1. data protection overview
General information
The following information will provide you with an overview of what will happen with your personal data when you visit this website. The term “personal data” includes all data that can be used to personally identify you. For detailed information about data protection, please see our Privacy Policy below.
Data collection on this website
Who is the responsible party for the recording of data on this website (i.e., the “controller”)?
The data on this website is processed by the operator of the website, whose contact information is available under section “Information about the responsible party (referred to as the “controller” in the GDPR)” in this Privacy Policy.
How do we collect your data?
We collect your data as a result of your sharing of your data with us. This may, for instance be information you enter into our contact form.
Other data shall be recorded by our IT systems automatically or after you consent to its recording during your website visit. This data comprises primarily technical information (e.g., web browser, operating system, or time the site was accessed). This information is recorded automatically when you access this website.
What are the purposes we use your data for?
A part of the data is collected to guarantee the error free provision of the website. Other data may be used to analyze your user patterns.
What rights do you have concerning your data?
You have the right to receive information about the source, recipients, and purposes of your stored personal data at any time without having to pay a fee for such information. You also have the right to demand that your data are rectified or erased. If you have consented to data processing, you have the option to revoke this consent at any time, which shall affect all future data processing. Moreover, you have the right to demand that the processing of your data be restricted under certain circumstances. Furthermore, you have the right to log a complaint with the competent supervising authority.
Please do not hesitate to contact us at any time if you have questions about this or any other data protection related issues.
2. Processing by external law firm
This website is hosted by an external law firm (host) and the content is edited in advance by this law firm. Personal data collected on this website are stored on the servers administered by the law firm. These may include, but are not limited to, IP addresses, contact requests, metadata and communications, contract information, contact information, names, web page access, and other data generated through a web site.
The law firm is used for the purpose of fulfilling of a secure, fast, and efficient provision of our online services by a professional provider (Art. 6(1)(f) GDPR). If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TDDDG, insofar the consent includes the storage of cookies or the access to information in the user's end device within the meaning of the TDDDG. This consent can be revoked at any time.
The service is provided by the following company:
Herting Oberbeck Datenschutz GmbH
Hallerstraße 76, 20146 Hamburg
info@datenschutzkanzlei.de
3. General information and mandatory information
Data protection
The operators of this website and its pages take the protection of your personal data very seriously. We handle your personal data as confidential information and in compliance with the statutory data protection regulations and this Privacy Policy.
Whenever you use this website, a variety of personal information will be collected. Personal data are data that can be used to personally identify you. This Privacy Policy explains which data we collect and what we use this data for. It also explains how, and for which purpose the information is collected.
We would like to point out that there may be security gaps in the transmission of data via the Internet (i.e., through e-mail communications). It is not possible to completely protect data against third-party access.
Information about the responsible party (referred to as the “controller” in the GDPR)
The controller of the data processing on this website is:
Hübener Versicherungs AG
Ballindamm 37, 20095 Hamburg
The controller is the natural person or legal entity that single-handedly or jointly with others makes decisions concerning the purposes and means for the processing of personal data (e.g., names, e-mail addresses, etc.).
Storage duration
Unless a more specific storage period has been specified in this Privacy Policy, your personal data will remain with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in last mentioned case, the deletion will take place after these reasons cease to apply.
General information on the legal basis for the data processing on this website
If you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9 (2)(a) GDPR, if special categories of data are processed according to Art. 9 (1) GDPR. In the case of explicit consent to the transfer of personal data to third countries, the data processing is also based on Art. 49 (1)(a) GDPR. If you have consented to the storage of cookies or to the access to information in your end device (e.g., via device fingerprinting), the data processing is additionally based on § 25 (1) TDDDG. The consent can be revoked at any time. If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. Furthermore, if your data is required for the fulfillment of a legal obligation, we process it on the basis of Art. 6(1)(c) GDPR. Furthermore, the data processing may be carried out on the basis of our legitimate interest according to Art. 6(1)(f) GDPR. Information on the relevant legal basis in each individual case is provided in the following paragraphs of this Privacy Policy.
Revocation of your consent to the processing of data
A wide range of data processing operations are possible only with your explicit consent. You can also revoke any consent at any time you have already given us. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object (Art. 21 GDPR)
In accordance with Art. 21 (1) GDPR, you have the right to object to processing based on the legal basis of Art. 6 (1) (e) or (f) GDPR on grounds relating to your particular situation. If we process personal data about you for the purpose of direct marketing, you may object to this processing in accordance with Art. 21 (2) and (3) GDPR.
Right to log a complaint with the competent supervisory authority
In the event of violations of the GDPR, data subjects are entitled to log a complaint with a supervisory authority, in particular in the member state where they usually maintain their domicile, place of work or at the place where the alleged violation occurred. The right to log a complaint is regardless of any other administrative or judicial remedies.
Right to data portability
You have the right to demand that we hand over any data we automatically process on the basis of your consent or in order to fulfil a contract be handed over to you or a third party in a commonly used, machine readable format. If you should demand the direct transfer of the data to another controller, this will be done only if it is technically feasible.
SSL and/or TLS encryption
For security reasons and to protect the transmission of confidential content, such as purchase orders or inquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption program. You can recognize an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line.
If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.
Information about, rectification and erasure of data
Within the scope of the applicable statutory provisions, you have the right to demand information about your archived personal data, their source and recipients as well as the purpose of the processing of your data at any time. You may also have a right to have your data rectified or erased. If you have questions about this subject matter or any other questions about personal data, please do not hesitate to contact us at any time.
Right to restriction of processing
You have the right to demand the imposition of restrictions as far as the processing of your personal data is concerned. To do so, you may contact us at any time. The right to demand restriction of processing applies in the following cases:
- In the event that you should dispute the correctness of your data stored by us, we will usually need some time to verify this claim. During the time that this investigation is ongoing, you have the right to demand that we restrict the processing of your personal data.
- If the processing of your personal data was/is conducted in an unlawful manner, you have the option to demand the restriction of the processing of your data instead of its erasure.
- If we do not need your personal data any longer but you need it to exercise, defend or claim legal entitlements, you have the right to demand the restriction of the processing of your personal data instead of its erasure.
- If you have raised an objection pursuant to Art. 21(1) GDPR, your rights and our rights will have to be weighed against each other. As long as it has not been determined whose interests prevail, you have the right to demand a restriction of the processing of your personal data.
If you have restricted the processing of your personal data, these data – with the exception of their storage – may only be processed subject to your consent or to claim, exercise or defend legal entitlements or to protect the rights of other natural persons or legal entities or for important public interest reasons of the European Union or a member state of the EU.
4. Data collection on this website
Cookies
Our internet pages use so-called "session cookies". Session cookies are temporarily stored on your terminal device for the duration of a session and are automatically deleted at the end of your visit.
The use of session cookies for the provision of the log-in function is technically necessary and is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in storing necessary cookies for the technically error-free provision of its services.
Server log files
The provider of the pages does not collect and store any information in so-called server log files.
Report form and message function
If you send us a message using the report form or the message function, your entries from the form will be stored by us for the purpose of processing the report.
The processing of this data is based on Art. 6(1)(c) GDPR, insofar as we are obliged to accept reports via a reporting office. In all other cases, the processing is based on our legitimate interest in effective communication and processing of the incidents sent to us (Art. 6(1)(f) GDPR).
The data you enter in the form will remain with us until the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected.
