User data

When you visit our websites, so-called usage data is temporarily evaluated on our web server for statistical purposes as a log in order to improve the quality of our websites. This data set consists of:

  • the name and address of the requested content,
  • the date and time of the query,
  • the amount of data transferred,
  • the access status (content transferred, content not found),
  • the description of the web browser and operating system used,
  • the referral link, which indicates from which page you have reached ours,
  • the IP address of the requesting computer, which is shortened so that a personal reference can no longer be established.

The aforementioned log data is only evaluated anonymously.

Anonymous visitor measurement

We carry out anonymous visitor measurement on our websites. For this purpose, the log data of the web server and the shortened IP address are evaluated. It is not possible to draw any conclusions about your person.

Data security

In order to protect your data from unwanted access as comprehensively as possible, we take technical and organisational measures. We use an encryption process on our websites. Your data is transmitted from your computer to our server and vice versa via the internet using TLS encryption. You can usually recognise this by the fact that the lock symbol is closed in the status bar of your browser and the address line begins with https://.

Contact form

You have the option of contacting us via our contact form. To use our contact form, we first need the data marked as mandatory fields from you.

We use this data on the basis of Art. 6 p. 1 lit. f GDPR in order to answer your enquiry.

In addition, you can decide for yourself whether you would like to provide us with further information. This information is provided voluntarily and is not mandatory for contacting us. We process your voluntary information on the basis of your consent in accordance with Art. 6 p. 1 lit. a GDPR.

Your data will only be processed to respond to your request. In this context, it may also be necessary to forward your request to companies of the datenschutz nord Group (datenschutz nord GmbH, datenschutz süd GmbH, datenschutz cert GmbH, FIRST PRIVACY GmbH, DSN Holding GmbH, FIRST PRIVACY B.V.). The legal basis for this is Art. 6 p. 1 lit. f GDPR.

We will delete your data if it is no longer required and there are no statutory retention obligations to the contrary.

Insofar as your data transmitted via the contact form is processed on the basis of Art. 6 p.1 lit. f GDPR, you can object to the processing at any time. You can also withdraw your consent to the processing of your voluntary data at any time. To do so, please contact .

Storage period

Unless we have already informed you in detail about the storage period, we delete personal data when they are no longer required for the aforementioned processing purposes and no statutory retention obligations prevent deletion.

Other processors

We pass on your data to service providers who support us in the operation of our websites and the associated processes as part of commissioned processing pursuant to Art. 28 GDPR. These are, for example, hosting service providers. Our service providers are strictly bound by instructions to us and are contractually obligated accordingly.

In the following, we name the processors with whom we work, if we have not already done so in the above text of the data protection declaration. If data is transferred outside the EU or EEA in this context, we provide information on the appropriate level of data protection.

Processor Purpose Adequate level of data protection
datenschutz nord GmbH Webhosting and Support Processing only within the

Your rights as a data subject

When processing your personal data, the GDPR grants you certain rights as a data subject:

Right of access (Art. 15 GDPR)

You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have the right to access this personal data and the information listed in detail in Article 15 of the GDPR.

Right of rectification (Art. 16 GDPR)

You have the right to request the correction of any inaccurate personal data relating to you and, where applicable, the completion of any incomplete data without delay.

Right to erasure (Art. 17 GDPR)

You have the right to request that personal data concerning you be deleted without delay, provided that one of the reasons listed in detail in Art. 17 of the GDPR applies.

Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR applies, e.g. if you have objected to the processing, for the duration of the review by the controller.

Right to data portability (Art. 20 GDPR)

In certain cases, which are listed in detail in Art. 20 of the GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.

Right of objection (Art. 7 GDPR)

If the processing of data is based on your consent, you are entitled to revoke your consent to the use of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is not affected.

Right of objection (Art. 21 GDPR)

If data is collected on the basis of Art. 6 p.1 lit. f GDPR (data processing for the protection of legitimate interests) or on the basis of Art. 6 p.1 lit. e GPDR (data processing for the protection of public interest or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right of appeal to a supervisory authority (Art. 77 GDPR)

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data concerning you violates data protection provisions. The right of complaint may in particular be asserted before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

Assertion of your rights

Unless otherwise described above, please contact FIRST PRIVACY B.V. to exercise your data protection rights.

Contact details of the data protection officers

Our external data protection officer will be happy to provide you with information on the subject of data protection under the following contact details:

Phone: +49 931 30 49 76-0

If you contact our data protection officer, please also indicate that this concerns FIRST PRIVACY B.V.