Security and protection of your personal data
We consider it our primary responsibility to maintain the confidentiality of the personal data you provide and to protect it from unauthorized access. We therefore apply the utmost care and the most modern security standards to ensure maximum protection of your personal data.
As a company under private law, we are subject to the provisions of the European General Data Protection Regulation (GDPR) and the regulations of the Federal Data Protection Act (BDSG). We have taken technical and organizational measures to ensure that the regulations on data protection are observed both by us and by our external service providers.
Definitions
The legislator requires that personal data are processed lawfully, fairly and in a way that is comprehensible to the data subject ("lawfulness, fairness, transparency"). To ensure this, we inform you about the individual legal definitions which are also used in this data protection declaration:
Personal data
"Personal data" shall mean any information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an on-line identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Processing
"Processing" means any operation or set of operations, whether or not by automatic means, performed upon personal data, such as collection, recording, organization, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Restriction of processing
"'restriction of processing' means the marking of stored personal data with the aim of limiting their processing in the future.
Profiling
"profiling' means any automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, location or movement of that natural person.
Pseudonymisation
"Pseudonymisation" means the processing of personal data in such a way that the personal data cannot be attributed to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures which ensure that the personal data cannot be attributed to an identified or identifiable natural person.
File system
"'File system' means any structured collection of personal data accessible according to specific criteria, whether centralized, decentralized or organized on a functional or geographical basis.
Responsible person
"Responsible person" shall mean a natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or national law, provision may be made for the controller or for the specific criteria for his or her designation in accordance with Union or national law.
Processor
"processor" means any natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Recipient
"'Recipient' means any natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not that person is a third party However, public authorities which may receive personal data in the context of a specific investigation task under Union or national law shall not be considered as recipients; the processing of such data shall not be subject to any form of processing by those authorities.
Third party
"Third party' means any natural or legal person, public authority, agency or any other body, other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process personal data.
Consent
The data subject's 'consent' shall mean any freely given specific, informed and unequivocal expression of his or her wishes in the form of a declaration or other unequivocal affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.
Security and protection of your personal data
We consider it our primary responsibility to maintain the confidentiality of the personal data you provide and to protect it from unauthorized access. We therefore apply the utmost care and the most modern security standards to ensure maximum protection of your personal data.
As a company under private law, we are subject to the provisions of the European General Data Protection Regulation (GDPR) and the regulations of the Federal Data Protection Act (BDSG). We have taken technical and organizational measures to ensure that the regulations on data protection are observed both by us and by our external service providers.