Privacy policy

How do we collect your data and what do we use it for?

(1) When you visit our pages, your IP address will be stored. This happens in a shortened form, we create statistics from it.

(2) We also have to process data to operate our website.

(3) In order to process your request, we need your contact details and request content.

(4) In order to continuously improve our website for you, we rely on the support of an analysis service.

(5) We have profiles in some social networks and can also see information from you.

(6) We cooperate with some service providers who may receive your data for the purpose.

Third-party analysis tools and tools

When you visit our website, your surfing behaviour can be statistically evaluated. This is done primarily with cookies and so-called analysis programs. The analysis of your browsing behaviour is usually anonymous; the browsing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information on this can be found in the following privacy policy.

You can object to this analysis. We will inform you about the possibilities of objection in this privacy policy.

Objection to promotional e-mails

​

The use of contact data published within the framework of the imprint obligation for sending unsolicited advertising and information materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example through spam e-mails.

2. Data protection officer

Legally required data protection officer

We have appointed a data protection officer for our company.

Mr. Florian Melzer, Dipl. Jur.
ecoprotec GmbH
19 Pamplona road
33106 Paderborn

E-mail: datenschutz@zalf.de

Phone: +49 5251 877 888-0

3. Data collection on our website

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

1. Browser type and browser version
2. operating system used
3. Referrer URL
4. Host name of the accessing computer
5. Time of the server request
6. IP address

This data will not be combined with other data sources.

This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the technically error-free presentation and optimization of our website – for this purpose, the server log files must be recorded.

Cookies and storage elements

We use some so-called cookies and other storage elements. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies are used to make our website more user-friendly, more effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognise your browser on your next visit.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.

Cookies and other storage elements that are necessary to carry out the electronic communication process or to provide certain functions you wish will be based on Art. 6 para. 1 lit. f GDPR. ZALF has a legitimate interest in the storage of cookies and other storage elements for the technically error-free and optimised provision of our services. If other cookies (e.g. Cookies for the analysis of your surfing behaviour) will be treated separately in this privacy policy.

Real Cookie Banner

If you contact us by e-mail, telephone or fax, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.

The processing of this data is based on Art. 6 para. 1 lit. b GDPR, if your request is contracted with the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and / or on our legitimate interests (Art. 6 para. 1 lit. f GDPR), since we have a legitimate interest in the effective processing of the requests addressed to us.

The data sent by you to us via contact requests will remain with us until you request its deletion, revoke your consent to its storage or the purpose for its storage no longer applies (e.g. after completion of your request). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.

Google

We use various services from Google. Google is a company of several companies. We will inform you which company is specifically responsible for the service used and the associated data processing with you in the respective service description. Unless otherwise stated in the following, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland is responsible for data processing.

By visiting our website, Google receives the information that you have accessed the corresponding subpage of our website. Unless described below, at least those under No. 3 transmitted data to Google. This happens regardless of whether Google provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish to be assigned to your profile on Google, you must log out before activating the button. Google stores your data as user profiles and may use it for the purposes of advertising, market research and/or the needs-based design of its services. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. Google transmits the data about your usage behaviour to Google LLC for independent processing by this.

Google can transmit your data to servers worldwide. This also affects locations in countries without an adequate level of data protection. For the data transfer to the USA, for example, Google has said. Standard data protection clauses according to Art. 46 para. 2 lit. c GDPR.

We have no influence on the further data processing by Google, beyond the purposes mentioned. The information provided therefore only represents our current state of knowledge.

For more information on data protection at Google, please visit:

https://policies.google.com/privacy.

You can find the possibility of objection to the use of data by Google here:

Opt-Out plugin: http://tools.google.com/dlpage/gaoptout?hl-en,

Settings for the display of advertisements at: https://adssettings.google.com/authenticated.

4. Other services

Mailchimp

This website uses MailChimp’s services to send newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

MailChimp is a service that can be used to organize and analyze the sending of newsletters. If you enter data for the purpose of subscribing to the newsletter (e.g. E-mail address), these are stored on MailChimp’s servers in the USA.

MailChimp has a certification according to the “EU-US Privacy Shield”. The “Privacy Shield” is an agreement between the European Union (EU) and the USA to ensure compliance with European data protection standards in the USA.

With the help of MailChimp we can analyse our newsletter campaigns. When you open an email sent with MailChimp, a file included in the e-mail connects (so-called web beacon) to the mail servers in the USA. This allows you to determine whether a newsletter message has been opened and which links may have been clicked. In addition, technical information is collected (e.g. Time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. They are used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

If you do not want an analysis by MailChimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website.

The data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from our servers as well as from MailChimp’s servers after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

For details, please refer to MailChimp’s privacy policy at: https://mailchimp.com/legal/terms/.

Completion of a data processing agreement

We have a so-called. “Data processing agreement” with MailChimp, in which we oblige MailChimp to protect the data of our customers and not to disclose it to third parties. This agreement can be viewed at the following link: https://mailchimp.com/legal/forms/data-processing-agreement/sample-agreement/.

5. Recipient

If not explained separately in the individual sections, we will forward your data internally to the responsible employees and, if necessary, to other recipients such as authorities, tax advisors, banks, lawyers, web hosts and other third parties typically involved in the processing of normal business processes. This data may also be passed on to third parties if it is necessary to pursue our claims or if there is a legal obligation to do so.

A transfer to third parties for independent use does not take place without your express consent and always follows the requirement of legality. All service providers are integrated in accordance with the requirements of the GDPR.

6. Delete

Your personal data will only be stored for as long as necessary for the purposes for which it was collected, including the fulfilment of legal accounting or reporting requirements.

We are legally obliged to keep basic information about our customers (including contact, identity and transaction data, business letters) for tax and commercial reasons for a period of six years after termination of the business relationship or ten years after the end of the current tax year in which the invoice was created (Sc.

In individual cases, separate deletion periods apply, which we then highlighted in the respective sections.

Under certain circumstances, you can request the deletion of your personal data: more information can be found in the section “Your rights”.

7. Your rights

In certain cases, you have the following rights in relation to your personal data:

Right to information (Art. 15 GDPR) about your personal data, which we process. Due to this right, you can receive a copy of your personal data stored by us and check whether we are legally processing this data.

Right to rectification (Art. 16 GDPR) of your personal data stored by us. Due to this right, you may have incomplete or incorrect data stored with us corrected, even if we may need to verify the accuracy, the new data you provide.

Right to erasure (Art. 17 GDPR) of your personal data. On the basis of this right, you can request us to delete or remove personal data if there is no valid reason for its further processing. You may also request us to delete or remove your personal data if you have successfully exercised your right to object to the processing (see below), if we have processed your data unlawfully or if we are obliged to delete local laws. For legal reasons, your request for deletion may not always be complied with, but this may be notified to you at the time of requesting it.

Right to restriction of processing (Art. 18 GDPR) of your personal data. On the basis of this right, you may ask us to suspend the processing of your personal data in the following cases: (a) if you want us to determine the accuracy of this data; (b) if we are unlawful with the use of the data, but you are against deletion; (c) if you want us to store the data longer than necessary for us, because

Right to transferability (Art. 20 GDPR) of your personal data to you or a third party. If you wish, we will provide you or a third party named by you with a copy of your personal data in a structured, commonly used, machine-readable format. However, this right only applies to automated data in which you originally consented or that were used to fulfil a contract with you.

Right to object to processing (Art. 21 GDPR) of your personal data. This right exists if we invoke a legitimate interest (or that of a third party) and if your particular situation leads you to object to the processing for this reason, since you see your fundamental rights and freedoms affected. You also have your right to object if your personal data is processed in order to conduct direct marketing. In some cases, we may prove compelling legitimate grounds for the processing that outweigh your rights and freedoms.

Law, not automated decision-making (Art. 22 GDPR) (including profiling) if you would significantly affect this. Since we do not participate in such activities, this right is not relevant in practice for your use of the website.

Right to revoke your consent at any time (Art. 7 para. 3 GDPR), if we need your consent to process your personal data. However, this has no effect on the lawfulness of the processing before withdrawing your consent. If you withdraw your consent, we may no longer be able to provide you with certain products, content or services. However, we will inform you about this at the time of the revocation.

Right to complain to a supervisory authority. The supervisory authority responsible for us is:

The State Commissioner for Data Protection and for the Right to File
Dagmar Hartge
Stahnsdorfer Damm 77
14532 Kleinmachnow

8. Changes to this privacy statement

This privacy policy may be updated or otherwise changed at any time. You will be informed of any changes to our privacy policy by posting the amended version on the website.

This version was last changed on the date shown below. Older versions can be requested from us.

Last Updated: 23.10 .2024