Our data protection practices conform with the legal regulations, especially those of the Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG), the Telemedia Act (Telemediengesetz, TMG) and the EU General Data Protection Regulation (GDPR). We will only collect, process and store your personal data insofar as this is necessary for the functionally correct provision of this internet site and our content and services, or for the processing of inquiries and orders/contracts, but in any of these cases only when there is a legitimate interest in the sense of Art. 6 Para. 1 S. 1 lit. f GDPR or another authorization exists. Only when you have previously given your consent will your data also be used for further purposes described specifically in your consent, e.g. for the sending of promotional information via newsletter.

Responsible in the sense of Art. 4 No. 7 GDPR

Responsible in the sense of the GDPR and other national data protection legislation of the EU member states as well as other data protection regulations is:

Prof. Schumann GmbH
Weender Landstraße 23
37073 Göttingen

E-mail: info@prof-schumann.de
Tel.: +49 (0) 551 - 383150
Fax: +49 (0) 551 - 3831520

Name and address of the Data Protection Officer

Thomas Floß
Hopfengarten 10
33775 Versmold

E-mail: info@floss-consult.de
Tel.: +49 5423 964 900
Fax: +49 5423 964 9030
Website: http://www.floss-consult.de/

Provision of the website and creation of log files

Every time our internet site is called up our system automatically collects data and information about the computer system of the computer calling up the site. The following data is hereby collected:

Extent of processing of the data

  • Information about the browser type and version being used
  • The operating system of the device calling up the site
  • The IP address of the device calling up the site
  • Date and time of access
  • Web pages and resources (pictures, files, further page content) that are called up on our internet site.
  • Websites from which the user's system accesses our internet site (referrer tracking)

This data is stored in the log files of our system. Storage of this data together with person-related data of a specific user does not take place, so that the identification of individual page visitors does not happen.

Legal basis for the processing of person-related data

Art. 6 Para. 1 lit. f GDPR (legitimate interest). Our legitimate interest lies in enabling the achievement of the following purposes.

Purpose of the data processing

The logging takes place in order to maintain the compatibility of our internet site for as many users as possible, to combat misuse and for the elimination of problems. For this purpose it is necessary to log the technical data of the computer calling up the website in order to be able to react as quickly as possible to presentation errors, attacks on our IT systems and/or errors in the functionality of our internet site.

In addition, the data serves to enable the optimization of the website and the security of our information technology systems.

Duration of data storage

The deletion of the aforementioned technical data takes place as soon as it is no longer required to ensure the compatibility of the internet site for all users, at the latest, however, three months after the calling up of our internet site.

Objection and data removal possibilities

The objection and data removal possibilities are arranged according to the general regulations for objections and deletion entitlements according to the data protection legislation that are described in the following in this data protection declaration.

Special functions of the internet site

Our website offers you various functions for which, when used, person-related data is collected, processed and stored. In the following we explain what happens to this data:

Contact form(s)

Extent of person-related data processed

The data entered by you in our contact forms.

Legal basis for the processing of person-related data

Art. 6 Para. 1 lit. a GDPR (clear actions or behaviour confirming consent)

Purpose of data processing

We will only use the data compiled via our contact form or forms for processing the specific contact inquiry relating to the form.

Duration of data storage

After processing your inquiry, the data collected will be deleted as soon as possible insofar as there is no legal requirement to store it for a specific time period.

Objection and data removal possibilities

The objection and data removal possibilities are arranged according to the general regulations for objections and deletion entitlements according to the data protection legislation that are described in the following in this data protection declaration.

Integration of external web services and processing of data outside the EU

On our internet site we use active JavaScript content from external providers: so-called web services. When our internet site is called up, these external providers may receive person-related information about your visit to our internet site. Processing of data outside the EU is hereby possible. You can prevent this by installing a JavaScript blocker such as the browser plug-in "NoScript" (www.noscript.net) or by deactivating JavaScript in your browser. This can, however, lead to the limitation of functions on internet sites that you visit. We use the following external web services:

CloudFlare

Our website loads a web service from the company CloudFlare Inc., 101 Townsend St, 94107 San Francisco, United States of America (in the following: CloudFlare). We use this data to ensure the full functionality of our website. In this connection, your browser may transmit person-related data to CloudFlare.

The legal basis for the processing of this data is Art. 6 Para. 1 lit. f GDPR. The legitimate interest lies in an error-free functioning of the internet site. CloudFlare Inc. has certified itself within the framework of the EU-US Privacy Shield agreement (see https://www.privacyshield.gov/list). The deletion of the data takes place as soon as the purpose of collecting it has been fulfilled. Further information on the handling of the transferred data can be found in the data protection declaration of CloudFlare: https://www.cloudflare.com/security-policy/?utm_referrer=https://www.google.de/

You can prevent the collection and processing of your data by CloudFlare by deactivating the running of script code in your browser or by installing a script blocker in your browser (these can be found, for example, at www.noscript.net or www.ghostery.com).

JQuery

Our website loads a web service from the company The Linux Foundation, 1 Letterman Drive, Building D, Suite D4700, CA 94129 San Francisco, United States of America (in the following: JQuery). If JavaScript is activated in your browser and you have not installed a JavaScript blocker, your browser may transfer person-related data to JQuery. Further information on the handling of the transferred data can be found in the data protection declaration of JQuery: https://js.foundation/wp-content/uploads/sites/33/2017/03/JS-Foundation-IP-Policy.pdf

You can prevent the collection and processing of your data by JQuery by deactivating the running of script code in your browser or by installing a script blocker in your browser (these can be found, for example, at www.noscript.net or www.ghostery.com).

Information regarding the use of cookies

Extent of processing of person-related data

On various pages we use cookies to enable the use of particular functions of our website. The so-called "cookies" are small text files that your browser can place on your computer. These text files contain a series of characters that enable clear identification of the browser when our website is called up again. The process of storing a cookie file is also known as "setting a cookie".

Legal basis for the processing of person-related data

Art. 6 Para. 1 lit. f GDPR (legitimate interest). Our legitimate interest lies in maintaining the full functional capability of our internet site, increasing usability as well as enabling customers to be addressed more individually. An identification of individual website visitors is only possible with the help of the cookie technology if the website visitor has previously provided us with person-related data on the basis of a specific consent.

Purpose of data processing

The cookies are set by our website in order to maintain the full functional capability of our internet site and to improve its usability. In addition, the cookie technology makes it possible for us to recognise individual users through pseudonyms, e.g. an individual arbitrary ID, so that it is possible for us to offer more individual services.

Duration of data storage

The storage of our cookies takes place until they are deleted in your browser or, in the case of session cookies, until the session has finished.

Objection and data removal possibilities

You can adjust the settings of your browser yourself according to your wishes so that the setting of cookies is generally prevented. You can then decide on the acceptance of cookies from case to case or you can generally accept the setting of cookies. Cookies can be used for various purposes e.g. to detect that your PC has previously been connected to our website (permanent cookies) or to record recently viewed offers (session cookies). We use cookies in order to offer you increased user comfort. In order to be able to use our comfort functions, we recommend that you allow cookies for our website. The objection and data removal possibilities are otherwise arranged according to the general regulations for objections and deletion entitlements according to the data protection legislation that are described in the following in this data protection declaration.

Data security and data protection, communication via E-mail

Your person-related data is protected by technical and organizational measures in the collection, storage and processing so that it is not accessible to third parties. In the case of unencrypted communication via E-mail we cannot guarantee complete data security during transmission to our IT systems so that for information with a high necessity for secrecy we recommend encrypted communication or the use of postal services.

Automatic E-mail archiving

Extent of processing of person-related data

We specifically inform you that our E-mail system disposes of an automated archiving procedure. All incoming and outgoing E-mails are archived digitally in a manner that is secure for auditing.

Legal basis for the processing of person-related data

Art. 6 Para. 1 lit. f GDPR (legitimate interest) as well as Art. 6 Para. 1 lit. c GDPR (fulfilment of a legal obligation). Our legitimate interest and our legal obligation lies in the observation of taxation and trade legislation (e.g. §§ 146, 147 AO).

Purpose of the data processing

The purpose of the archiving lies in the observation of taxation and trade legislation (e.g. §§ 146, 147 AO).

Duration of data storage

The storage of our E-mail communication takes place until the expiry of the storage obligations according to the taxation and trade legislation. The duration of storage can be up to 10 years.

Objection and data removal possibilities

If you have questions relating to our E-mail archiving system, please contact our Data Protection Officer. In addition, we would like to point out that we only accept application documents in PDF file format. Zipped (WinZip, WinRAR, 7Zip, etc.) files are filtered out by our security systems and are not delivered. We do not accept applications in Word file format or other file formats and delete them unread. Please note that application documents sent unencrypted by E-mail could possibly be opened by third parties before they reach our IT systems. We assume that unencrypted application E-mails may also be answered in an unencrypted manner. If you do not wish this to happen, please inform us of this in your application E-mail.

Withdrawal of consent - information on data and requests for changes - deletion and blocking of data

You have a right to receive information free of charge about your stored data at reasonable time intervals as well as a right to have your data corrected, blocked or deleted at any time. We will delete your data at your first request as long as there is no legal regulation preventing this. You can withdraw your consent for us to use your personal data at any time. Requests for information, deletion or correction of your data and any other comments you may have may be sent to the following address at any time:

Prof. Schumann GmbH
Weender Landstraße 23
37073 Göttingen

E-mail: info@prof-schumann.de
Tel.: +49 (0) 551 - 383150
Fax: +49 (0) 551 - 3831520

Right to data transfer

You have the right to demand that we make available to you the person-related data that you have communicated to us in a structured, accessible and machine-readable format. You can also demand that we transmit this data to a third party at your first request and without delay, insofar as the processing is based on consent according to Art. 6 Para. 1 lit. a GDPR or Art. 9 Para. 2 lit. a GDPR or a contract according to Art. 6 Para. 1 lit. b GDPR and the processing is performed by us in the context of automated data processing. When exercising this right to data transfer you also have the right to secure that the personal data relating to you is transmitted directly to another responsible party insofar as this is technically possible. The freedoms and rights of other persons must not be impaired by this.

The right to data transfer does not apply to processing of person-related data that is necessary in order to perform a task that is in the public interest or that takes place in the context of performance of public authority that has been entrusted to the responsible party.

Right to lodge a complaint with a regulatory authority according to Art. 77 Para. 1 GDPR

If you have the suspicion that your data has been illegally processed on our website, you can of course obtain clarification of the problem through the courts of law at any time.

Independently of this, you have the possibility to contact a regulatory authority. The right to lodge a complaint is available to you in the EU member state in which you are residing, in which your place of work is located and/or the location of the alleged violation, meaning that you can select the regulatory authority you wish to contact in any of the aforementioned locations. The regulatory authority to which you make the complaint will then inform you about the status and the results of your submissions, including the possibility of obtaining legal help through the courts according to Art. 78 GDPR.

News & Success Stories
Events & Webinars

Follow us

Let's stay in contact! All news and events can be found here.

Contact us

Get in touch with us and tell us about your challenges. Together we will find the best solution. We are looking forward to your inquiry.

info@prof-schumann.de +49 (0) 551 383 15-0