+49 (0) 40 52 47 89 02-0 info@bestviso.com

Privacy Policy

BESTVISO GmbH Data Protection Policy

We appreciate your interest in our company. Data protection is of particularly great significance for the management of BESTVISO GmbH. Generally, it is possible to use the BESTVISO GmbH websites without furnishing any Personal Data (as defined below). Insofar as the Data Subject (as defined below) wishes to avail himself or herself of our company’s particular services via our website, it is possible, however, that the processing of Personal Data will be necessary. If it is necessary to process Personal Data and if no legal basis exists for such processing, then BESTVISO GmbH will generally secure the data subject’s consent.

The processing of Personal Data, e.g., the name, address, email address, or telephone number of a Data Subject, shall always be effected in accordance with the European Union’s General Data Protection Regulation (the “GDPR”) and in agreement with the country-specific data protection regulatory provisions applicable to BESTVISO GmbH. By means of this Data Protection Policy, our company wishes to inform the public concerning the nature, scope, and purpose of the Personal Data collected, used, and processed by us. Furthermore, by means of this Data Protection Policy, the rights to which Data Subjects are entitled shall be clarified to the Data Subjects.

As Controller (as defined below) for the processing, BESTVISO GmbH has implemented numerous technical and organizational measures in order to ensure the most comprehensive, seamless protection of the Personal Data processed over this website. Nevertheless, internet-based data transfers can, as a general matter, manifest security gaps, such that absolute protection cannot be guaranteed. For this reason, every Data Subject (as defined below) has the discretion to transfer Personal Data to us via alternative routes, e.g., over the telephone.

1. Definition of terms

The Data Protection Policy of BESTVISO GmbH is based on terms used by the European drafters of directives and regulations in the course of promulgating the General Data Protection Regulation (GDPR). Our Data Protection Policy should be readable and comprehensible, in a straightforward manner, for the public as well as for our clients and business partners. In order to guarantee such, at the outset we would like to outline the terminology used.

In this Data Protection Policy, we use, among others, the following terms:

a) Personal Data

 “Personal Data” means any information relating to an identified or identifiable natural person (the “Data Subject,” as defined below); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

b) Data Subject

The “Data Subject” is every identified or identifiable natural person whose Personal Data are processed by the Controller (as defined below) responsible for the processing.

c) Processing

Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

d) Restriction of Processing

Restriction of Processing” means the marking of stored Personal Data with the aim of limiting their processing in the future.

e) Profiling

Profiling” means any form of automated processing of Personal Data consisting of the use of Personal Data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

f) Pseudonymization

Pseudonymization” means the processing of Personal Data in such a manner that the Personal Data can no longer be attributed to a specific Data Subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the Personal Data are not attributed to an identified or identifiable natural person.

g) Controller or Controller for the Processing

Controller” or “Controller for the Processing” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data. If the purposes and means of such processing are determined by Union or Member State law, then the Controller or the specific criteria for its nomination may be provided for by Union or Member State law.

h) Processor

Processor” means a natural or legal person, public authority, agency, or other body engaged in processing Personal Data on behalf of the Controller.

i) Recipient

Recipient(s)” means a natural or legal person, public authority, agency or another body, to which the Personal Data are disclosed, whether a third party or not. However, public authorities which may receive Personal Data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as Recipients.

j) Third Party

Third Party” means a natural or legal person, public authority, agency, or body, other than the Data Subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process Personal Data.

k) Consent

Consent” of the Data Subject means any freely given specific, informed, and unambiguous indication of the Data Subject’s wishes by which he or she, by a statement or a clear affirmative action, signifies agreement to the processing of Personal Data relating to him or her.

2. Name and address of the Controller for the Processing

The Controller within the meaning of (i) the GDPR, (ii) any other data protection laws applicable in the Member States of the European Union, and (iii) any other provisions having a data-protection character is:

BESTVISO GmbH
Anckelmannsplatz 1
EG, Aufgang C
D-20537 Hamburg
Germany
T. +49 40 xxxx
Email: info@bestviso.com
Website: www.bestviso.com

3. Cookies

BESTVISO GmbH’s websites use cookies. Cookies are text data files that are deposited and stored on a computer system using a web browser.

Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique label of the cookie, consisting of a character sequence through which websites and servers can classify the specific web browser on which the cookie has been stored. This makes it possible for the websites visited and for the servers to distinguish the individual browser of the Data Subject from other web browsers that contain other cookies. A particular web browser can be recognized and identified through the unique cookie ID.

By using cookies, BESTVISO GmbH can provide users of this website with user-friendlier services that would not be possible without the cookie setting.

By means of a cookie, information and offers on our website can be user-optimized. As already mentioned, cookies make it possible for BESTVISO GmbH to recognize users of our website. The purpose of such recognition is to make using our website easier for users. For example, the user of a website that uses cookies does not have to enter his or her access data each time he or she visits the website, because these access data are managed by the website and by the cookie deposited on the user’s computer system. An additional example is the online shop’s shopping basket cookie. The online shop uses a cookie to note which articles a customer has placed into the virtual shopping basket.

By means of the appropriate setting on the web browser used, the Data Subject can prevent cookies from being set by BESTVISO GmbH’s website, and, by extension, permanently object to having cookies set. Furthermore, cookies already set can be erased at any time through a web browser or other software programs. Such is possible in all web browsers currently in use. If the Data Subject deactivates cookies from being set in the web browser used, then under certain circumstances, not every function of BESTVISO GmbH’s website will be usable to the fullest possible extent.

4. Recording of general data and information

Each time BESTVISO GmbH’s website is retrieved by a Data Subject or by an automated system, BESTVISO GmbH’s website records a series of general data and information. These general data and information are stored in the log files of the server. The following can be recorded: (1) the browser types and versions being used, (2) the operating system being used by the system gaining access, (3) the website from which a system gaining access reaches our website (so-called referrer), (4) the subpages which are directed to our website through a system gaining access, (5) the date and time access is gained to the website, (6), an Internet protocol address (IP address), (7) the Internet service provider of the system gaining access, and (8) any other similar data and information that serve to avert hazards in the event of attacks on our IT systems.

In the course of using these general data and this information, BESTVISO GmbH does not draw any inferences about the Data Subject. Rather, this information is needed (1) to properly deliver the content of our website, (2) to optimize the content of our website as well as the website’s advertising, (3) to guarantee the ongoing functionality of our IT systems and of the technology of our website, as well as (4) to provide the criminal justice authorities, in the event of a cyberattack, with information needed for prosecution. These anonymously collected data and this anonymously collected information are therefore evaluated by BESTVISO (i) statistically and (ii) with the objective of increasing data protection and data security in our company in order to ensure an optimal level of protection for the Personal Data processed by us. The anonymous data of the server log files are stored separately from all of the Personal Data furnished by the Data Subject.

5. Subscription to our newsletter

On BESTVISO GmbH’s website, users are provided the opportunity to subscribe to the company newsletter. The specific Personal Data to be transferred to the Controller for the Processing in the course of ordering the newsletter are determined by the input screen used for this purpose.

Through a newsletter, BESTVISO GmbH informs its clients and business partners at regular intervals about the company’s offers. Our company’s newsletter can generally be received by the Data Subject only if the Data Subject (1) has a valid email address, and (2) registers to have the newsletter sent. For legal reasons, when the Data Subject’s email address is entered for the first time, a confirmation email is sent, using the double opt-in procedure. This confirmation email serves the purpose of reviewing whether the holder of the email address, as the Data Subject, has authorized receipt of the newsletter.

Additionally, in the course of newsletter registration, BESTVISO GmbH stores (i) the IP address assigned by the Internet service provider (“ISP”) of the computer system used by the Data Subject as of the date of the registration, and (ii) the date and the time of registration. Collection of these data is necessary in order to be able to reconstruct any (possible) subsequent misuse of the Data Subject’s email address, and therefore serves the purpose of legally protecting the Controller for the Processing.

The Personal Data collected in the course of subscribing to the newsletter are used exclusively for the purpose of sending our newsletter. Furthermore, subscribers to the newsletter might be informed insofar as such is necessary for operating the newsletter service or for registration relating to such, as such could be the case in the event of changes to the newsletter offering or in the event of any change in technical circumstances. The Personal Data collected in the course of the newsletter services are not shared with third parties. Any subscription to our newsletter can be canceled by the Data Subject at any time. It is possible to withdraw, at any time, the consent to the storage of Personal Data issued to us by the Data Subject for purposes of sending the newsletter. Each newsletter is furnished with a corresponding link for the purpose of withdrawing consent. Furthermore, it is possible to unsubscribe from the newsletter at any time on the website of the Controller for the Processing or to inform the Controller for the Processing of such via other means.

6. Newsletter tracking

BESTVISO GmbH’s newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails that have been sent in HTML format, in order to enable log data files to be recorded and analyzed. In this manner, a statistical evaluation can be conducted of the success or failure of online marketing campaigns. By means of the embedding tracking pixels, BESTVISO GmbH can detect whether and when an email has been opened by a Data Subject and which of the links in the email have been retrieved by the Data Subject.

Personal Data collected through the tracking pixels contained in the newsletters are stored and evaluated by the Controller for the Processing in order to optimize transmission of the newsletter and to continue to better adapt the content of future newsletters to the interests of the Data Subjects. These Personal Data shall not be shared with any third parties. At any time, Data Subjects have the right to withdraw the consent declaration separately given in this regard via the double opt-out procedure. After any withdraw, these Personal Data shall be erased by the Controller for the Processing. Unsubscribing from receipt of the newsletter shall be automatically construed by BESTVISO GmbH as a withdrawal.

7. Contact over the website

Based on regulatory provisions of law, the BESTVISO GmbH website contains information that enables contact to be rapidly made with BESTVISO GmbH, as well as direct communication with BESTVISO GmbH, which likewise encompasses a general address of the so-called electronic mail (email). Insofar as a Data Subject initiates contact with the Controller for the Processing via email or a contact form, the Personal Data transferred by the Data Subject shall be automatically stored. Such Personal Data transferred on a voluntary basis by a Data Subject to the Controller for the Processing shall be stored for purposes of contacting or handling queries from the Data Subject. These Personal Data shall not be shared with third parties.

8. Subscription of comments in the blog on the website

In general, third parties can subscribe to comments made in the BESTVISO GmbH blog. In particular, it is possible for a commentator to subscribe to the commentaries following his or her commentary to a particular blog contribution.

Insofar as the Data Subject opts to subscribe to comments, the Controller for the Processing will send an automatic confirmation email in order to review, using the double opt-in procedure, whether the holder of the email address entered has really opted for such. The option to subscribe to comments can be terminated at any time.

9. Routine erasure and blocking of Personal Data

The Controller for the Processing processes and stores Personal Data of the Data Subject only (i) for the period of time which is necessary for the purpose of attaining the purpose of storage or (ii) insofar as such has been intended by the drafters of the European directives and regulations or by other lawmakers in laws or regulations to which the Controller for the Processing is subject.

If the storage purpose no longer exists or if a storage period prescribed by the drafters of European directives and regulations or by another competent lawmaker expires, then the Personal Data, as a routine matter and in a manner commensurate with statutory rules and regulations, shall be blocked or erased.

10. Rights of the Data Subject

a) Right of confirmation

Each Data Subject has the right, granted by the drafters of European directives and regulations, to demand from the Controller for the Processing a confirmation of whether the Personal Data concerning the Data Subject is being processed. If a Data Subject wishes to avail himself or herself of this right of confirmation, then for this purpose he or she can contact an employee of the Controller for the Processing at any time.

b) Right to access

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to receive from the Controller of the Processing, at any time and at no charge, access to the stored Personal Data concerning his or her person and to receive a copy of this accessed information. Furthermore, the drafters of the European directives and regulations have accorded the Data Subject the access to the following information:

  • the purposes of the processing;
  • the categories of personal data concerned;
  • the Recipients or categories of Recipients to whom the Personal Data have been or will be disclosed, in particular Recipients in third countries or international organizations;
  • where possible, the envisaged period for which the Personal Data will be stored, or, if not possible, the criteria used to determine that period;
  • the existence of the right to request from the Controller rectification or erasure of Personal Data or restriction of processing of Personal Data concerning the Data Subject, or to object to such processing;
  • the right to lodge a complaint with a supervisory authority;
  • where the Personal Data are not collected from the Data Subject: any available information as to their source;
  • the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
  • In addition, the Data Subject is entitled to a right of access concerning whether Personal Data have been transferred into a third country or to an international organization. Insofar such is the case, the Data Subject shall moreover be entitled to the right to receive access to information concerning the appropriate guarantees in connection with said transfer;
  • If a Data Subject wishes to avail himself or herself of this right of access, then for this purpose he or she can contact an employee of the Controller for the Processing at any time.

c) Right to rectification

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to request rectification without undue delay of incorrect Personal Data concerning him or her. Furthermore, taking into account the purposes of the processing, the Data Subject shall have the right to have personal data completed, including by means of providing a supplementary statement.

If a Data Subject wishes to avail himself or herself of this right to rectification, then for this purpose, he or she can contact an employee of the Controller for the Processing at any time.

d) Right to erasure (the right to be forgotten)

Each Data Subject whose data are being processed has the right granted by the drafters of European directives and regulations to request from the Controller that the Personal Data concerning the Data Subject be erased without undue delay, insofar as one of the following grounds applies and to the extent that the processing is not necessary:

  • the Personal Data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • the Data Subject withdraws consent on which the processing is based according to point (a) of Article 6(1), or point (a) of article 9(2) GDPR, and where there is no other legal ground for the processing;
  • the Data Subject objects to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or the Data Subject objects to the processing pursuant to Article 21(2) GDPR;
  • the Personal Data have been unlawfully processed;

The Personal Data have to be erased for compliance with a legal obligation pursuant to Union or Member State law to which the Controller is subject.

The Personal Data have been collected in relation to the offer of the information society services referred to in Article 8(1) GDPR.

Insofar as one of the reasons set forth above is applicable and a Data Subject wishes to arrange for the erasure of Personal Data stored at BESTVISO GmbH, the Data Subject can contact an employee of the Controller of the Processing for this purpose at any time. The BESTVISO GmbH employee shall arrange compliance with the erasure request without undue delay.

If the Personal Data have been made public by BESTVISO GmbH, and if our company is obligated as a Controller as contemplated by Article 17(1) GDPR to erase the Personal Data, then BESTVISO GmbH shall take appropriate measures, also of a technical nature, taking into consideration the technology available and the implementation costs, in order to inform other Controllers for the Processing who are processing the Personal Data, that the Data Subject has requested from said other Controllers for the Processing the erasure of all links to these Personal Data or of copies or duplicates of these Personal Data, to the extent that the processing is not required. The employees of BESTVISO GmbH shall arrange the necessary steps in the individual case.

e) Right to restriction of processing

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to request from the Controller the restriction of the Processing, if any of the following preconditions are met:

  • the accuracy of the Personal Data is contested by the Data Subject, for a period enabling the Controller to verify the accuracy of the Personal Data;
  • the Processing is unlawful and the Data Subject opposes the erasure of the Personal Data and requests the restriction of their use instead;
  • the Controller no longer needs the Personal Data for the purposes of the Processing, but the Personal Data are required by the Data Subject for the establishment, exercise, or defense of legal claims;
  • the data subject has objected to processing pursuant to Article 21(1) GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.

Insofar as one of the preconditions set forth above is present and a Data Subject wishes to request the restriction of Personal Data that are stored at BESTVISO GmbH, the Data Subject can contact an employee of the Controller for the Processing at any time. The BESTVISO GmbH employee shall arrange for the restriction of the Processing.

f) Right to data portability

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to receive the Personal Data concerning the Data Subject, which data have been provided to the Controller by the Data Subject, in a structured, commonly used, and machine-readable format. Moreover, the Data Subject hast he right to transfer these data to another Controller without hindrance from the Controller to whom the Personal Data have been provided, insofar as (i) the Processing is based upon consent as contemplated by Article 6(1)(a) GDPR or Article 9(2)(a) GDPR or upon a contract as contemplated by Article 6(1)(b) GDPR and (ii) the Processing is effected with the assistance of automated procedures, insofar as the Processing (1) is not required for the discharge of an assignment, (2) is in the public interest, or (3) is effected in the exercise of public authority that has been transferred to the Controller.

Furthermore, the Data Subject has the right, in the exercise of the Data Subject’s right to data portability as contemplated by Article 20(1) GDPR, to effect the transfer of the Personal Data directly from one Controller to another Controller—to the extent that such is technically feasible and insofar as no rights and freedoms of other persons are deleteriously affected thereby.

For the purpose of asserting the right to data portability, the Data Subject can contact a BESTVISO GmbH employee at any time.

g) Right to object

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to object at any time—on grounds relating to his or her particular situation—to the Processing of Personal Data concerning the Data Subject, which Processing is effected based upon Article 6(1)(e) or (f) GDPR. The foregoing is also applicable to any profiling resting upon these regulatory provisions.

In the event of objection, BESTVISO GmbH shall no longer process the Personal Data, unless (i) BESTVISO GmbH shall be able to demonstrate compelling grounds for the Processing deserving of protection, which grounds override the interests, rights, and freedoms of the Data Subject, or (ii) the Processing serves the assertion, exercise, or defense of legal claims.

If BESTVISO GmbH processes Personal Data in order to conduct direct advertising, then the Data Subject shall have the right to lodge an objection at any time against the Processing of the Personal Data for the purpose of such advertising. Such shall also apply to any profiling, to the extent that it is directly connected with such direct advertising. If the Data Subject lodges an objection with BESTVISO GmbH to the Processing for the purpose of direct advertising, then BESTVISO GmbH shall no longer process the Personal Data for these purposes.

In addition to such, the Data Subject has the right, on grounds relating to his or her particular situation, to lodge an objection against the Processing of Personal Data concerning the Data Subject, which Processing is effected at BESTVISO GmbH for (i) purposes of scientific or historical research or (ii) statistical purposes as contemplated by Article 89(1) GDPR, unless such Processing is necessary for the purpose of performance of a carried for reasons of public interest.

For the purpose of exercising the right to object, the Data Subject can directly contact any BESTVISO GmbH employee, or any other employee. Further, the Data Subject has the option, in connection with the use of services of the information society—notwithstanding Directive 2002/58/EC—to exercise his or her right to object by automated means using technical specifications.

h) Automated individual decision-making, including profiling

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations not to be subject to a decision based solely on automated processing—including profiling—which produces legal effects concerning him or her or similarly exerts deleterious effects upon him or her, insofar as the decision (1) is not necessary for enter into, or performance of, a contract between the Data Subject and the Controller, or (2) is authorized by Union or Member State law to which the Controller is subject and which also lays down suitable measures to safeguard the Data Subject’s rights and freedoms and legitimate interests, or (3) is based on the Data Subject’s explicit consent.

If the decision (1) is necessary for entering into or fulfilling a contract between the Data Subject and the Controller or (2) is effected with the express consent of the Data Subject, then BESTVISO GmbH shall take appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the Data Subject—at a minimum, the right to obtain human intervention on the part of the Controller in order for the Data Subject to express his or her point of view and to contest the decision.

If the Data Subject wishes to assert rights in regards to automated decisions, then for this purpose, the Data Subject can contact an employee of the Controller for the Processing at any time.

i) Right to withdraw consent given pursuant to data protection law

Each Data Subject whose data are being processed has the right granted by the drafters of the European directives and regulations to withdraw, at any time, any consent for the purpose of Processing of Personal Data.

If the Data Subject wishes to assert his or her right to withdraw consent, then for this purpose he or she can contact an employee of the Controller for the Processing at any time.

11. Data protection provisions concerning the deployment and use of Facebook

The Controller for the Processing has integrated components of the company Facebook into this website. Facebook is a social media network.

A social media network is a social meeting place or online community, operated on the Internet, which as a rule enables its users to communicate with one another and to interact with one another in a virtual space. A social media network can serve as a platform for exchanging opinions and experiences, or it can make it possible for the Internet community to furnish personal or company-related information. Among other things, Facebook enables the users of its social media network create personal profiles, to upload photographs, and to network through “friending” requests.

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. The Controller for the Processing of Personal Data—if a Data Subject lives outside the United States of America or Canada—is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Each retrieval of one of the individual pages of this website operated by the Controller for the Processing and upon which a Facebook component (Facebook plug-in) has been integrated shall cause the web browser on the information-technology system of the Data Subject to automatically download a representation of the corresponding Facebook components. An overall view concerning all Facebook plug-ins can be retrieved at https://developers.facebook.com/docs/plugins/?locale=en. In the course of this technical procedure, Facebook obtains knowledge of the specific sub-page of our website that is being visited by the Data Subject.

Insofar as the Data Subject is simultaneously logged onto Facebook, then Facebook, through each retrieval of our website by the Data Subject and during the entire period of each visit to our website, recognizes which specific subpage of website is being visited by the Data Subject. This information is gathered by the Facebook components and is assigned by Facebook to the Data Subject’s respective Facebook account. If the Data Subject clicks on one of the Facebook buttons integrated onto BESTVISO GmbH’s website, e.g., the “like” button, or if the Data Subject writes a comment, then Facebook assigns this information to Data Subject’s personal Facebook user account and stores these Personal Data.

Through the Facebook components, Facebook thus always obtains information to the effect that the Data Subject has visited our website, provided that the Data Subject is simultaneously logged onto Facebook as of the point in time our website has been retrieved; this takes place independently of whether or not the Data Subject clicks on the Facebook components. If the Data Subject does not desire any such transfer of information to Facebook, then the Data Subject can prevent the transfer by logging out of his or her Facebook account prior to retrieving our website.

The data policy published by Facebook, retrievable at the following link: https://www.facebook.com/about/privacy/ provides information about the collection, Processing, and use of Personal Data by Facebook. Further clarified there are the possible settings offered by Facebook for the purpose of protecting the privacy of the Data Subject. Additionally, there are various applications available that make it possible to suppress data transfer to Facebook. Such applications can be used by the Data Subject to suppress any data transfer to Facebook.

12. Data protection provisions governing the use and deployment of Google Analytics (with anonymization function)

The Controller for the Processing has integrated onto this website components of Google Analytics (with anonymization function). Google Analytics is a web analysis service. Web analysis consists of the collection, gathering, and evaluation of data concerning the behavior of visitors to websites. A web analysis service collects, among others, data concerning the website from which a Data Subject has arrived at a given website (so-called referrer), which subpages of the website are being accessed, or how often how long a subpage has been viewed. A web analysis is deployed primarily for the purpose of optimizing a website and of cost-benefit analysis of Internet advertising.

The company operating the Google Analytics components is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The Controller for the Processing uses the suffix “_gat._anonymizeIp” for the web analysis via Google Analytics. By means of this suffix, the IP address of the Internet connection of the Data Subject is abbreviated and anonymized by Google, if our websites are accessed from a Member State of the European Union or from another contracting state of the Agreement on the European Economic Area.

The purpose of the Google Analytics components is to analyze visitor traffic on our website. Google uses the data and information obtained for the purpose of, among other things, evaluating the use of our website, in order to compile online reports showing activities on our websites and to render additional services in conjunction with the use of our website.

Google Analytics places a cookie on the Data Subject’s information-technology system. The nature and purpose of cookies has been previously explained above. Placement of the cookie makes it possible for Google to conduct an analysis of the use of our website. Each retrieval of an individual page of this website, which is operated for the Controller of the Processing and on which a Google Analytics component has been integrated, causes the web browser on the Data Subject’s information-technology system to automatically transfer the data to Google, for purposes of online analysis, using the respective Google Analytics component. In the course of this technical procedure, Google will receive knowledge of Personal Data, such as the Data Subject’s IP address, which shall serve the purpose, among other things, of enabling Google to track the visitor’s origin and clicks, and to make it possible to subsequently issue billing for commissions.

Cookies are used to store personal information, e.g., the time of accessing, the location from which access was made, and the frequency of the visits to our website by the Data Subject. For every visit to BESTVISO GmbH’s websites, these Personal Data, including the IP address of the Internet connection used by the Data Subject, are transferred to Google in the United States of America. These Personal Data are stored in the United States of America by Google. Under certain circumstances, Google shares with third parties these Personal Data collected through the technical procedure.

The Data Subject can, at any time, prevent cookies from being placed by BESTVISO GmbH’s website, as set forth above, by means of commensurately setting the web browser used and, by extension, can permanently object to the placement of cookies. Such a setting of the web browser used would also prevent Google from placing the cookie on the Data Subject’s information-technology system. In addition, a cookie already placed by Google Analytics can, at any time, be erased through the web browser or other software programs.

Furthermore, the Data Subject has the opportunity to object to any recording by Google Analytics of the data relating to use of this website as well as to the Processing of these data by Google, and to prevent such. For this purpose, the Data Subject must download and install a browser add-on under the link https://tools.google.com/dlpage/gaoptout. This browser add-on uses JavaScript to inform Google Analytics that no data or information concerning any visits to the web pages may be transferred to Google Analytics. Installation of the browser add-on shall be classified by Google as an objection. If the Data Subject’s information-technology system is erased, formatted, or newly installed at a subsequent date, then the browser add-on must be re-installed by the Data Subject in order to deactivate Google Analytics. Insofar as the browser add-on is to be uninstalled or deactivated by the Data Subject or by another person to whom the Data Subject’s sphere of influence is to be imputed, it shall be possible to newly install or to reactivate the browser add-on.

Additional information and Google’s applicable data-protection provisions can be retrieved at https://policies.google.com/privacy?hl=en&gl=en and at https://www.google.com/analytics/terms/de.html. Google Analytics is explained in greater detail at: https://www.google.com/intl/de_de/analytics/.

13. Data protection provisions governing use and deployment of Google+

The Controller for the Processing has integrated as components on this website the Google+ on-screen button. Google+ is a so-called social media network. A social media network is a social meeting place or online community, operated on the Internet, which as a rule enables its users to communicate with one another and to interact with one another in a virtual space. A social media network can serve as a platform for exchanging opinions and experiences, or it can make it possible for the Internet community to furnish personal or company-related information. Among other things, Google+ enables the users of its social media network create personal profiles, to upload photographs, and to network through “friending” requests.

The company operating Google+ is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

Each retrieval of one of the individual pages of this website operated by the Controller for the Processing and upon which a Google+ on-screen button has been integrated, shall cause the web browser on the information-technology system of the Data Subject to automatically download a representation of Google’s corresponding Google+ on-screen button. In the course of this technical procedure, Google receives knowledge of the specific subpage of the BESTVISO GmbH website being visited by the Data Subject. More detailed information concerning Google+ can be retrieved at https://developers.google.com/+/.

Insofar as the Data Subject is simultaneously logged in at Google+, then Google, with each retrieval of our website by the Data Subject and for the entire duration of the respective visit to our website, will detect which specific subpage of our website the Data Subject is visiting. This information is gathered by the Google+ on-screen button and assigned to the Data Subject’s respective Google+ account.

Whenever the Data Subject clicks on one of the Google+ buttons integrated into the BESTVISO GmbH website and thereby makes a Google+1 recommendation, then Google will assign this information to the Data Subject’s personal Google+ user account and shall store these Personal Data. Google stores the Data Subject’s Google+1 recommendation and makes it publicly accessible in accordance with the terms and conditions accepted with regard to such by the Data Subject. A Google+1 recommendation given by the Data Subject on this website shall then, as a result, be stored and processed together with other Personal Data, such as the name of the Google+1 account used by the Data Subject and the photograph deposited in this account, in other Google services, e.g., the search machine results of the Google search machine, the Data Subject’s Google account, or at other points, e.g., on websites or in connection with advertisements. Furthermore, Google is in a position to link the visit to this website with other Personal data stored at Google. Google also records this personal information with the purpose of improving or optimizing its various services.

Google thus always receives via the Google+ web button the information that the Data Subject has visited our website, whenever the Data Subject, as of the time of retrieving our website, is simultaneously logged in at Google+; such takes place independently of whether or not the Data Subject clicks on the Google+ web button.

If no transfer of Personal Data to Google is desired by the Data Subject, then the Data Subject can prevent such transfer by logging out of his or her Google+ account prior to retrieving our website.

Additional information and Google’s applicable data protection provisions can be retrieved at https://www.google.de/intl/de/policies/privacy/. Additional tips from Google concerning the Google+1 web button can be retrieved at https://developers.google.com/+/web/buttons-policy.

14. Data protection provisions governing the deployment and use of LinkedIn

The Controller for the Processing has integrated components of the LinkedIn Corporation onto this website. LinkedIn is an Internet-based social media network that enables users to connect with existing business contacts and to connect with new business contacts. Over 400 million registered persons in more than 200 countries use LinkedIn. Thus, LinkedIn is presently the largest platform for business contacts and one of the most-visited websites in the world.

The company operating LinkedIn is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Responsible for data protection matters outside the United States is LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

Each retrieval of one of the individual pages of this website operated by the Controller for the Processing and upon which a LinkedIn component (LinkedIn plug-in) has been integrated shall cause the web browser on the information-technology system of the Data Subject to automatically download a representation of the corresponding LinkedIn components. Additional information concerning the LinkedIn plug-ins can be downloaded at https://developer.linkedin.com/plugins. In the course of this technical procedure, LinkedIn obtains knowledge of the specific sub-page of our website that is being visited by the Data Subject.

Insofar as the Data Subject is simultaneously logged onto LinkedIn, then LinkedIn, through each retrieval of our website by the Data Subject and during the entire period of each visit to the BESTVISO GmbH website, recognizes which specific subpage of website is being visited by the Data Subject. This information is gathered by the LinkedIn components and is assigned by LinkedIn to the Data Subject’s respective LinkedIn account. If the Data Subject clicks on one of the LinkedIn buttons integrated onto BESTVISO GmbH’s website, then LinkedIn assigns this information to Data Subject’s personal LinkedIn user account and stores these Personal Data.

Thus, LinkedIn always obtains information through the LinkedIn components to the effect that the Data Subject has visited the BESTVISO GmbH website, provided that the Data Subject is simultaneously logged onto LinkedIn as of the point in time our website has been retrieved; this takes place independently of whether or not the Data Subject clicks on the LinkedIn components. If the Data Subject does not desire any such transfer of information to LinkedIn, then the Data Subject can prevent the transfer by logging out of his or her LinkedIn account prior to retrieving our website.

LinkedIn offers—at https://www.linkedin.com/psettings/guest-controls—the opportunity to unsubscribe to email notifications, SMS notifications, and targeted advertisements, as well as to manage advertisement settings. Furthermore, LinkedIn uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua, and Lotame, which can place cookies. Such cookies can be refused at https://www.linkedin.com/legal/cookie-policy. The applicable LinkedIn data protection provisions can be retrieved at https://www.linkedin.com/legal/privacy-policy. The LinkedIn cookie policy can be retrieved at https://www.linkedin.com/legal/privacy-policy.

15. Data protection provisions governing the deployment and use of Shariff

On this website, the Controller for the Processing has integrated Shariff components. The Shariff components make available social media buttons that are in conformity with data protection law. Shariff was developed for the German computer periodical c’t and is published through GitHub,

The developer of the components is GitHub, Inc. 88 Colin P. Kelly Junior Street, San Francisco, CA 94107, USA.

Ordinarily, the button solutions provided by social media networks already transfer Personal Data to the respective social media network whenever the user visits a website into which a social media button has been integrated. Through the use of the Shariff components, Personal Data are then transferred to social media networks only if the visitor to a website actively clicks on one of the social media buttons. Additional information concerning the Shariff components kept available by the computer periodical c’t at: https://www.heise.de/newsticker/meldung/Datenschutz-und-Social-Media-Der-c-t-Shariff-ist-im-Einsatz-2470103.html. The deployment of the Shariff components has the purpose of protecting the Personal Data of visitors to BESTVISO GmbH’s website and, simultaneously, making it possible for BESTVISO GmbH to integrate onto this website a button solution for social media networks.

Additional information and GitHub’s applicable data protection provisions can be retrieved at https://help.github.com/articles/github-privacy-policy/.

16. Data protection provisions governing deployment and use of Twitter

The Controller for the Processing has integrated Twitter components onto this website. Twitter is a multilingual, publicly accessible microblogging service, on which the user can publish and disseminate so-called tweets, i.e., brief messages that are limited to 280 characters. These characters can be retrieved by everyone, i.e., also by persons who are not registered at Twitter. However, the tweets are also displayed to the so-called followers of the respective user. Followers are other Twitter users who follow the tweets of a user. Furthermore, Twitter makes it possible to address a broad public via hashtags, links, or retweets.

The Twitter operating company Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

Each retrieval of one of the individual pages of this website operated by the Controller for the Processing and upon which a Twitter component (Twitter button) has been integrated shall cause the web browser on the information-technology system of the Data Subject to automatically download a representation of the corresponding Twitter components. Additional information concerning the Twitter buttons can be retrieved at https://about.twitter.com/de/resources/buttons. (TN: page does not contain any additional information.) In the course of this technical procedure, Twitter acquires knowledge of the specific subpage of the BESTVISO GmbH webpage being visited by the Data Subject. The purpose of integrating the Twitter components is to make it possible for our users to share and disseminate the content of this website further, in order to acquaint the digital world with this website and to increase our number of visitors.

Insofar as the Data Subject is simultaneously logged on at Twitter, then Twitter, with each retrieval of one of the individual pages of this website by the Data Subject, and during the entire period of the respective visit to our website, detects which specific subpage of our website is being visited by the Data Subject. This information is collected by the Twitter components and assigned to the respective Twitter account of the Data Subject. Whenever the Data Subject clicks on one of the Twitter buttons integrated into the BESTVISO GmbH website, the data and information shall be assigned to the Data Subject’s personal Twitter user account and stored and processed by Twitter.

Thus, Twitter always obtains information through the Twitter components to the effect that the Data Subject has visited the BESTVISO GmbH website, provided that the Data Subject is simultaneously logged onto Twitter as of the point in time the BESTVISO GmbH website has been retrieved; this takes place independently of whether or not the Data Subject clicks on the Twitter components. If the Data Subject does not desire any such transfer of information to Twitter, then the Data Subject can prevent the transfer by logging out of his or her Twitter account prior to retrieving our website.

The applicable data protection provisions of Twitter can be retrieved at https://twitter.com/privacy?lang=en.

17. Data protection provisions governing deployment and use of Xing.

The Controller for the Processing has integrated Xing components onto this website. Xing is an Internet-based social media network that enables users to connect with existing business contacts and to connect with new business contacts. Individual Xing users can set up a personal profile of themselves. For example, companies can create a company profile or publish job offers on Xing.

The Xing operating company is XING SE, Dammtorstrasse 30, D-20354 Hamburg, Germany.

Each retrieval of one of the individual pages of this website operated by the Controller for the Processing and upon which a Xing component (Xing plug-in) has been integrated shall cause the web browser on the information-technology system of the Data Subject to automatically download a representation of the corresponding Xing components. Additional information concerning the Xing plug-ins can be downloaded at https://dev.xing.com/plugins. In the course of this technical procedure, Xing obtains knowledge of the specific sub-page of our website that is being visited by the Data Subject.

Insofar as the Data Subject is simultaneously logged onto Xing, then Xing, through each retrieval of the BESTVISO GmbH website by the Data Subject and during the entire period of each visit to the BESTVISO GmbH website, recognizes which specific subpage of website is being visited by the Data Subject. This information is gathered by the Xing components and is assigned by Xing to the Data Subject’s respective Xing account. If the Data Subject clicks on one of the Xing buttons integrated onto BESTVISO GmbH’s website, e.g., the “Share” button, then Xing assigns this information to Data Subject’s personal Xing user account and stores these Personal Data.

Thus, Xing always obtains information through the Xing components to the effect that the Data Subject has visited our website, provided that the Data Subject is simultaneously logged onto Xing as of the point in time our website has been retrieved; this takes place independently of whether or not the Data Subject clicks on the Xing components. If the Data Subject does not desire any such transfer of information to Xing, then the Data Subject can prevent the transfer by logging out of his or her Xing account prior to retrieving our website.

The data protection provisions published by Xing, retrievable under https://www.xing.com/privacy, provide information about the collection, processing, and use of Personal Data by Xing. Further, Xing has published data privacy notices for the XING “Share” button at https://www.xing.com/app/share?op=data_protection.

18. Legal basis for the Processing

Article 6(I)(a) GDPR serves BESTVISO GmbH as the legal basis for processing activities for which it obtains consent for a particular processing purpose. If the Processing of Personal Data is necessary for the purpose of fulfilling a contract, whose contracting party is the Data Subject, e.g., as is the case in the case of processing activities that are necessary to deliver goods or to render any other performance or counter-performance, then the Processing is on the basis of Article 6(1)(b) GDPR. The same applies to such processing activities as a necessary for the purpose of carrying out pre-contractual measures, e.g., in cases of inquiries regarding our products or services. If our company is subject to a legal obligation, through which Processing of Personal Data becomes necessary, e.g., to fulfill duties pursuant to tax laws, then the Processing is based on Article 6(I)(c) GDPR. In rare cases, the Processing of Personal Data could become necessary in order to protect vital interest of the Data Subject or of another natural person. Such would be the case, if, e.g., a visitor were injured on our business premises and accordingly his or her name, age, health insurer data or other vital information had to be shared with a physician, a hospital, or other third parties. In this event, Processing would be based upon Article 6(I)(d) GDPR.
Finally, processing activities could be based upon Article 6(I)(f) GDPR. This legal basis applies to processing activities not encompassed by any of the aforementioned legal bases, whenever the Processing is necessary to safeguard a legitimate interest of our company or of a third party, insofar as the interests, fundamental rights, and fundamental freedoms of the Data Subject are not overriding. Such processing activities are permitted to us in particular because European lawmakers have made particular mention of such. In this regard, European lawmakers were of the opinion that a legitimate interest could be assumed if the Data Subject is a customer of the Controller (Recital 47(2) GDPR).

19. Legitimate interests in the Processing, which interests are pursued by the Controller or a third party

If the Processing of Personal Data is based on Article 6(I)(f) GDPR, then BESTVISO GmbH’s legitimate interest consists of conducting our business in the furtherance of the well-being of all our employees and shareowners.

20. Period during which the Personal Data are stored

The criterion for the storage period of Personal Data is the respective statutory retention period. After expiration of the retention period, the relevant data are routinely erased, insofar s they are no longer necessary for the purpose of contractual performance or initiation.

21. Statutory or contractual regulations governing the furnishing of Personal Data; necessity for contract formation; Data Subject’s obligation to furnish the Personal Data; possible consequences of failure to so furnish

We hereby apprise you of the fact that the furnishing of Personal Data is, in part, prescribed by statute (e.g., tax regulations) or can also arise from contractual provisions (e.g., statements provided concerning the contracting partner).
Occasionally, for the purpose of contract formation it can be necessary that a Data Subject make available to us Personal Data that must subsequently be processed by us. The Data Subject shall be obligated to furnish Personal Data to us, if, for example, our company enters into a contract with the Data Subject. The result of any failure to furnish the Personal Data would be that the contract with the Data Subject could not be formed.

Prior to furnishing Personal Data, the Data Subject must contact one of our employees. Our employee will apprise the Data Subject, in congruence with the facts and circumstances of the individual case, (i) whether furnishing the Personal Data is statutorily or contractually prescribed or whether it is necessary for contract formation to furnish the Personal Data, and (ii) which consequences failure to furnish the Personal Data would have.

22. Existence of automated decision-making

As a socially responsible company, BESTVISO GmbH does not engage in automated decision-making or profiling.

This Data Protection Policy has been created by the data-protection policy generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which works as an outside data protection officer in Hamburg, in cooperation with Mr. Christian Solmecke, a German attorney working in the data protection area.

 

 

 

Terms and Conditions of Business

 

Information in accordance with § 5 of the Telemediengesetz (the Telemedia Act, the “TMG”):

 

Disclaimer

 

Liability for content
In our capacity as a service provider as contemplated by § 7 para. 1 TMG, we hold responsibility for our own content on these pages pursuant to general statutory provisions of law. Pursuant to §§ 8 through 10 TMG, as a service provider we are not, however, obligated to monitor outside information transmitted or stored, or to delve into any circumstances pointing to any unlawful activity. Such shall be without prejudice to any obligations pursuant to general provisions of law to remove information or to block the use thereof. Any liability in this respect, however, shall be possible only from the date of any knowledge of a specific violation of law. In the event such legal violations become known, BESTVISO GmbH shall promptly remove such content.

 

Liability for links
BESTVISO GmbH’s offer contains links to outside third-party websites, upon the content of which BESTVISO GmbH does not have any influence. Therefore, BESTVISO GmbH cannot assume any responsibility for such outside content. The respective provider or operator of the sites is always responsible for the content of the sites linked. As of the date of linking, these linked sites were reviewed for any possible violations of law. No unlawful content was discernible as of the date of the linking. However, in the absence of any specific indications of a legal violation, ongoing monitoring of the content of the linked sites is not within reason. In the event such legal violations become known, BESTVISO GmbH shall promptly remove such content.

 

Copyright
The content and works created on these sites by the site operators are subject to German copyright law. Any reproduction, editing, and dissemination, and every type of exploitation beyond the limits of copyright law shall require the written consent of the respective author or creator. Downloading and copying this site are permitted solely for private, non-commercial use. To the extent that the content on this site has not been created by the operator, the copyrights of third parties shall be observed. In particular, any third-party content shall be identified as such. Should you nevertheless become aware of any breach of copyright, BESTVISO GmbH requests that you furnish commensurate notice thereof. In the event such legal violations become known, BESTVISO GmbH shall promptly remove such content.

Reference source: eRecht24

 

BESTVISO auf einen Blick 

BESTVISO ist die Beratungsagentur für das Management von Kunden- und Marktinformationen. Ob bei der Steuerung wichtiger Marktforschungsprojekte, strategischen Empfehlungen oder der konkreten Umsetzung Ihrer Insights in Marketingmaßnahmen oder Innovationen – BESTVISO nutzt das volle Spektrum aller Methoden und Marktforschungsinstitute.

So können wir Ihnen – neutral und institutsübergreifend –  neue Insights für Ziele liefern, und bereits vorhandene Informationen sinnvoll vernetzen.

About us

Turn your insights into revenue. BESTVISO. The consulting agency for managing customer and market information.

 

Contact

BESTVISO GmbH
Anckelmannsplatz 1
EG, Aufgang C
20537 Hamburg
E-mail: info@bestviso.com
Telephone: +49 (0) 40 52 47 89 02-0

Navigation
Home
Services
About us
References
Jobs
Blog
Contact