We are pleased that you are visiting the websites of Digital Compliance Consulting GmbH (Digicom for short). The protection and security of your personal information when using our websites is very important to us. We would therefore like to inform you at this point which of your personal data we collect when you visit our websites, for what purposes it is used and on what legal basis this is done. In addition, we will inform you about your rights and who you can contact if you have questions about data protection or complaints.
1. contact details of the responsible person Digital Compliance Consulting GmbH
Karl-Arnold-Str. 44 52349 Düren Phone: 02421 / 5559333 E-Mail: fackeldey(at)digital-compliance-consulting.comIf you have any questions regarding data processing, your rights or the data protection declaration, our data protection officer will be happy to assist you. You can reach him at: datenschutz@digital-compliance-consulting.com.
2nd principle
This privacy policy meets the legal requirements for transparency in the processing of personal data. This is any information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, e-mail address, IP address or user behavior when visiting a website. Information for which we cannot (or can only with a disproportionate effort) establish a reference to your person, e.g. by anonymization, is not personal data. The processing of personal data (e.g. collection, retrieval, use, storage or transmission) always requires a legal basis and a defined purpose.
Stored personal data are deleted as soon as the purpose of the processing has been achieved and there are no further legitimate grounds for keeping the data. We will inform you about the specific storage periods or criteria for storage as part of the information on the individual processing operations. Irrespective of this, we store your personal in individual cases for the assertion, exercise or defense of legal claims and if there are statutory retention obligations.
We only disclose your personal data that we process on our websites to third parties if this is necessary for the fulfillment of the purposes and is covered by the legal basis in the individual case (e.g. consent or protection of legitimate interests). In addition, we disclose personal data to third parties in individual cases if this serves the assertion, exercise or defense of legal claims. Possible recipients may then be, for example, law enforcement agencies, lawyers, auditors, courts, etc.
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster’s servers.
The use of our hoster is for the purpose of fulfilling the contract with you, as a potential and existing website visitor, interested party or customer (Art. 6 (1) b GDPR) and in the interest of a secure and correct provision of our online offer (Art. 6 (1) f GDPR).
Our hoster will only process your data to the extent necessary to fulfill its service obligations and follow our instructions regarding this data. To ensure data protection-compliant processing, we have concluded a contract on commissioned processing pursuant to Article 28 GDPR with our hoster.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
3. collection and processing of personal data through the use of our websites.
3.1 Log files
Log files
Nature and scope of processing
When you call up and use our websites, we collect the personal data that your browser automatically transmits to our server. The following information is stored temporarily in a so-called log file:
- IP address of the requesting computer
- Date and time of access
- Name und URL der abgerufenen Datei
- Website from which the access is made (referrer URL)
- Browser used and, if applicable, the operating system of your computer, as well as the name of your access provider
Purpose and legal basis
The processing is carried out to protect our overriding legitimate interest to display our websites and ensure security and stability on the basis of Art. 6 (1) f GDPR. The collection of data and storage in log files is necessary for the operation of the websites. We do not grant a right to object to the processing of mandatory data due to the exception under Art. 21 (1) GDPR. Insofar as the further storage of log files is legally derivable, the processing is based on Art. 6 (1) c GDPR. There is no legal or contractual obligation to provide the data, however, calling up our websites is not technically possible without providing the data.
Storage duration
As soon as the aforementioned data is no longer required to display the web pages, it is deleted.
3.2 Cookies
Essential
Essential cookies enable basic functions and are necessary for the proper functioning of the website.
Borlabs Cookie
| Name | Borlabs Cookie |
|---|---|
| Provider | Owner of this website, Legal notice |
| Purpose | Stores the settings of the visitors selected in the Cookie Box of Borlabs Cookie. |
| Cookie name | borlabs-cookie |
| Cookie Runtime | 1 Jahr |
WPML
| Name | WPML |
|---|---|
| Provider | Owner of this website |
| Purpose | Saves the current language. |
| Cookie name | _icl_*, wpml_*, wp-wpml_* |
| Cookie Runtime | 1 Tag |
Statistics
Statistics Cookies collect information anonymously. This information helps us understand how our visitors use our website.
Matomo
| Name | Matomo |
|---|---|
| Provider | Digital Compliance Consulting |
| Purpose | Cookie from Matomo for website analytics. Generates statistical data about how the visitor uses the website. |
| Privacy policy | https://digicom-consulting.org/en/privacy-policy/ |
| Cookie name | _pk_*.* |
| Cookie Runtime | 13 months |
Marketing
Marketing cookies are used by third-party vendors or publishers to display personalized advertisements. They do this by tracking visitors across websites.
External media
Content from video platforms and social media platforms is blocked by default. If cookies from external media are accepted, access to this content no longer requires manual consent.
| Name | |
|---|---|
| Provider | Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland |
| Purpose | Used to unlock Facebook content. |
| Privacy policy | https://www.facebook.com/privacy/explanation |
| Host(s) | .facebook.com |
Google Maps
| Name | Google Maps |
|---|---|
| Provider | Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland |
| Purpose | Used to unlock Google Maps content. |
| Privacy policy | https://policies.google.com/privacy |
| Host(s) | .google.com |
| Cookie name | NID |
| Cookie Runtime | 6 months |
| Name | |
|---|---|
| Provider | Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland |
| Purpose | Used to unlock Instagram content. |
| Privacy policy | https://www.instagram.com/legal/privacy/ |
| Host(s) | .instagram.com |
| Cookie name | pigeon_state |
| Cookie Runtime | Sitzung |
OpenStreetMap
| Name | OpenStreetMap |
|---|---|
| Provider | Openstreetmap Foundation, St John’s Innovation Centre, Cowley Road, Cambridge CB4 0WS, United Kingdom |
| Purpose | Used to unlock OpenStreetMap content. |
| Privacy policy | https://wiki.osmfoundation.org/wiki/Privacy_Policy |
| Host(s) | .openstreetmap.org |
| Cookie name | _osm_location, _osm_session, _osm_totp_token, _osm_welcome, _pk_id., _pk_ref., _pk_ses., qos_token |
| Cookie Runtime | 1-10 Jahre |
| Name | |
|---|---|
| Provider | Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland |
| Purpose | Used to unlock Twitter content. |
| Privacy policy | https://twitter.com/privacy |
| Host(s) | .twimg.com, .twitter.com |
| Cookie name | __widgetsettings, local_storage_support_test |
| Cookie Runtime | Unlimited |
Vimeo
| Name | Vimeo |
|---|---|
| Provider | Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA |
| Purpose | Used to unlock Vimeo content. |
| Privacy policy | https://vimeo.com/privacy |
| Host(s) | player.vimeo.com |
| Cookie name | vuid |
| Cookie Runtime | 2 years |
YouTube
| Name | YouTube |
|---|---|
| Provider | Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland |
| Purpose | Used to unlock YouTube content. |
| Privacy policy | https://policies.google.com/privacy |
| Host(s) | google.com |
| Cookie name | NID |
| Cookie Runtime | 6 months |
Your consents
| Date | Version | Consents |
|---|
3.3 Integration of third-party services and content
Matomo
Nature and scope of processing
As the provider of this website, we use Matomo for the anonymized analysis of usage data. The data generated with Matomo is documented exclusively in anonymized form, is processed and stored exclusively in Germany and is thus subject to the strict German and European data protection laws and standards. It is not possible to draw conclusions about a specific person, as your IP address is anonymized immediately after processing and before storage. Thus, we avoid the processing of personal data.
For more information on Matomo privacy, please visit https://matomo.org.
3.4 Contact form
Nature and scope of processing
On our websites, we sometimes offer you the opportunity to contact us via a form provided. The information collected via mandatory fields is required in order to process the request. Furthermore, you can voluntarily provide additional information that is necessary from your point of view for processing the contact request.
The use of our contact form is exclusively on a voluntary basis. As a matter of principle, we do not pass on data entries/messages in the contact form to third parties. However, if you use the contact form for an order or inquiry at the same time, your data will be passed on to companies involved in this process exclusively for the purpose of executing the order or preparing an offer.
If you make use of the contact form, the following personal data of you will be processed via it, consisting of mandatory and voluntary information:
- Name (title, first and last name)
- Phone number and/or e-mail address
- Request
- Message content
Purpose and legal basis
The processing of your data by using our contact form is carried out for the purpose of communication and processing of your request on the basis of your consent pursuant to Art. 6 (1) a GDPR. Insofar as your inquiry relates to an existing contractual relationship with us, the processing is carried out for the purpose of fulfilling the contract on the basis of Art. 6 (1) b GDPR. There is no legal or contractual obligation to provide your data, but the processing of your request is not possible without providing the information of the mandatory fields. Insofar as you do not wish to provide this data, please contact us by other means.
Storage duration
We receive the personal data provided by you in the context of using the contact form on the basis of your consent and are used exclusively for processing your request. The reason for your request results in different retention or deletion periods for your personal data, which are structured and implemented as part of our deletion concept, e.g. your data is stored for six years from the end of the contractual relationship for reasons of a contractual relationship and subsequently deleted.
3.5 Contact by e-mail
Nature and scope of processing
You have the option of sending us a message via the above e-mail address. In this case, your e-mail will be received by the management and forwarded to the responsible data protection officer or employee. The data collection is limited to the e-mail address of the e-mail account used by you to contact us and to the personal data voluntarily provided by you in the course of contacting us.
Purpose and legal basis
The processing of your data as a result of sending your e-mail is carried out for the purpose of communication and processing of your request for the purpose of (pre-)contract fulfillment on the basis of Art. 6 (1) b GDPR.
Storage duration
We receive the personal data provided by you in the context of using the contact form on the basis of your consent and are used exclusively for processing your request. The reason for your request results in different retention or deletion periods for your personal data, which are structured and implemented as part of our deletion concept, e.g. your data is stored for six years from the end of the contractual relationship for reasons of a contractual relationship and subsequently deleted.
4 Newsletter
Newsletter data
If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form is based exclusively on your consent (Article 6 (1) a GDPR). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The lawfulness of the processing remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.
After you have unsubscribed from the newsletter distribution list, your e-mail address will be stored by us or the newsletter service provider in a blacklist, if necessary, in order to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Article 6 (1f) of the GDPR). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.
Newsletter2Go
This website uses Newsletter2Go to send newsletters. The provider is Newsletter2Go GmbH, Nürnberger Straße 8, 10787 Berlin, Germany.
Newsletter2Go is a service with which we organize and carry out the dispatch of newsletters. The data you enter for the purpose of receiving newsletters is stored on Newsletter2Go’s servers in Germany. Newsletter2Go offers us the opportunity to determine what potential deliverability problems exist, what the opening rate of our newsletters is and which links in the newsletter are clicked. We receive this data anonymously as part of a statistical evaluation.
If you do not want any analysis by Newsletter2Go, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also unsubscribe directly on the website.
Conclusion of a contract for order processing
We have concluded a contract to protect the data of our customers or newsletter prospects for the use of the services of Newsletter2Go.
5. data processing by service providers on behalf of Digital Compliance Consulting GmbH
When selecting our service providers, we pay strict attention to ensuring that they also comply with the legal provisions on data protection and, in the case of commissioned processing, conclude contracts with our service providers in accordance with Art. 28 of the GDPR.
6. further information on the processing of data
Data subject rights
Under the conditions of the legal provisions of the General Data Protection Regulation (GDPR), you have the following rights as a data subject:
- Information according to Art. 15 GDPR about the data stored about you in the form of meaningful information about the details of the processing and – upon request – a copy of your data;
- Rectification according to Art. 16 GDPR of incorrect or incomplete data stored by us;
- Erasure in accordance with Art. 17 of the GDPR of the data stored by us, insofar as the deletion is not subject to any further retention obligations;
- Restriction of processing pursuant to Art. 18 GDPR, insofar as the conditions for this are met.
- Data portability pursuant to Art. 20 GDPR, insofar as you have provided us with personal data within the scope of consent pursuant to Art. 6 (1) a GDPR or on the basis of a contract pursuant to Art. 6 (1) b GDPR and these have been processed by us with the aid of automated processes.
- Objection according to Art. 21 GDPR against the processing of your personal data, insofar as this is based on Art. 6 (1) e, f GDPR and there are reasons for this that arise from your particular situation or the objection is directed against direct advertising. The right to object does not exist if overriding compelling legitimate grounds for the processing are demonstrated or the processing is carried out for the assertion, exercise or defense of legal claims. Where the right to object does not exist for individual processing operations, this is indicated there.
- Revocation according to Art. 7 para. 3 GDPR of your given consent with effect for the future.
7. contact details of the responsible data protection supervisory authority
In addition to your aforementioned rights, you have the possibility to complain to a data protection supervisory authority.
You can reach the data protection supervisory authority responsible for us at
State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia PO Box 20 04 44 40102 Düsseldorf
Phone: 0211/38424-0 Internet: www.ldi.nrw.de
E-Mail: poststelle@ldi.nrw.de
