Privacy Notice

General information concerning the processing of your data

We have a statutory duty to inform you about the processing of your personal data (hereinafter the ‘data’) when you use our website. Protecting your personal data is something we take very seriously. This privacy notice provides details on the processing of your data and on your statutory rights in this regard. The official definitions in Article 4 of the General Data Protection Regulation (GDPR) are authoritative for terms such as ‘personal data’ or ‘processing’. We reserve the right to adapt this privacy notice with future effect, particularly when the website is developed further, when new technologies are applied, or when changes are made to the statutory basis or the applicable case law. We recommend that you read the privacy notice from time to time and keep a printout or copy in your records.

Applicability

This data notice applies to all the pages of the www.language-data.de website. It does not extend to any linked websites or Internet presences of other providers.

Responsible provider

The following entity is responsible for the processing of personal data within the scope of this privacy notice:

LanguageData GmbH
Haydnstrasse 1
D – 53115 Bonn

Fon +49 228 925 8121
Fax +49 228 925 8122
eMail info@language-data.de

Questions concerning privacy

If you have any questions relating to privacy and our company or website, please use the contact details provided in the section headed ‘Responsible provider’.

Data security

We have taken extensive technical and organizational precautions to protect your personal data against unauthorized access, misuse, loss and other forms of external interference. Any data that you enter on our website is transmitted in encrypted form (SSL/TLS) between your browser and our server. We also check our security measures regularly and adapt them to the current state of technological development.

Your rights

You have and can assert against us the following rights regarding your personal data:

Right to information: Under Article 15 GDPR, you have the right to request and obtain information about your personal data that we process.
Right to rectification: If the information relating to you is not (or no longer) correct, you have the right under Article 16 GDPR to request and obtain the rectification of inaccurate personal data. If your data are incomplete, you may have them completed.
Right to erasure: You have the right, under Article 17 GDPR, to request and obtain the erasure of your personal data.
Right to restriction of processing: You have the right, under Article 18 GDPR, to obtain a restriction on the processing of your personal data.
Right to object to the processing of data: Pursuant to Article 21 (1) GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data on the basis of Article 6 (1) sentence 1 e) or f). In such a case, we will no longer process your data unless we can demonstrate compelling reasons for the processing which override your interests, rights and freedoms, or if processing serves the establishment, exercise or defense of legal claims (Article 21 (1) GDPR). Your also have the right, under Article 21 (2) GDPR, to object at any time to the processing of personal data concerning you for direct marketing purposes; this also applies to any profiling, to the extent that it is related to such direct marketing. In this privacy notice, your right to object is brought to your attention in connection with the respective type of processing.
Right to withdraw your consent: If you have consented to processing, you have the right under Article 7 (3) GDPR to withdraw that consent.
Right to data portability: You have the right to obtain, in a structured, commonly used and machine-readable format, the personal data concerning you that you have provided us with (‘data portability’), and the right to transmit this data to another controller if the conditions specified in Article 20 (1) (a), (b) GDPR are met (Article 20 GDPR).

You can exercise your rights by sending a notification to that effect, using the contact details provided in the section headed ‘Responsible provider’.

If you believe that the processing of your personal data infringes data protection law, you also have the right under Article 77 to lodge a complaint with a data protection supervisory authority of your own choice. This includes the competent supervisory authority for the responsible provider: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen, Postfach 200444, D-40102 Düsseldorf, +49 (0)211 38424-0, poststelle@ldi.nrw.de.

1. Using our website

You can use our website for purely informational purposes without disclosing your identity. When the individual pages of the website are accessed in that way, only access data are transmitted to our webspace provider so that the website can be displayed to you. The following data are processed:

browser type/ browser version,
the operating system being used,
the language and version of the browser software,
the date and time of access,
the host name of the accessing terminal device,
the IP address,
the content of the request (the specific web page),
the access status/HTTP status code,
the websites accessed from the website,
the referrer URL (the website previously visited),
a report on whether access was successful and
the data volume transferred.

Transient processing of this data is a technical necessity for enabling the website visit and to deliver the website to your terminal device. The access data are not used to identify individual users and are not combined with other data sources. The data are also stored in log files to safeguard the functionality of the website and the security of the IT systems. The legal basis for this processing is found in Article 6 (1) sentence 1 (f) GDPR. Our legitimate interests are to ensure the functionality, integrity and security of the website. Storing access data in log files, in particular the IP address, for a longer period of time enables us to detect and prevent misuse. This includes, for example, blocking requests that overload the service, or blocking the use of bots. The access data are deleted as soon as they are no longer needed to achieve the purpose of processing them. This is the case when you leave the website, as far as data collected to provide the website are concerned. Data in log files are basically stored so that they are directly accessible to administrators only, and are deleted at the latest after seven days. After that, they can only be accessed indirectly by restoring data from backup tapes, and are finally erased after a maximum of 12 weeks.

You may lodge an objection to such processing. Your right to object exists when grounds arise from your particular situation. You may send us your objection using the contact details provided in the section headed ‘Responsible provider’.

2. Contacting our company

When you contact our company, for example by email or by using one of the contact forms on the website, we process the personal data you provide in order to answer your enquiry. It is essential that customers specify the name of their company, the first name and surname of the person to contact, as well as his or her telephone number and email address. In the contact form for potential freelancers, the first name, surname and email address are required. When the message is sent to us, your IP address as well as the date and time of transmission are processed. The legal basis for such processing is provided by Article 6 (1) sentence 1 (f) GDPR and Article 6 (1) sentence 1 (b) GDPR, if contact is aimed at concluding a contract. If the request is aimed at concluding a contract, providing your data is necessary and obligatory if a contract is to be concluded. If the data is not provided, it is not possible to conclude or implement a contract by contacting you or by processing your enquiry. The personal data from the form is processed solely for the purpose of responding to the contact. If we are contacted for non-contractual purposes, then this, too, provides the necessary legitimate interest in processing the data. The other data processed during the sending process are used to prevent misuse of the contact form and to safeguard the security of our IT systems. No data are passed on to third parties in that connection. We delete the ensuing data when processing is no longer necessary (generally two years after communication has ended), or we limit processing, where relevant, to the amount necessary for compliance with statutory archiving obligations.

3. Processing for contractual purposes

We process your personal data if and to the extent necessary to initiate, establish, implement and/or terminate a legal transaction with our company. The legal basis for such processing is found in Article 6 (1) sentence 1 (f) GDPR. Providing your data is necessary for a contract to be concluded and you have a contractual obligation to provide your data. If your data is not provided, it is not possible to conclude and/or implement a contract. Once the purpose (e.g. processing a contract) has been achieved, the personal data are blocked from further processing or deleted, unless we are authorized to continue processing the data on the basis of your consent (e.g. consent to processing of the email address to send electronic advertising), a contractual agreement, statutory authorization (e.g. authorization to send direct mail) or on the basis of legitimate interests (e.g. storage in order to enforce claims).

Your personal data will be forwarded to third parties if and insofar as

this is necessary to establish, implement or terminate legal transactions with our company (e.g. when data are forwarded to a payment service provider / courier company so that a contract with you can be performed) (Article 6 (1) sentence 1 (b) GDPR), or
the data are required by a subcontractor or vicarious agent that we use exclusively to provide the offers or services requested by you (unless you are expressly informed otherwise, such assistants are authorized to process the data only to the extent necessary to provide the offer or service), or
an enforceable official order has been issued (Article 6 (1) sentence 1 (c) GDPR), or
an enforceable court order has been issued (Article 6 (1) sentence 1 (c) GDPR), or
we are obligated to do so by law (Article 6 (1) sentence 1 (c) GDPR), or
processing is necessary order to protect the vital interests of the data subject or another natural person (Article 6 (1) sentence 1 (d) GDPR), or
is necessary for the performance of a task carried out in the public interest or in the exercise of official authority (Article 6 (1) sentence 1 (e) GDPR), or
we can invoke our overriding legitimate interests, or those of a third party, in forwarding the data (Article 6 (1) sentence 1 (f) GDPR).

Your personal data will not be passed on to any other persons, companies or bodies unless you have validly consented to such transfer. The legal basis for processing is then provided by Article 6 (1) sentence 1 (a) GDPR. In the context of this privacy notice, we refer you to the respective recipient with regard to the respective processing.

4. Hosting

We use external hosting services provided by RAIDBOXES GmbH, Friedrich-Ebert-Strasse 7, DE-48153 Münster, which are used to provide the following services: infrastructure and platform services, computing capacity, storage resources and database services, security and technical maintenance services. For these purposes, all the data necessary for operation and use of our website are processed (including the access data referred to under the heading ‘Using our website’). The legal basis for processing said data is found in Article 6 (1) sentence 1 (f) GDPR. Our aim in using external hosting services is to ensure efficient and secure availability of our website.

5. Website management by a digital agency

We use the services of a digital agency, namely 360VIER GmbH, Wambolt’sches Schloss, Curtigasse 6, D-64823 Groß-Umstadt, to help manage our website. As part of this management support, the digital agency may process, in certain circumstances (e.g. for backups), the access data mentioned in the ‘Using our website’ section, in particular your IP address and the data specified in the contact forms.

The legal basis for processing said data is found in Article 6 (1) sentence 1 (f) GDPR. Our aim in using the services of our external digital agency is to ensure efficient and secure availability of our website.