Privacy policy

We attach great importance to data protection. The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the EU General Data Protection Regulation (GDPR). We collect and process your personal data in order to be able to offer you our website and our services. In accordance with Art. 13 GDPR, we describe in this policy what data is used by us, how, for what purpose and to what extent, and which options and rights you have in connection with the use of your personal data.

  1. Controller

For the observance of data protection on our side:

Jessat GmbH

Wiesbadener Weg 2

65812 Bad Soden/Ts.

Germany

Phone +49 6196/76999-0

Fax: +49 6196/76999-48

www.jessat-gmbh.de

info@jessat-gmbh.de

Managing director: Ralf Jessat

We have not appointed a data protection officer.

Please do not hesitate to contact us if you have any questions regarding data protection.

 

  1. Data collection on our website
  2. a) Server log files

When you access our website, information is automatically transmitted by your browser to the server of our website. This information is only stored briefly in a log file and is automatically deleted.

This includes the following data:

  • Your IP address
  • Date and time of access,
  • Name and URL of the file you are viewing,
  • Website from which the access is made (referrer URL),
  • Information about the browser and operating system you are using,
  • Name of your access provider.

This data is used for the purpose of ensuring a smooth connection and comfortable use of our website as well as to evaluate system security and stability.

The legal basis for data processing results from Art. 6(1)(f) GDPR, since we have a legitimate interest in collecting data for the aforementioned purposes. In addition, a legal basis also arises from Art. 6(1)(b) GDPR for the processing of data to perform a contract or steps prior to entering into a contract.

The data will not be used to draw conclusions about your person.

 

  1. b) Contact form/ communication by e-mail

On our page you will find a contact form. With this, we would like to give our customers the possibility to contact us easily. You can also contact us directly by e-mail. If you would like to use our contact form, you must enter your name and a valid e-mail address. If you send us an e-mail, we will at least receive your e-mail address. All other data provided is optional. The data is collected for the purpose of initiating or implementing contractual relationships in accordance with Art. 6(1)(b) GDPR. If your enquiry is not directed towards initiating or implementing a contract, we nevertheless have a legitimate interest in processing and answering your enquiry. In this respect, the use of personal data for this purpose is governed by Art. 6(1)(f) GDPR.

We use the data provided by you exclusively to process your enquiry. If your enquiry is directed towards the initiation or conducting of business, we will delete your data in accordance with our internal deletion periods.

If your request relates to another purpose, we delete your data after processing, insofar as there is no other legal basis for data storage.

  1. b) Processing of customer and contract data

When initiating business, concluding contracts and performing contracts, we use your necessary personal data for this purpose in accordance with Art. 6(1)(b) GDPR.

Data will only be transferred to third parties if and insofar as this is necessary for contractual fulfilment, e.g. if a company for production or transport services or a bank has been commissioned to process payments.

This personal data will be deleted after the statutory warranty periods or retention periods have expired.

  1. c) Cookies
  2. c) Cookies

Our website contains cookies. Cookies are small text files that are stored on your device. They help us to make it easier for you to navigate through our service and enable the website to be displayed correctly. They are intended to support the user-friendliness of the website and are, of course, completely harmless to your device. Information in connection with the device and software you are using is collected temporarily. Conclusions about your identity are not drawn from this.

For example, we use what are known as ‘session cookies’. These cookies are automatically deleted after your visit. We also use cookies that are stored on your device, for example to make it easier for you to use our site during another visit and to recognise your browser during your next visit (‘permanent cookies’). These cookies can, of course, be deleted manually by you at any time.

We use the cookies that are absolutely necessary for the operation of our website, i.e. without which our website cannot be displayed, for this purpose to safeguard our legitimate interests in accordance with Art. 6(1)(f) GDPR. These will be deleted automatically after a defined period of time.

We use the cookies required for the processing of contracts or for the contractually agreed use of our website in accordance with Art. 6(1)(b) GDPR. These will be deleted automatically after a defined period of time.

The use of cookies that are not required as described above is based on your consent pursuant to Art. 6(1)(a) GDPR. Your consent may be revoked at any time with immediate effect. To do this, go to the settings of your browser and select ‘Delete browser data’. You must have selected ‘Cookies and other website data’ and then remove them.

Of course, you can also view our website without cookies. To do this, you must prevent cookies from being saved on your hard drive by selecting ‘do not accept cookies’ in your browser settings. For a more detailed description, please refer to the instructions of your browser manufacturer. You can also use the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/) to deactivate cookies. If you do not accept cookies, this may lead to functional limitations on our website.

 

  1. d) Use of Google Maps

Based on your consent (within the meaning of Art. 6(1)(a) GDPR), we use Google Maps from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google Maps”, for the purpose of better searchability on our website.

If you have given your consent, a cookie is saved by Google each time the “Google Maps” component is called up in order to process user settings and data when the page on which the “Google Maps” component is integrated is displayed. As a rule, this cookie is not deleted when you close your browser, but expires after a certain period of time unless you delete it manually beforehand.

If you do not agree with this processing of your data, it is possible to deactivate the “Google Maps” service and thus prevent the transmission of data to Google. To do this, you must deactivate the JavaScript function in your browser. However, we would like to point out that, in this case, you cannot use Google Maps or can only use it to a limited extent.

The use of Google Maps and the information obtained via Google Maps is carried out in accordance with the Google Terms of Service at

https://policies.google.com/terms?hl=en

as well as the additional terms of service for Google Maps at

https://www.google.com/intl/en_gb/help/terms_maps/.

Google complies with European privacy laws and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

 

  1. e) Google reCaptcha

On the basis of Art. 6(1)(f) GDPR, we use the reCAPTCHA service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google”, to protect your enquiries via the Internet form. The query serves to determine whether the input is made by a human being or is abused by automated, mechanical processing. The query includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. Your input will be transmitted to Google and used there for this purpose. However, your IP address will be shortened by Google in advance within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of this service. The IP address transmitted by your browser as part of reCaptcha is not merged with other data from Google. This data is subject to the differing data protection regulations of Google. For more information about Google’s privacy policy, please visit: https://policies.google.com/privacy?hl=en

Google complies with European privacy laws and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

 

  1. f) Google Ajax & jQuery Libraries, Google Web Fonts

On the basis of Art. 6(1)(f) GDPR, we use Google Ajax & jQuery libraries, Google web fonts from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google”, for the purpose of a customer-friendly and appealing presentation of our website. Program libraries and fonts are accessed by Google via your browser and loaded into the browser cache in order to display content, texts and fonts correctly. Information about your provider, operating system, browser and IP address may be transmitted to Google.

The privacy policy of Google applies here:

https://www.google.com/policies/privacy/

Google complies with European privacy laws and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

 

  1. Disclosure of data

Your personal data will not be passed on to third parties. However, data may exceptionally be transmitted for the following reasons:

 

  • If you have given your express consent, Art. 6(1)(a) GDPR
  • To the extent that disclosure is required pursuant to Art. 6(1)(f) GDPR and there is no overriding legitimate interest in the non-disclosure of your data
  • Insofar as we are legally obliged to pass on the data, Art. 6(1)(c) GDPR
  • To the extent that disclosure in accordance with Art. 6(1)(b) GDPR is permissible and necessary for the processing of contractual relationships with you

Insofar as your data is processed by third parties commissioned by us, this takes place on the basis of Art. 28 GDPR by means of a contract data processing agreement.

  1. Data subject rights
  • Right of access Art. 15 GDPR

You have the right to obtain confirmation from us as to whether we process your personal data. If this is the case, you can obtain access to this personal data and the following information:

 

  • The purposes of processing
  • The categories of personal data concerned
  • The recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
  • Where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
  • The existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing
  • If the personal data is not collected from you, all available information about the source of the data
  • The existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject

 

  • Right to rectification Art. 16 GDPR

You can immediately request the correction of incorrect or incomplete personal data stored by us.

  • Right to erasure (‘right to be forgotten’) of your data, Art. 17 GDPR

 

You can request the erasure of your data stored by us, insofar as

 

  • The personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
  • You withdraw consent on which the processing is based according to point (a) of Article 6(1) GDPR, or point (a) of Article 9(2) GDPR, and where there is no other legal ground for the processing;
  • You object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) GDPR;
  • The personal data has been unlawfully processed;
  • The personal data has to be erased for compliance with a legal obligation in Union or Member State law to which you are subject;
  • The personal data has been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

We are obliged to delete the data upon presentation of the conditions, unless the processing is necessary to exercise the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.

  • Right to restriction of processing, Art. 18 GDPR

You have the right to obtain from us restriction of processing to the extent that

  • The accuracy of the personal data is contested by you, but only for as long as it takes for us to verify the accuracy of the data;
  • The processing is unlawful and you do not wish your personal data to be deleted immediately, but instead request that the use of your personal data be restricted;
  • We no longer need the personal data for the purposes of processing, but you need it for the establishment, exercise or defence of legal claims, or
  • You have lodged an objection against the processing pursuant to Article 21(1) GDPR pending the verification whether our legitimate grounds override yours.

Where processing is restricted, we may process your personal data – with the exception of storage – only with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

You shall be informed again before the restriction is lifted.

  • Right to data portability Art. 20 GDPR

You have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format and to request that it be transferred to another controller.

  • Right to object Art. 21 GDPR

You have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data if it is processed on the basis of a legitimate interest pursuant to Art. 6(1)(f) GDPR. However, this only applies if there are grounds relating to your particular situation or if the objection is directed against direct marketing.

 

  • Right of withdrawal Art. 7(3) GDPR

 

You have the right to withdraw your consent granted to us pursuant to Art. 6(1)(f) GDPR at any time. This withdrawal applies exclusively to future use.

  • Right to appeal to supervisory authorities

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or our registered office, if you consider that the processing of your personal data is in breach of the General Data Protection Regulation.

To the extent that you wish to exercise your rights, you may also do so by sending an e-mail to the above e-mail address.

  • Data security

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognise this by the fact that the address line of the browser changes from “http://” to “https://”. In addition, a lock symbol can be seen in the browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

In addition, we have taken precautions in the form of technical and organisational measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties.

  • Timeliness and amendment of this privacy policy

This privacy policy is currently valid and was last updated in July 2019.

We reserve the right to make changes at any time in order to ensure that our privacy policy always complies with the current legal requirements. This also applies in the event that the privacy policy has to be adapted due to new or revised services, for example new services. The new privacy policy will then take effect the next time you visit our website.

You can view and print our privacy policy at any time on our website.

  • Complaints and warnings

Should you feel that your rights have been infringed or otherwise disadvantaged, we ask you to inform us of this yourself. You will then receive a personal, individual reply. As part of your duty to minimise damage, we would like to point out that costs will not be borne by a lawyer appointed out of court by you without prior contact with us. There is expressly no intention on our part that you instruct a lawyer with a cease-and-desist letter and/or a declaration of cease-and-desist. Consequently, it is not possible to rely on a presumed intention.

 

This privacy policy was created by Martin Jedwillat: www.advomare.de

Copyright © 2019 Jessat GmbH