数据保护

The company's contact details:

名称： Hans Gerhard Albrecht
电子邮件地址： willy(at)cullygrat.com.cn
公司名称： 化学去毛刺

隐私政策

感谢您对我们公司的关注。数据保护是 CULLYGRAT® 管理层的重中之重。原则上，使用 CULLYGRAT® 网站无需提供任何个人数据。但是，如果数据当事人希望通过我们的网站使用公司的特殊服务，则有必要对个人数据进行处理。如果个人数据的处理是必要的，且没有法律依据，我们通常会征得当事人的同意。 对个人数据的处理，如数据当事人的姓名、地址、电子邮件地址或电话号码等，始终遵循《通用数据保护条例》（GDPR），并符合适用于 CULLYGRAT® 的国家特定数据保护法规。通过本数据保护声明，我公司希望告知公众我们收集、使用和处理个人数据的类型、范围和目的。此外，数据主体还可通过本数据保护声明了解其有权享有的权利。 作为负责处理数据的控制方，CULLYGRAT® 已采取多项技术和组织措施，确保尽可能全面地保护通过本网站处理的个人数据。然而，基于互联网的数据传输通常会存在安全漏洞，因此无法保证绝对的保护。因此，所有相关人员都可以通过电话等其他方式向我们传送个人数据。

1. 定义

CULLYGRAT® 的数据保护声明是根据欧洲立法者在发布《通用数据保护条例》（GDPR）时所使用的指令和法规术语制定的。我们的数据保护声明对于公众以及我们的客户和商业伙伴来说，应该是清晰易懂的。为确保这一点，我们希望提前解释一下使用的术语。 在本数据保护声明中，我们使用了以下术语：

• a) 个人信息
P个人数据是与已识别或可识别的自然人（以下简称 "数据主体"）有关的任何信息。如果可以直接或间接地，特别是通过指定一个标识符（如姓名、身份证号码、位置数据、在线标识符或一个或多个特殊特征）来识别自然人的身体、生理、遗传、心理、经济、文化或社会身份，则该自然人被认为是可识别的。

• b) 资料当事人
数据主体是其个人数据由控制者处理的任何已识别或可识别的自然人。

• c) 加工
处理是指在使用或不使用自动化程序的情况下，对个人数据进行的任何处理，或与个人数据有关的一系列处理，如收集、记录、组织、安排、存储、调整或更改、读取、查询、使用、通过传输、分发或任何其他形式的提供、匹配或链接、限制、删除或销毁等方式进行的披露。

• d) 处理限制
限制处理是对存储的个人数据进行标记，目的是限制今后对其进行处理。

• e) 剖析
剖析是对个人数据的任何类型的自动处理，包括使用这些个人数据来评估与自然人有关的某些个人方面，特别是与工作表现、经济状况、健康、个人 分析或预测该自然人的偏好、兴趣、可靠性、行为、行踪或迁移有关的方面。

• f) 化名
假名化是指在处理个人数据时，如果不使用附加信息，就无法将个人数据指派给特定的数据主体，但附加信息必须单独保存，并采取技术和组织措施，以确保不会将个人数据指派给已识别或可识别的自然人。

• g) 控制人或数据控制人
处理责任人或负责人是单独或与他人共同决定个人数据处理目的和方式的自然人或法人、当局、机构或其他团体。如果处理目的和方式由欧盟法律或成员国法律规定，则可由欧盟法律或成员国法律规定责任人或指定责任人的具体标准。

• h) 处理器
处理者是代表责任人处理个人数据的自然人或法人、公共机关、机构或其他团体。

• i) 接收器
接收方是指被披露个人数据的自然人或法人、公共当局、机构或其他团体，无论其是否为第三方。不过，根据欧盟或成员国法律规定的具体调查任务而可能接收个人数据的当局不被视为接收者。

• j) 第三方
第三方是指除数据主体、控制者、处理者以及在控制者或处理者直接负责下有权处理个人数据的人员之外的自然人或法人、公共机关、机构或团体。

• k) 同意书
同意是指数据主体在知情的情况下，针对具体情况，以声明或其他明确的确认行动的形式，明确表示同意对其个人数据进行处理，从而自愿做出的任何意愿表达。

2. 处理负责人的姓名和地址

在《通用数据保护条例》、适用于欧盟成员国的其他数据保护法律以及其他数据保护性质的规定中所指的责任人是指

CULLYGRAT®
电子邮件: willy@cullygrat.com.cn
网站: www.cullygrat.com
               www.chemisches-entgraten.de

3. 曲奇

CULLYGRAT®的网页使用cookies。Cookies是通过互联网浏览器存档并保存在计算机系统中的文本文件。 许多网站和服务器都使用 Cookie。许多 Cookie 包含所谓的 Cookie ID。Cookie ID 是 Cookie 的唯一标识符。它由一个字符串组成，通过该字符串，可以将网站和服务器分配给存储 cookie 的特定互联网浏览器。这样就能识别访问过的网站，并将相关人员的个人浏览器与包含其他 cookie 的其他互联网浏览器区分开来。通过唯一的 Cookie ID，可以识别和确定特定的互联网浏览器。 通过使用 Cookie，CULLYGRAT® 可为本网站的用户提供更方便的服务，如果没有 Cookie 设置，这些服务是不可能实现的。 通过 Cookie，我们可以为用户优化网站上的信息和服务。如前所述，Cookie 使我们能够识别网站用户。这种识别的目的是方便用户使用我们的网站。例如，使用 cookie 的网站用户在每次访问网站时无需重新输入访问数据，因为这是由网站和存储在用户计算机系统中的 cookie 完成的。另一个例子是网上商店购物车的 cookie。网上商店使用 cookie 来记住客户放在虚拟购物车中的物品。 当事人可随时通过所使用的互联网浏览器中的相应设置阻止我们网站设置 cookie，从而永久反对设置 cookie。此外，已设置的 Cookie 可随时通过互联网浏览器或其他软件程序删除。所有常见的互联网浏览器都可以做到这一点。如果相关人员在所使用的互联网浏览器中关闭了 Cookie 设置，则可能无法完全使用我们网站的所有功能。

4. 收集一般数据和信息

CULLYGRAT® 网站在受影响者或自动系统每次访问网站时都会收集一系列一般数据和信息。这些一般数据和信息保存在服务器的日志文件中。(1) 使用的浏览器类型和版本，(2) 访问系统使用的操作系统，(3) 访问系统从哪个网站访问我们的网站（即所谓的推荐人），(4) 通过访问系统在我们网站上访问的子网站、 (5) 访问网站的日期和时间，(6) 互联网协议地址（IP 地址），(7) 访问系统的互联网服务提供商，以及 (8) 其他类似数据和信息，用于在我们的信息技术系统受到攻击时避免威胁。 在使用这些一般数据和信息时，CULLYGRAT® 不会对数据主体做出任何结论。相反，这些信息是为了(1)正确提供我们网站的内容，(2)优化我们网站的内容和广告，(3)确保我们信息技术系统和网站技术的长期功能，以及(4)在发生网络攻击时向执法机关提供执法所需的信息。因此，CULLYGRAT® 一方面对这些匿名收集的数据和信息进行统计评估，另一方面也是为了加强本公司的数据保护和数据安全，最终确保我们处理的个人数据得到最佳保护。服务器日志文件中的匿名数据与受影响者提供的所有个人数据分开存储。

5. 例行删除和阻止个人数据

处理责任人处理和存储当事人个人数据的期限仅限于实现存储目的所需的时间，或者是欧洲指令和法规制定者或其他立法者在法律或法规中要求的时间，处理责任人须遵守这些法律或法规。 如果存储目的不再适用，或者如果欧洲指令和法规机构或其他负责立法机构规定的存储期限已过，则将根据法律规定对个人数据进行例行封存或删除。

6. 资料当事人的权利

• a) 确认权
Every data subject has the right, granted by the European directive and regulation giver, to request confirmation from the person responsible for processing as to whether personal data relating to them are being processed. If a data subject wishes to exercise this right to confirmation, they can contact an employee of the data controller at any time.

• b) 知情权
Every person affected by the processing of personal data has the right, granted by the European directive and regulation giver, to receive free information about the personal data stored about him and a copy of this information from the person responsible for processing at any time. Furthermore, the European legislator for directives and regulations has granted the data subject access to the following information:

- the processing purposes
- the categories of personal data being processed
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right to correction or deletion of the personal data concerning you or to restriction of processing by the person responsible or a right to object to this processing
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the data subject: All available information about the origin of the data
- the existence of automated decision-making including profiling in accordance with Article 22 (1) and (4) GDPR and - at least in these cases - meaningful information about the logic involved and the scope and intended effects of such processing for the data subject Furthermore, the data subject has a right to information as to whether personal data has been transmitted to a third country or to an international organization. If this is the case, the person concerned has the right to receive information about the appropriate guarantees in connection with the transmission. If a data subject wishes to exercise this right to information, they can contact an employee of the data controller at any time.

• c) 更正权
Every person affected by the processing of personal data has the right granted by the European directive and regulation giver to demand the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data - also by means of a supplementary declaration. If a data subject wishes to exercise this right to rectification, they can contact an employee of the data controller at any time. • d) Right to erasure (right to be forgotten) Any person affected by the processing of personal data has the right granted by the European legislator for directives and regulations to demand that the person responsible delete the personal data concerning them immediately if one of the following reasons applies and if the processing is not necessary:

- The personal data were collected for purposes or otherwise processed for which they are no longer necessary.
- The data subject revokes their consent on which the processing was based pursuant to Art. 6 Para. 1 Letter a DS-GVO or Art. 9 Para. 2 Letter a DS-GVO and there is no other legal basis for the processing.
- The data subject objects to the processing in accordance with Article 21 (1) GDPR and there are no overriding legitimate reasons for the processing, or the data subject objects in accordance with Article 21 (2) GDPR processing a.
- The personal data have been processed unlawfully.
- The erasure of the personal data is necessary for compliance with a legal obligation in Union or Member State law to which the controller is subject.
- The personal data was collected in relation to information society services offered in accordance with Art. 8 Para. 1 DS-GVO. If one of the above reasons applies and a data subject wishes to have personal data stored at CULLYGRAT® deleted, they can contact an employee of the data controller at any time. The employee of CULLYGRAT® will ensure that the request for deletion is complied with immediately.
If the personal data has been made public by CULLYGRAT® and our company, as the person responsible, is obliged to delete the personal data in accordance with Art. 17 Para. 1 DS-GVO, CULLYGRAT® will also take appropriate measures, taking into account the available technology and the implementation costs of a technical nature, in order to inform other persons responsible for data processing who process the published personal data that the person concerned has requested the deletion of all links to this personal data or copies or replications of this personal data from these other persons responsible for data processing has requested, insofar as the processing is not necessary. The employee of CULLYGRAT® will arrange the necessary in individual cases.

• e) 限制处理的权利
Any person affected by the processing of personal data has the right, granted by the European directive and regulation giver, to demand that the person responsible restrict the processing if one of the following conditions is met: - The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful, the data subject refuses the deletion of the personal data and instead requests the restriction of the use of the personal data.
- The person responsible no longer needs the personal data for the purposes of processing, but the data subject needs them to assert, exercise or defend legal claims.
- The data subject has lodged an objection to the processing pursuant to Article 21(1) of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
If one of the above conditions is met and a data subject wishes to request the restriction of personal data stored at CULLYGRAT®, they can contact an employee of the data controller at any time. The employee of the CULLYGRAT® will arrange the restriction of the processing.

• f) 数据可携带权
Every person affected by the processing of personal data has the right, granted by the European directive and regulation giver, to receive the personal data relating to them, which the person concerned has provided to a person responsible, in a structured, common and machine-readable format. You also have the right to transmit this data to another person responsible without hindrance from the person responsible to whom the personal data was provided, provided that the processing is based on the consent in accordance with Art. 6 Para. 1 Letter a DS-GVO or Art. 9 Para 2 letter a DS-GVO or on a contract according to article 6 paragraph 1 letter b DS-GVO and the processing is carried out using automated procedures, provided that the processing is not necessary for the performance of a task that is in the public interest or takes place in the exercise of official authority, which has been transferred to the person responsible. Furthermore, when exercising their right to data portability in accordance with Art. 20 Para this does not affect the rights and freedoms of other people.
To assert the right to data portability, the data subject can contact an employee of CULLYGRAT® at any time.

• g) 反对权
Every person affected by the processing of personal data has the right granted by the European directive and regulation giver, for reasons arising from their particular situation, at any time against the processing of personal data concerning them, which is based on Art. 6 para. 1 letter e or f DS-GVO to file an objection. This also applies to profiling based on these provisions. The CULLYGRAT® no longer processes the personal data in the event of an objection, unless we can demonstrate compelling legitimate grounds for the processing which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend of legal claims.
If CULLYGRAT® processes personal data in order to operate direct advertising, the person concerned has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to profiling insofar as it is associated with such direct advertising. If the data subject objects to the CULLYGRAT® to the processing for direct marketing purposes, the CULLYGRAT® will no longer process the personal data for these purposes.
In addition, the data subject has the right, for reasons arising from their particular situation, against the processing of personal data relating to them, which is carried out at CULLYGRAT® for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Para. 1 DS- GMO to object, unless such processing is necessary to fulfill a task in the public interest. In order to exercise the right to object, the data subject can contact any employee of CULLYGRAT® or another employee directly. The data subject is also free, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise their right to object by automated means using technical specifications.

• h) Automated decisions in individual cases including profiling
Any person affected by the processing of personal data has the right granted by the European legislator for directives and regulations not to be subject to a decision based solely on automated processing - including profiling - which has legal effects on them or significantly affects them in a similar way, if the decision (1) is not necessary for entering into, or the performance of, a contract between the data subject and the person responsible, or (2) is permissible on the basis of Union or Member State legislation to which the person responsible is subject and such legislation requires appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject or (3) with the express consent of the data subject.
If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) it is based on the data subject's explicit consent, the CULLYGRAT® shall implement suitable measures to safeguard the rights and freedoms and the legitimate safeguarding the interests of the data subject, including at least the right to obtain human intervention on the part of the controller, to express his or her point of view and to contest the decision. If the data subject wishes to assert rights relating to automated decisions, they can contact an employee of the data controller at any time.

• i) Right to withdraw consent under data protection law
Every person affected by the processing of personal data has the right granted by the European directive and regulation giver to revoke consent to the processing of personal data at any time. If the data subject wishes to assert their right to revoke consent, they can contact an employee of the data controller at any time.

7. Data protection regulations for the application and use of Adobe Analytics (Omniture) / Adobe Marketing Cloud

The person responsible for processing has integrated components from Adobe on this website. Adobe Analytics (Omniture) or the Adobe Marketing Cloud (hereinafter referred to as "Omniture") is a tool that enables more efficient online marketing and web analysis. Omniture is part of the Adobe Marketing Cloud. The Adobe Marketing Cloud enables real-time analysis of visitor flows on websites. The real-time analyzes include project reports and allow an ad hoc analysis of the website visitors. Customer interactions are presented in a way that gives the data controller a better overview of the online activities of the users of this website by displaying the data in simple and interactive dashboards and converting them into reports. This enables the data controller to receive information in real time and thereby identify any problems that arise more quickly. The operator of these services is Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland. Omniture sets a cookie on the information technology system of the person concerned (cookies have already been explained in advance; the corresponding information can be found above). The person responsible for processing ensures through a server setting that the tracking data records transmitted to the Adobe data center are anonymized before geolocation. The anonymization is implemented by replacing the last part of the IP address. The person responsible for processing has made settings on the server side, based on which the IP address of the person concerned is anonymized independently of each other before processing for geolocation and range measurement. On behalf of the person responsible for processing, Adobe will use the data and information obtained via our website to evaluate the user behavior of the person concerned. Adobe will also use the data to create reports on user activities on our behalf and to provide other services for our company that are related to the use of our website. Adobe does not combine the IP address of the person concerned with other personal data. The person concerned can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Omniture from setting a cookie on the information technology system of the person concerned. In addition, the cookies already set by Omniture can be deleted at any time via an Internet browser or other software programs. Furthermore, the data subject has the option of objecting to and preventing the collection of the data generated by the Adobe cookie relating to the use of this website and the processing of this data by Adobe. To do this, the person concerned must press the unsubscribe button under the link http://www.adobe.com/de/privacy/opt-out.html, which sets an opt-out cookie. The opt-out cookie set with the objection is stored on the information technology system used by the person concerned. If the cookies on the data subject's system are deleted after an objection, the data subject must call up the link again and set a new opt-out cookie. With the setting of the opt-out cookie, however, there is the possibility that the website of the person responsible for processing can no longer be fully used by the person concerned. Adobe's applicable data protection regulations can be found at http://www.adobe.com/de/privacy.html.

8. Data protection regulations for the deployment and use of Facebook

The person responsible for processing has integrated components of the company Facebook on this website. Facebook is a social network. A social network is a social meeting place operated on the Internet, an online community that usually enables users to communicate with one another and to interact in virtual space. A social network can serve as a platform for exchanging opinions and experiences, or it allows the Internet community to provide personal or company-related information. Among other things, Facebook enables users of the social network to create private profiles, upload photos and network via friend requests. Facebook's operating company is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a person concerned lives outside the USA or Canada, the person responsible for processing personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Each time one of the individual pages of this website is called up, which is operated by the person responsible for processing and on which a Facebook component (Facebook plug-in) has been integrated, the Internet browser on the information technology system of the person concerned is automatically activated by the respective Facebook component causes a representation of the corresponding Facebook component to be downloaded from Facebook. A complete overview of all Facebook plug-ins can be found at https://developers.facebook.com/docs/plugins/?locale=de_DE. As part of this technical process, Facebook is informed which specific subpage of our website is visited by the person concerned. If the person concerned is logged on to Facebook at the same time, Facebook recognizes which specific subpage of our website the person concerned is visiting each time the person concerned calls up our website and for the entire duration of their stay on our website. This information is collected by the Facebook component and assigned to the respective Facebook account of the person concerned by Facebook. If the person concerned clicks on one of the Facebook buttons integrated on our website, for example the "Like" button, or if the person concerned makes a comment, Facebook assigns this information to the personal Facebook user account of the person concerned and stores this personal data . Facebook always receives information via the Facebook component that the person concerned has visited our website if the person concerned is logged in to Facebook at the same time as accessing our website; this takes place regardless of whether the person concerned clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook in this way, they can prevent the transmission by logging out of their Facebook account before accessing our website. The data policy published by Facebook, which can be accessed at https://de-de.facebook.com/about/privacy/, provides information about the collection, processing and use of personal data by Facebook. It is also explained there which setting options Facebook offers to protect the privacy of the data subject. In addition, various applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the person concerned to suppress data transmission to Facebook.

9. Data protection regulations for the deployment and use of Google AdSense

The person responsible for processing has integrated Google AdSense on this website. Google AdSense is an online service that enables advertising to be placed on third-party sites. Google AdSense is based on an algorithm that selects the advertisements displayed on third-party sites that match the content of the respective third-party site. Google AdSense allows interest-based targeting of the Internet user, which is implemented by generating individual user profiles. The operating company of the Google AdSense component is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland. The purpose of the Google AdSense component is the integration of advertisements on our website. Google AdSense places a cookie on the information technology system of the person concerned. What cookies are has already been explained above. By setting the cookie, Alphabet Inc. is enabled to analyze the use of our website. Each time one of the individual pages of this website is called up, which is operated by the person responsible for processing and on which a Google AdSense component has been integrated, the Internet browser on the information technology system of the person concerned is automatically activated by the respective Google AdSense component to transmit data to Alphabet Inc. for the purpose of online advertising and the settlement of commissions. As part of this technical process, Alphabet Inc. obtains knowledge of personal data, such as the IP address of the person concerned, which Alphabet Inc. uses, among other things, to trace the origin of visitors and clicks and subsequently to enable commission statements. The person concerned can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Alphabet Inc. from setting a cookie on the information technology system of the person concerned. In addition, a cookie already set by Alphabet Inc. can be deleted at any time via the Internet browser or other software programs. Google AdSense also uses so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in websites to enable log file recording and log file analysis, which allows a statistical evaluation to be carried out. Based on the embedded tracking pixel, Alphabet Inc. can see if and when a website was opened by a data subject and which links were clicked on by data subjects. Tracking pixels are used, among other things, to evaluate the flow of visitors to a website. Personal data and information, which also includes the IP address and is necessary for the collection and billing of the advertisements displayed, is transmitted to Alphabet Inc. in the United States of America via Google AdSense. This personal data is stored and processed in the United States of America. Alphabet Inc. may pass on this personal data collected via the technical process to third parties. Google AdSense is explained in more detail under this link https://www.google.de/intl/de/adsense/start/.

10. Data protection regulations for the application and use of Google Analytics (with anonymization function)

The person responsible for processing has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, collection and evaluation of data about the behavior of visitors to websites. A web analysis service collects, among other things, data about the website from which a person concerned came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. A web analysis is mainly used to optimize a website and for the cost-benefit analysis of internet advertising. The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland. The person responsible for processing uses the addition "_gat._anonymizeIp" for the web analysis via Google Analytics. With this addition, the IP address of the Internet connection of the person concerned is shortened and anonymized by Google if our website is accessed from a member state of the European Union or from another state party to the Agreement on the European Economic Area. The purpose of the Google Analytics component is to analyze visitor flows on our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website. Google Analytics places a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is able to analyze the use of our website. Each time one of the individual pages of this website is called up, which is operated by the person responsible for processing and on which a Google Analytics component has been integrated, the Internet browser on the information technology system of the person concerned is automatically activated by the respective Google Analytics component to transmit data to Google for online analysis. As part of this technical process, Google gains knowledge of personal data, such as the IP address of the person concerned, which Google uses, among other things, to trace the origin of visitors and clicks and subsequently to enable commission statements. The cookie is used to store personal information, such as access time, the location from which access was made and the frequency of visits to our website by the person concerned. Each time you visit our website, this personal data, including the IP address of the Internet connection used by the person concerned, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties. The person concerned can prevent the setting of cookies by our website, as already described above, at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system of the person concerned. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs. Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on from the link https://tools.google.com/dlpage/gaoptout. This browser add-on tells Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is evaluated by Google as a contradiction. If the information technology system of the data subject is later deleted, formatted or reinstalled, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the person concerned or another person who is attributable to their sphere of influence, there is the possibility of reinstalling or reactivating the browser add-on. Further information and Google's applicable data protection regulations can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.

11. D谷歌再营销应用和使用的数据保护规定

处理负责人已在本网站上集成了谷歌再营销服务。谷歌再营销是谷歌 AdWords 的一项功能，允许公司向以前访问过公司网站的互联网用户提供广告服务。因此，谷歌再营销服务的集成允许公司创建与用户相关的广告，从而向互联网用户显示与兴趣相关的广告。 谷歌再营销服务的运营商是谷歌爱尔兰有限公司（Google Ireland Limited），地址为 Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland。 谷歌再营销的目的是显示基于兴趣的广告。谷歌再营销使我们能够通过谷歌广告网络显示广告，或将广告显示在其他网站上，以满足互联网用户的个人需求和兴趣。 谷歌再营销会在数据当事人的信息技术系统中设置 Cookie。上文已经解释了什么是 Cookie。通过 Cookie 的设置，谷歌可以在网站访问者随后访问谷歌广告网络成员的网站时对其进行识别。每次访问已集成谷歌再营销服务的网站时，相关人员的互联网浏览器都会自动向谷歌进行身份识别。在这一技术过程中，谷歌会获得用户的 IP 地址或上网行为等个人数据，谷歌会利用这些数据显示基于兴趣的广告。 Cookie 用于存储个人信息，如相关人员访问过的互联网页面。因此，您每次访问我们的网站时，个人数据（包括当事人使用的互联网连接的 IP 地址）都会被传送到位于美国的谷歌。这些个人数据由位于美国的谷歌公司保存。谷歌可能会将通过技术程序收集到的这些个人数据传递给第三方。 如上所述，当事人可以随时通过在所使用的互联网浏览器中进行相应的设置来阻止我们网站设置 cookie，从而永久性地反对设置 cookie。对所使用的互联网浏览器进行这样的设置也可以阻止谷歌在当事人的信息技术系统中设置 cookie。此外，谷歌分析已设置的 Cookie 可随时通过互联网浏览器或其他软件程序删除。 此外，数据当事人还可以选择反对谷歌基于兴趣的广告。为此，当事人必须在其使用的每个互联网浏览器中调用 www.google.de/settings/ads 链接，并在其中进行所需的设置。 更多信息和谷歌适用的数据保护规定，请访问 https://www.google.de/intl/de/policies/privacy/。

12. D部署和使用 Google+ 的数据保护条例

处理负责人已将 Google+ 按钮整合为本网站的一个组件。Google+ 是一个所谓的社交网络。社交网络是在互联网上运行的社交聚会场所，是一个在线社区，通常使用户能够在虚拟空间中相互交流和互动。社交网络可以作为交流意见和经验的平台，也允许互联网社区提供个人或公司相关信息。除其他外，Google+ 使社交网络用户能够创建私人档案、上传照片和通过好友请求建立联系。 Google+ 的运营公司是 Google Ireland Limited, Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland。 每次调用本网站由处理责任人操作并集成了 Google+ 按钮的单个网页时，相关人员信息技术系统上的互联网浏览器都会在相应 Google+ 按钮的提示下自动显示相应的谷歌 Google+ 下载按钮。作为该技术流程的一部分，谷歌将获知相关人员访问了我们网站的哪个特定子页面。有关 Google+ 的更多详细信息，请访问 https://developers.google.com/+/。 如果当事人同时登录了 Google+，Google 会识别当事人每次调用我们的网站时以及在我们网站上逗留的整个期间所访问的我们网站的具体子页面。这些信息由 Google+ 按钮收集，并由 Google 分配给相关人员的 Google+ 账户。 如果当事人点击了我们网站上集成的 Google+ 按钮之一，并因此提出了 Google+1 推荐，Google 会将此信息分配给当事人的个人 Google+ 用户帐户并存储此个人数据。谷歌存储当事人的 Google+1 推荐，并根据当事人在此方面接受的条款予以公开。当事人在本网站上提供的 Google+1 推荐将与其他个人数据（如当事人使用的 Google+1 帐户名及其中存储的照片）一起用于谷歌的其他服务。例如，谷歌搜索引擎的搜索结果、当事人的谷歌账户或其他地方（如网站或与广告有关的地方）的搜索结果都会被存储和处理。此外，谷歌还能将访问本网站与谷歌存储的其他个人数据联系起来。谷歌还会记录这些个人信息，用于改进或优化各种谷歌服务。 如果当事人在访问我们的网站时同时登录了 Google+，谷歌会通过 Google+ 按钮接收当事人访问过我们网站的信息；无论当事人是否点击 Google+ 按钮，谷歌都会接收该信息。 如果当事人不希望将个人数据传输给谷歌，可在访问我们的网站之前注销其 Google+ 账户，以防止数据传输。 更多信息和谷歌适用的数据保护规定，请访问 https://www.google.de/intl/de/policies/privacy/。有关 Google +1 按钮的更多信息，请访问 https://developers.google.com/+/web/buttons-policy。

13. 部署和使用 Google AdWords 的数据保护规定

处理责任人已将 Google AdWords 集成到本网站。谷歌 AdWords 是一种互联网广告服务，允许广告商在谷歌搜索引擎结果和谷歌广告网络上投放广告。Google AdWords 允许广告商预先定义某些关键字，只有当用户使用搜索引擎检索与关键字相关的搜索结果时，这些关键字才会在 Google 搜索引擎结果中显示广告。在谷歌广告网络中，广告通过自动算法并考虑到事先定义的关键词，被分发到与主题相关的网站上。 Google AdWords 服务的运营商是 Google Ireland Limited，地址为 Gordon House, Barrow Street, Dublin, D04 E5W5, Ireland。 Google AdWords 的目的是通过在第三方公司的网站和 Google 搜索引擎的搜索结果中显示基于兴趣的广告以及在我们的网站上显示第三方广告来推广我们的网站。 如果相关人员通过谷歌广告进入我们的网站，谷歌就会在相关人员的信息技术系统中存储所谓的转换 cookie。上文已经解释了什么是 Cookie。转换 cookie 在三十天后失效，不能用于识别当事人。如果 cookie 尚未过期，则转换 cookie 用于确定是否访问了我们网站的某些子页面，如在线商店系统的购物车。转换 cookie 使我们和 Google 能够了解通过 AdWords 广告进入我们网站的人是否产生了收入，即完成或取消了购买。 谷歌通过使用转换 cookie 收集的数据和信息用于创建我们网站的访问统计数据。反过来，我们使用这些访问统计数据来确定通过 AdWords 广告转到我们网站的用户总数，即确定相应 AdWords 广告的成败，并优化我们未来的 AdWords 广告。我们公司或其他 Google AdWords 广告商都不会从 Google 收到可用于识别相关人员身份的信息。 转换 cookie 用于存储个人信息，例如当事人访问过的网站。因此，您每次访问我们的网站时，个人数据（包括当事人使用的互联网连接的 IP 地址）都会被传送到位于美国的谷歌。这些个人数据由位于美国的谷歌公司保存。谷歌可能会将通过技术程序收集到的这些个人数据传递给第三方。 如上所述，当事人可以随时通过在所使用的互联网浏览器中进行相应的设置来阻止我们网站设置 cookie，从而永久性地反对设置 cookie。对所使用的互联网浏览器进行这样的设置也可防止谷歌在当事人的信息技术系统中设置转换 cookie。此外，Google AdWords 已设置的 Cookie 可随时通过互联网浏览器或其他软件程序删除。 此外，数据当事人还可以选择反对谷歌基于兴趣的广告。为此，当事人必须在其使用的每个互联网浏览器中调用 www.google.de/settings/ads 链接，并在其中进行所需的设置。 更多信息和谷歌适用的数据保护规定，请访问 https://www.google.de/intl/de/policies/privacy/。

14. 部署和使用 Instagram 的数据保护规定

处理责任人在本网站上集成了 Instagram 服务的组件。Instagram 是一项视听平台服务，允许用户分享照片和视频，并在其他社交网络上转发此类数据。 Instagram 服务的运营商是 Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland。 每次调用本网站的一个单独页面时（该页面由负责处理的人员操作，并集成了 Instagram 组件（Insta 按钮）），相关人员信息技术系统上的互联网浏览器都会被相应的 Instagram 组件自动激活，导致从 Instagram 下载相应组件的表示。作为该技术过程的一部分，Instagram 将获知相关人员访问了我们网站的哪个特定子页面。 如果当事人同时登录 Instagram，Instagram 会识别当事人每次调用我们的网站时以及在我们网站上逗留的整个期间所访问的特定子页面。该信息由 Instagram 组件收集，并由 Instagram 分配给相关人员的 Instagram 帐户。如果当事人点击了我们网站上集成的 Instagram 按钮之一，则由此传输的数据和信息将分配给当事人的个人 Instagram 用户账户，并由 Instagram 存储和处理。 如果当事人在访问我们网站的同时登录了 Instagram，Instagram 将始终通过 Instagram 组件接收当事人访问过我们网站的信息；无论数据当事人是否点击了 Instagram 组件，这都会发生。如果数据当事人不希望将此信息传输到 Instagram，可以在访问我们的网站之前注销其 Instagram 帐户，从而阻止信息传输。 更多信息和 Instagram 适用的数据保护法规，请访问 https://help.instagram.com/155833707900388 和 https://www.instagram.com/about/legal/privacy/。

15. Legal basis of processing

DS-GVO 第 6 条第 I 款第 a 项 DS-GVO 第 6 条第 I 款第 a 项将我公司作为处理业务的法律依据，我们在处理业务时会就特定处理目的征得同意。如果个人数据的处理是履行数据主体作为一方当事人的合同所必需的，例如，处理操作是交付货物或提供其他服务或报酬所必需的，则处理依据为《德国数据保护法》第 6 I 条第 b 款。6 I lit. 这同样适用于为执行合同前措施而必须进行的处理操作，例如有关我们产品或服务的咨询。如果我公司有法律义务要求处理个人数据，例如履行纳税义务，则处理依据为《欧洲个人信息保护公约》第 6 条第 I 款第 c 项。6 I lit.
在极少数情况下，为保护数据当事人或其他自然人的重要利益，有必要对个人数据进行处理。例如，一名访客在我公司受伤，他的姓名、年龄、医疗保险数据或其他重要信息必须转交给医生、医院或其他第三方。这种情况下的信息处理将依据《德国信息权法》第 6 I 条 d 款进行。6 I lit. 最终，处理操作将依据《欧洲个人信息保护公约》第 6 条第 I 款第 f 项进行。6 I lit. 如果为保护本公司或第三方的合法利益而有必要进行处理，且不优先考虑当事人的利益、基本权利和基本自由，则上述法律依据未涵盖的处理操作均以该法律依据为基础。我们之所以允许此类处理操作，特别是因为欧洲立法者特别提到了这一点。在这方面，他认为，如果数据主体是责任人的客户，则可以假定存在合法权益（DS-GVO 第 47 条第 2 句）。

16. Legitimate interests in processing pursued by the controller or a third party

如果个人数据的处理是基于《欧盟数据保护法》第 6 条第 I 款第 f 项，则我们的合法权益是为我们所有员工和股东的利益开展业务。

17. 个人数据的存储期限

个人数据的保存期限以相应的法定保存期限为标准。期限到期后，如果履行合同或启动合同不再需要相应的数据，则将例行删除这些数据。

18. 提供个人数据的法定或合同要求；签订合同的必要性；数据主体提供个人数据的义务；不提供的可能后果

我们明确指出，提供个人数据部分是法律要求的（如税务规定），也可能是合同规定的（如合同伙伴的信息）。有时，为了签订合同，受影响者可能有必要向我们提供个人数据，我们随后必须对其进行处理。例如，如果我们公司与数据当事人签订合同，数据当事人有义务向我们提供个人数据。如果不提供个人数据，就意味着无法与数据当事人签订合同。在数据当事人提供个人数据之前，数据当事人必须联系我们的一名员工。我们的员工会根据具体情况向数据当事人说明提供个人数据是否是法律或合同的要求，或者是否是签订合同的必要条件，是否有义务提供个人数据，以及如果不提供个人数据会有什么后果。

19. 自动决策的存在

作为一家负责任的公司，我们不使用自动决策或特征分析。由 Willing & Able 公司的法律技术专家开发，他们还开发了 GDPR 培训绘图系统。数据保护声明生成器的文本由 Heiko Jonny Maniero 教授和 Christian Solmecke 律师创建并发布。