Data protection declaration
The controller, as laid down in the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations, is:
HEIRLER CENOVIS GMBH, mit Sitz in 78315 Radolfzell
Phone: +49 (0)7732 / 807 1
The controller’s Data Protection Officer is:
Herr Matthias Seitz
Güttinger Strasse 23
1. Scope of the processing of personal data
In principle we only process our users’ personal data as far as is necessary for the provision of a functioning website and for our contents and services, and only in line with the legal grounds set out in the General Data Protection Regulation (“GDPR”).
2. Data processing description
Whenever a user visits our website, our system automatically records data and information from the user’s computer system. The following data is collected: information on the browser type (and version), operating system, internet service provider, IP address, date and time of access; websites which the user’s system accesses our website from; websites which are accessed by the user’s system via our website; clickstreams; data is also stored in our system’s log files. This data is not stored together with the user’s other personal data.
3. Data processing purpose
The temporary storage of the IP address by the system is necessary for the user to be able to access the website interface on their computer. In order for this, the user’s IP address must remain stored for the duration of the session. Storing it in the log files ensures the correct functioning of the website. In addition, the data serve to optimise our website and guarantee the security of our information technology systems. Data is not analysed for marketing purposes in relation to this.
4. Legal grounds for the processing of personal data
For the purpose of this website, our data processing is based on the following legal grounds: Legal grounds for the temporary storage of data and log files pursuant to Art. 6 para. 1 (f) GDPR, whereby storage is necessary for the purposes of the legitimate interests of our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.
5. Storage duration
Data is deleted as soon as it is no longer necessary for the purpose of its collection. In the case of data collection for the provision of the website, this is the case when the respective session has ended. In the case of data storage in log files, this is the case after a maximum of 30 days. Temporary storage is possible. In this case, the user’s IP addresses are deleted or pseudonymised so that it is no longer possible to identify a visiting customer.
6. Possibility of objection and deletion
Collecting data for the provision of the website and storing data in log files are necessary for the operation of the website. There is therefore no possibility of objection on the part of the user. Should the user wish to prevent future and further storage, they must leave the website and refrain from visiting this website in future.