1. Details of the person responsible as well as the company data protection officer
The responsible person (“we”) within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is:
cv cryptovision GmbH
Managing Director: Markus Hoffmeister
Link to the imprint: https://www.cryptovision.com/en/impressum/
The company data protection officer can be reached via the address mentioned above, to the hands of the data protection officer, or via email@example.com
2. Collection of logging data / hosting
When accessing our website your Internet browser (for technical reasons) automatically transmits the following data to the web server of our hosting provider:
- IP address
- Date and time of access
- If the website is visited via a link, the URL of the referring website, as well as the websites accessed by the user’s system via the website
- Error Codes
- Browser data (browser type and version used)
- Operating system
- the Internet service provider of the user
We use this information only for statistical purposes (such as how often individual websites are visited) and for technical network and system monitoring to detect server failure (logfiles) and to secure evidence against security incidents based on our legitimate interests in an efficient and secure manner provision of our websites acc. Art. 6 para. 1 lit. f DSGVO/GDPR icw Art. 28 DSGVO/GDPR.
The log files contain IP addresses and other data that enables an assignment to a user. This could be the case, for example, if the link to the website from which the user accesses the website or the link to the website to which the user is switching contains personal data.
The logged information will be deleted as soon as it is no longer necessary to achieve the purpose of its survey. In the case of storing the data in log files, this is the case after no longer than seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment to the calling client is no longer possible.
When establishing contact, the information provided by the user for the communication and processing of the request as well as its processing acc. Art. 6 para. 1 lit. b) DSGVO/GDPR is processed.
4. Administration, organization, contact management
We process contact and communication data and other relevant personal data of customers, prospects, business partners and website visitors, insofar as these or their employees are natural persons. The data is processed in the context of administrative tasks and the provision of our contractual services as well as the fulfillment of legal obligations. Processing is based on Art. 6 para. 1 lit. b. DSGVO/GDPR, Art. 6 para. 1 lit. c. DSGVO/GDPR, Art. 6 para. 1 lit. f. DSGVO/GDPR. The legitimate interest is the execution of the business cooperation as well as the maintenance of contacts, i.e., tasks which serve the maintenance of our business activities as well as the performance of our duties and the performance of our services.
Personal data provided in connection with an application will only be processed for the purpose and in the context of the application process. The processing of the candidate data is done in order to fulfill our (pre-) contractual obligations in the application process, as well as to enable communication in this respect and to process the application. These processing operations are based on Art. 6 para. 1 lit. b DSGVO/GDPR i.c.w. § 26 (1) BDSG.
If an application for a job offer is unsuccessful, the data of the applicant will be deleted. The data of an applicant will also be deleted if an application is withdrawn, which the applicant is entitled to at any time. The cancellation takes place, subject to a legitimate cancellation of the candidates, after the expiration of a period of six months, so that we can answer any follow-up questions to the application and meet our obligations under the Equal Treatment Act. Invoices for any reimbursement of travel expenses are archived in accordance with the tax regulations.
In some cases, so-called “cookies” are be used on our websites. Cookies are small text files that are stored on your device when visiting our website. Cookies are used to recognize the device used at the next visit and to tell the server when you last visited which pages of our website. Our cookies don not contain personal data , and they are not linked to other personal data stored with us. Cookies can only identify the device used, not the person using it. If you do not want to accept cookies, check your browser’s options menu to deactivate the cookie function. Disabling cookies may limit the functionality of this website.
If you, in accordance with Art. 6 para. 1 sent. 1 lit. a DSGVO/GDPR, have expressly consented, we will use your email address to send you regular newsletters. For the receipt of the newsletter the indication of an email address is sufficient.
Credentials: To subscribe to the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to give a name in the newsletter for personal address.
Logout: Opt-out, ie. revocation of your consent, is possible at any time, for example via a link at the end of each newsletter. Alternatively, you are welcome to send your unsubscribe request to firstname.lastname@example.org by e-mail at any time.
Double opt-in and logging: Registration for our newsletter is done in a so-called double-opt-in procedure. This means that after registration you will receive an email asking you to confirm your registration. This confirmation prevents that somebody registers with an email address he or she does not own. The registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login and confirmation times, as well as the IP address. Likewise, changes to your data stored with the shipping service provider will be logged.
The logging of the registration process is based on our legitimate interests in accordance with. art. 6 para. 1 lit. f DSGVO/GDPR. We are interested in using a user-friendly and secure newsletter system, which serves our business interests as well as the users’ expectations and allows us to prove our consent.
8. Newsletter service provider
Our newsletter is sent by our e-mail service provider (Inxmail GmbH, Wentzingerstr. 17, D-79106 Freiburg / GERMANY), whose data protection regulations can be viewed under the following link. The use of the e-mail service provider is based on our legitimate interest acc. Art. 6 para. 1 lit. f DSGVO/GDPR and a order data processing agreement acc. Art. 28 para 3 sentence 1 DSGVO/GDPR. The newsletter service provider may use the data of the recipient in a pseudonymised form to optimize or improve their own services. However, the e-mail service provider does not use the data of our newsletter recipients to address them themselves or to pass the data on to third parties.
9. Newsletter – measurement of success
The newsletters contain a so-called web beacon or tracking pixel, i.e. a pixel-sized file that is retrieved from our server (or from the one of our shipping service provider) when the newsletter is opened. For the evaluations, we link the data collected automatically when you visit the website (see “Collection of log data” above) and the web beacons with your e-mail address and an individual ID. This information is used to technically improve the services based on the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined using the IP address) or access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is not our intention, nor that of the shipping service provider, to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our contents to them or to send different contents according to the interests of our users.
10. Range measurement with Matomo
On our website we use the open-source software tool Matomo (formerly known as PIWIK) to analyze the surfing behavior of our users. Matomo sets a cookie on the end user device (for cookies see above). When individual pages of our website are called up, the following data is stored: two bytes of the IP address of the user’s calling system, the web page accessed, the web site from which the user came to the called web page (referrer), the subpages retrieved from the website accessed, the duration of the website visit, the frequency of access to the website, the browser type used by the calling device and the browser version, the operating system used, the country of origin, date and time of the server request. The IP address of the users is anonymized before being saved.
The legal basis for the use of Matomo and the related processing of data is § 15 Abs.3 TMG or Art. 6 Abs. 1 lit. f DSGVO/GDPR, the interest is the analysis, optimization and economic operation of our website.
11. Integration of services and content of third parties
We use third-party content and service offerings within our websites to integrate their content and services, such as videos or maps.
The integration is based on our legitimate interest (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 letter f). DSGVO/DGPR). The prerequisite for this is the transmission of the IP address in order to be able to send the respective contents to the browser. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. Pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and, among other things, contain technical information about the browser and operating system, referring websites, visiting time and other information about the use of our online offer, as well as be linked to such information from other sources.
We cooperate with service providers, partners, authorities and other third parties who may receive personal data:
- Web hosting service providers
- ITC service providers
- Logistics and delivery service providers
- Authorities and institutions
We will only pass on your data to these recipients if this is necessary to fulfil a contract with you, if we or we have a legitimate interest in passing on your data. In principle, we do not pass on personal data to recipients who have their registered office outside the EEA in so-called third countries. Please note however the explanations to Youtube and Google Maps.
13. Storage time
Personal data is only stored for a limited period of time and only as long as this is necessary. In principle, personal data is deleted if the processing purpose for which the data was collected no longer applies or if there are other legal reasons that require deletion. We review the requirement every two years. Furthermore, data may be stored if this has been provided for by European or national legislators in EU regulations, laws or other regulations to which the person responsible is subject, in particular for the fulfilment of commercial and tax retention periods which lie between 2 and 10 years. If you have any further questions, please contact our data protection officer.
14. Your rights regarding your personal data
You have the following rights regarding your personal data.
- Right to obtain information, Art.15 DSGVO/GDPR You have the right to request information as to whether or not we process personal data about you. If such processing is available, you will receive information about the concrete data and further additional information.
- Right on correction, Art. 16 DSGVO/GDPR You have the right to request correction and/or completion of your data if the personal data processed concerning you are incorrect or incomplete.
- Right of deletion, Art. 17 DSGVO/GDPR You have the right to request deletion of your personal data if there is no longer any reason to store it.
- Right to restrict processing, Art. 18 DSGVO/DGPR You have the right to require restricted processing of your personal data in certain cases for a specific purpose.
- Right to data transferability, 20 DSGVO/DGPR You may have the right to request the disclosure of data concerning you in a structured, common and machine-readable format.
The right to data transmission includes the right to transfer the data to another person responsible. Upon request, the personal data relating to you will be transmitted directly to another person in charge, insofar as this is technically feasible. The freedoms and rights of other persons may not be impaired by this. The right to transfer data exists only for data provided by you and presupposes that the processing is based on a consent or for the execution of a contract and is carried out using automated procedures.
- Objection to our processing of your data, Art. 21 DSGVO/GDPR You have the right, for reasons arising from your particular situation, to object at any time with future effect to the processing of the personal data concerning you, which takes place on the basis of Art. 6 para. 1 lit. e or f DSGVO/GDPR, unless there are compelling grounds for processing which are worthy of protection, which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
- Right to revoke the data protection declaration of consent You have the right to revoke your data protection declaration of consent at any time. Please contact the contact point where you have given your consent or the data protection officer directly. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
- Complaint to a supervisory authority Without prejudice to any other legal remedy, you have the right to complain to the competent supervisory authority regarding the processing of your personal data. The authority responsible for us is the North Rhine-Westphalia State Commissioner for Data Protection and Freedom of Information, Ms. Block, Kavalleriestr. 2-4, 40213 Düsseldorf.
- Updating this data protection declaration
We reserve the right to update this data protection declaration if necessary in order to adapt it to technical developments or in connection with the offer of new services or products. You can always view the current version on this website.