Privacy Policy

We take data protection seriously

Protecting your privacy when processing personal data is very important to us. When you visit our website, our web servers automatically store the IP address of your internet service provider, the website from which you are visiting us, the pages you visit on our site, and the date and duration of your visit. This information is essential for the technical transmission of the web pages and secure server operation. This data is not evaluated on a personalised basis.

If you send us data via the contact form, this data will be stored on our servers as part of our data backup procedures. We will use your data exclusively for the purpose of processing your enquiry. Your data will be treated as strictly confidential. It will not be passed on to third parties.

Responsible party

bynary GmbH
Weißenburgstraße 22
93055 Regensburg

E-Mail: hello@siteboard.io
Phone: +49 941 462 971 31

Personal Data

Personal data is data about you as an individual. This includes your name, address and email address. You do not need to disclose any personal data in order to visit our website. In some cases, we need your name and address as well as other information in order to provide you with the service you require.

The same applies if we send you information material at your request or if we respond to your enquiries. We will always inform you in such cases. Furthermore, we only store data that you have provided to us automatically or voluntarily.

When you use one of our services, we generally only collect the data necessary to provide you with our service. We may ask you for further information, but this is voluntary. Whenever we process personal data, we do so in order to provide you with our service or to pursue our commercial objectives.

Contact

When you contact us (e.g. via contact form, email, telephone or social media), the details of the person making the enquiry are processed to the extent necessary to respond to the contact enquiry and any requested measures.

Responding to contact requests within the framework of contractual or pre-contractual relationships is done to fulfil our contractual obligations or to respond to (pre-)contractual enquiries and, in addition, on the basis of our legitimate interests in responding to enquiries.

Types of data processed: Inventory data (e.g. names, addresses), contact details (e.g. email, telephone numbers), content data (e.g. entries in online forms).
Data subjects: Communication partners.
Purposes of processing: Contact enquiries and communication.
Legal basis: Contract fulfilment and pre-contractual enquiries (Art. 6(1)(b) GDPR), legitimate interests (Art. 6(1)(f) GDPR).

Automatically stored data

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

Date and time of the request
Name of the requested file
Page from which the file was requested
Access status (file transferred, file not found, etc.)
Web browser and operating system used
Full IP address of the requesting computer
Amount of data transferred

This data is not merged with other data sources. Processing is carried out in accordance with Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website.

For reasons of technical security, in particular to defend against attempts to attack our web server, we store this data for a short period of time. It is not possible for us to draw conclusions about individual persons based on this data. After seven days at the latest, the data is anonymised by shortening the IP address at domain level so that it is no longer possible to establish a connection to individual users. The data is also processed in anonymised form for statistical purposes; it is not compared with other data sets or passed on to third parties, even in excerpts.

Cookies

Our websites use cookies. Cookies are small data packets that do not cause any damage to your computer. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.

Cookies can originate from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g. cookies for processing payment services).

Cookies have different functions. Many cookies are technically necessary, as certain functions of the website would not work without them (e.g. the shopping basket function or the display of videos). Other cookies can be used to analyse user behaviour or for advertising purposes.

Cookies that are necessary for the electronic communication process, for the provision of certain functions requested by you (e.g. for the shopping basket function) or for the optimisation of the website (e.g. cookies for measuring the web audience) (necessary cookies) are stored on the basis of Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimised provision of its services. If consent to the storage of cookies and similar recognition technologies has been obtained, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG); consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be restricted. You can find out which cookies and services are used on this website in this privacy policy.

You can change your settings for the use of cookies at any time here: Cookie Policy.

Registration on the website

The data subject has the option of registering on the website of the controller by providing personal data. The following personal data is collected: name, email address.

When registering on the website of the controller, the IP address assigned by the data subject's Internet service provider (ISP), the date and time of registration are also stored. This data is stored because it is the only way to prevent misuse of our services and, if necessary, to enable criminal offences to be investigated. In this respect, the storage of this data is necessary to protect the controller. This data will not be passed on to third parties unless there is a legal obligation to do so or the disclosure serves the purpose of criminal prosecution.

The registration of the data subject, who voluntarily provides personal data, enables the controller to offer the data subject content or services that, due to their nature, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the controller's database.

You undertake to treat your personal access data confidentially and not to make it accessible to unauthorised third parties. We cannot accept any liability for misused passwords unless we are responsible for the misuse. With the "stay logged in" function, we want to make your visit to our websites as pleasant as possible. This function allows you to use our services without having to log in again each time. For security reasons, however, you will be asked to enter your password again if, for example, you want to change your personal data or place an order. We recommend that you do not use this function if the computer is used by multiple users. Please note that the "stay logged in" function is not available if you use a setting that automatically deletes stored cookies after each session.

Cookiebot

Our website uses Cookiebot's consent technology to obtain your consent to the storage certain cookies on your device or to use certain technologies and to document this in accordance with data protection regulations. This technology is provided by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter "Cookiebot").

When you visit our website, a connection is established to Cookiebot's servers to obtain your consent and other declarations regarding the use of cookies. Cookiebot then stores a cookie in your browser in order to be able to assign the consents you have given or their revocation. The data collected in this way is stored until you request us to delete it, delete the Cookiebot cookie yourself or the purpose for data storage no longer applies. Mandatory legal retention obligations remain unaffected.

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 (1) lit. c GDPR.

We have concluded a contract for order processing (AV) in accordance with Art. 28 GDPR with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

Google Tag Manager

We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies on our website. Google Tag Manager itself does not create any user profiles, does not store cookies and does not perform any independent analyses. It is used solely for the administration and playback of the tools integrated via it. However, Google Tag Manager does collect your IP address, which may also be transferred to Google's parent company in the United States.

The use of Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyse the behaviour of website visitors. The website operator receives various usage data, such as page views, length of stay, operating systems used and the origin of the user. This data is summarised in a user ID and assigned to the respective end device of the website visitor.

Furthermore, we can use Google Analytics to record your mouse and scroll movements and clicks, among other things. Google Analytics also uses various modelling approaches to supplement the data sets collected and employs machine learning technologies in data analysis.

Google Analytics uses technologies that enable user recognition for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there. The use of this service is based on your consent in accordance with Art. 6 (1) lit. a GDPR and § 25 (1) TDDDG. Consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising programme from Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on the user data available to Google (e.g. location data and interests) (target group targeting). As website operators can evaluate this data quantitatively, for example by analysing which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks.

The use of this service is based on your consent in accordance with Art. 6 (1) lit. a GDPR and 25 (1) TDDDG. Consent can be revoked at any time.

For the USA, an adequacy decision has been issued by the European Commission, provided that companies are certified under the Data Privacy Framework Programme. Google is certified accordingly and thus meets the requirements of the EU Commission.

LinkedIn Insight Tag

This website uses LinkedIn's Insight Tag. This service is provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

With the help of the LinkedIn Insight Tag, we receive information about visitors to our website. If a website visitor is registered with LinkedIn, we can analyse the key professional data (e.g. career level, company size, country, location, industry and job title) of our website visitors and thus better tailor our site to the respective target groups. Furthermore, with the help of LinkedIn Insight Tags, we can measure whether visitors to our websites make a purchase or take other action (conversion measurement). Conversion measurement can also be carried out across devices (e.g. from PC to tablet). LinkedIn Insight Tag also offers a retargeting function that allows us to display targeted advertising to visitors to our website outside the website, whereby, according to LinkedIn, the advertising recipient is not identified.

LinkedIn itself also collects so-called log files (URL, referrer URL, IP address, device and browser properties and time of access). IP addresses are truncated or(if used to reach LinkedIn members across devices) hashed (pseudonymised). The direct identifiers of LinkedIn members are deleted by LinkedIn after seven days. The remaining pseudonymised data is then deleted within 180 days.

As the website operator, we cannot assign the data collected by LinkedIn to specific individuals. LinkedIn will store the personal data collected from website visitors on its servers in the USA and use it for its own advertising purposes. For details, please refer to LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy#choices-oblig.

The use of LinkedIn Insight is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in effective advertising measures, including social media. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission.

Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

Object to the analysis of usage behaviour and targeted advertising by LinkedIn at the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Cloudflare

We use the "Cloudflare" service. The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter "Cloudflare").

Cloudflare offers a globally distributed content delivery network with DNS. Technically, this means that the transfer of information between your browser and our website is routed through the Cloudflare network. This enables Cloudflare to analyse the data traffic between your browser and our website and to act as a filter between our servers and potentially malicious data traffic from the internet. Cloudflare may also use cookies or other technologies to recognise internet users, but these are used solely for the purpose described here.

The use of Cloudflare is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6(1)(f) GDPR).

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.cloudflare.com/privacypolicy/.

Further information on security and data protection at Cloudflare can be found here: https://www.cloudflare.com/privacypolicy/.

We have concluded a contract for order processing (AV) in accordance with Art. 28 GDPR with the above-mentioned provider. This is a contract required by data protection law , which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

Hubspot

We use Hubspot on this website. The provider is Hubspot Inc. 25 Street, Cambridge, MA 02141 USA (hereinafter Hubspot).

Among other things, Hubspot enables us to manage existing and potential customers as well as customer contacts. With the help of Hubspot, we are able to record, sort and analyse customer interactions via email, social media or telephone across various channels. The personal data collected in this way can be evaluated and used for communication with potential customers or for marketing measures (e.g. newsletter mailings). Hubspot also enables us to record and analyse the user behaviour of our contacts on our website.

As the relevant consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and 25 (1) TDDDG, insofar as the consent covers the storage of cookies or access to information on the user's end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

For details, please refer to Hubspot's privacy policy: https://legal.hubspot.com/de/privacy-policy.

Data transfer to the USA is based, among other things, on the standard contractual clauses of the EU Commission. In addition, Hubspot is certified under the Data Privacy Framework programme and thus fulfils the guarantees for secure data exchange. Details can be found here: https://legal.hubspot.com/de/dpa.

Clarity

This website uses Clarity. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA98052-6399 (USA), (hereinafter "Clarity").

Clarity is a tool for analysing user behaviour on this website. Clarity records in particular mouse movements and creates a graphical representation of which part of the website users scroll particularly frequently (heat maps). Clarity can also record sessions so that we can view page usage in the form of videos. We also receive information about general user behaviour within our website.

Clarity uses technologies that enable user recognition for the purpose of analysing user behaviour user behaviour (e.g. cookies or device fingerprinting). Your personal data is stored on Microsoft servers (Microsoft Azure Cloud Service) in the USA.

The use of Clarity is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in effective user analysis. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Further details on Clarity's data protection can be found here: https://clarity.microsoft.com/privacy.

YouTube

This website embeds videos from YouTube. The operator of the site is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the extended data protection mode does not necessarily exclude the transfer of data to YouTube partners. YouTube establishes a connection to the Google DoubleClick network regardless of whether you watch a video.

As soon as you start a YouTube video on this website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.

Furthermore, after starting a video, YouTube may store various cookies on your device or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve user-friendliness and prevent fraud attempts.

After starting a YouTube video, further data processing operations may be triggered over which we have no control. YouTube is used in the interest of an appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR and 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Further information on data protection at YouTube can be found in their privacy policy at: https://policies.google.com/privacy.

Meta Pixel

This website uses Facebook's visitor action pixels for conversion measurement. This service is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the USA and other third countries.

This allows the behaviour of page visitors to be tracked after they have been redirected to the provider's website by clicking on a Facebook advertisement. This allows the effectiveness of Facebook advertisements can be evaluated for statistical and market research purposes and future advertising measures can be optimised.

The data collected is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook Data Use Policy. This enables Facebook to place advertisements on Facebook pages and outside of Facebook. As the website operator, we have no influence on this use of the data.

The use of this service is based on your consent in accordance with Art. 6 (1) lit. a GDPR and 25 (1) TDDDG. Consent can be revoked at any time. Data transfer to the United States is based on the standard contractual clauses of the European Commission. Facebook is also certified under the Data Privacy Framework Programme. https://www.facebook.com/legal/EU_data_transfer_addendum and Facebook is also certified under the Data Privacy Framework.

Insofar as personal data is collected on our website using the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited exclusively to the collection of data and its transfer to Facebook. The processing by Facebook after the transfer is not part of the joint responsibility. The obligations incumbent upon us jointly have been set out in a joint processing agreement. The wording of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing data protection information when using the Facebook tool and for the data protection-compliant implementation of the tool on our website. Facebook is responsible for the data security of Facebook products. You can assert your rights as a data subject (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert your rights as a data subject with us, we are obliged to forward them to Facebook.

You can find further information on the protection of your privacy in Facebook's privacy policy: https://de-de.facebook.com/about/privacy/.

You can also deactivate the "Custom Audiences" remarketing function in the settings for https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.

Payment services

We integrate payment services from third-party companies on our website. When you make a purchase from us, your payment details (e.g. name, payment amount, account details, credit card number) are processed by the payment service provider for the purpose of payment processing. The respective contractual and data protection provisions of the respective providers apply to these transactions. The use of payment service providers is based on Art. 6 (1) lit. b GDPR (contract processing) and in the interest of a smooth, convenient and secure payment process (Art. 6 (1) lit. f GDPR). Insofar as your consent is requested for certain actions, Art. 6 (1) lit. a GDPR is the legal basis for data processing; consent can be revoked at any time for the future.

We use the following payment services/payment service providers on this website:

Stripe

The provider for customers within the EU is Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland (hereinafter "Stripe").

Data transfer to the USA is based on the standard contractual clauses of the EU Commission.

Details can be found here: https://stripe.com/en-de/privacy and https://stripe.com/de/guides/general-data-protection-regulation.

What data is processed and from which sources does this data originate?

We process the data that we have received from you in the course of initiating or executing a contract, on the basis of your consent, or in the course of your application to us or your employment with us.

Personal data includes:

Your master/contact data, which for customers includes, for example, first and last name, address, contact details (e-mail address, telephone number), bank details.

For applicants and employees, this includes, for example, first and last name, address, contact details (e-mail address, telephone number), date of birth, data from CVs and references, bank details, religious affiliation, and photographs.

For business partners, this includes, for example, the names of their legal representatives, company name, commercial register number, VAT ID number, company number, address, contact details (e-mail address, telephone number, fax), and bank details.

In addition, we also process the following other personal data:

Information about the type and content of contract data, order data, sales and receipt data, customer and supplier history, and consulting documents.
advertising and sales data,
Information from your electronic communications with us (e.g. IP address, log-in data),
other data that we have received from you in the course of our business relationship (e.g. in customer meetings),
Data that we generate ourselves from master/contact data and other data, e.g. by means of customer needs and customer potential analyses,
documentation of your declaration of consent to receive newsletters, for example.
Photographs taken during events.

For what purposes and on what legal basis is the data processed?

We process your data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act 2018, as amended:

To fulfil (pre-)contractual obligations (Art. 6(1)(b) GDPR): Your data is processed for the purpose of online contract execution within the scope of contract execution for your employees in our company. The data is processed in particular during the initiation of business and the execution of contracts with you. This also includes the processing of your contact details when you request our offers (e.g. white papers or website checks on the BFSG). In this case, the subject matter of the contract is both the provision of the requested content and the sending of relevant updates and information on our services.
To fulfil legal obligations (Art. 6(1)(c) GDPR): The processing of your data is necessary for the purpose of fulfilling various legal obligations, e.g. under the German Commercial Code or the German Fiscal Code.
To safeguard legitimate interests (Art. 6(1)(f) GDPR): Based on a balancing of interests, data processing may be carried out beyond the actual fulfilment of the contract in order to safeguard legitimate interests of us or third parties. Data processing to safeguard legitimate interests takes place, for example, in the following cases:
- Advertising or marketing
- Measures for business management and further development of services and products;
- Maintaining a group-wide customer database to improve customer service
- Transfer of data to our parent company bynary GmbH for internal administrative purposes and group-wide optimisation (cf. Recital 48 GDPR)
- within the scope of legal proceedings
- Sending non-promotional information and press releases.
Within the scope of your consent (Art. 6 (1) (a) GDPR): If you have given us your consent to process your data, e.g. for the voluntary sending of our newsletter or the publication of photos

Storage period

Unless a more specific storage period is specified in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for erasure or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. tax or commercial law retention periods); in the latter case, the data will be deleted once these reasons no longer apply.

Recipients of personal data

If we use a service provider for order processing, we remain responsible for the protection of your data. All order processors are contractually obliged to treat your data confidentially and to process it only within the scope of the service provision. The processors commissioned by us receive your data if they need it to perform their respective services. These include, for example, IT service providers that we need for the operation and security of our IT system, as well as advertising and address publishers for our own advertising campaigns.

This data is made available to the group companies if necessary for the execution of the contract. Customer data is stored separately for each company, with our parent company acting as a service provider for the individual participating companies.

In the event of a legal obligation and in the context of legal proceedings, authorities, courts and external auditors may be recipients of your data.

In addition, insurance companies, banks, credit agencies and service providers may be recipients of your data for the purpose of contract initiation and fulfilment.

We share joint responsibility with our parent company, bynary GmbH, in accordance with Art. 26 GDPR.

Security

We have taken technical and administrative security measures to protect your personal data against loss, destruction, manipulation and unauthorised access. All our employees and service providers working on our behalf are bound by the applicable data protection laws.

Whenever we collect and process personal data, it is encrypted before it is transmitted. This means that your data cannot be misused by third parties. Our security measures are subject to a continuous improvement process and our data protection declarations are constantly being revised. Please ensure that you have the latest version.

Rights of data subjects

You have the right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing, as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.

Right to information

You can request information from us about whether and to what extent we process your data.

Right to rectification

If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.

Right to erasure

You may request that we erase your data if we are processing it unlawfully or if the processing disproportionately interferes with your legitimate interests. Please note that there may be reasons that prevent immediate erasure, e.g. in the case of statutory retention obligations.

Regardless of whether you exercise your right to erasure, we will erase your data immediately and completely, provided that there are no legal or contractual obligations to retain it.

Right to restriction of processing

You may request that we restrict the processing of your data if

you dispute the accuracy of the data, for a period enabling us to verify the accuracy of the data.
the processing of the data is unlawful, but you refuse to have it deleted and instead request a restriction on its use,
we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
you have objected to the processing of the data.

Right to data portability

You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that

we process this data on the basis of your revocable consent or for the performance of a contract between us, and
this processing is carried out using automated means.

If technically feasible, you may request that we transfer your data directly to another controller.

Right to object

If we process your data on the basis of legitimate interest, you may object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. You may object to the processing of your data for direct marketing purposes at any time without giving reasons.

Right to lodge a complaint

If you believe that we are violating German or European data protection law when processing your data, please contact us so that we can clarify any questions. You also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to exercise any of the above rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.

Changes to this privacy policy

We reserve the right to change our privacy policy if this becomes necessary due to new technologies. Please ensure that you have the latest version. If fundamental changes are made to this privacy policy, we will announce them on our website.

All interested parties and visitors to our website can contact us with any data protection questions at:

Mr Christian Volkmer

Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg

Tel.: 0941 2986930
Fax: 0941 29869316
E-Mail: anfragen@projekt29.de
Website: www.projekt29.de