Data protection declaration

We are pleased about your visit to our internet site www.kirchenbankpolster.de and your interest in our enterprise. Protection of your personal data is an important matter for us. Personal data means information about personal or factual situations of a determined or determinable natural entity. For example, this includes the civilian name, the address, the telephone number and the date of birth, but also all other data which can be related to a determinable person.
As personal data enjoy special legal protection, they are only collected by us to the extent that this is necessary for the provision of our internet site and the rendering of our service. Below, we show you the personal information which we collect during your visit to our internet site and the way we use it.
Our data protection practice is in harmony with the statutory regulations, in particular those of the Federal Data Protection Act (BDSG), the Telemedia Act (TMG) and the European General Data Protection Regulation (GDPR). We will exclusively collect, process and store your personal data to the extent that this is necessary for functional provision of this internet site and our contents and services and also to process inquiries and, if applicable, to handle orders / contracts, but in each case only to the extent that a legitimate interest within the meaning of Art. 6 subsection 1 sentence lit. f GDPR or any other situation of permission exists. Only if you have granted your separate consent beforehand will we use your data for further-reaching purposes precisely stipulated in the consent, e.g. for the dispatch of advertising information by newsletter.

1. Controller within the meaning of Art. 4 no. 7 GDPR

The controller within the meaning of the GDPR and other national data protection acts of the Member States and other data protection law directives is:

P. R. Havener GmbH
Torschlag 1
66740 Saarlouis

Email: info@havener.de
Tel.: +49 (0) 6831 / 85 239
Fax: +49 (0) 6831 / 86 526

2. Provision of the website and production of log files

Whenever our internet site is accessed, our system automatically collects data and information from the accessing computer's system. The following data are collected in this context:

Scope of processing of data

(1) Information about the type of browser and the version used
(2) The operating system of the accessing appliance
(3) The IP address of the accessing appliance
(4) Date and time of the access
(5) Websites and resources (images, files, further contents of page) accessed on our internet site.
(6) Websites from which the user's system came to our internet site (referrer tracking)

These data are stored in our system's log files. These data are not stored together with personal data from a specific user, with the result that identification of individual visitors to the site does not take place.


- Legal basis of the processing of personal data
Art. 6 subsection 1. lit. f GDPR (legitimate interest). Our legitimate interest entails guaranteeing achievement of the purpose described below.

- Purpose of data processing
Logging is done to maintain the compatibility of our website for as many visitors as possible and to combat misuse and to remedy disturbances. For this, logging the technical data of the accessing computer is necessary, in order to be able to react to portrayal errors, attacks on our IT systems and/or errors in functionality of our internet site as early as possible. In addition, the data help us to optimise the website and generally to ensure the security of our information technology systems.

- Duration of storage
The aforementioned technical data are erased as soon as they are no longer needed in order to ensure the compatibility of the internet site for all visitors, albeit no more than 3 months after the access to our internet site.

- Possibility of objection and removal
The possibilities of objection and removal are based on the general regulations on data protection law objection rights and claims to erasure described below in this data protection declaration.

3. Specific functions of the internet site

Our site provides you with various functions, in the use of which we collect, process and store personal data. Below, we explain what happens to these data:

 

  • Contact form(s):

    -Scope of the processing of personal data
    The data input by you in our contact forms.

    - Legal basis for the processing of personal data
    Art. 6 subsection 1 lit. a GDPR (tacit consent)

    - Purpose of the data processing
    We shall only use the input obtained via our contact form(s) for the processing of the specific contact inquiry received through the contact form.

    - Duration of storage
    After processing of your inquiry, the data collected are erased without delay to the extent that no statutory archiving periods exist.

    - Possibility of objection and removal
    The possibilities of objection and removal are based on the general regulations on data protection law objection rights and claims to erasure described below in this data protection declaration.


4. Statistical evaluation of the visits to this internet site - web tracker

We collect, process and store the following data when this internet site or individual files of the internet site are accessed: IP address, website from which the file was accessed, name of the file, date and time of the access, quantity of data transmitted and report on the success of the access (so-called web log). We exclusively use these access data in a non-personalised form for permanent improvement of our internet offer and for statistical purposes.
We additionally use the following web trackers for evaluation of the visits to this internet site:

  • Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing

On our website, we use a web tracking service of the Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Irland (hereinafter: Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing). Within the framework of the web tracking, Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing uses cookies, which are stored on your computer and which make an analysis of the use of our website and of your surfing behaviour possible (so-called tracking). We make this analysis on the basis of the tracking service of Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing in order permanently to optimise our internet offer and to make it available better. As part of the use of our website, data such as, in particular, your IP address and your user activities are transmitted to servers of the Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing enterprise and processed and stored outside the European Union, e.g. in the USA. The legal basis for the data processing is Art. 6 subsection 1 lit. a GDPR. Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing has certified itself as part of the EU-US privacy shield agreement (cf. https://www.privacyshield.gov/list ). The data are erased as soon as the purpose of their collection has been fulfilled. Further information on the handling of the transmitted data can be seen in the Google Googleadservices / Google AdWords Conversion / Google Dynamic Remarketing data protection declaration: https://policies.google.com/privacy . You can prevent the collection (in particular the IP address) and processing of your data by deactivating implementation of script code in your browser or installing a script blocker in your browser (to be found, for example, under www.noscript.net o r www.ghostery.com ) or activating the "Do Not Track" setting in your browser.

  • Google Analytics

- Scope of the processing of personal data
On our site, we use the web tracking service of the Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Irland (hereinafter: Google Analytics). As part of the web tracking, Google Analytics uses cookies, which are stored on your computer and which make an analysis of the use of our website and of your surfing behaviour possible (so-called tracking). We make this analysis on the basis of the tracking service of Google Analytics in order permanently to optimise our internet offer and to make it available better. As part of the use of our website, data such as, in particular, your IP address and your user activities are transmitted to servers of the Google Analytics enterprise and processed and stored outside the European Union, e.g. in the USA.
The EU Commission has established that a suitable level of data protection can exist in the USA if the enterprise processing the data has subjected itself to the US-EU Privacy Shield agreement and the data export to the USA has been designed admissibly in this way. By activation of IP anonymisation within the Google Analytics tracking code of this internet site, your IP address is anonymised by Google Analytics before transmission. This website uses a Google Analytics tracking code extended by the gat._anonymizeIp(); operator in order to enable only an anonymised recording of IP address (so-called IP masking).

- Legal basis for the processing of personal data
Art. 6 subsection 1 lit. a GDPR (consent) either within the framework of registration with Google (opening of a Google account and acceptance of the implemented data protection references) or, if you have not registered with Google, by explicit consent when you open our site.

- Purpose of the data processing
By our order, Google will use this information in order to evaluate your visit to this internet site, to collate reports about the website activities and in order to render further services connected with the use of the website and of the internet for us. The IP address transmitted by your browser within the framework of Google Analytics is not put together with other data of Google LLC.

- Duration of storage
Google will store the data relevant for the provision of web tracking as long as it is necessary in order to fulfil the web service which has been booked. Data recording and storage are done anonymised. But to the extent that a personal reference does exist, the data are erased without delay to the extent that they are not subject to statutory archiving duties. In such a case, they are erased after the expiry of the archiving period.

- Possibility of objection and removal
You can prevent recording and forwarding of the personal data to Google (in particular your IP address) and the processing of these data by Google by deactivating the implementation of script code in your browser, installing a script blocker in your browser (to be found, for example, under www.noscript.net or www.ghostery.com ) or activating the "Do Not Track" setting in your browser. In addition, you can prevent the recording of the data generated by the Google cookies and relative to your use of the website (incl. your IP address) to Google and processing of these data by Google by downloading and installing the browser plug-in available under the following link ( http://tools.google.com/dlpage/gaoptout?hl=de ). You will find the safety and data protection principles of Google Analytics under https://policies.google.com/privacy


5. Incorporation of external web services and processing of data outside the EU

On our internet site, we use active Java Script contents from external providers, so-called web services. When our internet site is accessed, these external providers may receive personal information about your visit to our internet site. In this context, processing of data outside the EU may be possible. You can prevent this by installing a Java Script blocker, e.g. the 'NoScript' browser plug-in ( www.noscript.net ) or deactivating Java Script in your browser. This may result in limitations of function on internet sites which our visit.
We use the following external web services:

  • Google-Apis

On our website, a web service of the Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Irland (hereinafter: Google Apis) is downloaded. We use these data in order to guarantee complete functionality of our website. In this context, your browser will possibly transmit personal data to Google Apis. The legal basis of the data processing is Art. 6 subsection 1 lit. f GDPR. The legitimate interest entails error-free functioning of the internet site. Google Apis has certified itself as part of the EU-US privacy shield agreement (cf. www.privacyshield.gov/list ). The data are erased as soon as the purpose of the collection has been fulfilled. Further information on the handling of the transmitted data can be seen in the Google-Apis data protection declaration: www.google.com/intl/de/policies/privacy/ . You can prevent the collection and processing your data by Google-Apis by deactivating implementation of script code in your browser or installing a script blocker in your browser (to be found, for example, under www.noscript.net o r www.ghostery.com ).

  • gstatic

On our website, a web service of the Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Irland (hereinafter: gstatic) is downloaded. We use these data in order to guarantee complete functionality of our website. In this context, your browser will possibly transmit personal data to Google Apis. The legal basis of the data processing is Art. 6 subsection 1 lit. f GDPR. The legitimate interest entails error-free functioning of the internet site. gstatic has certified itself as part of the EU-US privacy shield agreement (cf. www.privacyshield.gov/list ). The data are erased as soon as the purpose of the collection has been fulfilled. Further information on the handling of the transmitted data can be seen in the gstatic data protection declaration: www.google.com/intl/de/policies/privacy/ . You can prevent the collection and processing your data by gstatic by deactivating implementation of script code in your browser or installing a script blocker in your browser (to be found, for example, under www.noscript.net or www.ghostery.com ).

  • Vimeo

On our website, a web service of the Vimeo enterprise, Inc., 555 West 18th Street, 10011 New York (hereinafter: Vimeo) is downloaded. If you have activated Java Script in your browser and have not installed a Java Script blocker, your browser might transmit personal data to: Vimeo). Further information on the handling of the transmitted data can be seen in the Vimeo data protection declaration: vimeo.com/privacy . You can prevent the collection and processing your data by Vimeo by deactivating implementation of script code in your browser or installing a script blocker in your browser (to be found, for example, under www.noscript.net or www.ghostery.com ).

  • website-check.de

On our website, a web service of the Website-Check GmbH enterprise, Beethovenstraße 24 in 66111 Saarbrücken, DE (hereinafter: website-check.de) is downloaded. We use these data in order to guarantee complete functionality of our website. In this context, your browser will possibly transmit personal data to website-check.de. The legal basis of the data processing is Art. 6 subsection 1 lit. f GDPR (legitimate interest). The legitimate interest entails error-free functioning of the internet site.
The data are erased as soon as the purpose of the collection has been fulfilled. You can find further information on the handling of the transmitted data in the website-check.de data protection declaration: www.website-check.de/datenschutzerklaerung/ . You can prevent the collection and processing your data by website-check.de by deactivating implementation of script code in your browser or installing a script blocker in your browser (to be found, for example, under www.noscript.net or www.ghostery.com ).


6. Information about the use of cookies

  • Scope of the processing of personal data

We use cookies on various pages in order to enable the use of certain functions of our website. The so-called "cookies" are small text files which your browser can place on your computer. These text files contain a characteristic sequence of characters which enables unambiguous identification of the browser when you access our website again. The process of placing a cookie file is also referred to as "setting a cookie".

  • Legal basis for the processing of personal data

Art. 6 subsection 1 lit. f GDPR. (legitimate interest). Our legitimate interest entails maintaining complete functioning of the internet site, increasing operability and enabling individual addressing of the customers. Identification of individual visitors to the site with the help of cookie technology is only possible if the visitor to the site has provided us with matching personal data on the basis of a separate consent.

  • Purpose of the data processing

The cookies are set by our website in order to maintain full functionality of our internet site and to improve operability. In addition, the cookie technology enables us to recognise individual visitors again by pseudonyms, e.g. an individual, arbitrary ID, with the result that it is possible for us to offer more individual services.

  • Duration of storage

Our cookies are stored until they are deleted in your browser or, if it is a question of a session cookie, until the session has finished.

  • Possibility of objection and removal

You can adjust your browser according to your wishes such that you generally prevent the setting of cookies, are only informed about them. You can then decide on the acceptance of cookies from case to case or accept cookies as a matter of principle. Cookies can be used for various purposes, e.g. to recognise that you PC has already had a connection to our web offer (persistent cookies) or in order to store the last offers which were looked at (session cookies). We use cookies in order to offer you increased user comfort. So that you can use our comfort functions, we recommend that you allow acceptance of cookies for our web offer. In addition, the possibilities of objection and removal are based on the general regulations on data protection law objection rights and claims to erasure described below in this data protection declaration.


7. Data security and data protection, communication by e-mail

Your personal data are protected by technical and organisational measures when they are collected, stored and processed such that they are not accessible to third parties. If communication by e-mail is not encrypted, complete data security on the transmission path to our IT systems cannot be guaranteed by us, with the result that we recommend encrypted communication or the postal service for information with a high need for non-disclosure.


8. Automatic e-mail archiving

  • Scope of the processing of personal data

We expressly point out that our mail system possesses an automated archiving procedure. All incoming and outgoing e-mails are digitally archived secure against editing.

  • Legal basis for the processing of personal data

Art. 6 subsection 1 lit. f GDPR (legitimate interest). Our legitimate interest entails compliance with fiscal law and commercial law requirements (e.g. §§ 146, 147 German Fiscal Code).

  • Purpose of the data processing

The purpose of the archiving entails compliance with fiscal law and commercial law requirements (e.g. §§ 146, 147 German Fiscal Code AO).

  • Duration of storage

Our mail communication is stored until the expiry of fiscal law and commercial law archiving periods. The archiving period can be up to 10 years.

  • Possibility of objection and removal

In addition, we point out that we exclusively consider application documents in a PDF format. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and not delivered. Applications in Word and other file formats are not considered and are deleted without being read. Please consider the fact that application documents transmitted by mail without encryption can possibly be opened by third parties before they arrive in our IT systems. We presuppose that we are also allowed to reply to unencrypted application mails in an unencrypted form. If you do not want this, please make reference to this in your application mail.


9. Withdrawal of consents - data information and change requests – erasure and blockage of data

You have a right to free-of-charge information about your stored data and, if applicable, a right to rectification, blockage or erasure of these data at regular intervals. Your data are then erased by us at first request if no statutory regulations contradict. You can therefore withdraw permission granted to us to use your personal data at any time. You can send requests for information, erasure and rectification of your data and also any suggestions you may have to the following address at any time:

P. R. Havener GmbH
Torschlag 1
66740 Saarlouis

Email: info@havener.de
Tel.: +49 (0) 6831 / 85 239
Fax: +49 (0) 6831 / 86 526

10. Right to data portability

You have the claim that we provide you with the data concerning you, which you have transmitted to us, in a structured, commonly used and machine-readable format. Additionally, you can demand that we transmit these data without delay to a third party at your first instruction to the extent that processing is based on a consent according to Art. 6 subsection 1 lit. a GDPR or Art. 9 subsection 2 lit. a GDPR or on a contract according to Art. 6 subsection 1 lit. b GDPR and the processing is done by us within the framework of an automated data processing.
When exercising this right of data portability, you further have the right to have the personal data concerning you transmitted directly by one controller to another controller to the extent that this is technically feasible. Other persons' freedoms and rights may not be impaired as a result of this.
The right to data portability does not apply to processing of personal data which is necessary for performing a task carried out in the public interest or in the exercise of official authority vested in the controller.


11. Right of complaint to the supervisory authority according to Art. 77 subsection 1 GDPR

If you have the suspicion that your data are processed unlawfully on our site, you can naturally have the problem clarified judicially at any time. Independent of this, you have the possibility of contacting a supervisory authority. The right of complaint accrues to you in the EU Member State of your place of residence, your workplace and/or the place of the alleged breach, i.e. you can choose the supervisory authority which you contact at the aforementioned places. The supervisory authority to which the complaint is submitted then informs you about the status and the outcome of your complaint, including the possibility of an effective judicial remedy pursuant to Art. 78 GDPR.

Produced by:
© IT-Recht-Kanzlei DURY – www.dury.de
© Website-Check GmbH – www.website-check.de