Privacy

Privacy policy

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the legal provisions (DSGVO, TMG). In this privacy policy, we inform you about the most important aspects of data processing within the scope of our website.

The use of our website is usually possible without providing personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our pages, this is always done, as far as possible, on a voluntary basis. This data will not be disclosed to third parties without your express consent.

We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. Complete protection of the data against access by third parties is not possible.

For security reasons and to protect the transmission of confidential content, such as orders, inquiries or applications, which you send to us as the site operator, this site uses an SSL or SSL protocol. TLS encryption. You can recognize an encrypted connection by the fact that the browser address bar changes from “http://” to “https://” and by the lock symbol in your browser bar. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

1. data deletion and storage

Your personal data will be deleted as soon as the purpose of storage ceases to apply.

Longer storage may take place if a legal retention period, e.g. from the German Fiscal Code (Abgabenordnung) or the German Commercial Code (HGB), prevents deletion. The data will not be passed on to third parties.

 

1.1 Criteria for the period of deletion:

Your data will be deleted after a reasonable period of time or as required by law. In case of request for deletion – immediately, unless legal retention period is opposed.

 

2. cookies

Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage. We use cookies to make our offer user-friendly. Some cookies remain stored on your terminal device until you delete them. They allow us to recognize your browser the next time you visit. If you do not wish this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases.

When disabling cookies, the functionality of our website may be limited.

 

3. server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

In order to ensure the trouble-free operation of the website, it is necessary to continue using services that create independent server log files.

 

4. google analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

The storage of Google Analytics cookies is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its web offering and its advertising.

 

4.1 IP anonymization

We have activated the IP anonymization function on this website. As a result, your IP address is shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.

 

4.2 Browser plugin

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

 

4.3 Objection to data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set that prevents the collection of your data during future visits to this website: Disable Google Analytics.

For more information on how Google Analytics handles user data, please see Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.

 

4.4 Demographic characteristics in Google Analytics

This website uses the “demographic characteristics” function of Google Analytics. This allows reports to be generated that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google as well as visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as shown in the item “Objection to data collection”.

4.5 Legal basis

The data processing is carried out on the basis of the legal provisions and the following legal bases:

  • Consent
  • – Contract performance or pre-contractual measures
  • – legal obligations
  • – To protect a legitimate interest, the interests, fundamental rights and freedoms of the data subjects do not outweigh the former interest (Art. 6 (1) DSGVO).

 

4.6 Google Analytics Remarketing

Our websites use the functions of Google Analytics Remarketing in conjunction with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This feature allows the advertising audiences created with Google Analytics Remarketing to be linked to the cross-device features of Google AdWords and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g. cell phone) can also be displayed on another of your end devices (e.g. tablet or PC).

If you have given your consent, Google will link your web and app browsing history to your Google Account for this purpose. In this way, the same personalized advertising messages can be displayed on every device on which you log in with your Google account.

To support this feature, Google Analytics collects google-authenticated IDs of users that are temporarily linked to our Google Analytics data to define and create target groups for cross-device ad advertising.

You can permanently object to cross-device remarketing/targeting by deactivating personalized advertising in your Google account; follow this link: https://www.google.com/settings/ads/onweb/.

The aggregation of the collected data in your Google account is based solely on your consent, which you can give or revoke at Google (Art. 6 para. 1 lit. a DSGVO). In the case of data collection processes that are not merged in your Google account (e.g. because you do not have a Google account or have objected to the merger), the collection of the data is based on Art. 6 para. 1 lit. f GDPR. The legitimate interest arises from the fact that the website operator has an interest in the anonymized analysis of website visitors for advertising purposes.

For more information and the privacy policy, please see Google’s privacy policy at: https://www.google.com/policies/technologies/ads/.

Alternatively, you can deactivate the use of cookies by third-party providers by visiting the deactivation page(http://www.youronlinechoices.com/de/praferenzmanagement/) of the EDAA (European Interactive Digital Advertising Alliance).

 

5. Facebook Pixel

Our website uses the visitor action pixel from Facebook, Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) for conversion measurement.

This makes it possible to track the behavior of page visitors after they have been redirected to the provider’s website by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimized.

The collected data is anonymous for us as the operator of this website, we can not draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, in accordance with the Facebook Data Use Policy. This enables Facebook to serve ads on Facebook pages as well as outside of Facebook. This use of data cannot be influenced by us as the site operator.

You can find more information about protecting your privacy in Facebook’s privacy policy: https://www.facebook.com/about/privacy/.

You can also disable the Custom Audiences remarketing feature in the Ad Settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.

If you do not have a Facebook account, you can disable usage-based advertising from Facebook on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/de/praferenzmanagement/.

 

6. input forms (e.g. contact, application)

If you send us your details via the input form, your details from the input form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data (information) without your consent. The data will be deleted after the processing of your request has been completed (see data deletion and storage).

You can revoke your consent for the future at any time by sending an e-mail to datenschutz@sehner-unternehmensberatung.de (see right of revocation).

 

7. share content on Facebook, Google+1, Twitter & Co.

The content on our pages can be shared in social networks such as Facebook, Twitter or Xing in accordance with data protection laws. This tool establishes direct contact between the networks and users only when the user actively clicks on one of these buttons.

An automatic transfer of user data to the operators of these platforms does not take place through this tool. If the user is logged in to one of the social networks, an information window appears when using the social buttons of Facebook, Google+ and Twitter, in which the user can edit the text before sending it.

Our users can share the content of this site in social networks in a privacy-compliant manner without complete surfing profiles being created by the operators of the networks.

 

8. privacy policy for cross-device remarketing

Our websites use the functions of Google Analytics Remarketing in conjunction with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

This feature allows advertising audiences created with Google Analytics Remarketing to be linked to Google AdWords and Google DoubleClick cross-device features. In this way, interest-based, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g. cell phone) can also be displayed on another of your end devices (e.g. tablet or PC).

If you have given your consent, Google will link your web and app browsing history to your Google Account for this purpose. In this way, the same personalized advertising messages can be served on every end device on which you log in with your Google account.

To support this feature, Google Analytics collects google-authenticated ID’s of users that are temporarily linked to our Google Analytics data to define and create target groups for cross-device ad advertising.

You can permanently object to cross-device remarketing/targeting by deactivating personalized advertising in your Google account; follow this link: https://www.google.com/settings/ads/onweb/

In your browser you can set that a storage of cookies is only accepted if you agree. If you want to accept only the cookies of the portal, but not the cookies of the service providers and partners, you can select the setting in your browser “Block third-party cookies”.

Alternatively, you can deactivate the use of cookies by third-party providers by visiting the deactivation page(http://www.youronlinechoices.com/de/praferenzmanagement/) of the EDAA (European Interactive Digital Advertising Alliance).

For more information and the privacy policy, please see Google’s privacy policy at: http://www.google.com/policies/technologies/ads/

 

9. privacy policy for the use of Google Tag Manager

This website uses the Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The Tag Manager tool itself
(which implements the tags) is a domain without the use of cookies and does not collect personal data. The tool takes care of triggering other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager(https://www.google.com/intl/de/tagmanager/faq.html).

 

10. privacy policy for the use of Google Web Fonts

The technical structure of Google Fonts is designed for efficient delivery of fonts without collecting, storing, or using end-user data.

Google Fonts are used without authentication, so no data is sent from website visitors to the Google Fonts interface (hereinafter referred to as the “Interface”). Requests to the interface are sent to resource-specific domains such as fonts.googleapis.com or fonts.gstatic.com, so requests for fonts are separate from other Google services. The requests do not include login information, such as when using authenticated Google services like Gmail.

In order to load fonts quickly, efficiently, and with few requests, the browser caches the responses.

The requests for the exact display of the fonts (CSS instructions) are stored in the cache for one day. The cache can ensure that an updated rendering of a Google font is updated only once per day for all websites and that the font looks the same on all websites.

The font files themselves are cached for a year, which results in the entire Internet becoming faster: When millions of websites reference the same fonts, they are cached after the first website is visited and immediately appear on all other websites visited later. Sometimes font files are updated to reduce file size, increase language availability, or improve design quality. The result is that website visitors send very few queries to Google: Google receives only one request per font family, per day, per browser.

Google stores the requests for the display information and font files according to its own security standards(https://www.google.com/policies/privacy/#infosecurity). By analyzing the aggregated usage figures, the following website(https://www.google.com/fonts/#Analytics:total) can be used to publish how popular font families are. Google additionally uses data from web crawlers to determine which websites use Google fonts. This data is published and accessible in the Google BigQuery database(https://goo.gl/5HeqYf). For more information about the information Google collects and how it is used and secured, please see Google’s privacy policy(https://www.google.com/policies/privacy/).

Source: original English text https://developers.google.com/fonts/faq (retrieved on: 07.05.2018)

11. privacy policy for the use of Google reCAPTCHA

This website uses the service reCAPTCHA of the company Google Inc. in certain forms that allow contacting Sehner Unternehmensberatung GmbH. This service is used to distinguish whether the input of data in the form is done by a natural person or improperly by machine and automated processing. By using this service, the IP address and possibly other data required by Google for the reCAPTCHA service are sent to Google. The deviating data protection provisions of Google Inc. apply here.

Further information about the data collected by Google Inc. collected information and its use and security can be found in the privacy policy of Google Inc. (http://www.google.de/intl/de/privacy or https://www.google.com/policies/privacy/).

12. your rights

12.1 Right to information

You may request confirmation from the controller as to whether personal data concerning you is being processed by us.

If there is such processing, you can request information from the controller about the following:

(1) the purposes for which the personal data are processed;

(2) the categories of personal data which are processed;

(3) the recipients or categories of recipients to whom personal data concerning you have been or will be disclosed;

(4) the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage duration;

(5) the existence of a right to rectify or erase the personal data concerning you, a right to have the controller restrict the processing, or a right to object to such processing;

(6) the existence of a right of appeal to a supervisory authority;

(7) any available information on the origin of the data, if the personal data are not collected from the data subject;

 

12.2 Right to rectification

You have a right to rectification and/or completion vis-à-vis the data controller, insofar as the personal data processed concerning you are inaccurate or incomplete. The responsible party shall make the correction without undue delay.

12.3 Right to restriction of processing

Under the following conditions, you may request the restriction of the processing of personal data concerning you:

(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;

(2) the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of the personal data;

(3) the controller no longer needs the personal data for the purposes of processing, but you need them for the assertion, exercise or defense of legal claims; or

(4) if you object to the processing pursuant to Art. 21 para. 1 DSGVO and it has not yet been determined whether the legitimate reasons of the controller outweigh your reasons.

Where the processing of personal data concerning you has been restricted, such data may be processed, with the exception of their storage, only with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

 

12.4 Right to deletion

You may request the controller to delete the personal data concerning you without delay and the controller is obliged to delete this data without delay if one of the following reasons applies:

  1. The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
  2. You revoke your consent on which the processing is based according to. Art. 6 par. 1 lit. a or Art. 9 para. 2 lit. a DSGVO and there is no other legal basis for the processing.
  3. They lay out acc. Art. 21 par. 1 DSGVO and there are no overriding legitimate grounds for the processing, or you lodge an objection to the processing pursuant to Art. Art. 21 par. 2 DSGVO to object to the processing.
  4. The personal data concerning you has been processed unlawfully.
  5. The deletion of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
  6. The personal data concerning you has been processed in relation to information society services offered pursuant to Art. 8 para. 1 DSGVO collected.

The right to erasure does not exist insofar as the processing is necessary

  1. to exercise the right to freedom of expression and information;
  2. for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  3. for reasons of public interest in the field of public health pursuant to Art. 9 para. 2 lit. h and i and Art. 9 para. 3 GDPR;
  4. for archiving purposes in the public interest, scientific or historical research purposes, or for statistical purposes in accordance with. Art. 89 par. 1 GDPR, insofar as the right referred to in Section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing, or
  5. for the assertion, exercise or defense of legal claims.

 

12.5 Right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.

 

12.6 Right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 para. 1 lit. e or f DSGVO; this also applies to profiling based on these provisions.

 

12.7 Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

 

12.8 Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. In addition, you have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that

(1)the processing is based on consent pursuant to. Art. 6 par. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO or on a contract pursuant to. Art. 6 par. 1 lit. b DSGVO is based and

(2)the processing is carried out with the aid of automated procedures.

In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

If the processing of personal data entrusted to us is carried out for the performance of a task carried out in the public interest or in the exercise of official authority, the right to data portability does not apply.

12.9 Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

 

13. you can reach us at the following contact details:

Sehner Management Consulting GmbH

Herrengraben 3-5

20459 Hamburg

E-mail: info@sehner-unternehmensberatung.de

Phone: 040 63 79 72 07

14. you can reach our data protection officer at:

DATA PROTECTION OFFICER (EXTERNAL)

PROLIANCE GmbH

Leopoldstr. 21

80802 Munich

Web: www.datenschutzexperte.de
E-mail: datenschutzbeauftragter@datenschutzexperte.de

15. competent authority:

Free and Hanseatic City of Hamburg

The Hamburg Commissioner for Data Protection and Freedom of Information

Domain: datenschutz-hamburg.de

E-mail: mailbox@datenschutz.hamburg.de

16. source: