Data Protection Statement
Name and contact details of the controller
metrica GmbH & Co. KG, Bahnhofstraße 73, 48308 Senden, Germany
Contact details of the Data Protection Officer:
You can contact our Data Protection Officer by post at the address provided for the controller, or by email at firstname.lastname@example.org.
Scope and purpose of the processing of personal data, website access
When this website is accessed, the web browser used by the visitor automatically sends data to this website’s server and temporarily stores them in a logfile. The following data will be stored until automatic erasure, without further input by the user:
- The IP address of the visitor’s device,
- Date and time of visitor access,
- The name and URL of the page accessed by the visitor,
- The website from which the visitor accesses this website (“referrer URL”)
- The browser and operating system of the visitor’s device, as well as the name and access provider used by the visitor.
The processing of these personal data is justified in accordance with the first sentence of point (f) Article 6(1) GDPR. The controller has a legitimate interest in data processing for the purpose of
- Rapidly establishing the connection to the website
- Enabling user-friendly use of the website,
- Identifying and guaranteeing system security and stability, and
- Facilitating and improving website administration
This processing is explicitly not carried out for the purpose of gaining knowledge about the individual visiting the website.
Visitors may send us messages using an online contact form that is available on the website. A valid email address is required as the minimum input in order to receive a reply. The individual submitting the inquiry may provide all other information on a voluntary basis. By sending the message via the contact form, the visitor consents to the processing of the transmitted personal data. Data is processed. Exclusively for the purpose of handling and responding to inquiries sent via the contact form. This is performed on the basis of voluntary consent pursuant to the first sentence of point (a) Article 6(1) GDPR The personal data collected for the use of the contact form are automatically erased as soon as the inquiry has been fully processed and there are no reasons for continued storage.
Disclosure of data
Personal data are transferred to third parties if
- the data subject has explicitly consented to this in accordance with the first sentence of point (a) Article 6(1) GDPR,
- in accordance with the first sentence of point (f) Article 6(1) GDPR, disclosure is necessary for the establishment, exercise or defense of legal claims, and there is no reason to assume that the data subject has an overriding legitimate interest in the nondisclosure of their data,
- There is a legal obligation to data transfer in accordance with the first sentence of point (c) Article 6(1) GDPR, and/or
- This is necessary for the fulfillment of a contractual relationship with the data subject in accordance with the first sentence of point (b) Article 6(1) GDPR.
Cookies are used on the website. These are data packets that are exchanged between the website server and the visitor’s browser. During visits to the website, they are stored on the devices used in each case (PC, notebook, tablet, smartphone, etc.). To this extent, cookies cannot cause any damage to the devices used. In particular, they do not contain viruses or other malware. Information is stored in the cookies, with the results in each case relating to the specifically used end device. Under no circumstances are we able to obtain direct knowledge of the identity of the website visitor from this.
Cookies are largely accepted based on the browser’s basic settings. Browser settings may be adjusted in such a way that cookies are either not accepted on the devices used or a separate message is displayed in each case before a new cookie is created. However, please note that deactivating cookies may mean that some aspects of this website may not be fully functional.
Cookies are deployed to make our web offering more convenient to use. For example, session cookies can be used to determine whether the visitor has previously visited individual pages on the website. These session cookies are automatically deleted after the visitor leaves the website.
Temporary cookies are used to make the website more user-friendly. They are temporarily stored on the visitor’s device. If the user visits the website again, the system automatically recognizes that the visitor has already accessed the page on a previous occasion, as well as the input and settings from the previous visit so that they do not need to be entered again. Cookies are also used to analyze website access for statistical purposes and to improve the offering. These cookies make it possible to automatically recognize that the visitor has previously accessed the website the next time they visit. In this instance, cookies are automatically deleted in each case after a specified period of time.
The data processed by cookies for the purposes stated above are justified in the safeguarding of our legitimate interests in accordance with the first sentence of point (f) Article 6(1) GDPR.
Analytical services for websites, and tracking
Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information on behalf of the operator of this website in order to assess the use of the website, collect reports of our website activities, and to provide additional services associated with website and internet usage with respect to the website operator. The IP address transmitted by your browser in connection with Google Analytics will not be merged with other data by Google. You can prevent the storage of cookies by adjusting a corresponding setting in your browser software; however, please note that you may not be able to use all functions of this website full extent in this case. You can also prevent Google from collecting and processing the data created by the cookie and data related to your use of the website (including your IP address) by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en
This page uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
It is necessary to store your IP address in order to use the functions of Google Maps. This information is usually sent to a Google server in the USA, and stored there. The provider of the site does not have any influence on this data transfer.
Google Maps is used in the interest of presenting our online offering in an appealing manner, and to make it easier to find the locations we have stated on the website. This represents a legitimate interest as defined by point (f) Article 6(1) GDPR.
Google Web Fonts
This site uses web fonts provided by Google in order to display fonts uniformly. When you access a page, your browser loads the required web fonts into your browser cache in order that the texts and fonts are displayed correctly.
The browser you use needs to connect to Google’s servers for this purpose, meaning that Google is aware that our website has been accessed via your IP address. Google web fonts are used in the interest of presenting our online offering in a uniform and appealing manner. This represents a legitimate interest as defined by point (f) Article 6(1) GDPR.
If your browser does not support web fonts, your computer uses a standard font.
Direct links to our presences on Facebook, Twitter and Instagram are provided on our website. When you access these links, you are directed to the corresponding pages and leave the area in which we are responsible as the controller. These providers’ data protection information is available at:
For Facebook and Instagram: https://www.facebook.com/policy.php
For Twitter: https://twitter.com/en/privacy
Personal data will not be passed on to third parties in other cases.
Your rights as a data subject
If your personal data are processed during a visit to our website, you as the “data subject” have the following rights under the GDPR:
You may request information from us as to whether we process your personal data. There is no right to information/access if issuing the requested information would breach a confidentiality obligation, or the information is subject to confidentiality for other reasons, in particular due to an overriding legitimate interest on the part of a third party. By way of derogation, there may be an obligation to grant access/issue information if your interests outweigh the interest in confidentiality, in particular taking impending damages into account. The right to information/access is also excluded if the data are only stored because their erasure is impermissible on account of legal or statutory retention periods, or they are used exclusively for the purposes of data backup or the monitoring of data protection, provided that the granting of access/provision of information would require a disproportionately high level of resources, and processing for other purposes is ruled out through the use of appropriate technical and organizational measures. If in your case the right to information/access is not withheld and we process your personal data, you may request access/information from us with respect to the following information:
- The purposes of processing,
- The categories of personal data processed that relate to you,
- Recipients or categories of recipients to whom your personal data is disclosed, in particular in the case of recipients located in third countries,
- If possible, the planned duration for which your personal data will be stored or, if this is not possible, the criteria for determining the period of storage,
- The existence of a right to rectification, erasure or restriction of the processing of personal data concerning you, or a right to object to such processing,
- The existence of a right of appeal to a supervisory authority for data protection, - If the personal data have not been collected from you as the data subject, the available information regarding the origin of the data,
- Where applicable the existence of automated decision-making, including profiling and meaningful information regarding the logic involved, as well as the scope and intended effects of automated decision-making
- Where applicable, in the case of transfers to recipients in third countries where the EU Commission has not decided on the adequacy of the level of protection pursuant to Article 45(3) GDPR, information as to the appropriate guarantees provided for the protection of personal data in accordance with Article 46(2) GDPR.
Rectification and completion
If you find that we have incorrect personal data concerning, you may ask us to immediately rectify this incorrect data. In the event of Incomplete personal data concerning you, you may request its completion.
You have a right to erasure (“right to be forgotten”) to the extent that processing is not necessary to exercise the right of freedom of expression, the right to information, or to fulfill a legal obligation or to perform a task which is in the public interest, and one of the following reasons applies:
- The personal data are no longer necessary for the purposes for which they were processed.
- The justification for processing was exclusively your consent, which you have revoked
- You have filed an objection to the processing of your personal data, which we have made public
- You have filed an objection to the processing of personal data not made public by us and there are no overriding legitimate reasons for processing.
- Your personal data have been processed unlawfully.
- The erasure of personal data is necessary to fulfill a legal obligation to which we are subject.
If a special type of storage means that erasure is not possible or is only possible through using a disproportionately high level of resources, there is no claim to erasure in the case of legal, non-automated data processing, and if your interest in erasure is minor. In this case, the processing of the relevant personal data is restricted rather than the data being erased.
Restriction of processing
You may ask us to restrict processing if one of the following reasons applies:
- You dispute the accuracy of the personal data In this case, you may request restriction for the time it takes us to check that the data are accurate.
- Processing is unlawful and you request the restriction of the use of your personal data rather than their erasure.
- We no longer need your personal data for the purposes of processing, but require it for the establishment, exercise or defense of legal claims.
- You have filed an objection pursuant to Article 21(1) GDPR. The restriction of processing may be requested until it has been determined whether our legitimate reasons outweigh your reasons.
Restriction of processing means that the personal data are only processed with your consent or for the establishment, exercise or defense of the claims, or to protect the rights of another natural or legal person, or for important grounds of public interest. We are required to inform you before we lift the restriction.
You have a right to data portability in as far as processing is based on your consent (first sentence of point (a) Article 6(1) or point (a) Article 9(2) GDPR) or a contract to which you are a contractual party and processing is performed with the aid of automatic procedures. In this case, the right to data portability includes the following rights provided that this does not impact the rights and freedoms of other persons. You may ask us to provide you with the personal data that you have provided to us, in a structured, commonly used and machine-readable format. You have the right to pass this data on to another controller without any hindrance on our part. In as far as technically feasible, you may ask that we transfer your personal data directly to another controller.
If processing is based on the first sentence of point (e) Article 6(1) GDPR (the performance of a task carried out in the public interest or in the exercise of official authority) or on the first sentence of point (f) Article 6(1) GDPR (legitimate interests of a controller or a third party), you have the right to object at any time to the processing of personal data concerning you, for reasons arising from your particular situation. This also applies to profiling based on the first sentence of point (e) or (f) Article 6(1) GDPR. Once you have exercised your right to object, we will no longer process your personal data unless we are able to prove binding legitimate grounds for such processing, that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.
You may at any time file an objection to the processing of personal data concerning you for the purposes of direct marketing. This also applies to profiling that is not associated with direct marketing. Once you have exercised this right to object, we will no longer process the relevant personal data for the purposes of direct marketing.
You have the option of informing us of your objection by phone, email, or where applicable fax, or by contacting the postal address stated at the beginning of this Data Protection Statement, with no requirements regarding the format used for the objection.
Revocation of consent
You have the right to withdraw any issued consent at any time, with immediate effect. The revocation of consent may be communicated by phone, email, fax where applicable, or to our postal address, with no requirements regarding the format used for the objection. The legality of data processing that took place based on consent before the revocation was received is not affected by the revocation. After receipt of the revocation, data processing that was based exclusively on your consent will be stopped.
If you believe that the processing of personal data concerning you is unlawful, you may lodge a complaint with a supervisory authority for data protection, which is responsible for the location in which you reside or your workplace, or for the location of the suspected breach.
Status and updates to this Data Protection Statement
This Data Protection Statement was issued in June 2018. We reserve the right to update the Data Protection Statement in due course in order to improve data protection and/or to adapt it to changes in official practice or case law.