Data protection declaration

Thank you for visiting our website. The foundation “Deutsche Stiftung Denkmalschutz” (“German Foundation for Monument Protection”, hereinafter “Deutsche Stiftung Denkmalschutz”, “we” or “us”) attaches great importance to the security of user data and compliance with data protection regulations, and we wish to inform you in the following about how your personal data are processed on our website.

Further data protection declarations:
- Information for applicants can be found here 
- Information for founders, donors, interested parties
- Information Data collection during the Coronavirus pandemic

Data controller and data protection officer

Data controller:

Deutsche Stiftung Denkmalschutz
Schlegelstraße 1
53113 Bonn
Tel.: +49 (0)228 90 91-0
E-Mail: info@denkmalschutz.de

External data protection officer:

Deutsche Datenschutzkanzlei
Stefan Fischerkeller
Tel.: +49 (0)7542 949 21 00
E-Mail: datenschutz@denkmalschutz.de

Terms

The technical terms used in this data protection declaration should be understood as they are legally defined in Art. 4 GDPR.

Important information on data processing

Automated data processing (log files etc.)

You can visit our site without actively providing any personal information. However, each time you access the website, we automatically store for 14 days access data (server log files), such as the name of your internet service provider, your operating system, the website from which you are visiting us, the date and duration of your visit or the name of the file requested, and, for security reasons - e.g. to detect attacks on our website - the IP address of the computer being used. These data are evaluated exclusively for the purpose of improving our offer and cannot be used to trace you as an individual. These data are not merged with other data sources. The legal basis for the processing of these data is Art. 6 (1) (f) GDPR. We process and use these data for the following purposes: 1. provision of the website, 2. to improve our website and 3. to prevent and detect errors/malfunctions and misuse of the website. This processing is carried out in the pursuit of our legitimate interests in ensuring the functionality and the error-free and secure operation of this website and to facilitate the adaptation of this website to user requirements.

Use of cookies (general, functioning, opt-out links, etc.)

We use cookies on our website to make visiting it an attractive experience and to allow the use of certain functions. The use of cookies serves our legitimate interest in making your visit to our website as pleasant as possible and is based on Art. 6 [1] [f] GDPR. Cookies are a type of standard internet technology used to store and retrieve login and other usage information for all website users. Cookies are small text files that are stored on your end device. Among other things, they allow us to store user preferences so that our website can be displayed in a format tailored to your device. Some of the cookies we use are deleted as soon as the browser session ends, i.e. after you close your browser (these are known as “session cookies”). Other cookies remain on your end device and enable us (or our partner companies) to recognise your browser upon your next visit (these are known as “permanent cookies”).

You can set up your browser to notify you of the placement of cookies so that you can decide whether to accept cookies on an individual basis or to reject them either in certain instances or as a general principle. In addition, the cookies can be deleted retrospectively to remove any data which the website has stored on your computer. The deactivation of cookies (“opt-out”) may lead to some restrictions in the functionality of our website.

Categories of data subjects: Website visitors, users of online services

Opt-out:
Internet Explorer: https://support.microsoft.com/en-us/topic/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d?ui=en-us&rs=en-gb&ad=gb
Firefox: https://support.mozilla.org/en-US/kb/how-do-i-turn-do-not-track-feature
Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
Safari: https://support.apple.com/en-us/HT201265

Legal basis: Consent (Art. 6 [1] [a] GDPR); legitimate interests (Art. 6 [1] [f] GDPR)

The relevant legal basis in each case is specifically stated with the corresponding tool.

Legitimate interests: the storage of opt-in preferences, website presentation, ensuring website functionality, the preservation of a user’s status across the entire website, the recognition of visitors upon their next visit to the website, creating a user-friendly online offer, ensuring that the chat function is in working order

Online marketing

In order to continuously increase our reach and generate more awareness of our online offer, we process personal data in the context of online marketing, in particular with regard to potentially interested parties, and to measure the efficacy of our marketing campaigns.

Relevant information is stored in cookies or similar procedures are used for the purpose of measuring the efficacy of our marketing campaigns and identifying potentially interested parties. The data stored in the cookies may include the content viewed and websites visited, as well as the settings, functions and systems used. As a rule, however, no real user ID data are processed for the purposes described. The data are then altered in such a way that neither we nor the provider of the tool being used may know the actual identity of the visitor. The data which are modified in this way are often stored in user profiles.

In the event of the storage of user profiles, the data can be read out, supplemented and added to on the server of the online marketing procedure when visiting other sites which use the same online marketing procedure.

We can determine the success of our adverts based on aggregated data made available to us by the provider of the online marketing procedure (conversion measurement). In the context of these conversion measurements, we are able to track whether a marketing measure has led to a purchase decision by the visitor to our online offer. This evaluation helps us analyse the success of our online marketing.

Categories of data subjects: Website visitors, users of online services, interested parties, communication partners, business and contractual partners

Categories of data: User data (e.g. websites visited, interest in content, access times), meta- and communication data (e.g. device information, IP addresses), location data, contact data, content data

Purposes of processing: Marketing (in part also interest-based and behavioural), conversion measurement, target group formation, click tracking, the development of marketing strategies and to increase the efficiency of campaigns

Legal basis: Consent (Art. 6 [1] [a] GDPR); legitimate interests (Art. 6 [1] [f] GDPR)

Legitimate interests: Optimisation and ongoing development of the website, to increase profits, customer retention and new customer acquisition

Matomo

Service Used: InnoCraft Ltd, 150 Willis St., 6011 Wellington, New Zealand.
Data protection: matomo.org/privacy-policy/

Legal basis: Legitimate interest (Art. 6 para. 1 lit. f) DSGVO).

→ If you have already agreed to the use of Matomo, you can revoke this consent at the bottom of the page.
 

Google AdWords and conversion measurement

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data protection: https://policies.google.com/privacy
Opt-out link: https://tools.google.com/dlpage/gaoptout?hl=en or https://myaccount.google.com/
Legal basis: Consent (Art. 6 [1] [a] GDPR)Google AdWords und Konversionsmessung

LinkedIn

Service used: LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Data protection: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
Opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Legal basis: Consent (Art. 6 [1] [a] GDPR)

Social media presences

We maintain online presences on social networks and career platforms so that we can exchange information and easily establish contact with the users registered there.

In certain cases, the data of social network users are used to conduct market research and, therefore, for advertising purposes. User profiles can be created based on the usage behaviour of users, e.g. statements of interests, and can be used to adapt advertisements to the interests of target groups. To this end, cookies are regularly stored on the end devices of users, in part irrespective of whether they are registered users of the social network in question.

We also use the associated messenger and chat functions in connection with the integration of social media so that we can easily communicate with users. We would point out that the security of individual services may depend on the user’s account settings. Even in the case of end-to-end encryption, the service provider can draw the conclusion that users are communicating with us (and when they are doing so) and may be able to collect location data.

Depending on where the social network is operated, user data may be processed outside the European Union or the European Economic Area. This can result in risks for users, for example, because it can be more difficult for them to assert their rights.

Categories of data subjects: Registered and non-registered users of the social network

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), content data (e.g. text, photographs, videos), usage data (e.g. websites visited, interests, access times), meta- and communication data (e.g. device information, IP address)

Purposes of processing: Range extension, networking

Legal basis: Legitimate interests (Art. 6 [1] [f] GDPR); consent (Art. 6 [1] [a] GDPR)

Legitimate interests: Interaction and communication on a social media site, increase in profits, insights into target groups

Instagram

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection: https://help.instagram.com/519522125107875 and https://www.facebook.com/about/privacy
Opt-out link: https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_security/

Facebook

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection: https://www.facebook.com/privacy/explanation and https://www.facebook.com/legal/terms/page_controller_addendum
Opt-out link: https://www.facebook.com/policies/cookies/ 

Flickr

Service used: Flickr Inc., 67 E Evelyn Avenue, Mountain View, CA 94041, USA
Data protection: https://flickr.com/help/privacy
Opt-out link: https://www.flickr.com/help/cookies

LinkedIn

Service used: LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Data protection: https://www.linkedin.com/legal/privacy-policy
Opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Pinterest

Service used: Pinterest Inc., 651 Brannan Street, San Francisco, CA 94103, USA
Data protection: https://policy.pinterest.com/de/privacy-policy
Opt-Out-Link: policy.pinterest.com/de/cookies

YouTube

Service used: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data protection: policies.google.com/privacy
Opt-out link: tools.google.com/dlpage/gaoptout or myaccount.google.com

Xing

Service used: New Work SE, Dammtorstrasse 30, 20354 Hamburg, Germany
Data protection: https://privacy.xing.com/en/privacy-policy
Tracking settings: https://privacy.xing.com/en/privacy-policy/information-we-automatically-receive-through-your-use-of-xing

Plug-ins and integrated third-party content

We have integrated functions and contents from third-party providers into our online offer. For example, videos, images, buttons or posts (hereinafter referred to as content) may be integrated.

In order to be able to display content to visitors who access our online offer, the third-party provider in question processes information including the user’s IP address so that the content can be transmitted to the browser and displayed to the user. Without this processing, the integration of third-party content is not possible.

In certain cases, additional information is collected via so-called pixel tags or web beacons, whereby the third-party provider receives information about the use of the content of, or visitor traffic to, our online offer, as well as technical information concerning the user’s browser or operating system, the time of the visit or referring websites. The data obtained in this way are stored in cookies on the user’s end device.

Categories of data subjects: Users of the plug-in or embedded third-party content

Categories of data: Usage data (e.g. websites visited, interests, time of access), meta- and communication data (e.g. device information, IP address), contact data (e.g. email address, telephone number), master data (e.g. name, address)

Purposes of processing: To design our online offer, to increase the reach of social media ads, to share posts and content, interest- and behaviour-based marketing, cross-device tracking

Legal basis: Consent (Art. 6 [1] [a] GDPR)

Google Maps

Service used: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Data protection: policies.google.com/privacy
Opt-out link: tools.google.com/dlpage/gaoptout or myaccount.google.com
Legal basis: Consent (Art. 6 [1] [a] GDPR)

YouTube

Service used: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Data protection: policies.google.com/privacy
Opt-out link: tools.google.com/dlpage/gaoptout or myaccount.google.com
Legal basis: Consent (Art. 6 [1] [a] GDPR)

Online conferences, meetings and seminars

We make use of the possibility we have to host online conferences, meetings and online seminars. To this end, we use the services of other carefully selected providers.

During the active use of such offers, data from the communication participants are processed and stored on the servers of those third-party providers to the extent that the data concerned are required for the communication process. Usage and metadata may also be processed.

Categories of data subjects: Participants in the online offer in question (conference, meeting, seminar)

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), content data (e.g. text, photographs, videos), meta- and communication data (e.g. device information, IP addresses)

Purposes of processing: To process enquiries, to increase efficiency, to promote cross-company or cross-location cooperation

Legal basis: Consent (Art. 6 [1] [a] GDPR)

edudip

Service used: edudip GmbH, Jülicher Str. 306, 52070 Aachen, Germany
Data protection: https://www.edudip.com/en/privacy
Legal basis: Legitimate interests (Art. 6 [1] [f] GDPR); consent (Art. 6 [1] [a] GDPR)

Cisco WebEx

Service used: Cisco Systems, Inc., 170 West Tasman Dr., San Jose, CA 95134, USA
Data protection: https://www.cisco.com/c/de_de/about/legal/privacy-full.html
Legal basis: Consent (Art. 6 [1] [a] GDPR)

TeamViewer

Service used: TeamViewer GmbH, Jahnstr. 30, 73037 Göppingen, Germany
Data protection: https://www.teamviewer.com/en/privacy-policy/?t=1612351393106
Legal basis: Consent (Art. 6 [1] [a] GDPR)

Payment service providers

So that we can easily make and receive payments, we use various payment service providers in addition to banks and other financial institutions.

To ensure that transactions are particularly convenient and uncomplicated for visitors to our online offer, payments to us can also be made via payment service providers. The payment service providers process the data required for the transaction; when using the services of the payment service provider, we do not receive any of the data which visitors to our online offer have given them. When using a payment service provider, we merely receive notification confirming a positive or negative payment outcome.

Categories of data subjects: Clients

Categories of data: Master data (e.g. name, address), transaction data (bank details, invoices, payment history), contract data (e.g. subject matter of contract, term), meta- and communication data (e.g. device information, IP address), contact data (e.g. email address, telephone number)

Purposes of processing: Simplification of order and payment processing, outsourcing, data minimisation

Legal basis: Legitimate interests (Art. 6 [1] [f] GDPR)

Legitimate interests: Simplification of workflows, resource-efficient fulfilment, market research, service provision

Fundraisingbox:

Service used: Wikando GmbH, Schießgrabenstr. 32, 86150 Augsburg, Germany
Data protection: https://www.fundraisingbox.com/datenschutz/

Sofortüberweisung

Service used: SOFORT GmbH, Theresienhöhe 12, 80339 München, Germany
Data protection: https://www.klarna.com/pay-now/privacy-policy/

Mastercard

Service used: Mastercard Europe SA, Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium
Data protection: https://www.mastercard.co.uk/en-gb/vision/terms-of-use/commitment-to-privacy/privacy.html

PayPal

Service used: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg
Data protection: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full

Visa

Service used: Visa Europe Services Inc., London Branch, 1 Sheldon Square, London W2 6TT, United Kingdom
Data protection: https://www.visa.co.uk/legal/privacy-policy.html

Use of survey services on the website with data transfer

We conduct surveys and polls (hereinafter referred to as “surveys”) on our online offer. These help us improve our offers and respond more effectively to the needs of our customers. We do not need to be able to trace whether we can assign feedback to a specific individual. Before evaluating your survey input, the data which we process for the provision and technical implementation of our surveys are anonymised. Participation in the survey is voluntary.

Categories of data subjects: Participants in surveys

Categories of data: Meta- and communication data (e.g. device information, IP address), usage data (e.g. interests, access times), master data (e.g. name, address), contact data (e.g. email address, telephone number)

Purposes of processing: Marketing, customer retention and acquisition, improvement/optimisation of the offer

Legal basis: Consent (Art. 6 [1] [a] GDPR)

SurveyMonkey

Service used: SurveyMonkey Inc., 1 Curiosity Way, San Mateo, CA 94403, USA
Data protection: https://www.surveymonkey.de/mp/policy/privacy-policy/?ut_source=footer

Newsletter and broad communication (potentially with tracking)

On our online offer, users have the option to subscribe to our newsletter or notifications via various channels (hereinafter referred to collectively as newsletters). We send newsletters only to recipients who have consented to receive them and within the framework of the statutory provisions. We use a selected service provider to send our newsletter.

To subscribe to our newsletter, you have to provide an email address. If necessary, we will collect additional data, e.g. to incorporate a personal form of address into our newsletter.

Our newsletter will only be sent once the double opt-in procedure has been completed. If visitors to our online offer decide to subscribe to our newsletter, they will receive a confirmation email which serves to prevent the misuse of false email addresses and to exclude the possibility that a simple, potentially accidental click has triggered the sending of the newsletter. Subscription to our newsletter can be terminated at any time with effect for the future. An unsubscribe link (opt-out link) is included at the end of each newsletter.

Furthermore, we are obliged to provide proof that our subscribers actually wished to receive the newsletter. To this end, we collect and store the IP address and the time of login and logout.

Our newsletters are designed to allow us to gain insights regarding potential improvements, target groups or the reading behaviour of our subscribers. This enables us to use a web beacon or a tracking pixel which reacts to interactions with the newsletter, e.g. whether links are clicked on, whether the newsletter is opened at all, or at what time the newsletter is read. We may assign this information to individual subscribers for technical reasons.

Categories of data subjects: Newsletter subscribers

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), meta- and communication data (e.g. device information, IP address), usage data (e.g. interests, access times)

Purposes of processing: Marketing, customer retention and new customer acquisition, analysis and evaluation of the campaign’s success

Legal basis: Consent (Art. 6 [1] [a] GDPR)

Facebook-Messenger Broadcasts

Service used: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection: https://www.facebook.com/privacy/explanation
Opt-out link: https://www.facebook.com/settings?tab=ads

Maileon

Service used: XQueue GmbH, Christian-Pleß-Str. 11.13, 63069 Offenbach am Main, Germany
Data protection: https://www.maileon.de/datenschutz/

Promotional communication

We also use data provided to us for advertising purposes, in particular to provide information across various channels regarding news from us or our portfolio of offers. However, we will only contact you for advertising purposes within the framework of statutory requirements and – where necessary – once we have obtained your consent.

If recipients of our advertising do not wish to receive it, they may let us know at any time with effect for the future. We will be happy to comply with their request.

Categories of data subjects: Communication partners

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number),

Purposes of processing: Direct marketing

Legal basis: Consent (Art. 6 [1] [a] GDPR); legitimate interests (Art. 6 [1] [f] GDPR)

Legitimate interests: To retain existing contacts and acquire new contacts or contractual partners

Prize draws and competitions

We use our online presences to run prize draws and hold competitions. In doing so, we process the participant data required for the implementation of the campaign in question. These also include the data which we need to inform the winner and pay out the prize.

Depending on the nature of the campaign, contributions from or about the participants may be published, for example, when reporting on the campaign, or if consultation on a contribution submitted by the participant is part of the campaign itself. The name of the participant will also be published. Which data we process in individual instances depends on the specific campaign and the data we receive from the participant.

Categories of data subjects: Campaign participants

Categories of data: Master data (e.g. name, address), content data (e.g. text, photos, videos)

Purposes of processing: To conduct the prize draw, including pay-out of the prize and the announcement of the winner across various media

Legal basis: Consent (Art. 6 [1] [a] GDPR)

Establishing contact

On our online offer, we provide the option to contact us directly or to obtain information via various contact options.

If contact is established, we will process the data of the person making the enquiry to the extent necessary to answer or process the enquiry. Depending on how contact is established with us, the data subject to processing may vary.

Categories of data subjects: Enquiring persons

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), content data (e.g. text, photographs, videos), usage data (e.g. interests, access times), meta- and communication data (e.g. device information, IP address).

Purposes of processing: Processing of enquiries

Legal basis: Consent (Art. 6 [1] [a] GDPR); contract fulfilment or initiation (Art. 6 [1] [b] GDPR)

Registration

We offer the option to create a user account for our online offer. In the context of registration, we collect the data from interested visitors which we require to set up a user account and enable the associated functions.

To protect the use of this internal area, we collect the IP addresses and the time of access to prevent misuse of a user account and other forms of unauthorised use. We do not pass these data on to third parties unless to do so is necessary to assert a claim or we are legally obliged to do so.

Categories of data subjects: Registered users

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), content data (e.g. text, photographs, videos), meta- and communication data (e.g. device information, IP addresses), usage data (e.g. websites visited, interests, access times)

Purposes of processing: Streamlining of website function, contract fulfilment, customer retention

Legal basis: Consent (Art. 6 [1] [a] GDPR)

Events and functions

Within our online offer, visitors have the option to register for events. The information we collect which is required for the initiation and fulfilment of the contract is highlighted as mandatory information. The provision of additional data is voluntary.

Categories of data subjects: Participants, interested parties

Categories of data: Master data (e.g. name, address), contact data (e.g. email address, telephone number), transaction data (bank details, invoices, payment history), contract data (e.g. subject matter of the contract, term)

Purposes of processing: Contract initiation and execution

Legal basis: Contract initiation and execution (Art. 6 [1] [b] GDPR), consent (Art. 6 [1] [a] GDPR)

Data transfer

We transfer the personal data of visitors to our online offer for internal purposes (e.g. for internal administration or to the HR department to comply with the relevant statutory or contractual obligations). The internal transfer of data or the disclosure of data takes place only to the extent necessary and in compliance with all relevant data protection regulations.

Legal basis: Legitimate interests (Art. 6 [1] [f] GDPR)

Legitimate interests: Data sharing within a company group for ease of administration, centralised management and administration in the company for the use of synergy effects, cost savings, to increase efficacy

To execute contracts or comply with a legal obligation, it may be necessary for us to disclose personal data. If the data required in this respect are not provided to us, we may not be able to conclude the contract with the data subject.

We transfer data to countries outside the EEA (third countries). This is done on the basis of the above-mentioned purposes (transfer within the Group and/or other recipients). This transfer takes place only for the fulfilment of our contractual and statutory obligations or on the basis of the previously granted consent of the data subject. Furthermore, this transfer takes place in compliance with the applicable data protection laws and, in particular, in accordance with Art. 44 et seq. GDPR, in particular, on the basis of adequacy decisions adopted by the European Commission, or on the basis of certain guarantees (e.g. standard data protection clauses, etc.).

Retention period

In principle, we store the data of visitors to our online offer for as long as is necessary for the provision of our service or insofar as this has been provided for by the European legislator responsible for all pertinent Directives and Regulations or another body tasked with the drafting and enactment of laws or regulations to which we are subject. In all other cases, we delete the personal data after the purpose has been fulfilled, with the exception of data that we must continue to store for the purpose of compliance with our statutory obligations (e.g. we are obliged to retain documents such as contracts and invoices for a certain period of time in accordance with the retention periods stipulated under tax and commercial law).

Automated decision-making

We do not use automated decision-making or profiling.

Legal bases

The relevant legal bases are primarily derived from the GDPR. These are supplemented by national laws of the Member States and may be applicable in conjunction with, or in addition to, the GDPR.

Consent: Art. 6 [1] [a] GDPR serves as the legal basis for processing operations for which we have obtained consent for a specific processing purpose.

Contract performance: Art. 6 [1] [b] GDPR serves as the legal basis for processing operations deemed necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the request of the data subject.

Legal obligation: Art. 6 [1] [c] GDPR serves as the legal basis for processing which is necessary for the fulfilment of a statutory obligation.

Vital interests: Article 6 [1] [d] GDPR serves as the legal basis if the processing is necessary to protect the vital interests of the data subject or another natural person.

Public interest: Article 6 [1] [e]GDPR serves as the legal basis for processing operations deemed necessary for the performance of a task which is carried out in the public interest or in the exercise of official authority vested in the data controller.

Legitimate interest: Article 6 [1] [f] GDPR serves as the legal basis for data processing deemed necessary to protect the legitimate interests of the data controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

Rights of the data subjects

Right of access: Pursuant to Article 15 GDPR, data subjects have the right to request confirmation as to whether we are processing data relating to them. They may request access to information concerning these data and to the additional information listed in Art. 15 [1] GDPR and a copy of their data.

Right of rectification: Pursuant to Art. 16 GDPR, data subjects have the right to request the rectification or completion of data concerning them which are processed by us.

Right to erasure: Data subjects have the right pursuant to Art. 17 GDPR to demand the immediate erasure of data concerning them. Alternatively, they may request that we restrict the processing of their data pursuant to Art. 18 GDPR.

Right to data portability: Pursuant to Art. 20 GDPR, data subjects have the right to request that the data they have provided to us be made available and transferred to another data controller.

Right to lodge a complaint: Data subjects also have the right pursuant to Art. 77 GDPR to lodge a complaint with the competent supervisory authority.

Right to object: To the extent that personal data are processed on the basis of legitimate interests pursuant to Art. 6 [1] [1] [f] GDPR, data subjects have the right pursuant to Art. 21 GDPR to object to the processing of their personal data, insofar as grounds exist for doing so which arise from their particular situation or if the objection is directed against the use of direct advertising. In the latter case, data subjects have a general right to object without specifying a particular situation, which we will acknowledge.

Revocation

Some data processing operations are only permissible with the explicit consent of the data subjects. You have the option to revoke any previously granted consent at any time. An informal message or email containing this declaration of revocation to datenschutz@denkmalschutz.de will be sufficient. The legality of any data processing conducted prior to this revocation remains unaffected.

External links

On our website, you will find links to the online offers of other providers. We would draw your attention to the fact that we have no influence on the content of the linked online offers and the level of compliance with data protection regulations by their providers.

Changes

We reserve the right to change this data protection declaration at any time in the event of alterations to our online offer and in compliance with the applicable data protection regulations so that it continues to satisfy the relevant statutory requirements.

This data protection declaration was drafted by Deutsche Datenschutzkanzlei - Tettnang Office

Customize cookie settings

Here you can update your cookie settings