Privacy policy

www.wolkenflug-cosmopolitan.de


Our approach to the issue of data protection

Data protection law is part of our personal rights. Especially in our constantly evolving and interconnected world, the importance of these rights cannot be underestimated. For Wolkenflug Cosmopolitan Meyer GbR, data protection law in all its forms and requirements is very important, so we also take the protection of your data very seriously and always strive to provide an appropriate level of protection on our website www.wolkenflug-cosmpolitan.de,

You are free to use our website without providing your personal data. However, if you wish to use one of our services via our website, it may be necessary to collect and process your data. If this is the case and there is no legal basis for this processing, we will in any case obtain your consent for the respective process.

As the controller, we have implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. Since, despite all technical precautions, absolute protection cannot be completely guaranteed during data transmission, you are free to transmit your personal data by other means, for example by telephone.

  1. Data protection details

Our privacy policy should be easy to read and understand for the public as well as for you as customers and business partners. To ensure this, we would like to explain some of the terms we use that you will encounter in this privacy statement. Terms that require further explanation in terms of concept and usage have been given their own paragraph (e.g. cookies).

  • Personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

  • Person concerned

Data subject is any identified or identifiable natural person whose personal data are processed by the controller. So, in case of doubt, you are a data subject.

  • Processing

Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means. The term processing includes any handling of data, be it collection, evaluation, storage, transmission or deletion.

  • Profiling

Profiling is any type of automated processing of personal data which consists in using such personal data to evaluate, analyze or predict certain personal aspects relating to a natural person.

On our website, we do not use profiling to protect your personal data.

  • Pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

  • Controller or person responsible for the processing

Controller or data controller is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

  • Processor

Processor means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the Controller.

  • Receiver

Recipient means a natural or legal person, public authority, agency or other body to whom Personal Data is disclosed, whether or not a third party.

  • Third

Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.

  • Consent

Consent shall mean any freely given indication of the data subject’s wishes for the specific case in an informed and unambiguous manner in the form of a statement or any other unambiguous affirmative act by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.

  • Tracking (German: “Verfolgung”)

In the field of online marketing, tracking refers to the logging of a website visitor’s user behavior. With the help of tracking, it is possible to trace which websites a visitor has used to reach one’s own website, how long the visitor stayed on the website, which pages were called up and what the visitor’s IP address is. In order to obtain this data, cookies, among other things, are used and evaluated with tools such as Google Analytics. From this, the success of marketing campaigns can be read and measures for their optimization and adjustments can be derived. With these measures, the website can be made more user-friendly and better tailored to customers.

  • Reach measurement

The main purpose of reach measurement is to ensure that the intensity of use, the number of visitors or users of a website and their surfing behavior are determined statistically – on the basis of a uniform standard procedure. Website operators can use various tools to see exactly how many people are reached by a post. It is also possible to determine exactly how often a person clicks on an advertisement, for example, and from which websites, advertisements or articles people reach one’s own website.

The data required for this purpose is collected and processed in accordance with the DSGVO and German data protection law. Technical and organizational measures ensure that individual users cannot be identified at any time. Data that may have a reference to a specific, identifiable person is anonymized as soon as possible.

  1. Who we are

Responsible for this website in the sense of the General Data Protection Regulation is:

Wirtz Meyer GmbH

Represented by Managing Director: Ferdinand Meyer

Mandaustrasse 14
02763 Zittau

Tel.: 0160 / 967 318 99

E-mail: info@wolkenflug.cosmopolitan.de
Website: www.wolkenflug-cosmopolitan.de

  1. What data and information we collect

Our website collects a series of general data and information from you with every visit to the website. This general data and information is stored in the server’s log files. The following can be recorded

(1) browser types and versions used,

(2) the operating system used by the accessing system,

(3) the website from which an accessing system arrives at our website (so-called referrer),

(4) the sub-websites that are accessed via an accessing system on our website,

(5) the date and time of any access to the Website,

(6) an Internet Protocol (IP) address,

(7) the Internet service provider of the accessing system and

(8) other similar data and information that serve to avert danger in the event of attacks on our information technology systems.

When using this general data and information, our company does not draw any conclusions about you. This information is rather needed to display the contents of our website correctly and also to optimize those contents as well as the advertising for the contents.

Furthermore, we need the above information for the permanent functionality of our IT infrastructure and technology of the website. Last but not least, we may need the information to provide necessary data to law enforcement agencies in the event of a criminal prosecution.

This anonymously collected data and information is therefore used for statistical purposes, but also for the optimization of data protection and data security within our enterprise, in order to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all your specified personal data.

Our website processes data for the following purposes, for example

  • Provision of our online offer with associated user-friendliness
  • Office and organization procedures
  • the performance of contractual services and services
  • Management and response to requests

The groups of persons concerned, the types of data processed, the specific purpose and the legal basis will be explicitly described to you again in the course of this data protection declaration for the respective processing operation.

  1. What rights do you have?

The European legislator has given you a number of options within the framework of the General Data Protection Regulation to assert your rights – also against us. In order to comply with our duty to inform in this respect, those rights are presented below:

  • a)    Right to Confirm

You have the right to request confirmation from us as to whether your personal data is being processed.

  • b)    Right to information

You have the right to obtain from us, at any time and free of charge, information about your stored personal data (e.g. the purpose of processing or the categories of data processed) and a copy of this information.

  • c)    Right of rectification

You have the right to request that we correct any inaccurate personal data relating to you without undue delay. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data – also by means of a supplementary declaration.

  • d)    Right to erasure (right to be forgotten)

You have the right to demand that your personal data concerning you be deleted immediately. We are also obliged to delete personal data immediately if there is a reason that does not justify the processing of the data.

  • e)    Right to restrict processing

You have the right to request that we restrict the processing of your data,

  • f)     Right to data portability

You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transfer this data to another controller without hindrance from us, to whom the personal data was provided.

  • g)    Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 para. 1 letters e or f DSGVO.

We no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

  • h) Right to information and complaint to a supervisory authority

You have the right to contact a supervisory authority at any time with queries about data protection.

If you believe that the processing of personal data concerning you violates data protection law, you still have the right to lodge a complaint with a competent supervisory authority.

However, to prevent this from happening in the first place, we would be grateful if we could find a solution together in the event of any disagreements.

  • i)     Right to revoke consent under data protection law

You have the right to revoke consent to the processing of personal data at any time.

If you wish to assert the revocation of consent, you can contact the following office at any time:

Wirtz Meyer GmbH i.G.
Managing directors: Oscar Meyer, Ferdinand Meyer

Mandaustrasse 14
02763 Zittau

Tel.: 0160 / 967 318 99

E-mail: info@wolkenflug.cosmopolitan.de
Website: www.wolkenflug-cosmopolitan.de

  1. Provision of the online offer and web hosting

In order to provide our website securely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online offer can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services, as well as security services and technical maintenance services.

The data processed on our website may include those details that arise in the course of use and communication. This regularly includes the IP address, which is necessary to display the contents of our online offer, and all entries made within our online offer or from websites.

E-mail sending and hosting: We use web hosting services, which include the sending, receiving and storing of e-mails. For this purpose, the addresses of the recipients and senders as well as further information regarding the e-mail dispatch (e.g. the providers involved) and the contents of the respective e-mails are processed.

Please note that e-mails are generally not sent encrypted on the Internet. In most cases, e-mails are encrypted in transit, but (unless a so-called end-to-end encryption method is used) not on the servers from which they are sent and received. Therefore, we cannot assume any responsibility for the transmission path of the e-mails between the sender and the reception on our server.

Collection of access data and log files: We collect data on every access to the server (so-called server log files). The server log files may include the address and name of the web pages and files accessed, the date and time of access, the volume of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. In short, server log files record all processes that happen on a website.

The server log files are used for security purposes, among other things, by detecting and warding off attacks or to ensure the utilization of the servers and their stability.

  • Types of data processed: Content data (e.g. text input, photographs, videos), usage data (e.g. web pages visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
 
  1. Deletion and blocking of personal data

We process and store your personal data only for the period of time necessary to achieve the purpose of storage or if this has been provided for by the European Directive and Regulation Maker or another legislator in laws or regulations to which we are subject. Accordingly, the criterion for the duration of the storage of personal data is the respective statutory retention period.

If the purpose of storage no longer applies or if a storage period prescribed by the European Directive and Regulation or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions, provided that they are no longer required for the performance of the contract or the initiation of the contract.

  1. Protection of minors

Consent to the processing of personal data can only be given by a person of legal age. For information society services, the consent of a child is permissible from the age of sixteen in accordance with Art. 8 GDPR.

  1. Our handling of cookies

Our website is operated using, among other things, cookies. Cookies are text files that are stored on your computer system via your Internet browser.

Many websites and servers use cookies. Simply put, cookies serve to give the website a “memory”. They are an essential means for many website owners to provide you, the website visitor, with a smooth and technically flawless experience.

Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited websites and servers to distinguish your individual browser from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.

Through the use of cookies, our website can provide you with more user-friendly services that would not be possible without the cookie setting. The following cookie types and functions are distinguished:

Cookies differentiated by their storage time

  • Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after you have left an online offer and closed the browser.
  • Permanent cookies: Permanent cookies remain stored even after the browser is closed. These are used, for example, to save your login status or to display frequently viewed or liked content.

Cookies that differ according to their origin

  • First-party cookies: First-party cookies are set by us.
  • Third-party cookies (also: third-party cookies): Third-party cookies are mainly placed by advertisers (so-called third parties) to process user information.

Cookies that differ according to their purpose

  • Necessary (required) cookies: On the one hand, cookies may be necessary for the operation of a website (e.g. to store logins or other user input or for security reasons).
  • Statistics, marketing and personalization cookies: Cookies may be used in the context of range measurement (web analysis), namely when your interests or behavior (e.g. viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles are used, for example, to show users content that matches their potential interests. This process is also known as “tracking”, i.e., following the potential interests of users. Insofar as we use such cookies or other “tracking” technologies, we will inform you separately in our privacy policy or in the context of obtaining consent directly when you open our website (cookie banner).

Storage period: If we do not specify the storage period for permanent cookies, please allow for a storage period of up to 2 years

What cookies do we use? We do not use any statistical, marketing or personalization cookies on our website www.wolkenflug-cosmopolitan.de, nor any other cookies that correspond to the above description.

Cookie Consent Manager

 We use the consent technology of “Borlabs Cookie” to obtain your consent to the storage of certain cookies in your browser or to the use of certain technologies and to document this in accordance with data protection law.

The provider of this technology is Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg.

When you visit our website, a Borlabs cookie is stored in your browser, which stores the consents you have given or revoked. This data is not shared with the provider of Borlabs Cookie.

The collected data will be stored until you request us to delete it or delete the Borlabs cookie yourself, or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected.

Details on the data processing of Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.

Website: https://de.borlabs.io/borlabs-cookie/

Legal basis for the use of the Borlabs cookie: Art. 6 para. 1 lit. c GDPR.

What awaits you on our website

We offer a wide variety of content on our website in order to provide you, the user, with an interesting browsing experience so that you receive a lasting and, above all, positive impression of us and our company. For this we use various programs, tools and many other contents. In the following, we would like to explain what these are in detail.

  1. Contact possibility via the website

Due to legal regulations, our website contains information that enables a quick electronic contact to our company as well as an immediate communication with us, which also includes a general address of the so-called electronic mail (e-mail address).

If you contact us by e-mail or via our contact form, the personal data you provide will be stored automatically. Such personal data transmitted to us by you on a voluntary basis will be stored for the purpose of processing or contacting you. This personal data is not passed on to third parties.

Concrete data processing:

Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text entries, photographs, videos).

Affected persons: Communication partners.

Purposes of processing: contact requests and communication.

Legal basis: Contract fulfillment and pre-contractual requests (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

  1. We offer payment options

Within the scope of contractual and other legal relationships, due to legal obligations or otherwise on the basis of our legitimate interests, we offer you efficient and secure payment options and use other payment service providers in addition to banks and credit institutions for this purpose (collectively “payment service providers”).

The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as the contract, total and recipient-related information. The information is necessary to carry out the transactions.

However, the data entered is only processed by the payment service providers and stored with them. In this regard, we do not receive any account or credit card related information, but only information with confirmation or negative information of the payment. It may happen that the data is transmitted to credit agencies by the payment service providers. This transmission may be necessary for identity and credit checks. In this regard, we refer to the GTC and the data protection information of the payment service providers.

The terms and conditions and the data protection notices of the respective payment service providers, which can be accessed within the respective websites or transaction applications, shall apply to the payment transactions. We also refer to these for further information and assertion of revocation, information and other data subject rights.

We use the following payment processor:

for Mollie: payment services; service provider: Mollie H.Q., Keizersgracht 126, 1015CW Amsterdam, The Netherlands;

Website: www.mollie.com;

Privacy policy: https://www.mollie.com/de/privacy

Concrete data processing:

Types of data processed: inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contract data (e.g. subject matter of contract, term, customer category).

Affected persons: Customers, interested parties.

Purposes of processing: provision of contractual services and customer service.

Legal basis: Contract fulfillment and pre-contractual requests (Art. 6 para. 1 p. 1 lit. b. DSGVO), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

  1. We offer a blog

We offer a blog on our website. Your data will be processed for the purposes of the blog only to the extent necessary for its presentation and communication between authors and readers or for security reasons. For the rest, we refer to the information on the processing of visitors to our blog within the scope of this privacy notice.

  1. Legal permission for data processing

The following standards may serve Wolkenflug Cosmopolitan Meyer GbR as the legal basis for the above processing operations:

  • 6 I lit. a GDPR, where we obtain your consent for a specific processing purpose.
  • If the processing of personal data is necessary, for example, due to the performance of a contract between you and us, this processing is governed by Art. 6 I lit. b GDPR justified.
  • The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services.
  • If our company is subject to a legal obligation by which the processing of personal data becomes necessary, such as for the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c GDPR.
  • It may happen that the processing of personal data becomes necessary to protect your vital interests or the interests of another natural person, Art. 6 I lit. d GDPR.
  • Ultimately, processing operations could be based on Art. 6 I lit. f DS-GVO are based. Processing operations are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that your interests, fundamental rights and freedoms are not overridden. Our legitimate interest within the meaning of Article 6 I lit. f DS-GVO is, in particular, the performance of our business activities for the benefit of the well-being of all our employees and our shareholders.
 
  1. Obligation to provide the personal data

We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). In addition, in order to conclude a contract, it may be necessary for you to provide us with personal data that must subsequently be processed by us. For example, you are obliged to provide us with personal data if our company concludes a contract with you. Failure to provide the personal data would mean that the contract could not be concluded.

Before providing your personal data, you should contact one of our employees. Our employee will inform you on a case-by-case basis whether the provision of your personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences of not providing the personal data would be.

  1. Your contact person in our company

If you have any questions about data protection and the handling of your data on our website and our company, please feel free to contact us at any time:

Wirtz Meyer GmbH

Represented by Managing Director: Ferdinand Meyer

Mandaustrasse 14
02763 Zittau

Tel.: 0160 / 967 318 99

E-mail: info@wolkenflug.cosmopolitan.de
Website: www.wolkenflug-cosmopolitan.de

This privacy policy was created by Bastanier & Schmelzer Rechtsanwälte PartmbB, www.bastanier-schmelzer.de