PRIVACY POLICY EMTIREC.COM
GENERAL INFORMATION
The protection of your personal data (hereinafter referred to as “data”) is important to us, MiZei GmbH, represented by the Managing Director Ralf Kiehne. In the following, we would therefore like to inform you in detail about which data is collected when you visit our website and use our offers there and how it is processed or used by us in the following in order to comply with the relevant data protection regulations of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). We would also like to inform you about the accompanying protective measures we have also taken from a technical and organizational point of view.
RESPONSIBLE BODY / SERVICE PROVIDER
The responsible body within the meaning of the Federal Data Protection Act (BDSG) and at the same time the service provider within the meaning of the Telemedia Act (TMG) is
MiZei GmbH
Berliner Promenade 5
66111 Saarbruecken
E-Mail:
hello@emtirec.com
Commercial register at Saarbruecken Local Court:
HRB 170251
VAT no. ID no.:
DE 26 09 92 708
Managing Director:
Ralf Kiehne
Contact details of the data protection officer:
Ralf Kiehne
Berliner Promenade 5
66111 Saarbruecken
If you have any questions or comments about this privacy policy or about data protection in general, please send them to the following e-mail address hello@emtirec.com
DEFINITIONS
Our privacy policy should be simple and understandable for everyone. As a rule, the official terms of the General Data Protection Regulation (GDPR) are used in this privacy policy. The official definitions are explained in Art. 4 GDPR.
ACCESS TO AND STORAGE OF INFORMATION IN TERMINAL EQUIPMENT
By using our website, information (e.g. IP address) may be accessed or information (e.g. cookies) may be stored in your end devices. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases in which such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of § 25 para. 1 sentence 1, para. 2 no. 2 TTDSG.
In cases in which such a process serves other purposes (e.g. the needs-based design of our website), this is only carried out on the basis of Section 25 (1) TTDSG with your consent in accordance with Art. 6 (1) lit. a GDPR. Consent can be revoked at any time for the future. The provisions of the GDPR and the German Federal Data Protection Act (BDSG) apply to the processing of your personal data. Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.
WEBHOSTING.
This website is hosted by an external service provider. We must clarify the hosting of this website with Dominik. Personal data collected on this website is stored on the hoster’s servers. This may include IP addresses, contact requests, meta and communication data, website access and other data generated via a website.
Hosting is the responsibility of MiZei GmbH for the technical provision of the website.
We collect the data listed in order to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary in order to make the website available to you. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.
We have concluded an order processing contract with the provider in accordance with the requirements of Art. 28 GDPR, in which we oblige the provider to protect our customers’ data and not to pass it on to third parties.
SERVER LOG FILES
When you access our website, it is technically necessary for data to be transmitted to our web server via your Internet browser. The following data is recorded during an ongoing connection for communication between your Internet browser and our web server:
- Date and time of the request
- Web browser and/or version used (e.g. Internet Explorer, Chrome, Safari, Firefox, Edge, etc.)
- Browser settings
- Operating system used (e.g. Windows, Android, Chrome OS, Ios, MacOS, Linux, etc.)
- Page from which the file was requested (so-called referrer URL)
- the amount of data transferred and the access status (file transferred, file not found, etc.)
- and (complete) IP address (host name of the accessing computer).
We collect the data listed in order to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary in order to make the website available to you. The log files are used to evaluate system security and stability as well as for administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR. For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short period of time. After 12 months at the latest, the data is anonymized by shortening the IP address at domain level so that it is no longer possible to establish a reference to the individual user.
The data may be processed in anonymized form for statistical purposes. At no time is this data stored together with other personal data of the user, compared with other databases or passed on to third parties.
COOKIES
Our website uses so-called “cookies”. Cookies are small text files that are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or they are automatically deleted by your web browser. Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or language settings). Other cookies are used to evaluate user behavior or display advertising.
The processing of data through the use of strictly necessary cookies is based on a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in the technically error-free provision of our services. For details on the processing purposes and legitimate interests, please refer to the information on the specific data processing.
The processing of personal data through the use of other cookies is based on consent in accordance with Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time for the future. If such cookies are used for analysis and optimization purposes, we will inform you about this separately in the context of this data protection declaration and obtain your consent in accordance with Art. 6 Para. 1 lit. a GDPR.
You can set your browser so that you be informed about the setting of cookies, only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general
activate the automatic deletion of cookies when closing the browser. You can also manage cookies from many companies and functions that are used for advertising individually. To do this, use the relevant user tools, available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a so-called “do-not-track function”. If this function is activated, the respective browser informs advertising networks, websites and applications that you do not wish to be “tracked” for the purpose of behavior-based advertising and the like.
For information and instructions on how to edit this function, please refer to the following links, depending on your browser provider:
- Google Chrome
- Mozilla Firefox
- Edge (Microsoft)
- Safari
- Opera
You can also prevent scripts from loading by default. “NoScript” only allows the execution of JavaScripts, Java and other plug-ins on trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: https://addons.mozilla.org/de/firefox/addon/noscript/).
Please note that the functionality of our website may be restricted if cookies are deactivated.
CHANGE COOKIE SETTINGS
You can revoke or change your cookie settings at any time. To do this, call up the cookie settings again using our integrated button. You can find this at any time at the bottom left of the website.
CONSENT MANAGEMENT TOOL (USERCENTRICS)
We use the software solution from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, to manage cookies and the integration of third-party services in compliance with data protection regulations.
When you visit our website, the following data is processed for this purpose Consent data (consent ID, consent number, time stamp of consent, opt-in or opt-out, language of the banner, user settings), device data (http agent, http referrer), the IP address and location information.
With Usercentrics, we provide you with a so-called cookie banner, which you can use to give us your consent to the use of cookies and the integration of third-party services. The cookie banner informs you about the use of cookies when you first visit our website and asks for your consent to the use of cookies and the integration of third-party services. Until you give your consent, all non-essential cookies and the integration of third-party services that we use on our website are automatically blocked. You can use the cookie banner to reject unwanted cookies and the integration of third-party services and still continue to use the website.
The collection of data through the use of Usercentrics is necessary in order to comply with the legal requirements of data protection law. We do not use the user data collected through the use of Usercentrics to create user profiles. The legal basis for the processing is our legitimate interest in observing the rejection of cookies or the integration of third-party services and/or the revocation of your consent to the use of cookies in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
The data collected will be stored until you ask us to delete it or the purpose for data storage no longer applies. Mandatory statutory retention periods remain unaffected. Details on data processing by Usercentrics can be found at https://usercentrics.com/de/datenschutzerklaerung/.
RUDDERSTACK
To ensure the lawful use of tracking services such as analysis and marketing services, we use the tracking proxy function of the Customer Data Platform (CDP) of RudderStack, Inc, 96 S. Park Street, San Francisco 94107, USA.
With the help of the tracking proxy function, we can avoid direct access to users’ end devices by the third-party providers we use and ensure complete control over individual data parameters when communicating with websites by restricting access for third-party providers and setting conditions for the transfer of data to third-party providers.
To use the tracking proxy function of the RudderStack CDP, we use so-called first-party cookies, which we store on your end device to recognize you and with the help of which we collect information from your end device. For this purpose, your browser is assigned a randomly generated identification number (cookie ID/device ID).
The end device is accessed exclusively from the domain of the web server “Pangaea Life” or by a data instance of “Pangaea Life” within the RudderStack CDP. Using the tracking proxy function of the RudderStack CDP, we process the information generated about the use of our website by your end device, as well as access data for the purposes of reducing the third-party providers integrated on the website to a provider bound by instructions, avoiding end device access by third-party domains, complete control over individual data points collected from end devices, reducing data points in our own database to ensure legal compliance of subsequent processing, and control over the transfer of data points by setting conditions to third-party providers.
The access data includes in particular
- complete URLs and page titles
- unique cookie ID/device ID
- user agent
- IP address
The RudderStack CDP tracking proxy function is used without consent in accordance with the provision in Section 25 (2) No. 2 TTDSG. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. f) GDPR. Our legitimate interests correspond to the aforementioned purposes of the tracking proxy function of the RudderStack CDP.
The storage period of the first-party cookies and the cookie ID/device ID for recognizing users’ end devices is up to 60 days, depending on which of the use cases described below the RudderStack CDP is used for. Insofar as RudderStack, Inc. also processes your data in the USA, there is no adequacy decision by the EU Commission for any data transfer to the USA. We have therefore agreed standard contractual clauses with RudderStack, Inc., which are provided by the EU Commission in order to oblige RudderStack, Inc. to comply with an appropriate level of data protection.
Further information on data protection at RudderStack can be found at https://www.rudderstack.com/privacy-policy/
AMAZON CLOUDFRONT
We use the Amazon CloudFront content delivery network (CDN) from Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, L-1855 Luxembourg (AWS) to increase the security and speed of content delivery on our website. A CDN is a network of [globally] distributed servers that is able to deliver optimized content to the website user. For this purpose, personal data may be processed in server log files by AWS. In addition, we store anonymized log files in order to optimize the stability and security of our website.
Among other things, Amazon collects data on
- IP address,
- the website accessed,
- referrer URL,
- the browser used and
- the operating system used.
In addition, Amazon stores some data on its servers outside the EU when users from a non-EU country access a website with Amazon CDN. AWS is the recipient of your personal data and acts as a processor for us.
The legal basis is your voluntary consent in accordance with Art. 6 para. 1 lit. a GDPR. You can change your consent at any time by adjusting your cookie settings.
The functionality of the website is not guaranteed without the processing.
Your personal data will be stored by AWS for as long as is necessary for the purposes described.
Further information on objection and removal options vis-à-vis AWS can be found at: https://d1.awsstatic.com/legal/privacypolicy/AWS_Privacy_Notice__German_Translation.pdf
Since personal data may be transferred to the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and assurances from the recipient in the USA.
AWS has implemented compliance measures for international data transfers. These apply to all global activities where AWS processes personal data of natural persons in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs). Further information can be found at: https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf
CONTACT FORM AND CONTACT BY E-MAIL
If you send us inquiries via the contact form or email, your details from the inquiry form or your email, including the personal data you provide there, will be stored by us in order to process the inquiry and in the event of follow-up questions. It is necessary to provide an e-mail address to contact us; providing your first name, surname and telephone number is voluntary. We will never pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. In the case of Art. 6 para. 1 lit. f GDPR, you can object to the processing of your personal data at any time.
USE OF GOOGLE ANALYTICS
Our website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses “cookies.”
Google will use this information on behalf of the operator of this website to evaluate your use of the website and to compile reports on website activity. Google will also use this information to provide other services related to the use of the website and the internet to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google. The processing is carried out based on your consent according to Art. 6 (1)(a) GDPR.
We only use Google Analytics with IP anonymization enabled, meaning that your IP address is only processed in truncated form by Google.
We have entered into a data processing agreement with the service provider, obliging them to protect our customers’ data and not to pass it on to third parties.
Since personal data may be transferred to the USA, additional protection mechanisms are required to ensure the data protection level of the GDPR. To achieve this, we have entered into standard contractual clauses with the provider according to Art. 46 (2)(c) GDPR. These obligate the recipient of the data in the USA to process the data according to the data protection level in Europe. In cases where compliance cannot be ensured through this contractual extension, we strive to obtain additional regulations and assurances from the recipient in the USA.
The Google Analytics terms of use and information on data protection can be accessed via the following links:
http://www.google.com/analytics/terms/de.html
https://www.google.de/intl/de/policies/
Data will be deleted as soon as it is no longer required for its collection purposes. Data associated with cookies, user IDs (e.g., user-ID), and advertising IDs (e.g., DoubleClick cookies, Android advertising ID, IDFA [Apple identifier for advertisers]) will be deleted no later than 14 months after collection.
You can prevent the storage of cookies by adjusting your browser settings accordingly. However, we would like to point out that, in this case, you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plugin available at https://tools.google.com/dlpage/gaoptout?hl=en.
EXTERNAL LINKS TO THIRD-PARTY WEBSITES
We provide links to websites of other, non-affiliated providers (third parties). Please note that we have no control over the data that may be collected and processed by these providers when you click on these links. As the collection and processing of data by third parties is beyond our control, we cannot assume responsibility for it. For more information on how your data is collected and processed by these third parties, please refer to the
privacy policy of the respective provider.
EXTERNAL LINKS TO SOCIAL NETWORKS
In addition to this website, we also maintain presences on various social media platforms. These social networks (Instagram, LinkedIn) are merely linked on our website to the corresponding services. After clicking the embedded text/image link, you will be redirected to the respective provider’s page. Only after this redirection will user information be transferred to the respective provider. If you visit such a network and are logged in with your personal account of the respective network, the network operator can assign the visit to your account. If you do not want such an association, you can prevent it by logging out of your account before visiting our presence.
For information on how your personal data is handled when using these websites, please refer to the privacy policies of the providers you are using.
DATA SHARING AND RECIPIENTS
Your personal data will not be transmitted to third parties unless:
- It has been explicitly mentioned in the description of the respective data processing;
- You have given express consent according to Art. 6 (1)(a) GDPR;
- The transmission is necessary for the assertion, exercise, or defense of legal claims pursuant to Art. 6 (1)(f) GDPR and there is no reason to assume that you have an overriding interest worthy of protection in not having your data disclosed;
- There is a legal obligation for the transmission under Art. 6 (1)(c) GDPR; or
- It is necessary for the execution of contractual relationships with you pursuant to Art. 6 (1)(b) GDPR.
Additionally, we use external service providers to handle our services, which we carefully select, instruct in writing, and, if necessary, enter into data processing agreements in accordance with Art. 28 GDPR. These service providers are bound by our instructions and are regularly monitored. These include, for example, service providers for hosting, email delivery, as well as the maintenance and care of our IT systems. The service providers will not pass this data on to third parties.
DATA SECURITY
In accordance with Art. 32 GDPR, we take appropriate technical and organizational measures, considering the state of technology, implementation costs, and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of risks to the rights and freedoms of natural persons, to ensure an appropriate level of protection. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
DURATION OF STORAGE OF PERSONAL DATA
The storage duration of personal data is determined by the applicable statutory retention periods (e.g., from commercial and tax law). After the expiration of the respective period, the corresponding data is routinely deleted. If the data is required for contract fulfillment or contract initiation, or if there is a legitimate interest in further storage, the data will be deleted when it is no longer necessary for these purposes or if you have exercised your right of revocation or objection.
YOUR RIGHTS
Below you will find information about your rights under the applicable data protection law regarding the processing of your personal data:
- The right to request information about your personal data processed by us according to Art. 15 GDPR. This includes information on the purposes of processing, the categories of personal data, the recipients to whom your data has been disclosed or will be disclosed, the planned storage duration, the existence of a right to rectification, erasure, restriction of processing, or objection, the existence of a complaint right, the source of your data if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on the details thereof.
- The right to request the correction of incorrect or incomplete personal data stored by us without delay according to Art. 16 GDPR.
- The right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest, or to assert, exercise, or defend legal claims.
- The right to request the restriction of the processing of your personal data according to Art. 18 GDPR if you dispute the accuracy of the data, the processing is unlawful, but you oppose its deletion, we no longer need the data, but you need it to assert, exercise, or defend legal claims, or you have objected to the processing according to Art. 21 GDPR.
- The right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or to request the transfer to another responsible party according to Art. 20 GDPR.
- The right to lodge a complaint with a supervisory authority according to Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state of our registered office or your usual place of residence or workplace.
- The right to withdraw consent given according to Art. 7 (3) GDPR: You have the right to withdraw consent to the processing of data at any time with future effect. In the event of withdrawal, we will delete the affected data immediately unless further processing can be based on a legal basis for consent-free processing. The lawfulness of the processing carried out based on the consent until the withdrawal is not affected by the withdrawal.
RIGHT TO OBJECT
If your personal data is processed based on legitimate interests according to Art. 6 (1)(f) GDPR, you have the right to object to the processing of your personal data, provided there are reasons arising from your particular situation. If the objection is directed against the processing of personal data for direct advertising purposes, you have a general right to object without the need to specify a particular situation.
If you wish to exercise your right of withdrawal or objection, simply send an email to hello@EmTirec.com.
LEGAL OBLIGATION
The provision of personal data for the decision on a contract conclusion, contract fulfillment, or pre-contractual measures is voluntary. However, we can only make the decision within the framework of contractual measures if you provide such personal data that is necessary for the conclusion, fulfillment, or pre-contractual measures of the contract.
YOUR RIGHT TO LODGE A COMPLAINT
Your trust is important to us. Therefore, we are always available to answer your questions regarding the processing of your personal data. If you have any questions that this privacy policy has not been able to answer or if you require more detailed information on a specific point, please feel free to contact us at any time using the contact details provided in the legal notice.
If you have concerns or complaints regarding the lawfulness of the processing of your personal data, you can also contact the Data Protection Supervisory Authority responsible for EmTiRec (Independent Data Protection Center Saarland, Monika Grethel, State Commissioner for Data Protection and Freedom of Information, Fritz-Dobisch-Straße 12, 66111 Saarbruecken). Furthermore, you have the right to pursue legal action.
AUTOMATED DECISION-MAKING
Automated decision-making or profiling according to Article 22 GDPR does not take place.
CHANGES TO THIS PRIVACY POLICY
We will review our guidelines for protecting your personal data from time to time to ensure that they align with technological advancements or changes in legal requirements. This allows us to adapt the website to current legal requirements and to account for changes in our services, such as the introduction of new services. Therefore, we recommend that you regularly check this page for updates. The latest version of this policy will apply to your visit.
Effective date of this privacy policy: March 15, 2024