Privacy Policy according Art. 13 and 14 DGPR
1. Name and Contact data of the Controller (Art. 4 (7) DGPR)
Bernd Heistermann
Diplom-Mathematiker, Aktuar DAV
Fritz-Pullig-Str. 20
53757 Sankt Augustin
E-Mail: kontakt23 (ät) HeistermannConsulting de
Tel.: +49 (2241) 205280
2. Collection and storage of personal data as well as type and purpose of their use
We process personal data
a. when you visit our website
Whenever you visit our website, your browser automatically sends information to the server of our website, where it will be temporarily saved in a log file. The following information is recorded without your intervention and stored until it will be automatically deleted:
- the IP address of the requesting computer,
- the date and time of access,
- the name and URL of the file retrieved,
- the website from which access was made,
- the operating system of your computer, the browser you use and the name of your access provider..
This data will be processed for the following purposes:
- Ensuring a smooth connection of the website
- Evaluation of system security and stability
- to make anonymous evaluations to improve the content and user guidance of our website
- abuse prevention
The legal basis for data processing is Art. 6 para. 1 sentence 1 f) DGPR. Our legitimate interest follows from the purposes listed above for data collection. Under no circumstances we use the data for the purpose of drawing conclusions about you personally.
b. when entering data in registration forms for special services on the Website
We may offer you the opportunity to register with us using special forms in order to obtain access to special services. In addition to providing a valid e-mail address, other data such as name, postal address, telephone number and company may also be requested. This is necessary in order to know who wants to use the service and how to contact them. Registration is always voluntary.
The legal basis for data processing for the purpose of registration is Art. 6 para. 1 sentence 1 a) DGPR on the basis of your voluntary consent.
c. when contacting us by e-mail, telephone and post
We assume that if you contact us without being asked by sending an e-mail, a letter or making a phone call using the contact data provided on our website , you agree that we may save your contact data (name, e-mail address, postal address, telephone number) and your request in order to be able to contact you and process your request. If you do not want this, please let us know in your message.
We expressly point out that data transmission on the internet when communicating by e-mail has security gaps, as it is usually unencrypted and cannot be completely protected from access by third parties. We therefore recommend the use of encryption software.
The legal basis of data processing for the purpose of establishing contacts and, if applicable, associated services is Art. 6 para. 1 sentence 1 a) DGPR on the basis of your voluntarily sent data.
d. when using data that we have received from you or third parties
We process personal data that we have received from you as an interested party, customer or business partner, e.g. via business cards at meetings during congresses or business events. These are personal data (name, address, company, position, e-mail address, telephone numbers and other contact data). Since this data has been provided voluntarily, we assume that storage is approved by you and use for the purpose of contacting you is in your interest.
The legal basis of data processing for the purpose of establishing contacts and, if applicable, associated services is Art. 6 para. 1 sentence 1 a) DGPR on the basis of your voluntarily provided data.
We also use contact data that we may obtain from public sources (e.g. telephone directories, company websites), member directories of organisations (e.g. professional associations) or through the provision of other business partners. If we contact you using such information, we will ask for your consent for further use.
The legal basis of data processing for the purpose of establishing contacts and any associated services is Art. 6 Para. 1 S. 1 f) DGPR on the basis of our legitimate interest in the course of our business activities.
In both cases, you can of course object to further use at any time and request deletion (see section 7).
3. Passing on your data to third parties
We do not disclose your personal data unless we are required to do so by law.
4. Cookies
We do not use cookies or similar tracking technologies on our website.
5. Web Analytics Services
Our website does not use web analysis software like Google Analytics or Matomo.
6. Social Media Plugins
We do not use social media plugins.
7. Information, correction, blocking and deletion of your data, right of objection and right of appeal
According to Articles 15 and 20 DGPR, you have a right of access to the personal data stored about you and according to Article 16 DGPR, a right to correction of incorrect data and their blocking and deletion according to Articles 17 and 18 DGPR.
According to art. 7 para. 3 DGPR you can revoke your consent to data processing and storage at any time.
If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 f) DGPR, you have the right to object to the processing of your personal data pursuant to Art. 21 DGPR, provided that there are reasons for this which arise from your particular situation or the objection is directed against direct marketing purposes. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
Pursuant to Art. 77 DGPR, you may complain to the supervisory authority responsible for us: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen, Postfach 20 04 44, 40102 Düsseldorf.
To exercise the above rights and for further questions about the use of your personal data, please send an e-mail to kontakt23 (ät) HeistermannConsulting de.
8. Data security
We use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
9. Up-to-dateness and amendment of this privacy policy
This privacy policy is currently valid and has the status as of August, 12th 2020.
Due to the further development of our website or due to changed legal or official requirements, it may become necessary to change this privacy policy. The current privacy policy be read by you at any time on our website under https://heistermannconsulting.de/en/privacy-policy/.