1) Introduction and Contact Details of the Controller
1.1
We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about how your personal data is handled when using our website. Personal data refers to all data with which you can be personally identified.
1.2
The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:
Jonathan Keshavarz Adeli, Zeil 81, 60313 Frankfurt am Main, Germany
Phone: +49 692 9922589
Fax: +49 692 9922589
Email: info@pcrf-gmbh.de
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data.
2) Data Collection When Visiting Our Website
2.1
When you use our website for informational purposes only (i.e., if you do not register or otherwise provide us with information), we only collect data that your browser transmits to our server (so-called “server log files”).
When you access our website, we collect the following data, which is technically necessary to display the website:
- The website visited
- Date and time of access
- Amount of data sent (in bytes)
- Source/referral from which you accessed the page
- Browser used
- Operating system used
- IP address used (possibly anonymized)
Processing is carried out in accordance with Art. 6(1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website. The data is not shared or used in any other way. However, we reserve the right to check server log files retrospectively if there are concrete indications of unlawful use.
2.2
For security reasons and to protect the transmission of personal data and other confidential content (e.g., orders or inquiries), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the “https://” string and the lock symbol in your browser bar.
3) Hosting & Content Delivery Network
For hosting our website and displaying page content, we use a provider that delivers its services exclusively on servers within the European Union, either itself or through selected subcontractors.
All data collected on our website is processed on these servers.
We have concluded a data processing agreement with the provider to ensure the protection of our visitors’ data and to prohibit unauthorized disclosure to third parties.
4) Contacting Us
When you contact us (e.g., via contact form or email), personal data is collected. The specific data collected via a contact form can be seen in the respective form.
This data is used exclusively to respond to your request or to contact you and for related technical administration.
The legal basis for processing this data is our legitimate interest in responding to your request pursuant to Art. 6(1)(f) GDPR. If your contact aims at concluding a contract, the additional legal basis is Art. 6(1)(b) GDPR.
Your data will be deleted after your request has been fully processed. This is the case if it can be inferred that the matter has been conclusively clarified and provided that no legal retention obligations oppose deletion.
5) Website Functionalities
Google Translate
This website uses the translation service Google Translate via API integration from Google Ireland Limited.
To automatically display translations in your selected language, your browser connects to Google’s servers. In the process, certain browser information, including your IP address, is transmitted to Google.
Google may use cookies (small text files stored on your device) to save language settings. Information generated by cookies about your use of this website (including shortened IP address) is usually transmitted to a Google server and stored there.
Processing may also involve transmission to servers of Google LLC in the USA.
If cookies are set when using Google Translate, the processing described above only takes place if you have given your explicit consent in accordance with Art. 6(1)(a) GDPR. You can revoke your consent at any time with effect for the future by disabling this service in the “cookie consent tool” provided on the website.
If no cookies are set, processing is carried out in accordance with Art. 6(1)(f) GDPR based on our legitimate interest in optimally marketing our offer and designing a broad-reaching online presence.
For data transfers to the USA, the provider participates in the EU-US Data Privacy Framework, which ensures compliance with European data protection standards based on an adequacy decision of the European Commission.
Further information about Google’s privacy policy can be found here:
https://business.safety.google/intl/en/privacy/
6) Rights of the Data Subject
6.1
Applicable data protection law grants you the following rights with regard to the processing of your personal data:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to notification (Art. 19 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to withdraw consent (Art. 7(3) GDPR)
- Right to lodge a complaint (Art. 77 GDPR)
6.2 Right to Object
If we process your personal data based on a balancing of interests (legitimate interest), you have the right to object at any time, on grounds relating to your particular situation, with effect for the future.
If you exercise your right to object, we will stop processing the affected data. However, further processing may be reserved if we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or if processing serves the establishment, exercise, or defense of legal claims.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to processing for such purposes. If you object, we will stop processing your data for direct marketing.
7) Duration of Storage of Personal Data
The duration of storage of personal data depends on the respective legal basis, the purpose of processing, and—if applicable—statutory retention periods (e.g., commercial and tax law requirements).
- If data is processed based on consent (Art. 6(1)(a) GDPR), it is stored until you withdraw your consent.
- If legal retention periods apply (Art. 6(1)(b) GDPR), data is routinely deleted after these periods expire, provided it is no longer required for contract fulfillment or initiation and no legitimate interest in further storage exists.
- If data is processed based on legitimate interest (Art. 6(1)(f) GDPR), it is stored until you exercise your right to object under Art. 21(1) GDPR, unless overriding legitimate grounds exist.
- For direct marketing (Art. 6(1)(f) GDPR), data is stored until you object under Art. 21(2) GDPR.
Unless otherwise specified, stored personal data is deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.