Privacy Policy

This is a translation from the original German text. The legal effect of these Terms and Conditions must be based on the German original. The translation is merely informative.

Privacy Policy

The protection of your personal information has highest priority for ingenit GmbH & Co.KG. We comply with the statutory provisions on data protection, in particular the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).

In the following data protection declaration, we explain how we handle your data:

Responsible body

The responsible body for the collection, processing and use of your personal data, in the sense of the German Federal Data Protection Act (BDSG), is

ingenit GmbH & Co.KG, Emil-Figge-Str. 76-80, 44227 Dortmund.

Legal basis

Insofar as we obtain the consent of the data subject for processing of personal data, the legal basis is Article 6 paragraph 1 (a) GDPR.

In the processing of personal data required to fulfill a contract of which the data subject is a party, Article 6 (1) (b) GDPR is legal basis. This also applies to processing operations required to carry out pre-contractual actions.

Insofar as processing of personal data is required to fulfill a legal obligation to which our company is subject, Article 6 (1) (c) GDPR is legal basis.

In the event that vital interests of the data subject or any other natural person require the processing of personal data, Article 6 (1) (d) GDPR is legal basis.

In the event that the processing is necessary for the performance of a task in the public interest or in the exercise of official authority delegated to the controller, Art. 6 (1) (e) GDPR is legal basis.

If the processing is necessary to safeguard the legitimate interests of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not prevail over the first interest, then Article 6 (1) (f`) GDPR is legal basis for processing. The legitimate interest of our company is the execution of our business activities.

Rights of the person concerned

Each data subject has the right to information under Article 15 of the GDPR, the right of correction under Article 16 GDPR, the right to cancellation under Article 17 GDPR, the right to restriction of processing under Article 18 GDPR, the right to object under Article 21 GDPR and the right to data portability under Article 20 GDPR. With regard to the right to information and the right to erase, the restrictions under §§ 34 and 35 BDSG apply. In addition, there is a right of appeal to a competent data protection supervisory authority (Article 77 GDPR / § 19 BDSG). At request, ingenit GmbH & Co.KG. will gladly inform you about any data regarding your person that have been stored. You also have the right to have these data rectified, erased or blocked. Should you wish for this, please send a written letter to ingenit GmbH & Co.KG, Privacy, Emil-Figge-Str. 76-80, 44227 Dortmund or an email to: privacy@ingenit.com

Do not hesitate to contact us if you have any further questions regarding our data protection notices or the processing of your personal data.

Withdrawal

You have the right at any time to withdraw your consent to the future processing and use of your personal data in its entirety, or for specific purposes. To do so, please send a written letter to ingenit GmbH & Co.KG, Privacy, Emil-Figge-Str. 76-80, 44227 Dortmund or an email to: privacy@ingenit.com, stating your customer number, name and address, date of birth and email address.

We will then erase the corresponding data immediately. However, please note that, if you withdraw your consent, then the conditions for providing certain services may no longer exist, and that any existing or outstanding services would have to be cancelled. If so, this cannot be used as grounds for you to make any claims against ingenit GmbH & Co. KG or any of its subcontractors.

Right of objection according to Article 21 GDPR

You have the right at any time, for reasons arising from your particular situation, to object to the processing of personal data relating to you which is based on Article 6 (1) point (e) GDPR (Data Processing in the Public Interest) and Article 6 (1) point (f) GDPR (data processing based on a balance of interests). If you object, we will no longer process your personal data unless there are compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims. In individual cases, we process your personal data for direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising.

Collection, processing and use of personal data

Providing paid services

For the establishment and performance of a contractual relationship we usually require the user’s name, postal address, telephone number, email address, bank details, and user login details (inventory data). ingenit GmbH & Co. KG will use and process such personal data as part of an order or as needed to carry out the order. When services are ordered electronically, some data is required to carry out the transaction. We usually require data such as your IP address, name, gender, address, contact details (e-mail, phone numbers), shopping cart data, order and delivery data, delivery date, payment details and location data. Which data are collected exactly can be seen on the basis of the respective input fields. The given data will be stored by us and used to process the order. We use the data provided by you exclusively for the necessary fulfillment and processing of the services offered, for the purpose of fulfilling our contractual obligations and services in accordance with Art. Art. 6 para. 1 lit b. GDPR. After completing the order, your data will be blocked for further use and deleted after expiry of the tax and commercial storage periods, unless you have expressly consented to the further use of your data or any other legal justification exists.

Domains, SSL certificates

In order to register domain names, your personal data, or if you are a reseller your customer’s data, in particular name, address, if necessary telephone and email address, must be forwarded to those who will process the registration, namely the corresponding national or international registration authorities. Furthermore, all or at least part of this data could be entered into the respective domain name registrar’s Whois registers, which may be publicly visible. Otherwise it would be impossible to register the domain name.

You therefore give your consent to the transmission of the necessary data to the respective domain name registries and the publication of the data in the publicly visible Whois databases. Data are always transmitted in encrypted form to the domain name registries.

Personal data is also transmitted to the certificate issuer for the purpose of issuing an SSL certificate. As a rule, this will be the publicly available data from the Whois directory and, if necessary, other details required for issuing the certificate. You give your consent for this data to be automatically transmitted to the certificate issuer for creating the certificate.

In the acquisition and/or maintenance of domains and SSL certificates, ingenit GmbH & Co.KG only acts as a mediator in the relationship between the customer and the respective domain name registry or certificate authority. ingenit GmbH & Co.KG has no influence on the allocation of domains or issuing of certificates. ingenit GmbH & Co.KG makes no guarantee that the domains or certificates requested for the customer will be allocated at all or will permanently exist.

Newsletter

We will use your email address independently of contract processing exclusively to send you our newsletter for our own advertising purposes, provided you have given your explicit consent for us to do so. You can unsubscribe from the newsletter at any time using the links in the newsletters or by sending us a message. You will find the necessary contact details in our website’s legal notice area. Your email address will then be immediately deleted.

Website

Our website is designed so that personal information is only requested when it is really necessary. You can terminate the use of our website at any stage by closing your browser or visiting another website. We collect and process access and log data if you visit our website such as

  • (domain)-name of your internet service provider,
  • the site from which you accessed our website or the name of the requested files,
  • date of the request,
  • data volume transmitted,
  • status of the response,
  • IP address,
  • referrer URL,
  • web browser and browser version,
  • operating system.

The processing of this data is for the purpose of enabling to use of the website (connection establishment), system security, technical administration of the network infrastructure and to optimize the web site and is thus based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR and for the protection of users and to prevent other unauthorized use. A transfer of this data to third parties or any other evaluation does not take place. A personal user profile will not be created.

We also reserve the right to check logfiles after the fact if we suspect any unlawful use of our website.

In order to guarantee the security of your data during transmission, we employ encryption methods (such as SSL) via HTTPS, according to the latest state of the art.

Signing into our website

If you sign into our website to make use of personalized services, then personal data will be collected. This includes name, address, telephone number and email addresses as contact and communication data, IP addresses from which the site was accessed, and the date and time of user actions, e.g. when changing the technical configuration and making orders.

Contact form

If you contact us using the online form on the website, then we save the information you provide so that we can answer your enquiry and ask any follow-up questions as needed.

Applications

ingenit GmbH & Co.KG collects and processes personal data for the purpose of handling applications. This data can also be processed electronically. This is especially the case if an applicant has submitted application data electronically, for example by email or a web form provided on the website. If ingenit GmbH & Co.KG concludes an employment contract with an applicant, then the transmitted data will be stored, in compliance with the law, for the purpose of establishing the employment relationship. If no employment contract is concluded with the applicant, then the application documents will be deleted two months after the decision of refusal, unless this is contrary to any other legitimate interests. In this sense, a legitimate interest would be, for example, a burden of proof in a process as laid out in the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz, AGG).

PayPal

Components of PayPal are integrated into the internal area of the website. PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which represent virtual private or business accounts. PayPal is also able to process virtual payments through credit cards when a user does not have a PayPal account. A PayPal account is managed via an e-mail address, which is why there are no classic account numbers. PayPal makes it possible to trigger online payments to third parties or to receive payments. PayPal also accepts trustee functions and offers buyer protection services.

The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxemburg.

If the data subject chooses "PayPal" as the payment option in the online shop during the ordering process, we automatically transmit the data of the data subject to PayPal. By selecting this payment option, the data subject agrees to the transfer of personal data required for payment processing. The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number, or other data necessary for payment processing. The processing of the purchase contract also requires such personal data, which are in connection with the respective order.

The transmission of the data is aimed at payment processing and fraud prevention. The controller will transfer personal data to PayPal, in particular, if a legitimate interest in the transmission is given. The personal data exchanged between PayPal and the controller for the processing of the data will be transmitted by PayPal to economic credit agencies. This transmission is intended for identity and creditworthiness checks.

PayPal will, if necessary, pass on personal data to affiliates and service providers or subcontractors to the extent that this is necessary to fulfil contractual obligations or for data to be processed in the order.

The data subject has the possibility to withdraw consent for the handling of personal data at any time from PayPal. A withdrawal shall not have any effect on personal data which must be processed, used or transmitted in accordance with (contractual) payment processing.

The applicable data protection provisions of PayPal may be retrieved under www.paypal.com/us/webapps/mpp/ua/privacy-full.

Cookies

In several places, our website uses so-called cookies. “Cookies” are small text files which your browser stores on your computer’s hard disk. They serve to make our website more user-friendly, more efficient and safer. In addition, cookies allow our systems to recognise your browser and provide services to you. Cookies do not contain any personal data. You can prevent cookies from being stored on your computer by making the appropriate settings in your browser. However, this could limit the range of functions of our website.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google") Google Analytics uses "cookies", which are text files placed on your computer to help us analyse how users use the Website. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States of America. However, if IP anonymization has been enabled on our website, then Google will first truncate your IP address within the Member States of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and truncated there. IP anonymization is enabled for this website. On behalf of the owner of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services to the website owner relating to website activity and Internet usage. Google will not associate the IP address provided by your browser in the scope of Google Analytics with any other data held by Google. You can prevent the storage of cookies on your computer by setting your browser software accordingly; however, we must point out that in this case not all functions of the website will be available to you in their full capacity. You can also prevent Google's recording of the cookie-generated data regarding your use of the website (including your IP address) and prevent Google's processing of this data by downloading and installing the browser plugin available at the link: tools.google.com/dlpage/gaoptout

You can find more information about the terms of use and data privacy policies at www.google.com/analytics/terms/gb.html and policies.google.com

Google AdWords

This website uses the online advertising service “Google AdWords” and, as part of this service, conversion tracking. This means Google AdWords will create a cookie on your computer if you were brought to our website from a Google ad. These cookies expire after 30 days and cannot be used to identify a person. If the user visits certain pages on our website, and the cookie has not yet expired, then we and Google can recognize when the user has clicked on an ad and been forwarded to a specific page. Every Google AdWords customer receives a different cookie. Cookies can therefore not be traced through the websites of AdWords customers.

The information collected by the conversion cookie serves to create conversion statistics for AdWords customers who have opted into conversion tracking. These customers learn of the total number of users who have clicked their ad and been forwarded to a page that bears a conversion tracking tag. However, they do not receive any information by which they could personally identify a user.

If you do not wish to be a part of this tracking, you can easily disable the cookie for Google conversion tracking in the user settings of your web browser. You will then no longer be recorded in the conversion tracking statistics. You can learn more about Google’s Privacy Policy at policies.google.com/privacy

Use of Matomo

This website uses Matomo (formerly Piwik), an open-source software tool that collects and stores data. These data are used for marketing and optimization purposes. Matomo uses the data to create user profiles with their own pseudonym. To do so, the tool sets cookies (text files) on your computer, from which it can analyze your use of the website. Your IP address will be anonymized immediately after it is processed and before it is stored. The data will be stored on the Provider’s servers in Germany.

If you do not want Matomo to store cookies, you can block the setting of cookies in your browser’s settings (you can refer to the help function of your browser to find out how). If you do block cookies, then not all functions of the website will necessarily work.

Hosting and data center

This website and all associated IT systems are hosted and operated either directly by ingenit GmbH & Co.KG or in a European location of the Amazon Web Service (AWS). You can learn more about this here: https://aws.amazon.com/compliance/gdpr-center/

This website uses CloudFlare as the CDN ("Content Delivery Network") to secure the website and optimize loading times. All queries will therefore necessarily be directed through the CloudFlare Server and aggregated into non-deactivatable statistics. According to CloudFlare, the raw data collected there are generally deleted again within 4 hours, or at the latest after 3 days. Information about the data collected there and about security and privacy at CloudFlare can be found at: https://www.cloudflare.com/security-policy/.

Disclosure of data

We do not forward your personal data to third parties without your explicit and revocable consent. Exceptions to this are our service partners who require the transfer of data for the purpose of order processing (e.g. the registrar responsible for allocating domains or the credit institute assigned for payment processing). In these cases, the data is restricted to only the necessary minimum.

In accordance with the provisions that apply to this, we are also entitled to provide information to prosecutorial authorities and courts for the purpose of criminal proceedings.

Deletion of data

Inventory data collected in the scope of a contractual relationship will usually be deleted after the lapse of one year after the end of the contractual relationship. If inventory data is required to comply with existing statutory, regulatory or contractual storage periods, then we will block the data.

Usage and/or traffic data will generally be stored in our IT systems for a maximum of 7 days for our own protection, for traceability of faults and for error analysis, and then deleted after those 7 days.

Existence of automated decision-making

As a responsible company, we do not make use of automated decision-making or profiling.

Changes to the Privacy Policy & supplementary regulations

In order to guarantee that our Privacy Policy always complies with the current laws, we reserve the right to make changes at any time without notice. This also applies to cases in which the Privacy Policy has to be adapted due to the adoption of new services or revision of existing services. The version that is available upon your visit is always the applicable version.

If you have provided us personally identifiable information, we will inform you about changed conditions in a suitable manner, e.g. by e-mail, within a reasonable period of time before the changes take effect, provided that the changes affect the processing of your data. Nevertheless, you should regularly visit our website and take note of any changes.

Complementary or alternative measures can apply for specific products and services. If these are not named in this Policy, then we will bring them to your awareness in a suitable form (e.g. as an amendment to this Policy) before placement of an order.

Questions and comments

If you have further questions about data protection, you can contact us via the e-mail address datenschutz@ingenit.com. We will then try to answer your questions and remove possible concerns.

Availability of this policy

You can retrieve and print this privacy policy in the current version under this URL or the link „privacy”.

Revision: May 2018

 

Arrange an initial consultation

Please see our Privacy Policy.