Dezernat Zukunft e.V. makes no guarantee for the actuality, correctness, or completeness of the information provided on our website. Liability claims made against the author on the basis of material or intellectual damages attributed to the use or absence of use of the supplied information are ruled out as a consequence, provided no evidence of deliberate or extreme carelessness on part of the author can be provided.

The contents of our website are put together with as much care as possible. However, Dezernat Zukunft makes no guarantee for the actuality, correctness, or completeness of the information provided therein. Use of the contents of the website is at the users own risk. Named contributions reflect the opinion of the author, not that of the organisation which operates the website. The mere use of the website does not create a contractual relationship between the user and the organisation which operates the website. All offers are not legally binding and subject to change without notice. Dezernat Zukunft reserves the right to change, supplement or delete parts of the website, as well as to remove the publications or entire offering, without prior notice.

References and Links

In the case of direct or indirect references to external websites ("hyperlinks"), which lie outside the area of responsibility of the author, legal liability would only come into force if the author or the authoress has knowledge of the contents and it would be both technically possible and reasonable for them to prevent the use in the case of illegal contents. Dezernat Zukunft hereby expressly declares that no illegal contents were present on the linked websites at the time of the links’ inclusion. The authors have no influence over the current or future contents, design or copyright of the linked sites. As a consequence of this, the author hereby explicitly distances themselves from any and all contents of the linked sites which have been altered after the links were included in the authors’ piece. This observation counts for all the links included on our website, as well as for third-party discussion forums, link directories, mailing lists included by the authors, and for all forms of databases which can be externally altered. The liability for the illegal, factually incorrect or incomplete content or websites and especially any damages which are the result thereof lies alone with the publishers of the linked sites, not the author who has merely linked to them in their publication.

Creative Commons/ Copyright- and Trademark Law

Dezernat Zukunft e.V. makes every effort to respect the copyright on every image, graphic, audio and video file, and text document, use self-produced images, graphics, audio and video files, and text documents or make use of license-free images, graphics, audio and video files, and text documents. All brands and trademarks mentioned within the Internet offer and possibly protected by third parties are subject without restriction to the provisions of the applicable trademark law and the ownership rights of the respective registered owners or owners.

The content of this website is licensed under the CC BY-NC 4.0

Data protection policy

Introduction and Contact Details of the Controller

1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about the handling of your personal data when using our website. Personal data is any data that can personally identify you.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Dezernat Zukunft e.V., Chausseestraße 111, 10115 Berlin, Germany, Tel.: +49 30 439738520, Email: info@dezernatzukunft.org. The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data.

1.3 The controller has appointed a data protection officer, who can be reached as follows: Kristina Steinle Dueñas, Chaussestraße 111, 10115 Berlin, +49 30 439738520, info@dezernatzukunft.org

2. Data Collection When Visiting Our Website

2.1 When using our website for informational purposes only, i.e., if you do not register or otherwise transmit information to us, we only collect the data that your browser transmits to our server (“server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website:

- The website visited

- Date and time at the time of access

- Amount of data sent in bytes

- Source/referrer from which you accessed the site

- Browser used

- Operating system used

- IP address used (if applicable: in anonymized form)

Processing takes place pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. There is no disclosure or other use of the data. However, we reserve the right to subsequently check server log files if there are concrete indications of unlawful use.

2.2 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries to the controller). You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser bar.

3. Hosting & Content Delivery Network

For hosting our website and displaying its content, we use a provider that provides its services exclusively on servers within the European Union, either itself or through selected subcontractors.

All data collected on our website is processed on these servers.

We have concluded a data processing agreement (DPA) with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

4. Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies, i.e., small text files that are stored on your device. Some of these cookies are automatically deleted after you close your browser (“session cookies”), while others remain on your device longer and enable the storage of page settings (“persistent cookies”). In the latter case, you can find the storage duration in the overview of your web browser’s cookie settings.

If personal data is also processed by individual cookies we use, processing takes place pursuant to Art. 6(1)(b) GDPR to perform a contract, pursuant to Art. 6(1)(a) GDPR in the case of consent given, or pursuant to Art. 6(1)(f) GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the site visit.

You can set your browser so that you are informed about the setting of cookies and can decide individually on their acceptance or exclude the acceptance of cookies for certain cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be restricted.

5. Contact

When contacting us (e.g., via contact form or email), personal data is collected. Which data is collected in the case of using a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of responding to your inquiry or for establishing contact and the associated technical administration.

The legal basis for processing this data is our legitimate interest in responding to your request pursuant to Art. 6(1)(f) GDPR. If your contact aims at the conclusion of a contract, the additional legal basis for processing is Art. 6(1)(b) GDPR. Your data will be deleted after final processing of your request. This is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.

6. Data Processing for Handling Donations

For the processing of donations that you may send us, we generally process the following personal data: first and last name, address, email address.

Your data will be stored by us together with the information on donation amount, donation frequency, and donation purpose and retained for ten years.

Depending on the payment method selected, the above data will also be forwarded to the payment service provider you selected for the donation and processed there exclusively and only to the extent necessary to process your donation.

The above processing operations are carried out on the basis of Art. 6(1)(b) GDPR and serve solely to properly execute and account for your donation payment. Storage over a period of ten years is based on Art. 6(1)(c) GDPR in conjunction with § 147 AO, under which we are subject to a corresponding retention obligation for the transaction.

7. Use of Customer Data for Direct Advertising

7.1 Subscribing to our email newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing further data is voluntary and is used to address you personally. We use the double opt-in process for sending the newsletter. This means that we will only send you an email newsletter once you have expressly confirmed to us that you consent to receiving newsletters. We will then send you a confirmation email in which you are asked to confirm, by clicking on a link, that you wish to receive the newsletter in the future.

By activating the confirmation link, you give us your consent to use your personal data pursuant to Art. 6(1)(a) GDPR. When registering for the newsletter, we store the IP address entered by your Internet service provider (ISP) as well as the date and time of registration to be able to trace possible misuse of your email address at a later time. The data we collect when registering for the newsletter will be used exclusively for the purpose of advertising to you via the newsletter. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by notifying the controller named above. After unsubscribing, your email address will be deleted from our newsletter distribution list without delay, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this policy.

7.2 HubSpot

Our email newsletters are sent via the following provider: HubSpot Ireland Ltd., 2nd Floor 30 North Wall Quay, Dublin 1, Ireland

On the basis of our legitimate interest in effective and user-friendly newsletter marketing, we pass on the data you provided when registering for the newsletter to this provider in accordance with Art. 6(1)(f) GDPR so that the provider can handle the newsletter dispatch on our behalf.

Subject to your express consent pursuant to Art. 6(1)(a) GDPR, the provider also conducts statistical performance measurement of newsletter campaigns using web beacons or tracking pixels in the emails sent, which can measure open rates and specific interactions with the contents of the newsletter. In doing so, device information (e.g., time of access, IP address, browser type and operating system) is also collected and evaluated but is not combined with other data sets.

You can revoke your consent to newsletter tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider that protects the data of our site visitors and prohibits disclosure to third parties.

7.3 MailChimp

Our email newsletters are sent via the following provider: The Rocket Science Group, LLC d/b/a MailChimp, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA

On the basis of our legitimate interest in effective and user-friendly newsletter marketing, we pass on the data you provided when registering for the newsletter to this provider in accordance with Art. 6(1)(f) GDPR so that the provider can handle the newsletter dispatch on our behalf.

Subject to your express consent pursuant to Art. 6(1)(a) GDPR, the provider also conducts statistical performance measurement of newsletter campaigns using web beacons or tracking pixels in the emails sent, which can measure open rates and specific interactions with the contents of the newsletter. In doing so, device information (e.g., time of access, IP address, browser type and operating system) is also collected and evaluated but is not combined with other data sets.

You can revoke your consent to newsletter tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider that protects the data of our site visitors and prohibits disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

8. Web Analytics Services

Matomo

This website uses a web analytics service from the following provider: InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand (“Matomo”).

To protect site visitors, Matomo uses a so-called “config_id” to enable various analyses of site usage within a short time window of up to 24 hours. The “config_id” is a randomly set, time-limited hash of a limited set of visitor settings and attributes. The config_id or config hash is a string calculated for a visitor based on their operating system, browser, browser plugins, IP address, and browser language. Matomo does not use device fingerprinting and uses an anonymized IP address of the site visitor to create the “config_id”.

If the information processed in this way includes personal user data, processing takes place pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in the statistical analysis of user behavior for optimization and marketing purposes. To object to the processing of your visitor data for the future, we provide a separate opt-out option on our website.

Data is transferred to the provider only if the service is not hosted on our own servers. In the case of self-hosting, no transmission of data collected via the service to the provider takes place.

If the service is not hosted on our own servers, we have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to New Zealand, an adequacy decision of the EU Commission applies in this case, which attests to compliance with European data protection standards for international data transfers.

9. Site Functionalities

9.1 X Plugins

Plugins of the social network of the following provider are used on our website: Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland

These plugins enable direct interactions with content on the social network.

To increase the protection of your data when visiting our website, the plugins are initially deactivated and integrated into the page using the so-called “2-click” or “Shariff” solution.

This integration ensures that when a page of our website that contains such plugins is called up, no connection is yet established with the provider’s servers.

Only when you activate the plugins and thereby give your consent to the data transmission pursuant to Art. 6(1)(a) GDPR does your browser establish a direct connection to the provider’s servers. In this process, irrespective of a login to an existing user profile, certain information about your device (including your IP address), your browser, and your page history is transmitted to the provider and may be further processed there.

If you are logged into an existing user profile on the provider’s social network, information about interactions performed via the plugins is also published there and displayed to your contacts.

You can revoke your consent at any time by deactivating the activated plugin again by clicking on it. However, the revocation has no effect on data already transmitted to the provider.

Data may also be transferred to: X Corp., USA

We have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider relies on the European Commission’s standard contractual clauses, which are intended to ensure compliance with the European level of data protection.

9.2 OpenStreetMap

This website uses an online map service from the following provider: OpenStreetMap Foundation, St John’s Innovation Centre, Cowley Road, Cambridge, CB4 0WS, UK

The online map service is a tool for displaying interactive (land) maps to visually present geographic information. By using this service, our location is displayed to you and any geolocation is facilitated.

When you call up the subpages in which the provider’s map is embedded, information about your use of our website (such as your IP address) is transmitted to the provider’s servers and stored there.

The processing of your personal data takes place pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in the demand-oriented design of our website. If you do not agree with the future transmission of your data to the provider, you have the option to completely deactivate the provider’s online map service by switching off JavaScript in your browser. The online map service on this website can then no longer be used.

Where legally required, we have obtained your consent to the processing of your data as described above pursuant to Art. 6(1)(a) GDPR. You can revoke any consent given at any time with effect for the future. To exercise your revocation, please follow the objection option described above.

Where data is transferred to the provider’s location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

9.3 Adobe Fonts (Typekit)

This site uses web fonts from the following provider to ensure uniform presentation of fonts: Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA

When a page is called up, your browser loads the required web fonts into its browser cache to display texts and fonts correctly and establishes a direct connection to the provider’s servers. In doing so, certain browser information, including your IP address, is transmitted to the provider.

The processing of personal data in the course of establishing a connection with the font provider is only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke any consent given at any time with effect for the future by deactivating this service via the “cookie consent tool” provided on the website. If your browser does not support web fonts, a standard font from your computer will be used.

For data transfers to the USA, the provider participates in the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

9.4 Google Web Fonts

This site uses web fonts from the following provider to ensure uniform presentation of fonts: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

When a page is called up, your browser loads the required web fonts into its browser cache to display texts and fonts correctly and establishes a direct connection to the provider’s servers. In doing so, certain browser information, including your IP address, is transmitted to the provider.

Data may also be transmitted to: Google LLC, USA

The processing of personal data in the course of establishing a connection with the font provider is only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke any consent given at any time with effect for the future by deactivating this service via the “cookie consent tool” provided on the website. If your browser does not support web fonts, a standard font from your computer will be used.

For data transfers to the USA, the provider participates in the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

Further information on Google’s privacy provisions can be found here: https://business.safety.google/intl/de/privacy/

9.5 MyFonts

This site uses web fonts from the following provider to ensure uniform presentation of fonts: Monotype Imaging Holdings Inc., 600 Unicorn Park Drive, Woburn, MA 01801, USA

When a page is called up, your browser loads the required web fonts into its browser cache to display texts and fonts correctly and establishes a direct connection to the provider’s servers. In doing so, certain browser information, including your IP address, is transmitted to the provider.

The processing of personal data in the course of establishing a connection with the font provider is only carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You can revoke any consent given at any time with effect for the future by deactivating this service via the “cookie consent tool” provided on the website. If your browser does not support web fonts, a standard font from your computer will be used.

For data transfers to the USA, the provider relies on the European Commission’s standard contractual clauses, which are intended to ensure compliance with the European level of data protection.

9.6 Microsoft Teams

For conducting online meetings, video conferences, and/or webinars, we use the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

The provider processes different data, the scope of which depends on what data you provide before or during participation in an online meeting, video conference, or webinar. Your data as a communication participant is processed and stored on the provider’s servers. This may include, in particular, your registration data (name, email address, telephone number (optional), and password) and session data (subject, participant IP address, device information, description (optional)).

In addition, image and audio contributions of participants as well as voice inputs in chats may be processed.

For the processing of personal data that is necessary for the performance of a contract with you (this also applies to processing operations that are necessary for carrying out pre-contractual measures), Art. 6(1)(b) GDPR serves as the legal basis. Insofar as you have given us consent to process your data, processing is carried out on the basis of Art. 6(1)(a) GDPR. You can revoke consent given at any time with effect for the future.

Otherwise, the legal basis for data processing when conducting online meetings, video conferences, or webinars is our legitimate interest pursuant to Art. 6(1)(f) GDPR in the effective conduct of the online meeting, webinar, or video conference.

We have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

9.7 Zoom

For conducting online meetings, video conferences, and/or webinars, we use the following provider: Zoom Video Communications Inc., 55 Almaden Blvd, Suite 600, San Jose, CA 95113, USA

The provider processes different data, the scope of which depends on what data you provide before or during participation in an online meeting, video conference, or webinar. Your data as a communication participant is processed and stored on the provider’s servers. This may include, in particular, your registration data (name, email address, telephone number (optional), and password) and session data (subject, participant IP address, device information, description (optional)).

In addition, image and audio contributions of participants as well as voice inputs in chats may be processed.

For the processing of personal data that is necessary for the performance of a contract with you (this also applies to processing operations that are necessary for carrying out pre-contractual measures), Art. 6(1)(b) GDPR serves as the legal basis. Insofar as you have given us consent to process your data, processing is carried out on the basis of Art. 6(1)(a) GDPR. You can revoke consent given at any time with effect for the future.

Otherwise, the legal basis for data processing when conducting online meetings, video conferences, or webinars is our legitimate interest pursuant to Art. 6(1)(f) GDPR in the effective conduct of the online meeting, webinar, or video conference.

We have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider participates in the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

9.8 Applications for Job Postings via Email

On our website, we advertise currently vacant positions in a separate section, for which interested parties can apply by email to the contact address provided.

Applicants must provide all personal data necessary for a well-founded assessment, including general information such as name, address, and contact details, as well as performance-related evidence and, where applicable, health-related information. Details of the application can be found in the job posting.

After receipt of the application by email, the data is stored and evaluated exclusively for the purpose of processing the application. If we have follow-up questions, we will use either the applicant’s email address or telephone number. Processing is carried out on the basis of Art. 6(1)(b) GDPR (and § 26(1) BDSG, where applicable), under which participation in the application process is considered initiation of an employment contract.

Insofar as special categories of personal data within the meaning of Art. 9(1) GDPR (e.g., health data such as information about severe disability) are requested from applicants in the course of the application process, processing is carried out pursuant to Art. 9(2)(b) GDPR so that we can exercise rights and fulfill obligations arising from labor law and social security and social protection law.

Cumulatively or alternatively, the processing of the special categories of data may also be based on Art. 9(2)(h) GDPR if it is carried out for purposes of preventive or occupational medicine, for the assessment of the applicant’s working capacity, for medical diagnosis, the provision of health or social care or treatment, or the management of health or social care systems and services.

If an applicant is not selected or an applicant withdraws their application prematurely, their transmitted data and all electronic correspondence, including the application email, will be deleted after corresponding notification no later than six months thereafter. This period is based on our legitimate interest in answering any follow-up questions regarding the application and, where applicable, fulfilling our obligations to provide evidence under the provisions on equal treatment of applicants.

In the event of a successful application, the data provided will be processed for the purpose of executing the employment relationship on the basis of Art. 6(1)(b) GDPR (in Germany in conjunction with § 26(1) BDSG).

9.9 Online Applications via a Form

On our website, we advertise currently vacant positions in a separate section, for which interested parties can apply via an appropriate form.

Applicants must provide all personal data necessary for a well-founded assessment, including general information such as name, address, and contact details, as well as performance-related evidence and, where applicable, health-related information. Details of the application can be found in the job posting.

When the form is submitted, the applicant data is transmitted to us in encrypted form in accordance with the state of the art, stored by us, and evaluated exclusively for the purpose of processing the application. Processing is carried out on the basis of Art. 6(1)(b) GDPR (and § 26(1) BDSG, where applicable), under which participation in the application process is considered initiation of an employment contract.

Insofar as special categories of personal data within the meaning of Art. 9(1) GDPR (e.g., health data such as information about severe disability) are requested from applicants in the course of the application process, processing is carried out pursuant to Art. 9(2)(b) GDPR so that we can exercise rights and fulfill obligations arising from labor law and social security and social protection law.

Cumulatively or alternatively, the processing of the special categories of data may also be based on Art. 9(2)(h) GDPR if it is carried out for purposes of preventive or occupational medicine, for the assessment of the applicant’s working capacity, for medical diagnosis, the provision of health or social care or treatment, or the management of health or social care systems and services.

If an applicant is not selected or an applicant withdraws their application prematurely, their data transmitted via the form and all electronic correspondence, including the application email, will be deleted after corresponding notification no later than six months thereafter. This period is based on our legitimate interest in answering any follow-up questions regarding the application and, where applicable, fulfilling our obligations to provide evidence under the provisions on equal treatment of applicants.

In the event of a successful application, the data provided will be processed for the purpose of executing the employment relationship on the basis of Art. 6(1)(b) GDPR (in Germany in conjunction with § 26(1) BDSG).

9.10 Personio

For the administration, organization, and processing of online applications, we use software from the following provider: Personio SE & Co. KG, Seidlstraße 3, 80335 Munich, Germany

On the basis of our legitimate interest in effective and user-friendly applicant management, the data you transmit in the course of the online application will be encrypted and forwarded to the provider pursuant to Art. 6(1)(f) GDPR, stored there, and made available to us for dealing with the application.

We have concluded a data processing agreement with the provider that protects the data of our site visitors and prohibits disclosure to third parties.

10. Tools and Miscellaneous

10.1 Cookie Consent Tool

This website uses a so-called “cookie consent tool” to obtain valid user consents for cookies and cookie-based applications requiring consent. The “cookie consent tool” is displayed to users upon page access in the form of an interactive user interface, on which consents for certain cookies and/or cookie-based applications can be granted by checking boxes. In doing so, all consent-requiring cookies/services are loaded only when the respective user grants the corresponding consents by checking the boxes. This ensures that such cookies are set on the respective user’s device only in the event that consent has been granted.

The tool sets technically necessary cookies to store your cookie preferences. Personal user data is generally not processed in this context.

If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning, or logging cookie settings, this is carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in lawful, user-specific, and user-friendly consent management for cookies and hence in a lawful design of our online presence.

Another legal basis for processing is Art. 6(1)(c) GDPR. As controllers, we are legally obliged to make the use of non-essential cookies dependent on the respective user consent.

Where necessary, we have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

Further information about the operator and the setting options of the cookie consent tool can be found directly in the corresponding user interface on our website.

10.2 DATEV

For bookkeeping, we use the service of the cloud-based accounting software of the following provider: DATEV eG, Paumgartnerstr. 6-14, 90429 Nuremberg, Germany

The provider processes incoming and outgoing invoices and, where applicable, our company’s bank transactions in order to automatically capture invoices, match them to transactions, and, in a semi-automated process, create the financial accounting records.

Insofar as personal data is processed in this context, processing is carried out on the basis of our legitimate interest in efficient organization and documentation of our business transactions pursuant to Art. 6(1)(f) GDPR.

11. Rights of the Data Subject

11.1 Applicable data protection law grants you the following rights (rights of access and intervention) with respect to the processing of your personal data vis-à-vis the controller, whereby the legal basis for the respective exercise requirements is referenced:

- Right of access pursuant to Art. 15 GDPR;

- Right to rectification pursuant to Art. 16 GDPR;

- Right to erasure pursuant to Art. 17 GDPR;

- Right to restriction of processing pursuant to Art. 18 GDPR;

- Right to notification pursuant to Art. 19 GDPR;

- Right to data portability pursuant to Art. 20 GDPR;

- Right to withdraw consent given pursuant to Art. 7(3) GDPR;

- Right to lodge a complaint pursuant to Art. 77 GDPR.

11.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST FOLLOWING A BALANCING OF INTERESTS, YOU HAVE THE RIGHT AT ANY TIME, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA CONCERNED. HOWEVER, FURTHER PROCESSING IS RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS, AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA IS PROCESSED BY US FOR DIRECT ADVERTISING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU CAN EXERCISE THE OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL CEASE PROCESSING THE DATA CONCERNED FOR DIRECT ADVERTISING PURPOSES.

12. Duration of the Storage of Personal Data

The duration of the storage of personal data is determined by the respective legal basis, the processing purpose and—where applicable—also by the respective statutory retention period (e.g., retention periods under commercial and tax law).

When processing personal data on the basis of an explicit consent pursuant to Art. 6(1)(a) GDPR, the data concerned is stored until you revoke your consent.

If statutory retention periods exist for data that is processed in the context of contractual or quasi-contractual obligations on the basis of Art. 6(1)(b) GDPR, this data will be routinely deleted after the retention periods have expired, provided that it is no longer required for the performance of the contract or the initiation of a contract and/or there is no legitimate interest on our part in further storage.

When processing personal data on the basis of Art. 6(1)(f) GDPR, this data is stored until you exercise your right to object under Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

When processing personal data for direct advertising purposes on the basis of Art. 6(1)(f) GDPR, this data is stored until you exercise your right to object under Art. 21(2) GDPR.

Unless otherwise stated in the other information of this policy regarding specific processing situations, stored personal data is otherwise deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.

Copyright Notice: This privacy policy was created by the specialist lawyers of IT-Recht Kanzlei and is protected by copyright (https://www.it-recht-kanzlei.de)

Status: 20.08.2025, 10:28:31