Privacy recannis.com: Medical cannabis producer

Person responsible within the meaning of the DSGVO

‍

Fette Pharma GmbH

Hans-Fleissner-Strasse 80

63329 Egelsbach

Tel.: +49 (0) 6103 - 5717 - 317

Fax: +49 (0) 6103 - 5717 - 377

E-mail: info@fette-pharma.de

‍

Contact details of the data protection officer

‍

Proliance GmbH / www.datenschutzexperte.de

Data Protection Officer

Leopoldstr. 21

80802 Munich

datenschutzbeauftragter@datenschutzexperte.de

‍

When contacting the Data Protection Officer, please state the company to which your enquiry relates. Please refrain from enclosing sensitive information, such as a copy of an ID card, with your request.

‍

Definitions

‍

Our privacy policy is intended to be simple and understandable for everyone. In this privacy policy, the official terms of the General Data Protection Regulation (DSGVO) are generally used. The official definitions are explained in Art. 4 DSGVO.

‍

Access to and storage of information in terminal equipment

‍

By using our website, information (e.g. IP address) may be accessed or stored (e.g. cookies) in your terminal equipment. This access or storage may involve further processing of personal data within the meaning of the GDPR.

‍

In cases where such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of § 25 para. 1 sentence 1, para. 2 no. 2 TTDSG.

‍

In cases where such a process serves other purposes (e.g. the needs-based design of our website), this will only be carried out on the basis of Section 25 (1) TTDSG with your consent in accordance with Article 6 (1) a GDPR. The consent can be revoked at any time for the future. The provisions of the GDPR and the Federal Data Protection Act (BDSG) apply to the processing of your personal data.

‍

For further information on the processing of your personal data and the relevant legal bases in this context, please refer to the following sections on the specific processing activities on our website.

‍

Web hosting

‍

This website is hosted by an external service provider (INSIGMA IT Engineering GmbH). The hosting of this website takes place in Frechen/Germany. Personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, website accesses and other data generated via a website.

‍

We collect the listed data in order to be able to guarantee a smooth connection setup of the website and a technically error-free provision of our services. The processing of this data is absolutely necessary to provide you with the website. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 (1) lit. f DSGVO.

‍

We have concluded an order processing contract with the provider in accordance with the requirements of Art. 28 DSGVO, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.

‍

Server log files

‍

When you access our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your internet browser and our web server:

‍

(Complete) IP address of the requesting computer
Date and time of the request or retrieval
Time zone difference from Greenwich Mean Time (GMT)
URL called up or name of the requested file
Page from which the URL or file was accessed (referrer URL)
Access status / HTTP status code
Web browser and browser version used
Operating system used
Transmitted data volume
Recipient e-mail address and sender e-mail address, insofar as an e-mail goes out to the visitor.

‍

We collect the listed data in order to be able to guarantee a smooth connection setup of the website and a technically error-free provision of our services. The processing of this data is absolutely necessary to provide you with the website. The log files are used to evaluate system security and stability as well as for administrative purposes. The legal basis for processing the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para. 1 lit. f DSGVO.

‍

For reasons of technical security, in particular to defend against attempted attacks on our web server, we store this data for a short period of time. After 14 days at the latest, the data is anonymised by shortening the IP address at domain level, so that it is no longer possible to establish a link to the individual user.

‍

Cookies

Our website uses so-called "cookies". Cookies are small text files that are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your terminal device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or an automatic solution is provided by your web browser.

‍

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them. Other cookies are used to evaluate user behaviour or to display advertising.

‍

The processing of data through the use of absolutely necessary cookies is based on a legitimate interest pursuant to Art. 6 (1) lit. f DSGVO in the technically error-free provision of our services. For details on the processing purposes and legitimate interests, please refer to the explanations on the specific data processing.

‍

The processing of personal data through the use of other cookies is based on consent pursuant to Art. 6 para. 1 lit. a DSGVO. The consent can be revoked at any time for the future. Insofar as such cookies are used for analysis and optimisation purposes, we will inform you separately about this within the framework of this data protection declaration and obtain consent in accordance with Art. 6 para. 1 lit. a DSGVO.

‍

You can set your browser so that you

be informed about the setting of cookies,
Allow cookies only in individual cases,
exclude the acceptance of cookies for certain cases or in general,
activate the automatic deletion of cookies when closing the browser.

‍

The cookie settings can be managed under the following links for the respective browsers:

‍

You can also manage cookies of many companies and functions used for advertising individually. To do this, use the corresponding user tools, available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.

‍

Most browsers also offer a so-called "do-not-track" function. When this function is activated, the respective browser tells advertising networks, websites and applications that you do not want to be "tracked" for the purpose of behavioural advertising and the like.

‍

For information and instructions on how to edit this function, see the links below, depending on your browser provider:

‍

In addition, you can prevent the loading of so-called scripts by default. "NoScript" allows JavaScripts, Java and other plug-ins to be executed only on trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: https://addons.mozilla.org/de/firefox/addon/noscript/).

‍

Please note that if you deactivate cookies, the functionality of our website may be limited.

‍

Change cookie settings

‍

You can revoke or change your cookie settings at any time. To do so, call up the cookie settings again via this link.

‍

Contact form

‍

If you send us enquiries by contact form, e-mail or telephone, your details, including the personal data you provide there, will be stored by us for the purpose of processing the enquiry and in case of follow-up questions. The specification of an e-mail address as well as your first and last name is required for contacting us, the specification of your address data and your telephone number is voluntary. Under no circumstances will we pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f DSGVO and, if applicable, Art. 6 Para. 1 lit. b DSGVO if your request is aimed at concluding a contract. Your data will be deleted after your request has been processed, provided that there are no legal obligations to retain data. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f DSGVO.

‍

Writing reviews

‍

On our website you have the possibility to write reviews about our products. For this, we need your name or a pseudonym, your e-mail address (will not be published) and your place of residence. Furthermore, your IP address and the time of publication are logged and stored for 7 days. This storage of the IP and email address is done for security reasons and in case the person concerned infringes the rights of third parties or posts illegal content through a submitted comment.

‍

Reviews can be submitted in such a way that it is not possible for other website users to identify you. It is up to you to decide whether you wish to provide personal details over and above the mandatory information. Please note that when choosing your pseudonym and within the free text fields, it is also possible to provide information that allows your person to be identified. We recommend that you write your review text without providing any personal data.

‍

If the review contains personal data, the processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations already carried out remains unaffected by the revocation. In the event of revocation of your consent, we will delete or anonymise the review.

‍

The storage of additional information (IP address and e-mail address) is based on our legitimate interest pursuant to Art. 6 (1) lit. f DSGVO in the possibility of assigning the reviews to the authors.

‍

We reserve the right to delete comments if they are objected to by third parties as being illegal.

‍

Google Analytics

‍

Our website uses Google Analytics, an internet analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google Analytics uses so-called "cookies".

‍

Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity. Google will also use this information to provide the website operator with other services related to the use of the website and the internet. The IP address sent by your browser as part of Google Analytics will not be combined with any other data held by Google. The processing is carried out in accordance with Art. 6 para. 1 lit. a DSGVO on the basis of the consent you have given.

‍

We only use Google Analytics with IP anonymisation activated. This means that your IP address is only processed by Google in a shortened form.

‍

We have concluded an order processing contract with the service provider in which we oblige them to protect our customers' data and not to pass it on to third parties.

As there is a transfer of personal data to the USA, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 (2) lit. c DSGVO. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the USA.

‍

The Google Analytics terms of use and information on data protection can be accessed via the following links:

http://www.google.com/analytics/terms/de.html

https://www.google.de/intl/de/policies/

‍

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. Deletion of user and event level data linked to cookies, user identifiers (e.g. user ID) and advertising IDs (e.g. DoubleClick cookies, Android advertising ID, IDFA [Apple identifier for advertisers]) takes place no later than 14 months after their collection.

‍

You can prevent cookies from being saved by adjusting the settings of your browser software accordingly. However, we would like to point out that in this case you may not be able to use all functions of this website without restrictions. You can also prevent Google from collecting the data generated by the cookie and from analysing your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout?hl=de.

‍

Google Marketing Platform (DoubleClick)

‍

This website uses DoubleClick from the Google Marketing Platform, a service of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland ("Google").

‍

DoubleClick uses cookies to present you with ads that are relevant to you. This involves assigning a pseudonymous identification number (ID) to your browser or device to check which ads have been displayed in your browser and which ads have been viewed. This can improve campaign performance or, for example, prevent you from seeing the same ad more than once. In addition, Google can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a Campaign Manager ad and later visits the advertiser's website with the same browser and makes a purchase. According to Google, the cookies do not contain any personal information. If you have given us your consent, the processing of the data is based on Art. 6 para. 1 lit. a DSGVO.

‍

Due to the technology used, your browser automatically establishes a direct connection with Google's server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of DoubleClick, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.

‍

Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, Google uses standard data protection clauses in accordance with Art. 46 (2) lit. c DSGVO. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the USA.

‍

Further information on the Google Marketing Platform is available at https://marketingplatform.google.com/about/ and on data protection at Google in general: https://www.google.de/intl/de/policies/privacy.

‍

Google Tag Manager

‍

This website uses the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags. This means that no cookies are used and only the user's IP address is transmitted to Google to establish the connection. The Google Tag Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, it remains in place for all tracking tags, insofar as these are implemented with the Google Tag Manager.

‍

We use the Google Tag Manager on the basis of your consent pursuant to Art. 6 (1) lit. a DSGVO.

‍

As there is a transfer of the IP address to Google in the USA, further protection mechanisms are required to ensure the data protection level of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 (2) lit. c DSGVO. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the USA.

‍

Google Maps

‍

Our homepage uses the online map service provider Google Maps via an interface. This allows us to show you interactive maps directly on the website and enables you to use the map function conveniently. The provider of the map service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To use the functionalities of Google Maps, it is necessary to save your IP address.

‍

Google uses cookies to collect information about user behaviour. The legal basis for the processing of your personal data is your consent in accordance with Art. 6 Para. 1 lit. a DSGVO.

‍

For more information on the handling of user data, please refer to Google's privacy policy:

https://www.google.de/intl/de/policies/privacy/

Opt-out: https://www.google.com/settings/ads/

‍

Google Fonts

‍

We use "Google Fonts" on our website, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as: "Google"). Google Fonts enables us to use external fonts. For this purpose, the required Google Fonts are loaded into your browser cache by your web browser when you access our website. This is necessary so that your browser can also display a visually improved representation of our texts. If your browser does not support this function, a standard font will be used by your computer for display. The integration of these Google Fonts takes place via a server call, usually a Google server in the USA. This transmits to the server which page of our website you have visited. The IP address of the browser of the visitor's terminal device is also stored by Google.

‍

We use Google Fonts for optimisation purposes, in particular to improve the use of our website for you and to make its design more user-friendly. The processing is carried out in accordance with Art. 6 para. 1 lit. a DSGVO on the basis of your consent. This consent can be revoked at any time with effect for the future.

‍

Further information on data protection can be found in Google's privacy policy: http://www.google.de/intl/de/policies/privacy

‍

Further information on Google Fonts can be found at https://fonts.google.com/.

‍

YouTube

‍

On our website, we integrate videos from "YouTube", a social media platform of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). The legal basis for the processing of your personal data is your consent granted for this purpose in accordance with Art. 6 (1) lit. a DSGVO.

If the playback of embedded YouTube videos is started by your consent, the provider "YouTube" uses cookies to collect information about user behaviour. According to YouTube, these cookies are used, among other things, to collect video statistics, to improve user-friendliness and to prevent abusive behaviour. If you are logged in to Google, your data will be directly assigned to your account when you click on a video. If you do not wish to have your data associated with your YouTube profile, you must log out before activating the button. Google stores this data as a usage profile and uses it for the purposes of advertising, market research and/or designing its websites to meet user needs. Such an evaluation is carried out in particular (also for users who are not logged in) for the display of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles. Please contact Google directly for this purpose.

‍

Further information on data protection and data use by Google can be found on the following Google website: https://policies.google.com/privacy?hl=de&gl=de

‍

External links

‍

Social networks (Facebook, Twitter, Pinterest, Instagram) are only integrated on our website as links to the corresponding services. After clicking on the embedded text/image link, you will be redirected to the page of the respective provider. User information is only transferred to the respective provider after the forwarding. For information on the handling of your personal data when using these websites, please refer to the respective data protection provisions of the providers you use.

‍

Appearances in social media

‍

In the following, you will find information on the handling of your data that is collected through your use of our social media presences on social networks and platforms. Your data will be processed in accordance with the legal regulations.

‍

1. supplier

‍

1.1 Facebook Fanpage

‍

1.1.1 Responsible body

‍

In the event that the data you provide to us is also or exclusively processed by Facebook, Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland, is the controller for data processing within the meaning of the GDPR in addition to us or in our place. For this purpose, we have concluded an agreement with Facebook pursuant to Art. 26 DSGVO on joint responsibility for the processing of data (Controller Addendum). This agreement specifies the data processing operations for which we or Facebook are responsible when you visit our Facebook fan page. You can view this agreement under the following link: https://www.facebook.com/legal/terms/page_controller_addendum.

Since personal data is transferred by Facebook to the USA to Meta Platforms Inc. among others, further protection mechanisms are required to ensure the data protection level of the GDPR. For this purpose, the provider uses standard data protection clauses in accordance with Art. 46 para. 2 lit. c DSGVO. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even through this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the USA.

‍

If you as a visitor to the site would like to exercise your rights (information, correction, deletion, restriction, data portability, complaint to the supervisory authority, objection or revocation), you can contact both Facebook and us.

‍

You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in:

https://www.facebook.com/settings?tab=ads or https://www.your onlinechoices.com

For further details, please refer to Facebook's privacy policy: https://www.facebook.com/about/privacy/

‍

1.1.2 Facebook Data Protection Officer

‍

To contact Facebook's data protection officer, you can use the online contact form provided by Facebook under the following link https://www.facebook.com/help/contact/540977946302970.

‍

1.1.3 Data processing for statistical purposes by means of page insights

‍

Facebook provides so-called page insights for our Facebook fan page: https://www.facebook.com/business/a/page/page-insights. These are aggregated data that provide information about how people interact with our site. Page Insights may be based on personal information collected in connection with a person's visit to or interaction with our Page and in connection with content provided. Please be aware of what personal data you share with us through Facebook. Your data may be processed for market research and advertising purposes even if you are not logged into Facebook or do not have a Facebook account. For example, user profiles can be created from the usage behaviour and resulting interests of the users. The user profiles can in turn be used, for example, to display advertisements within and outside the platforms that presumably correspond to the interests of the users. This data collection takes place via cookies that are stored on your terminal device. Furthermore, data that is independent of the devices used by the users may also be stored in the user profiles; in particular, if the users are members of the respective platforms and logged in to them. The legal basis for the processing is your consent pursuant to Art. 6 para. 1 lit. a DSGVO. Please note that we have no influence on the data collection and further processing by Facebook. As a result, we cannot provide any information about the extent to which, where and for how long the data is stored by Facebook. Furthermore, we cannot make any statements about the extent to which Facebook complies with existing deletion obligations, which evaluations and links are made with the data on the part of Facebook and to whom the data is passed on by Facebook. If you wish to avoid the processing of your personal data by Facebook, please contact us by other means.

‍

1.2 Other social media providers

‍

1.2.1 Responsible body

‍

If your personal data is processed by a provider listed below, this provider is the data controller within the meaning of the GDPR. For the assertion of your data subject rights, we point out that these can be asserted most effectively with the respective providers. Only they have access to the data collected from you. Should you still require assistance, please feel free to contact us at any time.

We have online presences on the social media platforms of the following providers:

‍

Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland
YouTube, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Pinterest Inc, 635 High Street, Palo Alto, CA, 94301, USA
Instagram, Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland

‍

2. General information on social media platforms

‍

2.1 Responsible body

‍

The party responsible for data processing within the meaning of the GDPR is the body named at the beginning of this privacy policy, insofar as data transmitted by you via one of the social media platforms is processed by us ourselves.

‍

2.2 Our Data Protection Officer

‍

If you have any concerns about data processing carried out by us as the data controller, you can contact our data protection officer using the contact details provided at the beginning of this privacy policy.

‍

3. General data processing on the social media platforms

‍

3.1 Data processing for market research and advertising

‍

As a rule, personal data is processed on the company website for market research and advertising purposes. For this purpose, a cookie is set in your browser, which enables the respective provider to recognise you when you visit a website. By means of the collected data, usage profiles can be created. These are used to display advertisements within and outside the platform that presumably correspond to your interests. Furthermore, data may also be stored in the usage profiles regardless of the devices you use. This is regularly the case if you are a member of the respective platforms and logged in to them.

‍

3.2 Data processing when contacting us

‍

We ourselves collect personal data when you contact us, for example, via a contact form or a messenger service such as Facebook Messenger. Which data is collected depends on the information you provide and the contact data you have given or released. This data is stored by us for the purpose of processing the enquiry and in the event of follow-up questions. Under no circumstances will we pass on the data to third parties without your consent. The legal basis for the processing of the data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f DSGVO and, if applicable, Art. 6 (1) lit. b DSGVO if your request is aimed at concluding a contract. Your data will be deleted once we have completed processing your enquiry, provided there are no legal obligations to retain data. We assume that processing is complete if it can be inferred from the circumstances that the matter in question has been conclusively clarified.

‍

3.3 Data processing for the execution of the contract

‍

If your contact via a social network or other platform is aimed at the conclusion of a contract for the delivery of goods or the provision of services with us, we process your data to fulfil the contract or to carry out pre-contractual measures or to provide the requested services. In this case, the legal basis for the processing of your data is Art. 6 para. 1 lit. b DSGVO. Your data will be deleted if it is no longer required for the performance of the contract or if it is determined that the pre-contractual measures do not lead to the conclusion of a contract corresponding to the purpose of the contact. Please note, however, that it may be necessary to store personal data of our contractual partners even after the conclusion of the contract in order to comply with contractual or legal obligations.

‍

3.4 Data processing based on consent

‍

If you are asked by the respective providers of the platforms for consent to processing for a specific purpose, the legal basis of the processing is Art. 6 para. 1 lit. a., Art. 7 DSGVO. Consent given can be revoked at any time with effect for the future.

‍

4. Data transfer and recipients

‍

When visiting and using the platforms listed above, personal data may be transferred to the USA or other third countries outside the EU, which is why further protection mechanisms are required in these cases to ensure the level of data protection of the GDPR. Further information on whether and which suitable guarantees the providers can provide for this can be found in the list below.

We have no influence on the processing of your personal data by the provider and how it is handled. We also do not have any information on this. For further information, please check the privacy policy of the respective provider and, if necessary, use the opt-out / personalisation options regarding data processing by the provider:

‍

Twitter

Privacy policy: https://twitter.com/de/privacy
Opt-out: https://twitter.com/personalization
According to its privacy policy, Twitter uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://twitter.com/de/privacy

‍

YouTube/Google

Privacy policy: https://policies.google.com/privacy?hl=de&gl=de
Opt-out: https://adssettings.google.com/authenticated
According to its privacy policy, Google uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://policies.google.com/privacy?hl=de&gl=de

‍

Privacy Policy / Opt-Out: https://about.pinterest.com/de/privacy-policy
According to its privacy policy, Pinterest uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: https://policy.pinterest.com/de/privacy-policy

‍

Instagram

Privacy policy/opt-out: http: //instagram.com/about/legal/privacy/
According to its privacy policy, Instagram (Facebook) uses standard data protection clauses to ensure an adequate level of data protection in accordance with the requirements of the GDPR for data transfers to the USA or other third countries outside the EU: http://instagram.com/about/legal/privacy/

‍

Data sharing and recipients

‍

Your personal data will not be transferred to third parties unless

if we have explicitly referred to this in the description of the respective data processing,
if you have given your express consent to this in accordance with Art. 6 Para. 1 S. 1 lit. a DSGVO,
the disclosure is necessary in accordance with Art. 6 (1) p. 1 lit. f DSGVO for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
in the event that a legal obligation exists for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c DSGVO and
insofar as this is necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 p. 1 lit. b DSGVO.

‍

In addition, we use external service providers for the processing of our services, which we have carefully selected, commissioned in writing and with whom we have concluded order processing agreements in accordance with Article 28 of the GDPR, if necessary. These are bound by our instructions and are regularly monitored by us. These are, among others, service providers for hosting, sending e-mails as well as maintenance and care of our IT systems, etc. The service providers will not pass this data on to third parties.

‍

Data security

‍

We take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.

‍

Duration of the storage of personal data

‍

The duration of the storage of personal data is determined by the relevant statutory retention periods (e.g. from commercial law and tax law). After expiry of the respective period, the corresponding data is routinely deleted. If data is required to fulfil or initiate a contract or if we have a legitimate interest in continuing to store it, the data will be deleted when it is no longer required for these purposes or you have exercised your right of revocation or objection.

‍

Your rights

‍

Below you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:

‍

The right to request information about your personal data processed by us in accordance with Art. 15 DSGVO. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.

‍

The right to request the correction of inaccurate or incomplete personal data stored by us without delay in accordance with Art. 16 DSGVO.

‍

The right to request the erasure of your personal data stored by us in accordance with Art. 17 DSGVO, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims.

‍

The right to request the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing in accordance with Art. 21 DSGVO.

‍

The right, in accordance with Art. 20 DSGVO, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller.

‍

The right to complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.

‍

The right to revoke consent given in accordance with Art. 7 (3) DSGVO: You have the right to revoke consent to the processing of data once given at any time with effect for the future. In the event of revocation, we will immediately delete the data concerned unless further processing can be based on a legal basis for processing without consent. The revocation of the consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

‍

Right of objection

‍

Insofar as your personal data is processed by us on the basis of legitimate interests pursuant to Art. 6 (1) sentence 1 lit. f DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, insofar as this is done for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement to specify a particular situation.

‍

If you wish to exercise your right of revocation or objection, simply send an e-mail to datenschutzbeauftragter@datenschutzexperte.de or info@fette-pharma.de.

‍

Legal obligations

‍

The provision of personal data for the decision on the conclusion of a contract, the fulfilment of a contract or for the implementation of pre-contractual measures is voluntary. However, we can only make the decision in the context of contractual measures if you provide such personal data that is required for the conclusion of the contract, the performance of the contract or pre-contractual measures.

‍

Automated decision making

‍

Automated decision-making or profiling in accordance with Art. 22 DSGVO does not take place.

‍

Subject to change

‍

We reserve the right to adapt or update this data protection declaration if necessary in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take into account changes to our services, e.g. when introducing new services. The current version applies to your visit.

‍

Status of this privacy policy: 27.05.2022

Glossary

Welcome to the Glossary