When you use our website and our offers, we process your personal data. What data we collect during your visit or about your use of our website; what advertising is displayed to you; who can see your data: In short, how we handle your data that is generated when you use our website and digital offers is what we want to answer for you in this data protection information.
The protection of your data is of particular concern to us and, as a private company, we are subject to the provisions of the European Data Protection Regulation (GDPR), the supplementary regulations of the Federal Data Protection Act, as well as the Telecommunications Telemedia Data Protection Act. We naturally comply with the requirements and provisions arising from these laws.
In the following, we would like to inform you in detail about which personal data we collect on our website, for what purpose and how long this data is stored. In addition, it is important to us to inform you comprehensively about the rights you have with regard to data processing and how you can assert these rights.
If you have any questions or comments about data protection on our website, please feel free to contact us at any time. You can contact us by sending an e-mail to email@example.com, for example.
The data controller pursuant to Art. 4 (7) DSGVO and other provisions of data protection law, is the
Phone: +49 421 9 88 88 77
For questions and suggestions regarding data protection and the enforcement of your rights, you are also welcome to contact our data protection officer:
conreri digital development GmbH
Phone: +49 151 61 72 83 08
We collect data of various kinds on our websites. Some data is collected automatically by us when you use our services, for example through the use of so-called cookies. This automatically collected data is mostly of a general nature and mainly contains information about the access duration and the access location.
In addition, we collect personal data and data entered voluntarily by you after your consent if you wish to use certain services. It is possible to use our Internet pages without providing personal data, but the scope of this may be considerably restricted in some cases.
You decide on your consent to the use of various purposes and service providers when you first access our website. With the exception of the processing that is absolutely necessary for the operation of the website, it is up to you to decide which data processing you allow.
Due to many regulatory changes, an extensive body of data protection legislation has emerged in recent years, which on the one hand is intended to ensure data security and strengthen the rights of users, but on the other hand has produced a flood of relevant terms. In order to make the following more detailed explanations on collected data, legal regulations and rights more accessible, we have briefly summarised the most important of these terms below.
In our data protection information, we use terms that are used and defined in the GDPR. So that you know what is meant by this, we would like to explain the most important terms.
A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller in accordance with instructions.
As a user, you have the option of giving your consent to processing requiring consent and to revoke this consent for the future. You make this decision via the so-called consent banner, which is automatically called up the first time you visit our website and provides you with the most important information on data processing.
Cookies are text files that contain data of visited websites or domains and are stored by a browser on users' devices. A cookie is primarily used to store information about a user during or after their visit within an online offering. Stored information may include, for example, language settings on a website, login status, a shopping cart or video interactions. The term cookies also includes other technologies that perform the same functions as cookies (e.g. when user details are stored using pseudonymous online identifiers, also known as "user IDs"). Cookies are used to make websites more user-friendly. Since cookies are stored on the user's computer, you have control over the cookies. You can make changes in the settings of the Internet browser with regard to the use and storage of cookies. However, deactivating cookies will in most cases result in limited usability of our offer.
A third party is a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.
Consent is an expression of self-determination under data protection law. Consent is a voluntary, informed and unambiguous expression of intent in the form of a declaration or other unambiguous affirmative action by which the data subject indicates that he or she consents to the processing of personal data relating to him or her. Consent given may be revoked at any time for the future.
The recipient is a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigative task under Union or Member State law shall not be considered as recipients.
Personal data means any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. IP address or cookies) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data are not attributed to an identified or identifiable natural person.
The TTDSG is a law that is intended to protect the integrity of the terminal device and thus the privacy of the user. The legal basis for the storage and retrieval of information in the end user's terminal device is consent, according to Section 25 (1) sentence 1 TTDSG. This consent is requested when the website is called up.
According to Section 25 (2) No. 2 TTDSG, consent is not required if the storage of information in the end user's terminal equipment or the access to information already stored in the end user's terminal equipment is absolutely necessary in order for the provider of a telemedia service to provide a telemedia service expressly requested by the user. You can see from the cookie settings which cookies are to be classified as absolutely necessary (often also referred to as "technically necessary cookies") and therefore fall under the exemption of Section 25 (2) TTDSG and thus do not require consent.
Please note that the legal basis for the downstream processing of personal data then results from the GDPR. You will find the relevant legal basis for the processing of personal data on this website in the further course of this data protection notice.
A processing operation is any operation or set of operations which is performed upon personal data, whether or not by automatic means. This basically includes any handling of personal data such as the collection, storage, alteration, use, transmission, dissemination, erasure or destruction of personal data.
The controller is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. The controller shall ensure the permissibility of the data processing through the use of technical and organisational measures to be reviewed on a regular basis.
Data transfer outside the EU
The GDPR ensures an equally high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners wherever possible when your personal data is to be processed. Only in exceptional cases will we have data processed outside the European Union in the context of using third-party services.
We only permit processing of your data in a third country if the special requirements of Art. 44 et seq. DSGVO are fulfilled. This means that the processing of your data may then only take place on the basis of special guarantees, such as the officially recognised determination by the EU Commission of a level of data protection corresponding to the EU or the observance of officially recognised special contractual obligations, the so-called "standard data protection clauses".
In the case of merely informative use of the website, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. This data is not merged with other data sources without your consent.
When you access our website, we collect the following data, which is technically necessary for us to present our website to you and to ensure stability and security:
Temporary storage or processing of this so-called server log data is absolutely necessary for reasons of ensuring functionality or technical security, in particular for the defence against and defence against attempted attacks or damage, and is carried out with our corresponding legitimate interest, according to Art. 6 Para. 1 lit. f) DSGVO. In the event of concrete indications, the log data may be subsequently analysed.
The temporary storage of the IP address by our system is necessary to enable delivery of the website to the user's computer.
The data we store is automatically deleted after 30 days.
According to the EU General Data Protection Regulation, you have various rights as a data subject, which you can exercise at firstname.lastname@example.org. These are explained to you below:
You can ask us to confirm whether personal data relating to you is being processed by us. If such processing is taking place, you can request the following information from us:
In addition, you have the right to request information on whether your personal data is transferred to a third country or to an international organisation. In this context, you may request to be informed about the appropriate safeguards pursuant to Article 46 of the GDPR in connection with the transfer.
You also have a right of rectification and completion against us if your personal data is inaccurate or incomplete.
If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with the supervisory authority responsible for us:
The Federal Commissioner for Data Protection and Freedom of Information
Graurheindorfer Str. 153
Phone: +49 (0)228 997799-0
The supervisory authority to which the complaint has been lodged shall inform you of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.
You can request the restriction of the processing of your personal data under the following conditions:
If the processing of your personal data has been restricted, this data may - apart from being stored - only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the Union or a Member State. If the processing has been restricted in accordance with the above conditions, you will be informed by us before the restriction is lifted.
You may request that we delete your personal data without delay and we are obliged to delete this data without delay if one of the following reasons applies:
The right to erasure does not exist insofar as the processing is necessary:
If you have asserted the right to rectification, erasure or restriction of processing against us, we are obliged to notify all recipients to whom your personal data have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance from us, provided that
In exercising this right, you also have the right to have your personal data transferred directly from us to another controller, insofar as this is technically feasible. This must not affect the freedoms and rights of other persons. The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
In this section, we have prepared the data protection information that will be important for you in the context of orders and the use of our digital products. In addition, we have included information on our consent management and our PUR model, as these two points are elementary components of our offer.
By actively entering data in the contact and availability check, we process the data entered.
The data is processed to provide you with our services and to ensure error-free provision of the website. Information entered by you will not be used for other purposes that do not serve the functioning of this website, in particular it will not be passed on to third parties.
If you contact us, a contact form is available on our website, which you can use to contact us electronically. The data entered in the input mask will be transmitted to us and stored. These data are:
The following data is also stored at the time the message is sent:
Furthermore, it is possible to contact us via the e-mail address provided. In this case, the user's personal data transmitted with the e-mail will be stored. Your data will not be passed on to third parties in this context; the data will be used exclusively for processing the communication.
The processing of personal data in this context of the forms is solely for the processing of the contact and the provision of our services. The legal basis for the processing of the contact request and its handling is regularly Art. 6 para. 1 sentence 1 lit. b) DSGVO, additionally Art. 6 para. 1 sentence 1 lit. f) DSGVO.
Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.
We use your contact data for advertising if you have consented to this (Art. 6 para. 1 lit. a) DSGVO), as well as for legally permissible direct advertising for our own and related products if you have indicated this when placing your order or registering (Art. 6 para. 1 lit. f) DSGVO in conjunction with. § 7 para. 3 UWG).
If you no longer wish to receive advertising, you can revoke your consent or object to direct advertising at any time
Your personal data will be passed on to our external and group-internal marketing and newsletter service providers and competition partners if they support us in data processing. These are contractually obliged by us neither to use data for their own purposes nor to pass it on to others. We will not pass on your data to third parties for promotional use without your express consent. The data processed by us will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.
We maintain presences in the "social media". Insofar as we have control over the processing of your data, we ensure that the applicable data protection regulations are complied with. Below you will find the most important information on data protection with regard to our corporate presences.
Responsible for the company websites in the sense of the EU General Data Protection Regulation (DSGVO) as well as other data protection regulations are, in addition to us:
You use these platforms and their functions at your own responsibility. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating). We would like to point out that your personal data may be processed outside the European Union.
The processing of your personal data by us is based on our legitimate interests in effective information and communication pursuant to Art. 6 para. 1 p. 1 lit. f) DSGVO.
As we do not have complete access to your personal data, you should contact the providers of the social media directly when asserting your data subject rights, as they each have access to the personal data of their users and can take appropriate measures and provide information.
Should you still need help, we will of course try to support you.
This chapter lists the data processing procedures on this website. It also transparently shows which services we use for this purpose.
We use "Google (Invisible) reCAPTCHA" on our website, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as: "Google"). Google (Invisible) reCAPTCHA stores and processes information about your user behaviour on our website.
For this purpose, Google (Invisible) reCAPTCHA uses, among other things, cookies, i.e. small text files that are stored locally in the cache of your web browser on your terminal device and that enable an analysis of your use of our website. We use Google (Invisible) reCAPTCHA to check whether the input is made by a human being or abusively by automated, machine processing.
The legal basis is consent, according to Art. 6 para. 1 p. 1 lit. a) DSGVO.
The IP address transmitted within the scope of Google (Invisible) reCAPTCHA will not be merged with other Google data unless you are logged into your Google account at the time of using Google (Invisible) reCAPTCHA. If you wish to prevent this transmission and storage of data about you and your behaviour on our website by Google, you must log out of Google before visiting our site or using Google (Invisible) reCAPTCHA.
You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all the functions of our website to their full extent. You can also prevent the collection of the aforementioned information by Google by setting an opt-out cookie on one of the websites linked below:
Please note that this setting will be deleted when you delete your cookies. You can object to the collection and forwarding of personal data or prevent the processing of this data by deactivating the execution of Java Script in your browser. In addition, you can prevent the execution of Java-Script code altogether by installing a Java-Script blocker (e.g. https://noscript.net/ or https://www.ghostery.com).
Please note that in this case you may not be able to use all the functions of our website to their full extent.
Information from the third-party provider: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. You can find further information on data protection from the third-party provider on the following website: https://www.google.com/intl/en/policies/
We use our own Matomo server, located in the EU, to analyse web traffic. We have configured our Matomo server so that no personal data is collected from you.
In particular, we have made the following adjustments:
If you do not want your visits to be recorded by our Matomo software at all, even in the anonymised form described above, please uncheck the box (if you uncheck the box, you will thereby set a cookie which will store your objection to your visits being counted):
You can revoke your consent to data processing requiring consent, for example to advertising tracking, at any time. You can obtain an overview of all the services we use and the option to revoke your consent by clicking on the following button: