DATA PROTECTION

We are very pleased about your interest in our company. Data protection is of particular importance for the management of PMC Private Medical Center Private Practice Dr. med. med. Thomas Turczynsky. Use of the websites of PMC Private Medical Center Dr. med. Thomas Turczynsky is basically possible without any personal data. However, if a data subject wishes to use our company's special services through our website, personal data processing may be required. If the processing of personal data is required and there is no legal basis for such processing, we generally seek the consent of the data subject.

The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is always in accordance with the General Data Protection Regulation and in accordance with the privacy policy of PMC Private Medical Center Dr. med. Thomas Turczynsky applicable country-specific privacy policy. Through this privacy policy, our company seeks to inform the public about the nature, scope and purpose of the personal information we collect, use and process. Furthermore, data subjects are informed of their rights under this privacy policy.

The PMC Private Medical Center Dr. med. Thomas Turczynsky, as controller, has implemented numerous technical and organizational measures to ensure the most complete protection possible for personal data processed through this website. Nevertheless, Internet-based data transmissions can generally have security holes, so that absolute protection can not be guaranteed. For this reason, every person concerned is free to submit personal data to us by alternative means, for example by telephone.

1. Definitions

The Privacy Policy of PMC Private Medical Center Dr. med. Thomas Turczynsky is based on the terminology used by the European legislature and legislature in the adoption of the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand, both for the public and for our customers and business partners. To ensure this, we would like to explain in advance the terminology used.

Among other things, we use the following terms in this privacy policy:

  • a) Personal data

    Personal data means any information relating to an identified or identifiable natural person (hereinafter the "data subject"). A natural person is considered to be identifiable who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person can be identified.

  • b) The person concerned

    Affected person is any identified or identifiable natural person whose personal data is processed by the controller.

  • c) Processing

    Processing is any process or series of operations performed with or without the aid of automated processes in connection with personal data, such as collecting, organizing, organizing, storing, adapting or modifying, reading, querying, using, disclosure through submission, dissemination or any other form of provision, reconciliation or association, restriction, erasure or destruction.

  • d) Restriction of processing

    Restriction of the processing is the marking of stored personal data with the aim to limit their future processing.

  • e) Profiling

    Profiling is any type of automated processing of personal data that involves the use of such personal information to evaluate certain personal aspects relating to a natural person, in particular aspects relating to job performance, economic situation, health, personal To analyze or predict preferences, interests, reliability, behavior, whereabouts, or relocation of that natural person.

  • f) Pseudonymisation

    Pseudonymisation is the processing of personal data in such a way that personal data can no longer be attributed to a specific data subject without the need for additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that the personal data not assigned to an identified or identifiable natural person.

  • g) Data controller

    The controller or controller is the natural or legal person, public authority, body or body that, alone or in concert with others, decides on the purposes and means of processing personal data. Where the purposes and means of such processing are determined by Union law or the law of the Member States, the controller or the specific criteria for his designation may be provided for under Union or national law.

  • h) Processor

    A processor is a natural or legal person, public authority, body or body that processes personal data on behalf of the controller.

  • i) Receiver

    Recipient is a natural or legal person, agency, agency or other entity to whom Personal Data is disclosed, whether or not it is a third party. However, authorities which may receive personal data under Union or national law in connection with a particular mission are not considered to be beneficiaries.

  • j) Third

    A third is a natural or legal person, public authority, body or body other than the data subject, the controller, the processor and the persons authorized under the direct responsibility of the controller or processor to process the personal data.

  • k) Agreement

    Consent is any expression of will voluntarily and unambiguously made by the data subject in the form of a statement or other unambiguous confirmatory act expressing to the data subject that they consent to the processing of the personal data concerning them is.

2. Name and address of the controller

The person responsible within the meaning of the General Data Protection Regulation, other data protection laws in the Member States of the European Union and other provisions with data protection character is:

PMC Private Medical Center Dr. med. Thomas Turczynsky Warnemünder Straße 8 14199 Berlin Germany Fon: +49 (0) 30 897 47 04 20 Mail: praxis(ät)privatfachaerzte.de Website: www.privatfachaerzte.de

3. Name and address of the data protection officer

The data protection officer of the controller is:

Dipl. med. Jörg Lorenz PMC Private Medical Center Dr. med. Thomas Turczynsky Warnemünder Straße 8 14199 Berlin Germany Fon: +49 (0) 30 897 47 04 20 Mail: datenschutz(ät)privatfachaerzte.de Website: www.privatfachaerzte.de

Any data subject can contact our data protection officer at any time with any questions or suggestions regarding data protection.

4. Cookies

The websites of PMC Private Medical Center Dr. med. Thomas Turczynsky use cookies. Cookies are text files that are stored and stored on a computer system via an Internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited websites and servers to distinguish the individual's browser from other Internet browsers that contain other cookies. A particular Internet browser can be recognized and identified by the unique cookie ID.

Through the use of cookies, PMC Private Medical Center Dr. med. med. Thomas Turczynsky provide users of this website with more user-friendly services that would not be possible without the cookie setting.

By means of a cookie the information and offers on our website can be optimized in the sense of the user. Cookies allow us, as already mentioned, to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies need not reenter their credentials every time they visit the website because this is done by the website and the cookie stored on the user's computer system. Another example is the cookie of a shopping cart in the online shop. The online shop remembers the items that a customer has placed in the virtual shopping cart via a cookie.

The data subject can prevent the setting of cookies through our website at any time by means of a corresponding setting of the Internet browser used and thus permanently contradict the setting of cookies. Furthermore, already set cookies can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

5. Collecting general data and information

The PMC Private Medical Center website collects a series of general data and information each time the website is accessed by an affected person or an automated system. This general data and information is stored in the log files of the server. The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrers), (4) the sub-web pages, which can be accessed via (5) the date and time of access to the website, (6) an Internet Protocol (IP) address, (7) the Internet service provider of the accessing system and (8) other similar data and information used in the event of attacks on our information technology systems.

By using this general data and information PMC Private Medical Center Dr. med. Thomas Turczynsky no conclusions about the person concerned. Rather, this information is required to (1) properly deliver the contents of our website, (2) to optimize the content of our website and to promote it, (3) to ensure the continued functioning of our information technology systems and the technology of our website, and (4) to provide law enforcement authorities with the necessary information for prosecution in case of a cyberattack. This anonymously collected data and information is provided by PMC Private Medical Center. On the one hand, Thomas Turczynsky was therefore statistically and further evaluated with the aim of increasing data protection and data security in our company in order to ultimately ensure the best possible level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by an affected person.

6. Routine deletion and blocking of personal data

The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of the storage or, if so required by the European directives and regulations or any other legislator in laws or regulations, that of the controller subject to was provided.

If the storage purpose is omitted or if a storage period prescribed by the European directives and regulations or any other relevant legislature expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

7. Rights of the concerned person

  • a) Right to confirmation

    Each data subject has the right, as granted by the European Directive and Regulatory Authority, to require the controller to confirm whether personal data relating to him / her is being processed. If an affected person wishes to exercise this right of confirmation, they can contact an employee of the controller at any time.

  • b) Right to information

    Any person affected by the processing of personal data shall have the right granted by the European legislature and the legislature at any time to obtain free information from the controller on the personal data stored about him and a copy of that information. In addition, the European legislator and regulator has provided the data subject with the following information:

    • the processing purposes
    • the categories of personal data being processed
    • the recipients or categories of recipients to whom the personal data have been disclosed or are still being disclosed, in particular to recipients in third countries or to international organizations
    • if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
    • the existence of a right to rectification or erasure of the personal data concerning them, or to the limitation of the processing by the controller or a right to object to such processing
    • the existence of a right of appeal to a supervisory authority
    • if the personal data are not collected from the data subject: All available information about the origin of the data
    • the existence of automated decision-making including profiling in accordance with Article 22 (1) and (4) of the GDPR and - at least in these cases - meaningful information on the logic involved, and the scope and intended impact of such processing on the data subject

    Furthermore, the data subject has a right of access as to whether personal data has been transmitted to a third country or to an international organization. If this is the case, the person concerned is, moreover, have the right to obtain information about the appropriate safeguards in connection with the submission.

    If a data subject wishes to avail himself of this right to information, he may, at any time, contact an employee of the controller.

  • c) Right to rectification

    Any person affected by the processing of personal data has the right granted by the European legislator to demand the immediate correction of inaccurate personal data concerning him. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.

    If an affected person wishes to exercise this right of rectification, they may, at any time, contact an employee of the controller.

  • d) Right to cancellation (right to be forgotten)

    Any person affected by the processing of personal data shall have the right granted by the European Directives and Regulators to require the controller to immediately delete the personal data concerning him, provided that one of the following reasons is satisfied and the processing is not required:

    • The personal data has been collected for such purposes or otherwise processed for which they are no longer necessary.
    • The data subject revokes the consent on which the processing was based on Article 6 (1) (a) of the GDPR or Article 9 (2) (a) of the GDPR and lacks any other legal basis for the processing.
    • According to Art. 21 (1) of the GDPR, the data subject objects to the processing and there are no legitimate reasons for the processing or the data subject objects to the proceedings pursuant to Art. 21 (2) GDPR Processing.
    • The personal data was processed unlawfully.
    • The deletion of personal data is necessary to fulfill a legal obligation under Union or national law, to which the controller is subject.
    • The personal data were collected in relation to information society services offered in accordance with Art. 8 para. 1 GDPR.

    If any of the above applies, and a data subject deletes personally identifiable information from PMC Private Medical Center Private. med. Thomas Turczynsky, at any time, they can contact an employee of the controller. The employee of the PMC Private Medical Center private practice med. Thomas Turczynsky will arrange that the extinguishing request be fulfilled immediately.

    Did the personal data of PMC Private Medical Center Dr. med. Thomas Turczynsky is made public and if our company is responsible for the deletion of personal data as the person responsible according to Art. 17 para. 1 GDPR, then PMC Private Medical Center Dr. med. Thomas Turczynsky shall, taking into account available technology and implementation costs, take appropriate measures, including technical ones, to inform other data controllers processing the published personal data that the data subject is deleted by these other data controllers has requested any links to such personal data or copies or replications of such personal data, unless the processing is required. The employee of the PMC Private Medical Center Dr. med. Thomas Turczynsky will arrange the necessary in individual cases.

  • d) Restriction of processing

    Any person affected by the processing of personal data shall have the right granted by the European Directives and Regulators to require the controller to immediately delete the personal data concerning him, provided that one of the following reasons is satisfied and the processing is not required:

    • The accuracy of the personal data is contested by the data subject for a period of time that enables the person responsible to verify the accuracy of the personal data.
    • The processing is unlawful, the data subject refuses to delete the personal data and instead requests the restriction of the use of personal data.
    • The controller no longer needs the personal data for processing purposes, but the data subject requires them to assert, exercise or defend legal claims.
    • The person concerned has objection to the processing acc. Art. 21 para. 1 DS-GVO and it is not yet clear whether the legitimate reasons of the person responsible outweigh those of the person concerned.

    Provided one of the above conditions is met and an affected person restricts the personal data collected at PMC Private Medical Center Dr. med. Thomas Turczynsky, may at any time contact an employee of the controller. The employee of the PMC Private Medical Center Dr. med. Thomas Turczynsky will cause the restriction of processing.

  • f) Right to data portability

    Any person affected by the processing of personal data shall have the right granted by the European Directive and Regulatory Authority to receive the personal data concerning him / her provided to a controller by the data subject in a structured, common and machine-readable format. It also has the right to transmit this data to another person responsible without hindrance by the controller to whom the personal data was provided, provided that the processing is based on the consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 para 2 (a) of the GDPR or on a contract pursuant to Article 6 (1) (b) of the GDPR and processing by means of automated procedures, unless the processing is necessary for the performance of a task of public interest or in the exercise of official authority, which has been assigned to the controller.

    Furthermore, in exercising their right to data portability under Article 20 (1) of the GDPR, the data subject has the right to obtain that the personal data is transmitted directly from one controller to another, where technically feasible and if so this does not affect the rights and freedoms of others.

    To assert the right to data portability, the data subject can at any time contact an employee of PMC Private Medical Center Dr. med. Thomas Turczynsky apply.

  • g) Right to objection

    Any person concerned by the processing of personal data shall have the right conferred by the European directive and regulatory authority at any time, for reasons arising from its particular situation, against the processing of personal data relating to it pursuant to Article 6 (1) (e) or (f) GDPR takes an objection. This also applies to profiling based on these provisions.

    The PMC Private Medical Center Dr. med. Thomas Turczynsky no longer processes personal data in the event of an objection, unless we can prove compelling legitimate grounds for processing that outweigh the interests, rights and freedoms of the data subject, or the processing is for the purpose of asserting, exercising or defending legal claims.

    Processes PMC Private Medical Center Dr. med. Thomas Turczynsky personal data to operate direct mail, the data subject has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to the profiling, as far as it is associated with such direct mail. Does the data subject object to PMC Private Medical Center Dr. med. Thomas Turczynsky of processing for purposes of direct mail, so the PMC Private Medical Center Dr. med. Thomas Turczynsky no longer process the personal data for these purposes.

    In addition, the data subject has the right, for reasons that arise from their particular situation, against the processing of personal data relating to them that occurs at the PMC Private Medical Center Dr. med. Thomas Turczynsky for scientific or historical research purposes or for statistical purposes pursuant to Art. 89 (1) of the GDPR, object to opposition unless such processing is necessary to fulfill a task of public interest.

    In order to exercise the right of opposition, the person concerned may directly contact any member of the PMC Private Medical Center Dr. med. Thomas Turczynsky or another employee. The data subject is also free, in the context of the use of information society services, notwithstanding Directive 2002/58/EC, to exercise his right of opposition by means of automated procedures using technical specifications.

  • h) Automated decisions in individual cases including profiling

    Any person concerned with the processing of personal data shall have the right granted by the European directive and regulatory authority not to be subject to a decision based solely on automated processing, including profiling, which has a legal effect on it or, in a similar manner, significantly affects it; unless the decision (1) is necessary for the conclusion or performance of a contract between the data subject and the controller, or (2) permitted by Union or Member State legislation to which the controller is subject, and that legislation provides for appropriate measures to safeguard the rights and freedoms and the legitimate interests of the data subject; or (3) with the express consent of the data subject.

    If the decision (1) is required for the conclusion or the performance of a contract between the person concerned and the person responsible or (2) it takes place with the express consent of the person concerned, the PMC Private Medical Center Dr. med. Thomas Turczynsky shall take appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject, including at least the right to obtain the intervention of a person by the controller, to express his / her own position and to contest the decision.

    If the data subject wishes to rely on automated decision-making rights, they may, at any time, contact an employee of the controller.

  • i) Right to revoke a data protection consent

    Any person affected by the processing of personal data has the right, granted by the European directive and regulatory authority, to revoke consent to the processing of personal data at any time.

    If the data subject wishes to assert their right to withdraw consent, they may, at any time, contact an employee of the controller.

8. Data protection for applications and in the application process

The controller collects and processes the personal data of applicants for the purpose of processing the application process. Processing can also be done electronically. This is particularly the case if an applicant sends the relevant application documents to the person responsible for processing by electronic means, for example by email or via a web form on the website. If the controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the data controller does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after the announcement of the rejection decision, provided that there are no other legitimate interests of the data controller contrary to deletion. Other legitimate interest in this sense is, for example, an obligation to provide evidence in a procedure under the General Equal Treatment Act (AGG).

9. Data protection regulations for the application and use of Facebook

The controller of this site has integrated components of the Facebook company on this website. Facebook is a social network.

A social network is a social meeting point operated on the Internet, an online community that usually enables users to communicate with each other and to interact in virtual space. A social network can serve as a platform for exchanging opinions and experiences or enables the internet community to provide personal or company-related information. Facebook enables the users of the social network, among other things, to create private profiles, upload photos and network via friendship requests.

Facebook is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If an affected person lives outside the USA or Canada, the person responsible for processing personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.

Every time one of the individual pages of this website is accessed, which is operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the Internet browser on the information technology system of the person concerned is automatically activated by the respective Facebook Component causes a representation of the corresponding Facebook component to be downloaded from Facebook. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE As part of this technical process, Facebook receives knowledge of which specific subpage of our website is visited by the person concerned.

If the data subject is logged in to Facebook at the same time, Facebook recognizes each time our website is accessed by the data subject and for the entire duration of their stay on our website, which specific subpage of our website the data subject visits. This information is collected by the Facebook component and assigned to the respective Facebook account of the person concerned by Facebook. If the person concerned presses one of the Facebook buttons integrated on our website, for example the "Like" button, or if the person concerned makes a comment, Facebook assigns this information to the person's personal Facebook user account and stores this personal data.

Facebook always receives information via the Facebook component that the data subject has visited our website if the data subject is logged in to Facebook at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook, he or she can prevent the transmission by logging out of their Facebook account before accessing our website.

The data policy published by Facebook, which is available at https://de-de.facebook.com/about/privacy/ provides information about the collection, processing and use of personal data by Facebook. It also explains which setting options Facebook offers to protect the privacy of the data subject. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress data transmission to Facebook.

10. Data protection provisions on the application and use of Google Analytics (with anonymization function)

The controller has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analytics service. Web analysis is the collection, collection and evaluation of data about the behavior of visitors to websites. A web analysis service collects data, among other things, from which website a data subject came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. A web analysis is mainly used to optimize a website and for the cost-benefit analysis of internet advertising.

The operating company of the Google Analytics component is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.

Der für die Verarbeitung Verantwortliche verwendet für die Web-Analyse über Google Analytics den Zusatz „_gat._anonymizeIp“. Mittels dieses Zusatzes wird die IP-Adresse des Internetanschlusses der betroffenen Person von Google gekürzt und anonymisiert, wenn der Zugriff auf unsere Internetseiten aus einem Mitgliedstaat der Europäischen Union oder aus einem anderen Vertragsstaat des Abkommens über den Europäischen Wirtschaftsraum erfolgt.

The purpose of the Google Analytics component is to analyze visitor flows on our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website.

Google Analytics setzt ein Cookie auf dem informationstechnologischen System der betroffenen Person. Was Cookies sind, wurde oben bereits erläutert. Mit Setzung des Cookies wird Google eine Analyse der Benutzung unserer Internetseite ermöglicht. Durch jeden Aufruf einer der Einzelseiten dieser Internetseite, die durch den für die Verarbeitung Verantwortlichen betrieben wird und auf welcher eine Google-Analytics-Komponente integriert wurde, wird der Internetbrowser auf dem informationstechnologischen System der betroffenen Person automatisch durch die jeweilige Google-Analytics-Komponente veranlasst, Daten zum Zwecke der Online-Analyse an Google zu übermitteln. Im Rahmen dieses technischen Verfahrens erhält Google Kenntnis über personenbezogene Daten, wie der IP-Adresse der betroffenen Person, die Google unter anderem dazu dienen, die Herkunft der Besucher und Klicks nachzuvollziehen und in der Folge Provisionsabrechnungen zu ermöglichen.

The cookie is used to store personal information, such as the access time, the location from which access was made and the frequency of visits to our website by the person concerned. Every time you visit our website, this personal data, including the IP address of the internet connection used by the data subject, is transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties.

The person concerned can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting of the internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the information technology system of the person concerned. In addition, a cookie already set by Google Analytics can be deleted at any time via the internet browser or other software programs.

Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the person concerned must download and install a browser add-on under the link https://tools.google.com/dlpage/gaoptout This browser add-on tells Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. Google considers the installation of the browser add-on to be an objection. If the information technology system of the data subject is deleted, formatted or reinstalled at a later point in time, the data subject must reinstall the browser add-on to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the person concerned or another person who is within their sphere of influence, there is the option of reinstalling or reactivating the browser add-on.

Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/ genauer erläutert.

11. Legal basis for processing

Art. 6 I lit. a GDPR serves our company as the legal basis for processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of any other service or consideration, the processing is based on Art. 6 I lit. b GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation that requires the processing of personal data, such as to fulfill tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our company were injured and his name, age, health insurance data or other vital information had to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d GDPR.
Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if processing is necessary to safeguard the legitimate interests of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject do not outweigh them. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, he considered that a legitimate interest could be assumed if the data subject is a customer of the person responsible (recital 47 sentence 2 GDPR).

12. Legitimate interests in the processing that are being pursued by the controller or a third party

Is the processing of personal data based on Article 6 I lit. f GDPR is our legitimate interest in carrying out our business for the benefit of all our employees and our shareholders.

13. Duration for which the personal data is stored

The criterion for the duration of the storage of personal data is the respective legal retention period. After the period has expired, the corresponding data will be routinely deleted, provided that it is no longer required to fulfill or initiate a contract.

14. Legal or contractual regulations for the provision of personal data; Necessity for the conclusion of the contract; Obligation of the data subject to provide the personal data; possible consequences of not providing

We will inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information about the contract partner).
Sometimes it may be necessary to conclude a contract that a data subject provides us with personal data that we subsequently have to process. For example, the person concerned is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide personal data would result in the contract not being concluded with the person concerned.
Before the data subject provides personal data, the data subject must contact one of our employees. Our employee clarifies the person concerned on a case-by-case basis whether the provision of the personal data is required by law or contract or is required for the conclusion of the contract, whether there is an obligation to provide the personal data and the consequences of not providing the personal data.

15. Existence of automated decision making

As a responsible company, we do not use automatic decision-making or profiling.

This data protection declaration was created by the data protection declaration generator of the DGD German Society for Data Protection GmbH, which works as an external data protection officer for Upper Bavaria, in cooperation with the data protection lawyers of the law firm WILDE BEUGER SOLMECKE | Lawyers created.