Privacy Policy

1. General Information

The following notes provide a general overview of what happens to your personal data when you visit our website. Personal data is any data with which you can be personally identified.

Data collection and gathering on our website

The data processing on this website is carried out by us, the website operator. You can find our contact details below under "Responsible Party" or in the imprint of this website.
Mainly your data will be collected by you providing it to us. This can be, for example, the data that you enter in our contact form. Other data is collected automatically or with your consent when you visit our website - mainly technical data (e.g. your internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website. Some of this data is collected to ensure the technically error-free provision of our website. Other data may be used, among other things, to analyze your user behavior on our website.

Notice on data transfer to third countries outside the EU

Among other things, tools and services from companies based in the USA and possibly other third countries that are not (yet) classified as secure under data protection laws are integrated on our website. As a result, personal data may be sent to servers of the respective companies, e.g. in the USA or other third countries outside the EU, and stored there. We expressly point out that the USA, for example, is currently (as of March 2021) not a safe third country in the sense of EU data protection law according to the GDPR, thus US companies are obliged to hand over personal data to security authorities upon request, without you as a data subject being able to take legal action against this or being informed about it. We therefore cannot eliminate the possibility that US authorities may process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on such processes. If you have any further questions in this regard, you can contact a data protection authority responsible for you in the EU or contact us directly.

Privacy

We treat your personal data confidentially and in accordance with the applicable legal data protection regulations and this privacy policy.

We would like to point out that data transmission on the Internet (e.g. via contact forms, e-mails or in chats) can have security gaps. A complete protection of data against access by third parties is not or hardly possible. The measures provided and taken by us to protect your personal data represents at least the current standard, so that your data, insofar as they are collected and processed by us, are protected in the best possible way.

If you have further questions about the general protection of your data, you can refer to the following privacy policy or contact us directly.

Duration of storage

Unless we specify a specific storage period, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a justified request for deletion or withdraw your consent to data processing, we will delete your data unless we have reasonable legal justifications for storing your data or are required to comply with legal regulations.

What rights do you have regarding your data?

You have the right at any time to receive information free of charge about the origin, known third-party recipients and purpose of your stored personal data. You also have a right to request the correction or erasure of this data. If you have given us additional consent for data processing, you can withdraw this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with a supervisory authority or with the supervisory authority responsible for us.

For further details, please refer to the following privacy policy or contact us directly if you have any questions about how your data is handled by our company.

Objection to advertising e-mails

We hereby expressly object to the use of the contact data published by us within the scope of the imprint obligation for the sending of advertising and information material not expressly requested by us. We expressly reserve the right to take legal action against the sender or client in the event of infringement (e.g. in the case of unsolicited sending of advertising information, spam e-mails, or similar).

2. Mandatory information on data protection

Information about the controller

The controller is a natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.). The responsible party (controller) for data processing on this website is:

Koch Ritter Lender Services GmbH
Marienstr. 15
60329 Frankfurt a.M.

You can contact us through the following e-mail address:
info@koch-ritter-lender-services. com

SSL or TLS encryption on our website

For security reasons and to protect the possible transmission of personal data and confidential content, our site uses SSL / TLS encryption. You can recognize an encrypted connection by the fact that the address bar of your browser displays "https://" and by a lock symbol in front of it.

Withdraw of consent to data processing

Many data processing operations are only possible with your express consent. You can withdraw your consent at any time. For this purpose, e.g. an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the withdrawal remains unaffected by the revocation.

General information on the right to object to the collection of data in specific cases and to direct marketing (Article 21 of the GDPR)

WHEN DATA PROCESSING IS CARRIED OUT ON THE BASI OF ART. 6 (1) LIT. E O F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO ANY PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING IS FOR THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS (ART. 21 (1) GDPR).

SHOULD YOUR PERSONAL DATA BE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING; THIS ALSO APPLIES TO SO-CALLED "PROFILING" INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT MARKETING. SHOULD YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (ART. 21 (2) GDPR).

Right to lodge a complaint with a supervisory authority

In the event of breaches of the GDPR, data subjects shall have a right to lodge a complaint to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged data breach. The right of complaint is without prejudice to other administrative or judicial remedies.

The data protection authority responsible for us can be contacted by post at the following address in the event of a complaint:

Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Postfach 3163
65021 Wiesbaden

The right to data portability

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible and the effort involved is in a justifiable relationship to this right.

Information, erasure and correction

Within the framework of the applicable legal provisions, you have the right at any time to free information about your personal data stored by us, as well as its origin and, if applicable, recipients, the purpose of data processing and, if applicable, you have a right to correction or erasure of this data. For this purpose, as well as for further questions regarding the processing of your personal data by us, you can contact us at any time using the contact options provided above.

Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. The right to restriction of processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data by us happened/is happening unlawfully, you can also request the restriction of data processing by us instead of erasure.
  • If we no longer need your personal data, but you need it to exercise, defend or enforce legal claims, you have the right to request restriction of the processing of your personal data instead of erasure.
  • If you have lodged an objection pursuant to Art. 21 (1) GDPR, a balancing of your and our interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data by us, this data - apart from its storage - may only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the EU or a member state.

3. Hosting of our website

External hosting

Our website is hosted by the external provider (hoster) RAIDBOXES GmbH (hereinafter "Raidboxes"), Friedrich-Ebert-Str. 7, in 48153 Münster. The servers used for this purpose are also managed by this external hoster. Personal data collected on our website is stored in encrypted form on the hoster's servers. The data stored includes:

  • IP addresses
  • Website accesses by IP addresses
  • Contact details
  • Names, if provided by you
  • Meta and communication data

and other data that may be collected through our website and are necessary for the operation of our website and/or offered services and/or products.

You can find further information on data protection at Raidboxes at:
https://raidboxes.io/datenschutzerklaerung/

The external hoster is used for the purpose of business management, contract fulfillment towards our potential and existing customers (Art. 6 (1) lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 (1) lit. f GDPR).

Conclusion of a Data Processing Agreement (DPA)

To ensure data protection-compliant processing for the users of our website, we have concluded DPA with our hoster.

4. Data collection on this website

Cookies

Our website uses so-called "cookies". Cookies are, among other things, small text files and do not cause any damage to your end device. They are stored either temporarily for the duration of a session ("session cookies") or permanently ("permanent cookies") on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser.

In some cases, cookies from third-party companies may also be stored on your terminal device when you enter our site (so-called "third-party cookies"). These may enable us or you to use certain services of the respective third-party company.

Cookies that are necessary to carry out the electronic communication process (necessary cookies) or to provide certain functions that you have requested (functional cookies) or to optimize the website (e.g. cookies to measure the web audience) are used on the basis of Art. 6 (1) lit. f GDPR, unless another legal basis is specified. We, as website operator, have a legitimate interest in the use of cookies for the technically error-free and optimized provision of our website and related services. Insofar as consent to the storage of cookies has been requested, the storage of the cookies in question is based exclusively on this consent (Art. 6 (1) lit. a GDPR). The consent to this can be withdrawn at any time.

If cookies are generally deactivated, the functionality of this website may be limited. If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately within the framework of this data protection declaration and, if necessary, request your consent.

Server log files

The servers of the external hoster used by us automatically store information in server log files, which your browser automatically transmits to us. These are (among others):

  • IP of the website user
  • Timestamp (date and time of access)
  • Type of request (access)
  • Client information (type of client, client version)
  • User's operating system (used device, OS version of the device).
  • Referrer information (i.e. the source of access to our website)

We do not merge this data with other data sources.

The collection of this data is based on Art. 6 ( 1) lit. f GDPR. We, as the website operator, have a legitimate interest in the technically error-free presentation and optimization of our website. For this purpose, the server log files must be collected.

5. Plugins and tools

Google Web Fonts

This site uses web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

For this purpose, the browser you use must connect to Google's servers. This enables Google to know that this website has been accessed via your IP address. The use of Google Web Fonts is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on his website. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 (1) lit. a GDPR. Consent can be withdrawn at any time.

If your browser does not support web fonts, a default font is used by your computer.

For more information about Google Web Fonts, see:
https://developers.google.com/fonts/faq
and in Google's privacy policy at:
https://policies.google.com/privacy?hl=de

Updated June 2021