Data protection

Thank you for visiting our website www.holert.com and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the statutory provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

Person responsible

The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.

With regard to our website, the controller is

Holert GmbH
Luise-Ullrich-Straße 20
80636 Munich
Munich, Germany
E-mail:info@holert.com
Phone: +49 89 599974700

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 GDPR. You can reach our data protection officer using the following contact details

Dr. Jochen Notholt (Lawyer)
Lindwurmstr. 10
80337 Munich, Germany
Munich, Germany
E-mail:inbox@comp-lex.de

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device accessing it (e.g. computer, cell phone, tablet, etc.).

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the accessing device;
(3) Host name of the accessing computer;
(4) The IP address of the accessing device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user's system came to our website (referrer tracking);
(8) Notification of whether the retrieval was successful;
(9) Amount of data transferred

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of the data processing

The temporary (automated) storage of data is necessary for the course of a website visit in order to enable delivery of the website. Personal data is also stored and processed to maintain the compatibility of our website for as many visitors as possible and to combat misuse and troubleshooting. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimize the website and to generally ensure the security of our IT systems.

Duration of storage

The aforementioned technical data is deleted as soon as it is no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after our website is accessed.

Objection and deletion options

You can object to the processing at any time in accordance with Art. 21 GDPR and request the erasure of data in accordance with Art. 17 GDPR. You can find out what rights you are entitled to and how to assert them at the bottom of this privacy policy.

Special functions of the website

Our website offers you various functions that collect, process and store personal data when you use them. We explain below what happens to this data:

Contact form(s)

  • What personal data is collected and to what extent is it processed?

    We will process the data you enter in our contact forms, which you have entered in the input mask of the contact form, to fulfill the purpose stated below.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent by clear affirmative action or conduct or express consent)

  • Purpose of the data processing

    We will only use the data collected via our contact form or via our contact forms to process the specific contact request received via the contact form.

  • Duration of storage

    Once your inquiry has been processed, the data collected will be deleted immediately, provided there are no statutory retention periods.

  • Revocation and deletion options

    The revocation and deletion options are based on the general regulations on the right of revocation and deletion under data protection law described below in this privacy policy.

  • Necessity of providing personal data

    The contact forms are used on a voluntary basis and are neither contractually nor legally required. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must complete the fields marked as mandatory. If you do not fill in the required information on the contact form, you will either not be able to send the request or we will unfortunately not be able to process your request.

Statistical analysis of visits to this website - web tracker

We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was retrieved, name of the file, date and time of retrieval, amount of data transferred and notification of the success of the retrieval (so-called web log). We use this access data exclusively in non-personalized form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to analyze visits to this website:

  • Custom Audiences

    We use the Custom Audiences service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, email:impressum-support@support.facebook.com, website: http://facebook.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Facebook Custom Audience is an advertising tool from Facebook that can be used to target advertising campaigns to site visitors.

    You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.facebook.com/privacy/policy/.

    The provider also offers an opt-out option at https://www.facebook.com/privacy/policy/.

  • Facebook Connect

    We use the Facebook Connect service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail:impressum-support@support.facebook.com, website: http://www.facebook.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Facebook Connect allows users to use their Facebook profile to simplify logging in to other web services.

    You can view the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.facebook.com/privacy/policy/.

    The provider also offers an opt-out option at https://www.facebook.com/privacy/policy/.

  • Google

    We use the Google service of Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail:support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    We use Google to be able to load further Google services on the website. The service is used to provide other Google services, such as the data processing required for the provision of streams and fonts and relevant Google search content.

    It is technically required in order to be able to exchange the site visitor's information already available to Google between the Google services and to be able to provide the site visitor with individual content adapted to their Google account.

    The service or we collect the following data for the processing itself:

    Background data stored in the Google user account or with other Google services about the site visitor, background data for the provision of Google services such as streaming data or advertising data, data about the site user's use of Google search, information about the end device used, the IP address and the user's browser and other data from Google services for the provision of Google services related to our website.

    If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads and Google Fonts in accordance with the Google privacy policy.

    You can view the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://policies.google.com/privacy.

    The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.

  • Google Ads

    We use the Google Ads service of Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail:support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Google Ads is an advertising system with which we can place advertisements on external websites on the Internet to inform our customers about our services. Google Ads displays advertisements on external websites that are individually tailored to our clientele and lead to our website according to parameters set by us. If the site visitor clicks on the Google Ads advertisement, they will be taken to our website. In order to be able to measure the success and remuneration of Google Ads advertisements, Google Ads measures the success of the advertising measure when our website is accessed. Our website processes the data provided by Google Ads in order to analyze and improve our advertising measures and to calculate any remuneration that may be due.

    Your data may also be used for remarketing purposes with your consent.

    The service or we collect the following data for processing:

    Data on the advertising interests of site visitors, interactions of site visitors with advertising relating to our website, data on visits to our website by site visitors who have previously clicked on Google Ads advertising and reached our website, data on the end device used, the user's IP address and browser and other data from Google services for the provision and refinement of Google advertising relating to our website.

    If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When Google Ads are used on our website, Google may transmit and process information from other Google services in order to provide background services for the improvement and individualization of Google advertising. For this purpose, data may also be processed by other Google services such as Google Apis, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform and Google Fonts in accordance with the Google Privacy Policy under Google's own data protection responsibility. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    Further information on the responsible handling of business data can be found athttps://business.safety.google/privacy/.

    You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://policies.google.com/privacy.

    The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.

  • Google Analytics

    We use the Google Analytics service provided by Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, email:support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Google Analytics is a web tracker that analyzes the behavior of site visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behavior of site users. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that make it possible to track individual site visitors and their interaction with other Google services, such as the Google Ads advertising network. Data from other Google services is also used to close data gaps using machine learning technologies, modeled statistics and forecasting functions and to compile comprehensive statistics on the content of our website. If Google Analytics is activated on our website, the data collected by Google Analytics is transferred to servers of Google Ireland Limited. As part of order processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. We carry out the analysis using Google Analytics in order to constantly optimize our website and make it more accessible. This is a so-called reach measurement.

    The service or we collect the following data for processing: Data on the interactions of page visitors with the content of the website, data on the handling of the services presented on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behavior in relation to advertising, data on the rough geographical origin, the browser used, operating system and other information on the end device used.

    Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfill the booked web service. Data collection and storage is anonymized. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    You can withdraw your consent at any time. You can find more information on withdrawing your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://policies.google.com/privacy.

    The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.

  • Google Analytics (Google Signals)

    On our website, we use the Google Analytics (Google Signals) service provided by Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, email:support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Google Analytics is a web tracker that analyzes the behavior of page visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behavior of site users. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that make it possible to track individual site visitors and their interaction across devices and sessions with other Google services such as the Google Ads advertising network. Data from other Google services is also used to close data gaps using machine learning technologies, modeled statistics and forecasting functions and to compile comprehensive statistics on the content of our website. If Google Analytics is activated on our website, the data collected by Google Analytics is transferred to servers of Google Ireland Limited. As part of order processing, personal data may also be transferred to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. Personal data is also transferred to the USA. We carry out the analysis using Google Analytics in order to constantly optimize our website and make it more accessible.

    This is a so-called reach measurement.

    The service or we collect the following data for processing:

    Data on the interactions of page visitors with the content of the website, data on the handling of the services presented on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behavior in relation to advertising, data on the rough geographical origin, the browser used, operating system and other information on the end device used, if necessary across devices and regardless of the session.

    Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfill the booked web service. Data collection and storage is anonymized. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest.

    You can access the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://policies.google.com/privacy.

    The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.

  • Google Tag Manager

    We use the Google Tag Manager service of Google Ireland Ltd, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail:support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    Google Tag Manager offers a technical platform to execute and bundle other web tools and web tracking programs by means of so-called "tags". In this context, Google Tag Manager stores cookies on your computer and, if web tracking tools are executed using Google Tag Manager, analyzes your surfing behavior (so-called "tracking"). The data generated by the "tags" are merged, stored and processed by Google Tag Manager under a uniform user interface. All integrated "tags" are listed separately in this privacy policy. When using our website with activated integration of "tags" from Google Tag Manager, data, in particular your IP address and your user activities, are transmitted to Google servers. The tracking tools used in Google Tag Manager ensure that the IP address of Google Tag Manager is anonymized before transmission by anonymizing the source code. Tag Manager can be used to link and evaluate measurement values from different service providers (Google and third-party providers) on the basis of so-called tag management.

    Google Tag Manager helps us to compile reports on website activities and to control the web tools on our website.

    The service and we collect the following data for processing purposes:

    Cookies, web tracking data, outgoing or incoming links, information generated by Google Tag Manager and the web tools triggered by Google Tag Manager when JavaScript code is integrated and activated on the website.

    You can access the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time.

    You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://policies.google.com/privacy.

    The provider also offers an opt-out option athttps://policies.google.com/privacy.

  • Microsoft Clarity

    We use the Microsoft Clarity service of Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, 18 Dublin , Ireland, e-mail:kunden@microsoft.com, website: https://www.microsoft.com/de-de. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    The service enables us to analyze user behavior.

    This enables us to make our website more attractive and improve the user experience.

    You can view the certification of the parent company Microsoft within the framework of the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policyat

    • https://privacy.microsoft.com/de-de/privacystatement.

Integration of external web services and processing of data outside the EU

We use active content from external providers, so-called web services, on our website. By accessing our website, these external providers may receive personal information about your visit to our website. This may result in data being processed outside the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.

We use the following external web services:

  • Font Awesome

    We use the Font Awesome service of Fonticons Inc, 6 Porter Road, Apartment 3R, MA 02140 Cambridge, United States, e-mail:hello@fontawesome.com, website: https://fontawesome.com/. The transfer also takes place to a third country for which there is no adequacy decision by the Commission. Therefore, the usual level of protection for the GDPR cannot be guaranteed during the transfer, as it cannot be ruled out that authorities in the third country, for example, may access the data collected.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    The Font Awesome service is used to load fonts on our website in order to display the site in a visually improved version.

    You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://fontawesome.com/privacy.

  • HubSpot Forms by HubSpot

    On our website, we use the HubSpot Forms by HubSpot service from HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail:privacy@hubspot.com, website: https://www.hubspot.de/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    With the help of hsforms, we can provide you with surveys and forms on our website in a simple way.

    You can access the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://legal.hubspot.com/de/privacy-policy.

  • Hubspot

    We use the Hubspot service from HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, e-mail:hubspotgermany@hubspot.com, website: https://www.hubspot.de/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

    Our legitimate interest lies in achieving the purpose described below.

    HubSpot is a CRM platform for marketing, sales and service.

    The service provides us with tools for social media marketing, content management, web analytics, customer service and search engine optimization, among other things.

    You can access the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policyat

    • https://legal.hubspot.com/de/privacy-policy.

  • Hubspot cookie banner

    We use the Hubspot cookie banner service provided by Hubspot, Inc, 25 First Street, 2141 Cambridge, United States, email:privacy@hubspot.com on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.

    Through the service, a cookie banner is integrated on our site, with which we fulfill our legal obligations.

    You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.

    The rights to which you are entitled with regard to processing can be found at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://legal.hubspot.com/de/privacy-policy.

  • LinkedIn

    We use the LinkedIn service of LinkedIn Ireland Unlimited Company, Wilton Place, 2 Dublin, Ireland, e-mail:info_impressum@cs.linkedin.com, website: https://www.linkedin.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en).

    The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.

    The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.

    When using the Linkedin plugin, we establish a connection to the Linkedin platform in order to give logged-in members of Linkedin the opportunity to interact with us.

    You can view the provider's certification under the EU-US Data Privacy Framework at

    https://www.dataprivacyframework.gov/list. You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy. The

    provider also offers an opt-out option at https://www.linkedin.com/help/linkedin/answer/68763?lang=de.

  • Provenexpert

    We use the Provenexpert service from Expert Systems AG, Quedlinburger Straße 1, 10589 Berlin, Germany on our website.

    The transfer of personal data takes place exclusively to servers in the European Union.

    The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

    Our legitimate interest lies in achieving the purpose described below.

    Provenexperts.com aggregates review information from several portals on our site.

    With regard to the processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.provenexpert.com/de-de/datenschutzbestimmungen/.

    The provider alsooffers an opt-out option athttps://www.provenexpert.com/de-de/datenschutzbestimmungen/.

  • Legal text snippet and modules

    We use the legal text snippet and modules service of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail:support@website-check.de, website: https://www.website-check.de/ on our website.

    The transfer of personal data takes place exclusively to servers in the European Union.

    The legal basis for the processing is Art. 6 para. 1 lit. c GDPR.

    The use of the service helps us to comply with our legal obligations.

    The service is used to load content from our legal texts onto our website. The current legal texts are reloaded via the integration on our site.

    This integration may also be used to load additional technical modules with regard to the legal texts or legally required elements.

    You can find out what rights you have with regard to processing at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.website-check.de/datenschutzerklaerung/.

  • Website-Check Siegel

    We use the Website-Check Siegel service of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail:support@website-check.de, website: https://www.website-check.de/.

    The transfer of personal data takes place exclusively to servers in the European Union.

    The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

    Our legitimate interest lies in achieving the purpose described below.

    The script of Website-Check GmbH is the technical integration of the Website-Check seal. With this seal, we want to show that we take the issue of data protection very seriously.

    Data is transmitted to Website-Check GmbH for the purpose of delivering and displaying the seal on our website.

    With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy.

    Further information on the handling of the transferred data can be found in the provider's privacy policy athttps://www.website-check.de/datenschutzerklaerung/.

  • Social Plug-In - "Facebook by META

    • "

      What personal data is collected and to what extent is it processed?

      On our website we have integrated a social plug-in of the social network "Facebook by META", which is operated by Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail:impressum-support@support.facebook.com, website: http://www.facebook.com/("Facebook by META"). When you access a page that contains such a plug-in, your browser automatically establishes a background connection to the Facebook by META servers. The content of the plug-in is transmitted by Facebook by META directly to your browser and only integrated into our site. Through this integration, Facebook by META receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a Facebook by META profile or are not currently logged in to Facebook by META. This information (including your IP address) is transmitted by your browser directly to a Facebook by META server in Ireland and stored there. If you are logged in to Facebook by META, Facebook by META can directly associate your visit to our website with your Facebook by META profile. If you interact with the plug-ins, for example by clicking the "Like" button or leaving a comment, this information is also transmitted directly to a Facebook by META server and stored there.

    • The information is also published on your Facebook by META profile and displayed to your Facebook by META contacts that you have activated for this purpose.

    • Legal basis for the processing of personal data

      Art. 6 para. 1 lit. a GDPR (if you have registered with "Facebook by META") and Art. 6 para. 1 lit. f GDPR (if you have not registered with Facebook by META).

    • Insofar as the processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator's content on Facebook by META.

    • Purpose of data processing

      The primary purpose of data collection is to offer you an opportunity for social interaction linked to Facebook by META and thus to make our website interactive.

    • The scope of the data collection and the further processing and use of the data you provide by Facebook by META as well as your rights in this regard and setting options to protect your privacy can be found in Facebook by META's data protection information: https:

    • //www.facebook.com/privacy/policy/

      Duration of storage

      Facebook by META will store the data relevant for the provision of the web service for as long as necessary.

    • If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.

    • Objection and deletion option

      If you do not want the Facebook by META social plug-in to be executed, you can also prevent it from being executed by installing a corresponding add-on or script blocker. If you do not want Facebook by META to assign the data collected via our website to your Facebook by META profile, you must log out of Facebook by META before visiting our website. The objection and removal options are otherwise based on the general regulations on the right to object and the right to erasure under data protection law described below in this privacy policy.

  • Social plug-in - "X (formerly Twitter)

    • "

      What personal data is collected and to what extent is it processed?

      On our website, we have integrated a social plug-in of the social network "X (formerly Twitter)", which is operated by X Corp, 1355 Market Street, Suite 900, 94103 San Francisco California, United States, e-mail:de-support@twitter.de, website: https://twitter.com/de("X (formerly Twitter)"). When you access a page that contains such a plug-in, your browser automatically establishes a background connection to the servers of X (formerly Twitter). The content of the plug-in is transmitted by X (formerly Twitter) directly to your browser and only integrated into our site. Through this integration, X (formerly Twitter) receives the information that your browser has loaded a specific page of our website. This also applies if you do not have an X (formerly Twitter) profile or are not currently logged in to X (formerly Twitter). This information (including your IP address) is transmitted directly from your browser to an X (formerly Twitter) server in the United States and stored there. If you are logged in to X (formerly Twitter), X (formerly Twitter) can directly associate your visit to our website with your X (formerly Twitter) profile. If you interact with the plug-ins, for example by clicking the "Like" button or posting a comment, this information is also transmitted directly to an X (formerly Twitter) server and stored there.

    • The information is also published on your X (formerly Twitter) profile and displayed to your X (formerly Twitter) contacts that you have activated for this purpose.

    • Legal basis for the processing of personal data

      Art. 6 para. 1 lit. a GDPR (if you have registered with "X (formerly Twitter)") and Art. 6 para. 1 lit. f GDPR (if you have not registered with X (formerly Twitter)).

    • Insofar as processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator's content on X (formerly Twitter).

    • Purpose of data processing

      The primary purpose of data collection is to provide you with an opportunity for social interaction linked to X (formerly Twitter) and thus to make our website interactive.

    • The scope of data collection and the further processing and use of the data you provide by X (formerly Twitter) as well as your rights in this regard and setting options for protecting your privacy can be found in X (formerly Twitter)'s data protection information: https://x.com/de/privacy

    • Duration of storage

      X (formerly Twitter) will store the data relevant for the provision of the web service for as long as necessary.

    • If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.

    • Objection and deletion option

      If you do not want the social plug-in from X (formerly Twitter) to be executed, you can also prevent it from being executed by installing a corresponding add-on or script blocker. If you do not want X (formerly Twitter) to assign the data collected via our website to your X (formerly Twitter) profile, you must log out of X (formerly Twitter) before visiting our website. The objection and removal options are otherwise based on the general regulations on the right to object and the right to erasure under data protection law described below in this privacy policy.

Information on the use of cookies

  • What personal data is collected and to what extent is it processed?

    We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. Cookies are small text files that your browser can store on your access device. These text files contain a characteristic string of characters that uniquely identifies the browser when you return to our website. The process of saving a cookie file is also referred to as "setting a cookie". Cookies can be set both by the website itself and by external web services. The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.

  • Legal basis for the processing of personal data

    Insofar as cookies are processed on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR, this consent is also deemed to be consent within the meaning of Section 25 para. 1 TDDDG for the setting of cookies on the user's terminal device. Insofar as another legal basis is stated under the GDPR (e.g. for the performance of a contract or to fulfill legal obligations), the storage or setting is based on an exception in accordance with Section 25 (2) TDDDG. This is the case "if the sole purpose of storing information in the end user's terminal equipment or the sole purpose of accessing information already stored in the end user's terminal equipment is to carry out the transmission of a communication over a public telecommunications network" or "if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is strictly necessary to enable the provider of a digital service to provide a digital service explicitly requested by the user". The relevant legal basis can be found in the cookie table listed later in this section.

  • Purpose of the data processing

    The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.

  • Duration of storage

    Our cookies are stored until they are deleted in your browser or, if it is a session cookie, until the session has expired. Details are listed in the following table.

  • Objection and removal options

    You can set your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on a case-by-case basis whether to accept cookies or to accept cookies in principle. Cookies can be used for various purposes, e.g. to recognize that your access device is already connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of your consent until you withdraw it.

Cookie name Server name Provider Purpose Legal basis Storage period Type
__cf_bm .twitter.com X (formerly Twitter) Cloudflare places the __cf_bm cookie on end-user devices accessing customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 30 minutes Security
__cf_bm .hubapi.com, .hsadspixel.net, .hubspot.com, .hsappstatic.net, .hsforms.net, .hubspot.net, .hubspotusercontent-na1.net, .hs-sites.com, .hs-analytics.net,.www.holert.com,.hubspotvideo.com, .hs-scripts.com Hubspot Cloudflare places the __cf_bm cookie on end-user devices accessing customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security
__cf_bm.hs-banner.com Hubspot cookie banner Cloudflare places the __cf_bm cookie on end-user devices accessing customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security
__cf_bm .hubspotusercontent.com, .hs-scripts.com, .hubspot.net,.www.holert.com,.hsforms.net, .allocatus.holert.com, .hubspotusercontent-na1.net, .hubspot.com, .hubspot-logos.com Website operators Cloudflare places the __cf_bm cookie on end-user devices accessing customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 30 minutes Security
__cf_bm .hsforms.com HubSpot Forms by HubSpot Cloudflare places the __cf_bm cookie on end-user devices accessing customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security
__hs_cookie_cat_pref .holert.com Website operator We use the cookie to store the cookie preferences of our site visitors and to ensure that only cookies for which the site visitor has consented to data processing are set and processed on our site. Art. 6 para. 1 lit. c GDPR (fulfillment of legal obligation) approx. 6 months Cookie banner
__hssc .holert.com Hubspot This cookie stores the domain, the number of visitors and the time at which the visits began. It thus determines whether the number of sessions needs to be increased. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 30 minutes Analytics
__hssrc .holert.com Hubspot This cookie measures whether the visitor has restarted their browser and thus determines whether a new website visit has taken place. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
__hstc .holert.com Hubspot This cookie stores the domain, the user token, the time of the first, last and current visit, as well as the number of sessions on the site. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 6 months Analytics
_cfuvid .hubspot.com,.www.holert.com Hubspot This cookie is part of the services offered by Cloudflare - including load balancing, delivery of website content and provision of DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
_cfuvid .hsforms.com HubSpot Forms by HubSpot This cookie is part of the services offered by Cloudflare - including load balancing, website content delivery and providing DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
_cfuvid .www.holert.com,.allocatus.holert.com Website operator This cookie is part of the services offered by Cloudflare - including load balancing, delivery of website content and provision of DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
_fbp .com, .holert.com Facebook Connect Facebook uses this cookie to display advertising products and assign advertising clicks to a user. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 3 months Marketing
_ga holert.com Google Analytics This cookie assigns an ID to a user so that the web tracker can summarize the user's actions under this ID. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 months Analytics
_ga_ holert.com Google Analytics This cookie stores a unique ID for a website visitor in connection with Google Analytics or Google Tag Manager and tracks how the visitor uses the website. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 months Analytics
_gcl_au holert.com Google Tag Manager This cookie is used by Google AdSense to increase the efficiency of advertising. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 3 months Marketing cookie
bscookie .linkedin.com LinkedIn The cookie used assigns an ID to the site visitor and determines statistical data on the site visitor's website visits. This serves to individualize the advertising displayed to the user. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 12 months marketing
hubspotutk .holert.com Hubspot This cookie is used by HubSpot to track visitors to the website. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 6 months Analytics
li_gc .linkedin.com LinkedIn This cookie is used to store the consent of guests to the use of non-mandatory cookies. Art. 6 para. 1 lit. c GDPR (fulfillment of legal obligation) approx. 6 months Cookie banner
lidc .linkedin.com LinkedIn This cookie assigns an ID to the website visitor. This ID is used to collect data on visitor behavior on several websites in order to display individual advertising to the site visitor. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 hours marketing
test_cookie .doubleclick.net Website operator This cookie is set to determine whether the website visitor's browser supports cookies for the Doubleclick service. Art. 6 para. 1 lit. c GDPR (fulfillment of a legal obligation) approx. 15 minutes Cookie banner

Data security and data protection, communication by email

Your personal data is protected by technical and organizational measures during collection, storage and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right to object

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right to information about the information specified in Art. 15 para. 1 GDPR, provided that the rights and freedoms of other persons are not affected (see Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.

Right to rectification

In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.

Right to erasure

In accordance with Art. 17 para. 1 GDPR, you have the right to demand that we erase the personal data we have collected about you if

  • the data is either no longer required;
  • the legal basis for the processing no longer applies due to the withdrawal of your consent
  • you have objected to the processing and there are no legitimate grounds for the processing
  • your data is being processed unlawfully;
  • a legal obligation requires this or a collection pursuant to Art. 8 para. 1 GDPR has taken place.

According to Art. 17 para. 3 GDPR, the right does not exist if

  • the processing is necessary for exercising the right of freedom of expression and information
  • your data has been collected on the basis of a legal obligation
  • the processing is necessary for reasons of public interest
  • the data is necessary for the establishment, exercise or defense of legal claims.

Right to restriction of processing

Pursuant to Art. 18 (1) GDPR, you have the right in individual cases to request the restriction of the processing of your personal data.

This is the case if

  • the accuracy of the personal data is contested by you
  • the processing is unlawful and you do not consent to its erasure
  • the data is no longer required for the purpose of processing, but the data collected is used for the establishment, exercise or defense of legal claims;
  • an objection to the processing pursuant to Art. 21 para. 1 GDPR has been lodged and it is still unclear which interests prevail.

Right of revocation

If you have given us your express consent to the processing of your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

Right to object

In accordance with Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 para. 1 lit. f (in the context of a legitimate interest). You only have this right if there are special circumstances that speak against the storage and processing.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

Holert GmbH
Luise-Ullrich-Straße 20
80636 Munich
Munich, Germany
E-mail:info@holert.com
Phone: +49 89 599974700

Right to data portability

In accordance with Art. 20 GDPR, you have the right to the transfer of personal data concerning you. We will provide the data in a structured, commonly used and machine-readable format. The data can be sent either to you or to a controller named by you.

We will provide you with the following data on request in accordance with Art. 20 para. 1 GDPR:

  • Data collected on the basis of express consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR;
  • Data that we have received from you in accordance with Art. 6 para. 1 lit. b GDPR in the context of existing contracts;
  • Data that has been processed as part of an automated process.

We will transfer the personal data directly to a controller requested by you insofar as this is technically feasible. Please note that we may not transfer data that interferes with the freedoms and rights of other persons in accordance with Art. 20 para. 4 GDPR.

Right to lodge a complaint with the supervisory authority pursuant to Art. 77 para. 1 GDPR

If you suspect that your data is being processed unlawfully on our website, you can of course bring about a judicial clarification of the issue at any time. You also have every other legal option. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 para. 1 GDPR. You have the right to lodge a complaint pursuant to Art. 77 GDPR in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority with which the complaint has been lodged will then inform you of the status and outcome of your complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Created by:

© DURY LEGAL Rechtsanwälte- www.dury.de

© Website-Check GmbH- www.website-check.de

Das Website-Check Siegel. Es zeigt an, dass die Rechtstexte aktuell sind und verlinkt auf eine Website mit weiteren Daten.

Possibility of objection, revocation of consent and deletion

You can set your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on a case-by-case basis whether to accept cookies or to accept cookies in general. Cookies can be used for various purposes, e.g. to recognize that your access device is already connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of your consent until you withdraw it.

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organizational measures during collection, storage and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right to object

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right of access to the information specified in Art. 15 para. 1 GDPR, provided that the rights and freedoms of other persons are not affected (cf. Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.

Right to rectification

In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.

Right to erasure

In accordance with Art. 17 para. 1 GDPR, you have the right to demand that we erase the personal data we have collected about you if

  • the data is either no longer required;
  • the legal basis for the processing no longer applies due to the withdrawal of your consent
  • you have objected to the processing and there are no legitimate grounds for the processing
  • your data is being processed unlawfully;
  • a legal obligation requires this or a collection pursuant to Art. 8 para. 1 GDPR has taken place.

According to Art. 17 para. 3 GDPR, the right does not exist if

  • the processing is necessary for exercising the right of freedom of expression and information
  • your data has been collected on the basis of a legal obligation
  • the processing is necessary for reasons of public interest
  • the data is necessary for the establishment, exercise or defense of legal claims.

Right to restriction of processing

Pursuant to Art. 18 (1) GDPR, you have the right in individual cases to request the restriction of the processing of your personal data.

This is the case if

  • the accuracy of the personal data is contested by you
  • the processing is unlawful and you do not consent to its erasure
  • the data is no longer required for the purpose of processing, but the data collected is used for the establishment, exercise or defense of legal claims;
  • an objection to the processing pursuant to Art. 21 para. 1 GDPR has been lodged and it is still unclear which interests prevail.

Right of revocation

If you have given us your express consent to the processing of your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

Right to object

In accordance with Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 para. 1 lit. f (in the context of a legitimate interest). You only have this right if there are special circumstances that speak against the storage and processing.

How do I exercise my rights?

You can exercise your rights at any time by contacting us using the contact details below:

Holert GmbH
Luise-Ullrich-Straße 20
80636 Munich
E-mail:info@holert.com
Phone: +49 89 599974700

Right to data portability

In accordance with Art. 20 GDPR, you have the right to the transfer of personal data concerning you. We will provide the data in a structured, commonly used and machine-readable format. The data can be sent either to you or to a controller named by you.

We will provide you with the following data on request in accordance with Art. 20 para. 1 GDPR:

  • Data collected on the basis of express consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR;
  • Data that we have received from you in accordance with Art. 6 para. 1 lit. b GDPR in the context of existing contracts;
  • Data that has been processed as part of an automated process.

We will transfer the personal data directly to a controller requested by you insofar as this is technically feasible. Please note that we may not transfer data that interferes with the freedoms and rights of other persons in accordance with Art. 20 para. 4 GDPR.

Right to lodge a complaint with the supervisory authority pursuant to Art. 77 para. 1 GDPR

If you suspect that your data is being processed unlawfully on our website, you can of course bring about a judicial clarification of the issue at any time. You also have every other legal option. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 para. 1 GDPR. The right to lodge a complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority with which the complaint has been lodged will then inform you of the status and outcome of your complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Created by:

© IT-Recht-Kanzlei DURY- www.dury.de

© Website-Check GmbH- www.website-check.de