Privacy Policy

 

This Privacy Policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “Data”) within our online offering and the associated websites, features, and content, as well as external online presences, such as our social media profiles. (Hereinafter collectively referred to as the “Online Offering”). With regard to the terms used, such as “processing” or “controller,” we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

 

Controller

Norbert Ritz

First German Escrow

Barbararing 30

41812 Erkelenz

02432 8912440

info@first-german-escrow.de

 

Types of data processed:

- Master data (e.g., names, addresses).

- Contact data (e.g., email, phone numbers).

- Content data (e.g., text entries, photographs, videos).

- Usage data (e.g., websites visited, interest in content, access times).

- Meta/communication data (e.g., device information, IP addresses).

 

Categories of data subjects

 

Visitors and users of the online service (hereinafter, we collectively refer to the data subjects as “users”).

 

Purpose of processing

 

- Provision of the online service, its functions, and content.

- Responding to contact requests and communicating with users.

- Security measures.

- Reach measurement/marketing

 

Terms used

 

“Personal data” refers to all information that relate to an identified or identifiable natural person (hereinafter referred to as the “data subject”); A natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

 

“Processing” means any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and encompasses virtually any handling of data.

 

“Controller” means the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data.

 

Applicable Legal Bases

In accordance with Article 13 of the GDPR, we are providing you with the legal bases for our data processing activities. Unless the legal basis is specified in the privacy policy, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 of the GDPR; the legal basis for processing to fulfill our services, carry out contractual measures, and respond to inquiries is Article 6(1)(b) of the GDPR; the legal basis for processing to fulfill our legal obligations is Article 6(1)(c) of the GDPR, and the legal basis for processing to safeguard our legitimate interests is Article 6(1)(f) of the GDPR. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) of the GDPR serves as the legal basis.

 

Cooperation with Data Processors and Third Parties

 

If, in the course of our processing, we disclose data to other individuals or companies (processors or third parties), transfer it to them, or otherwise grant them access to the data, this is done only on the basis of a legal (For example, if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6 para. 1 lit. b GDPR), if you have given your consent, if a legal obligation requires it, or on the basis of our legitimate interests (e.g., when using agents, web hosts, etc.).

 

If we commission third parties to process data on the basis of a so-called "data processing agreement," this is done in accordance with Art. 28 GDPR.

 

 

Rights of Data Subjects

 

You have the right to request confirmation as to whether or not personal data concerning you is being processed, and to access this data, as well as further information and a copy of the data, in accordance with Article 15 of the GDPR.

 

In accordance with Article 16 of the GDPR, you have the right to request the completion of incomplete personal data concerning you or the rectification of inaccurate personal data concerning you.

 

In accordance with Article 17 of the GDPR, you have the right to request that personal data concerning you be erased without undue delay, or alternatively, in accordance with Article 18 of the GDPR, to request the restriction of processing of your personal data.

 

You have the right to receive the personal data concerning you that you have provided to us, in accordance with Article 20 of the GDPR, and to request its transmission to another controller.

 

Furthermore, in accordance with Article 77 of the GDPR, you have the right to lodge a complaint with the competent supervisory authority.

 

 

 

Collection of Access Data and Log Files

 

We, or rather our hosting provider, collect data about every access to the server on which this service is located (so-called server log files) based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f GDPR. Access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address, and the requesting provider.

 

Log file information is stored for a maximum of 7 days for security reasons (e.g., to investigate misuse or fraud) and then deleted. Data whose further retention is required for evidentiary purposes is exempt from deletion until the final resolution of the respective incident.

 

 

Google Analytics

 

FGE does not use Google Analytics.

 

 

Google-Re/Marketing-Services

FGE does not use ( „Google-Marketing-Services”).