Bissantz Bixel Grafik
Privacy policy

Protecting your personal data is a matter of importance to us. Personal data is information about the personal or factual circumstances of an identified or identifiable natural person. For example, this includes their name, address, telephone number and date of birth, as well as all other data that can be attributed to an identifiable person.

As personal data enjoys special legal protection, we only collect it to the extent that this is necessary for the provision of our website and the performance of our service. The following section sets out which personal information is collected during your visit to our website and how we use this information.

Our data protection practices are consistent with the statutory provisions, and in particular those of the German Federal Data Protection Act (BDSG), the German Telemedia Act (TMG), and the EU General Data Protection Regulation (GDPR). We will collect, process and store your personal data only to the extent that this is necessary for the functional provision of this website and our content and services, to process inquiries and, where applicable, to process orders/contracts; in each case, this applies only if there is a legitimate interest within the meaning of Art. 6 (1) sentence 1 (f) GDPR or where otherwise allowed by law.

Your data will be used for additional purposes only where you have separately consented to such use in advance and only for the purposes specified in your consent.

We have a legitimate interest in basing our offers on customer behavior and making potential customers aware of them. In our view, these are overriding interests because sales and marketing activities are mandatory tasks for every company and are the only way to fulfill the social mandate of creating and safeguarding jobs and paying taxes to the state in order to enable it to perform its duties. By focusing on our customers and potential customers, we are able to offer and optimize our products and services so that they meet the needs and interests of our customers. We protect the data concerned to the extent that we do not see any overriding disadvantages for you. The personal data processed by us relates solely to the professional (B2B) and not the private sphere.


Controller within the meaning of Art. 4 No. 7 GDPR

The controller within the meaning of the GDPR and other national data protection legislation of the Member States and other provisions of data protection law is:

Bissantz & Company GmbH
Nordring 98
90409 Nuremberg
Germany
Tel.: +49 911-9355360
datenschutz@bissantz.de


Name and address of the data protection officer

MKM Datenschutz GmbH
Äußere Sulzbacher Str. 124a
90491 Nuremberg
Germany
Tel.: +49 911 669577-55
datenschutz@bissantz.de
https://www.mkm-partner.de/


Provision of the website and creation of log files

Every time you access our website, our system automatically records data and information about the computer system used to access the website. The following data is collected:

Scope of data collection

  1. Information about the browser type and the version used
  2. The operating system of the accessing device
  3. The IP address of the accessing device
  4. Date and time of access
  5. Websites and resources (images, files, other page content) accessed on our website
  6. Websites that directed the user’s system to our website (referrer tracking)

This data is stored in our system’s log files. This data is not stored together with personal data of a specific user, meaning it is not possible to identify individual visitors to the website.

Legal basis for the processing of personal data

Art. 6 (1) (f) GDPR (legitimate interest). We have a legitimate interest in ensuring that the purpose described below is achieved.

Purpose of data processing

Data is logged in order to ensure that our website is compatible for as many visitors as possible, to combat abuse, and for troubleshooting purposes. This requires us to log the technical data of the computer used to access the website in order to allow us to respond as quickly as possible to display errors, attacks on our IT systems, and/or errors affecting the functionality of our website. We also use the data to optimize our website and to ensure the general security of our IT systems.

Duration of storage

The aforementioned technical data is erased as soon as it is no longer required to ensure the compatibility of the website for all visitors, and in any case no more than three months after our website is accessed.

Rights of objection and erasure

Your rights of objection and erasure are based on the general provisions on the right of objection and erasure under data protection law as outlined in this privacy policy.


Special functions of the website

Our website offers various functions whose use results in the collection, processing, and storage of personal data by us. The following section describes what happens to this data:

Login area

Scope of processing of personal data

The registration and login data you enter on our website.

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (consent based on a clear affirmative act or conduct)

Purpose of data processing

You can use a separate login area on our website. If you have forgotten your password or username for this area, you can request that this data be resent to you by entering your contact details (e-mail address).

The usage data arising in connection with your use of the login area is collected, stored, and processed by us only to combat misuse, for troubleshooting purposes, and to maintain the functionality of the website. It is not used for other purposes or transmitted to third parties.

Duration of storage

The data collected is stored for as long as you have a user account with us. The data collected in connection with the “Forgotten username or password” function is used only to resend the requested access data.

Rights of objection and erasure

Your rights of objection and erasure are based on the general provisions on the right of objection and erasure under data protection law as outlined in this privacy policy.

Newsletter subscription form

Scope of processing of personal data

The data you enter when subscribing to the newsletter.

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (consent based on a clear affirmative act or conduct)

Purpose of data processing

The data included in the subscription form for our newsletter is used solely to distribute our newsletter, which contains news and information on all of our services. After you subscribe to the newsletter, we will send you a confirmation e-mail containing a link that you must click in order to complete the sign-up process (double opt-in).

Duration of storage

You can unsubscribe from our newsletter at any time by clicking the unsubscribe link, which is also contained in every newsletter. In this case, we will immediately erase your data. We will also immediately erase your data if you fail to complete the sign-up process. We reserve the right to erase data without providing reasons and without prior or subsequent information.

Rights of objection and erasure

Your rights of objection and erasure are based on the general provisions on the right of objection and erasure under data protection law as outlined in this privacy policy.

GetResponse

Our website uses “GetResponse”, a service of GetResponse Sp. z o.o., ul. Arkonska 6, A3, 80-387 Gdansk, Poland (hereinafter referred to as “GetResponse”). We use GetResponse to distribute mailings such as our newsletter and invitations to events. The data you provide when signing up to the mailing service is transmitted to GetResponse for this purpose. GetResponse uses this data to distribute the mailings and invitations to events and for the statistical analysis of messages on our behalf. The e-mails contain web beacons or tracking pixels for this purpose. These are image files measuring one pixel by one pixel that are stored on our websites. This allows your user behavior to be tracked, and in particular whether you have opened the e-mail and which hyperlinks you have clicked on in the e-mail. GetResponse can also perform conversion tracking, i.e. identifying whether you performed a predefined action after clicking on the hyperlink in the e-mail. Technical information is also stored, such as the date and time of access, your IP address, and data about your web browser and operating system. This data is collected solely in pseudonymous form. The data is not linked to other personal data, meaning that the person concerned cannot be identified directly.

We use GetResponse on the basis of the consent given by you. The legal basis is Art. 6 (1) sentence 1 (a) GDPR. We also use GetResponse for marketing and optimization purposes, and in particular to analyze the use of our website and our mailings and to continuously improve individual functions and offerings and the user experience for you. The statistical evaluation of user behavior allows us to improve our offering and make it more interesting for you as a user.

This also constitutes our legitimate interest in processing the aforementioned information. As such, the legal basis is Art. 6 (1) sentence 1 (f) GDPR.

You can withdraw your consent at any time. You can also object to the aforementioned processing at any time by unsubscribing from the respective mailing service. You can prevent the installation of cookies by erasing existing cookies and disabling cookie storage in the settings of your web browser. Please note that this means you may not be able to use all of the functions of our website in full. You can object to the recording and transmission of personal data or prevent the processing of this data by disabling the execution of JavaScript in your browser. You can also prevent the execution of JavaScript code as a whole by installing a JavaScript blocker (e.g. https://noscript.net/ or https://www.ghostery.com). Please note that this means you may not be able to use all of the functions of our website in full.

We have entered into a processing agreement with GetResponse in order to ensure that GetResponse is obliged to process the data transmitted only in accordance with our instructions and in compliance with the applicable data protection provisions.

Information on the third-party provider: GetResponse Sp. z o.o., ul. Arkonska 6, A3, 80-387 Gdansk, Poland. Additional information from the third-party provider concerning data protection can be found on the following website: https://www.getresponse.de/email-marketing/legal/datenschutz.html.

Live chat

We use a live chat function provided by Userlike UG (limited liability), Probsteigasse 44-46, 50670 Cologne, Germany. You can use the live chat like a contact form in order to chat with our employees in near real-time. The following personal data is recorded when you launch the chat function:

  • Date and time of access
  • Browser type/version
  • IP address
  • Operating system used
  • URL of the previously visited website
  • Volume of data transmitted If provided: First name, last name, e-mail address.

Depending on the content of the conversation with our employees, additional personal data may be recorded that you enter in the course of the chat. The nature of this data depends to a large extent on your inquiry or the problem you describe to us.

All of our employees have been and continue to be trained on data protection and how to handle customer data securely and confidentially. All of our employees are obliged to maintain confidentiality and have signed an addendum to their employment contracts obliging them to maintain confidentiality and to observe the relevant data protection provisions.

Accessing our website loads the chat widget in the form of a JavaScript file from AWS Cloudfront. In technical terms, the chat widget represents the source code that is executed on your computer in order to enable the chat.

We also store the content of the live chats. This is intended to prevent you from having to provide information on the history of your inquiry, which may be extensive in some cases, as well as to enable the continuous quality control of our live chat service. Processing is therefore permitted under Art. 6 (1) (f) GDPR. You can object to this by informing us via the contact details listed below. We will then immediately erase any stored live chats.

Chat data is also stored in order to guarantee the security of our IT systems. This also constitutes our legitimate interest, which is why processing is permitted under Art. 6 (1) (f) GDPR. Above and beyond this, the legal basis for processing the data provided in the chat is Art. 6 (1) (b) and (f) GDPR.

More information can be found in the Privacy Policy of Userlike UG (limited liability).


Statistical evaluation of visits to this website – Web trackers

We collect, process, and store the following data when you access this website or individual files on this website: IP address, website from which the file was accessed, name of file, date and time of access, volume of data transferred, and notification of whether access was successful (web log). We use this access data solely in non-personalized form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to evaluate visits to this website:

Google Analytics

Scope of processing of personal data

Our website uses the web tracking service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as Google Analytics). Google Analytics uses cookies that are saved on your computer and that allow the use of our website and your browsing behavior to be analyzed (“web tracking”). We perform this analysis on the basis of the tracking service provided by Google Analytics in order to continuously optimize our website and make it more accessible. When you use our website, data, particularly including your IP address and your user activity, is transferred to servers of Google Ireland Limited and processed and stored outside the European Union, e.g. in the USA. The European Commission has established that the USA can be considered to offer an adequate data protection level if the company processing the data is subject to the EU-US Privacy Shield Framework and data export to the USA takes place in a manner that is compliant with this framework.

IP anonymization is enabled within the Google Analytics tracking code on this website, meaning that your IP address is anonymized by Google Analytics prior to transmission. This website uses a Google Analytics tracking code expanded to include the “gat._anonymizeIp();” operator solely to enable the anonymized recording of IP addresses (IP masking).

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (consent), either in the form of your registration with Google (your having opened a Google account and accepted the privacy policy implemented therein) or, if you are not registered with Google, explicit consent when opening our website.

Google Tag Manager

Scope of processing of personal data

Our website uses the service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as Google Tag Manager). Google Tag Manager offers a technical platform for running and jointly managing other web services and web tracking programs using “tags”. In this context, Google Tag Manager saves cookies on your computer and analyzes your browsing habits where web tracking tools are run by Google Tag Manager (“web tracking”). This data, which is sent by individual tags integrated into Google Tag Manager, is combined, stored, and processed by Google Tag Manager within a uniform user interface. All integrated tags are listed separately in this privacy policy. You can find more information about data protection in the tools integrated into Google Tag Manager in the respective section of this privacy policy. When you use our website with the active integration of tags by Google Tag Manager, data, particularly including your IP address and your user activity, is transferred to servers of Google Ireland Limited and processed and stored outside the European Union, e.g. in the USA. The European Commission has established that the USA can be considered to offer an adequate data protection level if the company processing the data is subject to the EU-US Privacy Shield Framework and data export to the USA takes place in a manner that is compliant with this framework. This is the case for Google Ireland Limited. With regard to the web services integrated by Google Tag Manager, the provisions in the respective section of this privacy policy apply. The tracking tools employed in Google Tag Manager use source code IP anonymization to ensure that IP addresses are anonymized by Google Tag Manager prior to transmission. This only enables Google Tag Manager to record IP addresses anonymously (“IP masking”).

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (consent), either in the form of your registration with Google (your having opened a Google account and accepted the privacy policy implemented therein) or, if you are not registered with Google, explicit consent when opening our website.

Purpose of data processing

Google will use this information on our behalf to analyze your visit to this website, compile reports about the website activities, and provide us with other services in connection with website use and internet use. The IP address transmitted by your browser as part of the Google Tag Manager service will not be combined with other data held by Google Ireland Limited.

Duration of storage

Google will store the relevant data for the provision of web tracking for as long as this is necessary to fulfill the respective web service. Data is recorded and stored anonymously. If data can be traced to a specific individual, it will be erased immediately unless subject to a statutory retention period. In any case, data is erased following the end of the retention period.

Rights of objection and erasure

You can prevent personal data from being recorded and forwarded to Google (in particular your IP address) and processed by Google by disabling the execution of script code in your browser, installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com), or enabling the “Do not track” setting in your browser. You can also prevent the data generated by the Google cookie relating to your use of the website (including your IP address) from being recorded and processed by Google by downloading and installing the browser plug-in available at the following link (https://tools.google.com/dlpage/gaoptout?hl=de). You can find Google’s security and privacy policies at https://policies.google.com/privacy?hl=de.

Facebook Connect/Login

Our website uses a web tracking service provided by Facebook, Inc., 1601 Willow Road, 94024 Menlo Park, United States of America (hereinafter referred to as “Facebook Connect/Login”). Facebook Connect/Login uses cookies that are saved on your computer and that allow the use of our website and your browsing behavior to be analyzed (“web tracking”). We perform this analysis on the basis of the tracking service provided by Facebook Connect/Login in order to continuously optimize our website and make it more accessible. When you use our website, data, particularly including your IP address and your user activity, is transferred to servers of Facebook, Inc. and processed and stored outside the European Union, e.g. in the USA. The legal basis for processing is Art. 6 (1) (a) GDPR. Facebook, Inc. is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list).

Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Facebook Connect/Login privacy policy: https://www.facebook.com/privacy/explanation

You can prevent personal data from being recorded and forwarded (in particular your IP address) and processed by disabling the execution of script code in your browser, installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com), or enabling the “Do not track” setting in your browser.

An opt-out option is available at the following link: https://de-de.facebook.com/privacy/explanation.

Facebook Custom Audience

Our website uses a web tracking service provided by Facebook, Inc., 1 Hacker Way, 94024 Menlo Park, United States of America (hereinafter referred to as “Facebook Custom Audience”). Facebook Custom Audience uses cookies that are saved on your computer and that allow the use of our website and your browsing behavior to be analyzed (“web tracking”). We perform this analysis on the basis of the tracking service provided by Facebook Custom Audience in order to continuously optimize our website and make it more accessible. When you use our website, data, particularly including your IP address and your user activity, is transferred to servers of Facebook, Inc. and processed and stored outside the European Union, e.g. in the USA. The legal basis for processing is Art. 6 (1) (a) GDPR.

Facebook, Inc. is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Facebook Custom Audience privacy policy: https://www.facebook.com/privacy/explanation

You can prevent personal data from being recorded and forwarded (in particular your IP address) and processed by disabling the execution of script code in your browser, installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com), or enabling the “Do not track” setting in your browser. An opt-out option is available at the following link: https://de-de.facebook.com/privacy/explanation.


Integration of external web services and processing of data outside the EU

Our website uses active JavaScript content from external providers, referred to as web services. Accessing our website may result in these external providers receiving personal information relating to your visit to our website. As a result, there is a possibility of data being processed outside of the EU. You can prevent this by installing a JavaScript blocker such as the browser plug-in “NoScript” (https://www.noscript.net) or disabling JavaScript in your browser. This may result in reduced functionality on the websites you visit. We use the following external web services:

Doubleclick

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “Doubleclick”). We use this data to guarantee the full functionality of our website. Personal data may be sent to Doubleclick by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Doubleclick privacy policy: https://www.google.de/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by Doubleclick by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

Google

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “Google”). We use this data to guarantee the full functionality of our website. Personal data may be sent to Google by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Google privacy policy: https://www.google.com/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by Google by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

Google APIs

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “Google APIs”). We use this data to guarantee the full functionality of our website. Personal data may be sent to Google APIs by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Google APIs privacy policy: https://www.google.com/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by Google APIs by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

Gstatic

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “Gstatic”). We use this data to guarantee the full functionality of our website. Personal data may be sent to Gstatic by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the Gstatic privacy policy: https://www.google.com/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by Gstatic by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

YouTube

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “YouTube”). We use this data to guarantee the full functionality of our website. Personal data may be sent to YouTube by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the YouTube privacy policy: https://www.google.de/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by YouTube by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

ytimg

Our website loads a web service provided by Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States of America (hereinafter referred to as “ytimg”). We use this data to guarantee the full functionality of our website. Personal data may be sent to ytimg by your browser in this context. The legal basis for processing is Art. 6 (1) (f) GDPR. We have a legitimate interest in the trouble-free operation of the website. Google LLC is self-certified under the EU-US Privacy Shield Framework (cf. https://www.privacyshield.gov/list). Data is erased as soon as the purpose for its collection has been fulfilled. Additional information on the handling of the data transferred can be found in the ytimg privacy policy: https://www.google.de/intl/de/policies/privacy/

You can prevent your data from being recorded and processed by ytimg by disabling the execution of script code in your browser or installing a script blocker in your browser (e.g. https://www.noscript.net or https://www.ghostery.com).

“LinkedIn” social plug-in

Scope of processing of personal data

On our website, we have integrated a social plug-in for the social network “LinkedIn” operated by LinkedIn Inc., 2029 Stierlin Ct. Ste., 94043 200 Mountain View, CA, United States of America (“LinkedIn”). When you visit a page containing such a plug-in, your browser automatically establishes a background connection to the LinkedIn servers. The content of the plug-in is transmitted by LinkedIn directly to your browser and only integrated into our page. Through this integration, LinkedIn receives the information that your browser has loaded a specific page of our website. This applies even if you do not have a LinkedIn profile or are not currently logged in to LinkedIn. This information (including your IP address) is sent by your browser directly to a LinkedIn server in the United States of America and stored there. If you are logged in to LinkedIn, LinkedIn can instantly associate your visit to our website with your LinkedIn profile. When you interact with the plug-ins, such as clicking on the “Like” button or commenting, this information is also sent directly to a LinkedIn server and stored there. The information will also be posted on your LinkedIn profile and displayed to your LinkedIn contacts to the extent that this has been enabled for them.

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (if you are registered with LinkedIn) and Art. 6 (1) (f) GDPR (if you are not registered with LinkedIn). In the case of processing on the basis of Art. 6 (1) sentence 1 (f) GDPR, the website operator has a legitimate interest in enabling users to interact with the content of the page operator on LinkedIn.

Purpose of data processing

The primary purpose of data collection is to provide you with the opportunity of social interaction via LinkedIn and hence to make our website interactive. The extent of data collection and the further processing and use of the data you provide by LinkedIn, as well as your rights and the settings available to you for protecting your privacy, can be found in LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

Duration of storage

LinkedIn will store the relevant data for the provision of the web service for as long as this is necessary. If the data is subject to statutory retention periods, it is erased following the end of the retention period.

Rights of objection and erasure

If you do not want the LinkedIn social plug-in to be executed, you can block it by installing a script blocker such as “NoScript”. If you do not want LinkedIn to associate the data collected through our website with your LinkedIn profile, you must log out of LinkedIn before visiting our website. You can also specifically prevent LinkedIn plug-ins from being loaded by using add-ons for your browser.
The appropriate plug-ins for Mozilla Firefox can be found by searching here: https://addons.mozilla.org/de/firefox/
The appropriate plug-ins for Opera can be found by searching here: https://addons.opera.com/de/
The appropriate plug-ins for Chrome can be found by searching here: https://chrome.google.com/webstore/category/extensions?hl=de

Your rights of objection and erasure are otherwise based on the general provisions on the right of objection and erasure under data protection law as outlined in this privacy policy.

Information on the use of cookies

Scope of processing of personal data

We use cookies on various pages in order to enable you to use various functions of our website. Cookies are small text files that your browser can store on your computer. These text files contain a characteristic string that allows your browser to be unambiguously identified the next time you access our website. The process of storing a cookie file is also known as “setting a cookie”.

Legal basis for the processing of personal data

Art. 6 (1) (f) GDPR (legitimate interest). We have a legitimate interest in maintaining the full functionality of our website, improving usability, and being able to address customers more individually. We can only identify individual visitors to the website using cookie technology if the visitor has previously provided us with corresponding personal data on the basis of separate consent.

Purpose of data processing

Our website sets cookies in order to maintain the full functionality of our website and to improve usability. Cookie technology also allows us to identify returning visitors by means of pseudonyms, e.g. individual randomly generated IDs, in order to allow us to tailor our services to them.

Duration of storage

Our cookies are stored until they are erased in your browser or, in the case of session cookies, until the end of the session.

Rights of objection and erasure

You can set up your browser so that it generally prevents cookies from being set. You can then decide whether to accept cookies on a case-by-case basis or as a whole. Cookies may be used for different purposes, e.g. to identify whether your PC has previously visited our website (persistent cookies) or to save details of recently viewed content (session cookies). We use cookies to improve your user experience. In order to make use of our enhanced user experience functions, we recommend that you accept cookies for our website. Your rights of objection and erasure are otherwise based on the general provisions on the right of objection and erasure under data protection law as outlined in this privacy policy.


Data security and data protection, communication by e-mail

When your personal data is collected, stored, and processed, it is protected by technical and organizational measures in such a way that it is not accessible to third parties. If data is sent unencrypted by e-mail, we cannot guarantee that the data will be fully secure during transmission to our IT systems. We therefore recommend that highly confidential information be sent encrypted or by post.


Revocation of consent – Data access and change requests – Data erasure and blocking

You have the right of access to your stored data free of charge at reasonable intervals and the right of rectification, blocking, or erasure of your data at any time. We will delete your data at your first request providing there are no statutory regulations to the contrary. You can therefore revoke any consent given to us to use your personal data at any time. You can send access, erasure, and rectification requests concerning your data and any suggestions to us at any time using the following address:

Bissantz & Company GmbH
Nordring 98
90409 Nuremberg
Germany
Tel.: +49 911-9355360
datenschutz@bissantz.de


Right to data portability

You have the right to receive the personal data concerning you that you have transmitted to us in a structured, commonly used, and machine-readable format. You also have the right to demand that we immediately transmit this data to a third party at your first request if processing is based on consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and the data is processed by us on the basis of automated processing. In exercising this right to data portability, you also have the right to have the personal data concerning you transmitted directly from one controller to another where this is technically feasible. This must not impair the freedoms and rights of other persons.

The right to data portability does not apply to processing of personal data that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.


Right to lodge a complaint with a supervisory authority in accordance with Art. 77 (1) GDPR

If you suspect us of having processed your data unlawfully, it goes without saying that you may seek judicial clarification of the matter at any time. Irrespective of this, you have the option of referring the matter to a supervisory authority. You have the right to lodge a complaint in the EU member state in which you reside or work and/or in which the alleged violation took place, i.e. you may refer the matter to the supervisory authority in any of these locations. The supervisory authority with which the complaint has been lodged will then inform you about the progress and the outcome of your complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.