PRIVACY STATEMENT

SECTION I. – GENERAL INFORMATION

Information

We appreciate your interest in our company and our services. We consider it our primary task to protect the confidentiality of the personal data you provide and to protect it from unauthorised access. We therefore take the utmost care and apply state-of-the-art security standards to ensure maximum protection of your personal data. To this end we have adopted technical and organisational measures, which ensure that the data protection regulations are observed both by us and also by our external service providers. Please read these regulations to familiarise yourself with the nature, scope and aim of the processing of personal data by us as the providers of this website. The lawful basis on which we process your personal data is provided under Regulation (EU) 2016/679 General Data Protection Regulation.

– hereinafter referred to as the “GDPR” –

Enhanced regulatory provisions apply in Germany under the Federal Data Protection Act [Bundesdatenschutzgesetz], in supplement to the provisions of the GDPR.

hereinafter referred to as the “BDSG” –

To the extent that no other information is provided in the future, you are neither required by law nor by contract to provide your personal data to us, nor is it absolutely necessary to conclude a contract with us. You are not fundamentally obliged to provide your personal data. Refusal to provide your personal data has no consequences for you as a user when viewing our website.

This applies only where no other information is given in the subsequent processing operations.

SECTION II. – DEFINITIONS

2.Definitions

Legislation requires personal data to be processed lawfully, in good faith and in a manner that is reasonable for the Data Subject. In order to ensure this, we hereby inform you of the individual legal definitions which are also used in this data protection statement. This data protection statement is based on terms similar to those used by the European Commission when adopting the General Data Protection Regulation (GDPR). The terms used here are presented in abbreviated form, correspondingly and without any claim to their completeness or the legal certainty of the wording. For further information please refer to Regulation (EU) 2016/679 of the European Parliament and of the Council dated 27 April 2016, in so far as this description does not sufficiently clarify the definitions or explain the legal form.

We use the following terminology in our data protection statement, including but not limited to:

Personal data” Personal data is all the information, which relates to an

(see Article 4(1) of the GDPR) identified or identifiable natural person

hereinafter referred to as the “Data Subject” or “pers. data” –

Processing” Processing is any process or series of processes carried

(see Article 4(2) of the GDPR) out in the context of personal data.

Restriction” A restriction on processing is the marking of stored
(see Article 4(3) of the GDPR) personal data with the aim of limiting its future processing.

Profiling” Profiling is any type of automated processing in which

(see Article 4(4) of the GDPR) personal data is used to evaluate certain personal aspects relating to a natural person.

Pseudonymisation” is the processing of personal data in such a way that

(see Article 4 Para. 5 GDPR) this can no longer be assigned to a Data Subject without

the need for additional information.

Data Controller” A data controller is the natural or legal person, who alone

(see Article 4(7) of the GDPR) or together with others decide on the purposes and

means of processing.

Processor” A processor is a natural or legal person who

(see Article 4(8) of the GDPR) processes data on behalf of the Data Subject.

Recipient” A recipient is a natural or legal person, authority,

(see Article 4(9) of the GDPR) institution or other body to whom personal data is

disclosed, regardless of whether it involves a third party or not.

Third party” A third party is a natural or legal person, who, under the

(see Article 4(10) of the GDPR) direct authority of the Data Controller, is authorised to

process personal data.

Consent” Consent is each expression of will unequivocally given by

(see Article 4(11) of the GDPR) the Data Subject voluntarily for a particular case in the

form of a declaration or a unique action of confirmation.

SECTION III. – Data Controller

  1. Data Controller

The Data Controller in the sense of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG), as well as any other data protection laws and other regulations on data protection in the Member States of the European Union:

Regine IQtrim GmbH

Industriestraße 9

72461 Albstadt (Germany)

Phone: +49 7432 90711 0

Fax: +49 7432 90711 29

E-mail: info@regineiqtrim.com

Web: https://www.regineiqtrim.com

  1. Data protection officer

The data protection officer of the Data Controller for processing is:

DDSB GmbH

Andreas Peter Mückl

Untere Dornäcker 21

72379 Hechingen (Germany)

Phone: +49 7471 5010 100

Fax: +49 7471 5010 190

E-mail: privacy@ddsb.de

Web: https://www.ddsb-datenschutz.de

  1. Data protection supervisory authority

Responsible supervisory authority:

The State Commissioner for Data Protection

and the Freedom of Information for Baden-Württemberg

[Landesbeauftragte für den Datenschutz

und die Informationsfreiheit Baden-Württemberg]

Postfach 102932

70025 Stuttgart (Germany)

Phone: +49 711 61554-10

Fax: +49 711 61554-115

E-mail: poststelle@lfdi.bwl.de

Web: https://www.baden-wuerttemberg.datenschutz.de

SECTION IV. – Use and Purpose of the processing and its Lawful Bases

  1. Use and Purpose of the Processing

We process personal data that we receive directly from our customers in the course of our business relationship. In addition, we process personal data that we collect from other companies, to carry out orders, to fulfil contracts or on the basis of consent we have received from you, for example. We also process personal data that we have legitimately gained and are permitted to process from publicly available sources, such as commercial registers, the press, the media or the internet. The personal data provided by you will be processed according to the applicable regulations on personal data protection, only for the purposes communicated by you and for which you have given consent for its use. In particular, for:

  • initiation or performance of the contract with you;

  • being able to process and answer your enquiries adequately and effectively;

  • tailoring services and offers to you;

  • processing your requests and orders;

  • providing particular information or offers to you;

  • maintaining legitimate business interests, in terms of customer service and customer
    care.

Your personal data is not disclosed to third parties without your express consent.

  1. Lawful Basis for the Processing of Personal Data

The processing of personal data is only lawful if there is a lawful basis for the processing. The lawful basis for the processing may, in accordance with Article 6(1)(a) to (f) of the GDPR, in particular be:

  1. the Data Subject has given their consent to the processing of personal data concerning them for one or more specific purposes;

  2. the processing is necessary for the fulfilment of a contract to which the Data Subject is a contractual party or in order to fulfil contractual requirements at the request of the Data Subject;

  3. the processing is necessary to fulfil a legal obligation to which the Data Controller is subject;

  4. the processing is necessary to protect the vital interests of the Data Subject or another natural person;

  5. the processing is necessary for the performance of a task in the public interest or in the exercise of public authority conferred on the Data Controller;

  6. the processing is necessary to safeguard the legitimate interests of the Data Controller or a third party, unless the interests or fundamental rights and freedoms of the Data Subject, which require the protection of personal data, prevail, in particular where the Data Subject is a child.

SECTION V. – Collection of Personal Data

  1. Server Log Files

With each visit to our website, whether by a Data Subject or via an automated system, a set of general data and information is collected for the maintenance and safe operation of our website. This general data and information is stored in the log files of the server. This data is collected only to the extent that it is technically necessary. The data remains anonymous and is evaluated exclusively for statistical purposes to improve our websites and online services. The data collected is used solely for statistical evaluations and to improve the website. We reserve the right, however, to review the server log files subsequently, in the event that concrete and valid evidence indicates an illegal use of our website.

3.Acquisition and Processing of the Data Types in Server Log Files

Where the website is used for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to guarantee its stability and security. These items are:

  • websites visited

  • time of access

  • amount of data sent in bytes

  • source/reference from which you accessed the page

  • information about the internet service provider of the accessing system

  • browser type used and its version

  • operating system used for browser access

  • IP address used (anonymised)

  • website from which an accessing system reaches our website (the referrer)

  • the sub-pages that are controlled via an access system on our website

  • other similar data and information used for risk prevention in the case of attacks on our
    information technology systems.

When using this general data and information, Regine IQtrim GmbH does not draw any conclusions about the Data Subject. Rather, this information is needed to

  • correctly deliver the content on our website;

  • optimise the contents and advertising of our website;

  • ensure the functionality of our information technology systems and the technology of
    our website;

  • provide law enforcement authorities with the information necessary for law
    enforcement in the event of a cyber-attack.

This data and information collected anonymously are therefore statistically evaluated by Regine IQtrim GmbH with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data processed by us.

The anonymous data from the server log files is stored separately from all personal data given by a Data Subject and, therefore, does not provide any conclusions about individual persons. This means that your personal data is protected at all times. This data is processed based on Article 6(1)(f) of the GDPR under the legitimate interest in the provision and secure operation of our website. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

5.Contact Options

On the basis of statutory regulations, the Regine IQtrim GmbH website contains information that enables customers to quickly contact us electronically, as well to communicate with us directly, which also includes a general e-mail address.

If a Data Subject contacts us by e-mail or any other means of contact, the personal data transmitted by the Data Subject will be automatically stored. We process your personal data which you provide to us by e-mail contact form, etc. to answer and fulfil your requests. You are not obliged to provide your personal data. But if you do not provide us your e-mail address we cannot reply by e-mail. Personal data submitted on a voluntary basis to us is stored for purposes of processing the request and contacting the Data Subject.

This personal data is not transmitted to third parties.

By sending your message, you consent to the processing of the data transferred. This data is processed on the basis of Article 6(1)(a) of the GDPR with your consent.

You may revoke your consent at any time by notifying us, without affecting the lawfulness of processing carried out on the basis of consent until the time of revocation. We will only use your e-mail address to respond to your enquiry. Your data will then be deleted, taking into account statutory and, in particular, tax and commercial law retention periods, unless you have consented to further processing and use.

6.Communication by E-mail

Your personal data is stored using all possible technical and organisational measures so that it is not accessible to third parties. As the recipient, we cannot guarantee complete data security for e-mail communication, so we recommend that you send confidential information by post. This data is processed on the basis of Article 6(1)(a) of the GDPR with your consent. You may revoke your consent at any time by notifying us, without affecting the lawfulness of processing carried out on the basis of consent until the time of revocation.

7.Form Function

Where there is the possibility of entering personal data on our website, data is disclosed on an expressly voluntary basis. Of course, this data will be handled confidentially by us.

By submitting your data, you consent to the processing of the data transferred. This data is processed on the basis of Article 6(1)(a) of the GDPR with your consent.

You may revoke your consent at any time by notifying us, without affecting the lawfulness of processing carried out on the basis of consent until the time of revocation.

8.Contact Form

When contacting us via our contact form, we only collect the personal data (name, e-mail address and message text) provided by you. This processing serves to contact you and respond to your request.

Your data is processed on the basis of Article 6(1)(f) of the GDPR. You have the right to object to the data processing under Article 6(1)(f) of the GDPR on the basis of legitimate interest and not for the purpose of direct marketing for reasons that arise from your particular situation at any time. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

This personal data collected is not disclosed to third parties, unless such disclosure is required by law or serves for the legal defence of the Data Controller. We delete the data arising in this context after storage is no longer necessary, or processing is restricted, unless statutory retention obligations prevent this.

SECTION VI – Use and Processing

  1. Information

We only store and process data which you voluntarily provide to us. If you make use of services, generally only data that we absolutely need to provide the services and to safeguard our own legitimate business interests is collected. If we ask you for further information, you are under no obligation to provide it.

If the processing of personal data is necessary and there is no lawful basis for such processing, we generally obtain consent for the processing the data of the Data Subject. Personal data is always processed in accordance with the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG), and in accordance with the state-specific data protection provisions applicable to Regine IQtrim GmbH.

Regine IQtrim GmbH has implemented numerous technical and organisational measures as the Data Controller in order to ensure that all personal data processed via this website is protected as best as possible. Nevertheless, internet-based data transmissions can by their very nature have security gaps, so absolute protection cannot be 100% guaranteed. For this reason, every Data Subject is free to transmit personal data to us by alternative means, for example by telephone or post.

9.Consent

If it is necessary to obtain personal data, the processing of which is permitted or provided for on a lawful basis, we collect this from the Data Subject before processing in the form of voluntary consent. You may revoke your consent at any time by notifying us, without affecting the lawfulness of processing carried out on the basis of consent until the time of revocation.

10.Legitimate Interest

If the processing is absolutely necessary to maintain a legitimate interest of our company or a third party, and it must be ensured that the interests are proportionate and the fundamental rights and freedoms of the Data Subject do not prevail, then we conduct the processing on the basis of Article 6(1)(f) of the GDPR in a considered assessment of risks related to this and in full awareness of our fiduciary duty according to strict assessment criteria, which otherwise are not included in any of the above mentioned lawful bases. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

We are, in particular, allowed to carry out such processing procedures that sometimes become necessary because they have been specifically provided for in EU legislation. In this regard this maintains the condition that, for example, a legitimate interest could be assumed if the Data Subject is a customer of the Data Controller. (see Recital 47(2) of the GDPR).

11.Direct Marketing

We use your e-mail address, which we have obtained within the framework of a personal contact or in connection with an agency/project undertaking or in connection with a service delivery/claim or in connection with the sale/purchase of a good/product, for the electronic transmission of marketing for our own offers, products or services, which are similar to those that you have already ordered with us, if you have not objected to such use. This data is processed on the basis of Article 6(1)(f) of the GDPR on the basis of the legitimate interest in direct marketing. You have the right at any time to object to the processing of your personal data, without giving any reasons, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement. You can also use the dedicated link in the promotional e-mail. There are no other costs involved in sending this notification other than the transmission costs in accordance with the basic tariffs.

12.Credit Check

We wish to point out that we are entitled to send all relevant data concerning outstanding claims made on the basis of non-contractual behaviour to credit agencies, in compliance with the statutory requirements.

If we make advance outlays, for example, if you pay on account or on credit, we reserve the right to obtain a credit rating. To do this, we submit the personal data required for a credit check to a credit agency. We use the information obtained about the statistical probability of default for making a balanced decision with respect to the conclusion, execution or termination of the contract. Your legitimate interests will be taken into account in accordance with the legal requirements.

This data is processed on the basis of Article 6(1)(f) of the GDPR on the basis of the aforementioned legitimate interest. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you can contact us at any time, as the Data Controller. The credit information can contain probability values (score values), which are calculated on the basis of scientifically recognised mathematical-statistical methods.

13.Processing of Personal Data

When creating a quotation or offer acceptance, we collect and use personal data only as necessary to generate, fulfil and process quotes and/or contracts, as well as to process requests in this regard. This data must be provided in order to conclude the contract.

This data is processed on the basis of Article 6(1)(b) of the GDPR and is necessary to conclude and execute a contract with you. Service providers employed by us and acting on our behalf (order processors, see Article 28 GDPR) can process data for purposes mentioned in Section IV, Part A.

Existing services which the contractor generally uses with third parties as an ancillary service, in support of its operation or its business in the context of order processing, also fall within the sense of this statement. In such cases, personal data is processed by the operator under contract in accordance with Article 28 of the GDPR in connection with Section of the 62 BDSG.

Inasmuch as ancillary services also need to be used for the processing, the processing is based on Article 6(1)(f) GDPR on the basis of the legitimate interest in maintaining business operations. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement. These include ancillary services to ensure the confidentiality, availability, integrity and capacity of the computer hardware and software used and called upon by the contractor, such as:

  • telecommunications providers as part of maintenance and services

  • cleaning and/or security services

  • auditors in the context of certifications

  • waste disposal services

  • data centre services

  • postal/transportation services

  • IT service providers for system maintenance and user service.

14.Data Transfer

Your data is not disclosed to third parties, who then process it under their own responsibility, without your express consent. Only our service partners which we need to conduct the contractual relationship or service providers we use in the course of order processing are excluded from this. The scope of the disclosure of data is limited to a minimum. In all cases, we assure you that when choosing our service providers which we use in individual cases, we select these carefully and in good faith, in terms of their suitability and reliability, ensuring that they satisfy our own requirements and standards.

15.Transmissions

Personal data is transmitted to authorised national institutions and authorities only within the framework of relevant laws or unless we are required by a court decision to do so. This data is processed on the basis of Article 6(1)(e) of the GDPR.

16.Data Transfer to a Third Country

We do not envisage transmitting your data to a third country. If our service providers or partners are located in a country outside the European Economic Area (EEA), we will inform you of the consequences of this in the description of the relevant offer.

17.Categories of Recipients

Within Regine IQtrim GmbH, only those persons who receive your data and are entrusted with processing the contract or handling your request. Otherwise, personal data is processed on our behalf, on the basis of contracts pursuant to Article 28 of the GDPR in conjunction with Section 62 of the BDSG. In addition to the recipient named in the respective provisions of this data protection statement, this may be to recipients in the following categories:

  • commercial agencies

  • shipping providers

  • payment service providers

  • enterprise resource planning service providers

  • logistics providers

  • cloud and IT service providers

  • tax and business consultants.

The recipients can be also our affiliates, insofar as this is allowed for within the purposes set forth in this statement and lawful bases.

18.Duration of Storage

The Data Controller processes and stores the personal data of the Data Subject only for the period that is necessary to achieve the purpose of the storage. After completion of the contract, the data is first stored for the duration of the warranty period; then, taking into account any legal and, in particular, tax and commercial retention periods, your data is stored and then deleted after this period, unless you have agreed to further processing and use or unless this is otherwise determined by the European Commission or any other laws or regulations to which the Data Controller is subject.

19.Confidentiality and Data Protection

Our employees and the service companies commissioned by us are contractually bound to confidentiality and to comply with data protection, in accordance with regulations of the German Federal Data Protection Act.

20.Children and/or Young People

Our offer is essentially aimed at adults. Persons below the age of 18 should not transmit personal data to us without the consent of their parents or legal guardians.

We generally require no personal data from a child or children or a young person or young people, and we do not collect and or disclose such data to third parties. Nevertheless, in special circumstances, we may need and request such personal data to process an application, under our legitimate interest in the application for the establishment of a possible employment relationship.

In such cases, personal data is processed on the basis of Article 6(1)(f) of the GDPR, for the legitimate interest of the aforementioned purpose and to obtain the necessary written consent of one or more parents or guardians in the processing.

The parents or guardians may revoke their consent at any time by notifying us, without affecting the lawfulness of processing carried out on the basis of consent until the time of revocation. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

If the Data Controller concludes an employment or placement contract with an applicant, the data to be transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. This data is processed on basis of Section 26(1) in conjunction with (8)(2) of the BDSG in the course of employment.

21.Job Applications

Insofar as the application is necessary to fulfil a contract with the applicant or to carry out pre-contractual measures, the lawful basis for processing the data is based on Article 6(1)(b) of the GDPR.

If this is a speculative application, the data is processed based on Article 6(1)(a) GDPR, with the consent of the applicant.

You can revoke consent provided under the lawful basis of Article 6(1)(a) of the GDPR at any time by informing us, without affecting the lawfulness of the processing carried out on the basis of consent until the time of revocation.

Insofar as ancillary services are to be used for processing, the processing is carried out on the basis of Article 6(1)(f) of the GDPR, based on the legitimate interest in the handling of the application process. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

The lawful basis for processing the data beyond any other lawful basis is in any case the consent of the applicant in accordance with Article 6(1)(a) of the GDPR.

As part of the application process, we obtain the consent of the applicant. You can revoke consent provided under the lawful basis of Article 6(1)(a) of the GDPR at any time by informing us, without affecting the lawfulness of the processing carried out on the basis of consent until the time of revocation.

If the processing of personal data is necessary and there is no lawful basis for such processing, we generally obtain consent for the processing the data of the Data Subject. You can revoke consent provided under the lawful basis of Article 6(1)(a) of the GDPR at any time by informing us, without affecting the lawfulness of the processing carried out on the basis of consent until the time of revocation.

As far as employment between you and us is concerned, we may process the personal data already obtained from you for employment purposes. The lawful basis flows from Section 26(1) in conjunction with (8)(2) of the BDSG if this is necessary for the creation, implementation or termination of the employment relationship or for exercising or fulfilling the rights and obligations of the employees resulting therefrom.

Otherwise, the application process ends with the receipt of the rejection by the applicant.

In the event that an employment relationship between you and us does not come into effect, we may also continue to store data based on Article 6(1)(f) of the GDPR to the extent necessary to defend against possible legal claims. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. To exercise this right, you may contact us at any time, as the Data Controller or our data protection officer, using the contact details provided in this statement.

22.Processing in the Employment Context

Data is processed on the basis of Article 88 of the GDPR in conjunction with Section 26 of the BDSG.

SECTION VII. – Technical and Organisational Measures

We have taken technical and organisational security measures to protect your personal information against loss, destruction, manipulation and unauthorised access. Our security measures are continuously updated in accordance with technological development and the state of the art,as far as economically viable and acceptable, so as to keep the confidentiality, integrity, availability and resilience of our systems and services always at the highest level.

23.SSL Encryption

To best protect your transmitted data, we use SSL encryption on our websites. You can recognise encrypted connections by the prefix “https://” in the page link in the address line of your browser. Unencrypted pages are identified by “https://”. All data that you send to these SSL websites – such as inquiries or logins – cannot be read by third parties thanks to SSL encryption.

24.Organisational Measures

All of our employees and all persons involved in data processing are contractually obliged to observe the data protection laws and provisions and are also bound to the confidential handling of personal data as well as to data protection and confidentiality.

25.Automated Decision-Making

As a responsible company, we do not use automatic decision-making.

26.Profiling

Profiling is carried out only for logistical reasons to process your order within our enterprise resource planning system.

SECTION VIII. – Rights of Data Subjects

You have the following rights pursuant to the statutory requirements under Article 15 to 21 and Article 77 of the GDPR in connection with Section 29 of the BDSG. If you wish to avail yourself of any of the following rights, you may contact our data protection officer or us, as the Data Controller, at any time using the contact details provided in this statement.

  • Information about your data which we store and how we process it

  • Correction of incorrect personal data

  • Deletion of your data which we store, or limitation of data processing, if we are not yet allowed to delete your data due to legal obligations

  • Objection to your data being processed by us

  • Data portability, if you have consented to data processing or have concluded a contract with us.

  • If you have given us your consent, you can revoke it with future effect at any time.

Right to objection under Article 21 of the GDPR

Any Data Subject has the right granted by the European Commission, for reasons arising from their particular situation, to object to the processing of personal data relating to them at any time, which is processed on the basis of Article 6(1)(e) or (f) of the GDPR. This also applies to profiling based on these provisions.

Regine IQtrim GmbH will no longer process personal data in the event of an objection, unless we can prove there are compelling reasons to continue the processing which outweigh the interests, rights and freedoms of the Data Subject, or that the processing serves to assert, exercise or defend legal claims.

If Regine IQtrim GmbH processes personal data for direct mailing purposes, the Data Subject has the right to object to the processing of personal data for the purpose of such marketing at any time. This also applies to any profiling connected with such direct marketing.

If the Data Subject objects to Regine IQtrim GmbH’s processing for direct marketing purposes, Regine IQtrim GmbH may no longer process the personal data for these purposes.

The Data Subject has the right, for reasons arising from his/her particular situation, to object to the relevant processing of personal data which Regine IQtrim GmbH carries out for scientific or historical research purposes or for statistical purposes, in accordance with Article 89(1) of the GDPR, unless such processing is necessary for the performance of a task in the public interest.

The Data Subject is also free to exercise their right of objection in relation to the use of services of an information company, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.

Without prejudice to any other administrative or judicial remedy, you have the right, in accordance with Article 77 of the GDPR in conjunction with Section 29 of the BDSG, to contact the supervisory authority if you believe that the processing of your personal data is not lawful.

The competent supervisory authority varies depending on your country of residence, your work or the nature of the alleged infringement. A list of supervisory authorities (for the non-public sector) and their addresses can be found (in German) at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

You also have the right to an effective judicial remedy if you consider that your rights under this regulation have been infringed as a result of processing of your personal data in breach of this regulation.

SECTION IX. – Integrated Processing Components

  1. Google APIs

Google APIs of the company Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 (hereinafter: Google) are used on our Internet pages. is used. This is a program interface provided by Google. Within the scope of use, data, such as in particular the IP address, may be transmitted to Google. The processing is carried out on the basis of Article 6(1)(f) GDPR for the legitimate interest in the aforementioned purpose. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. You can prevent the collection and forwarding of personal data (in particular your IP address) to Google and the processing of this data by Google by deactivating the execution of Java Script in your browser or by installing a tool such as ‘NoScript’.

  1. Google Maps

On our website we use Google Maps (API) from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Maps is a web service for displaying interactive (land) maps to visually display geographic information. By using this service, you can, for example, view our location and make it easier for you to reach us.

Already when you call up the subpages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transferred to Google’s servers in the USA and stored there. This occurs regardless of whether Google provides a user account that you are logged in to or whether there is no user account. When you’re logged in to Google, your information will be directly associated with your account. If you don’t want your profile associated with Google, you’ll need to log out of your Google Account. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. In particular, such evaluation shall be carried out in accordance with Article 6(1)(f) GDPR on the basis of Google’s legitimate interests in the display of personalised advertising, market research and/or the demand-oriented design of its website. You have the right to object to the creation of these user profiles, and you must contact Google to exercise this right.

Google LLC, headquartered in the USA, is certified for the us-European privacy agreement “Privacy Shield”, which ensures compliance with the data protection level applicable in the EU.

If you do not agree with the future transmission of your data to Google within the scope of the use of Google Maps, there is also the possibility to completely deactivate the web service of Google Maps by switching off the application JavaScript in your browser. Google Maps and thus also the map display on this website can then not be used.

You have given your consent to this via our opt-in cookie banner within the meaning of Article 6(1)(a) GDPR.

The terms of use of Google can be found under the following link: https://policies.google.com/terms?hl=en-GB&gl=en, the additional terms of use for Google Maps can be found under the following link: https://www.google.com/intl/en_US/help/terms_maps.html

Detailed information on data protection in connection with the use of Google Maps can be found on Google’s website (“Google Privacy Policy”): https://www.google.de/intl/en_us/policies/privacy/

  1. Gstatic

Our website uses Java Script code from the website www.gstatic.com of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (Google). If you have activated Java-Script in your browser and have not installed a Java-Script blocker, your browser may send persb. data to Google. We are not aware of what data Google links to the data received and for what purposes Google uses this data. The processing is carried out on the basis of Article 6(1)(f) GDPR for the legitimate interest in the aforementioned purpose. You have the right at any time to object to the processing of your personal data, for reasons arising from your particular situation, based on Article 6(1)(f) of the GDPR. If you do not want Google to collect data about you via our website, you must deactivate the use of JavaScript code from Google in your browser or block the execution of scripts for the domain www.gstatic.com altogether, e.g. www.noscript.net or www.ghostery.com

Section XII. – Statutory or Contractual Provisions

  1. Provision of Personal Data

We inform you that the provision of personal data can partly be required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner).

27.Consequences of Failure to Provide Personal Data

A failure to provide personal data can mean that a contract cannot be concluded with you. Before providing any data, you are welcome to contact our data protection officer if you have any questions. They will inform you whether the provision of personal data is legally or contractually determined and whether it is absolutely necessary for the conclusion of the contract with you or whether there is an obligation to provide personal data and what the consequences of a failure to provide the personal data are.

28.Obligation to Provide Data

Sometimes you may be required to supply us with your personal data in order to conclude a contract, which must be processed by us as a result. For example, you are required to provide us with your personal data if our company wishes to enter into a contract with you.

29.Objection to Spam E-Mails

We hereby expressly object to the use of contact details for the purpose of sending unsolicited marketing and information material, which must be published within the scope of the imprint obligation. We expressly reserve the right to take legal action in the event of the unsolicited sending of marketing information, such as spam e-mails.

30.Links to Third Parties

If you use external links which appear on our website, then this data protection statement does not extend to these links. In so far as external links appear, we assure you that no breaches of the applicable data protection laws on the linked websites were identified at the time that the link was included. However, we have no influence on the compliance and implementation of the legal data protection regulations by other providers. Please visit the website of the respective provider to read its data protection policy and for details of its contact for data protection.

31.Responsibility for Contents

Under Section 7(1) of the German Telemedia Act [Telemediengesetz] (TMG), as a service provider we are responsible for our own content on this website in accordance with general legislation. According to Sections 8 to 10 to the TMG, as the operator of this website, we are not obliged to monitor information transmitted or stored on this site by third parties or to monitor the site for signs of illegal activity. Obligations to remove or block the use of information under general legislation remain unaffected.

The free and freely accessible contents of this website were produced with the utmost care. We however expressly point out that we accept no liability or other responsibility for the accuracy, timeliness or completeness of the content provided in this data protection statement. The contents do not serve as legal advice on which you can rely when complying with the legal regulations on data protection – in particular the GDPR – nor can this replace individual legal advice.

32.Liability

Liability claims against Regine IQtrim GmbH which refer to damages of a material or intangible or immaterial nature caused by applying the content presented in this data protection statement or using potentially incorrect and incomplete or misleading content are excluded, provided that on the part of Regine IQtrim GmbH no demonstrably intentional or grossly negligent fault exists.

33.Legal Effect and Choice of Jurisdiction

Insofar as sections or individual terms in this data protection statement are not, or are no longer or not fully, applicable to the legal situation in question, the content and validity of the remaining parts of the document remains unaffected. German law applies. For consumers, this choice of law applies only insofar as the protection provided is not revoked by mandatory provisions of the laws of the state in which the consumer has their habitual residence (favourability principle).

34.Other Provisions

Changes to the law or to our internal processes may required this data protection statement to be modified. In the event of such a change, we will inform you of this, insofar as possible, six weeks before the changes enter into force. You should read this policy every now and then to stay up to date on how we protect your data and continuously improve our website’s content. If we make material changes to the collection, use and/or disclosure of your personal data that you make available to us, we will advise you in a clear and prominent notification on the website.

You generally have a right of withdrawal with respect to the consent you have granted. Please note that unless you exercise your right of withdrawal), the current version of the privacy policy applies.

In the course of the development of legal provisions, Regine IQtrim GmbH expressly reserves the right to amend parts of the statement or the statement in its entirety without separate announcement, to supplement it, to delete it or to cease publication temporarily or permanently. In addition, due to our lack of intention to be legally bound, no contractual relationship between us and you as the user of this content is created by obtaining this freely accessible content. For questions and suggestions on the topic of data protection at Regine IQtrim GmbH, please contact: datenschutz@ddsb.de

We will update this data protection statement when needed, based on the current circumstances, such as changes to legal requirements. The version published here applies.

This data protection statement was created by Regine IQtrim GmbH.

Last updated 01/2019