Privacy Policy

Please feel free to contact our Group Data Protection Officer with your questions about the processing of your personal data and to request information, correction, or deletion.

Via e-mail: dataprivacy.c.nl@draeger.com

Dräger Nederland B.V.
Attn. Mr. P. Jansen – Data Protection Officer
Huygensstraat 3-5
2721 LT Zoetermeer
The Netherlands

When you visit our website, we process personal data that your browser transmits to our server. This data (so-called log files) is technically necessary to display our website and to ensure stability and security.

Log files record the following data:

- IP address
- Date and time of the request
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status/HTTP status code
- Amount of data transferred in each case
- Web page from which the request comes
- Browser
- Operating system and its interface
- Language and version of the browser software

For users from the European Union: The processing is based on Art. 6 (1) (f) GDPR to protect our legitimate interest in the trouble-free operation of our website. The data is stored for a period of up to 30 days and then automatically deleted or anonymized.

We also process personal data that you voluntarily share with us as part of a contract, a survey, in the processing of your request, or your registration, or when you log in.

We collect and process your data exclusively for predefined purposes. These may result from technical necessities, contractual requirements or explicit user requests. In addition, we only use your data if you have given us your prior consent. Some of our web offers are located in closed user areas for which registration with login is necessary, e.g. for the career portal. Your access and authorizations for the respective functions are controlled via such a login. We request your personal data, which is collected and stored during a login, as part of the respective web offer.

Further information on the storage, processing and purpose of the respective collection can be found below and, where applicable, additionally in the instructions for use of the individual web offers.

Registration

Some of our web offers are located in closed user areas, for which a registration with login is necessary ("user account"). The user is authenticated via such a login. Authorizations can be assigned to the user account, e.g. access for the respective functions is controlled via this.

To create a user account, certain mandatory information is required in order to be able to create the user account in our online user data administration, which is determined from the registration form of the respective application. In addition, further voluntary information can be provided. Which of the details are mandatory in each case can be seen from the correspondingly marked mandatory fields. When you send us the completed registration form, you will receive an e-mail from us verifying the e-mail address used in order to complete the registration and create your user account.

For users from the European Union: We process your personal data in connection with your user account to provide our services and to protect our legitimate interests on the legal basis of Art. 6 (1) (b) and (f) GDPR. Our legitimate interest is to be able to offer the service to our users and to avoid disruptions and fraud attempts.

You can change or delete your data in your user account at any time. If you delete your user account, we will also irrevocably remove all permissions attached to the account and delete your personal data collected in connection with the user account, unless there is a legal or contractual obligation to retain it. In the event of such retention obligations, we will restrict processing to the extent possible. For users from the European Union: In this case, the legal basis for processing is Art. 6 (1) (b) and (c) GDPR.

We carry out the registration and user administration using the following service providers:

- Microsoft Ireland Operations Limited ("Microsoft Azure B2C") seated in Ireland.

- Okta Inc ("Okta ID") seated in the USA.

Provision of goods or services

When you order goods or services from Dräger, we use the personal data you provide to us to process your order or deliver the requested goods. We may also use the personal data you provided to carry out the necessary steps prior to concluding the contract, answer your related questions, send shipping and billing information and processing or providing of customer feedback and support.

For users from the European Union: The legal basis for the processing of this data is the performance of a contract or the planned conclusion of a contract within the meaning of Article 6 (1) (b) GDPR.

In order to technically process your personal data, Dräger uses external service providers and contract processors to provide goods or services. These include, for example, operators of eLearning platforms and web shops. You will find more detailed information in the applicable terms of use or general terms and conditions.

Depending on which payment service provider you select in the order process, we will pass on the payment data collected for this purpose to payment service providers commissioned by us or to the selected payment service for the processing of payments. In some cases, the selected payment service providers may also collect this data from you themselves, if you open an account there. In this case, you must log on to the payment service provider with your access data during the ordering process. In this respect, the data protection declaration of the respective payment service provider applies.

E-mail marketing

Have you signed up for one of our newsletters or stated your interest in information from Dräger in another context (e.g., when filling out a contact form)? If this is the case, we are then able to use your e-mail address to send you information (e.g., invitations to events, webinars, or product information) on the basis of your interests. You may object to the use of your data at any time if you are no longer interested in our information. To do so, simply click the “Cancel” link in the respective newsletter.

For users from the European Union: The legal basis for the processing of this data is the declaration of consent given by you within the meaning of Article 6 (1) (a) GDPR.

Sweepstakes

Are you taking part in one of our sweepstakes? In this case, we process your personal data (such as name, e-mail address, address) for the purpose of enabling you to participate in the sweepstakes. The data processing is insofar necessary for the execution and fulfillment of the contractual relationship.

For users from the European Union: The legal basis for the processing of this data is the execution or fulfillment of the contract within the meaning of Article Art. 6 (1) (b) GDPR.

Dräger will only store your personal data for as long as it is required for the aforementioned purposes. In general, we will delete the personal data stored with regard to the competition after the campaign has ended, the winners have been notified and the prizes have been handed over.

Contacting you

Have you used one of our contact forms to request information about products and services from Dräger? Generally speaking, we use the data you state in the form to process your request. You can also give us your separate consent before sending your contact request if you are also interested in additional information, such as invitations to events, webinars, or product information. 

For users from the European Union: The legal basis for the processing of this data is the declaration of consent given by you within the meaning of Art. 6 (1) (b) GDPR.

In addition - with your consent - an ID is created when the contact form is sent, which we transfer separately from the other entries to our HubSpot system and then to the Dräger Data Platform. Via the Dräger Data Platform, your entries are linked to those in Adobe Analytics in order to measure the reach and success of marketing measures.The ID is created and linked exclusively with your consent. For users from the European Union: The legal basis for the processing is your consent in accordance with Art. 6 (1) (a) GDPR, which you can withdraw at any time with effect for the future by deselecting the “Marketing” cookie group.
Website optimization

Our objective is to further improve our website for you. To this purpose, we use various web analysis tools that provide us with answers to certain questions, such as: Which of our pages did you visit? Which links did you click on? A list of these tools can be found at: "What services does Draeger use on the website?".

Insofar as personal data is processed, this processing is based on our legitimate interest for users from the European Union pursuant to Art. 6 (1) (f) GDPR. Our legitimate interest results from the following purposes of data collection: ensuring a smooth connection setup, ensuring a comfortable use of our website and/or application, and analyzing system security and stability.

Application Insights

We have a automated analysis services. For this purpose, we use Application Insights, a service provided by Microsoft Ireland Operations Limited at South County Business Park, One Microsoft Place, Carmanhall and Leopardstown, Dublin, D18 P521, Ireland ("Application Insights"). This cloud service, hosted by Microsoft Azure, analyzes user behavior on our website. For this purpose, we collect various technical user information that is transmitted when the website is called up. This concerns in particular the date, time and address (URL) of the request. In addition, the IP address is recorded for localization and subsequently anonymized.

For more information about the processing of personal data in connection with Application Insights, please visit https://learn.microsoft.com/en-us/azure/azure-monitor/app/app-insights-overview?tabs=net and https://www.microsoft.com/en-us/trust-center/privacy.

Digital advisor

On our website we offer you the possibility to use an interactive digital advisor to help you find the most suitable product and service for your application. We offer this functionality under our own control. No data is transferred to third parties.

For this purpose, we process the following categories of data:

- Usage data
- Browser / operating system / device used
- Source of the reference
The usage data collected (using a cookie ID) is used to improve the Digital Product Advisor experience, for technical purposes and to improve the service. It is not possible to infer user identity from the ID we use. The cookies and the personal data collected in this context are deleted or anonymized after the session.

Customer satisfaction surveys

Have you recently purchased a Dräger product, sent in a repair or made a request for a service? We are very interested in finding out whether you were satisfied with the service we provided and whether we can do anything differently in the future. We therefore use the contact data shared in this context to contact a group of customers selected at random following our interaction with them.

We also carry out online surveys to determine satisfaction with our website. Some visitors of our websites are asked to take part in our survey via a pop-up. The questions can be answered voluntarily in full or in part.
For data processing, Dräger sometimes uses external service providers with whom corresponding data protection agreements exist. We carry out the surveys on customer satisfaction with regard to the design of our website together with Adlytics GmbH in Germany, which processes the data on our behalf.

For users from the European Union: The legal basis for the processing of this data is our legitimate interest within the meaning of Art. 6 (1) (f) GDPR. Our legitimate interest is derived from the following purposes of data collection: determining the satisfaction of current Dräger customers following the purchase or repair of a Dräger product. Since you are already a Dräger customer at that time, we presume that you agree to us contacting you to find out whether you are satisfied with us.

Determining the satisfaction of website visitors when using the website and existing Dräger customers after purchasing or repairing a Dräger product or using a service. determining the satisfaction of current Dräger customers following the purchase or repair of a Dräger product. Since in the second case you are already a Dräger customer at that time, we presume that you agree to us contacting you to find out whether you are satisfied with us.

In order to make our offer as user-friendly as possible, we also use so-called cookies and similar technologies, as do many other companies.

What are cookies?

Cookies are small text files that your browser automatically creates and that are stored on your end device (e.g. laptop) when you visit our website. Information is stored in the cookie that arises in each case in connection with the specific end device used. However, this does not mean that we gain direct knowledge of your identity. The use of cookies serves to make the use of our offers continuously more pleasant and suitable for you. For example, we use so-called session cookies to recognise that you have already visited individual pages of our website. This enables you, for example, to place individual products that you find on our website in your shopping basket without having to create a customer account or be logged into one. The session cookies are automatically deleted after you leave our website. In addition, we also use so-called temporary cookies for the purpose of user-friendliness, which are stored on your end device for a certain fixed period of time. As soon as you visit our website again, it is automatically recognised that you have already been with us and which entries and settings you have made so that you do not have to enter them again. Usually the temporary cookies are deleted after 30 days. In addition to our own cookies, we also use cookies from third-party providers (so-called third-party-cookies) to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you, as well as to display information and advertising tailored specifically to you. These cookies also enable us to recognise that you have already been to our website when you visit it again. These cookies are automatically deleted after a set period of time. We explain the individual cookies from third-party providers we use in more detail in the following points.

Cookie-Settings

Most browsers accept cookies automatically. However, you can also set your browser so that no cookies are stored on your end device or a message always appears before a new cookie is created In addition, you have the option of deciding for yourself which non “Technically required” cookies you wish to accept and which you do not wish to accept via the Cookie-Settings link in the footer.

You can change these settings at any time and also deactivate already activated cookies by selecting and deselecting the individual cookie groups, e.g. "Functional", "Statistics" or “Marketing”, and thus revoke any consent you may have given. In this way, the use of cookies becomes transparent for you. Please note, however, that the deactivation of certain cookie groups or the complete deactivation of cookies may mean that you cannot use all the functions of our website without restriction.

For users from the European Union: The processing of personal data collected by means of cookies, which are technically necessary for the provision of our offers, is carried out on the basis of Art. 6 (1) (f) GDPR to protect our legitimate interest in the trouble-free provision of our offers on our website. Otherwise, we process your personal data in connection with cookies (in particular for the provision of certain functionalities, for analysis and advertising purposes and in connection with the third-party providers described below) only if you have given us prior consent to do so in accordance with Art. 6 (1) (a) GDPR. The processing is for the purpose of advertising, market research and the design of our website to meet your needs.

When you visit our website, information about its use is automatically collected. This information is important to Dräger because it is the only way for us to find out what content on our websites is interesting to you and how we can continue to improve our services for you in the future. To do so, we use the following:

Dräger uses the following tools for analysis and marketing:

Google Analytics

Google Analytics stores data about the use of the website, such as:
- visited pages
- objects and links that have been clicked on
- information about visiting times, duration of presence and new visits to the website

This user data is stored to measure the performance of our websites. To this end, Dräger has entered into a processing agreement with Google.

Google Analytics uses cookies, which are stored anonymously by masking the last octet of your IP address. This makes it impossible to draw conclusions about you as a person.

Google may also transfer this user data to third parties where required to do so by law, or where such third parties process the data on Google's behalf. Dräger has no influence on this. Dräger has not allowed Google to use the analytics information obtained for any other Google services or advertising purposes.

Google Tag Manager
We use the Google Tag Manager of Google Ireland Limited (“Google Tag Manager”) on our website. Google Tag Manager is used to manage our website tags via an interface. The Google Tag Manager is a domain to which the IP address is transmitted for technical reasons. The Google Tag Manager then triggers other tags, which in turn may collect data.

The legal basis for users of the EU for the transmission of the IP address is our legitimate interest in managing our website services and triggering other tags in accordance with Art. 6 para. (1) (f) GDPR. Further information on data processing can be found at: https://support.google.com/tagmanager/answer/7157428.

How can I object to the collection of this data?
You can object to the collection of your user data. Click on the following link to do this: https://tools.google.com/dlpage/gaoptout?hl=en.

HubSpot
For our online marketing activities, we use HubSpot, an integrated software solution that enables us to cover a wide range of aspects, including
- e-mail marketing (newsletter and automated e-mails, e.g. to provide downloads)
- reporting and publishing of social media
- reporting via the website (e.g. traffic sources, access)
- contact management (e.g. user segmentation and customer relationship management)
- start pages, blogs and contact forms

As a visitor to our website, you can use our contact forms to obtain information about our company, download content and share your contact and demographic data with us. This information and the content of our website are stored on servers of our software partner HubSpot. We use this information to contact you. Cookies also allow us to find out which of our services may be of interest to you. For this purpose, we store information about your interaction with our website, such as the documents you download, the pages you visit and the date and time of your visit ("user data"), as well as whether and when you have opened Dräger marketing emails.

Where can I find more information about HubSpot?
HubSpot is an American software company with offices in Berlin.

Contact details:
HubSpot Germany GmbH
Unter den Linden 26
10117 Berlin
Germany

Learn more about HubSpot's privacy policy".
More information from HubSpot on the General Data Protection Regulation "
More information about the cookies that HubSpot uses can be found here and here "

How can I object to the collection of this data?
Although you may withdraw your consent at any time, you may also technically exclude the collection of your user data by adjusting your browser's cookie settings and deleting the relevant cookies.

In addition to its website content, Dräger also has online presences within social networks and platforms.

Visiting the social media company page

Through our company pages, we communicate with our customers, interested parties and online visitors ("users") who are active there. In this context, user data may also be processed outside the European Union. There may be risks for users due to the more difficult enforcement of your rights. Frequently, user data is processed for market research and advertising purposes and user profiles can be created from usage behavior and the resulting interests. On the basis of these user profiles, advertisements can be set within and outside the platforms that are intended to correspond to the interests of the users. Data is also stored in the usage profiles regardless of the devices used by the users.

Interaction on the Social Media Company Site

By interacting with us on our social media company page, you disclose personal information to us. Such information may include, for example, your contact details, your username, or the content of a message you send to us. We process this information based on our legitimate interest to interact with you and to get in touch with you. For users from the European Union, the legal basis for the processing of personal data is Art. 6 (1) (f) GDPR. In addition, the processing of personal data of users from the European Union may be based on Art. 6 (1) (a) GDPR, provided that he has given us a corresponding consent. In particular, if we integrate content from the respective providers of the platforms into our websites (e.g. via an iFrame, plug-in, etc.), consent is required for this.

If we have a legal contractual relationship with you or if such a relationship is imminent, Art. 6 (1) (b) GDPR is the legal basis for data processing for users from the European Union. This applies in particular to participation in sweepstakes. In the case of a sweepstakes, we only process the data in order to contact you and to be able to send the prize. After delivery of the prize or if you have not won, we will delete your data.

Data processing on Facebook and Instagram

Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta"), provides us with anonymized statistics and insights about users' interaction with our social media company page on Facebook and Instagram (so-called "page insights"). However, these page insights cannot be assigned to individual user profiles. The processing follows our legitimate interest to evaluate the type of interactions and thus to optimize our company page. Consequently, the legal basis for data processing for users from the European Union is Art. 6 (1) (f) GDPR.

The processing of the personal data required to create the page insights is carried out by Meta and us as joint controllers. Therefore, we have concluded a contract with Meta Platforms Ireland Ltd for processing as joint controllers, which regulates the data protection obligations divided between us and Meta. You can find more information about data processing here: https://www.facebook.com/legal/terms/page_controller_addendum

Please note that according to the meta data protection regulations, meta data is also transferred to the USA or other third countries on the basis of processor-to-processor standard contractual clauses or another suitable legal basis. Further information on this can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum/update

In this agreement we have divided the obligations under data protection law as follows:

We are responsible for providing you with all information pursuant to Art. 13 and 14 GDPR regarding the joint processing of personal data;
Meta Platforms Ireland Ltd. is responsible for providing you with the rights set forth in Art. 15 to 20 GDPR with respect to the personal data stored by Meta after the joint processing.
Meta is solely controller of the processing of the transferred data following the transfer.
Please note that according to the meta data protection regulations, meta data is also transferred to the USA or other third countries on the basis of processor-to-processor standard contractual clauses or another suitable legal basis. Further information on this can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum/update

Data processing on LinkedIn

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn") is generally the controller of personal data when you visit our LinkedIn company page. However, if you interact with our LinkedIn company page, LinkedIn evaluates these interactions in order to provide us with statistics in anonymized form (so-called "page insights"). This concerns in particular interactions of followers, visitors, employees and competitors. In particular, information such as job function, country, industry, seniority, company size and employment status is evaluated. We receive the page insights only in anonymized form. It is not possible to draw conclusions about individual users from the information in the page insights. Further information on analysis data can be found here: https://www.linkedin.com/help/linkedin/answer/a547077/linkedin-page-analytics-overview?lang=de.

The processing of personal data on our company site for the creation of page insights, is carried out by us and LinkedIn as joint controllers. For users from the European Union, the legal basis for the processing of personal data is our legitimate interest in the evaluation and the improvement of our LinkedIn company page based on this in accordance with Art. 6 (1) (f) GDPR. We have entered into a contract with LinkedIn for processing as joint controllers, in which the distribution of data protection obligations between us and LinkedIn is specified. You can access this at: https://legal.linkedin.com/pages-joint-controller-addendum.

LinkedIn Sales Navigator

We use the LinkedIn Sales Navigator service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn") actively to locate, approach, communicate or initiate business contacts.

For this purpose, we process the data provided to us by LinkedIn. This is usually profile information, in particular name, company, position in the company, work experience, education as well as the activities and other contacts of the respective member. If communication occurs after an active approach, the content of this communication is processed by us. It is also possible that we transfer this data to our CRM system and merge or link it with data already available there.

The legal basis for addressing and communicating with business contacts via the InMail function of LinkedIn is the consent of the LinkedIn member, for users from the European Union in accordance with Art. 6 (1) (a) GDPR, provided this was given during registration on LinkedIn. Each member can withdraw their consent at any time by adjusting their communication settings accordingly in the privacy settings at https://www.linkedin.com/psettings/data-sharing or by using the link in each InMail to withdraw. The legal basis for the processing of profile details in the advanced search and the matching with our CRM data and an export of LinkedIn profile details to our CRM is our legitimate interest - for users from the European Union according to Art. 6 (1) (f) GDPR - in effectively finding interesting members as potential business contacts as well as in maintaining a CRM system with correct and complete data records. Should a member send us an inquiry or should a business relationship already exist, the legal basis for users from the European Union may also be Art. 6 (1) (b) GDPR. Further information on data protection at LinkedIn can be found at https://de.linkedin.com/legal/privacy-policy. Information on your rights can be found in our privacy policy under " What rights do I have as a data subject?".

In principle, the processing of personal data by us takes place exclusively within the EU or the European Economic Area.

In individual cases, however, it may be necessary for us to transfer information to recipients in so-called "third countries". "Third countries" are countries outside the European Union or the Agreement on the European Economic Area in which it cannot be assumed without further ado that the level of data protection is comparable to that in the European Union. If the information transferred also includes personal data, we will ensure before such transfer that the required adequate level of data protection is guaranteed in the respective third country or at the recipient in the third country. This may result in particular from a so-called "adequacy decision" of the European Commission, which establishes an adequate level of data protection for a specific third country as a whole. Alternatively, we may also base the data transfer on the so-called EU standard contractual clauses agreed with a recipient or on a declaration of consent provided by you accordingly.

We will be happy to provide you with further information on the appropriate and adequate safeguards for compliance with an adequate level of data protection upon request. You can find more information on the so-called EU standard contractual clauses at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en and information on the adequacy decisions at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en.

Dräger reserves the right to share the data you transmit to us with our subsidiaries and specialist retailers (dealers) throughout the world. However, we share it only if doing so is necessary to process your data for its intended purpose.

Dräger sometimes uses external service providers for the technical processing of your data. We may transmit and process your data outside the country in which you reside or in one of the countries in which Dräger, its subsidiaries, specialist retailers (dealers), or service providers and suppliers operate. Such entities may be based outside the European Economic Area. Contractual obligations to comply with the provisions under data protection law are in place within the company and in our dealings with our specialist retailers (dealers), service providers, and suppliers.

In principle, we store personal data as long as this is necessary for the purpose of processing or we have a legitimate interest in this storage and your interests in not continuing the storage or processing do not outweigh. This means that we generally only store your data for as long as this is necessary to provide our website and the associated services, or we are legally obliged to store this data. We also delete personal data without any action on the part of the respective data subject as soon as it is no longer required for the processing purpose or the storage is otherwise legally inadmissible.

As a rule

the data is deleted or anonymized after the period of time specified above for the respective data processing or website function described in more detail;
the data processed in connection with a business relationship (in particular in connection with products ordered from us) will be deleted after expiry of the statutory retention periods; and
the data processed in connection with the customer account will be deleted upon deletion of the respective customer account, unless further storage is required to comply with legal or contractual retention periods in connection with the respective business relationship.
Those personal data that we have to store to fulfil retention obligations will be stored until the end of the respective retention obligation. Insofar as we store personal data exclusively for the fulfilment of retention obligations, the processing in this regard is generally restricted so that it can only be accessed if this is necessary with regard to the purpose of the retention obligation.

The data protection laws in the jurisdiction in which you reside may entitle you to specific rights in relation to your personal data. If the legal requirements are met, you as a data subject within the scope of Art. 4 No. 1 of the GDPR have various rights against us, which we would like to inform you about in more detail below. You will also find details on this directly in Art. 15 to 21 of the GDPR.

In order to exercise these rights, you can simply contact our Group Data Protection Officer, whose contact details are provided above, or conveniently use the technical means provided by us.

Right of access

You have the right to receive information from us about whether and what data we process about you. This includes, among other things, information about how long and for what purpose we process the data, where it comes from and to which recipients or categories of recipients we transfer it. In addition, we may provide you with a copy of this data.

Right to rectification

As a data subject, you have the right to request that we rectify information about you that is not or no longer accurate without undue delay. In addition, you can request that we complete your incomplete personal data. If required by law, we will also inform third parties about this correction if we have transferred your data to them.

Right to erasure (so-called "right to be forgotten")

As a data subject, you have the right to request that we erase your personal data without delay if one of the following reasons applies:

Your data is no longer necessary for the purposes for which it was collected or otherwise processed, or the purpose has been achieved;
You revoke consent and there is no other legal basis for the processing;
You object to the processing and there are no overriding legitimate reasons for the processing; in the case of use of personal data for direct marketing, a sole objection by you to the processing is sufficient;
your personal data have been processed unlawfully;
the erasure of your personal data is necessary for the purposes of complying with a legal obligation under Union or Member State law to which we are subject.
Please note that your right to erasure may be restricted by legal provisions. These include in particular the restrictions listed in Art. 17 GDPR.

Right to restriction of processing (blocking), Art. 18 GDPR

As a data subject, you also have the right to request us to restrict the processing of your personal data if one of the following conditions is met:

You dispute the accuracy of your personal data for a period of time that allows us to verify the accuracy of the personal data;
The processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of your personal data;
We no longer need your personal data for the purposes of processing, but you need it for the assertion, exercise or defense of legal claims; or You have objected to the processing as long as it has not yet been determined whether our legitimate grounds prevail over yours.
If you have obtained a restriction of processing in accordance with the above list, we will inform you before the restriction is revoked.

Right of withdrawal for consents

You may withdraw any consent given to us at any time with effect for the future. This withdrawal can be made in the form of an informal communication to the above contact addresses or via the technical means provided by us for this purpose. If you withdrae your consent, this will not affect the lawfulness of the data processing carried out up to that point.

Right to data portability

As a data subject, you have the right to receive personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format and to transfer this data to others. Details and restrictions can be found in Art. 20 GDPR. The exercise of this right does not affect your right to erasure.

Right to lodge a complaint with a supervisory authority

If you have the opinion that the processing of your data by us violates applicable data protection law, you have the right to lodge a complaint with one of the competent supervisory authorities, i.e. in particular the Independent Centre for Data Protection Schleswig-Holstein or the respective supervisory authority in the member state of your place of residence, your place of work or the place of the alleged data protection violation.

Right to object

As a data subject, you have the right to object at any time, on the grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) (e) or (f) GDPR; this also applies to profiling based on these provisions. In the event of such an objection, we will no longer process the personal data concerning you, unless we can demonstrate compelling legitimate reasons for the processing which override your interests, rights and freedoms as a data subject, or the processing serves the purpose of asserting, exercising or defending legal claims.

If we process personal data for the purpose of direct marketing, you as the data subject have the right to object at any time to processing of personal data concerning you for such marketing; this also applies to profiling insofar as it is related to such direct marketing.

If you, as the data subject, object to processing for direct marketing purposes, we will no longer process the personal data concerned for these purposes.