Data Protection

Our Data Protection Policy

The purpose of this Data Protection Policy is to provide you with information about the type of data we collect from you when you use our website and its functions and features. First, we offer a quick overview of data processing (“Quick Overview”). We provide details of specific data processing activities carried out when you use our website and its various functions and features under the section “Detailed Information on Data Protection".

Quick Overview

1. Who is the controller responsible for data processing on this website?
The controller responsible for the processing of personal data through the website “paul-koester.de” is Paul Köster GmbH, Kolpingstraße 1, 59964 Medebach, Germany.

2. What type of data do you collect from website visitors?
When you visit our website, your web browser sends various data sets to our servers, which are technically necessary to display the content of the website and to ensure its stability and security. These data sets are stored in so-called log files, which also include the IP address.

3. Do you use cookies on your website?
Yes, we use various types of cookies (analysis cookies) on our website. For detailed information on how to delete these cookies or to prevent them from being stored, please refer to the sections “Cookies” and “Web Analysis”.

4. Do we use analysis and tracking tools on our website?
Yes, we use various types of cookies (analysis cookies) on our website. For detailed information on how to delete these cookies or to prevent them from being stored, please refer to the sections “Cookies” and “Web Analysis”.

5. Do you use personalized advertising (e.g. retargeting)?
No. We do not use such technologies on our website.

6. Do you transmit personal data to third parties?
No. We do not transmit your data to third parties.

7. Who can I contact if I have any questions?
If you have any questions about data protection, please contact nfpl-kstrd, or the controller specified above.

Detailed Information on Data Protection

A. General information on data protection

1. Scope

1.1 This Data Protection Policy covers information we are required to provide under Article 13 of the General Data Protection Regulation (GDPR) on the processing of data relating to the use of and access to our website “paul-koester.de” and the services and functions made available through the website.

1.2 Where we offer links to third party websites, please note that we have no influence or control over the linked content or the data protection policies of these websites. We recommend that you to check the data protection policies on these websites to determine whether and to what extent these websites collect, process or use personal data or make such data available to third parties. To enhance readability, the masculine gender is used to refer to all genders male/female/other.

2. Name and contact details of the controller and the data protection officer

2.1 Paul Köster GmbH, Kolpingstraße 1, 59964 Medebach, Germany, is the controller responsible for data protection on this website. You can contact us by telephone at +49 (2982) 92 11-0, or by email at nfpl-kstrd.

2.2 You can contact our data protection officer, Mr. Lutz Mönig, via Pohl Consulting Team GmbH, Mengeringhäuser Str. 15, 34454 Bad Arolsen, Germany, email dtnschtzpl-kstrd.

B. Data processing when visiting our website

1. Creation of so-called log files

1.1 Subject matter and purpose of data processing
a) When you visit the website, we collect so-called access data and store it in a log file. This access data also includes the IP address. Furthermore, we also store in the log file the name of the website and the file you accessed, the date and time of access, information about the amount of data transferred, notification of successful access, the browser type and version, the operating system, the so-called referrer URL (the previously visited page) and the accessing provider.
b) We collect such technical information to ensure that our website is displayed correctly, to identify the causes of any technical problems, to optimize the technical content of our website and to safeguard our computer systems and networks. Our legitimate interest also lies in the processing of data for these purposes in accordance with Article 6 (1) (f) GDPR.

1.2 Recipients and duration of data processing
a) We do not pass on the aforementioned data to unauthorized third parties. Our web server is hosted by domainfactory GmbH in Germany.
b) The log files, including the IP address contained therein, are automatically deleted no later than two months after collection. While the provision of the aforementioned personal data is not a statutory or contractual requirement, without the data, we may not be able to guarantee the functionality of our website and some services or functions may not be available at all or only to a limited extent.

2. Cookies

2.1 Subject matter and purpose of data processing
This website uses the following types of cookies:

Name

Domain

Controller

Purpose

Erasure

_gat

paul-koester.de

Paul Köster GmbH

Analysis cookie: used to restrict the request rate

10 minutes

_gid

paul-koester.de

Paul Köster GmbH

Analysis cookie: used to differentiate between users / website visit duration

24 hours

_ga

paul-koester.de

Paul Köster GmbH

Analysis cookie: used to distinguish various users / website visitors

24 months

WSESSIONID

paul-koester.de

Paul Köster GmbH

Analysis cookie: helps to identify users on the server across requests

Session

2.2 Duration of data storage
a) Irrespective of the automated deletion mentioned above, you use your browser settings to delete individual cookies or all of the cookies. In addition, depending on the provider of your browser, you can find information and instructions on how to delete cookies or block their storage in advance under the following links: Mozilla FirefoxInternet ExplorerGoogle ChromeOperaSafari.
b) You can also prevent the loading of so-called scripts by default. NoScript allows JavaScript, Java and other plug-ins to run only on trusted domains of your choice. Information and instructions on how to use this feature can be obtained from the provider of your browser (e.g. for Mozilla Firefox).

3. Web Analysis

3.1 Subject matter and purpose of data processing
a) On our website, we use so-called tracking and web analysis tools. These tools allow us to establish how users access our website and from which websites they come, which parts of our website are visited most frequently as well as how often and for how long certain pages and categories are being visited. Our aim is to use this information to improve our content and our online presence and make it more user-friendly.
b) The legal basis in this respect is Article 6 (1) (f) GDPR. We do not believe that this presents a significant infringement of the privacy rights of our visitors, because such profiles are created and processed using aliases, and the analysis is always related to the use of our website and the tools cannot be used to identify any particular individual. We believe that our interest in optimal use of the information and of our services constitutes an overriding interest. This naturally does not prejudice your right to object to such profiling at any time.

3.2 Recipients and duration of data processing
a) We do not pass on your data to third parties. However, in the field of web analysis, we cooperate with professional service providers who create user statistics for us. This contractual relationship is based on the obligation of the providers to implement special measures to protect your data and to process your personal data only in accordance with our instructions (Article 28 GDPR).
b) The details of the providers (processors) we use for this purpose are as follows:

Tool

Provider

Special right to object

Privacy policy of the provider

Google Analytics

Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland (Google)
Google Analytics

You can prevent Google from collecting and processing your data by downloading and installing a Browser Add-on. You can prevent cookies used by this tool from being stored by changing the relevant settings via https://www.aboutads.info/choices or http://www.youronlinechoices.com/uk/your-ad-choices.

https://policies.google.com/privacy?hl=de
www.google.com/intl/de/analytics/learn/privacy.html

Privacy Shield certification.

4. Use of emojis and smileys
a) Our website occasionally uses graphic emojis, i.e. small graphic files that express emotions, which are obtained from external servers. In this instance, the providers of the servers collect the IP addresses of the users. The emojis are delivered through (CDN) JSDelivr, an open-source content delivery network, developed by Prospect One, Dmitriy Akulov. A CDN is a service that enables us to deliver the contents of our online services, such as graphics or scripts, more quickly with the help of regionally distributed servers connected via the internet. To the best of our knowledge, user data is processed solely for the aforementioned purposes and to maintain the security and functionality of the CDN.
b) For further details and the privacy policy, please refer to https://www.jsdelivr.com/privacy-policy-jsdelivr-com. The server domain used is cdn.jsdelivr.net. The use of emojis is based on our legitimate interests, i.e. our interest in having an appealing website in accordance with Article 6 (1) (f) GDPR.

5. Web fonts from fast.fonts.net or fonts.com
a) To ensure the fonts we use on our website are uniform, we use web fonts provided by Monotype GmbH (fonts.com or fast.fonts.net). When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. To do this, your browser has to connect to the servers of fonts.com. As a result, fonts.com will learn that your IP address has accessed our website. We use web fonts to ensure a consistent and appealing presentation of our website content. This constitutes a legitimate interest within the meaning of Article 6 (1) (f) GDPR.

b) If your browser does not support web fonts, your computer will use the standard font. For more information about these web fonts, please refer to https://www.fonts.com/info/legal and the privacy policy of fonts.com: https://www.fonts.com/info/legal/privacy/ and the privacy policy of https://www.monotype.com/legal/privacy-policy/.

6. Map services
a) We include geographical maps on parts of our website to display contact details and directions. We use the JavaScript library “Leaflet” (Leaflets.com - “open-source JavaScript library for mobile-friendly interactive maps”) by Vladimir Agafonkin and maps from OpenStreetMap contributors (“OpenStreetMap contributors”). The map data is available under the Open Database License and the cartography is licensed under CC BY-SA. For more information about licenses, please visit https://github.com/Leaflet/Leaflet/blob/master/LICENSE and https://www.openstreetmap.org/copyright.
b) For the interactive display and usability of the maps, it is technically necessary to exchange data with the following servers: maps.wikimedia.org (for map sections) and unpkg.com (for loading the leaflet files). Through this exchange, it is possible that information about your visit to our website (including your IP address) will be transmitted to the specified servers and stored there. Any other personal information will not be exchanged with the Leaflet service. Due to the execution of the Leaflet JavaScript library directly in your browser (“client-side” execution), no data concerning the accessed map sections is stored on the Sustainability Council's server. The Leaflet library is temporarily stored in the memory of your browser software (the “browser cache”). You have the option of deactivating Leaflet's services and thus preventing the transfer of data to third parties by deactivating JavaScript in your browser. Please note that if you do this, you may not be able to use all the map-related features of this website. We use Openstreetmap to enhance the appeal of our website. This constitutes a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
c) For more information about OpenStreetMap, please refer to https://www.openstreetmap.de. For more information about the API Leaflet uses, see https://www.leafletjs.com.

C. Social media and fan pages

a) Paul Köster GmbH is active on several online and social media platforms in order to interact with potential and existing customers, to communicate with users and prospective customers, and to advertise offers and services. This includes the following providers:

Platform

Provider

Information on privacy policy

Facebook

Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland

https://www.facebook.com/about/privacy
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

Google/ YouTube

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland

https://policies.google.com/privacy
https://adssettings.google.com/authenticated
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

b) Please note that if you interact with the social media networks mentioned above, your data may be processed outside of the European Union. Those providers certified via Privacy Shield have agreed to respect EU data protection standards. User data is also generally processed for marketing and advertising purposes. For example, user profiles can be created based on user behavior and interests. User profiles can in turn be used, for example, to place advertisements inside and outside the platforms that are presumed to reflect the interests of the users. For these purposes, cookies are usually stored on the user's computer, in which the user's usage behavior and interests are stored. Furthermore, data may be stored in the user profiles independently of the devices they use (especially if the users are members of the respective platforms and are logged into them). We operate our social media pages together with the providers as so-called joint controllers (Article 26 GDPR).
c) As a result of interaction with our fan page on Facebook, we receive statistical data from Facebook about the use of our fan page. This includes, e.g., information concerning interaction, likes, comments, summarized information and statistics (e.g. concerning the age or origin of our followers), which helps us to learn more about the interaction on our page. For more information about the nature and scope of these statistics, please see the Facebook page concerning Page Statistics and for more information about the respective controllers, please see the Facebook Page Insights Controller Addendum. The legal basis for our participation in this type of data processing is Article 6 (1) (1) (f) GDPR.
d) We do not have any influence over the data processed by the providers (especially Facebook), which they perform under their own responsibility, in accordance with the terms of use of Facebook. For more information, please see Facebook's privacy policy above.
e) If we obtain personal data from you through the use of our fan page, you are entitled to the same rights as mentioned in this Data Protection Policy. If you also wish to assert any rights against Facebook, you can contact Facebook directly using this Link. Facebook is aware of the details concerning the technical operation of the fan page and the data processing related to it as well as the specific purpose of data processing and is in the position to implement appropriate measures if you assert your rights.

D. Careers

For information about the nature and scope of data processing when you submit a job application through our website, please refer to the “Careers” section of our website.

E. Your rights

1. You have the right to request, at any time, confirmation as to whether we process personal data, as well as the right to information about this personal data. Furthermore, you have the right to rectification and erasure of data, the right to restrict data processing, the right to object, at any time, to the processing of personal data, the right, at any time, to withdraw your consent to data processing, and the right to data portability.

2. Any requests for information, queries, withdrawals or objections to data processing should be sent by email to dtnschtzpl-kstrd, or directly to our data protection officer, Mr. Lutz Mönig, (Pohl Consulting Team GmbH, Mengeringhäuser Str. 15, 34454 Bad Arolsen, Germany), email: dtnschtzpl-kstrd. In addition, you have the right to lodge a complaint with a supervisory authority in the event of a data breach.
 
Information about your right to object
In accordance with Article 21 GDPR, you have the right, at any time and on grounds relating to your particular situation, to object to the processing of personal data concerning you which is based on Article 6 (1) (e) or (f) GDPR. We will stop processing your personal data unless we can prove compelling reasons for continuing the processing of your data that are worthy of protection and that outweigh your interests, rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.
If you wish to object to the use of your personal data or if you wish to withdraw your consent, please send an email to dtnschtzpl-kstrd.

Status: 2019/08/06

By using this website, you agree to our use of cookies