Privacy policy

Thank you for visiting our website codewerk.de and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practice is in accordance with the legal regulations of the EU's General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

Responsible person

The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.

With regard to our website, the responsible person is:

Codewerk GmbH
Siemensallee 75
76187 Karlsruhe
Germany
E-mail: info@codewerk.de
Tel: +49 721 9841 4678

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 of the GDPR. You can reach our data protection officer under the following contact details:

Ing.-Büro Straube GbR
Kastanienweg 9
76461 Muggensturm
Germany
E-mail: datenschutz@codewerk.de
Tel: 0049-(0)7222-82908
Website: https://www.ib-straube.de/

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device (e.g. computer, mobile phone, tablet, etc.) used to access it.

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the retrieval device;
(3) Host name of the accessing computer;
(4) The IP address of the retrieval device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user's system accessed our website (referrer tracking);
(8) Message whether the retrieval was successful;
(9) Amount of data transmitted

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of the data processing

The temporary (automated) storage of the data is necessary for the course of a website visit to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The deletion of the aforementioned technical data takes place as soon as they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Possibility of objection and deletion

You can object to the processing at any time in accordance with Article 21 of the GDPR and request the deletion of data in accordance with Article 17 of the GDPR. You can find out which rights you have and how to exercise them at the bottom of this privacy policy.

Special functions of the website

Our site offers you various functions, during the use of which personal data is collected, processed and stored by us. We explain below what happens to this data:

Contact form(s)

Login area

Appointment booking form

Statistical analysis of visits to this website - Webtracker

We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was accessed, name of the file, date and time of access, amount of data transferred and report on the success of the access (so-called web log). We use this access data exclusively in a non-personalised form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to evaluate visits to this website:

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, so-called web services. When you visit our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU. You can prevent this by installing an appropriate browser plug-in or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.

We use the following external web services:

Information about the use of cookies

Cookie name Server Provider Purpose Legal basis Storage period Type
HappyLocalTimeZone www.codewerk.de Website operator](#responsible-entity) The cookie stores the website visitor's local time zone during the session. Art. 6 para. 1 lit. f GDPR (legitimate interests) Session Configuration
PHPSESSID www.codewerk.de Website operator](#responsible-entity) We use the cookie "PHPSESSID" to manage the user session on our website. The purpose of this cookie is to provide a unique identifier for a user's session while they are visiting our website. This allows us to track the state of the session and ensure that the server can correctly identify the user to ensure smooth interaction with the website. The cookie usually contains a random string of characters that acts as a session ID. After the session ends, for example when the user closes the browser, the cookie is usually deleted. Art. 6 para. 1 lit. f GDPR (legitimate interests) Session Comfort
__cf_bm .myfonts.net MyFonts Counter Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security
__cf_bm .vimeo.com Vimeo Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information to calculate Cloudflare's own bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security
_cfuvid .vimeo.com Vimeo This cookie is part of the services offered by Cloudflare - including load balancing, delivery of website content and provision of DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
_ga codewerk.de Google Analytics This cookie assigns an ID to a user so that the web tracker can group the user's actions under this ID. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 months Analytics
_ga_ codewerk.de Google Analytics This cookie stores a unique ID for a website visitor in connection with Google Analytics or Google Tag Manager and tracks how the visitor uses the website. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 months Analytics
_gcl_au codewerk.de Google Tag Manager This cookie is used by Google AdSense to increase the efficiency of advertising. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 3 months Marketing
_hjCookieTest www.codewerk.de Website operator](#responsible-entity) The cookie checks whether the Hotjar tracking code can use cookies. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration
_hjSessionUser_ .codewerk.de Website operator](#responsible-entity) The cookie assigns a user ID. It is set the first time a user visits a website with a Hotjar script. This ensures that the usage behaviour is also assigned to the same user ID on subsequent visits to the site Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 12 months Analytics
_hjSession_ .codewerk.de Website operator](#responsible-entity) The cookie stores the current session data. This ensures that requests during the session period are assigned to the same Hotjar session- Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 31 minutes Analytics
_hjTLDTest .codewerk.de Hotjar When the Hotjar script is run, we try to determine the most common cookie path to use instead of the hostname of the page. This is done so that cookies can be shared across subdomains (if applicable). To determine this, we try to save the _hjTLDTest cookie for different URL sub-string alternatives until this fails. After this test, the cookie is removed. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Analytics
borlabs-cookie www.codewerk.de Website operator](#responsible-entity) Cookie that stores the user's decision about the cookie banner. Art. 6 para. 1 lit. c GDPR (fulfilment of legal obligation) approx. 60 days Cookie banner
borlabs-cookie-gcs www.codewerk.de Website operator](#responsible-entity) This cookie is set so that we can store information regarding your use of the site. In particular, individual settings are determined and stored. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 60 days Configuration
vuid .vimeo.com Vimeo Collects data about the user's visits to the website, such as which videos have been viewed. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 24 months Analytics

Data security and data protection, communication by e-mail

Your personal data is protected by technical and organisational measures during collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so that we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.

Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right to object

Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have the right to be informed about the information named in Art. 15 (1) of the GDPR, insofar as the rights and freedoms of other persons are not affected (cf. Art. 15 (4) of the GDPR). We will also be happy to provide you with a copy of the data.

Right of rectification

In accordance with Article 16 of the GDPR, you have the right to have any incorrect personal data stored with us (e.g. address, name, etc.) corrected at any time. You can also request that the data stored with us be completed at any time. A corresponding adjustment will be made immediately.

Right to erasure

Pursuant to Art. 17 (1) of the GDPR, you have the right to demand that we delete the personal data we have collected about you if

Pursuant to Article 17 (3) of the GDPR, this right does not exist if

Right to restriction of processing

According to Art. 18 (1) GDPR, you have the right in individual cases to demand the restriction of the processing of your personal data.

This is the case when

Right of withdrawal

If you have given us express consent to process your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that the lawfulness of the processing carried out on the basis of the consent until the revocation is not affected by this.

Right to object

In accordance with Art. 21 of the GDPR, you have the right to object at any time to the processing of personal data relating to you that has been collected on the basis of Art. 6 (1) (f) (in the context of a legitimate interest). You only have this right if there are special circumstances against the storage and processing.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

Codewerk GmbH
Siemensallee 75
76187 Karlsruhe
Germany
E-mail: info@codewerk.de
Tel: +49 721 9841 4678

Right to data portability

Pursuant to Article 20 of the GDPR, you have a right to the transfer of personal data relating to you. We will provide the data in a structured, common and machine-readable format. The data can be sent either to you or to a person responsible named by you.

We provide you with the following data upon request pursuant to Art. 20 para. 1 GDPR:

We will transfer the personal data directly to a data controller of your choice as far as this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Art. 20 (4) of the GDPR.

Right of appeal to the supervisory authority pursuant to Art. 77 para. 1 GDPR

If you suspect that your data is being processed illegally on our site, you can of course have the issue clarified by the courts at any time. In addition, any other legal option is open to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Article 77 (1) of the GDPR. The right of complaint pursuant to Art. 77 GDPR is available to you in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Created by:

© DURY LEGAL Attorneys at Law - www.dury.de

© Website-Check GmbH - www.website-check.de