Name and contact details of responsible persons
This privacy policy informs about the processing of personal data on the website:
be-prep.com
be-prep.de
Responsible
CSO GmbH, Jörg Schempf, Forsthausstrasse 2, 75180 Pforzheim, joerg.schempf@csoinfo.de
Data Protection Officer
GEOTEAM INGENIEURE GmbH, Klaus Zoll, Karl-Philipp-Str. 15, 75180 Pforzheim, klaus.zoll@geoteam.com
General information about data processing
In principle, we collect and use personal data of our users only to the extent necessary to provide a functional website and our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies to cases in which prior consent cannot be obtained for reasons of fact and the processing of the data is permitted by law.
Provision and access to the website
Accessing the website
When this website is accessed, the Internet browser used by the visitor automatically sends data to the server of this website and stores it for a limited time in a log file. Until the automatic deletion, the following data is stored without further input of the visitor:
- IP address of the visitor's terminal,
- date and time of access by the visitor,
- Name and URL of the page accessed by the visitor,
- Website from which the visitor accesses our website (so-called referrer URL),
- Browser and operating system of the visitor's terminal and the name of the access provider used by the visitor.
The processing of these personal data is acc. Article 6 (1) (1) (f) of the GDPR. CSO GmbH has a legitimate interest in the processing of data for the purpose
- build the connection quickly,
- to enable a user-friendly usage of the website,
- to identify and ensure the security and stability of the systems and
- to facilitate and improve the administration of the website.
The processing is expressly not for the purpose of gaining knowledge about the person visiting the website.
Contact Form
We reserve the right to integrate a contact form into our website. In this case, visitors can submit messages via an online contact form on the website. In order to be able to receive a reply, at least the specification of a valid eMail address is required. All further information can be given voluntarily by the requesting person. By submitting the message via the contact form, the visitor consents to the processing of the transferred personal data. The data processing takes place exclusively for the purpose of processing and answering inquiries via the contact form. This is done on the basis of the voluntarily granted consent acc. Article 6 (1) (1) (a) GDPR. The personal data collected for the use of the contact form will be automatically deleted as soon as the request has been completed and there are no reasons for further storage (eg subsequent commissioning of our company).
Newsletter
We currently do not send a newsletter.
Disclosure of data
Personal data will be transmitted to third parties if - according to Art. 6 (1) (1) (a) of the GDPR the person concerned expressly agreed to
- disclosure pursuant to Art. 6 (1) (1) (f) GDPR is required to assert, exercise or defend legal claims and there is no reason to believe that the data subject has an overriding legitimate interest in not disclosing their data,- for the transmission of data according to Art. 6 (1) (1) (c) GDPR a legal obligation exists, and / or
- this is required by Article 6 (1) (1) (b) of the GDPR to fulfill a contractual relationship with the data subject.
In other cases, personal data will not be disclosed to third parties.
Cookies
Cookies are used on the website. These are data packets that are exchanged between the server of the company website and the visitor's browser. These are stored when visiting the website of the devices used in each case (PC, notebook, tablet, smartphone, etc.). Cookies can cause no damage on the devices used. In particular, they contain no viruses or other malicious software. In the cookies, information is stored, each resulting in connection with the specific terminal used. By no means can our company immediately be aware of the identity of the visitor to the website.
Cookies are largely accepted according to the basic settings of the browser. The browser settings can be set up so that cookies are either not accepted on the devices used, or that a special notice is given before a new cookie is created. It should be noted, however, that the deactivation of cookies may result in not all the features of the website being used in the best possible way.
The use of cookies serves to make the use of the web offer of our company more comfortable. For example, session cookies can be used to track whether the visitor has already visited individual pages on the website. After leaving the website, these session cookies are automatically deleted.
To improve usability, temporary cookies are used. They are stored on the visitor's device for a temporary period. When the website is visited again, it automatically recognizes that the visitor has already visited the site at an earlier point in time and what inputs and settings have been made so that they do not have to be repeated.
Cookies are also used to analyze website views for statistical purposes and for the purpose of improving the offer. These cookies make it possible to automatically recognize on a new visit that the website has already been accessed by the visitor. An automatic deletion of cookies takes place here after a specified time.
The data processed by cookies are for the o. G. Purposes of safeguarding the legitimate interests of our company under Article 6 (1) (1) (f) GDPR.
Analysis services for websites, tracking
We do not currently use the website analytics service for websites of Google Analytics on our website. The legal basis for using the analysis tools is Article 6 (1) (1) (f) GDPR. The website analysis is in the legitimate interest of our company and serves the statistical collection of the page usage for the continuous improvement of our website and the offer of our services.
Plugins of Social Networks (Social Plugins)
There are currently no social plug-ins on our corporate website.
The legal basis for the use of social plugins is Article 6 (1) (1) (f) GDPR. A legitimate interest of our company and purpose of using plugins of social networks is to make our offer known to a wide audience. The social networks are responsible for the privacy-compliant handling of the data of their users.
Your rights as a person concerned
As far as your personal data are processed during the visit of our website, you have the following rights as "data subject" within the meaning of the GDPR:
Information
You can ask us for information about whether personal data is processed by us. No right of access exists if the granting of the coveted information against the duty of confidentiality acc. § 83 StBerG would violate or the information for other reasons, in particular because of a predominant legitimate interest of a third party, must be kept secret. Deviating from this, there may be an obligation to provide the information if your interests outweigh the interests of secrecy, in particular taking into account any imminent damage. The right of access is also excluded if the data is stored only because it may not be deleted due to statutory or statutory retention periods or serve exclusively for data protection or data protection control, if the disclosure would require a disproportionate effort and processing for other purposes is excluded by appropriate technical and organizational measures. If in your case the right to information is not excluded and your personal data are processed by us, you can ask us for information about the following information:
- purposes of processing,
- categories of personal data processed by you,
- recipients or categories of recipients to whom your personal data are disclosed, in particular to recipients in third countries,
- if possible, the planned duration for which your personal data are stored or, if not
- the existence of a right of rectification or deletion or limitation of the processing of personal data concerning you or a right to object to such processing,
- the existence of a right of appeal to a data protection supervisory authority, the personal data has not been collected from you as the data subject, the information available on the origin of the data,
- if necessary, the existence of automated decision-making including profiling and meaningful information about the logic involved as well as the implications and intended effects of automated decision-making,
- if necessary, in the case of transmission to recipients in third countries, if there is no decision of the EU Commission on the adequacy of the protection level under Art. 45 (3) GDPR, information on which suitable guarantees acc , Art. 46 para. 2 GDPR for the protection of personal data.
Correction and Completion
If you find that we have incorrect personal information about you, you may require us to promptly correct such incorrect data. In case of incomplete personal data concerning you, you can request the completion.
Deletion
The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is omitted. In addition, such storage may take place if provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract. They are entitled to be deleted ("right to be forgotten"), unless the processing is necessary for the exercise of the right to freedom of expression, the right to information or to fulfill a legal obligation or to perform a task of public interest and for one of the following reasons:
- the personal data are no longer necessary for the purposes for which they were processed.
- The justification for processing was only your consent, which you have revoked.
- You have objected to the processing of your personal data that we have made public.
- You have objected to the processing of personal data not disclosed to us and there are no legitimate reasons for the processing.
- Your personal data has been processed unlawfully.
- The deletion of personal data is required to fulfill a legal obligation to which we are subject. There is no claim for deletion if, in the case of legitimate non-automated data processing, deletion is not possible or only possible with disproportionately high outlay due to the special nature of the storage and your interest in deletion is low. In this case, the deletion is replaced by the restriction of processing.
Restriction of processing
You may require us to restrict processing if any of the following applies:
- You deny the accuracy of your personal information. The restriction may be required in this case for the duration that allows us to verify the accuracy of the data.
- The processing is unlawful and you require instead of deletion the restriction of the use of your personal data.
- We no longer need your personal information for the purposes of processing, but you need it to assert, exercise or defend your rights.
- You have contradiction acc. Art. 21 Para. 1 DSGVO. The limitation of processing may be required as long as it is not certain that our legitimate reasons outweigh your reasons.
Restriction of processing means that the personal data are processed only with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest. Before we lift the restriction, we have a duty to inform you.
Data portability
You have the right of data transferability if the processing is based on your consent (Article 6 (1) (1) (a) or Article 9 (2) (a) GDPR) or on a contract to which you are a party and the processing is done using automated procedures. The right to data portability in this case includes the following rights, provided that this does not affect the rights and freedoms of others: You may require us to receive the personal information you provide us in a structured, common and machine-readable format. You have the right to transfer this data to another person without hindrance on our part. If technically feasible, you may require us to transfer your personal information directly to another person in charge.
Contradiction
If the processing is based on Article 6 (1) (1) (e) of the GDPR (exercise of a public interest or in the exercise of official authority) or on Article 6 (1) (1) (f) GDPR (legitimate interest the person responsible or a third party), you have the right to object to the processing of your personal data at any time for reasons that arise from your particular situation. This also applies to a profiling based on Art. 6 (1) (1) (e) or (f) of the GDPR. After exercising your right to object, we will no longer process your personal information unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.
You may at any time object to the processing of your personal data for direct marketing purposes. This also applies to a profiling associated with such direct mail. After exercising this right of objection, we will no longer use the personal data concerned for direct marketing purposes.
You have the option of informing us informally by telephone, by e-mail, if necessary by fax or to our postal address listed at the beginning of this privacy policy.
Revocation of consent
You have the right to revoke your consent at any time with effect for the future. The revocation of the consent can be communicated by phone, by e-mail, possibly by fax or to our postal address informal. The revocation does not affect the lawfulness of the data processing which has taken place on the basis of the consent until receipt of the revocation. Upon receipt of the revocation, the data processing, which was based solely on your consent, is set.
Complaint
If you believe that the processing of your personal information is unlawful, you may lodge a complaint with a data protection supervisory authority that has jurisdiction over your place of residence or employment or the location of the alleged breach.
The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.