5. Web analysis (Google Analytics)
Further information on data protection at Google Analytics can be found at:
Our contact forms allow you, as a visitor to our website, to learn more about our company, download content, and provide us with your contact information and other demographic information. We use this information to contact you. Before we process your data for the purposes set out in this section, we will obtain your consent to process your data using HubSpot. You can withdraw this consent at any time for the future in accordance with Art. 7 (3) GDPR.
We measure the success of email content that we send to you via HubSpot in order to identify your reading habits based on email opening, opening times, and links clicked, so that we can create and send you interest-based and useful content. Your consent to data processing includes performance measurement. Unfortunately, a separate withdrawal of the success measurement is not possible, in which case you must withdraw the consent in its entirety.
We use HubSpot to optimize advertising and customer targeting. Only if you have given us consent to do so, we can also combine the pseudonymous data with personal data from your CRM profile in order to address you optimally and provide you with interest-based information.
Your data will be passed on to companies affiliated with Körber AG and to HubSpot. HubSpot Inc. is a US company. HubSpot also uses other sub-processors in the USA. The consent you have given also refers to data transfers to the USA. The USA do not offer a level of data protection comparable to the European Union. In certain cases, US companies are obliged to hand over personal data to security authorities without you as the data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities. However, HubSpot Inc. is contractually obligated with the EU standard contractual clauses to ensure data protection-compliant processing.
For more information on data processing by HubSpot, please visit HubSpot's website.
9. Legal basis for processing
The legal basis for processing depends on the purpose for which the data are processed. We collect, as described under item 5, data for pseudonymised user profiles to improve the website on the basis of the applicable data protection law for media.
10. Processing of your data, if you contact us for business purposes
If you contact us as a interested party, supplier, service provider or other business partner, we process your personal data such as contact data or correspondence to the extent that this is necessary to process your enquiry (legitimate interest according to Art. 6 para. 1 letter f GDPR) or to initiate or process the respective transaction (Art. 6 para. 1 letter b GDPR) and, if necessary, store the data within the scope of statutory storage obligations (due to statutory obligations according to Art. 6 para. 1 letter c GDPR).
The same applies if you are an employee of an interested party, supplier, service provider or other business partner and we receive your personal data in this context; the legal basis in this case is our legitimate interest in establishing or carrying out the business relationship with your employer (Art. 6 para. 1 letter f GDPR).
11. Electronic communication
You are welcome to communicate with us by e-mail at any time. Please be advised that we use an E-mail Gateway of an external provider of security technologies to defend against SPAM e-mail, other threatening e-mail, threatening e-mail attachments and URLs. In doing so, this external provider may process your first and last name, e-mail address and IP address. The legal basis is our legitimate interest in preventing unauthorized access to communications networks, the spread of malicious code and damage to computers and electronic communications systems (Art. 6 para. 1 lit. f GDPR in conjunction with Recital 49).“
12. Transmission to third parties and in countries outside the EU
Your personal data will only be transmitted to third parties, if this is legally permitted or if you have given your prior consent. For example, we may transfer data to other companies of the Körber group, if this is necessary to respond to a request you have made. We will only disclose your data to government authorities within the framework of legal obligations or as a result of an official order or court decision. A transfer to recipients outside the EU only takes place if it is ensured that the recipient of the data guarantees an adequate level of data protection and that there are no other interests worthy of protection against the data transfer. Should you have any questions in this regard, please contact our data protection officer (see Section 11).
The data collected by Google Analytics in the form of pseudonymous user profiles (section 5) will be deleted no later than 38 months after the last new entry in the respective user profile. In all other respects we delete your personal data as soon as they are no longer needed for the purposes pursued with the collection and processing and as far as no legal storage obligations stand in the way.
14. Data security
Körber has taken the necessary technical and organisational measures to protect the personal data you provide from loss, destruction, manipulation and unauthorised access. Our employees and all persons involved in data processing are obliged to comply with data protection laws and to treat personal data confidentially. Our employees are trained accordingly. Both internal and external tests ensure compliance with all data protection relevant processes at Körber. To protect the personal data of our users, we use a secure online transmission procedure, the so-called "Secure Socket Layer" (SSL) transmission. You can recognize this by the fact that an "s" ("https://") or a green, closed lock symbol is added to the address component . By clicking on the icon you will receive information about the SSL certificate used. The display of the symbol depends on the browser version you are using. SSL encryption guarantees the encrypted and complete transmission of your data.
15. Your rights regarding personal data
The data protection law grants you a number of rights with regard to data concerning your person (so-called rights of data subjects). In general, these are the right to request information about your personal data stored by us, as well as the right to correct, delete or restrict the processing of these data and to object to the processing. Whether and to what extent these rights exist in individual cases and what conditions apply depends on the law (until 25 May 2018 from the Federal Data Protection Act, from 25 May 2018 also from the EU Basic Data Protection Ordinance). The basic EU data protection regulation also grants you the right to data transferability. If you have given your consent to the processing of your personal data, you can revoke this at any time with effect for the future. They also have a right of appeal to the competent data protection supervisory authority. However, if you have any questions or complaints regarding data protection at Körber, we recommend that you first contact our data protection officer (see Section 12).
16. No automated single decision
As far as this is not exceptionally necessary for the conclusion of a contract or permitted by law (as in the case of age verification) we do not use your personal data for automated individual decisions.
17. How can you contact us?
You will find our contact details as the responsible body in the imprint. If you wish to exercise the rights mentioned under item 10 or if you have any questions about data protection with us or this data protection declaration, you can also contact our data protection officer: firstname.lastname@example.org