A: INFORMATION REGARDING THE COLLECTION OF PERSONAL DATA
- In the following, we would like to provide you with information regarding the collection of personal data when using our website. Personal data are any data that personally relate to you, e.g. name, address, or email address.
- The data controller pursuant to Art. 4 para. 7 EU General Data Protection Regulation (DS-GVO) is Dr. med. dent. Johann Lechner, Grünwalder Straße 10a, D-81547 Munich, Telephone: 089/ 6970055, Email: email@example.com.
B: GATHERING PERSONAL DATA (TYPE AND PURPOSE)
I. Visiting our website
If you use our website for informative purposes only, meaning that you do not register or otherwise provide us with data, we shall only collect the personal data that your browser transmits to our server. The provider of the website automatically collects and stores information in what are known as server log files, which your browser automatically sends to us. These include in particular:
- IP address
- Date and time of the request
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status/HTTP status code
- Quantity of data transferred in each case.
- Website from which the request came
- Operating system and its interface
- Language and version of the browser software.
Purpose of data processing is the seamless connection establishment of the website, guaranteeing comfortable use of our website and the possibility of evaluating system safety and stability. The legal basis for data processing is Art. 6 para. 1 sent. 1 lit. f) GDPR. Our legitimate interest arises from the stated purposes of data collection. We will not use the data collected for the purpose of drawing conclusions about your person.
II. Establishing contact via email or the contact form
When you contact us by email or via a contact form, the data you provide (for example, your name and email address) shall be stored by us in order to answer your questions. Data protection for the purpose of contacting us takes place in accordance with Art. 6 para, 1 sent. 1 lit. a) and b) GDPR based on your voluntary consent, if necessary also for the implementation of pre-contractual or contractual measures that take place at your request.
III. Establishing contact via telephone
When you establish contact via telephone, the data you provide (your name and telephone number) will be saved by us so that we can call you back, if necessary. Data protection for the purpose of contacting us takes place in accordance with Art. 6 para, 1 sent. 1 lit. a) and b) GDPR based on your voluntary consent, if necessary also for the implementation of pre-contractual or contractual measures that take place at your request.
I. By providing us with your consent, you can subscribe to our newsletter, in which we will regularly provide you with information about our current interesting offers. The advertised goods and services are named in the declaration of consent. II. We use a so-called double-opt-in process for our newsletter registration. This means that following your registration, we will send an email to the email address provided in which we will ask you to confirm that you have requested delivery of the newsletter. If you do not confirm your registration, your data will be blocked and automatically deleted after a month. Furthermore, we also save the IP addresses used and the times of registration and confirmation. The purpose of this procedure is to substantiate your registration and, if necessary, determine whether your personal data is being misused. III. Your email address is the only mandatory piece of information required to send you the newsletter. The specification of additional, separately marked data is voluntary and shall be used to address you personally. Following your confirmation, we shall store your email address for the purposes of sending you the newsletter. IV. The legal basis is Article 6 para. 1 S.1 lit. a of the GDPR). V. You may revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can declare you are revoking your consent by clicking on the link provided in every newsletter email, by sending a message to the contact data specified in the legal notice.
D: DISCLOSURE OF DATA
1. Forwarding to provider
The data is forwarded to the provider by the system. This provider operates a server within Europe. Similarly, the data you provide us with via the contact form, is forwarded to this provider because the provider is responsible for providing the email server.
II. Other cases of forwarding data 1. Service providers and vicarious helpers
Furthermore, only the persons, who need your data to fulfil our contractual and legal obligations gain access to your data. Also, service providers and vicarious agents contracted by us may also receive data for these so-called purposes. These including companies in the IT-service provider, telecommunication, consultation and consulting categories. Under these conditions, recipients of personal data, may be for example:
2. Analysis Tools
- Auditor, consultants;
- Public authorities and institutions in case of a statutory or administrative obligation.
Furthermore, the data are forwarded through the use of Google Analytics. Detailed information can be found in the Data Protection Declaration. 3. Other cases of forwarding data
Above and beyond this, personal data is not passed on to any third parties at all. We shall only share your personal data with third parties, if You have given explicit consent for this in accordance with Article 6 para. 1 S. 1 lit. a of the GDPR, the disclosure pursuant to Article 6 Para. 1 S. 1 letter f GDPR is required for establishment, exercise or defence of legal claims and there are no grounds to accept that you have an overriding interest in non-disclosure of your data in the event that for the transfer pursuant to Article 6 para. 1 S. 1 lit. c of the GDPR a legal obligation exists as well as when this is legally permissible and pursuant to Article 6 para. 1 S. 1 lit. b) of the GDPR for the concluding of a contractual relationship with you.
F: USE OF GOOGLE
. You can also check out of Google Analytics by clicking on the following link: Yes, I’d like to check out. This website uses Google Analytics with the “_anonymizeIP()” extension. As a result, IP addresses are only processed in truncated form in order to prevent Google from identifying specific individuals’ use of the site. If the data collected about you is personally identifiable, it will be blocked immediately and the personal data deleted as soon as possible. We use Google Analytics to analyze and regularly improve the function of our website and make it more interesting for you as a user. The legal basis for the use of Google Analytics is Art. 6 Para. 1 clause 1 lit. f) GDPR. Google has agreed to comply with the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
with regard to any personal data that is transferred to the USA. Information about the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User terms & conditions: http://www.google.com/analytics/terms/de.html
; About how Google’s handling of data: http://www.google.com/intl/de/analytics/learn/privacy.html
We use Google Maps on the basis of a legitimate interest in optimizing our website within the meaning of Art. 6 para. 1 lit. f) GDPR. You can also check out by clicking on the following link: https://adssettings.google.com/authenticated
This website partially uses Ajax and jQuery technologies, which, for example, optimise the loading speed. In this respect, program libraries of Google servers are accessed. The CDN (Content delivery network) of Google is used. If you used jQuery on a different page of Google before, your browser will use the copy stored in your cache. If this does not apply, it must be downloaded, which means that data from your browser will reach Google!Inc. (“Google”). Your data will be transmitted to the USA. For more details, see: https://developers.google.com/speed/libraries/#jquery and the data protection provisions of google.de.
H: LINKS TO THIRD PARTY WEBSITES
Links that we publish on your website are researched and compiled with the utmost care. However, we have absolutely no influence on the current and future structure and the content of the linked pages. We are not responsible for the content of linked pages and reject ownership of the content of these pages. Sole responsibility for illegal, erroneous or incomplete content, and for damages which arise from the use or neglect of information, is borne by the provider of the website to which the referral was made. The liability of the person that merely pointed out the publication through a link is excluded. We are responsible for third-party references only if we had positive knowledge of even potentially illegal or prosecutable content, and it was technically possible and within reason to prevent the use of such content.
I: USE OF FONTS
I. Google WebFonts
II. Font Awesome
To ensure that fonts are presented as uniformly as possible, this website uses “web fonts” which are made available by Fonticons. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. To do this, your browser must connect to Fonticons’ servers. As a result, Fonticons, Inc. learns that our website has been accessed via your IP address. We use Web Fonts in order to present our website in a uniform and appealing way. This constitutes a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. If your browser does not support web fonts, a default font will be used by your computer. Further information on Font Awesome can be found under https://fontawesome.com/help and in the data protection declaration of Fonticons, Inc.: https://fontawesome.com/privacy.
J: YOUR RIGHTS
Sie haben das Recht:You have the right, pursuant to Article 15 of the GDPR, to request information about your personal data processed by us. In particular, you can request information about the purpose of processing, the category of the personal data, the categories of recipients to whom your data were or will be disclosed, the planned duration of storage, the existence of a right to correction, erasure, restriction of processing or objection, existence of the right to complain, the origin of your data insofar as they were not collected by us, as well as the existence of automated decision making including profiling and if required, meaningful information relating to the details of this; pursuant to Article 16 of GDPR, to request immediate correction of incorrect data or the completion of your personal data which we have stored; pursuant to Article 17 of the GDPR, you may request the erasure of the personal data we have stored, where processing is not required for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, for the establishment, exercise or defence of legal claims; pursuant to Article 18 of the GDPR, to request the restriction of processing, where the accuracy of the personal data is contested by you, the processing is unlawful, however you oppose the erasure of the personal data, and we no longer need the data, however you require them for the establishment, exercise or defence of legal claims, or you have objected to the processing pursuant to Article 21 of the GDPR; pursuant to Article 20 GDPR, to receive the personal data you made available to us in a structured, common and machine-readable format, or to request it is sent to another responsible person; pursuant to Article 7 para. 3 of the GDPR, to revoke the consent you have given us at any time. As a consequence of this, we may no longer carry out the data processing based on this consent in the future, and pursuant to Article 77 of the GDPR, to lodge a complaint to a supervisory authority. As a rule for this, you can contact the supervisory authority in your normal place of residence, or your workplace, or our head office. The Bayerisches Landesamt für Datenschutzaufsicht [Data Protection Authority of Bavaria for the Private Sector] Promenade 27 (Schloss), 91522 Ansbach, Germany, Telephone: +49 (0) 981 53 1300, Fax: +49 (0) 981 53 98 1300, Email: firstname.lastname@example.org is responsible for our business headquarters.
K: RIGHT TO OBJECT
Insofar as your personal data are processed based on legitimate interests pursuant to Article 6 para. 1 S. 1 lit. f of the GDPR, you have the right pursuant to Article 21 of the GDPR to object to the processing of your personal data, insofar as there are reasons for this arising from your particular situation. If you file an objection, we shall no longer process your data, unless we are able to provide proof of compelling and legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves the purpose of exercising, enforcing or defending of legal rights. The objection must be sent to us; an email to email@example.com will suffice.
L: DURATION OF STORAGE
I. This website does not store any complete IP addresses of persons who use the website for information, or they will be deleted again without delay after the end of use of the website. II. The stored usage processes will be deleted at the latest after 7 months. III. If you send us an email or use the contact form or give us a call, these data will generally be deleted 6 months after the last communication after answering the request. Something else shall only apply, if contact refers to a specific customer relationship, In this case, a note is also stored with the customer file, if necessary. If there are any statutory archiving periods, archiving may last up to ten years. Thereafter, the data will be finally deleted; in the meantime, the data will be blocked so that access to these data is no longer possible easily. The blocking phase shall commence at the end of the year following the end of the contract. IV. The data that is collected as part of registering for our newsletter will be stored until you unsubscribe from our newsletter. In the case of de-registration, your data will be deleted immediately.
M: OBLIGATION TO PROVIDE DATA
As far as collection and processing of so-called server log files is concerned, the information is mandatory. Indication of the personal data, name and email address in the scope of contact via the contact form are also mandatory. Furthermore, the data marked as necessary will then be mandatory. The provision of further data is voluntary.
N: AUTOMATED DECISION MAKING
Automated decision making in accordance with Art. 22 GDPR does not take place.
O: CHANGE TO THE PURPOSE
Personal data are processed for the purpose for which they were collected. The purpose is not changed.
P: DATA SECURITY
During your visit to our website, we use the widely-used SSL process (Secure Socket Layer), along with the highest current level of encryption supported by your browser. This generally involves 256 Bit encryption. If your browser does not support 256 Bit encryption, we then fall back on 128 Bit v3 technology. You can identify whether an individual page on our website is encrypted by the closed image of the key or lock symbol in the lower status bar of your browser. In addition, we use appropriate technical and organisational security measures to protect your data against accidental or deliberate manipulation, partial or complete loss, destruction, or unauthorised access by third parties. Our security measures are continually improved in line with technical developments.