Pri­va­cy Poli­cy

Cont­act us to request sys­tems for non-des­truc­ti­ve & cou­pling agent-free ultra­so­nic test­ing

We are very deligh­ted that you have shown inte­rest in our enter­pri­se. Data pro­tec­tion is of a par­ti­cu­lar­ly high prio­ri­ty for the manage­ment of the Micro­vis­ta GmbH. The use of the Inter­net pages of the Micro­vis­ta GmbH is pos­si­ble wit­hout any indi­ca­ti­on of per­so­nal data; howe­ver, if a data sub­ject wants to use spe­cial enter­pri­se ser­vices via our web­site, pro­ces­sing of per­so­nal data could beco­me neces­sa­ry. If the pro­ces­sing of per­so­nal data is neces­sa­ry and the­re is no sta­tu­to­ry basis for such pro­ces­sing, we gene­ral­ly obtain con­sent from the data sub­ject.

The pro­ces­sing of per­so­nal data, such as the name, address, e‑mail address, or tele­pho­ne num­ber of a data sub­ject shall always be in line with the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR), and in accordance with the coun­try-spe­ci­fic data pro­tec­tion regu­la­ti­ons appli­ca­ble to the Micro­vis­ta GmbH. By means of this data pro­tec­tion decla­ra­ti­on, our enter­pri­se would like to inform the gene­ral public of the natu­re, scope, and pur­po­se of the per­so­nal data we coll­ect, use and pro­cess. Fur­ther­mo­re, data sub­jects are infor­med, by means of this data pro­tec­tion decla­ra­ti­on, of the rights to which they are entit­led.

As the con­trol­ler, the Micro­vis­ta GmbH has imple­men­ted num­e­rous tech­ni­cal and orga­niza­tio­nal mea­su­res to ensu­re the most com­ple­te pro­tec­tion of per­so­nal data pro­ces­sed through this web­site. Howe­ver, Inter­net-based data trans­mis­si­ons may in prin­ci­ple have secu­ri­ty gaps, so abso­lu­te pro­tec­tion may not be gua­ran­teed. For this reason, every data sub­ject is free to trans­fer per­so­nal data to us via alter­na­ti­ve means, e.g. by tele­pho­ne.

1. Defi­ni­ti­ons

The data pro­tec­tion decla­ra­ti­on of the Micro­vis­ta GmbH is based on the terms used by the Euro­pean legis­la­tor for the adop­ti­on of the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR). Our data pro­tec­tion decla­ra­ti­on should be legi­ble and under­stan­da­ble for the gene­ral public, as well as our cus­to­mers and busi­ness part­ners. To ensu­re this, we would like to first explain the ter­mi­no­lo­gy used.

In this data pro­tec­tion decla­ra­ti­on, we use, inter alia, the fol­lo­wing terms:

a) Per­so­nal data

Per­so­nal data means any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (“data sub­ject”). An iden­ti­fia­ble natu­ral per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­ti­cu­lar by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or to one or more fac­tors spe­ci­fic to the phy­si­cal, phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or social iden­ti­ty of that natu­ral per­son.

b) Per­son con­cer­ned

Data sub­ject is any iden­ti­fied or iden­ti­fia­ble natu­ral per­son, who­se per­so­nal data is pro­ces­sed by the con­trol­ler respon­si­ble for the pro­ces­sing.

c) Pro­ces­sing

Pro­ces­sing is any ope­ra­ti­on or set of ope­ra­ti­ons which is per­for­med on per­so­nal data or on sets of per­so­nal data, whe­ther or not by auto­ma­ted means, such as coll­ec­tion, recor­ding, orga­ni­sa­ti­on, struc­tu­ring, sto­rage, adapt­a­ti­on or altera­ti­on, retrie­val, con­sul­ta­ti­on, use, dis­clo­sure by trans­mis­si­on, dis­se­mi­na­ti­on or other­wi­se making available, ali­gnment or com­bi­na­ti­on, rest­ric­tion, era­su­re or des­truc­tion.

d) Rest­ric­tion of pro­ces­sing

Rest­ric­tion of pro­ces­sing is the mar­king of stored per­so­nal data with the aim of limi­ting their pro­ces­sing in the future.

e) Pro­fil­ing

Pro­fil­ing means any form of auto­ma­ted pro­ces­sing of per­so­nal data con­sis­ting of the use of per­so­nal data to eva­lua­te cer­tain per­so­nal aspects rela­ting to a natu­ral per­son, in par­ti­cu­lar to ana­ly­se or pre­dict aspects con­cer­ning that natu­ral person’s per­for­mance at work, eco­no­mic situa­ti­on, health, per­so­nal pre­fe­ren­ces, inte­rests, relia­bi­li­ty, beha­viour, loca­ti­on or move­ments.

f) Pseud­ony­miza­ti­on

Pseud­ony­mi­sa­ti­on is the pro­ces­sing of per­so­nal data in such a man­ner that the per­so­nal data can no lon­ger be attri­bu­ted to a spe­ci­fic data sub­ject wit­hout the use of addi­tio­nal infor­ma­ti­on, pro­vi­ded that such addi­tio­nal infor­ma­ti­on is kept sepa­ra­te­ly and is sub­ject to tech­ni­cal and orga­ni­sa­tio­nal mea­su­res to ensu­re that the per­so­nal data are not attri­bu­ted to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son.

g) Con­trol­ler or per­son respon­si­ble for pro­ces­sing

Con­trol­ler or con­trol­ler respon­si­ble for the pro­ces­sing is the natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which, alo­ne or joint­ly with others, deter­mi­nes the pur­po­ses and means of the pro­ces­sing of per­so­nal data; whe­re the pur­po­ses and means of such pro­ces­sing are deter­mi­ned by Uni­on or Mem­ber Sta­te law, the con­trol­ler or the spe­ci­fic cri­te­ria for its nomi­na­ti­on may be pro­vi­ded for by Uni­on or Mem­ber Sta­te law.

h) Pro­ces­sor

Pro­ces­sor is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which pro­ces­ses per­so­nal data on behalf of the con­trol­ler.

i) Reci­pi­ent

Reci­pi­ent is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or ano­ther body, to which the per­so­nal data are dis­c­lo­sed, whe­ther a third par­ty or not. Howe­ver, public aut­ho­ri­ties which may recei­ve per­so­nal data in the frame­work of a par­ti­cu­lar inquiry in accordance with Uni­on or Mem­ber Sta­te law shall not be regard­ed as reci­pi­ents; the pro­ces­sing of tho­se data by tho­se public aut­ho­ri­ties shall be in com­pli­ance with the appli­ca­ble data pro­tec­tion rules accor­ding to the pur­po­ses of the pro­ces­sing.

j) Third par­ty

Third par­ty is a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or body other than the data sub­ject, con­trol­ler, pro­ces­sor and per­sons who, under the direct aut­ho­ri­ty of the con­trol­ler or pro­ces­sor, are aut­ho­ri­sed to pro­cess per­so­nal data.

k) Con­sent

Con­sent of the data sub­ject is any free­ly given, spe­ci­fic, infor­med and unam­bi­guous indi­ca­ti­on of the data subject’s wis­hes by which he or she, by a state­ment or by a clear affir­ma­ti­ve action, signi­fies agree­ment to the pro­ces­sing of per­so­nal data rela­ting to him or her.

2. Name and address of the con­trol­ler

Con­trol­ler for the pur­po­ses of the Gene­ral Data Pro­tec­tion Regu­la­ti­on (GDPR), other data pro­tec­tion laws appli­ca­ble in Mem­ber sta­tes of the Euro­pean Uni­on and other pro­vi­si­ons rela­ted to data pro­tec­tion is:

Micro­vis­ta GmbH, Am Mön­chen­fel­de 12, 38889 Blan­ken­burg, Ger­ma­ny, Pho­ne: +49 3944 950–50, Email: info@microvista.de, Web­site: https://www.microvista.de

3. Coo­kies

The Inter­net pages of the Micro­vis­ta GmbH use coo­kies. Coo­kies are text files that are stored in a com­pu­ter sys­tem via an Inter­net brow­ser.

Many Inter­net sites and ser­vers use coo­kies. Many coo­kies con­tain a so-cal­led coo­kie ID. A coo­kie ID is a uni­que iden­ti­fier of the coo­kie. It con­sists of a cha­rac­ter string through which Inter­net pages and ser­vers can be assi­gned to the spe­ci­fic Inter­net brow­ser in which the coo­kie was stored. This allows visi­ted Inter­net sites and ser­vers to dif­fe­ren­tia­te the indi­vi­du­al brow­ser of the dats sub­ject from other Inter­net brow­sers that con­tain other coo­kies. A spe­ci­fic Inter­net brow­ser can be reco­gni­zed and iden­ti­fied using the uni­que coo­kie ID.

Through the use of coo­kies, the Micro­vis­ta GmbH can pro­vi­de the users of this web­site with more user-fri­end­ly ser­vices that would not be pos­si­ble wit­hout the coo­kie set­ting.

By means of a coo­kie, the infor­ma­ti­on and offers on our web­site can be opti­mi­zed with the user in mind. Coo­kies allow us, as pre­vious­ly men­tio­ned, to reco­gni­ze our web­site users. The pur­po­se of this reco­gni­ti­on is to make it easier for users to uti­li­ze our web­site. The web­site user that uses coo­kies, e.g. does not have to enter access data each time the web­site is acces­sed, becau­se this is taken over by the web­site, and the coo­kie is thus stored on the user’s com­pu­ter sys­tem. Ano­ther exam­p­le is the coo­kie of a shop­ping cart in an online shop. The online store remem­bers the artic­les that a cus­to­mer has pla­ced in the vir­tu­al shop­ping cart via a coo­kie.

The data sub­ject may, at any time, pre­vent the set­ting of coo­kies through our web­site by means of a cor­re­spon­ding set­ting of the Inter­net brow­ser used, and may thus per­ma­nent­ly deny the set­ting of coo­kies. Fur­ther­mo­re, alre­a­dy set coo­kies may be dele­ted at any time via an Inter­net brow­ser or other soft­ware pro­grams. This is pos­si­ble in all popu­lar Inter­net brow­sers. If the data sub­ject deac­ti­va­tes the set­ting of coo­kies in the Inter­net brow­ser used, not all func­tions of our web­site may be enti­re­ly usable.

a) Coo­kies through social media plug­ins

Auf unse­rer Web­sei­te wer­den Ver­lin­kun­gen zu unse­ren Social Media Sei­ten bereit­ge­stellt (You­Tube, Lin­ke­dIn, Xing, Face­book, Insta­gram), was durch die Ein­bet­tung eines Social Media Plug­ins geschieht („sozia­le Netz­werk-Icons des Page­buil­ders Ele­men­tor“). Dadurch kön­nen Coo­kies über vie­le Web­sei­ten hin­weg ver­wen­det wer­den und Infor­ma­tio­nen über Ihre Online-Akti­vi­tä­ten sam­meln. Die­se Coo­kies wer­den durch Dritt­an­bie­ter wie Wer­be- oder Ana­ly­se­un­ter­neh­men (sozia­le Netz­wer­ke) gesetzt.

4. Coll­ec­tion of gene­ral data and infor­ma­ti­on

The web­site of the Micro­vis­ta GmbH coll­ects a series of gene­ral data and infor­ma­ti­on when a data sub­ject or auto­ma­ted sys­tem calls up the web­site. This gene­ral data and infor­ma­ti­on are stored in the ser­ver log files. Coll­ec­ted may be (1) the brow­ser types and ver­si­ons used, (2) the ope­ra­ting sys­tem used by the acces­sing sys­tem, (3) the web­site from which an acces­sing sys­tem rea­ches our web­site (so-cal­led refer­rers), (4) the sub-web­sites, (5) the date and time of access to the Inter­net site, (6) an Inter­net pro­to­col address (IP address), (7) the Inter­net ser­vice pro­vi­der of the acces­sing sys­tem, and (8) any other simi­lar data and infor­ma­ti­on that may be used in the event of attacks on our infor­ma­ti­on tech­no­lo­gy sys­tems.

When using the­se gene­ral data and infor­ma­ti­on, the Micro­vis­ta GmbH does not draw any con­clu­si­ons about the data sub­ject. Rather, this infor­ma­ti­on is nee­ded to (1) deli­ver the con­tent of our web­site cor­rect­ly, (2) opti­mi­ze the con­tent of our web­site as well as its adver­ti­se­ment, (3) ensu­re the long-term via­bi­li­ty of our infor­ma­ti­on tech­no­lo­gy sys­tems and web­site tech­no­lo­gy, and (4) pro­vi­de law enforce­ment aut­ho­ri­ties with the infor­ma­ti­on neces­sa­ry for cri­mi­nal pro­se­cu­ti­on in case of a cyber-attack. The­r­e­fo­re, the Micro­vis­ta GmbH ana­ly­zes anony­mously coll­ec­ted data and infor­ma­ti­on sta­tis­ti­cal­ly, with the aim of incre­asing the data pro­tec­tion and data secu­ri­ty of our enter­pri­se, and to ensu­re an opti­mal level of pro­tec­tion for the per­so­nal data we pro­cess. The anony­mous data of the ser­ver log files are stored sepa­ra­te­ly from all per­so­nal data pro­vi­ded by a data sub­ject.

5. Cont­act pos­si­bi­li­ty via the web­site

The web­site of the Micro­vis­ta GmbH con­ta­ins infor­ma­ti­on that enables a quick elec­tro­nic cont­act to our enter­pri­se, as well as direct com­mu­ni­ca­ti­on with us, which also includes a gene­ral address of the so-cal­led elec­tro­nic mail (e‑mail address). If a data sub­ject cont­acts the con­trol­ler by e‑mail or via a cont­act form, the per­so­nal data trans­mit­ted by the data sub­ject are auto­ma­ti­cal­ly stored. Such per­so­nal data trans­mit­ted on a vol­un­t­a­ry basis by a data sub­ject to the data con­trol­ler are stored for the pur­po­se of pro­ces­sing or cont­ac­ting the data sub­ject. The­re is no trans­fer of this per­so­nal data to third par­ties.

a) Use of Goog­le reCAPTCHA

reCAPTCHA is a free captcha ser­vice from Goog­le that pro­tects web­sites from spam soft­ware and abu­se by non-human visi­tors. This ser­vice is most often used when you fill out forms on the Inter­net. A captcha ser­vice is a kind of auto­ma­tic turing test, which is sup­po­sed to ensu­re that an action on the inter­net is done by a human being
and not by a bot. Clas­si­cal captchas work with small tasks that are easy to sol­ve for humans, but have con­sidera­ble dif­fi­cul­ties for machi­nes. With reCAPTCHA you don’t have to actively sol­ve puz­zles any­mo­re. The tool uses modern risk tech­ni­ques to distin­gu­ish humans from bots. Here you only have to tick the text field “I am not a robot” or with Invi­si­ble reCAPTCHA — which we use — even this is no lon­ger neces­sa­ry.

Through the use of reCAPTCHA, data is trans­mit­ted to Goog­le in order to deter­mi­ne whe­ther you are real­ly a human being. reCAPTCHA the­r­e­fo­re ser­ves the secu­ri­ty of our web­site and con­se­quent­ly your secu­ri­ty. For exam­p­le, wit­hout reCAPTCHA, it could hap­pen that a bot regis­ters as many e‑mail addres­ses as pos­si­ble during regis­tra­ti­on in order to “spam” forums or blogs with unwan­ted adver­ti­sing con­tent. With reCAPTCHA we can avo­id such bot attacks.

reCAPTCHA coll­ects per­so­nal data from users to deter­mi­ne whe­ther the actions on our web­site are actual­ly from peo­p­le. Thus, the IP address and other data that Goog­le requi­res for the reCAPTCHA ser­vice can be sent to Goog­le. IP addres­ses are almost always shor­ten­ed within the mem­ber sta­tes of the EU or other signa­to­ry sta­tes to the Agree­ment on the Euro­pean Eco­no­mic Area befo­re the data lands on a ser­ver in the USA. The IP address is not com­bi­ned with any other data held by Goog­le unless you are signed in with your Goog­le Account while using reCAPTCHA. First, the reCAPTCHA algo­rithm checks whe­ther Goog­le coo­kies from other Goog­le ser­vices (You­Tube, Gmail, etc.) are alre­a­dy pla­ced on your brow­ser. Then reCAPTCHA sets an addi­tio­nal coo­kie in your brow­ser and takes a snapshot of your brow­ser win­dow.

The fol­lo­wing list of coll­ec­ted brow­ser and user data does not cla­im to be com­ple­te. Rather, they are examp­les of data which, to our know­ledge, are pro­ces­sed by Goog­le.

  • Refer­rer URL (the address of the page the visi­tor comes from)
  • IP address (i.e. 256.123.123.1)
  • Infor­ma­ti­on about the ope­ra­ting sys­tem (the soft­ware that enables your com­pu­ter to ope­ra­te. Known ope­ra­ting sys­tems are Win­dows, Mac OS X or Linux)
  • Coo­kies (small text files that store data in your brow­ser)
  • Mou­se and key­board beha­vi­or (every action you per­form with the mou­se or key­board is stored)
  • Date and lan­guage set­tings (which lan­guage or date you have pre­set on your PC is stored)
  • All Java­script objects (Java­Script is a pro­gramming lan­guage that allows web­sites to adapt to the user. Java­Script objects can coll­ect all kinds of data under one name)
  • Screen reso­lu­ti­on (shows how many pixels the image con­sists of)
  • It is indis­pu­ta­ble that Goog­le uses and ana­ly­zes this data even befo­re you click on the check­box “I am not a robot”. With the Invi­si­ble reCAPTCHA ver­si­on even the ticking is omit­ted and the who­le reco­gni­ti­on pro­cess runs in the back­ground. How much and what kind of data Goog­le exact­ly stores is not known by Goog­le in detail.

If you do not want any data about you or your beha­viour to be trans­mit­ted to Goog­le, you must log out of Goog­le com­ple­te­ly and dele­te all Goog­le coo­kies befo­re you visit our web­site or use the reCAPTCHA soft­ware. In prin­ci­ple, the data is auto­ma­ti­cal­ly trans­mit­ted to Goog­le as soon as you visit our web­site. To dele­te this data again, you must cont­act Goog­le sup­port at https://support.google.com/?hl=de&tid=331589808227.

So when you use our web­site, you agree that Goog­le LLC and its agents auto­ma­ti­cal­ly coll­ect, pro­cess and use data.

You can learn more about reCAPTCHA on Google’s web deve­lo­p­ment page at https://developers.google.com/recaptcha/.

6. Rou­ti­ne era­su­re and blo­cking of per­so­nal data

The data con­trol­ler shall pro­cess and store the per­so­nal data of the data sub­ject only for the peri­od neces­sa­ry to achie­ve the pur­po­se of sto­rage, or as far as this is gran­ted by the Euro­pean legis­la­tor or other legis­la­tors in laws or regu­la­ti­ons to which the con­trol­ler is sub­ject to.

If the sto­rage pur­po­se is not appli­ca­ble, or if a sto­rage peri­od pre­scri­bed by the Euro­pean legis­la­tor or ano­ther com­pe­tent legis­la­tor expi­res, the per­so­nal data are rou­ti­ne­ly blo­cked or era­sed in accordance with legal requi­re­ments.

7. Rights of the data sub­ject

a) Right to con­fir­ma­ti­on

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to obtain from the con­trol­ler the con­fir­ma­ti­on as to whe­ther or not per­so­nal data con­cer­ning him or her are being pro­ces­sed. If a data sub­ject wis­hes to avail hims­elf of this right of con­fir­ma­ti­on, he or she may, at any time, cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler.

b) Right to infor­ma­ti­on

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to obtain from the con­trol­ler free infor­ma­ti­on about his or her per­so­nal data stored at any time and a copy of this infor­ma­ti­on. Fur­ther­mo­re, the Euro­pean direc­ti­ves and regu­la­ti­ons grant the data sub­ject access to the fol­lo­wing infor­ma­ti­on:

  • the pur­po­ses of the pro­ces­sing;
  • the cate­go­ries of per­so­nal data con­cer­ned;
  • the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­so­nal data have been or will be dis­c­lo­sed, in par­ti­cu­lar reci­pi­ents in third count­ries or inter­na­tio­nal orga­ni­sa­ti­ons;
  • whe­re pos­si­ble, the envi­sa­ged peri­od for which the per­so­nal data will be stored, or, if not pos­si­ble, the cri­te­ria used to deter­mi­ne that peri­od;
  • the exis­tence of the right to request from the con­trol­ler rec­ti­fi­ca­ti­on or era­su­re of per­so­nal data, or rest­ric­tion of pro­ces­sing of per­so­nal data con­cer­ning the data sub­ject, or to object to such pro­ces­sing;
  • the exis­tence of the right to lodge a com­plaint with a super­vi­so­ry aut­ho­ri­ty;
  • whe­re the per­so­nal data are not coll­ec­ted from the data sub­ject, any available infor­ma­ti­on as to their source;
  • the exis­tence of auto­ma­ted decis­i­on-making, inclu­ding pro­fil­ing, refer­red to in Artic­le 22(1) and (4) of the GDPR and, at least in tho­se cases, meaningful infor­ma­ti­on about the logic invol­ved, as well as the signi­fi­can­ce and envi­sa­ged con­se­quen­ces of such pro­ces­sing for the data sub­ject.

Fur­ther­mo­re, the data sub­ject shall have a right to obtain infor­ma­ti­on as to whe­ther per­so­nal data are trans­fer­red to a third coun­try or to an inter­na­tio­nal orga­ni­sa­ti­on. Whe­re this is the case, the data sub­ject shall have the right to be infor­med of the appro­pria­te safe­guards rela­ting to the trans­fer.

If a data sub­ject wis­hes to avail hims­elf of this right of access, he or she may at any time cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler.

c) Right of rec­ti­fi­ca­ti­on

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to obtain from the con­trol­ler wit­hout undue delay the rec­ti­fi­ca­ti­on of inac­cu­ra­te per­so­nal data con­cer­ning him or her. Taking into account the pur­po­ses of the pro­ces­sing, the data sub­ject shall have the right to have incom­ple­te per­so­nal data com­ple­ted, inclu­ding by means of pro­vi­ding a sup­ple­men­ta­ry state­ment.

If a data sub­ject wis­hes to exer­cise this right to rec­ti­fi­ca­ti­on, he or she may, at any time, cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler.

d) Right to era­su­re (Right to be for­got­ten)

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to obtain from the con­trol­ler the era­su­re of per­so­nal data con­cer­ning him or her wit­hout undue delay, and the con­trol­ler shall have the obli­ga­ti­on to era­se per­so­nal data wit­hout undue delay whe­re one of the fol­lo­wing grounds appli­es, as long as the pro­ces­sing is not neces­sa­ry:

  • The per­so­nal data are no lon­ger neces­sa­ry in rela­ti­on to the pur­po­ses for which they were coll­ec­ted or other­wi­se pro­ces­sed.
  • The data sub­ject with­draws con­sent to which the pro­ces­sing is based accor­ding to point (a) of Artic­le 6(1) of the GDPR, or point (a) of Artic­le 9(2) of the GDPR, and whe­re the­re is no other legal ground for the pro­ces­sing.
  • The data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(1) of the GDPR and the­re are no over­ri­ding legi­ti­ma­te grounds for the pro­ces­sing, or the data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(2) of the GDPR.
  • The per­so­nal data have been unlawful­ly pro­ces­sed.
  • The per­so­nal data must be era­sed for com­pli­ance with a legal obli­ga­ti­on in Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject.
  • The per­so­nal data have been coll­ec­ted in rela­ti­on to the offer of infor­ma­ti­on socie­ty ser­vices refer­red to in Artic­le 8(1) of the GDPR.

If one of the afo­re­men­tio­ned reasons appli­es, and a data sub­ject wis­hes to request the era­su­re of per­so­nal data stored by the Micro­vis­ta GmbH, he or she may at any time cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler. The Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee shall prompt­ly ensu­re that the era­su­re request is com­pli­ed with imme­dia­te­ly.

Whe­re the con­trol­ler has made per­so­nal data public and is obli­ged pur­su­ant to Artic­le 17(1) to era­se the per­so­nal data, the con­trol­ler, taking account of available tech­no­lo­gy and the cost of imple­men­ta­ti­on, shall take reasonable steps, inclu­ding tech­ni­cal mea­su­res, to inform other con­trol­lers pro­ces­sing the per­so­nal data that the data sub­ject has reques­ted era­su­re by such con­trol­lers of any links to, or copy or repli­ca­ti­on of, tho­se per­so­nal data, as far as pro­ces­sing is not requi­red. The Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee will arran­ge the neces­sa­ry mea­su­res in indi­vi­du­al cases.

e) Right to rest­rict pro­ces­sing

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to obtain from the con­trol­ler rest­ric­tion of pro­ces­sing whe­re one of the fol­lo­wing appli­es:

  • The accu­ra­cy of the per­so­nal data is con­tes­ted by the data sub­ject, for a peri­od enab­ling the con­trol­ler to veri­fy the accu­ra­cy of the per­so­nal data.
  • The pro­ces­sing is unlawful and the data sub­ject oppo­ses the era­su­re of the per­so­nal data and requests ins­tead the rest­ric­tion of their use ins­tead.
  • The con­trol­ler no lon­ger needs the per­so­nal data for the pur­po­ses of the pro­ces­sing, but they are requi­red by the data sub­ject for the estab­lish­ment, exer­cise or defence of legal claims.
  • The data sub­ject has objec­ted to pro­ces­sing pur­su­ant to Artic­le 21(1) of the GDPR pen­ding the veri­fi­ca­ti­on whe­ther the legi­ti­ma­te grounds of the con­trol­ler over­ri­de tho­se of the data sub­ject.

If one of the afo­re­men­tio­ned con­di­ti­ons is met, and a data sub­ject wis­hes to request the rest­ric­tion of the pro­ces­sing of per­so­nal data stored by the Micro­vis­ta GmbH, he or she may at any time cont­act our Data Pro­tec­tion Offi­cer or ano­ther employee of the con­trol­ler. The Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee will arran­ge the rest­ric­tion of the pro­ces­sing.

f) Right to data por­ta­bi­li­ty

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor, to recei­ve the per­so­nal data con­cer­ning him or her, which was pro­vi­ded to a con­trol­ler, in a struc­tu­red, com­mon­ly used and machi­ne-rea­da­ble for­mat. He or she shall have the right to trans­mit tho­se data to ano­ther con­trol­ler wit­hout hin­drance from the con­trol­ler to which the per­so­nal data have been pro­vi­ded, as long as the pro­ces­sing is based on con­sent pur­su­ant to point (a) of Artic­le 6(1) of the GDPR or point (a) of Artic­le 9(2) of the GDPR, or on a con­tract pur­su­ant to point (b) of Artic­le 6(1) of the GDPR, and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, as long as the pro­ces­sing is not neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest or in the exer­cise of offi­ci­al aut­ho­ri­ty ves­ted in the con­trol­ler.

Fur­ther­mo­re, in exer­cis­ing his or her right to data por­ta­bi­li­ty pur­su­ant to Artic­le 20(1) of the GDPR, the data sub­ject shall have the right to have per­so­nal data trans­mit­ted direct­ly from one con­trol­ler to ano­ther, whe­re tech­ni­cal­ly fea­si­ble and when doing so does not adver­se­ly affect the rights and free­doms of others.

In order to assert the right to data por­ta­bi­li­ty, the data sub­ject may at any time cont­act the Data Pro­tec­tion Offi­cer desi­gna­ted by the Micro­vis­ta GmbH or ano­ther employee.

g) Right to object

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to object, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, at any time, to pro­ces­sing of per­so­nal data con­cer­ning him or her, which is based on point (e) or (f) of Artic­le 6(1) of the GDPR. This also appli­es to pro­fil­ing based on the­se pro­vi­si­ons.

The Micro­vis­ta GmbH shall no lon­ger pro­cess the per­so­nal data in the event of the objec­tion, unless we can demons­tra­te com­pel­ling legi­ti­ma­te grounds for the pro­ces­sing which over­ri­de the inte­rests, rights and free­doms of the data sub­ject, or for the estab­lish­ment, exer­cise or defence of legal claims.

If the Micro­vis­ta GmbH pro­ces­ses per­so­nal data for direct mar­ke­ting pur­po­ses, the data sub­ject shall have the right to object at any time to pro­ces­sing of per­so­nal data con­cer­ning him or her for such mar­ke­ting. This appli­es to pro­fil­ing to the ext­ent that it is rela­ted to such direct mar­ke­ting. If the data sub­ject objects to the Micro­vis­ta GmbH to the pro­ces­sing for direct mar­ke­ting pur­po­ses, the Micro­vis­ta GmbH will no lon­ger pro­cess the per­so­nal data for the­se pur­po­ses.

In addi­ti­on, the data sub­ject has the right, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to object to pro­ces­sing of per­so­nal data con­cer­ning him or her by the Micro­vis­ta GmbH for sci­en­ti­fic or his­to­ri­cal rese­arch pur­po­ses, or for sta­tis­ti­cal pur­po­ses pur­su­ant to Artic­le 89(1) of the GDPR, unless the pro­ces­sing is neces­sa­ry for the per­for­mance of a task car­ri­ed out for reasons of public inte­rest.

In order to exer­cise the right to object, the data sub­ject may direct­ly cont­act the Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee. In addi­ti­on, the data sub­ject is free in the con­text of the use of infor­ma­ti­on socie­ty ser­vices, and not­wi­th­stan­ding Direc­ti­ve 2002/58/EC, to use his or her right to object by auto­ma­ted means using tech­ni­cal spe­ci­fi­ca­ti­ons.

h) Auto­ma­ted decis­i­ons in indi­vi­du­al cases inclu­ding pro­fil­ing

Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor not to be sub­ject to a decis­i­on based sole­ly on auto­ma­ted pro­ces­sing, inclu­ding pro­fil­ing, which pro­du­ces legal effects con­cer­ning him or her, or simi­lar­ly signi­fi­cant­ly affects him or her, as long as the decis­i­on (1) is not is neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and a data con­trol­ler, or (2) is not aut­ho­ri­sed by Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject and which also lays down sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, or (3) is not based on the data subject’s expli­cit con­sent.

If the decis­i­on (1) is neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and a data con­trol­ler, or (2) it is based on the data subject’s expli­cit con­sent, the Micro­vis­ta GmbH shall imple­ment sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, at least the right to obtain human inter­ven­ti­on on the part of the con­trol­ler, to express his or her point of view and con­test the decis­i­on.

If the data sub­ject wis­hes to exer­cise the rights con­cer­ning auto­ma­ted indi­vi­du­al decis­i­on-making, he or she may at any time direct­ly cont­act our Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee of the con­trol­ler.

i) Right to revo­ke con­sent under data pro­tec­tion law
Each data sub­ject shall have the right gran­ted by the Euro­pean legis­la­tor to with­draw his or her con­sent to pro­ces­sing of his or her per­so­nal data at any time.

If the data sub­ject wis­hes to exer­cise the right to with­draw the con­sent, he or she may at any time direct­ly cont­act our Data Pro­tec­tion Offi­cer of the Micro­vis­ta GmbH or ano­ther employee of the con­trol­ler.

8. Data pro­tec­tion for appli­ca­ti­ons and the appli­ca­ti­on pro­ce­du­res

The data con­trol­ler shall coll­ect and pro­cess the per­so­nal data of appli­cants for the pur­po­se of the pro­ces­sing of the appli­ca­ti­on pro­ce­du­re. The pro­ces­sing may also be car­ri­ed out elec­tro­ni­cal­ly. This is the case, in par­ti­cu­lar, if an appli­cant sub­mits cor­re­spon­ding appli­ca­ti­on docu­ments by e‑mail or by means of a web form on the web­site to the con­trol­ler. If the data con­trol­ler con­cludes an employ­ment con­tract with an appli­cant, the sub­mit­ted data will be stored for the pur­po­se of pro­ces­sing the employ­ment rela­ti­onship in com­pli­ance with legal requi­re­ments. If no employ­ment con­tract is con­cluded with the appli­cant by the con­trol­ler, the appli­ca­ti­on docu­ments shall be auto­ma­ti­cal­ly era­sed two months after noti­fi­ca­ti­on of the refu­sal decis­i­on, pro­vi­ded that no other legi­ti­ma­te inte­rests of the con­trol­ler are oppo­sed to the era­su­re. Other legi­ti­ma­te inte­rest in this rela­ti­on is, e.g. a bur­den of pro­of in a pro­ce­du­re under the Gene­ral Equal Tre­at­ment Act (AGG).

9. Data pro­tec­tion pro­vi­si­ons about the appli­ca­ti­on and use of Goog­le Ana­ly­tics (with anony­miza­ti­on func­tion)

On this web­site, the con­trol­ler has inte­gra­ted the com­po­nent of Goog­le Ana­ly­tics (with the anony­mi­zer func­tion). Goog­le Ana­ly­tics is a web ana­ly­tics ser­vice. Web ana­ly­tics is the coll­ec­tion, gathe­ring, and ana­ly­sis of data about the beha­vi­or of visi­tors to web­sites. A web ana­ly­sis ser­vice coll­ects, inter alia, data about the web­site from which a per­son has come (the so-cal­led refer­rer), which sub-pages were visi­ted, or how often and for what dura­ti­on a sub-page was view­ed. Web ana­ly­tics are main­ly used for the opti­miza­ti­on of a web­site and in order to car­ry out a cost-bene­fit ana­ly­sis of Inter­net adver­ti­sing.

The ope­ra­tor of the Goog­le Ana­ly­tics com­po­nent is Goog­le Inc., 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, United Sta­tes.

For the web ana­ly­tics through Goog­le Ana­ly­tics the con­trol­ler uses the appli­ca­ti­on “_gat. _anonymizeIp”. By means of this appli­ca­ti­on the IP address of the Inter­net con­nec­tion of the data sub­ject is abrid­ged by Goog­le and anony­mi­sed when acces­sing our web­sites from a Mem­ber Sta­te of the Euro­pean Uni­on or ano­ther Con­trac­ting Sta­te to the Agree­ment on the Euro­pean Eco­no­mic Area.

The pur­po­se of the Goog­le Ana­ly­tics com­po­nent is to ana­ly­ze the traf­fic on our web­site. Goog­le uses the coll­ec­ted data and infor­ma­ti­on, inter alia, to eva­lua­te the use of our web­site and to pro­vi­de online reports, which show the acti­vi­ties on our web­sites, and to pro­vi­de other ser­vices con­cer­ning the use of our Inter­net site for us.

Goog­le Ana­ly­tics places a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. The defi­ni­ti­on of coo­kies is explai­ned abo­ve. With the set­ting of the coo­kie, Goog­le is enab­led to ana­ly­ze the use of our web­site. With each call-up to one of the indi­vi­du­al pages of this Inter­net site, which is ope­ra­ted by the con­trol­ler and into which a Goog­le Ana­ly­tics com­po­nent was inte­gra­ted, the Inter­net brow­ser on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject will auto­ma­ti­cal­ly sub­mit data through the Goog­le Ana­ly­tics com­po­nent for the pur­po­se of online adver­ti­sing and the sett­le­ment of com­mis­si­ons to Goog­le. During the cour­se of this tech­ni­cal pro­ce­du­re, the enter­pri­se Goog­le gains know­ledge of per­so­nal infor­ma­ti­on, such as the IP address of the data sub­ject, which ser­ves Goog­le, inter alia, to under­stand the ori­gin of visi­tors and clicks, and sub­se­quent­ly crea­te com­mis­si­on sett­le­ments.

The coo­kie is used to store per­so­nal infor­ma­ti­on, such as the access time, the loca­ti­on from which the access was made, and the fre­quen­cy of visits of our web­site by the data sub­ject. With each visit to our Inter­net site, such per­so­nal data, inclu­ding the IP address of the Inter­net access used by the data sub­ject, will be trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. The­se per­so­nal data are stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may pass the­se per­so­nal data coll­ec­ted through the tech­ni­cal pro­ce­du­re to third par­ties.

The data sub­ject may, as sta­ted abo­ve, pre­vent the set­ting of coo­kies through our web­site at any time by means of a cor­re­spon­ding adjus­t­ment of the web brow­ser used and thus per­ma­nent­ly deny the set­ting of coo­kies. Such an adjus­t­ment to the Inter­net brow­ser used would also pre­vent Goog­le Ana­ly­tics from set­ting a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, coo­kies alre­a­dy in use by Goog­le Ana­ly­tics may be dele­ted at any time via a web brow­ser or other soft­ware pro­grams.

In addi­ti­on, the data sub­ject has the pos­si­bi­li­ty of objec­ting to a coll­ec­tion of data that are gene­ra­ted by Goog­le Ana­ly­tics, which is rela­ted to the use of this web­site, as well as the pro­ces­sing of this data by Goog­le and the chan­ce to pre­clude any such. For this pur­po­se, the data sub­ject must down­load a brow­ser add-on under the link https://tools.google.com/dlpage/gaoptout and install it. This brow­ser add-on tells Goog­le Ana­ly­tics through a Java­Script, that any data and infor­ma­ti­on about the visits of Inter­net pages may not be trans­mit­ted to Goog­le Ana­ly­tics. The instal­la­ti­on of the brow­ser add-ons is con­side­red an objec­tion by Goog­le. If the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject is later dele­ted, for­mat­ted, or new­ly instal­led, then the data sub­ject must reinstall the brow­ser add-ons to disable Goog­le Ana­ly­tics. If the brow­ser add-on was unin­stal­led by the data sub­ject or any other per­son who is attri­bu­ta­ble to their sphe­re of com­pe­tence, or is dis­ab­led, it is pos­si­ble to exe­cu­te the reinstal­la­ti­on or reac­ti­va­ti­on of the brow­ser add-ons.

Fur­ther infor­ma­ti­on and the appli­ca­ble data pro­tec­tion pro­vi­si­ons of Goog­le may be retrie­ved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Goog­le Ana­ly­tics is fur­ther explai­ned under the fol­lo­wing Link https://www.google.com/analytics/. genau­er erläu­tert.

10. Pri­va­cy poli­cy on the deploy­ment and use of Goog­le Ads

The data con­trol­ler has inte­gra­ted Goog­le Ads on this web­site. Goog­le Ads is an inter­net adver­ti­sing ser­vice that allows adver­ti­sers to dis­play ads in Google’s search engi­ne results as well as in the Goog­le adver­ti­sing net­work. Goog­le Ads allows an adver­ti­ser to pre­de­fi­ne key­words that will cau­se an ad to appear in Google’s search engi­ne results only when the user uses the search engi­ne to retrie­ve a key­word rele­vant search result. In the Goog­le adver­ti­sing net­work, the ads are dis­tri­bu­ted to topic-rela­ted web­sites by means of an auto­ma­tic algo­rithm and in accordance with the pre­vious­ly defi­ned key­words. The ope­ra­ting com­pa­ny of the Goog­le Ads ser­vices is Goog­le Inc, 1600 Amphi­theat­re Pkwy, Moun­tain View, CA 94043–1351, USA. The pur­po­se of Goog­le Ads is to adver­ti­se our web­site by dis­play­ing inte­rest-rele­vant adver­ti­sing on the web­sites of third-par­ty com­pa­nies and in the search engi­ne results of the Goog­le search engi­ne, and by dis­play­ing third-par­ty adver­ti­sing on our web­site. If a per­son con­cer­ned visits our web­site via a Goog­le ad, a so-cal­led con­ver­si­on coo­kie is stored on the infor­ma­ti­on tech­no­lo­gy sys­tem of the per­son con­cer­ned by Goog­le. What coo­kies are has alre­a­dy been explai­ned abo­ve. A con­ver­si­on coo­kie loses its vali­di­ty after thir­ty days and does not ser­ve to iden­ti­fy the data sub­ject. If the coo­kie has not expi­red, the con­ver­si­on coo­kie is used to deter­mi­ne whe­ther cer­tain sub-pages, for exam­p­le the shop­ping bas­ket from an online shop sys­tem, have been cal­led up on our web­site. The con­ver­si­on coo­kie enables both we and Goog­le to track whe­ther a per­son who has rea­ched our web­site via an AdWords ad has gene­ra­ted sales, i.e. whe­ther he or she has com­ple­ted or can­cel­led a purcha­se. The data and infor­ma­ti­on coll­ec­ted through the use of the con­ver­si­on coo­kie is used by Goog­le to gene­ra­te visit sta­tis­tics for our web­site. The­se visit sta­tis­tics are in turn used by us to deter­mi­ne the total num­ber of users who were refer­red to us via AdWords ads, i.e. to deter­mi­ne the suc­cess or fail­ure of the respec­ti­ve AdWords ad and to opti­mi­ze our AdWords ads for the future. Neither our com­pa­ny nor other adver­ti­sing cus­to­mers of Goog­le Ads recei­ve infor­ma­ti­on from Goog­le that could be used to iden­ti­fy the per­son con­cer­ned. Per­so­nal infor­ma­ti­on, for exam­p­le the Inter­net pages visi­ted by the per­son con­cer­ned, is stored by means of the con­ver­si­on coo­kie. Each time our web­site is visi­ted, per­so­nal data, inclu­ding the IP address of the Inter­net con­nec­tion used by the per­son con­cer­ned, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may pass on this per­so­nal data coll­ec­ted by the tech­ni­cal pro­cess to third par­ties. The per­son con­cer­ned can pre­vent the set­ting of coo­kies by our web­site, as descri­bed abo­ve, at any time by means of a cor­re­spon­ding set­ting in the Inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the Inter­net brow­ser used would also pre­vent Goog­le from set­ting a con­ver­si­on coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the per­son con­cer­ned. In addi­ti­on, a coo­kie alre­a­dy set by Goog­le AdWords can be dele­ted at any time via the Inter­net brow­ser or other soft­ware pro­grams. Fur­ther­mo­re, the per­son con­cer­ned has the oppor­tu­ni­ty to object to inte­rest-based adver­ti­sing by Goog­le. To do so, the per­son con­cer­ned must access www.google.de/settings/ads from each of the Inter­net brow­sers he or she uses and make the desi­red set­tings the­re. More infor­ma­ti­on and Google’s appli­ca­ble pri­va­cy poli­cy can be found at https://www.google.de/intl/de/policies/privacy/.

11. Use of Goog­le Remar­ke­ting

We also use the remar­ke­ting func­tion of Goog­le. This allows us to ser­ve you per­so­na­li­zed adver­ti­sing in appro­pria­te ad spaces on other web­sites based on the inte­rests you have shown on our web­site. This pos­si­bi­li­ty is limi­t­ed to a maxi­mum of 18 months.

You can find fur­ther infor­ma­ti­on on this here: Google’s Data Pri­va­cy Statement.You can pre­vent inte­rest-based adver­ti­sing through the use of this brow­ser plug­in (instal­la­ti­on).

12. Legal basis of the pro­ces­sing

Art. 6(1) lit. a GDPR ser­ves as the legal basis for pro­ces­sing ope­ra­ti­ons for which we obtain con­sent for a spe­ci­fic pro­ces­sing pur­po­se. If the pro­ces­sing of per­so­nal data is neces­sa­ry for the per­for­mance of a con­tract to which the data sub­ject is par­ty, as is the case, for exam­p­le, when pro­ces­sing ope­ra­ti­ons are neces­sa­ry for the sup­p­ly of goods or to pro­vi­de any other ser­vice, the pro­ces­sing is based on Artic­le 6(1) lit. b GDPR. The same appli­es to such pro­ces­sing ope­ra­ti­ons which are neces­sa­ry for car­ry­ing out pre-con­trac­tu­al mea­su­res, for exam­p­le in the case of inqui­ries con­cer­ning our pro­ducts or ser­vices. Is our com­pa­ny sub­ject to a legal obli­ga­ti­on by which pro­ces­sing of per­so­nal data is requi­red, such as for the ful­fill­ment of tax obli­ga­ti­ons, the pro­ces­sing is based on Art. 6(1) lit. c GDPR. In rare cases, the pro­ces­sing of per­so­nal data may be neces­sa­ry to pro­tect the vital inte­rests of the data sub­ject or of ano­ther natu­ral per­son. This would be the case, for exam­p­le, if a visi­tor were inju­red in our com­pa­ny and his name, age, health insu­rance data or other vital infor­ma­ti­on would have to be pas­sed on to a doc­tor, hos­pi­tal or other third par­ty. Then the pro­ces­sing would be based on Art. 6(1) lit. d GDPR.
Final­ly, pro­ces­sing ope­ra­ti­ons could be based on Artic­le 6(1) lit. f GDPR. This legal basis is used for pro­ces­sing ope­ra­ti­ons which are not cover­ed by any of the abo­ve­men­tio­ned legal grounds, if pro­ces­sing is neces­sa­ry for the pur­po­ses of the legi­ti­ma­te inte­rests pur­sued by our com­pa­ny or by a third par­ty, except whe­re such inte­rests are over­ridden by the inte­rests or fun­da­men­tal rights and free­doms of the data sub­ject which requi­re pro­tec­tion of per­so­nal data. Such pro­ces­sing ope­ra­ti­ons are par­ti­cu­lar­ly per­mis­si­ble becau­se they have been spe­ci­fi­cal­ly men­tio­ned by the Euro­pean legis­la­tor. He con­side­red that a legi­ti­ma­te inte­rest could be assu­med if the data sub­ject is a cli­ent of the con­trol­ler (Reci­tal 47 Sen­tence 2 GDPR).

13. Legi­ti­ma­te inte­rests in the pro­ces­sing pur­sued by the con­trol­ler or a third par­ty

Whe­re the pro­ces­sing of per­so­nal data is based on Artic­le 6(1) lit. f GDPR our legi­ti­ma­te inte­rest is to car­ry out our busi­ness in favor of the well-being of all our employees and the share­hol­ders.

14. The dura­ti­on for which the per­so­nal data are stored

The cri­te­ria used to deter­mi­ne the peri­od of sto­rage of per­so­nal data is the respec­ti­ve sta­tu­to­ry reten­ti­on peri­od. After expi­ra­ti­on of that peri­od, the cor­re­spon­ding data is rou­ti­ne­ly dele­ted, as long as it is no lon­ger neces­sa­ry for the ful­fill­ment of the con­tract or the initia­ti­on of a con­tract.

15. Legal or con­trac­tu­al pro­vi­si­ons making the per­so­nal data available; neces­si­ty for the con­clu­si­on of the con­tract; obli­ga­ti­on of the data sub­ject to pro­vi­de the per­so­nal data; pos­si­ble con­se­quen­ces of non­pro­vi­si­on

We cla­ri­fy that the pro­vi­si­on of per­so­nal data is part­ly requi­red by law (e.g. tax regu­la­ti­ons) or can also result from con­trac­tu­al pro­vi­si­ons (e.g. infor­ma­ti­on on the con­trac­tu­al part­ner).
Some­ti­mes it may be neces­sa­ry to con­clude a con­tract that the data sub­ject pro­vi­des us with per­so­nal data, which must sub­se­quent­ly be pro­ces­sed by us. The data sub­ject is, for exam­p­le, obli­ged to pro­vi­de us with per­so­nal data when our com­pa­ny signs a con­tract with him or her. The non-pro­vi­si­on of the per­so­nal data would have the con­se­quence that the con­tract with the data sub­ject could not be con­cluded.
Befo­re per­so­nal data is pro­vi­ded by the data sub­ject, the data sub­ject must cont­act our Data Pro­tec­tion Offi­cer. Our Data Pro­tec­tion Offi­cer cla­ri­fies to the data sub­ject whe­ther the pro­vi­si­on of the per­so­nal data is requi­red by law or con­tract or is neces­sa­ry for the con­clu­si­on of the con­tract, whe­ther the­re is an obli­ga­ti­on to pro­vi­de the per­so­nal data and the con­se­quen­ces of non-pro­vi­si­on of the per­so­nal data.

16. The exis­tence of auto­ma­ted decis­i­on making

As a respon­si­ble com­pa­ny, we do not use auto­ma­tic decis­i­on-making or pro­fil­ing.

17. Sub­scrip­ti­on to our news­let­ter

On the Micro­vis­ta GmbH web­site, users are given the oppor­tu­ni­ty to sub­scri­be to our com­pa­ny news­let­ter. The input mask used for this pur­po­se indi­ca­tes which per­so­nal data is trans­fer­red to the per­son respon­si­ble for pro­ces­sing when orde­ring the news­let­ter.

Micro­vis­ta GmbH informs its cus­to­mers and busi­ness part­ners at regu­lar inter­vals by means of a news­let­ter about com­pa­ny offers. The news­let­ter of our com­pa­ny can basi­cal­ly only be recei­ved by the per­son con­cer­ned if (1) the per­son con­cer­ned has a valid e‑mail address and (2) the per­son con­cer­ned regis­ters for the news­let­ter mai­ling. For legal reasons, a con­fir­ma­ti­on e‑mail will be sent to the e‑mail address first regis­tered by a data sub­ject for news­let­ter dis­patch using the dou­ble opt-in pro­ce­du­re. This con­fir­ma­ti­on e‑mail is used to check whe­ther the owner of the e‑mail address, as the data sub­ject, has aut­ho­ri­zed the receipt of the news­let­ter.

When regis­tering for the news­let­ter, we also save the IP address assi­gned by the Inter­net Ser­vice Pro­vi­der (ISP) of the com­pu­ter sys­tem used by the per­son con­cer­ned at the time of regis­tra­ti­on, as well as the date and time of regis­tra­ti­on. The coll­ec­tion of this data is neces­sa­ry in order to be able to trace the (pos­si­ble) misu­se of the e‑mail address of a data sub­ject at a later date and the­r­e­fo­re ser­ves to pro­vi­de legal pro­tec­tion for the per­son respon­si­ble for pro­ces­sing.

The per­so­nal data coll­ec­ted during regis­tra­ti­on for the news­let­ter is used exclu­si­ve­ly for sen­ding our news­let­ter. In addi­ti­on, sub­scri­bers to the news­let­ter could be infor­med by e‑mail if this is neces­sa­ry for the ope­ra­ti­on of the news­let­ter ser­vice or for regis­tra­ti­on, as could be the case if the­re are chan­ges to the news­let­ter offer or if tech­ni­cal con­di­ti­ons chan­ge. The per­so­nal data coll­ec­ted within the scope of the news­let­ter ser­vice will not be pas­sed on to third par­ties. The sub­scrip­ti­on to our news­let­ter can be can­cel­led by the per­son con­cer­ned at any time. The con­sent to the sto­rage of per­so­nal data, which the per­son con­cer­ned has given us for the news­let­ter ser­vice, can be revo­ked at any time. For the pur­po­se of revo­king this con­sent, a cor­re­spon­ding link can be found in every news­let­ter. It is also pos­si­ble to unsub­scri­be from the news­let­ter at any time direct­ly on the web­site of the data con­trol­ler or to inform the data con­trol­ler in ano­ther way.

18. News­let­ter track­ing

The news­let­ters of Micro­vis­ta GmbH con­tain so-cal­led coun­ting pixels. A track­ing pixel is a minia­tu­re gra­phic embedded in e‑mails sent in HTML for­mat to enable log file recor­ding and log file ana­ly­sis. This enables a sta­tis­ti­cal eva­lua­ti­on of the suc­cess or fail­ure of online mar­ke­ting cam­paigns. Using the embedded pixel-code, Micro­vis­ta GmbH can iden­ti­fy whe­ther and when an e‑mail was ope­ned by a per­son con­cer­ned and which links con­tai­ned in the e‑mail were cal­led up by the per­son con­cer­ned.

Such per­so­nal data coll­ec­ted via the track­ing pixels con­tai­ned in the news­let­ters are stored and eva­lua­ted by the data con­trol­ler in order to opti­mi­se the news­let­ter dis­patch and to adapt the con­tent of future news­let­ters even bet­ter to the inte­rests of the data sub­ject. This per­so­nal data is not pas­sed on to third par­ties. Data sub­jects are entit­led at any time to revo­ke the sepa­ra­te decla­ra­ti­on of con­sent given in this regard via the dou­ble opt-in pro­ce­du­re. After revo­ca­ti­on, the­se per­so­nal data will be dele­ted by the data con­trol­ler. Micro­vis­ta GmbH auto­ma­ti­cal­ly inter­prets a can­cel­la­ti­on of receipt of the news­let­ter as a revo­ca­ti­on.

This Pri­va­cy Poli­cy has been gene­ra­ted by the Pri­va­cy Poli­cy Gene­ra­tor of the Exter­nal Data Pro­tec­tion Offi­cers that was deve­lo­ped in coope­ra­ti­on with the Media Law Lawy­ers from WBS-LAW.

If you have any ques­ti­ons about our pri­va­cy poli­cy or the data we store, plea­se cont­act us at the fol­lo­wing e‑mail address dsb@netco.de.

Data Pro­tec­tion Offi­cer:

IZAG gGmbH
Dipl. Ing. Ralph Anger­stein
Sch­le­i­nitz­str. 7
38889 Blan­ken­burg (Harz)

Email: dsb@netco.de
Pho­ne: +49 3917 2757277