1. Name and address of the controller
The controller, as defined by the law, is:saltation GmbH & Co. KG
Phone: +49 521 3296470
1.1 Contact details of the data protection officer
The controller’s data protection officer can be reached at:Carsten Knoop
audatis - Datenschutz und Informationssicherheit
2. General information about data processing
This website collects a range of general data and information each time a website is accessed by a data subject or an automated system. This general data and information is stored in the web server’s log files. The browser types and versions used, the operating system used by the accessing system, the website from which an accessing system accesses our website (called a referrer), the sub-pages accessed via an accessing system on our website, the date and time the website is accessed, an internet protocol address (IP address), the accessing system's internet service provider and other similar data and information useful in the event of an attack on our information technology systems may be collected. No conclusions are drawn with respect to the data subject when using this general data and information. Instead, this information is needed to properly deliver our website content, to optimise the content of the website as well as to advertise it, to ensure the continued functioning of our information technology systems and our website’s technology as well as to provide the information necessary for law enforcement authorities to prosecute in the event of a cyber attack. This anonymously collected data and information is therefore statistically analysed and further analysed with the aim of increasing data protection and data security within the company to ultimately ensure an optimum level of protection for the personal data being processed. The anonymous data from the server log files are stored separately from all personal data provided by a data subject.
2.1 Scope of processing of personal data
We generally collect and use our users’ personal data only to the extent necessary to provide a functional website as well as our content and services. Our users’ personal data are regularly collected and used, but only with the user’s consent. An exception applies to cases in which prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.
2.2 Legal basis for processing of personal data
If and insofar as we obtain the consent of the data subject to process their personal data, Art. 6 Para. 1(a) of the EU General Data Protection Regulation (GDPR) shall serve as the legal basis for the processing of personal data. When processing personal data that are necessary for the performance of a contract to which the data subject is a party, Art. 6 Para. 1(b) GDPR shall serve as the legal basis. The same shall apply to processing operations required to carry out pre-contractual measures. If and insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6 Para. 1(c) GDPR shall serve as the legal basis. If processing is necessary to safeguard the legitimate interests of our company or those of a third party, and if the interests and fundamental rights and freedoms of the data subject do not prevail over those interests, Art. 6 Para. 1(f) GDPR shall serve as the legal basis for processing.
2.3 Deletion of data and period of storage
The data subject’s personal data are erased or blocked as soon as the purpose of the storage no longer applies. The data may continue to be stored if this is stipulated by European or national legislation in EU regulations, laws or other provisions to which the controller is subject. Data are also blocked or erased upon the expiry of a storage deadline stipulated by the standards mentioned above, unless further storage of the data is necessary to conclude or fulfil a contract.
3. Provision of the website and creation of log files
3.1 Description and scope of data processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data are collected:
- Information about the browser type and version used
- The user’s operating system
- The user’s internet service provider
- The user’s IP address
- Date and time of access
- Websites from which the user's system is accessing our website
- Websites that are accessed by the user's system through our website
The log files contain IP addresses or other data that can be attributed to a user. This could be the case, for example, if the link to the website from which the user accesses the website or the link to the website which the user switches to contains personal data. The data are also stored in our system’s log files. These data are not stored together with other personal data of the user.
3.2 Legal basis for data processing
The legal basis for the temporary storage of data and log files is Art. 6 Para. 1(f) GDPR.
3.3 Purpose of data processing
The temporary storage of the IP address by the system is necessary to enable the provision of the website to the user’s computer. To do this, the user's IP address must be stored for the duration of the session. Storage in log files is done to ensure the functionality of the website. In addition, the data are used to optimise the website and to ensure the security of our information technology systems. No data are analysed for marketing purposes in this context. Our legitimate interest in data processing also lies in these purposes pursuant to Art. 6 Para. 1(f) GDPR.
3.4 Period of storage
Data are erased once they are no longer necessary for the purpose for which they were collected. If data have been collected for the provision of the website, they are erased when the respective session is concluded. When data are stored in log files, they are erased after not more than seven (7) days. It is possible to store the data beyond that time. In this case, the user’s IP addresses will be erased or altered so that the accessing client can no longer be attributed to that user.
3.5 Option to object and remove
The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. As such, the user has no option to object.
5. External services
This website does not use external services.
6. Email contact
6.1 Description and scope of data processing
You may contact us via the email address provided. In this case, the user’s personal data transmitted with the email are stored. No data are forwarded to third parties in this regard. These data are used exclusively for processing the conversation.
6.2 Legal basis for data processing
The legal basis for the processing of data upon obtaining the user’s consent is Art. 6 Para. 1(a) GDPR. The legal basis for the processing of data transmitted when sending an email is Art. 6 Para. 1(f) GDPR. If the aim of the contact via email is to conclude a contract, processing shall also be legally based on Art. 6 Para. 1(b) GDPR.
6.3 Purpose of data processing
In the case of contact via email, this includes the required legitimate interest in processing the data. The other personal data processed during the sending process serve to prevent abuse of the contact form and to ensure the security of our information technology systems.
6.4 Period of storage
Data are erased once they are no longer necessary for the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is deemed to have ended when it can be inferred from the circumstances that the relevant facts have been clarified in a conclusive manner. The other personal data collected during the sending process is normally erased after a period of not more than seven (7) days.
6.5 Option to object and remove
The user has the option to revoke their consent in respect to the processing of their personal data at any time. If the user contacts us by email, they may object to the storage of their personal data at any time. In such a case, the conversation may not continue. The revocation of consent can be communicated via phone or Email. Any and all personal data stored as part of the contact process will be erased in this case.
7. Rights of the data subject
If your personal data are being processed, you are the “data subject” as defined by the GDPR, and you are entitled to the following rights with respect to us as the controller. You may exercise your rights by contacting our data protection officer or the service centre staff, indicating your concerns.
7.1 Right to access
Any data subject affected by the processing of personal data has the right to obtain information about the personal data stored about them at any time, free of charge, as well as the right to access a copy of such data from the controller. You may request confirmation from the controller as to whether they are processing the personal data that relates to you.
7.2 Right to correction
Any data subject affected by the processing of personal data has the right to request the immediate correction of any incorrect personal data that relates to them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including through a supplementary declaration, taking into account the purposes of the processing.
7.3 Right to restriction of processing
Any data subject affected by the processing of personal data has the right to request the controller immediately restricts processing if the conditions stipulated by Art. 18 Para. 1 GDPR are met.
7.4 Right to erasure
Any data subject affected by the processing of personal data has the right to request that the personal data regarding the data subject be erased if and insofar as one of the reasons stipulated in Art. 17 Para. 1 GDPR applies.
7.5 Right to data portability
Any data subject affected by the processing of personal data has the right obtain personal data relating to the data subject and provided by the same to the controller in a structured, commonly used and machine-readable format. They also have the right to transfer these data to another controller without hindrance by the controller to whom the personal data was provided, provided that the processing is based on the consent pursuant to Art. 6 Para. 1(a) GDPR or Art. 9 Para. 2(a) GDPR or on a contract pursuant to Art. 6 Para. 1(b) GDPR, and the data are processed using automated procedures.
7.6 Right to object
Any data subject affected by the processing of personal data has the right to lodge an objection to the processing of personal data relating to you for reasons relating to your particular situation where this is done on the basis of Article 6 Paragraph 1(e) or (f) GDPR. This also applies to profiling based on these provisions. In the event of an objection, the company will longer process the personal data unless we can demonstrate compelling and legitimate reasons for such processing that outweigh the interests, rights and freedoms of the data subject, or where processing serves the assertion, exercise or defence of legal claims. If the company processes personal data in order to run a direct mail campaign, the data subject has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to profiling where this is connected to this kind of direct marketing. Should the data subject object to the processing of their data for direct marketing purposes, we will no longer process their personal data for this purpose.
7.7 Right to revoke declaration of consent in relation to data protection
Any data subject affected by the processing of personal data has the right to revoke their consent to the processing of personal data at any time. You have the right to revoke any declaration of consent granted in relation to data protection at any time. The revocation of consent does not affect the lawfulness of the processing based on consent before revocation.
7.8 Right to legal remedies with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you are entitled to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged infringement, if you believe your personal data are being processed in violation of the GDPR.
This website does not make use of Google Analytics. Hurray.