Introduction and Overview
We have prepared this Privacy Policy (Version 04.10.2022-312168833) to inform you about the requirements of the General Data Protection Regulation (EU) 2016/679 (GDPR) and other applicable national laws regarding how we process your personal data (hereinafter “your data”). This applies both to the data we process as a data controller and to the data processed by our commissioned processors (e.g., service providers). Furthermore, we outline your legal rights regarding your data.
Summary: We provide you with clear information about which data we process about you.
Many privacy policies contain complex legal language. This Privacy Policy, however, is written in a clear and accessible way to make it as easy as possible for you to understand the most important aspects. Where possible, we have included readable definitions and links to further information. Additionally, we have used icons and graphics to help illustrate key points. Our goal is to present information in a simple and comprehensible manner.
We inform you honestly and transparently about our business activities and the data processing required for them. It is neither possible nor our intention to withhold information or make things unnecessarily complicated.
If you have any questions, feel free to contact us. You can find our contact details in the Imprint or in the “Contact” section below.
Scope of Application
This Privacy Policy applies to all personal data that we process within our company and to all personal data processed by third-party service providers (processors) on our behalf.
Personal data refers to information under Article 4(1) of the GDPR, such as:
Name, email address, phone number
IP addresses and user behavior
Cookies and tracking technologies
This Privacy Policy covers data processing related to:
Online services (websites, online shops) that we operate
Social media accounts and email communications
Mobile applications for smartphones and other devices
Additionally, this Privacy Policy applies to data processing within our company in relation to the above-mentioned platforms and services.
Legal Basis for Processing
In this section, we explain the legal principles under which we process personal data in accordance with the GDPR. The full GDPR regulations are available at EUR-Lex.
We only process your data if at least one of the following conditions is met:
1. Consent (Article 6(1)(a) GDPR)
If you have explicitly consented to the processing of your data for a specific purpose, we process it accordingly. Example: If you provide your contact details in a contact form.
2. Contract (Article 6(1)(b) GDPR)
If data processing is necessary to fulfill a contract, we process your data. For example, when you purchase a service or sign a contract with us.
3. Legal Obligations (Article 6(1)(c) GDPR)
If we are legally required to process your data, we will do so. Example: If we need to retain billing data for accounting purposes.
4. Legitimate Interests (Article 6(1)(f) GDPR)
If data processing is necessary for our legitimate interests, we process your data accordingly. Example: To maintain the security of our website or prevent fraud.
Additional National Laws Applicable in the EU:
Austria: The Austrian Data Protection Act (DSG) applies.
Germany: The German Federal Data Protection Act (BDSG) applies.
If additional national laws apply, we will inform you in the relevant sections below.
Contact Details of the Data Controller
If you have any questions regarding data protection or the processing of your personal data, please contact:
Dr. Mark-Oliver Otto
Birkenweg 9
21258 Heidenau
Email: Mark-Oliver.Otto@newdev.de
Telefon: +49 4182 28 89 531
Website: https://www.newdev.de
Data Storage and Retention
We only store personal data for as long as necessary to fulfill the intended purpose. When the processing purpose no longer applies, we delete the data.
In some cases, we are legally required to store data, for example, for accounting purposes.
If you withdraw your consent, we will delete your data as soon as possible, provided no legal retention obligation applies.
For specific data retention periods, we will inform you separately if necessary.
Your Rights under the GDPR
According to Articles 13-14 GDPR, you have the following rights regarding your data:
• Right to Access (Article 15 GDPR) – You have the right to request a copy of the data we process about you.
• Right to Rectification (Article 16 GDPR) – If your data is incorrect, you can request a correction.
• Right to Erasure (Article 17 GDPR) – Also known as the “Right to be Forgotten.” You can request the deletion of your data.
• Right to Restriction of Processing (Article 18 GDPR) – You can limit how your data is used.
• Right to Data Portability (Article 20 GDPR) – You can request that we provide your data in a portable format.
• Right to Object (Article 21 GDPR) – You can object to data processing in certain cases.
• Right to Lodge a Complaint (Article 77 GDPR) – You have the right to complain to a Data Protection Authority if you believe your rights are being violated.
Data Protection Authority for Niedersachsen (Germany)
Landesbeauftragte für den Datenschutz Niedersachsen
Address: Prinzenstraße 5, 30159 Hannover
Phone: +49 511 120-4500
Email: poststelle@lfd.niedersachsen.de
Website: https://lfd.niedersachsen.de/startseite/
Security of Data Processing
We implement technical and organizational measures to protect your personal data.
Data encryption and pseudonymization help prevent unauthorized access.
Security measures apply to both software (e.g., forms) and hardware (e.g., server room access).
Art. 25 GDPR speaks here of “data protection by design and by default” and thus means that both software (e.g. forms) and hardware (e.g. access to the server room) should always be designed with security in mind and appropriate measures should be taken. If necessary, we will go into more detail on specific measures below.
All texts are protected by copyright.
Source: Created using the Privacy Policy Generator from AdSimple.