Privacy policy
We are pleased that you are visiting our website. The protection and security of your personal information when using our website is very important to us. Therefore, we would like to inform you here about which of your personal data we collect when you visit our website and for what purposes they are used. This privacy policy applies to the online presence of Novolos 01 GmbH, which is accessible under the domain novolos01.com and the various subdomains (“our website”).
Who is responsible and how do I reach the data protection officer?
Responsible Party
for the processing of personal data in accordance with the EU General Data Protection Regulation (GDPR):
Novolos 01 GmbH
+49 221 66 999 - 700
info@novolos01.com
Data Protection Officer
Tulos Consulting GmbH
Christophstrasse 15-17
50968 Cologne
Roderich Pilar
rp@tulos.de
What is this about?
This privacy policy fulfills the legal requirements for transparency in the processing of personal data. These are all the information relating to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, email address, IP address, or user behavior when visiting a website. Information for which we cannot (or only with disproportionate effort) establish a reference to your person, e.g., by anonymization, is not personal data. The processing of personal data (e.g., collecting, querying, using, storing, or transferring) always requires a legal basis and a defined purpose.
Stored personal data will be deleted as soon as the purpose of the processing has been achieved and there are no legal reasons for further retention of the data. We inform you about the specific storage periods or criteria for storage in the individual processing operations. Regardless, we store your personal data in individual cases to assert, exercise, or defend legal claims and in the presence of statutory retention obligations.
Who gets my data?
We only pass on your personal data processed on our website to third parties if this is necessary for the fulfillment of the purposes and is covered by the legal basis (e.g., consent or the protection of legitimate interests). Additionally, we may pass on personal data to third parties in individual cases if this serves the assertion, exercise, or defense of legal claims. Possible recipients can then be, for example, law enforcement authorities, lawyers, auditors, courts, etc.
If we use service providers for the operation of our website who process personal data on our behalf in accordance with Art. 28 GDPR, they may be recipients of your personal data. Further information on the use of processors and web services can be found in the overview of the individual processing operations.
Do you use cookies?
Our website uses cookies. Cookies are small text files that are stored on the user's device when visiting a website.
Cookies are small text files that are sent from us to your browser and stored on your device during your visit to our website. Alternatively, information can also be stored in the local storage of your browser. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Other cookies, on the other hand, allow us various analyses so that we can, for example, recognize the browser you are using when you visit our website again and transmit different information to us (non-essential cookies). With the help of cookies, we can make our Internet offer more user-friendly and effective for you, for example by tracking your use of our website and identifying your preferred settings (e.g., country and language settings). If third parties process information via cookies, they collect this information directly through your browser. Cookies do not cause any damage to your device. They cannot execute programs and do not contain viruses.
We inform you about the individual services for which we use cookies in the respective processing operations. Detailed information on the cookies used can be found in the cookie settings or the consent manager of this website.
What are my rights?
Under the statutory provisions of the GDPR, you have the following rights as a data subject:
-
Access according to Art. 15 GDPR to the data stored about you, including meaningful information about the details of the processing and a copy of your data;
-
Correction according to Art. 16 GDPR of incorrect or incomplete data stored by us;
-
Deletion according to Art. 17 GDPR of the data stored by us, provided the processing is not required to exercise the right to free expression and information, to fulfill a legal obligation, for reasons of public interest, or to assert, exercise, or defend legal claims;
-
Restriction of processing according to Art. 18 GDPR if the accuracy of the data is disputed, the processing is unlawful, we no longer need the data and you refuse its deletion because you need it to assert, exercise, or defend legal claims or you have objected to the processing according to Art. 21 GDPR;
-
Data portability according to Art. 20 GDPR, provided you have provided us with personal data based on your consent according to Art. 6 Para. 1 lit. a GDPR or based on a contract according to Art. 6 Para. 1 lit. b GDPR and these have been processed by us using automated processes. You will receive your data in a structured, common, and machine-readable format or we will transfer the data directly to another responsible party, as far as this is technically feasible;
-
Objection according to Art. 21 GDPR to the processing of your personal data, as far as this is based on Art. 6 Para. 1 lit. e, f GDPR and there are reasons for this arising from your particular situation or the objection is directed against direct advertising. The right to object does not exist if overriding, compelling legitimate reasons for the processing are proven or the processing serves the assertion, exercise, or defense of legal claims. As far as the right to object does not exist for individual processing operations, this is indicated there.
-
Revocation according to Art. 7 Para. 3 GDPR of your given consent with effect for the future.
-
Complaint according to Art. 77 GDPR to a supervisory authority if you believe that the processing of your personal data violates the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence, workplace, or our company headquarters.
How is my data processed in detail?
Below we inform you about the individual processing operations, the extent and purpose of data processing, the legal basis, the obligation to provide your data, and the respective storage duration. Automated decision-making in individual cases, including profiling, does not take place.
Provision of the website
Type and scope of processing
When you access and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a so-called log file:
• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which access is made (referrer URL)
• Browser used and, if applicable, the operating system of your computer as well as the name of your access provider
[Our website is not hosted by us but by a service provider who processes the above data on our behalf according to Art. 28 GDPR.]
Purpose and legal basis
The processing is carried out to protect our overriding legitimate interest in displaying our website and ensuring stability and security based on Art. 6 Para. 1 lit. f GDPR. The collection of data and storage in log files is mandatory for the operation of the website. There is no right to object to the processing based on the exception in Art. 21 Para. 1 GDPR. As far as the further storage of log files is required by law, the processing is based on Art. 6 Para. 1 lit. c GDPR. There is no legal or contractual obligation to provide the data, but calling up our website is not technically possible without providing the data.
Storage duration
The aforementioned data is stored for the duration of the display of the website [and for technical reasons beyond that for a maximum of [7 days]].
Contact form
Type and scope of processing
We offer you the opportunity to contact us via a provided form on our website. The information collected through mandatory fields is required to process the request. You can also voluntarily provide additional information that you deem necessary for processing the contact request.
When using the contact form, your personal data will not be passed on to third parties.
Purpose and legal basis
The processing of your data using our contact form is for the purpose of communication and processing your request based on your consent according to Art. 6 Para. 1 lit. a GDPR. If your request relates to an existing contractual relationship with us, the processing is for the purpose of fulfilling the contract based on Art. 6 Para. 1 lit. b GDPR. There is no legal or contractual obligation to provide your data, but processing your request is not possible without providing the information in the mandatory fields. If you do not wish to provide this data, please contact us by other means.
Storage duration contact form
If you use the contact form based on your consent, we will store the data collected for each request for a duration of three years, starting with the completion of your request or until you revoke your consent. [If you use the contact form within the context of a contractual relationship, we will store the data collected for each request for a duration of [three years] from the end of the contractual relationship.]
LinkedIn Page
LinkedIn is a social network operated by LinkedIn Inc., based in Sunnyvale, California, USA, which enables the creation of private and professional profiles. Users can maintain their existing contacts and make new ones. Companies can create profiles on which photos and other company information are uploaded. Other LinkedIn users have access to this information and can write their own articles and share this content with others. The focus is on the professional exchange of specialist topics with people who share the same professional interests. LinkedIn is also frequently used by companies and other organizations to hire employees and present themselves as attractive employers.
For more information about LinkedIn, visit: https://about.linkedin.com/
For more information on LinkedIn's privacy policy, visit: https://www.linkedin.com/legal/privacy-policy
We do not collect or process any personal data via our LinkedIn company page.
XING Page
XING is a social network operated by XING SE, based in Hamburg, Germany, which enables the creation of private and professional profiles. Users can maintain their existing contacts and make new ones. Companies can create profiles on which photos and other company information are uploaded. Other XING users have access to this information and can write their own articles and share this content with others. The focus is on the professional exchange of specialist topics with people who share the same professional interests. XING is also frequently used by companies and other organizations to hire employees and present themselves as attractive employers.
For more information about XING, visit: https://corporate.xing.com/en/company/
For more information on XING's privacy policy, visit: https://privacy.xing.com/en/privacy-policy
We do not collect or process any personal data via our XING company page.
Google Fonts
Type and scope of processing
We use Google Fonts, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, to provide fonts for our online offering. To obtain these fonts, a connection is established to servers of Google Ireland Limited, with your IP address being transmitted.
Purpose and legal basis
The use of Google Fonts is based on our legitimate interests, i.e., interest in a uniform presentation and optimization of our online offering in accordance with Art. 6 Para. 1 lit. f GDPR.