Your data is protected within the framework of the applicable legal regulations, in particular the Federal Data Protection Act and the Telemedia Act. Below you will find information about the type of data collected, stored and used during your visit to our website. Furthermore, it should be informed about who is responsible for the aforementioned process and which possibilities you have to influence the handling of your data.
Your data is collected in accordance with the applicable statutory provisions of the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to us
As the person responsible for processing, green benefit AG has implemented numerous technical and organisational measures to ensure that the personal data processed via this website is protected as completely as possible. Nevertheless, Internet-based data transmissions can have security gaps, so that absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us by alternative means, for example by telephone.
Collection of general data and information
All types of access to the green benefit AG website are logged using a standardised procedure. Usage data such as the user’s operating system, the browser used with the respective version, the previously visited website from which our website was accessed (so-called referrer URL), the subwebsites which are accessed via an accessing system on our website, the host name and IP address of the user, the time and date of access to our website, addresses accessed, the scope of the data transmitted and other processes taking place. This procedure serves only internal safety precautions as well as a logging for statistical purposes. We do not associate your usage data with data that allows us to draw conclusions about you personally. The usage data is required to correctly deliver the contents of our website and to ensure its long-term functionality. In addition, in the event of a cyber attack, we use the information to determine the originator or authorities to make it available to the responsible security authorities. The legal basis for data processing is Art. 6 Par. 1 S.1 lit. f GDPR. Our legitimate interest follows from the purposes stated above for data collection.
Collection and saving of personal data
Personal data is only collected and stored by our company in connection with the use of our websites if you wish such data storage and processing in connection with an enquiry or registration for certain products or services of our company (“contact enquiry”) or if you wish to use certain services of our company. Your personal data is always collected or stored in compliance with the relevant German and European data protection laws. If we collect and store your personal data for a purpose that requires your consent in accordance with the statutory provisions, we will always ask you for your express consent. If you do not give your consent, please understand that we may not be able to process your request or registration or that you may not be able to use the requested services. Only every access to our homepage and every retrieval of a file stored on the homepage is logged. The storage serves internal system-related and statistical purposes. For quantitative measurement of the accesses, anonymous data about the accesses can be stored in log files. It is not possible to draw conclusions about certain persons.
In the newsletter registration form, we use the Google service reCaptcha to determine whether a human or a computer makes a certain entry in our contact or newsletter form. Google checks whether you are a human or a computer using the following data: IP address of the terminal device used, the website you visit with us and on which the captcha is embedded, the date and duration of the visit, the recognition data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images. The legal basis for the described data processing is Art. 6 para. 1 lit. f GDPR. There is a legitimate interest on our side in this data processing to ensure the security of our website and to protect us from automated entries (attacks).
Processing and use of personal data
The term personal data is defined in the GDPR. This includes all information relating to an identified or identifiable natural person. Identifiable is a natural person who can be identified directly or indirectly, in particular by assignment to an identifier such as a name, an identification number, location data, an online identifier or one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
Your personal data is collected if you wish to contact us via our website. A telephone number is available for this purpose (tel:0911217100). You can also send us a message by clicking on a linked e-mail address. In this way you additionally send us your e-mail address. If you provide us with personal data, e.g. in the context of contact inquiries via our contact form, we process or use these only to answer your inquiries, to process contracts concluded with you and, however, exclusively in the legally permitted cases, for purposes of advertising or market and opinion research. After contact has been made, the data will be deleted, provided that there are no legal storage obligations. The legal basis for data processing for the purpose of contacting us is in accordance with Art.6 para. 1 lit. b GDPR. If you inquire with us, we assume that you also want the establishment of contact, and we step thereby into a contractual and/or pre-contractual relationship.
Disclosure of your data to third parties
The personal data collected on our website are used solely to fulfil the purpose for which you have made them available to us. Your personal data will not be transmitted to third parties for purposes other than those listed below. We will only pass on your personal data to third parties if:
- according to Art. 6 para. 1 S. 1 lit. you have given your express consent pursuant
- the disclosure according to Art. 6 para. 1 S. 1 lit. f GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data
- in the event that a legal obligation according to Art. 6 para 1 S. 1 lit. c GDPR exists, and
- this is legally permissible and according to Art. 6 para. 1 S. 1 lit. b GDPR necessary for the processing of contractual relationships with you
Rights of the Individual concerned
As a user of the green benefit AG website, you have various rights under the GDPR with regard to the processing of your personal data.
Data deletion (“right to be forgotten”)
As a data subject, you have the right to request that personal data concerning you be deleted immediately, provided that one of the following reasons applies:
- The personal information is no longer necessary for the purposes for which it was collected.
- The personal data was processed unlawfully.
- The person responsible is legally obliged to delete the personal data
Right of information
As a user of our website, you have the right to receive information from us free of charge as to whether personal data relating to you is processed. If this is the case, you are entitled to the following information:
- the processing purposes
- the categories of personal data being processed
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular to recipients in third countries or international organisations
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right of appeal to a supervisory authority
- if the personal data is not collected from the data subject: All available information about the origin of the data.
Automated decision-making including profiling pursuant to Art. 22 para. 1 and 4 GDPR does not take place given the collected information from the website. Furthermore, the data subject has a right of access to information as to whether personal data have been transferred to a third country or to an international organisation. Currently there is no transfer of personal data collected via this website to a third country or an international organisation. Should this be the case in the future, we will inform you and, if necessary, obtain your consent.
Right to correction
You have the right to request the immediate correction of any inaccurate personal information concerning you. You also have the right, taking into account the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary declaration.
Right to processing restriction
You have the right to request us to restrict processing if one of the following conditions applies:
- The accuracy of the personal data is disputed by you. This restriction is valid for the duration until we are able to check the correctness.
- The processing of personal data is unlawful, but you do not want the data to be deleted (see above), but a restriction.
- green benefit AG no longer needs personal data for the purposes of processing, but does need it to assert, exercise and defend legal claims.
Where processing has been restricted, such personal data may not be processed except with the data subject’s consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or a Member State.
We are obliged to inform the person concerned before a restriction is lifted.
Right to data transferability
You have the right to ask us to provide you with personal information about you in a structured, common and machine-readable format In addition, you have the right to transmit this data to another person responsible or to have it transmitted by us to another person responsible, insofar as this is technically feasible.
In order to prevent unauthorized access or disclosure of your data and to ensure the correctness and lawful use of your data, we have taken procedural and organizational protective measures to protect your personal data We use current technical and organizational security measures to protect your data provided to us from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Your personal data is only accessible to employees who must necessarily have access to your data in order to process and manage your affairs. Our employees are bound to secrecy and data protection. You are advised that personal data may only be processed or used for the purpose associated with the respective legal fulfilment of tasks and that these obligations continue to exist after the end of the activity. In addition, our employees are thoroughly informed about the data protection regulations and are obliged to observe data protection secrecy and confidentiality (in particular banking secrecy, telecommunications secrecy, business and company secrecy and insurance secrecy).
Some of the Internet pages use so-called cookies. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, effective and secure Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal until you delete them. These cookies enable us to recognize your browser the next time you visit our website. For example, the language version you set for the page is saved. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited. Cookies, which are necessary to carry out the electronic communication process or to provide certain functions desired by you (e.g. shopping basket function), are stored on the basis of Art. 6 para. 1 lit. f GDPR. he website operator has a legitimate interest in the storage of cookies for technically error-free and optimized provision of his services. As far as other cookies (e.g. cookies for the analysis of your surfing behaviour) are stored, these will be treated separately in this data protection declaration. If you do not wish cookies to be used on your computer, you must delete our cookies from your hard drive yourself.
Web analysis using Matomo (formerly Piwik)
Scope of processing of personal data:
We use the software “Matomo” (www.matomo.org) on this website, a service of the provider InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand. The software sets a cookie (a text file) on your computer, with which your browser can be recognized. If subpages of our website are visited, the following data is stored:
- the IP address of the user, shortened by the last byte (anonymized)
- the accessed subpage and the time of the access
- the page from which the user has visited our website (referrer)
- which browser with which plugins, which operating system and which screen resolution is used
- the time spent on the website
- the pages that are accessed from the visited sub-page
The data collected with Matomo is stored on servers within the EU, for which we have sole rights and control. The data will not be passed on to third parties. More Info atmatomo.org/data-ownership
The legal basis on which we process personal data using Matomo is Art. 6 para. 1 lit. f GDPR.
Purpose of data processing
We need the data to analyze the surfing behavior of users and to obtain information about use of the individual components of the website. This allows us to constantly optimize the website and its user-friendliness. In these purposes is our legitimate interest according to Art. 6 para. 1 lit. f GDPR. By anonymizing the IP address, we take into account the interest of users in the protection of personal data. The data will never be used to personally identify the user of the website and will not be merged with other data.
Duration of retention:
The data is deleted when it is no longer needed for our purposes. All raw data is automatically deleted after 24 months.
You can object to the recording of data in the manner described above in three different ways:
- You can completely disable the storage of cookies in your browser. However, this means that you may no longer be able to use some functions of our website that require mandatory identification.
- You can enable the “Do-not-Track” setting in your browser. Our Matomo system is configured to respect this setting.
- You can create a so-called opt-out cookie with a mouse click below, which is valid for two years. It has the consequence that Matomo will not register your further visits. Please note, however, that the opt-out cookie will be deleted if you delete all cookies.
Our pages include functions of the Twitter service. These functions are offered by Twitter Inc, 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter.
You can change your Twitter privacy settings in your account settings at http://twitter.com/account/settings
Revocation of approval and right of objection
You can revoke your consent to the collection, storage, processing or use of your personal data at any time free of charge in writing or electronically with effect for the future at the following address. You can also object to the use of your inventory data for advertising and marketing measures at any time free of charge in writing or electronically at the following address.
We would like to point out that your right to the deletion of data may be restricted by legal storage obligations, which we must observe.
Responsible body within the meaning of the Federal Data Protection Act is green benefit AG with the following contact details
green benefit AG
Charles-Lindbergh-Strasse 7a, 90768 Fuerth
We reserve the right to update this declaration at any time in compliance with the applicable data protection regulations. It does not establish any contractual or other formal right vis-à-vis or on behalf of a party. Current status of this declaration is Jan 2023.