Privacy Policy
1. General notes, rights, general use/collection of data on the website
a) General notes
The following notes give a simple overview of what happens with your personal data when you visit our website. Personal data is all data with which you can be personally identified. You can get more detailed information on the topic of data protection from our data protection declaration listed under this text.
b) General data protection
The operators of these sites take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection specifications as well as with this data protection declaration.
When you use this website, various personal data is recorded. Personal data is data with which you can be personally identified. The present data protection declaration explains which data we record and what we use this for. It also explains how and for what purpose this happens.
We point out that data transfer via the internet (for example, in communication via email) can show gaps in security. Seamless protection of data against access by third parties is not possible.
c) Data recording on our website
Who is responsible for the data collection on this website?
The responsible party for data processing on this website is:
ALHO Holding GmbH
Hammer 1
51598 Friesenhagen
Anette Höchst (CEO), Achim Holschbach, Silvia Matschke, Dr. Nicole Steinmetz, Jens Vetter
Phone: +49 2294 696- 737
Email: datenverarbeitung @alho.com
The responsible party is the natural or legal person who alone or with others decides about the purpose and means of processing personal data (e.g. names, email addresses, etc.).
How do we collect your data?
On the other hand, data is automatically recorded by our IT systems when the website is visited. This is above all technical data (e.g. internet browser, operating system, or time at which the site was called up). This data is recorded automatically as soon as our website is visited.
What do we use your data for?
Part of the data is collected in order to ensure the error-free appearance of the website. Other data can be used to analyze your usage behavior.
What rights do you have regarding your data?
You have at all times the right, in accordance with Art. 15 DSGVO, to receive information about the source, receiver, and purpose for your stored personal data for free. You also have the right to demand the correction (Art. 16 DSGVO), deletion (Art. 17 DSGVO), and limitation (Art. 18 DSGVO) of this data, as well as the right to place a contestation against a certain processing in accordance with Art. 21 DSGVO. You moreover have the right to data portability (Art. 20 DSGVO).
On this as well as further questions on the topic of data protection, you can turn to the responsible party under the address named above at ant time. Furthermore, you have the right to lodge a complaint with the responsible oversight authority.
Analysis tools and tools of third-party providers
In visiting our website, your surfing behavior can be statistically evaluated. This happens above all with cookies, and with so-called analysis programs. The analysis of your surfing behavior is generally done anonymously; the surfing behavior cannot be traced back to you. You can contradict this analysis, or prevent it by not using certain tools. You will also find detailed information on this in the following data protection declaration.
You can object to this analysis. You will be informed about the possibilities for objection in this data protection declaration.
SSL or TLS encryption
For reasons of safety and to protect the transfer of confidential contents, for example orders or queries which you send to us as the site operator, this site uses an SSL or TLS encryption. You can recognize an encrypted connection in that the address row of the browser changes from “http://” to “https://”, and with the key symbol in your browser row. When the SSL or TLS encryption is activated, the data which you transfer to us cannot be read by third parties.
2. Data protection officer
We have appointed an external data protection officer for our company. You can reach him under the following contact details:
TÜV Rheinland i-sec GmbH
External data protection officer of the ALHO Group
Am Grauen Stein 1
51105 Köln
Telefon: +49 221 56783 504
datenschutz@alho.com
3. Data recording on our website
Cookies
Our internet site uses so-called cookies to a certain extent. Cookies are not a source of damage to your computer and do not contain viruses. Cookies allow us to make our offerings more user-friendly, more effective, and more secure. Cookies are small text files that are stored on your computer and which your browser stores.
Most of the cookies we use are so-called “session cookies.” They are automatically deleted at the end of your visit. Other cookies remain stored on our end device until you delete them. These cookies allow us to recognize your browser upon the next visit.
You can adjust your browser so that you are informed about the placement of cookies and can allow cookies only in individual casts, can exclude the acceptance of cookies for certain cases or in general, as well as activate the automatic deletion of cookies in closing the browser. In deactivating cookies, the functionality of this website can be limited.
Cookies that are necessary to carry out electronic communication, or for the provision of certain functions which you wish to have (for example, a shopping cart function), are stored in compliance with Art. 6 Par. 1 let. f DSGVO). The website operator has an authorized interest in the storage of cookies in order to ensure that it can provide its services in technically error-free and optimized fashion. Insofar as other cookies (e.g. cookies for the analysis of your surfing behavior) are stored, these are treated separately in this data protection declaration.
Contact form
If you pose questions to us via the contact form, your information from the query form, including the contact data you enter there, will be stored by us for the purpose of processing the query, and in case of follow-up questions. We do not forward this data to third parties without your permission.
The data given in the contact form is processed only with your permission (Art. 6 Par. 1 let. 1 DSGVO). You can revoke this permission at any time. For this, an unscripted communication to us via email is enough, but you can also send a fax, or write to us via the mail. The legality of the data processing procedures taking place up until the point of revocation remains unaffected by the revocation.
The data you enter into the contact form remains with us until you request it to be deleted, revoke your permission, or when the purpose for the storage of the data lapses (e.g. after the concluded processing of your question). Compulsory legal determinations - in particular retention periods - remain unaffected.
4. Analysis tools and advertisement
Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies.” These are text files that are stored on your computer and that allow for your use of the website to be analyzed. The information generated by cookies about your use of this website is in general transferred to a server by Google in the U.S. and stored there.
The storage of Google Analytics cookies is done in compliance with Art. 6 Par. 1 let. f DSGVO. The website operator has an authorized interest in the analysis of user behavior so as to optimize its web offerings as well as its advertising.
Browser Plug-in
You can prevent the storage of cookies through a corresponding setting in your browser software; we nevertheless indicate that, in this case, it is possible that not all functions of this website can be used in full. Moreover, you can prevent the recording of the data generated by the cookie and related to your use of the website (including your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plug-in under the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
Objection to data recording
You can prevent your data from being recorded by Google Analytics by clicking on the following link. An opt-out cookie is placed, preventing the recording of your data in future visits to this website: Deactivate Google Analytics.
You can find more information on the procedure with user data by Google Analytics in Google's data protection declaration: https://support.google.com/analytics/answer/6004245?hl=de.
Order data processing
We have concluded a contract on order data processing with Google, and fully implement the strict specifications of the German data protection authorities in the use of Google Analytics.
Demographic features with Google Analytics
This website uses the function “demographic features” from Google Analytics. Thus, reports can be created that contain statements on the age, sex, and interests of visitors to the site. This data comes from interest-related advertising on Google as well as from visitor data from third-party providers. This data cannot be attributed to any one person. You can deactivate this function at any time via the display settings in your Google account, or you can prohibit the recording of your data by Google Analytics as presented generally in the point “Objection to data recording.”
Google Analytics Remarketing
Our websites use the functions of Google Analytics Remarketing in connection with the multi-device functions of Google AdWords and Google DoubleClick. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
This function makes it possible to connect the advertising target groups created with Google Analytics Remarketing with the multi-device functions of Google AdWords and Google DoubleClick. In this way, interest-related, personalized advertising offers, which depending on your earlier usage and surfing behavior have been adjusted to and end device (e.g. cellphone) for you, can also be displayed on another of your end devices (e.g. tablet or PC).
If you have given a corresponding permission, for this purpose, Google connects your web and app browser activity with your Google account. In this way, for each device on which you log in with your Google account, the same personalized advertising messages will be activated.
To support this function, Google Analytics records Google-authenticated IDs of the user, which are largely connected with our Google Analytics data in order to define and create target groups for the multi-device display advertising.
You can prohibit multi-device remarketing/targeting in the long-term by deactivating personalized advertising in your Google account; for this, follow this link: https://www.google.com/settings/ads/onweb/.
The summary of the data recorded in your Google account is done exclusively with your permission, which you can give or revoke with Google (Art. 6 Par. 1 let. a DSGVO). In data recording processes that are not merged into your Google account (e.g. because you don’t have a Google account or have forbidden the compilation), the recording of the data is done in compliance with Art. 6 Par. 1 let. f DSGVO. The authorized interest comes from the fact that the website operator has an interest in the anonymized analysis of visitors to the website for advertising purposes.
You can find further information and data protection determinations in Google’s data protection declaration under: https://www.google.com/policies/technologies/ads/.
Google AdWords and Google Conversion-Tracking
This website uses Google AdWords. AdWords is an online advertising program of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).
Under Google Adwords, we use so-called conversion tracking. When you click on a display placed by Google, a cookie is placed for the conversion tracking. Cookies are small text files which the internet browser deposits on the user’s computer. These cookies lose their validity after 30 days and are not used to personally identify the user. If the user visits certain sites on this website and the cookie has not yet expired, Google and we can recognize that the user has clicked on the display and been forwarded to this site.
Each Google AdWords customer receives a different cookie. The cookies cannot keep track of the websites of AdWords customers. The information gathered with the help of conversion cookies serves to create conversion statistics for AdWords customers who have opted into conversion tracking. Customers learn the overall number of users who have clicked on the display and who were forwarded to a site provided with a conversion-tracking tag. But, they do not receive any information with which users can be personally identified. If you would not like to participate in the tracking, you can prevent this use by deactivating the Google conversion-tracking cookie on your internet browser under user settings. You will then not be recorded in the conversion-tracking statistics.
The storage of “conversion cookies” is done on the basis of Art. 6 Par. 1 let. f DSGVO. The website operator has an authorized interest in the analysis of user behavior in order to optimize its web offer as well as its advertising.
You can find more information on Google AdWords and Google Conversion-Tracking in Google’s data protection provisions: https://www.google.de/policies/privacy/.
You can adjust your browser so that you are informed about the placing of cookies and can allow cookies only in individual cases, can exclude the acceptance of cookies for certain cases or in general, and can activate the automatic deletion of cookies when the browser is closed. In deactivating cookies, the functionality of this website can be limited.
Bing Ads
This is an advertising provider.
Data processor
Microsoft Corporation
One Microsoft Way, Redmond, WA 98052-6399, United States of America
Purposes of data processing
This list represents the purposes of data collection and processing. Consent is valid only for the purposes indicated. The data collected cannot be used or stored for purposes other than those listed below.
- Advertising
- Conversion tracking
Technologies used
- Cookies
Data collected
This list contains all (personal) data collected by or through the use of this service.
- Employment metrics
- Number of visits
- Bounce rates
- Microsoft Click ID
- Digital signature
- UET ID tag
- URLs
- Referrer URL
- Page title
- Conversions
- Screen height
- Screen width
- Browser language setting
- Visit duration
- Screen colour depth
- Page response times
- Ads clicked on
Legal basis
The legal basis for the processing of personal data under Art. 6 I 1 GDPR is set out below.
- Art. 6 para. 1 s. 1 lit. a GDPR
Place of processing
European Union
Retention period
The retention period is the period during which the data collected are stored for processing. The data must be deleted as soon as they are no longer necessary for the specified processing purposes. The data must be deleted as soon as they are no longer necessary for processing.
Data recipients
Data Recipients Infotext
- Microsoft Corporation
Data Protection Officer of the data processor
The email address of the Data Protection Officer of the data processor is given below.
https://aka.ms/privacyresponse
Disclosure to third countries
Some services transfer the collected data to another country. A list of the countries to which the data is transferred is provided below. This may be for various purposes, such as storage or processing.
Click here to read the privacy policy of the data processor https://privacy.microsoft.com/en-us/PrivacyStatement
Click here to revoke on all domains of the data processor https://account.microsoft.com/privacy/ad-settings/signedout?ru=https:%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings
LinkedIn ads
This is an advertising service.
Data processor
LinkedIn Ireland Unlimited Company
Wilton Place, Dublin 2, Ireland
Purposes of data processing
This list represents the purposes of data collection and processing. Consent only applies for the purposes indicated. The data collected cannot be used or stored for purposes other than those listed below.
- Conversion tracking
- Advertising
- Remarketing
- Optimisation
Technologies used
- Cookies
- Pixels
- Ad tags
Data collected
This list contains all (personal) data collected by or through the use of this service.
- IP address
- User agent data
- Device ID
- Search terms
- Viewed articles
- Visited pages
- Ads viewed
- Trailers
- Links
- Videos viewed
- Profile information
- Advertising ID
- Information about the operating system
- Device information
Legal basis
The legal basis for the processing of personal data under Art. 6 I 1 GDPR is set out below.
- Art. 6 para. 1 p. 1 lit. a GDPR
Place of processing
European Union
Retention period
The retention period is the period during which the data collected are stored for processing. The data must be deleted as soon as they are no longer necessary for the processing purposes mentioned. The data must be deleted as soon as they are no longer necessary for processing.
Data recipients
Data Recipients Infotext
- LinkedIn Ireland Unlimited Company
- LinkedIn Inc.
Data Protection Officer of the data processor
The email address of the Data Protection Officer of the data processor is given below.
https://www.linkedin.com/help/linkedin/ask/TSO-DPO
Disclosure to third countries
Some services transfer the collected data to another country. A list of the countries to which the data is transferred is given below. This may be for various purposes, such as storage or processing.
Click here to read the privacy policy of the data processor https://www.linkedin.com/legal/privacy-policy
Click here to revoke on all domains of the data processor https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences?lang=en
Click here to read the cookie policy of the data processor https://www.linkedin.com/legal/cookie_policy
Facebook-Pixel, Custom Audiences and Facebook-Conversion
Because of our justified interests in the analysis, optimisation and commercial operation of our online offering and for these purposes, we use, within our online offering, the "Facebook pixel" developed by the social network Facebook, which is operated by Facebook Inc.,
1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook").
Facebook is certified under the Privacy Shield agreement and consequently provides a guarantee of compliance with European data protection legislation (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
The Facebook pixel allows Facebook, firstly, to define the visitors to our online offering as a target group for the presentation of advertisements ("Facebook ads"). Accordingly, we use the Facebook pixel only to show the Facebook ads placed by us to those Facebook users that have also shown an interest in our online offering or who show particular characteristics (e.g. interest in particular topics or products defined on the basis of web pages visited) which we forward to Facebook ("Custom Audiences"). Using the Facebook pixel, we would also like to ensure that our Facebook ads match the potential interest of the users and are not perceived as annoying. With the Facebook pixel, we can also trace the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users are forwarded to our website after clicking on a Facebook ad ("Conversion").
Data is processed by Facebook within the framework of Facebook's data usage policy. Accordingly, there are general guidelines on the presentation of Facebook ads in the Facebook data usage policy: https://www.facebook.com/policy. You will find specific information and details about the Facebook pixel and how it works in the Facebook help pages: https://www.facebook.com/business/help/651294705016616.
You can object to the capture of your data by the Facebook pixel and use of your data for the showing of Facebook ads. To define what types of advertisements are shown to you within Facebook, you can call up the page set up by Facebook and follow the instructions there on the settings for use-based advertising: https://www.facebook.com/settings?tab=ads. Settings are carried out irrespective of platform, i.e. they are taken over for all devices such as desktop computers or mobile devices.
Google reCAPTCHA Privacy Policy
The ALHO Grroup uses the "Google reCAPTCHA" function to ensure that information is entered (forms) and pages accessed by legitimate users and not by automated hacking or SPAM tools (robots). For this, data relating to page access sessions ("sessions", "session cookies") and interaction data are processed. These provide an indication, at least indirectly, of a personal connection. A comprehensive description of the scope of this function and how it works is provided at https://www.google.com/recaptcha/about/.
The processing of your data using "Google reCAPTCHA" is carried out solely on the basis of the declaration of consent under data protection law in accordance with Art. 6 Para. 1 (a) of the EU General Data Protection Regulation ("GDPR").
Data processing by Google itself and any data transfers which may be associated with it are comprehensively documented by Google as the service provider in its privacy policy statement. This can be accessed at: https://www.google.com/intl/de/policies/privacy/.
5. Newsletter
Newsletter2Go
This website uses Newsletter2Go for the sending of newsletters. The provider is Newsletter2Go GmbH, Nürnberger Straße 8, 10787 Berlin, Germany. Newsletter2Go is a service using which the sending of newsletters can be organized and analyzed. The data which you provide for the purpose of the newsletter is stored by us as well as on the servers of Newsletter2Go in Germany.
Data analysis by Newsletter2Go
With the help of Newsletter2Go, it is possible for us to analyze our newsletter campaigns. Thus, we can see, for example, whether a newsletter message has been opened, and which links, if any, were clicked on. In this way, we can establish, among other things, which links in particular are clicked often. Moreover, we can recognize whether, after opening/clicking, certain previously defined actions were undertaken (conversion rate). Thus, we can recognize, for example, whether, after clicking on the newsletter, a purchase was initiated.
Newsletter2Go also allows us to divide the newsletter recipients using various categories (“clusters”). Thus, the newsletter receivers can be divided, for example, according to age, sex, or place of residence. In this way, the newsletter can better be adjusted to the respective target groups.
You can get detailed information on the functions of Newsletter2Go under the following link: https://www.newsletter2go.de/features/newsletter-software/.
If you do not want the analysis by Newsletter2Go, you must unsubscribe from the newsletter, because receipt of the newsletter without the corresponding analysis is not possible. You can unsubscribe from the newsletter by clicking on the email address stored there and then sending the email.
Legal foundation
The data processing is done based on your willingness (Art. 6 Par. 1 let. a DSGVO). You can revoke this permission at any time with effect for the future. The legality of the data processing procedures remains unaffected by the revocation.
Length of storage
The data stored with us for the purpose of the newsletter offering is stored by us until you deregister from the newsletter, and, after you unsubscribe from the newsletter, is deleted from our servers as well as from the servers of Newsletter2Go. Data that is stored by us for other purposes (e.g. email addresses for the member area) remain unaffected by this. You will find more information on the data protection provisions of Newsletter2Go under: https://www.newsletter2go.de/features/datenschutz-2/.
Conclusion of a contract about order data processing
We have concluded a contract with Newsletter2Go in which we obligate Newsletter2Go to protect the data of our customers and not to forward this to third parties. This contract can be viewed under the following link: https://www.newsletter2go.de/docs/datenschutz/ADV_Muster_Newsletter2Go_GmbH_latest_Form.pdf.
6. Plug-ins and Tools
YouTube
We have incorporated YouTube videos on our website that are stored by http://www.youtube.com (Provider: YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA) and that can be played back on our website. In this, the expanded data protection mode is used in which, according to the information from YouTube, user information is not stored. If you start an embedded YouTube video, cookies from YouTube are thus stored on your computer in order to collect information about your usage behavior. You are thus logged in with a product of the YouTube mother corporation Google Inc.; Google can assign the visit to our online offering and your usage behavior to your Google profile in certain circumstances. Independent from the replay of the embedded videos, with each calling up of a website with a YouTube video, a connection to the Google network “DoubleClick” is undertaken. For the purpose and scope of the data collection and further processing and usage of data by Google as well as the associated rights and setting possibilities for the protection of your private domain, please see the data protection notes from Google or YouTube. You will find this under https://www.google.de/intl/de/policies/privacy/.
We currently use the social media plug-in from Facebook. You can recognize the provider of the plug-in on our homepage, on the button with the “f”. When you visit our website, at first, no personal data is forwarded to the provider of the plug-in. Only when you actively click on the letter, thus activating the “button” and logging in/registering with Facebook, does the provider receive the information that you have called up the corresponding website of our online offer. According to its own information, in Germany, Facebook will anonymize your IP address immediately after it is collected. In activating the plug-in, personal data is transferred from you to Facebook and stored there. We neither have influence on the data collected and the data processing procedures, nor do we know the full extent of the data collection, the purposes of the processing, and the storage timelines. On this, we recommend that you look at the data protection declaration of Facebook under https://www.facebook.com/privacy/explanation.
Use of Twitter
We likewise use the services of Twitter and have incorporated the “social plug-in” of Twitter into our homepage. The connection to Twitter, however, is not established until you actively click on the button. Not until you have activated the button and/or use the functions from Twitter, for example, by using the function “re-tweet,” are the websites you have visited linked to your Twitter account and made known to other users. Thus, data is also transferred to Twitter.
We indicate that we have and receive no knowledge of the contents of the transferred data, as well as their use by Twitter. You can get further information on the purpose of the data recording and processing from Twitter, Inc. 1355 Market St. Sweet 900 San Francisco, California 94103, USA: https://twitter.com/privacy. Twitter has subjected itself to the eu-us-privacy-shield https://www.privacyshield.gov/European-Businesses. You can change your data protection settings for Twitter in the account settings.
On our website, we have incorporated the button for the network “Xing”. In actively clicking the button, your browser will generate in the short-term a connection to the servers of XING SE („XING“, Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy ). In calling up this website, no personal data is stored by XING. XING in particular stores no IP addresses. You can find more detailed information about the concrete data recording on the website: https://www.xing.com/app/share?op=data_protection
Google Maps
This site uses an API of the map service Google Maps. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the Google Maps function, it is necessary to store your IP address. This information is in general transferred to a Google server in the U.S. and stored there. The provider of this site has no influence on this data transfer. The use of Google Maps is done in the interest of a corresponding presentation of our online offers and the easy retrievability of the locations entered by us on the website. This presents an authorized interest in the sense of Art. 6 Par. 1 let. f DSGVO.
You can find more information on the procedures with user data in Google's data protection declaration from: https://www.google.de/intl/de/policies/privacy/.
7. Service provider/third-party company
We commission other companies and individual parties to fulfill tasks for us. Thus, service providers are commissioned to process data on behalf of us, such as, for example, to analyze and tend to our databases, and to maintain our software and hardware. Likewise, we commission the help of service providers in ordering products, supporting advertising measures, processing payments (credit card, direct debit, and purchase on account) and for general customer service. All service providers and third-party companies work in concord with the applicable laws, in particular the valid data protection regulation. With our service providers, we have concluded agreements about data processing on our behalf that satisfy the requirements of Art. 28 DSGVO, insofar as the corresponding legal specifications are available for this. Through careful selection and regular monitoring, we ensure that our service providers meet all organizational and technical measures that are necessary to protect your data.
End of the data protection declaration (Status May 2019)