Private Policy

Privacy Policy, May 2018

General and mandatory information

Responsible Authority

On this website, the responsible authority for the processing of data according to the GDPR is:
Proway GmbH
Herr Thomas Kammer
Ingeborg-Bachmann-Straße 71-73
89134 Blaustein
Concerning the purposes and instruments of the processing of personal data (name, contact data etc.), the responsible authority takes decisions alone or jointly with other instances.

The responsible authority and third parties process data for the following purposes (Article 6 paragraph 1 GDPR):

To a necessary extent, we process our users’ personal data basically only for providing a working website, our content and our service. For saving your contact data and answering your request or follow-up questions we use a contact form. Beside the mentioned purposes there is no other cause for which we transmit your personal data to third parties. We only transmit your personal data to third parties if:

–  you gave your explicit consent
– the processing is necessary for implementing a contract with you
– the processing is necessary for fulfilling legal obligation
– the processing is necessary for respecting legitimate interests and if there is no reason to believe that your interest worthy of protection concerning the transmission of data to third parties prevails

Revocation of consent of processing data (Article 7 paragraph 3 GDPR):

Revoking your consent is possible at any time. Leave a formless e-mail to revoke. The lawfulness of the processing, that has been done so far, will not be touched by the revocation.

Right to lodging a complaint with the supervisory authority (Article 13 paragraph 2 lit. d GDPR):

In case of an infringement against the data protection a concerned person is entitled to lodge a complaint with the responsible supervisor authority. The responsible supervisor authority for questions concerning data protection is the Data Protection Officer of the federal state your company is based in (Baden-Württemberg). The following link lists all the Data Protection Officers including their contact data:

https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

Information to third parties

In case we published your personal data and are obligated to delete them according to article 17 paragraph 1 GDPR, we take appropriate measures to inform the responsible persons to delete all links and copies of those data.

Right to information (Article 19 GDPR):

If you asserted the right to correction, deletion or constraint of processing against us, we are obligated to inform all personal data receivers about the correction, deletion and constraint of the processing. In case it is impossible or too extensive to inform you, the right is invalid. You have the right to be instructed about these receivers.

Right to data portability (Article 20 GDPR):

You have the right to be handed out the data electronically to yourself or to third parties. This is related to data which we processed on your consent or to fulfil a contract. The transmission of data to another responsible can take place if it is technically possible.

Right to correction, deletion, constraint, inhibition and information (Article 13 paragraph 2 lit. d GDPR):

In line with the actual legal regulations you have the right to information without consideration about your saved personal data, the origin of your data, the receivers and the purpose of the processing. Furthermore, you have the right to correction, constraint, inhibition and deletion of the data. Should you have further questions on this topic, you can address yourself to the contact given in the legal notice.

Right to objection

You have the right to object the processing of your personal data, which takes place based on Article 6 paragraph 1 lit. e GDPR due to a special situation; this right includes profiling as well. We will not process your personal data in case of objection unless we can prove that there are detectable, necessary and worthy of protection reasons or additionally your interests and rights prevail.

Deletion and Saving of data (Article 17 paragraph 1 GDPR):

You have the right to demand the immediate deletion and inhibition of data as soon as the purpose for saving is inapplicable. The purpose is inapplicable once your request is answered and there are no further questions respectively there is no need for processing data out of an operational interest. In this case we are obligated to delete and inhibit your personal data. Personal data can be saved if the European or national legislator schedules such instructions. The information will be blocked and deleted if the retention period runs off unless the data is needed for entering or fulfilling a contract.

SSL and TLS encryption

For safety reasons and for protecting confidential content that you send to our website provider, we use an SSL / TLS encryption (see “https://” and the lock symbol on the address bar) Thus, information that you transmit is not available to third parties.

Data Protection Officer

Oskar, Brendler
Ingeborg-Bachmann-Straße 71-73
89134 Blaustein
Telefon: 0731 550198 – 0
E-Mail: datenschutz@proway.de

Server Log

Our provider gathers and saves automatically information in server log data. They are transmitted automatically to us. The information is:
– type and version of browser
– used operating system
– time of server request
– IP address
– Referrer URL
There is no junction between these data and other data sources. Processing of personal information is based on Article 6 paragraph 1 lit. b GDPR.

Contact form

For replying on your request or on further questions, data from the contact form as well as your contact data is saved. The data in the contact form is not passed neither processed without your consent (Article 6 paragraph 1 lit. a). You can object your consent anytime via formless e-mail. The lawfulness of the processing that has been done so far will not be touched by the objection. The data transmitted via the contact form remain in our hands until you want us to delete them, you revoke your consent or if it is not necessary to keep the information. This is not valid for legal regulations like retention periods.

Use of Google Maps

This website uses Google Maps API to visualize geographic information. Google rises, processes and uses information about the visitors’ use of the map function while using Google Maps. Further specification is available in Google’s Privacy Policy. You can adapt your personal privacy settings there as well.

Cookies

Our website uses cookies. Cookies are types of messages that a web browse receives from a web server. They identify users and prepare user adapted web pages. Furthermore, they safe site information and help us to create an effective and safe offer.
Some cookies are so called session cookies. They delete themselves after you close the browser or normally after 60 minutes. Only the user’s language is saved beside the session cookies. There is no saving of other cookies neither tracking.
A recent web browser helps you to monitor, prevent and restrict the generating of cookies. Many browsers support the self-destruction of cookies after closing the program. Deactivating cookies might lead to a restriction of the website’s functionality.
Setting cookies that are necessary for the processes of electronical communication or for providing certain functions (e.g. shopping cart) is based on Article 6 paragraph 1 lit. f GDPR. In order to provide an excellent and faultless service, we have a legitimate interest in saving cookies. In case we set other types of cookies, they will be listed in this privacy policy.

XING plug-in

We use functions of the social network XING. The provider of XING is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany.
When visiting a website that includes XING functions a connection to the XING servers is established. As far as we know, there is no saving of your personal data neither your IP address nor evaluation concerning your user behavior. Here you can find details concerning the privacy policy and the XING share button:
https://www.xing.com/app/share?op=data_protection .