Data protection declaration
Welcome to the website www.novatec-gmbh.de of NovaTec Holding GmbH. The protection of your personal data is of particular concern to us. Therefore, we strictly adhere to the legal requirements when collecting and processing your personal data. In the following we would like to inform you in detail about the scope and purpose of data collection on our website.
1. principle of anonymous data use
The use of our site is basically possible without providing personal data. Deviating regulations may arise for the use of individual services of our site, which in this case are explained separately below. The legal basis of data protection can be found in the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).
When you visit our website, some information is transmitted, such as IP address. They also provide information about the terminal device used (computer, smartphone, tablet, etc.), the browser used (Internet Explorer, Safari, Fire-Fox, etc.), the time of access to the website, the so-called referrer and transferred data volumes.
This data cannot be used by us to identify the individual user. The information serves us to determine the attractiveness of our website and to improve its performance or content if necessary and to make it even more interesting for you.
However, we would like to point out that with a static IP address a personal reference may be possible in individual cases via a RIPE query, which we do not, however, do. Nevertheless, this website is accessible both statically and dynamically assigned IP addresses.
2. personal data
In the basic EU data protection regulation (DSGVO), personal data are defined as follows:
All information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified directly or indirectly, in particular by assignment to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
3. legal basis for the collection, processing and use of personal data
Insofar as we obtain your consent for the processing of personal data, Art. 6 para. 1 lit. a DSGVO serves as the legal basis for the processing of your personal data.
When processing your personal data to fulfil a contract between you and Novatec Consulting GmbH, Art. 6 Para. 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c DSGVO serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f DSGVO serves as the legal basis for processing.
4. data erasure and storage time:
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
5. collection and processing of personal data
We only collect personal data if you provide it to us of your own accord, for example, if you register with us for a training course or contact us.
We use the personal data provided by you exclusively to the extent that your data is necessary to fulfil and process your booking or our services.
Any further use of your data, for example for further services or advertising purposes, will only take place if you have given your express prior consent. You can revoke your consent at any time for the future.
After complete contract processing, your data will be blocked for further use, unless you have given your separate consent for further use. After expiry of the tax and commercial law periods, this data will be deleted unless you have expressly consented to further use.
The following regulations inform you in this respect about the type, scope and purpose of the collection, use and processing of personal data.
6. contact possibilities
You have the possibility to contact us with questions, wishes and suggestions. You can do this, for example, by e-mail or telephone. In this case, the information you provide will be stored for the purpose of processing your contact. In addition, the data collected in this way is compared with data that may otherwise be collected by us if you have given us your prior consent, which you can revoke at any time with effect for the future. To exercise your right of revocation, please contact the office named at the end of this declaration.
You can also apply to our company electronically. We will of course use your details exclusively for processing your application and will not pass them on to third parties. Please note that unencrypted e-mails are not transmitted with access protection.
8. comment function
In our blog you can leave comments below the respective blog article. For this we need your name or a pseudonym. The disclosure of the data provided by you in this context is expressly on a voluntary basis and with your consent. We use the personal data transmitted in this way exclusively for the purpose for which you provide us with your data. Of course, you can revoke your declaration of consent at any time in the future. Please contact our data protection officer, whose contact details you will find below. In any case we reserve the right to delete comments with abusive or offensive content.
You have the possibility to register with us for doucmentation.novatec-gmbh.de to receive personal areas. For registration we collect and store the following data (optional):
- First name
- E-mail (user name)
After registration you will receive a personal, password-protected access and can view and manage the data you have provided. Registration is voluntary, but may be a prerequisite for using our services.
10. data transmission to other Novatec companies
Data transmission to other Group companies
Your data will not be passed on to third parties outside the Novatec Group, unless we are legally obliged to do so, or the passing on of data is necessary for the performance of the contractual relationship, or you have expressly consented to the passing on of your data beforehand. External service providers and partner companies only receive your data if this is necessary to process their request. In these cases, however, the scope of the transmitted data is limited to the required minimum.
11. data transmission to external service providers
Your data will be passed on to service partners if they work on our behalf and support Novatec Consulting GmbH in the provision of their services.
Processing of your personal data by contracted service providers takes place within the scope of order processing in accordance with Art. 28 DSGVO.
The aforementioned service providers only have access to such personal information as is necessary for the performance of their respective activities. These service providers are prohibited from disclosing your personal information or using it for other purposes, in particular for their own advertising purposes.
Where external service providers come into contact with your personal data, we have taken legal, technical and organisational measures and carried out regular checks to ensure that they also comply with the applicable data protection regulations.
Your personal data will not be passed on commercially to other companies.
12. website optimization tools
When collecting personal data using website optimisation tools, we refer to our legitimate interest pursuant to Article 6 (1) (f) DSGVO in conjunction with Recital No. 47, according to which direct mail generally constitutes a legitimate interest. Your interests, fundamental rights and freedoms do not outweigh our interest in advertising, as we provide you with comprehensive information about data collection within the framework of our data protection declaration and you have the option of opting out (via link or browser settings) at any time. In addition, we only use pseudonymous tracking.
b. Google Analytics
This website uses Google Analytics from Google Inc (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). According to the agreement between Google and the Hamburg Commissioner for Data Protection and Freedom of Information, the use of Google Analytics is possible under certain conditions in conformity with data protection and without complaints.
Please also note the following information on the use of Google Analytics:
c. Google Dynamic Remarketing
On our website we use the dynamic remarketing function of Google AdWords from Google Inc (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). The technology enables us to place automatically generated, target group-oriented advertising after your visit to our website. The ads are based on the products and services you clicked on the last time you visited our website.
If you don’t want to receive user-based advertising from Google, you can disable ads using Google’s ad settings.
e. DoubleClick Bid Manager
We use DoubleClick Bid Manager, a service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, “Google”). DoubleClick Bid Manager is a demand side platform and part of the DoubleClick Digital Marketing Suite. It supports targeted advertising with detailed targeting and links to all major ad exchanges. This allows display and video campaigns to be controlled in real time across devices. Cookies recognize which advertisement has already been placed in your browser and whether you have called up a website via a switched advertisement. Cookies do not collect any personal information and cannot be associated with such information.
f. DoubleClick Ad Exchange
We place advertisements (text ads, banners etc.) on our website via Doubleclick Ad Exchange, a web advertising service of Google Inc, USA (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, “Google”). Cookies may be stored in your browser. The information stored there can be recorded, collected and evaluated by Google Inc. or third parties.
In addition, Doubleclick Ad Exchange also uses “web beacons”, small invisible graphics, through which visitor traffic on the website can be recorded, collected and evaluated, to collect information. The information collected in this way about your use of this website is transferred to a Google server in the USA and stored there. Google will use it to analyze your usage behavior and use Doubleclick Ad Exchange to serve targeted ads on our website. Google may also transfer this information to third parties if this is required by law or if third parties process this data on behalf of Google. If IP addresses are transmitted and stored, this only happens to combat and filter spam/fraud. However, this data is only accessible to the anti-abuse teams. Google does not associate the IP address with other data stored by Google.
g. social bookmarks
So-called social bookmarks (e.g. from Facebook, Twitter, YouTube, LinkedIn and Xing) are integrated on our website and our blog. Social Bookmarks are Internet bookmarks that allow users of such services to collect links and news messages. These are only included on our website as a link to the corresponding services. After clicking on the integrated graphic you will be forwarded to the page of the respective provider, i.e. only then will user information be transferred to the respective provider. For information on the handling of your personal data when using these websites, please refer to the respective data protection regulations of the providers.
We use technical and organizational security measures to protect your data managed by us against manipulation, loss, destruction and against access by third parties. Our security measures are continuously improved in line with technological developments on the Internet. Your data is encrypted using the most common and secure transmission methods on the Internet. We also have a firewall (security software) to protect internal information from the Internet.
14. Rights of the parties concerned
If personal data are processed by you, you are affected within the meaning of the DSGVO and you have the following rights vis-à-vis the person responsible:
- Right to information under Article 15 DSGVO
You can ask us to confirm whether personal data concerning you will be processed by us. Once we have processed your data, you have further rights to information as set out in Article 15 of the DSGVO.
- Right to correction
If the information we have collected from you is incorrect or incomplete, you may immediately request us to correct it in accordance with Article 16 of the DSGVO.
- Right to limitation of processing
Under the conditions of Article 18 of the DSGVO, you may also request that the processing of personal data concerning you be restricted.
After the restriction, your data may only be processed with your consent or for the purpose of asserting, exercising or defending rights, or for the protection of the rights of another natural or legal person, or on grounds of an important public interest of the Union or a Member State. We will inform you before the restriction is lifted.
- Right to cancellation
If one of the reasons in Article 17 para. 1 DSGVO applies, you can request us to delete your personal data immediately, unless there is an exception to the deletion obligation in accordance with Article 17 para. 3 DSGVO.
- Right to information
If you have exercised your right to correct, delete or restrict processing against us, we are obliged under Article 19 DSGVO to inform all recipients of your personal data of this, unless the notification is impossible or involves disproportionate effort. They also have the right to be informed of the recipients. The person responsible shall have the right to be informed of such recipients.
- Right to data transferability
In addition, according to Article 20 DSGVO, you have the right to receive personal data concerning you from us in machine-readable format and to transmit the data to another person responsible without obstruction, provided that the requirements of Article 20 Para. 1 lit.a DSGVO are met, or to obtain that your personal data are transmitted directly by us to another person responsible, provided that this is technically feasible and no freedoms and rights of other persons are impaired thereby. This right shall not apply to the processing of personal data necessary for the performance of a task in the public interest or for the exercise of official authority.
- Right of objection
You have the right to object to Novatec Consulting GmbH at any time to the processing of personal data concerning you in accordance with Art. 6 para. 1 lit. f DSGVO.We no longer process your personal data, unless reasons worthy of protection outweigh your interests, rights and freedoms, or the Processing serves to assert, exercise or defend legal claims.
- Right to revoke the data protection declaration of consent
You have the right to revoke your data protection declaration of consent with declaration to Novatec Consulting GmbH at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
- Right of appeal to the supervisory authority
They shall at all times, without prejudice to any other administrative or judicial remedy, have the right of appeal to a supervisory authority, in particular in the Member State of their place of residence, of work or of the place of suspected infringement, if you consider that the processing of personal data concerning them is contrary to this Regulation.
15. Data Protection Officer
If you have any questions regarding the processing of your personal data, you can directly contact our external data protection officer, who is also available in the event of requests for information, applications or complaints:
Personal / Confidential
z. Ed. data protection officer
c/o NovaTec Holding GmbH