Information on data protection in accordance with Articles 13, 14 and 21 DSGVO (General Data Protection Regulation)
With us service and your satisfaction come first. We would therefore like to inform you when we collect which data, how they are used and what data protection rights and claims you have.
1. Responsible body
Schweers Consult GmbH, Nordic
Naverland 2, 2.Sal
Contact Data Privacy Officer:
Schweers CONSULT GmbH
Data Privacy Officer Mr Norbert Luhnen
2. Legal basis on which we process your data
We process personal data according to the General Data Protection Regulation (GSPR) and the Federal Data Protection Act (BDSG, Germany).
2.1 Categories of data subjects (hereinafter referred to as users)
- Interested Person
- Cooperation partners
No special categories of data are processed according to Art. 9 (1) GDPR, unless these are submitted to processing by the users, e.g. for applications or contact forms.
We also process personally identifiable information that we have legitimately taken from publicly available sources, in particular the Internet and telephone directories, and are allowed to process.
2.2 Types of processing data
The data processed and used is determined to a significant extent by the categories mentioned under 2.1 and the resulting contractual relationships. In particular, these are:
- Contact person (salutation, last name, first name)
- E-mail address
- Telephone and fax numbers
- Contract Data
- Service data (ticket system)
- usage data (visited websites, interest in content, access times)
- Meta / communication data (e.g., device information, IP addresses)
2.3 Purpose of processing (fulfillment of a contract / pre-contractual measures)
- Marketing, advertising and market research
- Communication with users, contact requests, offers, contracts
- fulfillment of contractual obligations, services, deliveries, service, customer care
- Payment data
- compliance with legislation, e.g. tax law
3. Subcontracting (order processing and third parties)
For the purposes of this regulation, subcontracting relationships are those services that directly relate to the provision of our services. Not included are ancillary services, which we, e.g. as telecommunications services, postal / transport services, payment services, maintenance and user service or the disposal of data carriers and other measures to ensure the confidentiality, availability, integrity and resilience of the hardware and software of data processing systems. In order to ensure data protection and data security of the user's data, appropriate and legally compliant contractual agreements and control measures are also agreed for outsourced ancillary services.
In accordance with Art. 28 para. 2-4 DGPR, we may only commission subcontractors (other processors) after the user's express prior written or documented consent.
If the subcontractor provides the agreed service outside the EU / EEA, the data protection legal admissibility is ensured by appropriate measures.
4. Safety (technical and organizational measures)
We take measures in accordance with. Arts. 28 para. 3 lit. c, 32 GDPR, in particular in conjunction with Article 5 (1) (2) GDPR. Overall, the actions to be taken are data security measures and to ensure a level of protection appropriate to the level of risk with regard to the confidentiality, integrity, availability and resilience of the systems. In this context, the state of the art, the implementation costs and the type, scope and purpose of the processing as well as the different probability and severity of the risk for the rights and freedoms of natural persons within the meaning of Art. 32 (1) GDPR must be taken into account.
5. Rights of data subjects
You have the following rights with respect to the personal data concerning you:
- Right to information, Art. 15 GDPR
- Right to correction or deletion, Art. 16 DSGVO, Art. 17 GDPR
- Right to restriction of processing, Art. 18 GDPR
- Right to object to the processing, Art. 21 GDPR
- Right to Data Transferability, Art. 20 GDPR
- You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us, Art. 77 GDPR.
However, we recommend that you first make a complaint to our data protection officer.
Collection of access data and log files
Based on our legitimate interests within the meaning of Art. 6 para. 1 sentence 1 lit. f. GDPR Data on every access to the server on which this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Logfile information is stored for security purposes (for example, to investigate abusive or fraudulent activities) for a maximum of seven days and then deleted. Data whose further retention is required for evidential purposes shall be exempted from the cancellation until final clarification of the incident.
Cookies and right to object in direct mail
Cookies & reach measurement
Cookies are information transmitted from our web server or third-party web servers to users' web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage.
We use "session cookies" that are only stored for the duration of the current visit to our online presence (for example, to enable the storage of your login status or the shopping cart function and thus the use of our online offer at all). In a session cookie a randomly generated unique identification number is stored, a so-called session ID. In addition, a cookie contains information about its origin and the retention period. These cookies can not save any other data. Session cookies are deleted when you have finished using our online offer and you are, for example, log out or close the browser.
If users do not want cookies stored on their computer, they will be asked to disable the option in their browser's system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.
Online presence in social media
We maintain online presence within social networks and platforms in order to communicate with customers, prospects and users active there and to inform them about our services. When calling the respective networks and platforms, the terms and conditions and the data processing guidelines apply to their respective operators.
Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law
(https://www.privacyshield.gov/participant?id=a2zt00 0000001L5AAI & status = Active).
Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services related to the use of this online offer and the internet usage. In this case, pseudonymous usage profiles of the users can be created from the processed data.
We use Google Analytics to display advertisements made by Google and its affiliates within advertising services, only those users who have shown an interest in our online offering or who have certain characteristics (eg, interest in specific topics or products based on their online content) visited web pages), which we transmit to Google (so-called "Remarketing" or "Google Analytics Audiences"). With Remarketing Audiences, we also want to make sure that our ads meet the potential interest of users and are not annoying.
We only use Google Analytics with activated IP anonymization. This means that the IP address of the users will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.
The IP address submitted by the user's browser will not be merged with other data provided by Google. Users can prevent the storage of cookies by setting their browser software accordingly; Users may also prevent the collection by Google of the data generated by the cookie and related to its use of the online offer and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: https: / /tools.google.com/dlpage/gaoptout?hl=de.
As an alternative to the browser plug-in or within browsers on mobile devices, please click on the following link to set an opt-out cookie, which will prevent the detection by Google Analytics within this website in the future (this data protection information version 23.05.2018, no 01. Opt-Out cookie works only in this browser and only for this domain, delete your cookies in this browser, you must click this link again): Opt-out cookie only works in this browser and only for this domain, delete your cookies in this browser, you must click this link again):
Disable Google Analytics
For more information about Google's data usage, how to opt-out and opt-out, please visit Google's websites: https://www.google.com/intl/en/policies/privacy/partners ("How Google Uses Your Data When You Use Websites or Our Partners' Apps "), https://policies.google.com/technologies/ad (" Use of Data for Advertising "), https://adssettings.google.com/authenticated ("Manage information Google uses to show you advertising").
Google Re / marketing services
Based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) lit. DSGVO), we use the marketing and remarketing services ("Google Marketing Services "), LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, (" Google ").
Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt00 0000001L5AAI & status = Active).
Google Marketing Services allows us to better target advertisements for and on our website so that we only present ads to users that potentially match their interests. If a user e.g. Showing ads for products he was interested in on other websites is called "remarke-ting". For these purposes, when Google and our other websites that have Google Marketing Services are active, Google will immediately execute Google code and become so-called (re) marketing tags (invisible graphics or code, also known as "web Beacons ") incorporated into the website. With their help, the user is provided with an individual cookie, i. a small file is saved (instead of cookies, comparable technologies can also be used). Cookies can be placed on various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googlead-services.com. In this file is noted which websites the user visited, for what content he is interested and what offers he has clicked, as well as technical information about the browser and operating system, referring websites, visit time and other information on the use of the online offer. The IP address of the users is also recorded, whereby in the context of Google Analytics we announce that the IP address is shortened within member states of the European Union or other parties to the Agreement on the European Economic Area and only in exceptional cases to one Google server in the US is transmitted and shortened there. The IP address will not be merged with data of the user within other offers from Google. The above information may also be linked by Google with such information from other sources. If the user then visits other websites, they can be displayed according to his interests, the ads tailored to him.
The data of the users are pseudonym processed in the context of the Google marketing services. That Google stores and processes e.g. not the name or e-mail address of the users, but processes the relevant data cookie related within pseudonymous user profiles. That from the perspective of Google, the ads are not managed and displayed to a specifically identified person, but to the cookie owner, regardless of who that cookie owner is. This does not apply if a user has explicitly allowed Google to process the data without this pseudonymization. The information collected about users through Google Marketing Services is transmitted to Google and stored on Google's servers in the United States.
We can also use the "Google Tag Manager" to integrate and manage the Google Analytics and Marketing services on our website.
If you wish to opt-out of interest-based advertising through Google Marketing Services, you can take advantage of Google's recruitment and opt-out options: https://adssettings.google.com/authenticated.
Based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) f. DSGVO) we use social plugins ("plugins") of the social network facebook.com, which operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland ("Facebook"). The plugins can represent interaction elements or content (eg videos, graphics or text contributions) and can be recognized by one of the Facebook logos (white "f" on blue tile, the terms "Like", "Like" or a "thumbs up" sign ) or are marked with the addition "Facebook Social Plugin". The list and appearance of Facebook Social Plugins can be viewed here: https://developers.facebook.com/docs/plugins/.
Facebook is certified under the Privacy Shield Agreement, providing a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt00 00000GnywAAC & status = Active).
When a user invokes a feature of this online offering that includes such a plugin, their device establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to the device of the user and incorporated by him into the online offer. In the process, user profiles can be created from the processed data. We therefore have no influence on the amount of data that Facebook collects with the help of this plugin and therefore informs the users according to our knowledge.
By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offer. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. If users interact with the plugins, for example, press the Like button or leave a comment, the information is transmitted from your device directly to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and save their IP address. According to Facebook, only an anonymous IP address is stored in Germany.
The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as the related rights and setting options for protecting the privacy of users, can be found in Facebook's data protection notes: https://www.facebook.com/about/ privacy /.
If a user is a Facebook member and does not want Facebook to collect data about him via this online offer and link it to his member data stored on Facebook, he must log out of Facebook and delete his cookies before using our online offer. Other settings and inconsistencies regarding the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US-American site http://www.aboutads.info / choices / or the EU page http://www.youronlinechoices.com/. The settings are platform independent, i. they are adopted for all devices, such as desktop computers or mobile devices.
Within our online offer will use the marketing functions (so-called "LinkedIn Insight Tag") of the network LinkedIn. Providers is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States. Each time you visit one of our pages that contains LinkedIn features, it will connect to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. In particular, the LinkedIn Insight Tag allows us to analyze the success of our campaigns within LinkedIn, or to target audiences based on how users interact with our online offering. If you are registered with LinkedIn, LinkedIn will be able to associate your interaction with our online offering with your user account. Even if you click LinkedIn's "Recommend Button" and are logged in to your LinkedIn account, LinkedIn is able to make your visit on our website you and your user account.
LinkedIn is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0 & status = Active).
Within our online offer functions of the service, or the platform Twitter included (hereinafter referred to as "Twitter"). Twitter is an offer from Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, United States. Features include displaying our posts within Twitter within our online offering, linking to our profile on Twitter, as well as the ability to interact with Twitter posts and features, as well as measuring whether users are using the ads we've posted on Twitter access our online offer (so-called conversion measurement).