Privacy policy of the website of LANDSBERG First Class Aesthetic
We are pleased that you are interested in the LANDSBERG First Class Aesthetic (hereinafter: “LANDSBERG”) website. We attach great importance to protecting your personal data when collecting, processing and using it during your visit to our website. We comply with the provisions of the EU General Data Protection Regulation, the German Federal Data Protection Act, the German Telemedia Act and any other applicable data protection regulations, particularly those specific to your country.
This declaration informs you about the type, scope and purpose of the collection, processing and use of personal data by us. We also inform you about the rights to which you are entitled as part of this privacy policy.
We have taken a variety of technical and organizational measures to protect your personal data processed via this website as completely as possible. Nevertheless, we would like to point out that absolute protection cannot be guaranteed due to Internet-based data transmissions and any associated security gaps. You therefore have the option of transmitting your personal data to us by other means (e.g. by telephone or post).
1. terminology
In this privacy policy, we use the terms that are also used in the EU General Data Protection Regulation (GDPR). These terms include the following:
2. Personal data
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
3. data subject
“Data subject” means any identified or identifiable natural person, whose
personal data are processed by the controller responsible for the processing.
4. processing
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
5. restriction of processing
“Restriction of processing” means the marking of stored personal data with the aim of restricting its future processing.
6. profiling
“Profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal
aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
7. pseudonymization
Pseudonymization means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
8. file system
“File system” means any structured collection of personal data that is accessible according to specific criteria, regardless of whether this collection is managed centrally, decentrally or according to functional or geographical aspects.
9. controller
“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
10. processor
A “processor” is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
11. recipient
“Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients.
12. third party
“Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
13. consent
“Consent” means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
14. name and address of the data controller
is responsible for processing the data collected via the website https://www.landsberg.eu:
Landsberg Ltd.
Registered Office & Finance
Centris Business Gateway, Level 2M
Triq Is-Salib Tal-Imriehel
Central Business District, Zone 3
Birkirkara CBD3020
Malta
Reg No.: C97921
VAT No.: MT27662111
VAT ID No.: DE340866384
Worldwide Contact:
Mail: [email protected]
Web/Chat: www.landsberg.eu
Name and address of the data protection officer
The data protection officer of the controller is
Landsberg Ltd.
Registered Office & Finance
Centris Business Gateway, Level 2M
Triq Is-Salib Tal-Imriehel
Central Business District, Zone 3
Birkirkara CBD3020
Malta
Reg No.: C97921
VAT No.: MT27662111
VAT ID No.: DE340866384
Worldwide Contact:
Mail: [email protected]
Web/Chat: www.landsberg.eu
15. collection of general data and information
When a data subject or automated system visits our website, general information about the access is regularly stored in the log files of our server. This may include the browser types and versions used, the operating system used and the website from which the data subject or an automated system has accessed our website, as well as the subpages accessed on our website, the amount of data transferred, status information (e.g. error codes), the browser type and version used, the browser used and the website from which the data subject or an automated system has accessed our website.This data includes the website from which the data subject or automated system accessed our website, the subpages accessed on our website, the amount of data transferred, the status information (e.g. error codes), the date and time of access to the website, the IP address in anonymized (shortened) form, the Internet service provider of the accessing system and other data and information that we require to avert danger in the event of attacks on our IT systems.
We do not use this data to draw conclusions about the data subject. Rather, we need the data to correctly transmit the content of our website, to optimize our website, to ensure its functionality or to provide law enforcement authorities with the necessary information in the event of a cyber attack. We therefore evaluate this data exclusively for statistical purposes and also to increase data protection and data security in our company. This is to ensure that the personal data we process can be protected in the best possible way. We store personal data that you have communicated to us and the aforementioned anonymous data that our server collects in the log files separately.
The collection of the aforementioned data is in our legitimate interest for the operation of the website in accordance with Art. 6 para. 1 lit. f) GDPR. The data will be deleted after six months.
Further personal data such as name, address, e-mail address or telephone number of a visit to our website are generally not stored. However, if you wish to use special services from our offer via our website, it may be necessary for us to process such personal data. We always obtain your consent if it is necessary to process personal data and there is no legal basis for the processing.
16. cookies
We use cookies on the https://www.landsberg.eu website. Cookies are text files that are placed and stored on a computer system via an Internet browser.
Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie that consists of a string of characters that makes it possible to assign the websites and servers to the specific
Internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the browser of the respective person from other Internet browsers if these in turn contain other cookies. The unique cookie ID makes it possible to recognize and identify a specific Internet browser.
By using cookies, we can provide visitors to the website with more user-friendly services that would otherwise not be possible. By using cookies, we are able to optimize our website for the benefit of the user. This makes it possible to recognize returning users of the website. This makes it easier for users to use the website. For example, when using cookies, the visitor does not have to re-enter access data each time they visit the website. This is then taken over by the website and the cookie stored on the visitor’s computer. In addition, an online store can use a cookie to remember the items that a customer has placed in the virtual shopping cart.
The user as the data subject can prevent cookies from being used by the LANDSBERG website by making the appropriate setting in their Internet browser. In this way, they permanently object to the setting of cookies. In addition, visitors to the website can delete cookies that have already been set at any time via the Internet browser or other software programs. All common Internet browsers have this function. If the user, as the data subject, prevents the setting of cookies in their Internet browser, it may no longer be possible for them to use all the functions of the LANDSBERG website to their full extent.
We collect the personal data on the basis of our legitimate interest in operating the website pursuant to Art. 6 para. 1 lit. f) GDPR. This data is automatically deleted at the end of the session when you close your internet browser.
17. contact possibility via the website
Due to legal regulations, the websites https://www.landsberg.eu, https://institutsfinder.landsberg.eu and https://shop.landsberg.eu contain information that enables quick electronic contact with our company and direct communication with us. This also includes our e-mail address.
If you contact us by e-mail or via a contact form, your transmitted personal data will be stored automatically. This data, which you transmit to us on a voluntary basis, is stored for the purposes of processing or contacting you as the data subject. This also includes aspects of prospect management and marketing purposes. We do not pass this data on to third parties.
The data is collected in accordance with Art. 6 para. 1 lit. b GDPR in response to your request for processing the same.
18. SSL encryption
We use SSL encryption to protect your transmitted data in the best possible way. You can recognize such encrypted connections by the prefix “https://” in the address bar of your browser. Unencrypted pages are identified by the prefix “http://”. Data that is transmitted to us when SSL encryption is activated cannot be read by third parties. We recommend that you only send confidential information in particular if SSL encryption is activated and that you contact us if in doubt.
Routine deletion and blocking of personal data
We only process and store personal data for the period of time necessary to achieve the purpose of storage or if there are legal regulations that provide for such storage and to which we are bound.
If the purpose of storage no longer applies or if a legally prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.
19. rights of the data subject
Under the provisions of the GDPR, you have the following rights as a data subject:
20. right to confirmation
As the data subject, you have the right to obtain from us, as the controller, confirmation as to whether or not personal data concerning you is being processed. If you wish to exercise this right of confirmation, you are free to contact the data protection officer named in this privacy policy or another of our employees at any time.
21. right to information
As a data subject, you have the right to receive information from us at any time free of charge about the personal data stored about you and a copy of this information. You also have the right to receive information about the following:
the purposes of processing
the categories of personal data that are processed
the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations
where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing
the existence of the right to lodge a complaint with a supervisory authority
where the personal data are not collected from you as the data subject:
any available information as to their source
the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for you as the data subject. 1 and 4 GDPR and – at least in these cases – meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for you as the data subject
If personal data are transferred to a third country or to an international organization, you as the data subject have the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR in connection with the transfer.
If you as a data subject wish to exercise this right to information, you can contact the data protection officer named in this privacy policy or another of our employees at any time.
22. right to rectification
As the data subject, you have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the
processing, you as the data subject have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
If you as a data subject wish to exercise this right of rectification, you can contact the data protection officer named in this privacy policy or another of our employees at any time.
23. right to erasure (“right to be forgotten”)
As the data subject, you have the right to obtain from us the erasure of personal data concerning you without undue delay where one of the following grounds applies and insofar as the processing is not necessary
The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
The data subject withdraws consent on which the processing is based according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
The data subject objects to the processing pursuant to Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR. 21 (2) GDPR objects to the processing.
The personal data have been unlawfully processed.
The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
The personal data have been collected in relation to the offer of information society services referred to in Art. 8 (1) GDPR.
If one of these reasons applies and you as the data subject wish to have your personal data stored by us deleted, you can contact the data protection officer named in this privacy policy or another employee of ours at any time. The data protection officer named in this privacy policy or another employee will ensure that the request for deletion is complied with immediately.
If we have made the personal data public and our company is obliged to erase the personal data pursuant to Article 17(1) GDPR, we shall take reasonable steps, including technical measures, taking into account the available technology and the cost of implementation, to inform controllers which are processing the personal data that you as the data subject have requested the erasure by such controllers of any links to, or copy or replication of, those personal data, unless the processing is necessary. Our data protection officer or another employee will take all necessary steps in individual cases.
24. right to restriction of processing
As the data subject, you have the right to obtain from us restriction of processing where one of the following applies:
The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
The processing is unlawful and you, as the data subject, oppose the erasure of the personal data and request the restriction of their use instead.
We no longer need the personal data for the purposes of the processing, but you as the data subject require them for the establishment, exercise or defense of legal claims.
You as the data subject have objected to processing pursuant to Art. 21 (1) GDPR pending the verification whether the legitimate grounds of us override those of you as the data subject.
If one of these conditions is met and you as the data subject wish to request the restriction of personal data stored by us, you can contact our data protection officer or another employee of ours at any time. Our data protection officer or another employee will arrange for the restriction of processing.
25. right to data portability
As the data subject, you have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where the processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR and the processing is carried out by automated means, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. Furthermore, in exercising your right to data portability pursuant to Art. 20 (1) GDPR, you as the data subject have the right to have the personal data transmitted directly from one controller to another, where technically feasible and provided that this does not adversely affect the rights and freedoms of others. If you, as the data subject, wish to exercise this right to data portability, you can contact any data protection officer named in this privacy policy or another employee of ours at any time.
26. right to object
As the data subject, you have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.
In the event of an objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of you as the data subject or for the establishment, exercise or defense of legal claims.
If we process personal data for direct marketing purposes, you as the data subject have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. This also applies to profiling insofar as it is associated with such direct advertising. If you as the data subject object to processing for direct marketing purposes, we will no longer process the personal data for these purposes.
As the data subject, you also have the right to object, on grounds relating to your particular situation, to processing of personal data concerning you by us for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
If you, as the data subject, wish to exercise this right to object, you can contact the data protection officer named in this privacy policy or another employee at any time. As the data subject, you are also free to exercise your right to object in connection with the use of information society services, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.
27. automated decisions in individual cases including profiling
As a data subject, you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, provided that the decision
is not necessary for entering into, or performance of, a contract between you as the data subject and us, or
is authorized by Union or Member State law to which we are subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or
is based on the data subject’s explicit consent.
If the decision is necessary for entering into, or the performance of, a contract between you as the data subject and us, or if it is based on your explicit consent as the data subject, we will implement suitable measures to safeguard your rights and freedoms and legitimate interests as the data subject, at least the right to obtain human intervention on the part of LANDSBERG, to express your point of view and to contest the decision.
If you, as the data subject, wish to exercise these rights with regard to automated decision-making, you can contact the data protection officer named in this privacy policy or another of our employees at any time.
28. right to withdraw consent under data protection law
As a person affected by the processing of personal data, you have the right to withdraw your consent to the processing of personal data at any time.
If you, as the data subject, wish to exercise this right to withdraw consent, you can contact the data protection officer named in this privacy policy or another of our employees at any time.
29. legal basis for processing
In accordance with Art. 6 para. 1 GDPR, the processing of personal data by us is lawful if at least one of the following conditions is met:
The data subject has given their consent to the processing of their personal data for one or more specific purposes;
the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (e.g. product inquiries);
the processing is necessary for compliance with a legal obligation to which the controller is subject (e.g. tax obligations);
processing is necessary in order to protect the vital interests of the data subject or of another natural person (e.g. health insurance data of a visitor in the event of an accident on our premises);
processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Legitimate interests in the processing pursued by the controller or a third party
If the processing of personal data is based on Art. 6 para. 1 lit. f GDPR, our legitimate interest is the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.
30. data protection provisions about the application and use of Facebook, Xing, YouTube
Components of the social network Facebook are integrated on the websites https://www.landsberg.eu, https://institutsfinder.landsberg.eu and https://shop.landsberg.eu.
A social network is an online service that allows users to communicate with each other and interact in virtual space. This social meeting place (online community) operated on the Internet can be used to exchange opinions and experiences and to make personal or company-related information available to other users within the Internet community. Among other things, Facebook allows users to create personal profiles, upload photos and network with other users via friend requests.
The operator of Facebook is Facebook, Inc, 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside the USA or Canada, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, is responsible for the processing of personal data.
If a visitor to the www.landsberg.eu website accesses an individual page of this website on which a Facebook component (Facebook plug-in) has been integrated, their IT system is automatically prompted by the respective component to download a representation of the corresponding Facebook component from Facebook. All Facebook plug-ins can be found in the complete overview at https://developers.facebook.com/docs/plugins/?locale=de_DE. This technical process enables Facebook to determine which specific sub-page of https://www.landsberg.eu, https://institutsfinder.landsberg.eu and https://shop.landsberg.eu the user is visiting.
If the user is also logged in to Facebook as a data subject, Facebook can recognize which specific subpage was visited each time the user accesses the website www.landsberg.eu and for the entire duration of the respective stay on this website. The installed Facebook component collects this information and Facebook assigns it to the respective Facebook account of the user. If the visitor presses one of the Facebook buttons integrated on our website or makes a comment, this information is assigned by Facebook to the personal user account of the person concerned and this personal data is stored.
Whenever a data subject visits the website www.landsberg.eu and is logged in to Facebook at the same time as this visit, Facebook receives information about this via the respective component. This is independent of whether the user clicks on the Facebook component or not. If you as a user and data subject do not wish your data to be transmitted to Facebook in this way, you can prevent this by ensuring that you are logged out of your Facebook account before accessing the website www.landsberg.eu.
Facebook’s data policy, which is available at https://www.facebook.com/about/privacy/, explains which personal data is collected, processed and used by Facebook. It also explains what settings options Facebook offers to protect the privacy of the data subject. At the same time, various applications can be obtained that make it possible to suppress the transmission of data to Facebook. The user as the data subject can use such applications to suppress data transmission to Facebook.
The legal basis for the collection and processing of the aforementioned data is Art. 6 para. 1 lit. f) GDPR. It is in our legitimate interest to optimize the functionalities of our website and to offer you the best possible service.
XING
XING functions are integrated into our website. When you visit our website, a server connection to XING is established. As far as we are aware, no personal data is stored in the process. No IP addresses are stored or further information about your user behavior is evaluated. Additional information on data protection and the XING functions can be found in the XING data protection declaration at https://www.xing.com/app/share?op=data_protection
These functions are offered by XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. The legal basis for the processing of the data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, as we would like to offer you an appealing website and various contemporary interaction options with us.
YouTube
Our website uses YouTube functions. When you visit our site, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you give YouTube the opportunity to associate your user behavior directly with your personal YouTube profile. You can prevent this by logging out of your YouTube account. We have no knowledge of the exact nature and scope of data processing by YouTube. You can find more information on the processing of user data by YouTube in the privacy policy of
YouTube at: https://www.google.de/intl/de/policies/privacy
The operator of the service is YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, USA; a company that belongs to Google.
31. data protection provisions about the application and use of Google Analytics (with anonymization function)
LANDSBERG has integrated the component Google Analytics (with anonymization function) on its website.Google Analytics is a web analysis service. Web analysis is the collection, compilation and evaluation of data about the behavior of visitors to websites. Among other things, a web analysis service collects data about the website from which you as the data subject came to the website www.LANDSBERG.com (so-called referrer), which subpages of our website you accessed or how often and for how long you viewed a subpage. Web analysis is mainly used to optimize our website and for the cost-benefit analysis of Internet advertising.
The operating company of the Google Analytics component is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
We use the addition “_gat.anonymizeIp” for web analysis via Google Analytics. By means of this addition, the IP address of the Internet connection of the person concerned is shortened and anonymized by Google if access to our Internet pages is from a member state of the European Union or from another state party to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website.
Google Analytics places a cookie on the information technology system of you as the data subject. Cookies are text files that are placed and stored on a computer system via an internet browser. Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique
identifier of the cookie. It consists of a string of characters that can be used to assign websites and servers to the specific internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.
By setting the cookie, Google is enabled to analyze the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by LANDSBERG and on which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to submit data through the Google Analytics component for the purpose of online analysis to Google. During the course of this technical procedure, Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which access was made and the frequency of visits to our website by the data subject. Each time our website is visited, this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject’s IT system. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.
Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on from the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google. If the data subject’s IT system is deleted, formatted or reinstalled at a later date, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person who is attributable to their sphere of control, it is possible to reinstall or reactivate the browser add-on.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.de/intl/de/policies/privacy/ and under http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail at this link https://www.google.com/intl/de_de/analytics/.
The legal basis for the collection and processing of the aforementioned data is Art. 6 para. 1 lit. f) GDPR. It is the legitimate interest of LANDSBERG to optimize the functionalities of the website and to offer you the best possible service.
32. duration for which the personal data is stored
We store personal data for the duration of the respective statutory retention period. After this period has expired, the corresponding data is routinely deleted, provided that it is no longer required for contract fulfillment or contract initiation.
Legal or contractual provisions for the provision of personal data; necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision
We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary for you as the data subject to provide us with personal data in order to conclude a contract, which must subsequently be processed by us. For example, you as the data subject are obliged to provide us with personal data if our company concludes a contract with you. Failure to provide the personal data would mean that the contract with you as the data subject could not be concluded. Before you as the data subject provide personal data, you must contact our data protection officer or one of our employees. They will inform you as the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences would be if the personal data were not provided.
33. contact form
You can contact us electronically using the contact form provided by us. Our contact form indicates which data is mandatory and which can be entered voluntarily. All data entered will be stored by us and used exclusively for the purpose of answering your inquiries. In addition, your IP address and the date and time of registration are stored. Your personal data will be deleted as soon as storage is no longer required for this purpose or
we restrict processing if there are statutory retention obligations. The legal basis for the processing of the data is the implementation of a pre-contractual measure by your request in accordance with Art. 6 para. 1 lit. b GDPR.
34 Google Maps
Our website has an interface to Google Maps. In order to use Google Maps, your IP address must be stored on a Google server in the USA. The recipient of the data is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The legal basis for the processing of the data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, as we would like to offer you an appealing website. Additional information is provided in the Google privacy policy at https://www.google.-de/intl/de/policies/privacy/.
This service is provided by Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
35th Email – Newsletter
The information provided in this section explains how the registration, dispatch, evaluation and content of our email newsletter are organized. If you wish to subscribe to our e-mail newsletter and read it regularly, you must register with a valid e-mail address and thus consent to the processing of your personal data by us. Please refer to the declaration of consent on the newsletter registration form.
Before the newsletter is sent, you must expressly confirm to us as part of the so-called double opt-in procedure that we should activate the e-mail newsletter service for you. We do this to prevent third-party email addresses from being used for registrations. For this purpose, we will send you a confirmation and authorization e-mail asking you to click on the link contained in this e-mail to confirm that you wish to receive our newsletter. If you do not confirm, your personal data will be deleted within 7 days.
In connection with the registration, the time of registration, the time of confirmation, the IP address and the consent text are stored in addition to the e-mail address and we use the e-mail address exclusively for the delivery of the newsletter unless you have expressly consented to other use.
Small, “invisible” files (beacons) that are sent with the newsletter can be used for various evaluations to improve our offers. The IP address, browser and time of retrieval and opening of the newsletter and the click behavior on links contained in the newsletter are recorded and statistically evaluated.
The newsletter is sent on the basis of the consent of the recipient in accordance with Art. 6 para. 1 lit. a, Art. 7 GDPR in conjunction with § 7 para. 2 no. 3 UWG. The analysis of opening and click rates is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Our interest is to create the most suitable offers for our users and to achieve and continuously optimize this by analyzing user behavior. You can unsubscribe by revoking your consent. You can unsubscribe from the newsletter at any time at
. To do so, please use the link provided in the newsletter.
36. existence of automated decision-making
As a responsible company, we do not use automated decision-making or profiling.
