Privacy policy
Thank you for visiting our website. In this Policy, we would like to inform you about how we handle your data in accordance with Art. 13 of the General Data Protection Regulation (GDPR).
Controller
The Controller for the data processing operations described below is the office named in the imprint.
Usage Data
When you visit our website, our web server temporarily evaluates usage data for statistical purposes in order to improve the quality of our website. This data consists of the following data categories:
- the name and address of the requested content,
- the date and time of the query,
- of the transferred data volume,
- the access status (content transferred, content not found),
- the description of the used web browser and operating system,
- the referral link, which indicates from which page you reached ours,
- the IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established.
The above-mentioned log data will only be evaluated anonymously.
Data Security
We take technical and organizational measures to protect your data as comprehensively as possible from unwanted access. These measures include encryption procedures on our web pages. Your data is transferred from your computer to our server and vice versa via the internet using TLS encryption. You can usually recognize this by the fact that the lock symbol in the status bar of your browser is closed and the address line begins with https://.
Contact form / whistleblower system
If you send us an inquiry using the contact form, your details from the inquiry form including the contact details you provide there will be stored in our company for the purpose of processing the inquiry and in case follow-up questions arise. We will not pass on these data without your permission.
The data entered on the contact form will therefore only be processed on the basis of your consent (Art. 6 (1a) GDPR). You can withdraw this consent at any time. To do so, an informal notice sent to us via email is sufficient. Withdrawal of consent will not affect the lawfulness of the data processing transactions carried out up to the withdrawal.
The data which you enter in the contact form will remain with us until you request us to erase them, revoke your consent to their storage or the purpose for their storage no longer applies (e.g. after your inquiry has been processed). Mandatory statutory provisions – especially those related to retention periods – remain unaffected.
Necessary Cookies
On our website, we use cookies which are necessary in order for the site to function.
Cookies are small text files that can be placed on your computer or mobile device by websites that you visit. A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session.
We do not use these necessary cookies for analysis, tracking or advertising purposes.
In some cases, these cookies only contain information on certain settings and cannot be linked to a person. They may also be necessary to enable user guidance, security and implementation of the site.
The legal basis for using these cookies is our legitimate interest according to Art. 6(1) (f) GDPR.
You can set your browser to inform you about the placement of cookies. This is in order to make the use of cookies transparent for you. You can also delete cookies or prevent the setting of new cookies at any time by using the appropriate browser settings. Please note that if you delete certain cookies, our web pages may not be displayed correctly and some functions may no longer be available.
| Provider | Purpose | Storage period | Appropriate Level of data protection |
| Provider of this website, wpd windmanager GmbH & Co. KG | Saves the settings of visitors selected in the Cookie Box of Borlabs Cookie. | 1 year | yes |
Matomo
We use the web analysis tool “Matomo” to design our websites according to your needs. Matomo creates user profiles based on pseudonyms. For this purpose, permanent cookies are stored on your end device and accessed by us. In this way we are able to recognize and measure returning visitors.
The data processing is based on your consent in accordance with Art. 6(1) (a) GDPR. or §15 S. 3 Nr. 1 German Telemedia Act (TMG) if you have given your consent via our cookie banner. You can revoke your consent at any time. Please follow this link and make the appropriate settings via our banner.
Embedded Videos
On our websites, we embed videos that are not hosted on our servers. In order to ensure that accessing our websites containing embedded videos does not automatically lead to the download of third-party content, we only show locally hosted preview images of the videos as a first step. As a result, the third-party provider does not receive any information.
Only after you click on the preview image, is content from the third-party provider downloaded. This provides the third party with information that you have accessed our site and with the usage data technically required for this purpose. Furthermore, the third party provider is then able to implement tracking technologies. We have no influence on the further data processing by the third-party provider. By clicking on the preview image, you give us your consent to download content from the third-party provider. You can revoke your consent at any time. Please follow this link and make the appropriate settings via our banner.
The embedding is based on your consent in accordance with Art. 6 (1) (1a) GDPR, provided that you have given your consent by clicking on the preview image. Please note that the embedding of many videos leads to your data being processed outside the EU or EEA. In some countries, there is a risk that authorities may access the data for security and surveillance purposes without informing you or allowing you to take legal action. Where we use providers in third countries without an adequate level of protection and you give your consent, the transfer to this third country is based on Art. 49(1)(a) GDPR.
| Third party provider | Adequate level of data protection | Revocation of consent |
| YouTube / Google (USA) | No adequate level of data protection. The data is transmitted on the basis of Art. 49 (1a) GDPR. | If you click on a preview image, the content of the third-party provider is immediately downloaded. To avoid this downloading on other sites, please do not click on the preview image or change the settings via our banner. |
| Vimeo (USA) | No adequate level of data protection. The data is transmitted on the basis of Art. 49 (1a) GDPR. | If you click on a preview image, the content of the third-party provider is immediately downloaded. To avoid this downloading on other sites, please do not click on the preview image or change the settings via our banner. |
Access Protected Area
If you wish to use our access-protected area, your prior registration is required. We only collect the data required for registration.
The legal basis for the data processing is our legitimate interest to be able to provide you with the services and information available in the access-protected area according to Art. 6 (1) (b) or for the performance of a contract according to Art. 6 (1) (f) GDPR.
If we collect additional data during this process, these will be marked as voluntary and the processing is based on your consent in accordance with Art. 6 (1) (a) GDPR.
If you would like to permanently log out of our access-protected area, please use the logout option which we make available within the area.
Registration for the wpd Inside Newsletter
You may order our newsletter from our internet site wpd.de/aktuelles/wpd-inside/. Please note that, for the registration for our newsletter, we require certain data (your e-mail address is the minimum requirement).
The newsletter will only be dispatched should you have given your explicit consent in accordance with Art. 6 Para. 1 Clause 1 lit. a GDPR. After placement of an order on our websites, you will receive a confirmation e-mail to the e-mail address you have indicated (so-called double opt-in). You may revoke your consent at any time. An uncomplicated possible way of doing so is, for example, available to you in the shape of the link to de-registration to be found in every newsletter.
In the context of registration for the newsletter, we shall, in addition to the data already referred to, also store other data inasmuch as these should be necessary, for example, to enable us to prove that you have ordered our newsletter. This may encompass the storage of the full IP address at the time of the ordering or confirmation of the newsletter, as well as a copy of the confirmation mail sent to us. The relevant data processing shall be effected on the basis of Art. 6 Para. 1 Clause1 lit. f GDPR and for the purpose of being able to account for the legality of sending the newsletter.
Map Services
On our web sites, we embed map services which are not stored on our servers. In order to prevent the automatic downloading of third-party content when you visit our web sites with embedded map services, we only show locally stored preview images of the maps as a first step. This does not provide the third-party provider with any information.
Only after you click on the preview image, will third-party content be downloaded. This provides the third party with information that you have accessed our site and with the usage data technically required for this purpose. We have no influence on the further data processing by the third-party provider.
By clicking on the preview image, you give us the consent to download contents of the third-party provider. You can revoke your consent at any time. Please follow this link and make the appropriate settings via our banner.
The legal basis for the embedding processing is your consent according to Art. 6 (1) (a) GDPR or §15 S. 3 Nr. 1 German Telemedia Act (TMG), provided that you have previously given your consent by clicking on the preview image.
Please note that the embedding of some map services means that your data may be processed outside the EU or EEA. In some countries, there is a risk that authorities may access the data for security and surveillance purposes without informing you or allowing you to take legal action. Where we use providers in third countries without an adequate level of protection and you give your consent, the transfer to this third country is based on Art. 49(1)(a) GDPR.
| Provider | Data Retention | Adequate Data Protection Level | Withdrawal of Consent |
| Google LLC (USA) | No adequate level of data protection. The data is transferred on the basis of Art. 49 (1) a GDPR | If you have clicked on a preview image, the content of the third-party provider is immediately downloaded. To avoid this downloading on other sites, please do not click on the preview image or change the settings via our banner. |
Retention Periods
Unless otherwise specified, we will delete your personal data if they are no longer required for the relevant processing purposes and no legal retention obligations oppose deletion.
Your rights as a data subject
When processing your personal data, the GDPR grants you certain rights as a data subject:
Right of access by the data subject (Art. 15 GDPR)
You have the right to obtain confirmation as to whether personal data concerning you are being processed; if this is the case, you have the right to be informed of this personal data and to receive the information specified in Art. 15 GDPR.
Right to rectification (Art. 16 GDPR)
You have the right to rectification of inaccurate personal data concerning you and, taking into account the purposes of the processing, the right to have incomplete personal data completed, including by means of providing a supplementary statement without delay.
Right to erasure (Art. 17 GDPR)
You have the right to obtain the erasure of personal data concerning you without undue delay if one of the reasons listed in Art. 17 GDPR applies.
Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you have objected to the processing, for the duration of our examination.
Right to data portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format, or to request that this data be transferred to a third party.
Right to withdraw consent (Art. 7 GDPR)
If the processing of data is based on your consent, you are entitled to withdraw your consent to the use of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the withdrawal is only effective for the future. Processing that took place before the withdrawal is not affected.
Right to object (Art. 21 GDPR)
If data is collected on the basis of Art. 6 (1) 1 f GDPR (data processing for the purpose of our legitimate interests) or on the basis of Art. 6 (1) 1 e GDPR (data processing for the purpose of protecting public interests or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are compelling legitimate grounds for the processing which override your interests, rights and freedoms or if data is still needed for the establishment, exercise or defence of legal claims.
Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
According to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. This right may be asserted in particular with a supervisory authority in the Member State of your habitual residence, your place of work or the place of the suspected infringement.
Asserting your rights
Unless otherwise described above, please contact us to assert your rights. You will find our contact details in our imprint.
Questions about data protection
If you have any questions about data protection, please contact our data protection department:
Phone: +49 (0) 421 16866 -10
Email: datenschutz@wpd.de
Contact details of our data protection officer
Our external data protection officer is available to provide further information on data protection.
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen
Web: www.datenschutz-nord-gruppe.de
E-Mail: office@datenschutz-nord.de
When contacting our data protection officer, please specify the name of the company, stated in our imprint.
