Contents
- I. General
- II. Controller
- III. Your rights
- IV. Processing of personal data when using our website for informational purposes
- V. Processing personal data via cookies
- VI. Additional website functions and services
- VII. Contact us
- VIII. Cloudflare
- IX. Google (Invisible) reCAPTCHA
- X. Google Maps
- XI. Google Web Fonts
I. General
(1) The following privacy policy explains what personal data we collect when you use our website, and how we use that data.
(2) As defined in Article 4(1) of the EU General Data Protection Regulation (GDPR), "personal data" means any information concerning you personally. This includes, for example, your name, postal address, e-mail address and user activity. In respect of other terms, in particular "processing", "controller", "processor" and "consent", please refer to the statutory definitions contained in Article 4 GDPR.
(3) As a rule, we process personal data only to the extent that this is necessary to provide a functional website and the content and services we offer. As a rule, we will only process personal data if you have given us your consent as referred to in Article 6(1)(a) GDPR or if processing is permitted by applicable statutory provisions, in particular under one of the legal bases specified in Article 6(1)(b) to (f) GDPR.
(4) Your personal data will be deleted or blocked as soon as the purpose for retaining it no longer applies. Personal data may furthermore be retained where required under the provisions of German or European law to which we are subject. In such cases, the data will be blocked or deleted once the statutory retention period expires. However, data will not be deleted if it must be retained for purposes of entering into or performing a contract.
(5) If we require the assistance of authorised service providers to provide certain website functionalities or intend to use your data for advertising purposes, we will inform you about this in detail below.
II. Controller
(1) Controller within the meaning of Article 4(7) GDPR, other data protection laws applicable in the Member States of the European Union and other rules and regulations pertaining to data protection:
Bettina Weyland, M.D.
Practice for hand and special trauma surgery
Bischof-Kindermann-Straße 3
61462 Königstein, Germany
Tel.: +49 (0)6174 99974-75
Fax: +49 (0)6174 99974-66
E-mail: kontakt@handchirurgie-koenigstein.de
(2) Further information on the controller is available in the Legal Notice.
III. Your rights
(1) You have the following rights with respect to your personal data:
- the right of access;
- the right to rectification and erasure;
- the right to restriction of processing;
- the right to object to processing;
- the right to data portability.
(2) You also have the right to lodge a complaint about the processing of your personal data by us with a data protection supervisory authority.
IV. Processing of personal data when using our website for informational purposes
(1) If you access our website without registering or otherwise providing us with information ("informational use"), we only collect that personal data which your web browser transmits to our server. When you visit our website, we collect data which is technically necessary for us to allow you to view our site and to ensure its stability and security. That data includes your IP address, the date and time of request, GMT offset, web page content, HTTP response status, data volume transferred, requested URL, web browser, operating system, browser language and version.
(2) The aforementioned data is also stored on our server in so-called log files. That data is not stored together with your other personal data.
(3) It is stored in log files, which makes it possible to optimise and ensure the functionality of our website as well as the security of our IT systems.
(4) That data is not analysed for marketing purposes. The above purposes constitute our legitimate interest in processing the data. The legal basis for collecting and temporarily storing the aforementioned data and the log files is Article 6(1) sentence 1 (f) GDPR. The data required for providing our website will be deleted after the session ends, but it must be collected on order to operate our website. There is no opting out.
V. Processing personal data via cookies
(1) This website uses cookies. Cookies are small text files which are stored on the storage medium of your terminal device, for example on a hard drive, and via which we, as the party placing the cookie, receive certain information. Cookies cannot run any programs or transfer viruses to your terminal device. This website uses the following types of cookies, the scope and functions of which are explained below.
(2) Cookies which are stored in your browser’s memory:
- Transient cookies: these are temporary cookies which are deleted automatically when you close your browser. These include, in particular, session cookies. They store a "session ID", which is used to allocate different requests from your browser to the joint session, allowing your terminal device to be recognised the next time your visit our website. Session cookies are deleted as soon as you log out or close your browser.
(3) Processing personal data using these types of cookies serves to make our website more functional and user-friendly overall. Without these cookies, the full functionalities of our website would not be available. Certain functionalities of our website require that your browser be able to be identified even after you switch pages. If you have an account, we use the cookies so that you will be remembered the next time you visit our website and can thus avoid having to log in again every time you access our website. The data processed by cookies required to provide our website functionalities is not used to create user profiles. To the extent that cookies are used for analytical purposes, these serve to optimise the quality and user-friendliness of our website as well as its content and features. They allow us to track which features of the website are used and how frequently, which enables us to continually optimise our services.
(4) The aforementioned purposes constitute our legitimate interest in the data processing. The legal basis is Article 6(1)(f) GDPR.
(5) These cookies will be stored on your terminal device and transmitted to our server. This means that you yourself can configure the data and information processed by the cookies. You can configure your browser settings to, for example, reject third-party cookies or cookies altogether. Please be advised that rejecting cookies may prevent you from being able to properly use all of the functionalities of this website. We also recommend that you periodically clear cookies and your browser history.
VI. Additional website functions and services
(1) In addition to the above-described informational use of our website, we offer a variety of services that you can use if interested. This generally requires that you provide additional personal data, which we require in order to provide the specific service. The above data processing principles apply hereto.
(2) In some cases, we engage carefully selected external service providers to carry out the processing. These processors are bound by our instructions and audited by us on a regular basis. Further information about the disclosure of data to third parties in the context of offering services jointly with partners is available below in the descriptions of the individual services. Where such third parties are domiciled in a country outside the European Economic Area (EEA), further information about the implications of this is available below in the descriptions of the individual services.
VII. Contacting us
(1) If you contact us by e-mail, we will retain the personal data contained in that e-mail.
(2) We also have a form on our website which you can use to contact us. When you complete the contact form and send it to us, we will retain data such as your name and e-mail address.
(3) We use the data solely to respond to your enquiries. Unless explicitly stated in this privacy policy, the data will not be disclosed to third parties. We also log your IP address and the send date and time.
(4) The aforementioned personal data will be processed solely for the purpose of processing your enquiries.
(5) The additional personal data generated when you use the contact form on our website is processed in order to prevent misuse and to ensure the security of our IT systems.
(6) This also constitutes our legitimate interest in processing your personal data. Insofar as you have given us your consent for such processing, the legal basis for the processing that data is Article 6(1)(a) GDPR. Otherwise, the legal basis for processing that data is Article 6(1) l(f) GDPR, in particular when the data is transferred to us when you send us an e-mail. Insofar as the purpose of your e-mail is to enter into a contract, Article 6 (1)(b) GDPR constitutes an additional legal basis.
(7) Subject to statutory retention periods, the data will be deleted as soon as we have completed processing your enquiry. If you contact us by e-mail, you may at any time object to the retention of your personal data. Please note that in this case we would not be able to process your enquiry any further. You may withdraw your consent or object to processing by sending an e-mail to our e-mail address stated in the Legal Notice on our website.
(8) We process and/or store your personal data on a server hosted by an external provider in the European Union. This ensures that the standards and regulations of European data protection law are complied with.
VIII. Cloudflare
This website uses "Cloudflare", a content delivery network service provided by Cloudflare, Inc. 665 3rd St. #200, San Francisco, CA 94107, USA (hereinafter referred to as "Cloudflare"). Data traffic between the browser on your end device and our website is routed through Cloudflare's network. Cloudflare can cache, log and analyse data traffic, for example to detect and prevent attacks on our website. Further information is available at: https://www.cloudflare.com/de-de/gdpr/introduction/. According to Cloudflare, the nearest data processing centre geographically is usually used for this purpose, but in some cases, data processing centres located outside the European Union, e.g., in the USA, are also used. The cached data is generally deleted within four hours, but within three days at the latest. Cloudflare may also store cookies on your computer for optimisation and analytical purposes.
We use Cloudflare to optimise the display of the web pages of our site, in particular to increase the load speed of the page content. This enables us to improve the services we offer and your user experience. Using Cloudflare also serves to ensure that our website functions properly and to protect it against attacks such as DDoS attacks. This also constitutes our legitimate interest in having the aforementioned data processed by a third party provider. The legal basis is Article 6(1) sentence 1 (f) GDPR.
You can prevent cookies from being installed by deleting existing cookies and disabling cookies in your web browser settings. However, in this case you may be unable to use the full functionality of this website.
Information of the third party provider: Cloudflare, Inc. 665 3rd St. #200, San Francisco, CA 94107, USA
Further information about Cloudflare's policy on privacy and use of data is available at the following links: https://www.cloudflare.com/de-de/privacypolicy/ and https://www.cloudflare.com/de-de/cookie-policy/
IX. Google (Invisible) reCAPTCHA
This website uses "Google (Invisible) reCAPTCHA", a service of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). Google (Invisible) reCAPTCHA processes information about your user activity on our site.
We use Google (Invisible) reCAPTCHA to determine whether the information is being entered by a human being or by automated bots engaging in abusive activity. This serves to protect against spam, DDoS attacks and similar malicious automated attacks. The use of Google (Invisible) reCAPTCHA thus directly serves to ensure the integrity and functionality of our systems. This constitutes our legitimate interest. The legal basis is Article 6(1) sentence 1 (f) GDPR.
The IP address transmitted in the context of Google (Invisible) reCAPTCHA is not merged with other Google data unless you are logged into your Google account at the time you use Google (Invisible) reCAPTCHA. If you want to prevent Google from transmitting and storing data about you and your activity on our website, you must log out of Google before visiting our site or using Google (Invisible) reCAPTCHA.
You can object to the collection and forwarding of personal data or prevent this data from being processed by disabling JavaScript from running in your browser. You can also prevent JavaScript files from being loaded by the browser entirely by installing a JavaScript blocker (e.g., https://noscript.net/ or https://www.ghostery.com). However, in this case you may be unable to use the full functionality of this website.
Information of the third party provider: Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland
Further information about the third party provider's policy on privacy is available at the following link: https://policies.google.com/privacy?hl=de&gl=de
X. Google Maps
This website uses "Google Maps", an online map service provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). This allows us to show you interactive maps directly on the website and lets you conveniently use the Maps function. When you visit our website, Google is notified that you accessed the corresponding sub-page of our site. Your IP address is transmitted in the process, regardless of whether or not you have a Google user account. If you are logged in to Google, your data is directly associated with your account. If you do not want the data to be associated with your Google user profile, you must first log out. Google stores your data as a user profile and uses this for advertising and market research purposes and/or to tailor the website to your needs. This analysis is performed (even for users who are not logged in) in order to enable targeted advertising and to inform other users about your activities on our website.
We use Google Maps in order to show you its interactive maps and thus give you a better user experience on our website. This also constitutes our legitimate interest in having the aforementioned data processed by a third party provider. The legal basis is Article 6(1) sentence 1 (f) GDPR.
You have a right to object to the creation of such a user profile, but you must contact Google to do so.
Information of the third party provider: Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland
More information on Google's use of data, options for settings and objections and privacy is available at the following Google site:
https://policies.google.com/privacy?hl=de&gl=de.
XI. Google Web Fonts
This website uses "Google Web Fonts", a service of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). Google Web Fonts allows us to use external fonts, so-called Google Fonts. For this purpose, the required Google Font is loaded into the browser cache by your web browser when you access our website. This allows your browser to display an enhanced presentation of the text on our site. If your browser does not support this feature, your computer will use a default font to display it. These web fonts are integrated via a server call, usually a Google server in the USA. This will tell the server which of our Internet pages you have visited. Google also stores the IP address of your terminal device's browser. We have no influence on the scope and further use of the data collected and processed by Google when using Google Web Fonts.
We use Google Web Fonts for purposes of optimising our site, in particular to improve your user experience and to make it its design more user-friendly. This also constitutes our legitimate interest in having the aforementioned data processed by a third party provider. The legal basis is Article 6(1) sentence 1 (f) GDPR.
Information of the third party provider: Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland
Further information on privacy is available in Google’s privacy policy: https://policies.google.com/privacy?hl=de&gl=de
Further information on Google Web Fonts is available at https://fonts.google.com/, https://developers.google.com/fonts/faq?hl=de-DE&csw=1and https://www.google.com/fonts#AboutPlace:about