Data Privacy

Exclusion of liability

In the case of direct or indirect references to external websites (“hyperlinks”) that lie outside the area of responsibility of Bassen&Lopatta GbR, a liability obligation would only come into force in the event that the author is aware of the content and it would be technically possible and reasonable for him to prevent use in the event of illegal content.
Bassen&Lopatta GbR hereby expressly declares that no illegal content was recognizable on the linked pages at the time the links were created. Bassen&Lopatta GbR has no influence whatsoever on the current and future design, content or authorship of the linked pages. Bassen&Lopatta GbR therefore expressly distances itself from all contents of all linked pages that were changed after the link was created. This statement applies to all links and references set within Bassen&Lopatta GbR’s own website and to third-party entries in guest books, discussion forums and mailing lists set up by Bassen&Lopatta GbR. For illegal, incorrect or incomplete contents and especially for damages resulting from the use or non-use of such information, only the provider of the page to which reference is made is liable, not the person who merely refers to the respective publication via links.

Copyright

The copyright for published objects created by Bassen&Lopatta GbR itself remains solely with Bassen&Lopatta GbR. Reproduction or use of such graphics, sound documents, video sequences and texts in other electronic or printed publications is not permitted without the express consent of Bassen&Lopatta GbR.

Data Protection

Information in accordance with Art. 13, 14 and 21 of the EU General Data Protection Regulation – GDPR

We hereby inform you about the processing of your personal data by us and the claims and rights to which you are entitled under data protection regulations. Which data is processed in detail and how it is used depends largely on the services requested by you or agreed with you.

WHO IS RESPONSIBLE FOR DATA PROCESSING AND WHO CAN I CONTACT?

Bassen&Lopatta GbR
Rentzelstr. 7
20146 Hamburg
info@lopattabassen.de

WHICH SOURCES AND DATA DO WE USE?

We process personal data to the extent necessary to provide you with access to our website. You can visit our website without disclosing your identity. If personal data (such as your name, address or e-mail address) is collected on our website, this is done on a voluntary basis. We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) may be subject to security vulnerabilities. This applies in particular to e-mail addresses and IP addresses.

LOGFILES AND COOKIES

When you visit our website, we temporarily store connection data, so-called log files, as standard for the purpose of system security. Log files store, among other things, the IP address, the browser used, the time and date and the system used by a site visitor. We only store pseudonymized IP addresses of website visitors. At web server level, this is done by storing an IP address 123.123.123.XXX, where XXX is a random value between 1 and 254, in the log file instead of the visitor’s actual IP address, e.g. 123.123.123.123. It is no longer possible to establish a personal reference.
We also process data on this website for marketing and optimization purposes using web controlling technologies. On the one hand, pseudonymized user profiles are created from this data. Cookies can be used for this purpose. Cookies are small text files that are stored locally in the cache of the website visitor’s Internet browser. Cookies make it possible to recognize the Internet browser. The data processed with Google technologies will not be used to personally identify the visitor to this website without the separately granted consent of the person concerned and will not be merged with personal data about the bearer of the pseudonym.
You can object to the data processing at any time with effect for the future by e-mail. You can prevent the installation of cookies by selecting the appropriate settings in your browser, as described here for Mozilla Firefox:
Menu item Extras / Settings / Privacy / Do not accept cookies [clear checkbox]. Confirm change.

WHY DO WE PROCESS YOUR DATA (PURPOSE OF PROCESSING) AND ON WHAT LEGAL BASIS?

We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

ON THE BASIS OF YOUR CONSENT (ART. 6 PARA. 1 LIT. A GDPR)

If you have given us your consent to process personal data for specific purposes, the lawfulness of this processing is based on your consent. You can withdraw your consent at any time with effect for the future. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is not affected.

AS PART OF THE BALANCING OF INTERESTS (ART. 6 PARA. 1 LIT. F GDPR)

Where necessary, we also process your data to protect our legitimate interests or those of third parties. Examples of this are
Advertising or market and opinion research, provided you have not objected to the use of your data;

  • Assertion of legal claims and defense in legal disputes;
  • Ensuring IT security;
  • Prevention and investigation of criminal offenses;
  • Measures for business management and further development of services and products

DUE TO LEGAL REQUIREMENTS (ART. 6 PARA. 1 LIT. C GDPR) OR IN THE PUBLIC INTEREST (ART. 6 PARA. 1 LIT. E GDPR)

If we are legally obliged to process your data, processing will also take place on this basis. This may, for example, involve obligations to provide evidence to the tax office or other authorities.

WHO GETS MY DATA?

IWithin our company, those departments that need your data to fulfill our contractual and legal obligations will receive it. Processors employed by us (Art. 28 GDPR) may also receive data for these purposes. In this case, these are companies in the categories of IT services, telecommunications, sales and marketing.

Data will only be passed on to recipients outside our company if this is required by law, if you have given your consent or if we are authorized to provide information. Under these conditions, recipients of personal data may be, for example

  • Public bodies and institutions (e.g. supervisory authorities) in the event of a legal or official obligation.

Other data recipients may be those bodies for which you have given us your consent to transfer data.

HOW LONG WILL MY DATA BE STORED?

Mail server log files are stored by us for 7 days. Backup copies of our servers are stored for 14 days in encrypted form.

WILL DATA BE TRANSFERRED TO A THIRD COUNTRY OR TO AN INTERNATIONAL ORGANIZATION?

Data will only be transferred to third countries (countries outside the European Economic Area – EEA) if this is necessary for the execution of the contracts concluded with you or if you have given us your consent or if we are legally entitled to do so. We will inform you separately about the details, if required by law.

We trust in the reliability and IT and data security of these service providers, all of whom are certified under the US-EU data protection agreement “Privacy Shield” and have thus undertaken to comply with EU data protection requirements.
to be complied with.

WHAT DATA PROTECTION RIGHTS DO I HAVE?

Every data subject has the right of access under Art. 15 GDPR, the right to rectification under Art. 16 GDPR, the right to erasure under Art. 17 GDPR, the right to restriction of processing under Art. 18 GDPR and the right to data portability under Art. 20 GDPR. The restrictions under Sections 34 and 35 BDSG apply to the right to information and the right to erasure. In addition, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG).

DO I HAVE AN OBLIGATION TO PROVIDE DATA?

As part of our business relationship, you only need to provide the personal data that is required for the establishment, execution and termination of a business relationship or that we are legally obliged to collect. Without this data, we will generally have to refuse to conclude the contract or execute the order or will no longer be able to perform an existing contract and may have to terminate it.

Furthermore, in order to provide chargeable services, it is necessary for us to request additional data, such as the payment method you wish to use.

CONTACT FORM

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We will not pass on this data without your consent.

This data is processed on the basis of Art. 6 para. 1 lit. b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) if this has been requested; consent can be revoked at any time.

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Mandatory statutory provisions – in particular
retention periods – remain unaffected.

FUNCTIONS FROM THIRD-PARTY PROVIDERS

YouTube

This website integrates videos from the YouTube website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of our websites on which YouTube is integrated, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

Furthermore, YouTube may store various cookies on your device or use comparable technologies to recognize you (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to record video statistics, improve user-friendliness and prevent fraud attempts.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. A GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. Further information on the handling of user data can be found in YouTube’s privacy policy at: https://policies.google.com/privacy?hl=de.

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link:

https://www.dataprivacyframework.gov/s/participant-search/participantdetail?
contact=true&id=a2zt000000001L5AAI&status=Active

LINKS TO THIRD PARTY WEBSITES

In the case of direct or indirect references to external websites (“hyperlinks”) that lie outside the area of responsibility of Bassen&Lopatta GbR, a liability obligation would only come into force in the event that the author is aware of the content and it would be technically possible and reasonable for him to prevent use in the event of illegal content. Bassen&Lopatta GbR hereby expressly declares that no illegal content was recognizable on the linked pages at the time the links were created. Bassen&Lopatta GbR has no influence whatsoever on the current and future design, content or authorship of the linked pages. Bassen&Lopatta GbR therefore expressly distances itself from all contents of all linked pages that were changed after the link was created. This statement applies to all links and references set within Bassen&Lopatta GbR’s own website as well as to third-party entries in guest books, discussion forums and mailing lists set up by Bassen&Lopatta GbR. For illegal, incorrect or incomplete contents and especially for damages resulting from the use or non-use of such information, only the provider of the page to which reference is made is liable, not the person who merely refers to the respective publication via links.

INFORMATION ABOUT YOUR RIGHT TO OBJECT ACCORDING TO ART. 21 GDPR

1. INDIVIDUAL RIGHT OF OBJECTION

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (f) of Article 6(1) GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4(4) GDPR which we use to assess creditworthiness or for advertising purposes. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims.

2. RIGHT TO OBJECT TO THE PROCESSING OF DATA FOR DIRECT MARKETING PURPOSES

In individual cases, we process your personal data for direct marketing purposes. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.

The objection can be made informally and should preferably be addressed to:

By e-mail to info(a)lopattabassen.de or by post to the address of the controller named above.