PRIVACY POLICY
:

1. Introduction

In the following, we would like to provide you, the data subject, with a summary of the processing of your personal data by us and your rights according to the data protection legislation. It is generally possible to use our website without providing any personal data. However, if you would like to take advantage of special services of our company via our website, it may be necessary to process personal data for this purpose. If it is necessary to process personal data and if there is no legal basis for such processing, we will generally obtain your consent.

 

The processing of personal data, such as your name, address, or email address, always takes place in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection provisions of “Vössing Ingenieurgesellschaft mbH”. With this privacy policy, we would like to inform you about the scope and purpose of personal data which is collected, used and processed by us.

 

As the controller, we have implemented numerous technical and organisational measures in order to ensure the protection of the personal data processed via this website with as few gaps as possible. However, there is always a possibility of security loopholes in transferring data via the internet, so that absolute protection cannot be guaranteed. For this reason, you are free to transfer personal data to us by alternative means, for example by telephone or by post.

 

You can also take simple and easy-to-implement measures to protect yourself against unauthorised access to your data by third parties. We would therefore like to provide you with some information on the secure handling of your data:

· Protect your account (login, user or customer account) and your IT system (computer, laptop, tablet or mobile device) by using strong passwords.

· Only you should have access to your passwords.

· Make sure that you only ever use each password for one account (login, user or customer account).

· Do not use one password for several different websites, applications or online services.

· The following applies in particular to the use of publicly accessible IT systems or IT systems that are shared with other persons: you should always log out after logging in to a website, application or online service.

 

Passwords should consist of at least 12 characters and be chosen so that they cannot be easily guessed. Therefore, they should not contain commonly-used words from everyday life, your own name or the names of relatives, but upper and lower case, numbers and special characters.

 

2. Controller

The controller as defined in the GDPR is:

Vössing Ingenieurgesellschaft mbH

Brunnenstraße 29 - 31, 40223 Düsseldorf, Germany

 

Representatives of the Controller:

Dipl.-Ing. Rudolf Vienenkötter

Dipl.-Ing. Martin Lutz

Dipl.-Ing. Ralf Dierkes

 

3. Data protection officer

You can contact our data protection officer as follows:

datenschutz@voessing.de or by post at the above address
 

If you have any queries and suggestions concerning data protection, you can contact our data protection officer directly.

 

4. Definitions of terms

The privacy policy is based on the terminology which has been used by the issuers of European guidelines and regulators on the adoption of the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand both for the general public and for our customers and business partners. To guarantee this, we would like to begin by explaining the terms used.

 

In this privacy policy, we use the following terms, among others:

 

1. Personal data

Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is someone who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

 

2. Data subject 

The data subject is any identified or identifiable natural person whose personal data is processed by the controller responsible for processing (our enterprise).

 

3. Processing 

Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

 

4. Restriction of processing 

Restriction of processing means the highlighting of stored personal data with the aim of limiting its processing in the future.

 

5. Profiling

Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.

 

6. Pseudonymisation 

Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

 

7. Processor 

Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

 

8. Recipient 

Recipient means a natural or legal person, public authority, agency or another body to which personal data is disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with European Union or Member State law shall not be regarded as recipients.

 

9. Third party 

Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

 

10. Consent 

Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

 

5. Legal basis of the processing

Point (a) of Art. 6(1) GDPR (in conjunction with Art. 25 Sect. 1 of the German Telecommunications and Telemedia Data Protection Act - TTDSG) serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose.

 

Where the processing of personal data is necessary for the performance of a contract to which you are party, as is the case, for example, in processing operations necessary for the delivery of goods or the provision of some other service or quid pro quo, the processing is based on point (b) of Art. 6(1) GDPR. The same applies to any processing operations that are necessary in order to take steps prior to entering into a contract, as may be the case when dealing with inquiries regarding our products or services.

 

Where our company is subject to a legal obligation by which the processing of personal data becomes necessary, for example to meet tax obligations, the processing is based on point (c) of Art. 6(1) GDPR.

 

In rare cases, the processing of personal data could become necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were to be injured on our business premises and as a result his or her name, age, health insurance data or other vital information would need to be transferred to a doctor, hospital or other third parties. In such cases the processing would be based on point (d) of Art. 6(1) GDPR.

 

Finally, processing operations can be based on point (f) of Art. 6(1) GDPR. This legal basis applies to processing operations that are not covered by any of the aforementioned legal bases, where processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. We are specifically allowed to carry out such processing operations, particular provision for them having been made by European legislators. In this context, legislators took the view that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 sentence 2 GDPR).

 

6. Technology

6.1 SSL/TLS encryption

To guarantee the security of the data processing and to protect the transfer of confidential contents such as orders, login data or contact enquiries which you send to us as the operator, this site uses an SSL and/or TLS encryption. You can recognise an encrypted connection as the address line in the browser changes from “http://” to “https://”, and because of the lock symbol in the browser line.

 

We use this technology to protect the data that you transfer.

 

6.2 Collection of data when visiting our website

If you only visit our website for informative purposes, i. e. if you do not register or otherwise transfer information to us, we will only collect that data which your browser transfers to our server (in so-called “server log files”). Whenever one of our web pages is accessed by a data subject or an automated system, this website collects a range of general data and information. Such general data and information are stored in the log files of the server. The following can be collected:

 

1. browser types and versions used,

2. the operating system used by the accessing system,

3. the website from which an accessing system reaches our website (so-called “referrer”),

4. the sub-pages which are accessed on our website through an accessing system,

5. the date and time of access to the website,

6. an abbreviated internet protocol address (anonymised IP address),

7. the internet service provider of the accessing system.

 

When using this general data and information, we will not draw any conclusions on the identity of your person. Rather, this information is needed,

 

1. to provide the content of our website correctly,

2. to optimise the content of our website and its advertising,

3. to ensure the permanent functionality of our IT systems and the technology of our website, and

4. to provide law enforcement authorities with the information necessary for the prosecution in case of a cyber-attack.

 

Such data and information will therefore be evaluated by us for statistical purposes, and furthermore, to improve the data protection and data security in our company with the ultimate objective of providing an ideal level of protection for the personal data that are processed by us. The anonymous data in the server log files is stored separately from all personal data provided by a data subject.

 

The legal basis for data processing is point (f) of Art. 6(1) GDPR. Our legitimate interest results from the above-mentioned purposes for which the data is collected.

 

7. Cookies

7.1 General information about cookies

We use cookies on our website. Cookies are small files which are automatically created by your browser and which are stored on your IT system (laptop, tablet, smartphone, etc.) when you visit our website.

 

Cookies store information which arises in connection with the specifically used end device. That does not mean that we gain direct knowledge of your identity through such cookies, however.

 

Cookies are used in order to make the use of our offer more convenient for you. In this respect, we use so-called session cookies to determine whether you already visited individual pages of our website. These will automatically be erased after you left our website.

 

Furthermore, also for the purpose of optimising user-friendliness, we use temporary cookies which are stored on your end device for a certain fixed time period. If you revisit our website to make use of our services, these can automatically tell if you have already visited our website and can recognise your entries and settings, so as to save you from repeatedly having to enter such data.

 

Moreover, we use cookies to analyse the use of our website statistically and to evaluate it to optimise our offering for you. When you revisit our website, these cookies allow us to recognise whether or not you have already visited our website. These cookies will automatically be erased after the defined period of time. The respective storage duration of the cookies can be found in the settings of the Consent Tool which is used.

 

7.2 Legal basis for the use of cookies

The data processed by the cookies that are required to ensure our website works properly, are therefore necessary for protecting our legitimate interests and those of third parties according to point (f) of Art. 6(1) GDPR.

 

The provision of your corresponding consent via our opt-in cookie banner in terms of point (a) of Art. 6(1) GDPR applies to all other cookies.

 

8. Content of our website

8.1 Contacting us / contact form

Personal data is collected within the framework of you contacting us (e.g. using the contact form or by email). In the case of the use of a contact form, the data which is collected is apparent on the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for getting in touch and the technical administration which is associated with this. The legal basis for the processing of data is our legitimate interest in handling your enquiry in accordance with point (f) of Art. 6(1) GDPR. If your contact is aimed at concluding a contract, an additional legal basis for processing is point (b) of Art. 6(1) GDPR. Your data will be erased after the handling of your enquiry is complete. This is the case if the circumstances make it clear that the matter in question has been resolved and if no statutory retention periods apply that would otherwise prevent the erasure.

 

8.2 Applications management / jobs website

We collect and process the personal data of job applicants for the purposes of the completion of the application process. The processing can also take place electronically. This will be the case, in particular, where an applicant transfers relevant application documents to us by electronic means, for example by email or by using a form available on the website. If we conclude an employment or service contract with an applicant, the data which is transferred will be stored for the purposes of the processing of the employment relationship in compliance with the statutory provisions. If we do not conclude a contract with the applicant, the application documents will be erased automatically two months after issuing of the rejection decision, provided that no other legitimate interests on our side prevent the erasure. Another legitimate interest in this context includes, for example, the burden of proof in proceedings under the General Equal Treatment Act (AGG).

 

The legal basis for the processing of your data is Art. 88 GDPR in conjunction with Art. 1 Section 26 of the German Federal Data Protection (BDSG).

 

 

9. Social media plug-ins

9.1 Facebook plugin

On this website, we have integrated components of the company Facebook. Facebook is a social network.

 

A social network is a place for social meetings on the internet; an online community which generally allows users to communicate with each other and interact in a virtual space. A social network may serve as a platform for the exchange of opinions and experiences or enable the internet community to provide personal or business-related information. Facebook allows the users of its social network to create private profiles, to upload photos, and to network through friend requests.

 

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside of the United States of America or Canada, the controller is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

 

Through each visit to one of the individual pages of this website which is operated by us and into which a Facebook component (Facebook plug-in) has been integrated, the web browser on your IT system will be automatically prompted to download a display of the corresponding Facebook component from Facebook by the Facebook component. An overview of all the Facebook plug-ins is available at https://developers.facebook.com/docs/plugins/?locale=de_DE. During the course of this technical procedure, Facebook is made aware of the specific sub-page of our website that was visited by you.

 

If you are logged into Facebook at the same time, every time you access our website and for the duration of your stay on our website, Facebook is able to see which specific sub-pages of our website you visit. This information will be collected by the Facebook component and assigned to the respective Facebook account by Facebook. If you click on one of the Facebook buttons that has been integrated in our website such as the "Like" button, or if you submit a comment, Facebook will match this information with your personal Facebook user account and store this personal data.

 

Through the Facebook component, Facebook will always receive notification of any visit made to our website by you if you are simultaneously logged into Facebook when you access our website; this will occur regardless of whether you click on the Facebook component or not. If you do not want such a transfer of information to Facebook to take place, you can prevent this transfer by logging out of your Facebook account before you access our website.

 

The data protection guidelines published by Facebook, which are available at https://de-de.facebook.com/about/privacy/, provide information about the collection, processing and use of personal data by Facebook. It also provides information on the setting options that Facebook offers for the protection of privacy. In addition, different configuration options are available that can prevent data from being transferred to Facebook. These applications can be used by you in order to prevent data from being transferred to Facebook.

 

9.2 Instagram plugin

On this website, we have integrated components of the company Instagram. Instagram is a service which can be qualified as an audio-visual platform and allows users to share photos and videos in addition to sharing such data in other social networks.

 

The operating company for the services of Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.

 

Through each visit to one of the individual pages of this website which is operated by us and into which an Instagram component (Instagram button) has been integrated, the web browser on your IT system will be automatically prompted to download a display of the corresponding Instagram component from Instagram by the Instagram component. During the course of this technical procedure, Instagram is made aware of the specific sub-page of our website that was visited by you.

 

If you are logged into Instagram at the same time, every time you access our website and for the duration of your stay on our website, Instagram is able to see which specific sub-pages of our website you visit. This information will be collected by the Instagram component and assigned to your Instagram account by Instagram. If you click on an Instagram button that is integrated into our website, the data and information transmitted by doing so will be associated with your Instagram user account and will be saved and processed by Instagram.

 

Through the Instagram component, Instagram will always receive notification of any visit made to our website by you if you are simultaneously logged into Instagram when you access our website; this will occur regardless of whether you click on the Instagram component or not. If you do not want such a transfer of information to Instagram to take place, you can prevent this transfer by logging out of your Instagram account before you access our website.

 

Further information and the current data protection regulations of Instagram can be accessed at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

 

9.3 LinkedIn plugin

On this website, we have integrated components of the LinkedIn Corporation. LinkedIn is an internet-based social network which enables the connection of users with existing business contacts and the establishing of new business contacts.

 

LinkedIn is operated by the LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, USA. Data protection matters outside of the USA are the responsibility of LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

 

Each time our website receives an access request which is equipped with a LinkedIn component (LinkedIn plug-in), this component prompts the browser used by you to download a display of this component from LinkedIn. More information on the LinkedIn plug-ins is available at https://developer.linkedin.com/plugins. During the course of this technical procedure, LinkedIn is made aware of the specific sub-page of our website that was visited by you.

 

If you are logged into LinkedIn at the same time, every time you access our website and for the duration of your stay on our website, LinkedIn is able to see which specific sub-pages of our website you visit. This information will be collected by the LinkedIn component and assigned to your LinkedIn account by LinkedIn. If you click on one of the LinkedIn buttons that have been integrated into our website, LinkedIn will attribute this information to your personal LinkedIn user account and store this personal data.

 

Through the LinkedIn component, LinkedIn will always receive notification of any visit made to our website by you if you are simultaneously logged into LinkedIn when you access our website; this will occur regardless of whether you click on the LinkedIn component or not. If you do not want such a transfer of information to LinkedIn to take place, you can prevent this transfer by logging out of your LinkedIn account before you access our website.

 

At https://www.linkedin.com/psettings/guest-controls, LinkedIn offers the option to unsubscribe from e-mail messages, text messages and targeted adverts and to manage advertisement settings. Furthermore, LinkedIn uses partners like Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame which may store cookies on the data subject’s computer. These cookies can be refused at https://www.linkedin.com/legal/cookie-policy. The applicable privacy policy of LinkedIn is available at https://www.linkedin.com/legal/privacy-policy. For the LinkedIn cookie policy, please visit https://www.linkedin.com/legal/cookie-policy.

 

9.4 Twitter plugin

On this website, we have integrated components of Twitter. Twitter is a multilingual, publicly accessible micro-blogging service where users can post and disseminate so-called Tweets, short messages limited to 140 characters. These short messages are accessible for everybody, including persons not registered with Twitter. The Tweets will also be displayed to the so-called followers of the user in question. Followers are other Twitter users who follow the Tweets of a user. Furthermore, Twitter allows addressing a large audience through the use of hashtags, linking or retweeting.

 

Twitter is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

 

Through each visit to one of the individual pages of this website which is operated by us and into which a Twitter component (Twitter button) has been integrated, the web browser on your IT system will be automatically prompted to download a display of the corresponding Twitter component from Twitter by the Twitter component. Further information on the Twitter buttons is available at https://about.twitter.com/de/resources/buttons. During the course of this technical procedure, Twitter is made aware of the specific sub-page of our website that was visited by you. The purpose of integrating the Twitter component is allowing our users to share the content of this website, to make this website known in the digital word, and to increase the number of people visiting our website.

 

If you are logged into Twitter at the same time, every time you access our website and for the duration of your stay on our website, Twitter is able to see which specific sub-pages of our website you visit. This information will be collected by the Twitter component and assigned to your Twitter account by Twitter. If you click on a Twitter button that is integrated into our website, the data and information transmitted by doing so will be associated with your Twitter user account and will be saved and processed by Twitter.

 

Through the Twitter component, Twitter will always receive notification of any visit made to our website by you if you are simultaneously logged into Twitter when you access our website; this will occur regardless of whether you click on the Twitter component or not. If you do not want such a transfer of information to Twitter to take place, you can prevent this transfer by logging out of your Twitter account before you access our website.

 

The applicable privacy policy of Twitter is available at https://twitter.com/privacy?lang=de.

 

9.5 XING Plugin

On this website, we have integrated components of Xing. Xing is an internet-based social network enabling the connection of users with existing business contacts and establishing new business contacts. On Xing, individual users can create their own personal profile. Companies can create corporate profiles, for example, or publish job vacancies on Xing.

 

The operating company of XING is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.

 

Through each visit to one of the individual pages of this website which is operated by us and into which a Xing component (Xing plug-in) has been integrated, the web browser on your IT system will be automatically prompted to download a display of the corresponding Xing component from Xing by the Xing component. More information on the Xing plug-ins is available at https://dev.xing.com/plugins. During the course of this technical procedure, Xing is made aware of the specific sub-page of our website that was visited by you.

 

If you are logged into Xing at the same time, every time you access our website and for the duration of your stay on our website, Xing is able to see which specific sub-pages of our website you visit. This information will be collected by the Xing component and assigned to your Xing account by Xing. If you click on one of the Xing buttons that have been integrated into our website, such as the “Share” button, Xing will attribute this information to your personal Xing user account and store this personal data.

 

Through the Xing component, Xing will always receive notification of any visit made to our website by you if you are simultaneously logged into Xing when you access our website; this will occur regardless of whether you click on the Xing component or not. If you do not want such a transfer of information to Xing to take place, you can prevent this transfer by logging out of your Xing account before you access our website.

 

The privacy policy of Xing, which is available at https://www.xing.com/privacy, provides information on the collection, processing, and use of personal data by Xing. Xing had also published data protection information for the XING share button at https://dev.xing.com/plugins/share_button/privacy_policy#lang-de.

 

9.6 YouTube plugin

On this website, we have integrated components of YouTube. YouTube is an online video portal where video publishers can publish videos free of charge, and where other users can watch, rate, and comment on these, also free of charge. YouTube allows the publication of all kinds of videos, which is why both complete films and television shows, but also music videos, trailers or videos created by the users themselves can be accessed via the online portal.

 

The operator of YouTube is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

 

Through each visit to one of the individual pages of this website which is operated by us and into which an Instagram component (YouTube plugin) has been integrated, the web browser on your IT system will be automatically prompted to download a display of the corresponding YouTube component from YouTube by the YouTube component. Further information on YouTube is available at https://www.youtube.com/yt/about/de/. As part of this technical procedure, YouTube and Google are made aware of the specific sub-page of our website that was visited by you.

 

If you are logged into YouTube at that time, if a sub-page containing a YouTube plug is accessed, YouTube will recognise which specific sub-page of our website you are visiting. This information will be collected by YouTube and Google and matched to your YouTube account.

 

Through the YouTube component, YouTube and Google will always receive notification of any visit made to our website by you if you are simultaneously logged into YouTube when you visit our website; this will occur regardless of whether you click on the YouTube video or not. If you do not want such a transfer of information to YouTube and Google to take place, you can prevent this transfer by logging out of your YouTube account before you access our website.

 

YouTube is used in the interests of a convenient and easy use of our website. This is a legitimate interest in terms of Art. 6 (1) point (f) GDPR.

 

The privacy policy of YouTube, which is available at www.google.de/intl/de/policies/privacy/, provides information on the collection, processing, and use of personal data by YouTube and Google.

 

10. Plugins and other services

10.1 Google Maps

On our website, we use Google Maps (API). The operator of Google Maps is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited is part of the Google group of companies, based at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Maps is a web service capable of displaying interactive maps which can visually display geographic information. By using this service, we can show you where we are, for example, and if required, help you find our location.

 

The moment you access the subpages in which the map of Google Maps has been integrated, information about your use of our website (e. g. your IP address) is transferred to a Google server in the USA and stored there. This transfer is independent of whether Google provides a user account that you have logged into or whether you have no user account. If you are logged into Google, your data will be directly linked to your account. If you do not wish for Google to link data to your profile, you must log out of your Google user account. Google stores your data (even in the case of logged out users) as a user profile, and analyses this. You have the right to object to the creation of these user profiles. Such an objection must be exercised towards Google.

 

If you do not agree to the future transfer of your data to Google in the context of the use of Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used.

 

These processing sequences take place exclusively with the issuing of express consent according to point (a) of Art. 6(1) GDPR.

 

You can view the conditions of use of Google at https://www.google.de/intl/de/policies/terms/regional.html, the additional conditions of use for Google Maps are available at https://www.google.com/intl/de_US/help/terms_maps.html

 

The privacy policy of Google Maps is available here: (“Google Privacy Policy”): https://www.google.de/intl/de/policies/privacy/.

 

10.2 Google WebFonts

For the uniform presentation of fonts, this website uses so called Web Fonts. Google WebFonts are provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited is part of the Google group of companies, based at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

 

These processing sequences take place exclusively with the issuing of express consent according to point (a) of Art. 6(1) GDPR.

 

You can see further information about Google remarketing and the Google privacy policy at: https://developers.google.com/fonts/faq ; https://www.google.com/policies/privacy/.

 

11. Your rights as a data subject

11.1 Right to confirmation

You have the right to obtain confirmation from us on whether or not personal data concerning your person is being processed.

 

11.2 Right of access, Art. 15 GDPR

You have the right to be provided with information from us about the personal data retained concerning your person and with a copy of such data free of charge at any time according to the statutory regulations.

 

11.3 Right to rectification, Art. 16 GDPR

You have the right to obtain the rectification of inaccurate personal data concerning your person. Furthermore, you have the right to request the completion of incomplete personal data taking the purposes of the processing into account.

 

11.4 Erasure, Art. 17 GDPR

You have the right to obtain from us the erasure of personal data concerning your person without undue delay where one of the reasons required by law applies, and if the processing and/or storage is not necessary.

 

11.5 Restriction of processing, Art. 18 GDPR

You have the right to obtain from us the restriction of processing where one of the legal conditions applies.

 

11.6 Data portability, Art. 20 GDPR

You have the right to receive your relevant personal data that you previously provided to us in a structured, common and machine-readable format. Moreover, you also have the right to transfer those data to another controller without hindrance by us, to whom the personal data has been provided, where the processing is based on consent pursuant to point (a) of Art. 6(1) GDPR or point (a) of Art. 9(2) GDPR or on a contract pursuant to point (b) of Art. 6(1) GDPR and the processing is carried out by automated means, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercising of official authority vested in us.

 

Furthermore, when exercising your right to data portability according to Art. 20(1) GDPR, you have right to have the personal data transferred directly from one controller to another, where technically feasible and where this does not adversely affect the rights and freedoms of others.

 

11.7 Objection, Art. 21 GDPR

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning your person which is based on point (e) [data processing in the public interest] or (f) [data processing on the basis of a balancing of interests] of Art. 6(1) GDPR.

 

This also applies to any profiling as set out in Art. 4(4) GDPR that is based on this provision.

 

If you do raise objections, we will no longer process your personal data for these reasons unless we have proof of compelling and legitimate reasons for processing which prevail over your interests, rights and freedoms, or where the processing serves the establishment, exercising or defence of legal claims.

 

In individual cases, we process personal data for direct marketing purposes. You can object to the processing of personal data for such marketing purposes at any time. This also includes profiling to the extent that it is related to such direct marketing. Should you issue us with an objection to the processing for direct marketing purposes, we will no longer process your personal data for such purposes.

 

Moreover, where personal data is processed by us for scientific or historical research purposes or statistical purposes pursuant to Art. 89(1) GDPR, for reasons relating to your particular situation, you have the right to object to processing of personal data concerning your person, unless such processing is necessary for the performance of a task carried out for reasons of public interest.

 

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may also exercise your right to object by automated means using technical specifications.

 

11.8 Withdrawal of consent given under data protection law

You have the right to withdraw your consent to the processing of personal data with effect for the future at any time.

 

11.9 Lodging of a complaint with a supervisory authority

You have the right to lodge a complaint with a supervisory authority responsible for data protection about our processing of personal data.

 

12. Topicality of and amendments to the privacy policy

This privacy policy is currently valid and was last updated in June 2022.

 

On the basis of our website and related services being developed further or the amendment of legal or official stipulations, it may be necessary to amend this privacy policy. You can view and print out the currently valid privacy notice on the website, “www.voessing.de/de/datenschutz”, at any time.