Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator's contact details can be found in the website's required legal notice.
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.
What rights do you have regarding your data?
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
The party responsible for processing data on this website is:
Bahnhofsallee 59 - 61
Telephone: + 49 (0) 60 33 / 9 74 04 - 0
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).
When personal data concerning you is processed you have the following rights as the data subject pursuant to GDPR.
1. Right to information
You can request confirmation from the data controller of whether personal data concerning you are being processed by us.<br/> If personal data concerning you is being processed, you can request the following information from the controller:
You have the right to obtain information about whether the personal data concerning you is transferred to a third country or an international organisation. In this connection you can obtain appropriate safeguards pursuant to Article 46 GDPR in connection with the transfer of personal data.
2. Right to rectification
You have the right to obtain the rectification of personal data or the supplementation of incomplete personal data concerning you from the data controller. The data controller will comply without undue delay.
3. Right to restriction of processing
When one of the following applies you have the right to obtain from the controller restriction of processing:
Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If you have obtained restriction of processing pursuant to the above the data controller will inform you before the restriction of processing is lifted.
4. Right to erasure
a) Obligation to erase personal data
You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller has the obligation to erase personal data without undue delay where one of the following grounds applies:
b) Information to third parties
Where the controller has made the personal data public and is obliged pursuant to Article 17 (1) GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.
The right to obtain erasure does not apply if the processing is necessary
5. Notification obligation
If you have exercised your right of any rectification or erasure of personal data or restriction of processing vis-a-vis the controller, the controller is required to communicate any rectification, erasure or restriction of processing of personal data to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort.<br/> You have the right to obtain information from the controller about such recipients.
6. Right to data portability
You have the right to receive your personal data which you have provided to a controller in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance from the controller to which the personal data had been provided, where
In exercising this right to data portability you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible. This may not adversely affect the rights and freedoms of others.<br/> The right to data portability does not apply to processing of personal data which is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
7. Right to object
You have the right at any time to object, on grounds relating to your particular situation, to processing of personal data concerning you on the basis of Article 6 (1) e or f GDPR; this also applies to profiling based on those provisions.<br/> The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is necessary for the establishment, exercise or defence of legal claims.<br/> Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data for such marketing purposes, which includes profiling to the extent that it is related to such direct marketing.<br/> If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.<br/> In the context of the use of information society services, and notwithstanding Directive 202/58/EC, you may exercise your right to object by automated means using technical specifications.
8. Right to revoke consent
You have the right to revoke your consent to the processing of your personal data. This does not affect the lawfulness of processing up to the time of revocation.
9. Automated, individual decision-making, including profiling
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
These decisions may not be based on special categories of personal data referred to in Article 9 (1) unless point a or g of Article 9 (2) applies and suitable measures to safeguard your rights, freedoms and legitimate interests are in place.
If the decision is not based on statutory provisions, the data controller implements suitable measures to safeguard your rights, freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express an own point of view and to contest the decision.
10. Right to lodge a complaint with a supervisory authority
Unless an administrative or judicial remedy provides otherwise, you have the right to lodge a complaint with a supervisory authority, particularly in the Member State you live or work in, or at the place of the suspected contravention, if you believe that the processing of your personal data violates the GDPR.
The supervisory authority where the complaint is lodged informs the complainant about the status and outcome of the complaint process, including the right to an effective judicial remedy pursuant to Article 78 GDPR.
The competent supervisory authority is:
The Hessian Commissioner for Data Protection and Freedom of Information
Professor Michael Ronellenfitsch
We have appointed a data protection officer for our company.
Alkemade IT-Security e.K.
Egerländer Str. 9
Tel.: +49 6002 939593
Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files". These are:
These data will not be combined with data from other sources.
The basis for data processing is Art. 6 (1) (f) DSGVO, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.
We reserve the right to check this data or have it checked retrospectively, if we become aware of specific indications for illegal use.
Temporary storage of the IP address by the system is necessary to display website content on your terminal. The IP address of the user (visitor) is therefore stored for this purpose for the duration of the session. Log files are stored to optimise the website experience and to ensure the security of our information systems. No data is analysed for marketing purposes in this connection.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected; in the case of data collection for the purpose of providing the website, this is the case at the end of the respective session.
If the data is stored in log files, it will be deleted after seven days at the latest, but may be stored beyond this (e.g. for security reasons, such as clarification of abuse or fraud, storage for evidence purposes), in which case the IP addresses of users will be deleted or altered so that it is no longer possible to assign the calling client.
The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. There is consequently no contradiction on the part of the user.
Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.
At the time the message is sent, the following data will also be stored:
Alternatively, contact via the provided e-mail address is possible. In this case, the user's personal data transmitted by e-mail will be stored.
The legal basis for the processing of the data is the consent of the user within the meaning of Art. 6 para. 1 lit. a GDPR. In addition, the legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 letter f GDPR; if the purpose of the e-mail contact is to conclude a contract, the additional legal basis for processing is Art. 6 para. 1 letter b GDPR.
The processing of the personal data from the input mask serves solely for the processing of the establishment of contact, and in the case of an establishment of contact by email, this is also the necessary legitimate interest in the processing of the data.
The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.
At the time the message is sent, the following data will also be stored:
To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.
We will process the data provided during registration only based on your consent per Art. 6 (1)(a) DSGVO. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
The controller processes the personal data of job applicants only for the purpose of processing the application procedure and in accordance with the legal requirements and may also do so electronically, in particular if an applicant sends the relevant application documents to the controller by electronic means, for example by e-mail.
If the controller concludes an employment contract with an applicant, the data transmitted shall be stored for the purpose of processing the employment relationship in compliance with the legal provisions. 6 months after notification of the decision of refusal, if no employment contract is concluded between the controller and the applicant, the application documents shall be automatically deleted, provided that there are no other legitimate interests of the controller to the contrary or the applicant’s consent to further processing exists.
By submitting the application to us, applicants agree to the processing of their data for the purposes of the application procedure in accordance with the nature and scope set out in this data protection declaration.
The processing of the applicant data takes place in order to fulfil our (pre)contractual obligations within the application procedure within the meaning of Art. 6 para. 1 letter b GDPR, the application addressed to the person responsible takes place on a voluntary basis of the applicant within the meaning of Art. 6 para. 1 letter a GDPR.
1. Collaboration with processors and third parties
If we disclose, transfer or grant access to your personal data to other persons and companies (processors or third parties), (e.g. transfer of data to a third party such as a payment services provider pursuant to Article 6 (1) b GDPR for the purpose of contractual performance), this is always on the basis of a legal premise such as your consent, a statutory obligation or in our legitimate interest (e.g. when we use agents, web hosting service providers etc.).
When we engage processors to process data the data is always processed on the basis of Article 28 GDPR.
2. Transfers to third countries
If we transfer data to a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) for processing or to use third party services or if we disclose or transfer data to third parties, we do so because it is necessary to fulfil our (pre-)contractual obligations, to meet a legal obligation, because you have provided your consent or because it is in our legitimate interest to process the data. Subject to statutory or contractual permissions, we only process data or have data processed in a third country if the special requirements of Article 44 et seq. GDPR are met. Therefore, the data are only processed on the basis of special guarantees such as an official EU assessment of the adequacy of the level of data protection offered (e.g. “Privacy Shield” for the USA) or compliance with officially recognised special contractual obligations (so-called “standard contractual provisions”.
3. Incorporation of third party services and content
It is in our legitimate interest (i.e. in the interest of the analysis, optimisation and efficient operation of our website pursuant to Article 6 (1) f GDPR) to integrate third party content or services such as videos or fonts into our website (referred to in the following as “content”).
This is only possible with the third-party content provider’s knowledge of the user’s IP address, because without the IP address it would not be possible to send the content to the user’s browser. Without the IP address this content cannot be displayed. Whenever possible, we ensure that third-party content providers use only the IP address to provide the content. Some third-party content providers also use pixel tags (small blocks of code, also called web beacons) for statistical or marketing purposes. The pixel tags can evaluate information such as visitor traffic on our web pages. Other pseudonymous data can be stored in cookies on the user’s terminal and provide information about the user’s browser and operating system, referrer URLs, length of visit and other information about the use of our website and combine it with information from other sources.
We use hosting services to provide you with the following: infrastructure and platform services, processing capacity, storage space and database services, security services and technical maintenance services associated with the operation of this website.
We or our hosting services providers process inventory data, contact data, content data, contract data, usage data, meta data and communication data concerning customers, potential customers and visitors to this website. It is in our legitimate interest to process the data in order to provide an efficient and secure website pursuant to Article 6 (1) f GDPR in conjunction with Article 28 GDPR (conclusion of a contract with a processor).
5. Third party websites and data privacy
This website may contain links to third party websites. If you use one of the links to access a third-party website, please remember that we accept no responsibility or liability for third- party content or privacy policies. Please read the third-party providers’ privacy policies before transferring personal data to these websites. The operators of such linked websites are exclusively responsible for their content. When we programmed the links there was no indication that the content of the website accessed via the link failed to meet legal requirements or transgressed standards of public decency. Please inform us immediately if you access a third-party website via a link on our website which does not meet legal requirements or transgresses standards of public decency. The licence terms and term of use of the respective website operators apply.
1. SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
2. Objection to marketing e-mails
We prohibit use of the data published in the mandatory legal notice and transmissions of unsolicited advertising and information materials. The website operator expressly reserves the right to take legal action in the event that unsolicited advertising information, such as spam mails, is received.