Qunomedical GmbH Chausseestraße 8 +49 30200042054 firstname.lastname@example.org
You can contact our Data Protection Officer at:
mip Consult GmbH Asmus Eggert, Attorney-at-Law Alte Jakobstr. 77 10179 Berlin, Germany +49 30200042054 email@example.com https://www.sofortdatenschutz.de
We process personal data that we receive from you as part of your use of our website and, if applicable, our business relationship. In the case of purely informative use of the website, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. When you visit our website, we collect the following access data that we technically require to display our website and to ensure stability and security. The access data include the IP address, date and time of the visit, time zone difference compared to Greenwich mean time (GMT), content of the request (i.e. name of the specific visited web page), access status/HTTP status code, respective amount of transmitted data, referrer URL (previously visited page), browser type and version, operating system and its interface, language and version of the browser software, message about successful retrieval. In addition, we obtain your personal data if you contact us by using our contact form or by e-mail. Personal data here include e.g. name, company, e-mail, phone number, subject, message text (hereinafter called "contact information").
We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) for the following purposes and on the following legal bases:
Purpose Insofar as you consent to the processing of personal data for specific purposes, in particular for contacting you (e.g. via our contact form or by e-mail, WhatsApp etc. for handling and processing the request, advertising by telephone, e-mail, SMS, etc.), such processing is legal as you have consented. Your consent may be revoked at any time. Please note that any revocation is effective for the future only. It does not affect any processing that was done prior to the revocation. Any revocation may be addressed to the above-mentioned contact data or to firstname.lastname@example.org Legal basis Consent, Art. 6 (1a) GDPR
Purpose When you contact us (via contact form or by e-mail, telephone or WhatsApp), in addition to any consent given to processing the contact request and its handling, your details are also processed based on steps taken prior to entering into a contract, Art. 6 (1b) GDPR. Legal basis Steps taken at the request of the data subject prior to entering into a contract, Art. 6 (1b) GDPR
Purpose We process your access data (see data specified under item 2 above) to safeguard our legitimate interests or those of third parties. In particular, we pursue the following legitimate interests:
By ticking the checkbox for the Consent Declaration when submitting the contact form you are explicitly giving your informed consent for the collection, processing and use of the personal information, including your health data, that you provide for this purpose to us in order for us to obtain information on options for and the cost of the medical services that you are interested in. This includes the transfer of your data to hospitals, clinics or other health service providers inside and outside the EU/EEA.
Within the organization, entities that need to know your data to fulfill our contractual and regulatory obligations can access your data. In addition, processors (Art. 28 GDPR) engaged by us may also obtain access to data for the above-mentioned purposes. These are companies in the categories IT services, printing services, telecommunications, sales and marketing. If we use processors to provide our services, we will take appropriate legal precautions as well as the relevant technical and organizational measures to protect personal data in accordance with applicable law. Any transfer of data to third parties will be made only within the scope of legal requirements. We will disclose user data to third parties only if this is required, for example, under Art. 6 (1) (b) GDPR for contract purposes or based on legitimate interests pursuant to Art. 6 (1) (f.) GDPR in the economic and effective operation of our business or if you have consented to the data transfer. If the Website is used for purely informational purpose, we generally do not disclose any data to third parties.
For security reasons (e.g. to investigate abusive or fraudulent activities) log-file information is retained for a maximum of four weeks and then deleted (see item 2 above). Data that must be retained further for evidential purposes are exempted from deletion until the respective incident has been finally clarified. If necessary, we process and retain your personal data for the duration of our business relationship, which also includes, for example, initiation and performance of a contract via the contact form or by e-mail. In addition, we are subject to various retention and documentation obligations, inter alia under the German Commercial Code (HGB) and the German Tax Code (AO). The deadlines for retention and documentation specified therein range from two to ten years. Finally, the retention period also depends on the statutory limitation periods, which for example, usually is 3 years according to Sec. 195 et seqq. of the German Civil Code (BGB), but in some cases may be as long as thirty years, with the standard limitation period being three years.
The provided data are processed within the European Union as well as in the case of Google Analytics, Twitter and Salesforce (see last two sections below for complete list) in the USA. Please note that in case of recipients of your data in countries without an adequacy decision by the Commission according to Art. 45 GDPR, as is the case with the USA, we either ensure that they are certified under the EU-U.S. Privacy Shield (such as e.g. Google) or that we have agreed on EU standard data protection clauses with such recipients. This is done to protect your data and to attain an adequate level of protection for your personal data. You have the option of obtaining a copy of, or perusing, the EU standard data protection clauses. If necessary, please contact us, using the contact details specified in item 1 above.
Each and every data subject has:
We would also like to note your right to object according to Art 21. GDPR:
Information about your right to object according to Art. 21 GDPR You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6 (1) (e) GDPR (data processing in the public interest) and Art. 6 (1) (f) of the General Data Protection Regulation (data processing based on balancing of interests); this also includes profiling under these provisions within the meaning of Art. 4 No. 4 GDPR, which we use to analyze questionnaires or for advertising purposes. If you object, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves the purposes of asserting, exercising or defending legal claims. In individual cases, we process your personal data for direct marketing purposes. You have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling insofar as it is associated with such direct marketing. If you object to the processing for direct marketing purposes, we will no longer process your personal data for such purposes. Objections do not require a particular form and no costs are incurred, other than the transmission costs according to the basic tariffs. If possible, any objection should be addressed to:
Qunomedical GmbH Chausseestraße 8 10115 Berlin
or by e-mail to: email@example.com
In principle, we do not use fully automated decision-making pursuant to Art. 22 GDPR as part of access to our Website or in the context of contact via form or by e-mail. Should we use such procedures in individual cases, we will notify you separately, if this is required by law. We do not process your data automatically with the objective of evaluating certain personal aspects (profiling).
On our Website, you must provide the personal data necessary for using our Website for technical or IT security reasons. You cannot use our Website, unless you provide the above-mentioned data. When contacting us via form or by e-mail, you only need to provide the personal data required to process your request. Otherwise we will be unable to process your request.
Our website uses Facebook’s re-targeting technology Website Custom Audience operated by Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94394, USA („Facebook“). This tool permits our online visitors, who are Facebook members, to view relevant advertisement and offers for our services on the Facebook website. For this purpose our website contains Facebook re-targeting pixels, which permit Facebook to identify a member as a visitor of our website on the basis of pseudonymous date and use such information in order to display our advertisement or offers in the Facebook Ads network. This does not involve the collection of personally identifiably information and does therefore not enable us to identify you on Facebook. The pseudonymous data collected through the re-targeting pixels will not be connected with your Facebook user data. More information can be found on Facebook “Custom Audience” re-targeting and how you can adjust your settings at: https://www.facebook.com/settings/?tab=ads and https://www.facebook.com/about/privacy You can refuse Facebook Custom Audiences at: https://www.facebook.com/settings/?tab=ads= and http://www.youronlinechoices.com/de/praferenzmanagement/
On our website, we use third-party services as part of our legitimate interests within the meaning of Art. 6 (1) (f) GDPR, i.e. our interest in an optimal Website. The user's IP address is transmitted to such third-party providers. The IP address is technically required for the contents to be displayed. Third party providers may use so-called web pixels (invisible graphics, also referred to as "web beacons") for evaluation or marketing purposes. The web pixels can be used to evaluate information, such as the traffic of the Website. The third parties may store information in cookies on users' devices. We use the following third-party providers on our website: