Responsible within the scope of data privacy acts, in particular of the General Data Protection Regulation (GDPR), is:
Sigrid Hartong
Holstenhofweg 85, 22043 Hamburg
Your rights as affected person
You can exercise the following rights at any time using the contact details provided by our data protection commissioner:
- information about your data stored by us and its processing (Article 15 GDPR);
- correction of incorrect personal data (Article 16 GDPR);
- deletion of your data stored by us (Article 17 GDPR);
- restriction of data processing, if we are not yet allowed to delete your data due to legal obligations (Article 18 GDPR);
- objection to the processing of your data by us (Article 21 GDPR) and
- to data portability, if you have agreed to data processing or if you have concluded a contract with us (Article 20 GDPR).
If you have given us consent, you may revoke this at any time with effect for the future.
You can lodge a complaint with a supervisory authority at any time, e.g. the competent supervisory authority in the federal state of your residence or the competent authority for us in our position as the responsible body.
A list of the supervisory authorities (for the non-public sector) with address can be found at:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
Collection of general information when visiting our website
Type and purpose of the processing
When you access our website, i.e.if you do not register or otherwise submit information, information of a general nature is automatically collected for a limited time. This information (server log files) contains, for example, the type and version of the web browser, the operating software used, the domain name of your internet service provider, your IP address and date and time of access.
They are processed in particular for the following purposes:
- Ensuring a smooth connection setup of the website,
- ensuring the smooth use of our website,
- evaluating system security and stability, and
- for other administrative purposes.
We do not use your data to draw conclusions about you personally. Information of this kind may be statistically evaluated by us in order to improve our web presence and the technology behind it.
We only use so-called temporary cookies on our website as part of the demand-oriented provision of information (or to
facilitate navigation). Cookies are small files that are automatically created by the user’s browser and stored on the end device when you visit our website. These session cookies do not contain any personal data and expire at the end of the session.
Legal basis
The processing is carried out in accordance with article 6 subsection 1 (f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website.
Recipient
Recipient of the data is https://www.manitu.de, on whose server the data of this website is stored.
Manitu does not act as a technical service provider.
Storage period
The data is deleted as soon as it is no longer required for the purpose of data acquisition. This is generally the case for data used to provide the website when the respective session has ended.
Provision prescribed or required
The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website cannot be guaranteed. In addition, individual services may not be available or may be restricted. For this reason, an objection is excluded.
Newsletter
Type and purpose of the processing
Your data will only be used to send you the newsletter you have subscribed to by e-mail. Your name is provided in order to be able to address you personally in the newsletter and, if necessary, to identify you if you wish to exercise your rights as affected person.
To receive the newsletter, it is sufficient to provide your e-mail address. When registering to receive our newsletter, the data you provide will be used exclusively for this purpose. Subscribers may also be informed by e-mail about circumstances relevant to the service or registration (e.g. changes to the newsletter service or technical circumstances).
For an effective registration, we need a valid e-mail address. In order to verify that a registration is actually made by the owner of an e-mail address, we use the “double-opt-in” procedure. For this purpose, we log the order of the newsletter, the sending of a confirmation e-mail and the receipt of the response requested herewith. No further data is collected. The data is used exclusively for sending the newsletter and is not passed on to third parties.
Legal basis
Based on your express consent (Article 6 subsection 1 (a) GDPR), we will regularly send you our newsletter or comparable information by e-mail to your specified e-mail address.
You can revoke your consent to the storage of your personal data and its use for sending the newsletter at any time with effect for the future. You will also find a link to this effect in every newsletter. You can also unsubscribe directly on the website at any time or inform us of your revocation using the contact option provided at the end of this privacy policy.
Recipient
Recipients of the data may be technical service providers who act as order processors for the operation and maintenance of our website.
Storage period
In this context, the data will only be processed as long as the corresponding consent has been given. After the revocation of this consent, it is deleted.
Provision prescribed or required
The provision of your personal data is voluntary, based solely on your consent. Unfortunately, we cannot send you our newsletter without your consent.
Contact form
Type and purpose of the processing
The data you enter will be store for the purpose of individual communication with you. For this purpose, it is necessary to provide a valid e-mail address and your name. This serves the purpose of assigning the enquiry and subsequently answering it. The provision of further data is optional.
Legal basis
The processing of the data entered in the contact form is based on a legitimate interest (Article 6 subsection 1 (f) GDPR).
If we base the processing of your personal data on our legitimate interest, you have the right to object (Article 21 GDPR). You can send or inform us of your objection at any time.
You will find contact details in the legal details.
By providing the contact form, we would like to make it easier for you to contact us. The information you provide will be stored for the purpose of processing your enquiry and for possible follow-up questions.
If you contact us to request a quote, the data entered in the contact form will be processed to carry out pre-contractual measures (Article 6 subsection 1 (b) GDPR).
Recipient
Recipients of the data may be technical service providers who act as order processors for the operation and maintenance of our website.
Storage period
Data will be deleted no later than 6 months after the request has been processed.
If a contractual relationship arises, we are subject to the statutory retention periods according to the German Commercial Code (HGB) and delete your data after these periods have expired.
Provision prescribed or required
The provision of your personal data is voluntary. However, we can only process your request if you provide us with your name, e-mail address and the reason for the request.
SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption procedures (e.g., SSL) via HTTPS.
Changes to our privacy policy
We reserve the right to adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g.,when introducing new services. The new data protection declaration will then apply to your next visit.
Questions to the data protection commissioner
If you have any questions about data protection, please write us an e-mail or contact the person responsible for data protection in our organisation directly:
Sigrid Hartong
hartongs (at) hsu-hh.de
The data protection declaration was created with the help of activeMind AG
(Version #2019-04-10).