Convenience translation
This English text is provided for convenience only. The German version is the legally binding one and prevails in case of any discrepancy. The German privacy policy is maintained by IT-Recht Kanzlei, which also issues an official English version — we recommend using that for the live site. This translation has not been reviewed by a lawyer.
Privacy policy of fairconcept GmbH for this website.
We're pleased that you're visiting our website, and we thank you for your interest. Below we inform you about how we handle your personal data when you use our website. Personal data here means all data by which you can be personally identified.
The controller for the data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is fairconcept GmbH, Dreimühlenstr. 28, 80469 Munich, Germany, Tel.: +49 151 230 151 41, email: ll@fairconcept.de. The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
When using our website for information purposes only — i.e. if you do not register or otherwise transmit information to us — we collect only the data your browser transmits to our server (so-called "server log files"). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:
The processing is carried out pursuant to Art. 6 (1) (f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data is not passed on or used in any other way. However, we reserve the right to review the server log files retrospectively should concrete indications point to unlawful use.
For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or enquiries to the controller), this website uses SSL or TLS encryption. You can recognise an encrypted connection by the string "https://" and the padlock symbol in your browser bar.
For the hosting of our website and the display of the page content we use a provider that delivers its services — itself or through selected sub-processors — exclusively on servers within the European Union.
All data collected on our website is processed on these servers.
We have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
For providing an online appointment-booking function we use the services of the following provider: Calendly, LLC, BB&T Tower, 271 17th St NW, Atlanta, GA 30363, USA.
For the purpose of scheduling, first and last name and email address (and, where applicable, the telephone number if a telephone appointment is requested) are collected pursuant to Art. 6 (1) (b) GDPR and transmitted to the provider pursuant to Art. 6 (1) (f) GDPR on the basis of our legitimate interest in effective customer management and efficient appointment administration, and stored there for organising the appointment.
After the appointment has taken place or the agreed appointment period has expired, your data is deleted by the provider.
We have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
For providing an online appointment-booking function we use the services of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
For the purpose of scheduling, first and last name and email address (and, where applicable, the telephone number if a telephone appointment is requested) are collected pursuant to Art. 6 (1) (b) GDPR and transmitted to the provider pursuant to Art. 6 (1) (f) GDPR on the basis of our legitimate interest in effective customer management and efficient appointment administration, and stored there for organising the appointment.
After the appointment has taken place or the agreed appointment period has expired, your data is deleted by the provider.
We have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
When you get in touch with us (e.g. via a contact form or email), personal data is collected. Which data is collected when a contact form is used can be seen from the respective form. This data is stored and used solely for the purpose of responding to your enquiry or for making contact and the related technical administration.
The legal basis for processing this data is our legitimate interest in responding to your enquiry pursuant to Art. 6 (1) (f) GDPR. If your contact aims at concluding a contract, the additional legal basis for the processing is Art. 6 (1) (b) GDPR. Your data is deleted once your enquiry has been conclusively dealt with. This is the case when the circumstances indicate that the matter concerned has been conclusively clarified, provided that no statutory retention obligations conflict with deletion.
If you sign up for our email newsletter, we will regularly send you information about our offers. The only mandatory detail for sending the newsletter is your email address. Providing further data is voluntary and is used so that we can address you personally. We use the so-called double-opt-in procedure for sending the newsletter. This means we will only send you an email newsletter once you have expressly confirmed that you consent to receiving newsletters. We then send you a confirmation email asking you to confirm, by clicking a corresponding link, that you wish to receive the newsletter in future.
By activating the confirmation link, you give us your consent to use your personal data pursuant to Art. 6 (1) (a) GDPR. When you sign up for the newsletter, we store the IP address assigned by your internet service provider (ISP) as well as the date and time of signup, in order to be able to trace any possible misuse of your email address at a later point. The data we collect on newsletter signup is used exclusively for promotional contact by newsletter. You can unsubscribe from the newsletter at any time via the link provided for this in the newsletter, or by sending a corresponding message to the controller named above. After you unsubscribe, your email address is deleted from our newsletter distribution list without delay, unless you have expressly consented to further use of your data, or we reserve a use of data beyond this that is permitted by law and about which we inform you in this declaration.
If you provided us with your email address when purchasing goods or services, we reserve the right to send you, by email, regular offers for goods or services similar to those you already purchased from our range. Pursuant to § 7 (3) UWG we do not need to obtain separate consent from you for this. To that extent, the data processing is based solely on our legitimate interest in personalised direct marketing pursuant to Art. 6 (1) (f) GDPR. If you objected to the use of your email address for this purpose from the outset, we will not send any email.
You are entitled to object to the use of your email address for the aforementioned advertising purpose at any time with effect for the future, by sending a message to the controller named at the beginning. You will incur only transmission costs at base rates for this. After your objection is received, the use of your email address for advertising purposes ceases without delay.
This website uses plugins to display and play videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
Data may also be transmitted to: Google LLC, USA.
When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the provider's servers at the latest at the point of video playback, in order to load the content. In doing so, certain information, including your IP address, is transmitted to the provider.
If playback of embedded videos is started via the plugin, the provider also sets cookies in order to gather information about user behaviour, compile playback statistics and prevent abusive behaviour.
If, during your visit, you are logged into a user account with the provider, your data is assigned directly to your account when you click on a video. If you do not want this assignment to your account, you must log out before activating the playback button.
All of the aforementioned processing, in particular the setting of cookies for reading out information on the device used, takes place only if you have given us your express consent pursuant to Art. 6 (1) (a) GDPR. You can withdraw the consent you have given at any time with effect for the future, by deactivating this service via the "cookie consent tool" provided on the website.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
To display fonts consistently, this site uses so-called web fonts from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.
When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly, and establishes a direct connection to the provider's servers. In doing so, certain browser information, including your IP address, is transmitted to the provider.
Data may also be transmitted to: Google LLC, USA.
The processing of personal data in the course of connecting to the font provider is only carried out if you have given us your express consent pursuant to Art. 6 (1) (a) GDPR. You can withdraw your consent at any time with effect for the future, by deactivating this service via the "cookie consent tool" provided on the website. If your browser does not support web fonts, a standard font is used by your computer.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
Further information on Google's data protection terms can be found here: business.safety.google/intl/de/privacy.
For holding online meetings, video conferences and/or webinars we use this provider: BigBlueButton Inc., 311 St. Patrick’s Building, 1125 Colonel By Drive, Carleton University, Ottawa, Ontario K1S 5B6, Canada.
The provider processes various data; the scope of the data processed depends on which data you provide before or during participation in an online meeting, video conference or webinar. Your data as a communication participant is processed and stored on the provider's servers. This may in particular be your registration data (name, email address, telephone number (optional) and password) and session data (topic, participant IP address, device information, description (optional)).
In addition, audio and video contributions from participants as well as voice input in chats may be processed. For the processing of personal data necessary for the performance of a contract with you (this also applies to processing operations necessary for carrying out pre-contractual measures), Art. 6 (1) (b) GDPR serves as the legal basis. Insofar as you have given us consent to process your data, the processing is based on Art. 6 (1) (a) GDPR. You can withdraw any consent given at any time with effect for the future.
Otherwise, the legal basis for the data processing when holding online meetings, video conferences or webinars is our legitimate interest pursuant to Art. 6 (1) (f) GDPR in the effective holding of the online meeting, webinar or video conference.
We have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
For a data transfer to the provider's location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.
For holding online meetings, video conferences and/or webinars we use this provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
The provider processes various data; the scope of the data processed depends on which data you provide before or during participation in an online meeting, video conference or webinar. Your data as a communication participant is processed and stored on the provider's servers. This may in particular be your registration data (name, email address, telephone number (optional) and password) and session data (topic, participant IP address, device information, description (optional)).
In addition, audio and video contributions from participants as well as voice input in chats may be processed. For the processing of personal data necessary for the performance of a contract with you, Art. 6 (1) (b) GDPR serves as the legal basis. Insofar as you have given us consent to process your data, the processing is based on Art. 6 (1) (a) GDPR.
Otherwise, the legal basis for the data processing when holding online meetings, video conferences or webinars is our legitimate interest pursuant to Art. 6 (1) (f) GDPR in the effective holding of the online meeting, webinar or video conference.
We have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.
To obtain effective user consent for cookies and cookie-based applications requiring consent, this website uses a so-called "cookie consent tool". The cookie consent tool is displayed to users as an interactive interface when they access the page, on which consent for certain cookies and/or cookie-based applications can be given by ticking boxes. By using the tool, all cookies/services requiring consent are loaded only if the respective user gives the corresponding consent by ticking a box. This ensures that such cookies are only set on the user's device if consent has been given.
The tool sets technically necessary cookies in order to store your cookie preferences. Personal user data is generally not processed in this context.
If, in an individual case, personal data (such as the IP address) is nevertheless processed for the purpose of storing, assigning or logging cookie settings, this is carried out pursuant to Art. 6 (1) (f) GDPR on the basis of our legitimate interest in legally compliant, user-specific and user-friendly consent management for cookies, and thus in a legally compliant design of our website.
A further legal basis for the processing is Art. 6 (1) (c) GDPR. As the controller, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.
Where necessary, we have concluded a data-processing agreement with the provider that ensures the protection of our visitors' data and prohibits unauthorised disclosure to third parties.
Further information on the operator and the configuration options of the cookie consent tool can be found directly in the corresponding interface on our website.
The applicable data protection law grants you the following data-subject rights (rights to information and intervention) vis-à-vis the controller with regard to the processing of your personal data, whereby reference is made to the legal basis cited for the respective conditions of exercise:
If, as part of a balancing of interests, we process your personal data on the basis of our overriding legitimate interest, you have the right at any time to object to this processing with effect for the future, on grounds relating to your particular situation.
If you exercise your right to object, we will stop processing the data concerned. Further processing remains reserved, however, if we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.
If we process your personal data in order to conduct direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. You can exercise the objection as described above.
If you exercise your right to object, we will stop processing the data concerned for direct-marketing purposes.
The duration for which personal data is stored is determined by the respective legal basis, the purpose of the processing and — where applicable — additionally by the relevant statutory retention period (e.g. retention periods under commercial and tax law).
Where personal data is processed on the basis of express consent pursuant to Art. 6 (1) (a) GDPR, the data concerned is stored until you withdraw your consent.
Where statutory retention periods exist for data processed in the context of legal or quasi-legal obligations on the basis of Art. 6 (1) (b) GDPR, this data is routinely deleted after the retention periods have expired, provided it is no longer required for the performance or initiation of a contract and/or we no longer have a legitimate interest in continued storage.
Where personal data is processed on the basis of Art. 6 (1) (f) GDPR, this data is stored until you exercise your right to object under Art. 21 (1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Where personal data is processed for the purpose of direct marketing on the basis of Art. 6 (1) (f) GDPR, this data is stored until you exercise your right to object under Art. 21 (2) GDPR.
Unless otherwise indicated by the other information in this declaration about specific processing situations, stored personal data is otherwise deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.
© IT-Recht Kanzlei