Data Protection

Privacy Notice

The following declaration gives you an overview of which personal data ENDA GmbH & Co. KG for what purpose captures during your visit to our Internet pages and how these are used.

Responsible Person

Responsible Person in the Sense of the DSGVO is:
ENDA GmbH & Co. KG
Flottwellstr. 15
10785 Berlin
Germany

General Information on Data Processing

We process personal data as a matter of principle only to the extent necessary to provide a functioning website and our content. The processing of personal data takes place regularly only with the consent of the user.

Where consent is required for the processing of personal data, Art. 6 (1) (a) of the Basic EU Data Protection Regulation (DSGVO) serves as the legal basis. If processing is necessary to safeguard a legitimate interest on our part or on the part of a third party and if your interests, fundamental rights and fundamental freedoms do not outweigh the first-mentioned interest, Art. 6 (1) (f) DSGVO serves as the legal basis for processing.

Personal data will be deleted as soon as the purpose of storage no longer applies. In addition, personal data may be stored if provided for by European or national legislation in Union regulations, laws or other provisions to which we are subject. The data will also be deleted if a storage period prescribed by the aforementioned standards expires.

Provision of the Website and Creation of Log Files

Each time you access our website, our system automatically collects data and information (browser type / version used, operating system, IP address, date and time of access, websites from which you accessed our website, websites accessed via our website) from the computer system of the accessing computer. The data is stored in the log files of our system. These data are not stored together with other personal data of the user. The legal basis for the temporary storage of data and log files is Art. 6 (1) (f) DSGVO.

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the IP address must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. The data is also used to optimise the website and to ensure the security of our information technology systems. These purposes also include our legitimate interest in data processing pursuant to Art. 6 (1) (f) DSGVO.

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data to provide the website, this is the case when the session in question has ended. If the data is stored in log files, this is the case after 30 days at the latest. A storage going beyond this is possible. In this case the IP addresses of the users will be deleted or anonymised.

The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. Consequently, there is no possibility of opposition.

Contact

A contact form is available on our website, which can be used for electronic contact. If you make use of this possibility, the data entered in the input mask (name, e-mail address, subject, message) will be transmitted to us and stored.

By sending the contact request, you consent to the processing of personal data, with knowledge of this privacy policy. Alternatively, it is possible to contact us via the e-mail address provided. In this case the personal data of the user transmitted with the e-mail will be stored. The data will be used exclusively for the processing of the conversation. The legal basis for processing this data is consent (Art. 6 (1) (a) DSGVO) or, if an e-mail is sent, Art. 6 (1) (f) DSGVO.

The processing of the personal data from the input mask serves us exclusively for the processing of the establishment of contact. If you contact us by e-mail, this is also the necessary legitimate interest in the processing of the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be inferred from the circumstances that the relevant facts have been conclusively clarified.

You have the possibility to revoke your consent to the processing of your personal data at any time. In such a case the conversation cannot be continued. All personal data stored in the course of contacting you will be deleted in this case.

Cookies

We use so-called cookies on our homepage. Cookies are data packages that your browser stores in your end device at our request. There are two types of cookies: temporary, so-called session cookies, and persistent cookies.

Session cookies are automatically deleted when you close your browser. They store a so-called session ID, which can be used to assign various requests from your browser to the shared session. This enables your computer to be recognised when you return to our website. The use of session cookies is necessary so that we can make the website available to you. The legal basis for the processing of your personal data using session cookies is Art. 6 (1) (f) DSGVO.

Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. These cookies remain on your end device for a predefined period of time and are usually used to recognise you when you return to our homepage. The use of persistent cookies on our homepage is based on Article 6 (1) (f) DSGVO.

You can set your Internet browser so that our cookies cannot be stored on your end device or cookies that have already been stored are deleted. If you do not accept cookies, this can lead to restrictions in the function of the Internet pages.

Specifically, we have these Types of Cookies:

  • Drupal login cookie (persistent cookie) that recognises you as the user you logged in with. After 10 days your cookie expires and is deleted. If you delete this cookie, you will have to log in again the next time you visit the site.

Cookies used by us generate random character strings which are used for comparison with corresponding character strings on our server. Beyond that no data is generated or processed.

We do not collect statistics and do not analyse your visitor behavior.

Rights of Data Subjects

If your personal data are processed, you are affected in the sense of the DSGVO and you are entitled to the rights described below. Please address your request, preferably by e-mail, to the above-mentioned responsible person.

Information: You have the right to receive information from us free of charge at any time, as well as confirmation of the personal data stored about you and to receive a copy of this information.

Rectification: You have the right to have your personal data corrected and/or completed if it is inaccurate or incomplete.

Restriction of Processing: You have the right to request that the processing be restricted if one of the following conditions is met:

  • The accuracy of the personal data is disputed by you for a period of time that enables us to verify the accuracy of the personal data.
  • The processing is unlawful, you refuse the deletion of the personal data and demand instead the restriction of the use of the personal data.
  • We no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims.
  • You have lodged an objection against the processing pursuant to Art. 21 (1) DSGVO and it is not yet clear whether our legitimate reasons outweigh yours.

Erasure: You have the right to have your personal data deleted immediately if one of the following reasons applies and if the processing is not necessary:

  • The personal data have been collected for such purposes or processed in any other way for which they are no longer necessary.
  • You revoke your consent on which the processing was based and there is no other legal basis for the processing.
  • You object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate reasons for the processing or you object to the processing pursuant to Art. 21 (2) DSGVO.
  • Personal data have been processed unlawfully.
  • The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which we are subject.
  • The personal data were collected in relation to information society services offered pursuant to Art. 8 (1) DSGVO.

Data Transferability: You have the right to receive the personal data concerning you that you have provided to the responsible person in a structured, common and machine-readable format. In addition, you have the right to communicate this data to another data controller without being hindered by the controller to whom the personal data was provided. In exercising this right, you also have the right to request that the personal data concerning you be transferred directly by us to another responsible person, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

Dissension: You have the right to object at any time to the processing of your personal data on the basis of Art. 6 (1) (f) DSGVO. In the event of an objection, we will no longer process the personal data unless we can prove compelling reasons for the processing worthy of protection which outweigh your interests, rights and freedoms, or the processing serves the assertion, exercise or defence of legal claims.

Revocation of Consent: You have the right to revoke your declaration of consent under data protection law at any time. The revocation of your consent does not affect the legality of the processing carried out on the basis of your consent until you revoke it.

Right of Appeal to a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State of your residence, if you consider that the processing of your personal data is contrary to the DSGVO. The data protection supervisory authority applicable to the operator of this site is:

Berliner Beauftragte für Datenschutz und Informationsfreiheit, Friedrichstr. 219, 10969 Berlin, Germany, Phone: +49 30 13889-0, E-Mail: mailbox{at}datenschutz-berlin.de, Web: https://datenschutz-berlin.de/