We take the task of protecting your personal data very seriously. Naturally, we always handle your personal data in accordance with the statutory data protection provisions. We have appointed an expert and reliable external data protection officer. The external data protection officer is provided by UIMC Dr. Voßbein GmbH & Co. KG. In the following, we will inform you on how your personal data are processed.
Collection and Processing of Personal Data
The Controller, under Art. 4 (7) of the GDPR, is Babtec Informationssysteme GmbH, Clausenstraße 21, 42285 Wuppertal, Germany (see our Imprint).
If you make contact with us, the data that you share with us (your address, e-mail address, if required your name and telephone number) will be saved by us in order to answer your queries. In the event that you have any questions, we offer you the option of contacting us via a form that is provided on our Internet presence. Here, certain data have been labeled “mandatory.” These data are necessary to allocate and answer the request. Any other data can be provided voluntarily. Data for the purpose of contacting us is processed in accordance with Art. 6 (1) a of the GDPR, based on your voluntary consent. We will erase the data that is procured in this context once it is no longer necessary to retain this data, or we will restrict its processing if there are no legal obligations to save this data.
If we need to mandate another service provider to fulfill individual functions of our offer and are obliged to forward your personal data to third parties at this juncture, we will provide you with detailed information on the relevant processes. Here, we will also state the set criteria for the duration that the data will be stored by the mandated third party.
If you wish to conclude a contract with us, you must state the personal data that we require to process your order. This is necessary in order to conclude the contract. We will process the data that you have provided in order to execute your order. To this end, we may forward your payment data to our affiliated bank. Art. 6 (1) sentence 1(b) of the GDPR forms the legal basis for this. This also applies for measures which are required in order to execute pre-contractual measures.
If it is necessary to process personal data in order to fulfill a legal obligation that our company is subject to, then this shall occur within the scope of Art. 6 (1) sentence 1(c) of the GDPR.
If processing is necessary for the purposes of protecting our legitimate interests or the legitimate interests of a third party and if your interests, fundamental rights and freedoms do not override these legitimate interests, then Art. 6 (1) sentence 1(f) of the GDPR shall form the legal basis for the processing. The legitimate interests of our company are, in principle, in rendering the services due and/or constant optimization of our services and presentations.
Due to trade and fiscal provisions, we are obligated to store your address, payment and order data in accordance with the statutory regulations. However, we will place limitations on processing after two years have lapsed. This means that your data will only be used in order to comply with legal obligations.
A Qube user account will be created upon first registration for BabtecQube. A name and e-mail address are required information for this. Further information can be optionally added to the user profile, or edited there, by the user themselves. Alternatively, the user can also register via an existing Microsoft Azure account and will be transferred to Microsoft for authentication.
If you use BabtecQube, we will save the personal data that we require in order to fulfill the order, including information on the payment method, until you permanently delete your access account. Furthermore, we will save the data that you have voluntarily provided for the period during which you use the portal, unless you erase this data before that point. Art. 6 (1) sentence 1(f) of the GDPR forms the legal basis for this.
If you use BabtecQube, your data may be rendered accessible to other participants in BabtecQube. Users who are not logged in will not receive any information on you. Personal data are visible for registered users within BabtecQube under the following conditions. If the user has been assigned a company account, the administrator of the company account can view the personal data that have been entered upon registration or which have subsequently been added voluntarily. Other users assigned to the company account can also view these data. Outside the company account, the personal data cannot, in principle, be viewed unless the user actively changes their privacy settings and enables the data to be viewed. When exchanging messages on behalf of a company, the name of the sender is forwarded/displayed.
Logging and Protocol Functions
Every time you access our Internet presence, a log is created and processed for statistical purposes. In this process, the individual users remain anonymous:
Based on our legitimate purpose in accordance with Art. 8 (1) f of the GDPR, we process the aforementioned data for the following purposes:
We reserve the right to inspect this data at a later date if concrete evidence of illegal use becomes known to us. As soon as the data is no longer required to fulfill the purpose, it is erased immediately. The longest period that your data will be kept for is six months - after this it will be erased.
Transfer of Data
As a rule, there will be no transfer to third parties for commercial or non-commercial purposes without your explicit consent. We will only transfer your personal data to third parties if this is legally permitted (for example based on Art. 6 of the GDPR) and/or necessary. We sometimes use service providers within the scope of processing orders in accordance with Art. 28 of the GDPR, particularly within the remit of hosting a web page and maintaining it. We remain fully responsible for processing the data. In some instances, we furthermore use plug-ins by other providers on our Internet presence; for more details on this, please see below.
Usage of SalesViewer® Technology
You can object to the collection and storage of your data at any time with effect for the future by clicking this link https://www.salesviewer.com/opt-out [external link], which prevents SalesViewer® from collecting your data within this website in future. In the process, an opt-out cookie for this website is installed on your device. If you delete cookies in this browser, you will need to click on this link again.
Liability for Own Content
The content of these pages has been created with the greatest possible care. We cannot, however, assume any liability for the accuracy, completeness, or currentness of the content. As a service provider, we are responsible for our own content on these pages under general law.
Liability for Links (Content of Third-party Providers)
Our own content is to be differentiated from cross-references (links) which are made available by other providers. We have no influence over their content; the particular provider or operator of the linked pages is always responsible for the content of its pages.
Rights of Data Subjects
We herewith inform you that you can exercise the following rights with us in accordance with Art. 15 et seq. of the GDPR under the conditions defined therein, to wit your right of access to the respective personal data and your right to rectification or to erasure or of restriction of processing or to object to data processing as well as the right to data portability. In addition, you also have the right to lodge a complaint with a data protection supervisory authority in accordance with Art. 77 of the GDPR if you are of the opinion that the processing of your personal data is in breach of this regulation. If processing is based on Art. 6 (1) a of the GDPR or Art. 9 (2) a of the GDPR (consent), you also have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Right of Access, Art. 15 of the GDPR
You have the right to obtain information on whether and to what extent your personal data are processed (particularly the purposes of the processing, recipients of the data, storage period etc.).
Right to Rectification, Art. 16 of the GDPR
You have the right to obtain rectification of your saved data if they are incorrect or incomplete. This also includes having incomplete data completed by supplementary statements or notifications.
Right to Erasure, Art. 17 of the GDPR
You have the right to obtain erasure of your personal data. This is possible, for example, if the data are no longer required for the purposes for which they were collected or if the data must be erased due to legal obligations. However, in individual cases, this right may be excluded.
Right to Restriction of Processing, Art. 18 of the GDPR
You have the right to restrict processing of your personal data. This is possible, for example, if your data have been recorded incorrectly or if processing of the data is executed unlawfully. In the event of restriction of processing, the data may only be processed in strictly defined cases.
Right to Data Portability, Art. 20 of the GDPR
You have the right to request that your personal data be handed over to yourself or any controller designated by yourself in any common electronic, machine-readable file format if you have provided the aforementioned data yourself.
Right to Object, Art. 21 of the GDPR
You have the right to object to processing of your personal data at any time on grounds relating to your particular situation, with future effect, insofar as the processing of the data is executed for the purposes of legitimate interests (see Art. 6 (1) sentence 1(e) and (f) of the GDPR). In the event of an objection, a check will be carried out in order to see whether the legal provisions which support processing of your data are present and, if this is not the case, any further processing of your data will be prohibited.
Right to Lodge a Complaint With a Data Protection Supervisory Authority, Art. 77 of the GDPR
You have the right to report any potential infringement of data protection regulations to the responsible supervisory authorities within the union or its member states at any time.
Contact Information for the Responsible Supervisory Authorities:
State Officer for Data Protection and Freedom of Information of North Rhine-Westphalia
40213 Düsseldorf, Germany
Tel.: +49 (0)211/38424-0
Amendments to our Data Protection Regulations
We reserve the right to occasionally amend this data protection statement to ensure that it is always in accordance with the current legal requirements or in order to implement changes to our services in the data protection statement, e.g. when introducing new services. Whenever you re-visit our site, the then current data protection statement shall apply.
Contact With the Data Protection Officer
If you have any questions with regard to the processing of your personal data, you can contact our data protection officer directly, who will also be available with his team in the event of requests for information, claims, or complaints.
The external data protection officer can be contacted
Dr. Jörn Voßbein (UIMC Dr. Vossbein GmbH & Co. KG)
Via post: Otto-Hausmann-Ring 113, 42115 Wuppertal, Germany
Via telephone: +49 202 946 7726 200
On our website, we employ various plug-ins from other service providers which we wish to inform you on in the following.
Web Analysis With Google Analytics
The website also uses the "demographic characteristics" function of Google Analytics. This enables us to make statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google as well as visitor data from third-party providers and is anonymised so that it cannot be assigned to a specific person. If you do not agree to this, you can deactivate this function via the ad settings in your Google account or object to the use of Google Analytics as described above.
You can opt-out to the creation of a user profile, Hotjar’s storing of data about your usage of our site and Hotjar’s use of tracking cookies on other websites by following this opt-out link.
Our website uses plug-ins from YouTube, a page operated by Google, for marketing purposes. The operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit our page that is equipped with a YouTube plug-in, this establishes a connection to YouTube’s servers. At this juncture, the IP addresses of the visitors to our website will be shared with the YouTube server, along with which of our sites you have visited, if you have given us your consent to collect and transfer of your personal data in accordance with Art. 6 (1) a of the GDPR. This occurs regardless of whether you have a YouTube user account or not. If you are logged into your YouTube account, you enable YouTube to directly allocate your surfing behavior to your personal profile. You can prevent this by logging out of your YouTube account.
In addition, we have integrated YouTube videos into our online offer. These videos are saved on www.youtube.com and can be played directly on our website. These are all integrated into the expanded data protection mode, meaning that no data on you as a user will be transferred to YouTube provided that you do not play the videos. Data is only transferred when you play the videos. We have no influence on how YouTube uses the data, it may also be used for creating usage profiles. Please procure information on this directly from YouTube and adjust your privacy settings there. Furthermore, by clicking on the play button, you give consent that YouTube can, if required, set cookies on the end device that you are using. These cookies can also serve to provide analysis of usage behavior for market research and marketing purposes. We do not have any influence on this data transfer.
For more information on how user data is handled, please refer to YouTube’s data protection statement at: https://www.google.de/intl/de/policies/privacy [external page].
Our website uses plug-ins from Vimeo for marketing purposes. The operator is Vimeo Inc. 555 West 18th Street, New York, New York 10011, USA. If you visit our page that is equipped with a Vimeo plug-in, this establishes a connection to Vimeo’s servers. At this juncture, the IP addresses of the visitors to our website will be shared with the Vimeo server, along with which of our sites you have visited, if you have given us your consent to collect and transfer of your personal data in accordance with Art. 6 (1) a of the GDPR. This occurs regardless of whether you have a Vimeo user account or not. If you are logged into your Vimeo account, you enable Vimeo to directly allocate your surfing behavior to your personal profile. You can prevent this by logging out of your Vimeo account.
In addition, we have integrated Vimeo videos into our online offer. These videos are saved on www.vimeo.com [external page] and can be played directly on our website. These are all integrated into the expanded data protection mode, meaning that no data on you as a user will be transferred to Vimeo provided that you do not play the videos. Data is only transferred when you play the videos. We have no influence on how Vimeo uses the data, it may also be used for creating usage profiles. Please procure information on this directly from Vimeo and adjust your privacy settings there. Furthermore, by clicking on the play button, you give consent that Vimeo can, if required, set cookies on the end device that you are using. These cookies can also serve to provide analysis of usage behavior for market research and marketing purposes. We do not have any influence on this data transfer.
For more information on how user data is handled, please refer to Vimeo’s data protection statement at: https://www.vimeo.com/privacy[external page].
We use a chat service (SaaS) provided by Userlike UG (haftungsbeschränkt), Probsteigasse 44-46, 50670 Cologne, Germany. You can use the chat like a contact form to chat with our employees almost in real time. When you start the chat, the following personal data is collected:
Depending on the course of the conversation with our staff, further personal data may be collected in the chat, which is entered by you. The nature of this data depends very much on your request or the problem you describe to us. The purpose of processing all of this data is to provide you with a fast and efficient means of contacting us and thus to improve our customer service.
All our employees have been and will be trained on data protection and how to handle customer data safely and confidentially. All our employees are bound to confidentiality and have signed an addendum in their employee contracts committing them to confidentiality and data protection.
By accessing our website, the chat widget of AWS Cloudfront is loaded. The chat widget technically represents the source code that runs on your computer and enables the chat.
In addition, Userlike stores the history of live chats for three months (90 calendar days). This serves the purpose of providing you with explanations regarding the history of the request under certain circumstances. The processing is therefore permitted according to Art. 6 para. 1 lit. f DSGVO. Upon request, the stored chats will be deleted by us immediately.
The storage of chat data also serves the purpose of ensuring the security of our information technology systems. This is also our legitimate interest, which is why the processing is permitted under Art. 6 (1) f DSGVO.
Further information can be found in the data protection provisions of Userlike UG (haftungsbeschränkt) at https://userlike.com/de/terms#privacy-policy [external link].
In certain instances, we use the reCAPTCHA service from the company Google LLC in accordance with Art. 6 (1) f of the GDPR (legitimate interests) in order to ensure sufficient data security for transferring forms. Above all, this serves to discern whether information has been entered by a natural person or has been entered by machine or automated processing, constituting misuse. If you visit one of our websites which has a reCAPTCHA integrated into it, your personal data, such as your IP address, screen and window resolution, set browser language, time zone, installed browser plug-ins and, if required, further data that Google needs for the reCAPTCHA, among other elements, will be collected and transferred to Google. The data protection provisions of Google LLC apply here. You can find further information on Google LLC’s data protection guidelines on http://www.google.de/intl/de/privacy [external link] or https://www.google.com/intl/de/policies/privacy/ [external link].
Web Analysis Using the LinkedIn Insight Tag (Opt-In Solution)
The data will be encrypted, anonymized within seven days and erased within 90 days. LinkedIn shall not forward the personal data to us, the operator of this website. LinkedIn only offers summary reports on the website target groups and the advertisement performance. LinkedIn also offers retargeting for website visitors so that advertisements from us can be shown to you on websites that you visit.
If you have agreed to processing of your personal data by using the LinkedIn Insights tag and wish to revoke your consent at a later point in time, you can do this by changing your browser settings. LinkedIn members can also, as an alternative, control how their data is used for advertising purposes via their account settings. Click on the following link to the LinkedIn page for this: https://www.linkedin.com/start/join?session_redirect=https%3A%2F%2Fwww%2Elinkedin%2Ecom%2Fpsettings%2Fadvertising%2Factions-that-showed-interest&trk=login_reg_redirect [external link].
Instagram Ads (Opt-In Solution)
This website uses Instagram Ads, a service from Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA, via which sponsored advertising content is published on the Instagram platform in order to reach a greater, more targeted audience, when you have given us your consent to do so when visiting our website, in accordance with Art. 6 (1) a of the GDPR. Within the scope of Instagram Ads, we use retargeting, which enables us to analyze the activities of visitors to our website on and outside of Instagram and Facebook, to analyze their location and other demographic data such as age, sex and language of our website visitors and their interests, e.g. apps that they use, advertisements that they have clicked on or accounts that they have subscribed to and to find new people that are similar to the existing customers in order to show them targeted advertising.
If you have agreed to processing of your personal data by using Instagram Ads and wish to revoke your consent at a later point in time, you can do this by changing your browser settings.
Instagram is a Facebook Inc. company. Therefore, you can deactivate the Instagram marketing function via https://www.facebook.com/settings/?tabs=ads# [external link] when you log into your Facebook account, as an alternative. Information on how you can generally deactivate interest-based online advertising from Instagram, Facebook and other companies participating in the European Interactive Digital Advertising Alliance without having a user account for the relevant social media can be found on http://www.youronlinechoices.eu/ [external link].
You can find further information on the data processing that Facebook carries out via Instagram on https://help.instagram.com/519522125107875 [external link].
Google Tag Manager
For information on how to withdraw your consent to the processing of your data by the respective tags, please refer to the section on the respective tag listed in this data protection statement.
Facebook Marketing Pixel (Opt-In Solution)
We process information on the activities of the website visitors outside of Facebook via the Facebook Pixel. This concerns, among other elements, information on the website visitor’s device, the websites visited, purchases made, ads that the website user sees and information on how the visitor uses our website. This occurs regardless of whether the visitor to our website has a Facebook account or is logged into Facebook.
If you have agreed to processing of your personal data by using the Facebook Marketing Pixel is and wish to revoke your consent at a later point in time, you can do this by changing your browser settings.
Alternatively, you can deactivate the Facebook Marketing Function as a logged in Facebook user at https://www.facebook.com/settings/?tab=ads# [external link]. Information on how you can generally (when you do not have a Facebook account, for example) deactivate interest-based online ads from Facebook and other companies participating in the European Interactive Digital Advertising Alliance can be found under: http://www.youronlinechoices.eu/ [external link].
You can find further information on the data processing that Facebook carries out on https://www.facebook.com/about/privacy [external link].