The following table of contents will take you directly to the corresponding data protection passages.
Table of contents:
20. Privacy at a glance
21. General information, mandatory information and your rights
1. Note to the responsible office
2. Revocation of your consent to data processing and the right of objection
3. Right of appeal to the competent supervisory authority
4. Right to data transferability
5. SSL or TLS encryption
6. Information, correction, blocking, deletion
7. Passing on of data in general
8. Objection to the use of published contact data on this website
22. Data protection officer
23. Data collection on our website
2. Logging of script failures and attacks on this website
3. Server log files
4. Processing of data (customer and contract data)
24. Plugins und Tools
1. Maps from GoogleMaps™ map service
25. Concluding notes
1. Privacy at a glance
General notes on data collection on this website
The following notes give a simple overview of what personal information is collected and what happens to it when you visit our website. Personal data is any data that personally identifies you (e.g. address, e-mail addresses, user behavior, and IP address).
Detailed information on data protection and further details can be found in the following texts.
How do we collect your data?
Your data will be collected on the one hand, that you tell us. This may be data that you e.g. enter in a contact form, send us by e-mail or communicate by phone.
Other data is collected automatically when visiting the website through our IT systems. This is especially technical data (e.g. your internet browser, operating system or time of the page request). The collection of this data happens automatically as soon as you enter our website.
What do we use your automatically collected data for?
These data are collected to ensure a flawless delivery of the website.
What rights do you have regarding your data?
At any time you have the right to obtain free information about the origin, recipient and purpose of your stored personal data. You also have a right to request the correction, blocking or deletion of this data. For this purpose and for further questions about data protection, you can contact us at any time at the address given in the imprint. Furthermore, you have a right of appeal to the competent supervisory authority.
2. General information, mandatory information and your rights
We point out that the transmission of data on the Internet in general (for example in the case of communication by e-mail) may have security gaps.
2.1 Note to the responsible office
The responsible office regarding data processing on this website is:
Dr. Werner Folger, Thomas Heim, Katja Osl
Gute Änger 11
Telefon: +49 8161 988220
Responsible entity is the natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data (e.g. e-mail addresses, etc.).
2.2 Revocation of your consent to data processing and the right of objection
Many data processing operations are only possible with your express consent or a justified interest pursuant to Art. 6 para. 1 lit. f GDPR.
You can revoke your consent at any time. For this purpose, send an informal message by e-mail to email@example.com . The legality of the data processing carried out until the revocation remains unaffected by the revocation.
In the case of data processing by us based on a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection to direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation. In the first case, the opposing interests are weighed up and a decision is taken accordingly.
If you wish to exercise your right of objection, simply send an e-mail to firstname.lastname@example.org .
2.3 Right of appeal to the competent supervisory authority
In the event of breaches of data protection law, the person concerned has a right of appeal to the competent supervisory authority. The responsible supervisory authority for data protection issues is the data protection officer of the federal state in which our company is based.
In concrete terms, this applies to the federal state of Sachsen:
The Data Protection Officer of Saxony is:
Prof. Dr. Thomas Petri
Telefon: 089 212672-0
Telefax: 089 212672-50
2.4 Right to data transferability
You have the right to have data which we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only take place if it is technically feasible.
2.5 SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
2.6 Information, correction, blocking, deletion
You have the right to obtain free information about your stored personal data, their origin and recipients and the purpose of data processing and, if necessary, a right to correction, blocking or deletion of this data at any time within the scope of the applicable legal provisions. You can contact us at any time at the above address if you have any further questions on the subject of personal data.
2.7 Passing on of data in general
Your personal data will not be transmitted to third parties for other purposes than those listed below.
We will only pass on your personal data if:
- you have given your express consent (Art. 6 para. 1 lit. a GDPR),
- the disclosure pursuant to Art. 6 para. 1 lit. f GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
- in the case that a legal obligation exists for the transfer pursuant to Art. 6 para. 1 lit. c GDPR, as well as
- this is legally permissible and is necessary for the processing of contractual relationships with you pursuant to Art. 6 para. 1 lit. b GDPR.
In cases in which data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR, our legitimate interest is stated.
2.8 Objection to the use of published contact data on this website
We would like to point out that we object in advance to the use of the contact data published on these websites for commercial purposes, unless we have expressly agreed to it. This includes in particular: the storage in data processing systems for the purpose of data trading and the use for general advertising purposes (e.g.: unsolicited sending of information material and advertising brochures by post or e-mail). The operator of this website expressly reserves the right to take legal action in the event of unsolicited advertising information, such as spam e-mails.
3. Data protection officer
Statutory data protection officer
We have appointed a data protection officer for our company:
Klug & Co. GmbH
4. Data collection on our website
Some websites use so-called cookies. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
In general, cookies enable your browser to be recognized the next time you visit the website. So-called session cookies are automatically deleted as soon as you close your browser. In the following text you will learn which cookies we use for which purpose.
You can set up your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, to exclude the acceptance of cookies for certain cases or generally, as well as to activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited.
Cookies that are required accomplish the electronic communication processes or to provide certain functions desired by you (e.g. shopping basket function, to remain logged in or memory function or settings) are stored according to Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the storage of cookies for technically error-free and optimized provision of his services.
The following cookies are stored by our website:
A session cookie
This cookie is generated when you visit this website. It will be deleted automatically as soon as you close your browser after visiting the website.
This cookie stores the session ID of your browser on our web server. This allows server-side data to be stored in the session, which enables optimal operation of the website.
This cookie stores the session ID of your browser on our web server. This allows server-side data to be stored in the session, which enables optimal operation of the website. This data includes, for example
- Technical data of your browser (e.g. troubleshooting mode, suspected malware client)
- Data of previous captchas / security graphics (e.g. of contact forms)
- Commands last executed on the website (random IDs) to avoid accidental duplicate execution
- Data of the previously visited page on this web page
The session cookie does not contain any personal data.
The basis for storing and processing this cookie is a legitimate interest of the website operator pursuant to Art. 6 para. 1 lit. f GDPR for the technically error-free provision of its services.
A permanent cookie
This cookie is created when you visit this website. It remains on your computer for 365 days and is automatically deleted afterwards. After deletion, this cookie will be recreated when you visit this website again.
Your visit preferences and website settings are stored in this cookie. These settings are e.g.
- the status of awareness of the general cookie notice,
- the selected font size (zoom level),
- Individual data protection settings selected separately by you (Prevent the integration of e.g. GoogleMaps, Facebook plugins, tracking plugins, YouTube videos, etc. into this website)
- your login status, if this website has an internal or protected area.
If this cookie is deleted, your selected data protection settings will also be deleted. Therefore, in this case, the settings must be made again by you via this data protection note.
This permanent cookie does not contain any personal data.
The basis for storing and processing this cookie is a legitimate interest of the website operator pursuant to Art. 6 para. 1 lit. c and lit. f GDPR. Because it ensures the technically error-free provision of the information on this website. In addition, we offer you convenience functions and the opportunity to deactivate individual third-party plug-ins on this website.
If other cookies (e.g. cookies to analyse your surfing behaviour) are stored, these are mentioned separately in this data protection declaration.
4.2 Logging of script failures and attacks on this website
The hoster of this website automatically collects and stores information about script failures and attacks on this website in a database. This data is given by your browser. The following data is stored:
- IP address
- Useragent (character string that provides information about the requesting browser and the operating system)
- internal categorization of the client (robot yes or no?)
- referrer URL
- Request destination incl. sent parameters (fields marked as password in the system are made unrecognizable)
- Date and time of the server request
- Access method to the web server
- in case of script crashes, additionally the script environment and the affected part of the source code
This data is automatically deleted after 7 days.
These data will not be combined with other data sources.
The basis for storing and processing this data is a legitimate interest of the website operator and the host according to art. 6 par. 1 lit. b and lit. f GDPR. The reason for this is the contractual obligation of the hoster to provide the website technically. If necessary, the hoster will evaluate this protocol to ensure the stability and security of the website furthermore. Possible legal or technical measures in response to an attack cannot be ruled out here. We also reserve the right to report the attack to early warning systems. In addition, the website operator has a legitimate interest in the technically error-free provision of its contents and services.
4.3 Server log files
The hoster of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are for example:
- Browser type and browser version
- operating system used
- referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
These data will not be combined with other data sources.
The purpose of this data collection is
- for the automated generation of simple, anonymous usage statistics of the website by the web server (no tracking) and
- for the evaluation of attacks on this website to get an overall picture of parallel running technical inquiries (evaluation only takes place in case of need).
These log files are stored for 190 days and then automatically deleted.
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. Furthermore, Art. 6 para. 1 lit. f GDPR gives the website operator and the hoster a legitimate interest to collect data about attacks on this website and to determine possible load peaks in order to ensure the security and stability of this website in the future as well.
4.4 Processing of data (customer and contract data)
We collect, process and use personal data only to the extent necessary for the establishment, content design or change of the legal relationship (inventory data). This is done according to Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the usage of our Internet pages (usage data) only to the extent necessary to enable or invoice the user for the use of the service.
The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.
5. Plugins und Tools
Maps from GoogleMaps™ map service
Our website uses plugins in the form of maps, satellite photos and route planning from GoogleMaps™ included. These can be used by you etc. to calculate routes. These maps are a service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereafter called Google.
Every time you visit one of our websites that contains such a map, data is loaded from Google's web servers, which create the visual appearance and functionality of the map on our websites. To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.
The use of Google Maps is in the interest of an appealing representation of our online offers and at an easy findability of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.
You can find more information on the handling of user data in Google's data protection declaration: https://policies.google.com/privacy.
You may revoke your consent at any time by clicking the button at the end of the paragraph for this website and with effect for the future. Your revocation will be stored in your browser using a cookie for 365 days and then automatically deleted if you no longer visit this website within the 365 days. If the cookie was deleted automatically or manually, it must be revoked again.
Your objection will be stored in a cookie. As soon as this cookie is deleted, your objection must be repeated.
6. Concluding notes
Up-to-dateness and amendment of this data protection declaration
This data protection declaration is currently valid from 25.05.2018.
We reserve the right to adapt this data protection declaration to new circumstances and changed general conditions (legal or actual nature). You can call up and print out the current data protection declaration at any time on the website.