­r­e­fo­re inform you accor­ding to our sta­te of know­ledge: Through the inte­gra­ti­on of the Face­book pixel, Face­book recei­ves the infor­ma­ti­on that you have cli­cked on an ad from us or cal­led up the cor­re­spon­ding web­site of our Inter­net pre­sence. If you are regis­tered with a Face­book ser­vice, Face­book can assign the visit to your account. Even if you are not regis­tered with Face­book or have not log­ged in, it is pos­si­ble that the pro­vi­der will learn and store your IP address and other identifiers.

With the use of the Face­book pixel, we pur­sue the pur­po­se of dis­play­ing Face­book ads pla­ced by us only to tho­se Face­book users who have also shown an inte­rest in our inter­net offe­ring. With the help of the Face­book pixel, we would like to ensu­re that our Face­book ads cor­re­spond to the poten­ti­al inte­rest of the users and do not have a spamming effect. Fur­ther­mo­re, with the help of the Face­book pixel, we can track the effec­ti­ve­ness of Face­book ads for sta­tis­ti­cal pur­po­ses by see­ing whe­ther users were redi­rec­ted to our web­site after cli­cking on a Face­book ad. The legal basis for the use of the Face­book pixel is Art. 6 para. 1 lit. f GDPR.

Infor­ma­ti­on of the third par­ty pro­vi­der: Face­book Inc., 1601 S Cali­for­nia Ave, Palo Alto, Cali­for­nia 94304, USA; http://www.facebook.com/policy.php; wei­te­re Infor­ma­tio­nen zur Daten­er­he­bung: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications sowie http://www.facebook.com/about/privacy/your-info#everyoneinfo.

13. Legal basis of processing

Artic­le 6 I let­ter a GDPR ser­ves our com­pa­ny as the legal basis for pro­ces­sing ope­ra­ti­ons in which we obtain con­sent for a spe­ci­fic pro­ces­sing pur­po­se. If the pro­ces­sing of per­so­nal data is neces­sa­ry for the per­for­mance of a con­tract to which the data sub­ject is a par­ty, as is the case, for exam­p­le, with pro­ces­sing ope­ra­ti­ons that are neces­sa­ry for a deli­very of goods or the pro­vi­si­on of ano­ther ser­vice or con­side­ra­ti­on, the pro­ces­sing is based on Art. 6 I let­ter b GDPR. The same appli­es to such pro­ces­sing ope­ra­ti­ons that are neces­sa­ry for the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res, for exam­p­le in cases of inqui­ries about our pro­ducts or ser­vices. If our com­pa­ny is sub­ject to a legal obli­ga­ti­on by which a pro­ces­sing of per­so­nal data beco­mes neces­sa­ry, such as for com­pli­ance with tax obli­ga­ti­ons, the pro­ces­sing is based on Art. 6 I let­ter c GDPR. In rare cases, the pro­ces­sing of per­so­nal data might beco­me neces­sa­ry to pro­tect vital inte­rests of the data sub­ject or ano­ther natu­ral per­son. This would be the case, for exam­p­le, if a visi­tor were to be inju­red on our pre­mi­ses and as a result his or her name, age, health insu­rance data or other vital infor­ma­ti­on had to be pas­sed on to a doc­tor, hos­pi­tal or other third par­ty. Then the pro­ces­sing would be based on Art. 6 I let­ter d GDPR. Final­ly, pro­ces­sing ope­ra­ti­ons could be based on Art. 6 I let­ter f GDPR. Pro­ces­sing ope­ra­ti­ons that are not cover­ed by any of the afo­re­men­tio­ned legal bases are based on this legal basis if the pro­ces­sing is neces­sa­ry to pro­tect a legi­ti­ma­te inte­rest of our com­pa­ny or a third par­ty, pro­vi­ded that the inte­rests, fun­da­men­tal rights and free­doms of the data sub­ject are not over­ridden. Such pro­ces­sing ope­ra­ti­ons are per­mit­ted to us in par­ti­cu­lar becau­se they were spe­ci­fi­cal­ly men­tio­ned by the Euro­pean legis­la­tor. In this respect, it took the view that a legi­ti­ma­te inte­rest could be assu­med if the data sub­ject is a cus­to­mer of the con­trol­ler (reci­tal 47 sen­tence 2 GDPR).

14. Legi­ti­ma­te inte­rests in the pro­ces­sing pur­sued by the con­trol­ler or a third party

Whe­re the pro­ces­sing of per­so­nal data is based on Artic­le 6 I let­ter f GDPR, our legi­ti­ma­te inte­rest is the con­duct of our busi­ness for the bene­fit of the well-being of all our employees and our shareholders.

15. Dura­ti­on for which the per­so­nal data are stored

The cri­ter­ion for the dura­ti­on of sto­rage of per­so­nal data is the respec­ti­ve sta­tu­to­ry reten­ti­on peri­od. After expiry of the peri­od, the cor­re­spon­ding data is rou­ti­ne­ly dele­ted, pro­vi­ded that it is no lon­ger requi­red for the ful­fill­ment or initia­ti­on of the contract.

16. Legal or con­trac­tu­al requi­re­ments to pro­vi­de the per­so­nal data; neces­si­ty for the con­clu­si­on of the con­tract; obli­ga­ti­on of the data sub­ject to pro­vi­de the per­so­nal data; pos­si­ble con­se­quen­ces of non-provision

We would like to inform you that the pro­vi­si­on of per­so­nal data is part­ly requi­red by law (e.g. tax regu­la­ti­ons) or may also result from con­trac­tu­al regu­la­ti­ons (e.g. infor­ma­ti­on on the con­trac­tu­al part­ner). Some­ti­mes, in order to con­clude a con­tract, it may be neces­sa­ry for a data sub­ject to pro­vi­de us with per­so­nal data that must sub­se­quent­ly be pro­ces­sed by us. For exam­p­le, the data sub­ject is obli­ged to pro­vi­de us with per­so­nal data if our com­pa­ny con­cludes a con­tract with him or her. Fail­ure to pro­vi­de the per­so­nal data would mean that the con­tract with the data sub­ject could not be con­cluded. Befo­re pro­vi­ding per­so­nal data by the data sub­ject, the data sub­ject must cont­act our data pro­tec­tion offi­cer. Our data pro­tec­tion offi­cer will inform the data sub­ject on a case-by-case basis whe­ther the pro­vi­si­on of the per­so­nal data is requi­red by law or con­tract or is neces­sa­ry for the con­clu­si­on of the con­tract, whe­ther the­re is an obli­ga­ti­on to pro­vi­de the per­so­nal data, and what the con­se­quen­ces of not pro­vi­ding the per­so­nal data would be.

17. Exis­tence of auto­ma­ted decis­i­on making

As a respon­si­ble com­pa­ny, we do not use auto­ma­tic decis­i­on-making or profiling.

This data pro­tec­tion decla­ra­ti­on was crea­ted by the data pro­tec­tion decla­ra­ti­on gene­ra­tor of DGD Deut­sche Gesell­schaft für Daten­schutz GmbH, which acts as an exter­nal data pri­va­cy offi­cer Schwein­furt, in coope­ra­ti­on with the lawy­er for data pro­tec­tion law Chris­ti­an Solmecke.

If you have any ques­ti­ons about our pri­va­cy poli­cy or the data we store, plea­se cont­act us at the fol­lo­wing email address: dsb@netco.de.

Data Pro­tec­tion Offi­cer:
IZAG gGmbH
Dipl. Ing. Ralph Anger­stein
Sch­le­i­nitz­str. 7
38889 Blan­ken­burg (Harz)

Email: dsb@netco.de
Pho­ne: +49 3917 2757277