Legal Disclosures

This privacy statement explains you about the type, scope and purpose of the processing of personal data (hereinafter referred to as “Data”) within our website and associated websites, functions and content as well as external online presences, such as our social media profiles (hereinafter jointly referred to as “Online Offer”). With regard to the used terminology, such as “processing” or “responsible”, we refer to the definitions in article 4 of the German Data Protection Regulation (DSGVO).

Responsible Persons

Data Protection Officer: Jonathan Gurney

Email:  datenschutz@bueros-to-go.de

Postal Address: Ars Vivendi Enterprises GmbH, Buxacher Str. 5, D-87700 Memmingen, Germany

Types of data processed:

• Inventory data (e.g., names, addresses).
• Contact information (e.g., E-mail, phone numbers).
• Content data (e.g., text entries, photographs, videos).
• Use data (for example, visited websites, interest in content, access times).
• Meta/communication data (for example, device information, IP addresses).

Categories of data subjects

Visitors and users of the Web Security (hereafter we refer to the persons concerned collectively as “Users”).

The purpose of the processing

– Provision of the online offer, its functions and content.
– Answer requests for contact and communication with users.
– Security Measures.
– Marketing Measurement & Evaluation.

Terminology Used

• “Personal Data” are all information relating to an identified or identifiable natural person (hereinafter referred to as the “Affected Person”); considered to be identifiable is a natural person, directly or indirectly, in particular by means of assignment to an identifier such as a name, to an identification number, location data to an Online ID (e.g. cookie) or to one or more specific characteristics can be identified, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person.
• “Processing” means any process, executed with or without the help of automated procedures or any such process in connection with personal data. The term holds far reaching meaning and covers virtually every form of data handling.
• “Pseudonyms” the processing of personal data in a way that the personal data can no longer can be assigned to a specific person without involving additional information, provided that such additional information should be kept separately and are subject to technical and organizational measures to ensure that personal data will not be assigned to an identified or identifiable natural person.
• “Profiling” means any type of automated processing of personal data, which is that this personal data is used, certain personal aspects that relate to a natural person, assess, in particular to aspects related to job performance, economic situation, health, personal preferences, interests, reliability, behavior, residence or change of location of this natural person to analyze or predict.
• As a “responsible” is the natural or legal person, public authority, agency or other body which alone or jointly with others about the purposes and means of the processing of personal data decides.
• “Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the person responsible.

The relevant statutory provisions

In accordance with the provisions of article 13 DSGVO, we will inform you of the legal basis for our data processing. If this legal basis in the data protection declaration is not named, the following applies: The legal basis for the obtaining of consent is art. 6(1)(a) and art. 7 DSGVO, the legal basis for the processing and implementation services in order to fulfill our contractual measures, as well as answering queries is art. 6 para. 1 lit. b DSGVO, the legal basis for the processing in order to fulfill our legal obligations is kind. 6(1)(c) DSGVO, and the legal basis for the processing to protect our legitimate interests is kind. 6, paragraph 1, sub-paragraph DSGVO. f. In the event that the vital interests of the data subject or a natural person a processing of personal data, is used. 6(1)(d DSGVO as the legal basis.

Security Measures

We shall, in accordance with the type. 32 DSGVO, taking into account the state of technology, the cost of implementation and the type, scope, the circumstances and the purposes of the processing as well as the different probability of occurrence and the seriousness of the risk for the rights and freedoms of individuals, appropriate technical and organizational measures to ensure an adequate level of protection to ensure the risk.

The measures include, in particular, the assurance of confidentiality, integrity and availability of data by controlling physical access to the data, as well as of the relevant access, input, disclosure, securing the availability and their separation. We have also set up a procedure, the perception of the right, deletion of data and response to exposure of data. In addition, we take into account the protection of personal data is already in the development or selection of hardware, software and procedures, according to the principle of the data protection by design and by the data protection friendly technology (type preferences. DSGVO 25).

Cooperation with order processors and third parties

If we are in the context of our processing data to any other person or entity or third party processors (order), you reveal to this transmit or otherwise grant you access to the data, this may only be done so on the basis of a legal permit (for example, if a transmission of data to third parties, such as to payment service providers, according to type. 6 para. 1 lit. b DSGVO is required for the fulfilment of the contract), you have given your consent, a legal obligation so provides or on the basis of our legitimate interests (e.g. on the use of agents, Webhostern, etc.).

If we third parties with the processing of data on the basis of a so-called “Job processing contract”, this is done on the basis of the delegate type. 28 DSGVO.

Transfers to third countries

If we store data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) process or within the framework of the use of services by third parties or disclosure, or transfer of data to third parties only if it happens, this is done in order to fulfill our contractual obligations, on the basis of (pre-)your consent, based on a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual licenses, process or we leave the data in a third country only in the presence of the special requirements of the kind. 44 ff. DSGVO. In other words, the processing is done, for example, on the basis of special guarantees, such as the determination of the EU officially recognized by the appropriate level of data protection (for example, for the United States due to the “privacy shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Rights of the persons concerned

• You have the right to obtain confirmation as to whether the data are to be processed and to request information about this data, as well as to additional information and a copy of the data according to Art. 15 DSGVO.
• They have accordingly. Art. 16 DSGVO the law, the completion of the data or the correction of inaccurate data.
• You have, in accordance with the Art. DSGVO 17 have the right to request that data be deleted immediately, or, alternatively, in accordance with the provisions of the Art. 18 DSGVO a restriction on the processing of the data.
• You have the right to request that the relevant data that you have provided to us in accordance with the provisions of the Art. To get 20 DSGVO and its transmission to other responsible.
• They have also according to Art. 77 DSGVO the right to file a complaint with the competent supervisory authority.

Right of revocation

You have the right to revoke consent according to Art. DSGVO 7(3) with effect for the future.

Right of objection

You can be the future processing of the data in accordance with the provisions of the Art. 21 DSGVO at any time.

The opposition may, in particular, to the processing for purposes of direct marketing.

Cookies and right of objection for Direct Mail

“Cookies” are small files that are stored on computers of the users. Your personal information is stored within the cookies can be different. A cookie’s main purpose is to enable the information to a user (or the device is stored on the cookie) during or even after his visit to save within an online offer. As a temporary “cookies” or “session cookies” or “Cookies”, which are called transient cookies that will be deleted after a user leaves an online offer and its browser is closed. In such a cookie can be, for example, the contents of a shopping basket in an online shop or a login status is saved. As a “permanent” or “persistent” cookies which remain stored even after closing the browser. For example, the login status is saved when the users of these after several days. In such a cookie can also be stored for the interests of users, the range measurement or marketing purposes. Cookies are referred to as “third-party cookie”, from suppliers other than the person responsible for the online offer, be offered (otherwise, if it is only the cookies are referred to as “First Party Cookies”).

We can install temporary and permanent cookies and clear it in the context of our privacy statement.

If users do not want cookies to be saved on your computer, you will be asked to provide the relevant option in the system settings of your browser to disable. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional limitations of this online offer.

A general protest against the use of cookies can be used for the purposes of online marketing for a variety of services, particularly in the case of tracking, on the U.S. side http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/ explains. Furthermore, the storage of cookies in the browser settings can be achieved by switching them off. Please note that you may not be able to use all functions of this website can be used.

Deletion of data

The data will be processed by us in accordance with the nature. 17 and 18 in their processing DSGVO deleted or restricted. Unless expressly stated in this privacy policy, the stored data will be deleted as soon as they are no longer required for its intended purpose and the deletion of any statutory retention obligations. If the data is not deleted because it for other purposes permitted by law and are necessary, whose processing is restricted. In other words, the data are locked and cannot be used for other purposes. This applies, for example, for data that must be kept from commercial or tax reasons.

In accordance with statutory requirements in Germany, in particular the retention for 10 years in accordance with section 147 para. 1 AO, 257, paragraph 1, No. 1 and 4, para. 4 of the GERMAN COMMERCIAL CODE (books, records, situation reports, receipts, books, documents, etc.) and relevant for taxation pursuant to section 257 subsection 1 no. 6 years 2 and 3, para. 4 of the GERMAN COMMERCIAL CODE (trade letters).

In accordance with the legal requirements in Austria is carried out in accordance with section 132 para. 7 the retention, especially for J 1 BAO (accounting records, receipts/invoices, accounts, records, business papers, statement of income and expenditure, etc.), for 22 years in connection with land and for 10 years for documents relating to electronically delivered services, telecommunications, radio and television services that are not provided to entrepreneurs in EU Member States and for which the Mini-One-stop shop (MOSS).

Contractual Services

We process the data of our contracting partners and other interested parties, as well as other clients, customers, clients, clients or contractors (uniformly referred to as “Party”) according to type. 6 para. 1 lit. b DSGVO, to provide you with our contractual or pre-contractual services. The processed data, the type, scope, and the purpose and necessity of their processing, determined in accordance with the underlying contractual relationship.

To the processed data include the master data of our contractual partner (for example, names and addresses), contact information (such as E-mail addresses and phone numbers) as well as contract data (e.g., unused services, contract contents, contractual communication, names of contact persons) and payment data (for example, bank details, payment history).

Special categories of personal data we process generally not, except if these constituents are a representative or contractual processing.

We process data that are required for the justification and fulfilment of the contractual services, pointing out the necessity for their specification, provided that the contracting partner is not evident. A disclosure to external persons or companies will take place only if you under a contract is required. With regard to the processing of the data provided to us in the context of a job, we act according to the instructions provided by the customer as well as the statutory requirements.

In the context of the use of our online services, we can use the IP address and the time of the respective users save action. The storage is carried out on the basis of our legitimate interests, as well as the interests of users on the protection against misuse and other unauthorized use. A transfer of this data to third parties, unless it is in principle not to pursue our claims according to type. 6 para. 1 lit. F. DSGVO is required or there is a legal obligation according to type. 6(1)(c). DSGVO.

The deletion of the data if the data for the fulfilment of contractual or statutory care responsibilities, as well as for dealing with any warranty and comparable duties are no longer required, the need for the storage of the data is reviewed every three years; in all other cases, the statutory retention obligations.

Administration, financial accounting, office organization, contact management

We process data in the context of administrative tasks, as well as organization of our operations, financial accounting and compliance with legal obligations, such as the archiving. In this case, we process the same data, which we in the framework of the provision of our services within the scope of the process. The processing basics are kind. 6(1)(c). DSGVO, type. 6 para. 1 lit. F. DSGVO. From the processing customers, prospective customers, business partners, and site visitors are affected. The purpose and our interest in the processing lies in the administration, financial accounting, office organization, archiving of data, so the tasks of maintaining our business activities, perception of our tasks and provision of our services. The deletion of the data with regard to the contractual services, and the contractual communication corresponds to the information referred to in these processing activities.

We disclose or transmit this data to the financial management, consultants, such as, for example, tax consultant or auditor, as well as other fee and payment service providers.

In addition, we save on the basis of our economic interests information on suppliers, operators and other business partners, for example, for later contact. The majority of these business-related data, we store basically permanently.

We will send your data in the event of a oris of credit risk (name, address, email address, company information and, where applicable, contract and promotion data) for the purposes of credit assessment, as well as to the examination of deliverability of the specified address for the purpose of collection and processing to the IHD Society for credit and accounts receivable management mbH, Augustinusstr. 11B, 50226 naughty, and, if necessary, to other cooperating economic information. The legal basis of this transmission has type 6 and Type 6 I F I b DSGVO DSGVO. Submissions on the basis of Article 6 I f DSGVO must not be undertaken, insofar as this is necessary to safeguard justified interests of our company and not the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, predominate. For the purpose of deciding on the establishment, implementation or termination of the contractual relationship, we also collect or use automatically generated values of probability, in the calculation of the cost of, among other things, address data can be incorporated. Detailed information about our contracting partner, the IHD, within the meaning of Article 14 DSGVO, so the business purpose, the purpose of the local data storage, the legal basis and the data receivers of the IHD, to self-Right to information and the right to deletion and correction, as well as to profiling, see www.ihd.de/datenschutz/Artikel14.html .  the information on its contractual partners in the area of credit agency can be found at: www.ihd.de/datenschutz#vertragspartner.

Economic analyzes and market research

In order to operate our business economically, market trends, wishes to be able to recognize the contract partners and users, we analyze the data available to us to business transactions, contracts, requests, etc. we process this inventory data, communication data, contract data, payment data, usage data, meta-data based on the type. 6, paragraph 1, sub-paragraph to the persons concerned. F. DSGVO, contract partners, prospects, customers, visitors and users of our online offer.

The analyzes shall be carried out for the purpose of business evaluations, of marketing and market research. In doing so, we can, for example, the profiles of the registered users with information on their benefits, be taken into account. The analyzes help us to improve the user friendliness, the optimisation of our offer and the operating efficiency. The analyzes are used alone and will not be revealed to us externally, provided that it is not anonymous analyzes with aggregated values.

If these analyzes or profiles with personal information, you will notice, otherwise the user will be deleted or made anonymous after two years from the date of conclusion of the contract. In addition, the overall economic trend analysis and general provisions of possibility created anonymously.

Contact

When contacting us via the contact form (e.g., E-mail, or telephone), the information of the user to edit the contact request and their settlement in accordance with nature. 6 para. 1 lit. b) DSGVO processed. The information provided by the users can in an email system, a Customer Relationship Management system and organization of other request will be saved.

We will delete the requests, if they are no longer required. We check the necessity each year; in addition, the statutory archiving obligations.

Hosting and E-Mail

Those of us in unused hosting services are used for the provision of the following services: infrastructure and platform services, computing capacity, storage space, and database services, e-mail, security services as well as technical maintenance services, which we use for the purposes of the operation of this online offer.

This will be processed by us, or our hosting provider inventory data, contact data, content, meta data, contract data, usage data and communication data from customers, prospective customers and visitors of this web site on the basis of our legitimate interests with respect to an efficient and secure provision of this web site in accordance with nature. 6 para. 1 lit. f DSGVO in conjunction with nature. 28 Conclusion DSGVO (order processing). Our supplier is 1&1 Internet SE, Elgendorfer Str. 57, 56410 Montabaur. The data is stored in Germany, and the privacy statement of 1and1 is available here:  https://www.1und1.de/Datenschutz.

Collection of access data and log files

We, or our hosting provider, on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. F. DSGVO information for each access to the server on which this service (so-called server log files). Access to the data includes the name of the retrieved web page, file, the date and time of the call, amount of data transferred, notification of successful retrieval, web browser with version, the operating system of the user, referrer URL (the page previously visited), IP address, and the requesting provider.

Log file information for security reasons (e.g. for the elucidation of abuse or fraud) for a maximum period of 7 days and then deleted. Data whose further retention for evidential purposes is required, up to the final clarification of the respective incident excluded from extinction.

Analysis, Optimization and economic operation of our online offer

We rely on the basis of our legitimate interests (i.e., interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6, paragraph 1, sub-paragraph F. DSGVO).

1. WP-Statistics, a Web Analytics Plugin The Verona labs. All data is stored on our own web server in Germany. No information is transmitted to a third party. Privacy Statement: The Verona Labs https://wp-statistics.com/privacy-and-policy/.
2. Google Analytics, a web analytics service provided by Google, LLC (“Google”). Google uses cookies. The information generated by the cookie information about use of the online offer by the user are generally sent to a Google server in the USA and stored there.

Google is under the privacy shield-certified and it provides a guarantee agreement, the European Data Protection Law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information in our order, the use of our online offer by the users, compiling reports on the activities within this website and to provide further, with the use of this website and internet related services to provide to us. You can use pseudonyms from the processed data profiles of the users can be created.

We use Google Analytics only with activated IP anonymization. This means that the IP address of the user by Google within member states of the European Union or in other Contracting States to the Agreement on the European Economic Area is reduced. Only in exceptional cases will the full IP address transferred to a Google server in the USA and shortened there.

The IP address transmitted by the user’s browser is not associated with any other data held by Google. The user may refuse the use of cookies by a corresponding setting in your browser software; the user can also extend the coverage of the information generated by the cookie on your use of the online offer of personal data to Google as well as prevent the processing of these data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

For more information on the use of data by Google, recruitment and contradictory ways to learn in the privacy policy of Google (https://policies.google.com/technologies/ads), as well as in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

The personal data of the user will be deleted or made anonymous after 14 months.

Integration of services and content of third parties

We use within our online offer on the basis of our legitimate interests (i.e., interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. F. DSGVO) content or service offerings from third-party A to their contents and services, such as video or integrate fonts (hereinafter referred to as uniformly referred to as “Content”).

This is always assumes that the third-party this content, the IP address of the user perceive, as they do not have the IP address the content on the browser. The IP address is required for the presentation of that content. We strive to use only such content, their respective provider IP address only for the delivery of the content. Third-party developers can also so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical and marketing purposes. Through the “pixel tags” information, such as visitor traffic on the pages of this website are to be evaluated. The pseudonymous information may also be stored in cookies on the device the user and, among other things, technical information about the browser and operating system used, referring websites, visit time as well as for more information about the use of our online offer, as well as with such information from other sources.

Google Fonts

We embed the fonts Fonts (“Google”) of the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Privacy Statement: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.

Google ReCaptcha

We integrate the function to detect bots, e.g. in the case of entries in online forms (“ReCaptcha”) of the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Privacy Statement: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.

Google Maps

We integrate the maps of the service “Google Maps” of the provider Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. To the processed data can, in particular, IP Addresses and location data of the users belong, but they are not without their consent (usually carried out in the framework of the settings for your mobile devices), will be charged. The data can be processed in the UNITED STATES. Privacy Statement: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.

No use of Facebook Social Plugins

We do not use social plugins (“plugins”) of the social network facebook.com.

Google+

Within our online offer, functions and contents of the Platform Google+, offered by the Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (“Google”), can be integrated. To do this, you can, for example, content such as images, videos or texts and buttons, with which users can share content of this online offer within Google. If users are members of the Platform Google+, Google can call the above content and features the profiles of the users.

Google is under the privacy shield-certified and it provides a guarantee agreement, the European Data Protection Law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). For more information on the use of data by Google, recruitment and contradictory ways to learn in the privacy policy of Google (https://policies.google.com/technologies/ads), as well as in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

 

 

Energy

Energy Consumption Statistics – in accordance with section 16 of the Energy Saving Regulations (EnEV), the Villa Bux is classified as a non-residential building:

Energy Utilisation by Type:	Energy Utilisation
Heating (Gas Central Heating):	223 kWh (m2a)
Electricity:	48 kWh (m2a)