Thank you for visiting our website dreamcomposer.de and for your interest in our company.
The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.
The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practice is in accordance with the legal regulations of the EU's General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.
The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.
With regard to our website, the responsible person is:
LEONHARD KURZ Stiftung & Co. KG
LEONHARD KURZ Stiftung & Co. KG
90763 Fürth
Germany
E-mail: sales@kurz.de
Tel: +49 911 71 41-0
We have appointed a data protection officer in accordance with Art. 37 of the GDPR. You can reach our data protection officer under the following contact details:
MKM Datenschutz GmbH
Äußere Sulzbacher Str. 118
90491 Nuremberg
Germany
E-mail: info@mkm-datenschutz.de
Tel: 0911 990 860 0
Website: http://mkm-datenschutz.de/
Each time our website is accessed, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.) used to access it.
(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message whether the retrieval was successful;
(9) Amount of data transmitted
This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.
Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.
The temporary (automated) storage of the data is necessary for the course of a website visit to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.
The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.
You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.
Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:
We will process the registration and login data you enter with us to fulfil the purpose stated below.
Art. 6 para. 1 lit. b GDPR (implementation of (pre)contractual measures)
You have the option of using a separate login area on our website. In order for us to check your authorisation to use the protected area or the protected documents, you must enter your login data (e-mail or user name and password) in the corresponding form.
The data collected will be stored for as long as you maintain a user account with us.
You can find out what rights they have and how to exercise them at the bottom of this privacy statement.
The use of the login area on our site is contractually required for the use of the protected area. It is not possible to use the content protected by the login area without entering personal data. If you wish to use our login area, you must fill in the fields marked as mandatory (user name and password). The entry of the data requires the existence of a user account. Registration is not possible if the data you have entered is incorrect. If the data you enter is incorrect or not entered at all, the protected area cannot be used. However, the rest of the site can still be used without a login.
We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was accessed, name of the file, date and time of access, amount of data transferred and report on the success of the access (so-called web log). We use this access data exclusively in a non-personalised form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to evaluate visits to this website:
We use on our site the service Google Analytics of the company Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Google Analytics is a web tracker that analyses the behaviour of page visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). we have integrated Google Analytics so that the service can compile an analysis of the page users' surfing behaviour. For this purpose, Google collects the page interactions of page visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and processes it statistically for us. google Analytics uses data processing technologies that make it possible to track individual page visitors and their interaction with other Google services such as the Google Ads advertising network. Data from other Google services are also used to close data gaps and to create comprehensive statistics on the content of our website by means of machine learning technologies, modelled statistics and forecasting functions. If Google Analytics is activated on our website, the data determined by Google Analytics are transmitted to servers of the company Google Ireland Limited. As part of the order processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. we carry out the analysis through Google Analytics in order to constantly optimise our internet offer and make it more available. This is a so-called reach measurement.
For processing itself, the service or we collect the following data: Data on the interactions of page visitors with the content of the website, data on the handling of the services presented on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behaviour in relation to advertising, data on the gross geographical origin, the browser used, operating system and other information on the terminal device used.
Google Analytics will store the data relevant for the provision of web tracking for as long as it is necessary to fulfil the booked web service. Data collection and storage is anonymised. Insofar as individual interactions of site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data when the purpose has been achieved. The data will be deleted at the latest when it is not subject to any statutory retention obligations. As a rule, we will delete this data after 12 months at the latest. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.
We use on our site the service Google Tag Manager of the company Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Google Tag Manager provides a technical platform for executing and bundling other web tools and web tracking programmes by means of so-called "tags". in this context, Google Tag Manager stores cookies on your computer and analyses your surfing behaviour (so-called "tracking"), insofar as web tracking tools are executed using Google Tag Manager. The data generated by the "tags" are compiled, stored and processed by Google Tag Manager under a uniform user interface. All integrated "tags" are listed separately again in this data protection declaration. When you use our website with the integration of Google Tag Manager "tags" activated, data such as your IP address and your user activities in particular are transmitted to Google servers. The tracking tools used in Google Tag Manager ensure that the IP address is anonymised by Google Tag Manager before transmission by means of IP anonymisation of the source code. With Tag Manager, measured values from different service providers (Google and third-party providers) can be linked and evaluated on the basis of the so-called tag management. Google Tag Manager helps us to compile reports on website activity and to control the web tools of our website.
For processing itself, the service or we collect the following data: Cookies, web tracking data, outgoing or incoming links, information generated by the integration and activation of JavaScript code on the website from Google Tag Manager and the web tools triggered by Google Tag Manager.
you can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://policies.google.com/privacy.
We use on our site the service usercentrics of the company Usercentrics GmbH, Rosental 4, 80331 Munich, Germany, e-mail: contact@usercentrics.com, website: https://usercentrics.com/. Personal data is transmitted exclusively to servers in the European Union.
The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.
By integrating Usercentrics, we fulfil our legal obligation with regard to the consent management required for cookies.
You can find out what rights you have with regard to processing at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://usercentrics.com/de/datenschutzerklaerung/.
The provider also offers an opt-out option at https://usercentrics.com/de/datenschutzerklaerung/.
On our website, we use active content from external providers, so-called web services. When you visit our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU. You can prevent this by installing an appropriate browser plug-in or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.
We use the following external web services:
We use on our site the service Gravatar of the company Aut O’Mattic A8C Ireland Ltd., Grand Canal Dock, 25 Herbert Pl, D02 AY86 Dublin, Ireland, e-mail: privacypolicyupdates@automattic.com, website: https://de.gravatar.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Gravatar is a service for providing avatars across websites.
The certification of the parent company Automattic Inc. within the framework of the EU-US Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://automattic.com/privacy/.
The provider also offers an opt-out option at https://automattic.com/privacy/.
We use on our site the service Rechtstextsnippet und Module of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/. Personal data is transmitted exclusively to servers in the European Union.
The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.
With the help of the service, the contents of our legal texts are reloaded on our website. The respective current legal texts are reloaded via the integration on our page. This integration may also be used to reload further technical modules with regard to the legal texts or legally required elements.
You can find out what rights you have with regard to processing at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.
Your personal data is protected by technical and organisational measures during collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so that we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.
We expressly point out that our mail system has an automated archiving procedure. All incoming and outgoing e-mails are digitally archived in an audit-proof manner.
Art. 6 para. 1 lit. c GDPR (legal obligation). The legal obligation consists of compliance with tax and commercial law requirements (e.g. §§ 146, 147 AO, §§ 238, 257 HGB).
The purpose of archiving is to comply with tax law requirements (e.g. §§ 146, 147 AO - obligation to retain e-mails of relevance to tax law) and commercial law requirements (e.g. §§ 238, 257 HGB - obligation to archive business correspondence).
Our mail communication is stored until the expiry of storage obligations under tax and commercial law. The storage period can be up to 10 years.
You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.
If you have any questions regarding our e-mail archiving system, please contact our data protection officer. In addition, we would like to point out that we only consider application documents in PDF file format. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and will not be delivered. We do not consider applications in Word file format and other file formats and delete them unread. Please note that application documents sent by e-mail without encryption may be opened by third parties before they reach our IT systems. We assume that we may also reply to unencrypted application e-mails unencrypted. If you do not wish this, please let us know in your application e-mail.
You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have the right to be informed about the information named in Art. 15 (1) of the GDPR, insofar as the rights and freedoms of other persons are not affected (cf. Art. 15 (4) of the GDPR). We will also be happy to provide you with a copy of the data.
In accordance with Article 16 of the GDPR, you have the right to have any incorrect personal data stored with us (e.g. address, name, etc.) corrected at any time. You can also request that the data stored with us be completed at any time. A corresponding adjustment will be made immediately.
Pursuant to Art. 17 (1) of the GDPR, you have the right to demand that we delete the personal data we have collected about you if
Pursuant to Article 17 (3) of the GDPR, this right does not exist if
According to Art. 18 (1) GDPR, you have the right in individual cases to demand the restriction of the processing of your personal data.
This is the case when
If you have given us express consent to process your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent until the revocation is not affected by this.
In accordance with Art. 21 of the GDPR, you have the right to object at any time to the processing of personal data relating to you that has been collected on the basis of Art. 6 (1) (f) (in the context of a legitimate interest). You only have this right if there are special circumstances against the storage and processing.
You can exercise your rights at any time by contacting us using the contact details below:
LEONHARD KURZ Stiftung & Co. KG
LEONHARD KURZ Stiftung & Co. KG
90763 Fürth
Germany
E-mail: sales@kurz.de
Tel: +49 911 71 41-0
Pursuant to Article 20 of the GDPR, you have a right to the transfer of personal data relating to you. We will provide the data in a structured, common and machine-readable format. The data can be sent either to you or to a person responsible named by you.
We provide you with the following data upon request pursuant to Art. 20 para. 1 GDPR:
We will transfer the personal data directly to a data controller of your choice as far as this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Art. 20 (4) of the GDPR.
If you suspect that your data is being processed illegally on our site, you can of course have the issue clarified by the courts at any time. In addition, any other legal option is open to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Article 77 (1) of the GDPR. The right of complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.