07127-349 79 88 info@enisyst.de

Privacy policy

1. Data protection at a glance

General information

The following information provides a simple overview of what happens to your personal data when you visit our website. For more detailed information on the subject of data protection, please refer to our data protection declaration listed here.

Who is responsible for data collection on this website?

The responsible party for data processing on this website is the website operator.

How do we collect your data?

Your data may be collected by you providing it to us. This may, for example, be data that you enter in a contact form. Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g. IP address, browser used, operating system and your connection to the Internet). This data is collected automatically as soon as you enter our website.

What do we use your data for?

Some of the data is collected in order to ensure error-free provision of the website. Other data may be used to analyse your user behaviour.

What rights do you have regarding your data?

You have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing, as well as the right to correct, block or delete this data. To do this, you can contact us at any time at the address given in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

Updating and amendment

Parts of the data protection declaration may be changed or updated by us without prior notification. Please check the data protection declaration before you use our offer in order to be up to date with possible changes or updates.   

Purpose and legal basis for the processing of personal data

The legal basis for the processing of personal data results in principle from:

  • Art. 6 para. 1 lit. a DSGVO when obtaining the consent of the data subject.
  • Art. 6 para. 1 lit. b DSGVO in the case of processing that serves to fulfil a contract to which the data subject is a party. Included here are processing operations that are necessary for the performance of pre-contractual measures.
  • Art. 6 para. 1 lit. c DSGVO for processing operations which are necessary for the fulfilment of a legal obligation.
  • Art. 6 para. 1 lit. d DSGVO if vital interests of the data subject or another natural person make processing of personal data necessary.
  • Art. 6 para. 1 lit. f DSGVO if the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest.

Personal data is only collected if you provide it to us of your own accord. No other personal data is collected. Any processing of your personal data beyond that permitted by law will only be carried out on the basis of your express consent.
Purpose of processing: Execution of contract.
Types of recipients:

  • Public bodies in case of overriding legal provisions.
  • External service providers or other contractors.
  • Other external bodies insofar as the data subject has given consent or a transfer is permissible for overriding interest.

Third-country transfers: Processors outside the European Union may also be used in the context of the execution of the contract.

Duration of storage

Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. If your data is collected to ensure the provision of the website, the data will be deleted when the respective session has ended. If your data is stored in log files, it will be deleted after seven days at the latest. Storage beyond this period is possible, in which case the IP addresses of the users are deleted or alienated. This means that it is no longer possible to identify the calling client.

2. General information and mandatory information

Designation of the responsible body

The responsible party for data processing on this website is:

enisyst GmbH
Dieter Ebinger, Dr. Dirk Pietruschka
Robert-Bosch-Str. 8/1
72124 Pliezhausen
Telefon: 07127-349 79 88
E-Mail: info@enisyst.de

The responsible body decides alone or jointly with others on the purposes and means of the processing of personal data (e.g. names, contact details or similar).

   

Data protection

The operators of these pages take the protection of your personal data very seriously. Personal data is information about your personal or factual circumstances, in particular your name, date of birth, e-mail address, telephone number or postal address. We treat your personal data confidentially and in accordance with the Data Protection Regulation-EU (DSGVO-EU), the German data protection law according to the DSAnpUG-EU and the German Telemedia Act (TMG).

As a rule, it is possible to use our website without providing personal data. Insofar as personal data is collected on our pages, this is done on a voluntary basis. This data will not be passed on to third parties without your express consent.

We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

 

SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

According to the EU General Data Protection Regulation you have the following rights as a data subject:

1. Right of access
You have the right to obtain information from us, as the controller, as to whether we are processing personal data relating to you. In addition, you could request information about the following:
(1) The purpose of the data processing;
(2) the categories of personal data processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the envisaged duration of the storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the duration of the storage;
(5) the existence of a right to obtain the rectification or erasure of personal data concerning you, a right to obtain the restriction of processing by the controller or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) any available information on the origin of the data, if the personal data are not collected from the data subject;
(8) the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in those cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.

Finally, you also have the right to request information on whether your personal data are transferred to a third country or to an international organisation. In this case, you can request information about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer.

You could assert your right to information at: info@enisyst.de.

2. Right to rectification
If the personal data processed by us and concerning you is incorrect or incomplete, you have a right to rectification and/or completion vis-à-vis us. The correction will be made without delay.

3. Right to restriction
The right to restrict the processing of personal data relating to you may be exercised in the following cases:
(1) the accuracy of the personal data is contested for a period enabling the controller to verify the accuracy of the personal data;
(2) the processing is unlawful and erasure of the personal data is refused, requesting instead the restriction of the use of the personal data;
(3) the controller no longer needs the personal data for the purposes of the processing, but the data subject needs it for the establishment, exercise or defence of legal claims; or
(4) the data subject has objected to the processing pursuant to Article 21(1) of the GDPR and it is not yet clear whether the legitimate grounds of the controller override the grounds of the data subject.

If the processing of personal data relating to you has been restricted, such data may – apart from being stored – only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State. In the event of a restriction of processing in accordance with the principles set out above, you will be informed by us before the restriction is lifted.

4. Right to erasure
If the grounds set out below apply, you may request that the personal data relating to you be erased without delay. The controller is obliged to delete this data without delay. 
(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) The processing is protected on the basis of consent pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a DSGVO and you revoke your consent. A further prerequisite is that there is no other legal basis for the processing.
(3) You object to the processing (Art. 21 (1) DSGVO) and there are no overriding legitimate grounds for the processing. Another possibility is that you lodge an objection to the processing pursuant to Art. 21 (2) DSGVO.
(4) The processing of the personal data concerning you is unlawful.
(5) The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
(6) The personal data concerning you has been collected in relation to information society services offered pursuant to Article 8(1) DSGVO.

If we have made the personal data concerning you public and we are obliged to erase it pursuant to Article 17(1) of the GDPR, we shall take reasonable measures, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers who process the personal data that you, as the data subject, have requested the erasure of all links to, or copies or replications of, those personal data.

We would like to point out that the right to erasure does not exist insofar as the processing is necessary
(1) for the exercise of the right to freedom of expression and information;
(2) for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the area of public health pursuant to Article 9(2)(h) and (i) and Article 9(3) of the GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1) of the GDPR, insofar as the right referred to in section (a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing; or
(5) to assert, exercise or defend legal claims.

5. Right to information
If you have exercised the right to rectification, erasure or restriction of processing, we are obliged to inform all recipients to whom the personal data concerned have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You also have the right to be informed about these recipients.

6. Right to data portability
According to the GDPR, you also have the right to receive the personal data concerning you that has been made available to us in a structured, common and machine-readable format. Furthermore, you have the right to transfer this data to another controller without hindrance by the controller to whom the personal data was provided, provided that
– the processing is based on consent pursuant to Art. 6 (1) a DSGVO or Art. 9 (2) a DSGVO or on a contract pursuant to Art. 6 (1) b DSGVO and
– the processing is carried out with the aid of automated procedures.

Finally, in exercising the right to data portability, you have the right to have the personal data concerning you transferred directly from one controller to another controller, insofar as this is technically feasible and does not affect the freedoms and rights of other persons.

The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

7. Right to withdraw consent under data protection law
You have the right to revoke your declaration of consent under data protection law at any time. We would like to point out that the revocation of the consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

8. Right of objection
Furthermore, you have the right to object at any time, on grounds arising from your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO. The right to object also applies to profiling based on these provisions.

The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

If the personal data concerning you is processed for the purpose of advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. This also applies to profiling, insofar as it is connected with such direct advertising. If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You also have the possibility, in connection with the use of information society services (notwithstanding Directive 2002/58/EC), to exercise your right to object by means of automated procedures using technical specifications.

9. Automated decision-making in individual cases including profiling

Under the EU General Data Protection Regulation, you still have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. However, there is an exception to this principle if the decision.
(1) is necessary for the conclusion or performance of a contract between you and the controller,
(2) is permissible under Union or Member State legislation to which the controller is subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests; or
(3) is carried out with your explicit consent.

If the processing is carried out in the cases referred to in (1) and (3), the controller shall take appropriate measures to safeguard the rights and freedoms as well as your legitimate interests. This includes at least the right to obtain the intervention of a person on the part of the controller, to express his or her point of view and to contest the decision. The decision according to (1) – (3) must not be based on special categories of personal data according to Art. 9(1) DSGVO, unless Art. 9(2)(a) or (g) applies and appropriate measures have been taken to protect the rights and freedoms as well as your legitimate interests. We do not use automated decision-making processes.

10. Right to complain to a supervisory authority
Finally, if you believe that the processing of personal data concerning you infringes the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement.

3. Data Protection Officer

We have appointed a data protection officer.
Digital DSB GmbH
Email: verwaltung@digital-dsb.eu

4. Data collection on our website

Cookies

Internet pages sometimes use so-called cookies. Cookies are small text files that are stored on your computer and saved by your browser. This automatically provides us with certain data such as IP address, browser used, operating system and your connection to the internet.

Cookies cannot be used to start programs or transfer viruses to a computer. Cookies serve to make our offer more user-friendly, effective and secure.

Under no circumstances will the data we collect be passed on to third parties or linked to personal data without your consent.

Most of the cookies we use are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognise your browser on your next visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

Personal Data

Every time a user accesses our website and every time a file is retrieved, data about this process is temporarily stored and processed in a log file. Before storage, each data record is anonymised by changing the IP address.

In detail, the following data is stored for each access/retrieval:

  • anonymised IP address
  • date and time
  • accessed page/name of the accessed file
  • amount of data transferred
  • message as to whether the access/retrieval was successful
  • browser type and version
  • Operating system used
  • referrer URL
  • Host name of the accessing computer

This data is only evaluated for statistical purposes and to improve the offer and is then deleted. It is not used in any other way or passed on to third parties.

5. Contents and services of third parties

Google Analytics

In case of granting your consent, we process your personal data with the service Google Analytics, Google LLC, Amphitheatre Parkway, Mountain View, CA 94043, USA, as joint controller, for the purpose of error analysis and statistical evaluation of our website. Not granting consent has no immediate effect on the function of the website, but without statistical data it will be more difficult for us to further develop the website. You can revoke consent you have already given by changing the data protection settings.
We enable the service to collect connection data, data from your web browser and data about the content accessed, as well as to run analysis software and store data on your end device. The service anonymises the collected data immediately after collection and provides us with the anonymous data in the form of statistics for evaluation. We use these statistics for troubleshooting and for the further development of our website. The data on your end device is stored for up to two years.
The legal basis for the data processing is your consent in accordance with Art. 6 para. 1 lit. a DSGVO. The legal basis for the transfer to the USA is the implementing decision of the EU Commission C/2016/4176 and the  Privacy Shield certification.


WP Statistics

For the purpose of searching for and analysing errors, evaluating usage and deriving measures for the future development of our website, we process your data using the local analysis software  WP-Statistics, WordPress.

As this service is a local analysis tool, no personal data is forwarded to the service provider or to third parties. In addition, your personal data is anonymised immediately after collection. There is therefore no storage of personal data beyond the first processing step.
The legal basis for the data processing is the legitimate interest (absolute technical necessity for the provision and delivery of the “website” service expressly requested by you by calling it up) in accordance with Art. 6 Para. 1 lit. f DSGVO.

YouTube

The offer on our website may also include content, services and performances from other providers that complement our offer. We link to youtube on our website.
Our website uses plugins from YouTube for the integration and display of video content. The provider of the video portal is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.
When a page with an integrated YouTube plugin is called up, a connection to the YouTube servers is established. This tells YouTube which of our pages you have accessed. YouTube can assign your surfing behaviour directly to your personal profile if you are logged into your YouTube account. You can prevent this by logging out first. YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. Details on the handling of user data can be found in YouTube’s privacy policy at: https://policies.google.com/privacy?hl=de&fg=1

Data protection
enisyst GmbH, Owner: Dieter Ebinger, Dr. Dirk Pietruschka (Registered business address: Germany), would like to process personal data with external services. This is not necessary for using the website, but allows me to interact even more closely with them. If desired, please make a choice:
Data protection
enisyst GmbH, Owner: Dieter Ebinger, Dr. Dirk Pietruschka (Registered business address: Germany), would like to process personal data with external services. This is not necessary for using the website, but allows me to interact even more closely with them. If desired, please make a choice: