Data protection in accordance with the EU General Data Protection Regulation (GDPR),
Entry into force on May 25, 2018
We are very pleased about your visit to our website and the expressed interest in our offers. The protection of your personal data has a special significance for our management. The visit of our web pages is basically possible without giving your personal data. However, processing of your personal data may be required if you use a special service via the Internet pages. In this case we always get your consent.
We want you to feel safe at all times when you visit our websites, so we assure you that we have taken technical and organizational measures to ensure the highest possible protection of your rights and that we constantly strive to ensure that the legal requirements of both our Employees as well as external service providers. However, web-based services can always present security vulnerabilities, so absolute protection can not be guaranteed. You are also welcome to transfer your personal data using other means of communication (for example: by post, by telephone or fax).
The protection of your personal data is carried out in accordance with the Data Protection Regulation, the Federal Data Protection Act and other sector-specific laws and therefore uses the same terminology that will be explained below for you.
a) Personal data
Personal data means any information relating to an identified or identifiable natural person ('the data subject'); a natural person is regarded as identifiable, which can be identified directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, the expression of the physical, physiological , genetic, mental, economic, cultural or social identity of this natural person.
Processing means any process performed with or without the help of automated processes, or any such process associated with personal data such as collecting, collecting, organizing, organizing, storing, adapting or modifying, reading, querying, using, disclosure by submission, dissemination or other form of provision, reconciliation or association, restriction, erasure or destruction.
c) Restriction of processing
Restriction of the processing is the marking of stored personal data with the aim to limit their future processing.
Profiling refers to any type of automated processing of personal data that consists of using that personal information to evaluate certain personal aspects relating to a natural person, in particular aspects related to job performance, economic situation, health, personal preferences, To analyze or predict interests, reliability, behavior, whereabouts or location of this natural person.
Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without additional information being provided, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.
f) person responsible
The person responsible is any natural or legal person, public authority, body or other body that, alone or in concert with others, decides on the purposes and means of processing personal data; where the purposes and means of such processing are determined by Union law or the law of the Member States, the controller or the specific criteria for his designation may be provided for under Union or national law.
g) third party
Third is a natural or legal person, public authority, body or body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or processor.
The data subject's consent shall be deemed to be voluntary in a written, informed and unambiguous manner in the form of a statement or other unambiguous confirmatory act informing the data subject that they consent to the processing of their personal data is.
2. Name and address of the controller
Responsible for the processing within the meaning of the General Data Protection Regulation, as well as the data protection laws of the member states of the European Union and other area-specific laws with data protection character are:
KUZIO-CONSULTING (Dipl.-Ing. Heinz Kuzio)
Business & Management Solutions
Owner and Management/CEO: Heinz Kuzio, Dipl.-Ing.
Veldhauser Strasse 469
Telephone: +49 5941 205 82 42
3. Rights of data subjects
a) Right to information
You have a right to know if a controller is processing your personal information. As far as this is the case, you continue to have a right to information about the circumstances of the data processing. This right to information extends to the particular data, the purposes of the processing, the categories of personal data being processed and the recipients to whom the data has been transferred or disclosed. In addition, on the planned duration of the storage, the origin of the data, as far as these were not collected from you and the existence of an automated decision-making including profiling. In addition, the right to information includes a right to information on the existence of a right to rectification or deletion of personal data and a right to information about the existence of a right to complain to a supervisory authority.
b) Right to erasure
You have the right of the person responsible to request the immediate deletion of your personal data, if the following reasons are present and the processing is not required:
- The purpose of collecting or processing the data has been eliminated or the data is no longer required.
- You have exercised your right to object to the data processing.
- You have revoked your consent to data processing and there is a lack of a legal basis for data processing now.
- The deletion was due to a legal obligation.
- The processing of the data was illegal.
c) Data transferability
You have the right to receive personal data relating to you provided to us as a controller in a structured, common and machine-readable format, and you have the right to transfer that data to another controller without hindrance to inform the controller to whom the data was provided. This right should exist if automated data processing was used to execute a contract or based on consent. The claim also includes the right to have the data transmitted directly from one controller to another controller for as far as technically feasible.
d) Right to object
The right of objection on the one hand includes the possibility of objecting to the processing of one's own data for advertising purposes. In addition, if there are special reasons, an originally lawful data processing for other purposes may be objected to.
e) Right to restriction of processing
You may have the right to restrict processing on certain conditions to the effect that your personal data is blocked at the controller and thus not further processed. Thus, the blocking may be required for the duration of the investigation, if the correctness of the stored data is disputed.
f) Right to rectification
The right of rectification includes your right as an affected person to demand from us, as the person responsible without delay, the correction of any incorrect personal data concerning you.
4. Legal basis of processing
For most of the processing operations, we obtain your consent to them. Then Art. 6 I lit. a and Art. 7 DSGVO as the basis for processing operations. The processing may be required in some cases also to fulfill the contract or to initiate the contractual relationship, this mainly concerns the delivery of the requested information material and register for a seminar. In this case the legal basis of the processing is Art. 6 I lit. b DSGVO. If the processing of data is required due to legal obligations, for example in the case of tax information requests, the processing is based on Art. 6 I lit. c DSGVO. The processing of data may also be necessary for the protection of vital interests of affected or other natural persons. The legal basis in this case would then be Art. 6 I lit. d DSGVO. If none of these allowances are met, the processing may also be subject to Art. 6 I lit. f DSGVO be supported. This may be considered when the processing to protect a legitimate interest of our company or a third party is necessary and do not outweigh long as interests, fundamental rights and freedoms of us as the data controller. A legitimate interest is, for example, the performance of our business activities to protect the interests of our employees and shareholders. We also consider the tracking of user behavior by cookies in the context of advertising, which do not concern sensitive data and have no personal reference as a legitimate interest.
5. Transfers to third countries
If we process data in a third country (ie a country outside the European Union or the European Economic Area) or this is done to third parties in connection with the use of services of third parties or disclosure, or transfer of data, this is done solely for the fulfillment of contractual obligations or the initiation of an agreement, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. We process, transmit or have data processed only in a third country if the requirements of Art. 44 et seq. DSGVO are met. The processing is e.g. on the basis of specific safeguards, such as the finding of a comparable with the EU standard level (eg "Privacy Shields"), the observance officially recognized contractual obligations or on submission of audit evidence that any other recognized (on the commitment to "safe harbor" level of protection) (see also the extended requirements of the „Düsseldorfer Kreis“).
6. Collaboration with processors and third parties
If, during our processing, we disclose, transmit to, or otherwise provide access to other persons and companies (processors, affiliates of the COGNOS Group or third parties), this is always done on the basis of a legal permission (eg the transmission of the payment data to the responsible company within the group of companies for the fulfillment of the contract is required or if the forwarding of the requested information material to the dispatcher, according to Art. 6 Abs. 1 bGB DSGVO), is required Consent, a legal obligation, on the basis of a legitimate interest or a data processing on behalf in accordance with Art. 28 DSGVO.
7. SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption procedures over HTTPS.
We use so-called cookies on our Internet pages, which enables web-based applications to manage the status of an online visit and to enable smooth navigation between the individual services and content on the website. Cookies are stored on your computer's hard drive and do no damage there.
A cookie is a small data file that is transferred from the web server to your computer if you browse our pages. A cookie contains only information that we send to your computer - private data cannot be read with a cookie. If cookies are accepted by you, we will not have access to your personal information.
Cookies store different information. It is primarily intended to store information about the user during or after his visit to a website. Here are temporary cookies and permanent cookies to distinguish. The former are deleted when the user leaves the website. The latter are also stored after closing the browser. This type of cookie also serves to measure reach and analyze usage patterns. In addition, there are the so-called third-party cookies from other providers than the person responsible, from other providers than the person responsible for the website. This website uses temporary and permanent cookies whose operation we inform you about in this privacy statement.
If cookies are banned, certain features on our pages may not be available and some web pages may not be displayed correctly.
9. Access data
Each time a page is accessed, access data from us or our hosting provider is stored in a log file via this process. In connection with the access, we receive usage data that is temporarily stored for statistical purposes and then deleted. Log data is collected solely for internal purposes and is not forwarded to third parties. These include: