As the provider of this website, we are required by law to inform you about the purpose, scope and nature of the collection and use of your personal data. To give you a good feeling for the way in which we collect, process and use data, we would like to provide an overview of data processing. If you have any further questions, you are of course welcome to contact us at any time.
The following data protection declaration applies to the use of our online offer www.germanbionic.de and germanbionic.com.
We attach great importance to data protection. The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).
1 | Responsible
The person responsible for the collection, processing and use of your personal data within the meaning of Art. 4 No. 7 GDPR is
German Bionic Systems GmbH
Headquarters: August-Wessels Straße 23, 86156 Augsburg, Germany
Local Court Charlottenburg, HRB 199907 B
Managing Directors: Peter Heiligensetzer and Armin G. Schmidt
2 | What data we use and why
On the one hand, your data is collected by you providing it to us, on the other hand, data, especially technical data, is collected automatically when you visit our website.
Part of the data is collected to ensure error-free operation of our website. Other data may be used for analysis.
You can learn more about it as follows:
2.1 | Hosting
The hosting services used by us serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purpose of operating the website.
In doing so, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors of this website on the basis of our legitimate interests in an efficient and secure provision of our website pursuant to Art. 6 para. 1 p. 1 f) GDPR in conjunction with Art. 28GDPR. Art. 28 GDPR.
2.2 | Access data
We collect information about you when you use this website. We automatically collect information about your usage behavior and your interaction with us and register data about your computer or mobile device. We collect, store and use data about each access to our website (so-called server log files). The access data includes:
- Name and URL of the retrieved file
- Date and time of the retrieval transferred data volume
- Message about successful retrieval (HTTP response code)
- Browser type and version
- Operating system
- Referer URL (i.e. the previously visited page)
- Websites that are called up by the user’s system via our website
- Internet service provider of the user
- IP address and the requesting provider
We use this log data without assigning it to you personally or otherwise profiling it for statistical evaluations for the purpose of operating, securing and optimizing our website, but also to anonymously record the number of visitors to our website (traffic) and the extent and type of use of our website and services, as well as for billing purposes to measure the number of clicks received from cooperation partners. This information allows us to provide personalized and location-based content and to analyze traffic, troubleshoot and improve our services.
This is also our legitimate interest according to Art. 6 para. 1 p. 1 f) GDPR.
We reserve the right to subsequently review the log data if there is a justified suspicion of unlawful use based on concrete indications. We store IP addresses in the log files for a limited period of time if this is necessary for security purposes or for the provision of services or the billing of a service, e.g. if you use one of our offers. After cancellation of the order process or after receipt of payment, we delete the IP address if it is no longer required for security purposes. We also store IP addresses if we have a concrete suspicion of a criminal offense in connection with the use of our website. In addition, as part of your account, we store the date of your last visit (e.g. when registering, logging in, clicking links, etc.).
2.3 | Cookies
We use so-called session cookies to optimize our website. A session cookie is a small text file that is sent by the respective servers when you visit a website and is temporarily stored on your hard drive. This file as such contains a so-called session ID, with which various requests of your browser can be assigned to the common session. This allows your computer to be recognized when you return to our website. These cookies are deleted after you close your browser. They are used, for example, so that you can use the shopping cart function across multiple pages.
To a lesser extent, we also use persistent cookies (also small text files that are stored on your terminal device), which remain on your terminal device and enable us to recognize your browser on your next visit. These cookies are stored on your hard drive and delete themselves after the specified time. Their lifespan is between 1 month and 10 years. This allows us to present our offer to you in a more user-friendly, effective and secure manner and, for example, to display information on the page that is specifically tailored to your interests.
The following data and information are stored in the cookies:
- Log-in information
- Language settings
- entered search terms
- Information about the number of visits to our website and the use of individual functions of our website.
When the cookie is activated, it is assigned an identification number and an assignment of your personal data to this identification number is not made. Your name, IP address or similar data that would allow the cookie to be assigned to you are not inserted into the cookie. Based on the cookie technology, we only receive pseudonymized information, for example, about which pages of our store were visited, which products were viewed, etc..
You can set your browser so that you are informed in advance about the setting of cookies and can decide on a case-by-case basis whether you want to exclude the acceptance of cookies for certain cases or in general, or that cookies are completely prevented. This may limit the functionality of the website.
2.4 | Contacting
– via email
If you contact us via email, the personal data you send us with your email will be stored.
– via contact form
In addition, you can fill out a contact form on our website via the button “Request demo”. In doing so, the data you enter in the input mask will be transmitted to us and stored.
– via Live Chat There is also the possibility to use our Live Chat. This data is also stored by to be able to process your request.
The basis for this storage is our legitimate interest in communication with interested users according to Art. 6 para. 1 lit. f GDPR and, in the case of contract inquiries, also the storage of contract data according to Art. 6 para. 1 lit. b GDPR.
2.5 | Newsletter
We offer you the possibility to subscribe to our free newsletter via our website.
We use MailChimp, a service of The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA, hereinafter referred to as “The Rocket Science Group”, to send newsletters.
In addition, The Rocket Science Group offers under http://mailchimp.com/legal/privacy/ further data protection information.
If you register for our newsletter, the data requested during the registration process, such as your e-mail address and, optionally, your name and address, will be processed by The Rocket Science Group. In addition, your IP address and the date and time of your registration will be stored.
The newsletter subsequently sent via The Rocket Science Group also contains a so-called tracking pixel, also called a “web beacon”. With the help of this tracking pixel, we can evaluate whether and when you have read our newsletter and whether you have followed any links contained in the newsletter. In addition to other technical data, such as the data of your IT system and your IP address, the processed data is stored so that we can optimize our newsletter offer and respond to the wishes of the readers. The data is thus used to increase the quality and attractiveness of our newsletter offer.
The legal basis for the dispatch of the newsletter and the analysis is Art. 6 para. 1 lit. a.) GDPR.
In accordance with Art. 7 (3) GDPR, you can revoke your consent to receive the newsletter at any time with effect for the future. To do so, you simply need to inform us of your revocation or click on the unsubscribe link contained in each newsletter.
2.6| CRM and marketing
We use Pipedrive as our CRM tool for processing and storing contact data.
When contacting us (via contact form or email), the user’s details are processed for the purpose of handling the contact request and its processing pursuant to Art. 6 para. 1 lit. b) GDPR.
In order to be able to process and respond to your concerns and messages as quickly as possible, we have connected our contact form with our customer relationship management tool (“CRM tool”) Pipedrive. The data submitted when filling out the form is sent to Pipedrive and stored there on Pipedrive servers.
Subsequently, you will receive a confirmation email from us of your contact request.
This email contains so-called tracking pixels that we use to evaluate whether and when you have
read our email and whether you followed the possibly contained links.
Within the scope of our legitimate interest in a technically flawless online offer and its economically efficient design and optimization, we use the following data
In order to integrate various databases and tools, we use Zapier, a service of Zapier Inc., 548 Market St #62411, San Francisco, California 94104, USA, in accordance with Art. 6 Para. 1 lit. f GDPR. In the process, your customer data (but not your payment data) is transmitted to Zapier.
We use “Vimeo” on our website to display videos. This is a service of Vimeo, LL C, 555 West 18th Street, New York, New York 10011, USA, hereinafter referred to as “Vimeo”.
Partial processing of user data takes place on Vimeo servers in the USA.
The legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the quality improvement of our website.
If you visit a page of our website in which a video is embedded, a connection to the servers of Vimeo in the USA is established to display the video. For technical reasons, it is necessary that Vimeo processes your IP address. In addition, the date and time of your visit to our website are also recorded.
If you are logged into Vimeo at the same time as you visit one of our websites that embeds a Vimeo video, Vimeo may assign the information collected in this way to your personal user account there.
If you want to prevent this, you must either log out of Vimeo before visiting our website or configure your user account with Vimeo accordingly.
The legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest lies in the quality improvement of our website and in the legitimate interest of Vimeo to statistically analyze user behavior for optimization and marketing purposes.
Vimeo offers under
for further information on the collection and use of data and on your rights and options for protecting your privacy.
2.9 | Applications
Through our website you can also send us your application documents, which we will then process in order to consider a possible employment with us.
The legal basis for this is Art. 6 para. 1 b) GDPR.
To handle this task, we have called in Personio GmbH www.personio.de. as an order processor.
For more information on data processing, please visit our applicant portal.
2.10 | Google Analytics
We use Google Analytics, a web analytics service provided by Google, Inc (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about the use of this website by visitors to the site is usually transmitted to a Google server in the USA and stored there.
This is also our legitimate interest according to Art. 6 para. 1 p. 1 f) GDPR.
Google has submitted to the Privacy Shield agreement concluded between the European Union and the USA and has certified itself. Google thereby undertakes to comply with the standards and regulations of European data protection law. You can find more information in the entry linked below:
We have activated IP anonymization on this website (anonymizeIp). However, this means that your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage.
You can also prevent the transfer of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
As an alternative to the browser plugin or within browsers on mobile devices, you can click on the following link to set an opt-out cookie that will prevent the collection by Google Analytics within this website in the future (this opt-out cookie only works in this browser and only for this domain. If you delete the cookies in your browser, you must click this link again): [Disable Google Analytics]
3 | Storage duration
Unless specifically stated, we store personal data only for as long as necessary to fulfill the purposes pursued.
In some cases, the legislator provides for the retention of personal data, for example in tax or commercial law. In these cases, we only continue to store the data for these legal purposes, but do not process it in any other way and delete it after the legal retention period has expired.
4 | Disclosure of data to third parties
In principle, we only use your personal data within our company.
If and to the extent that we involve third parties in the performance of contracts (such as logistics service providers), they will only receive personal data to the extent that the transfer is necessary for the corresponding service.
In the event that we outsource certain parts of data processing (“commissioned processing”), we contractually oblige commissioned processors to use personal data only in accordance with the requirements of data protection laws and to ensure the protection of the rights of the data subject.
4.1 | Transfer of data abroad, in particular USA
If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this will only be done in accordance with the legal requirements.
Subject to express consent or contractually or legally required transfer, we only process or have data processed in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection regulations (Art. 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).
5 | Data security
We make maximum efforts to ensure the security of your data within the framework of the applicable data protection laws and technical possibilities.
Your personal data is transmitted encrypted with us. We use the SSL (Secure Socket Layer) coding system, but we would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, which we continually adapt to the state of the art.
We also do not guarantee that our offer will be available at certain times; disruptions, interruptions or failures cannot be ruled out. The servers we use are carefully backed up on a regular basis.
6 | Social media accounts
We use the social networks LinkedIn and Twitter.
We have integrated links to our appearances on the social networks on our website.
The short message service Twitter is a service of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. As a user, you can share our texts and images and tell us via the short message service whether you like the content. You can also subscribe to us as the author of the content. You can find out more about how Twitter handles data protection at https://twitter.com/de/privacy.
7 | Rights of the data subjects
As a data subject, you are entitled to various rights under the GDPR, which arise in particular from Art. 15 to 21 GDPR:
Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions. If the personal data concerning you is processed for the purposes of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.
Right of revocation for consents: You have the right to revoke any consent you have given at any time.
Right of access: You have the right to request confirmation as to whether data in question is being processed and to obtain information about this data, as well as further information and a copy of the data in accordance with the legal requirements.
Right to rectification: In accordance with the law, you have the right to request that data concerning you be completed or that inaccurate data concerning you be rectified.
Right to erasure and restriction of processing: You have the right, in accordance with the law, to request that data relating to you be erased immediately or, alternatively, to request restriction of the processing of the data in accordance with the law.
Right to data portability: You have the right to receive data relating to you that you have provided to us in a structured, common and machine-readable format, or to request that it be transferred to another controller, in accordance with the law.
Complaint to supervisory authority: In accordance with the law and without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a data protection supervisory authority, in particular a supervisory authority in the Member State where you usually reside, the supervisory authority of your place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
8 | Data Protection Officer
If you still have questions or concerns about data protection, please contact our data protection officer: email@example.com