Privacy Policy
When accessing and using this website, various personal data is collected. Personal data is data that can be used to identify people personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
When accessing and using this website, various personal data is collected. Personal data is information that can be used to personally identify individuals. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this is done.
General
The responsible body is:
H2 Core Systems GmbH
Rüsdorfer Str. 8
25746 Heide
Email: info@h2coresystems.com
For questions regarding data protection, we can be reached at:
Email: ds@datensicherheit-nord.de
Currency and Changes to this Privacy Policy
Due to changes in legal or regulatory requirements, it may be necessary to adjust this privacy policy. Therefore, it is advisable to briefly review this privacy policy during each visit to see if the status has changed since the last visit.
Data collection and storage
We collect personal data when it is communicated to us or automatically when you visit our website.
Data Collection and Storage
We collect personal data when it is provided to us or automatically when visiting our website.
Server Log Files
These are automatically collected and stored by the provider:
• Browser type and version
• Operating system used
• Referrer URL
• Hostname of the accessing computer
• Time of the server request
• IP address
This data remains stored as long as necessary to fulfill the stated purposes.
Contact Requests
Data from email, telephone, or fax inquiries are stored and processed to handle the request. This data remains stored until:
• A request for deletion is made
• Consent for storage is revoked
• The purpose for data storage no longer applies (e.g., after completed processing)
Statutory retention periods remain unaffected.
Cookies
Cookies are small text files that are stored on the respective end device and enable browser recognition.
Technically necessary cookies are essential for the operation of the website and enable basic functions such as navigation and access to protected areas. Technically necessary cookies are stored on the user’s end device.
Optional cookies (e.g., analysis, marketing) are only used with express consent. If these cookies are used, more detailed information can be found in the further course.
Cookie settings can be adjusted at any time in the browser or, if we use a consent tool (cookie banner), managed through it. It should be noted that deactivating certain cookies may limit the functionality of the website.
We ourselves only use technically necessary cookies.
Legal basis for processing
• Art. 6 para. 1a GDPR (consent): If a use has been consented to.
• Art. 6 para. 1 b GDPR (performance of a contract): If the processing is necessary for the performance of a contract or for the implementation of pre-contractual measures.
• Art. 6 para. 1 c GDPR (legal obligation): If we are legally obliged to process the data.
• Art. 6 para. 1 f GDPR (legitimate interest). Where we have a legitimate interest to process the data.
Legal Basis for Processing
• Art. 6 Para. 1a GDPR (consent): If use has been agreed to.
• Art. 6 Para. 1 b GDPR (contract fulfillment): When processing is necessary for the performance of a contract or to carry out pre-contractual measures.
• Art. 6 Para. 1 c GDPR (legal obligation): When we are legally obliged to process the data.
• Art. 6 Para. 1 f GDPR (legitimate interest): When we have a legitimate interest in processing the data.
Rights of data subjects
Under the General Data Protection Regulation (GDPR), data subjects have the following rights:
• Information on stored data (Art. 15);
• Rectification of inaccurate data (Art. 16);
• Deletion of data in certain circumstances (Art. 17);
• Restriction of processing (Art. 18);
• Data portability (Art. 20);
• Objection (Art. 21) – Data subjects have the right to object at any time to the processing of personal data concerning them, in particular in the case of direct marketing, unless we can demonstrate compelling legitimate grounds for the processing that override their interests, rights and freedoms, or the processing serves to establish, exercise or defend legal claims.
• Withdrawal of consent (Art. 7 para. 3);
• Complaint pursuant to Art. 77 to a supervisory authority
Safety measures
We use technical and organizational security measures to protect the data. Our website uses SSL/TLS encryption.
Nevertheless, we would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. It is not possible to completely protect the data from access by third parties.
Hosting durch IONOS SE
We host our website at IONOS SE (Elgendorfer Str. 57, 56410 Montabaur, Germany).
This data is processed
• See Server Log Files
This information is anonymized directly when it is collected.
Purpose of processing
The processing of the data by the service provider is carried out in order to provide and maintain the functionality of our website, to ensure system security and stability, and to offer website visitors the highest level of quality.
Legal basis for processing
• Art. 6 para. 1 b GDPR (performance of contract): Data processing is necessary to ensure the functionality and operation of our website.
• Art. 6 para. 1 f GDPR (legitimate interest): Our legitimate interest consists in the secure and efficient provision of the website and in maintaining technical security.
Storage period
The data will be stored for a period of 8 weeks and then deleted, unless there are longer statutory retention periods.
Disclosure of data
The data collected will be processed exclusively on servers of the service provider and will not be passed on to third parties, except in cases prescribed by law, such as for the fulfilment of official information obligations.
Data transfer to third countries
There is no transfer of personal data to third countries.
Privacy policy
We have concluded a DPA with the service provider in accordance with Art. 28 GDPR to ensure the security and protection of personal data.
Learn more
Further information on data processing by the service provider can be found under the following links:
https://www.ionos.de/terms-gtc/datenschutzerklaerung/
YouTube
We use YouTube, a video presentation service provided by Google LLC (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).
This data is processed
• IP address, technical information about the device
• Date and time of access
• Information about user behaviour (e.g. pages visited, dwell time, watch time)
Purpose of processing
The data is processed for the purpose of displaying videos on our website, improving video quality, analysing user behaviour and optimising our video offerings.
Legal basis for processing
• Art. 6 para. 1 a GDPR (consent): Data processing is carried out on the basis of the consent given when entering the website via the cookie banner or directly to a video. However, consent can be withdrawn at any time via the cookie banner on our website.
Storage period
The data will be stored for as long as it is necessary to fulfil the aforementioned purposes and will then be deleted, unless consent is revoked or there are no longer statutory retention periods.
Disclosure of data
The Service Provider may share the data collected with affiliates and service providers who assist in the provision of the Services. In addition, it can be passed on to government agencies if there are legal obligations.
Data transfer to third countries
The service provider transfers personal data to the USA on the basis of the EU-US Data Privacy Framework (DPF) and the adequacy decision of the EU Commission. In addition, standard contractual clauses (SCC) are used.
Privacy policy
We have concluded a DPA with the service provider in accordance with Art. 28 GDPR to ensure the security and protection of personal data.
Learn more
Further information on data processing by the service provider can be found under the following links:
https://policies.google.com/privacy?hl=de
https://policies.google.com/privacy?hl=en
https://cloud.google.com/terms/data-processing-terms
We use Facebook, a platform of Meta Platforms, Inc. (1601 Willow Road, Menlo Park, CA 94025, USA).
This data is processed
• Location data, technical information about the device
• Profile Data, Content Data, Usage Data
Purpose of processing
The data is processed to improve the user experience, analyze user behavior and optimize our corporate presence with the service provider.
Legal basis for processing
• Art. 6 para. 1 a GDPR (consent): Data processing is carried out on the basis of consent given when entering the Company’s social media page via the Service Provider’s cookie banner or by interacting with the page.
• Art. 6 para. 1 f GDPR (legitimate interest): We have a legitimate interest in optimising our presence on the Platform, analysing interactions with users and improving the service based on the data collected.
Storage period
The data will be stored for as long as it is necessary to fulfil the aforementioned purposes and will then be deleted, unless consent is revoked or there are no longer statutory retention periods.
Disclosure of data
The Service Provider may share the data collected with affiliates and service providers who assist in the provision of the Services. In addition, it can be passed on to government agencies if there are legal obligations.
Data transfer to third countries
The service provider transfers personal data to the USA on the basis of the EU-US Data Privacy Framework (DPF) and the adequacy decision of the EU Commission. In addition, standard contractual clauses (SCC) are used.
Privacy policy
We have concluded a DPA with the service provider in accordance with Art. 28 GDPR to ensure the security and protection of personal data.
The service provider provides a Joint Controller Agreement that regulates the responsibilities for processing activities. This Agreement is automatically accepted when users visit our Company Site. Data subjects can assert their data protection rights both with us and with the service provider.
Learn more
Further information on data processing by the service provider can be found under the following links:
https://www.facebook.com/about/privacy
https://www.facebook.com/help/325807937506242
We use Instagram, a platform of Meta Platforms, Inc. (1601 Willow Road, Menlo Park, CA 94025, USA).
This data is processed
• Location data, technical information about the device
• Profile Data, Content Data, Usage Data
Purpose of processing
The data is processed to improve the user experience, analyze user behavior and optimize our Instagram presence.
Legal basis for processing
• Art. 6 para. 1 a GDPR (consent): Data processing is carried out on the basis of consent given when entering the Company’s social media page via the Service Provider’s cookie banner or by interacting with the page.
• Art. 6 para. 1 f GDPR (legitimate interest): We have a legitimate interest in optimising our presence on the Platform, analysing interactions with users and improving the service based on the data collected.
Storage period
The data will be stored for as long as it is necessary to fulfil the aforementioned purposes and will then be deleted, unless consent is revoked or there are no longer statutory retention periods.
Disclosure of data
• The Service Provider may share the data collected with affiliates and service providers who assist in the provision of the Services. In addition, it can be passed on to government agencies if there are legal obligations.
Data transfer to third countries
The service provider transfers personal data to the USA on the basis of the EU-US Data Privacy Framework (DPF) and the adequacy decision of the EU Commission. In addition, standard contractual clauses (SCC) are used.
Privacy policy
We have concluded a DPA with the service provider in accordance with Art. 28 GDPR to ensure the security and protection of personal data.
The service provider provides a Joint Controller Agreement that regulates the responsibilities for processing activities. This Agreement is automatically accepted when users visit our Company Site. Data subjects can assert their data protection rights both with us and with the service provider.
Learn more
Further information on data processing by the service provider can be found under the following links:
https://privacycenter.instagram.com/policy
https://www.facebook.com/help/instagram/519522125107875
We use XING, a platform of New Work SE (Am Strandkai 1, 20457 Hamburg, Germany).
This data is processed
• Location data, technical information about the device
• Profile Data, Networking Data, Usage Data
Purpose of processing
The data is processed to improve the user experience, analyze user behavior and optimize our corporate presence with the service provider.
Legal basis for processing
• Art. 6 para. 1 a GDPR (consent): Data processing is carried out on the basis of consent given when entering the Company’s social media page via the Service Provider’s cookie banner or by interacting with the page.
• Art. 6 para. 1 f GDPR (legitimate interest): We have a legitimate interest in optimising our presence on the Platform, analysing interactions with users and improving the service based on the data collected.
Storage period
The data will be stored for as long as it is necessary to fulfil the aforementioned purposes and will then be deleted, unless consent is revoked or there are no longer statutory retention periods.
Disclosure of data
The Service Provider may share the data collected with affiliates and service providers who assist in the provision of the Services. In addition, it can be passed on to government agencies if there are legal obligations.
Data transfer to third countries
The service provider transfers personal data to the USA on the basis of the EU-US Data Privacy Framework (DPF) and the adequacy decision of the EU Commission. In addition, standard contractual clauses (SCC) are used.
Privacy policy
We have concluded a DPA with the service provider in accordance with Art. 28 GDPR to ensure the security and protection of personal data.
The service provider provides a Joint Controller Agreement that regulates the responsibilities for processing activities. This Agreement is automatically accepted when users visit our Company Site. Data subjects can assert their data protection rights both with us and with the service provider.
Learn more
You can find more information about data processing by the service provider under the following links:
https://privacy.xing.com/de/datenschutzerklaerung
https://privacy.xing.com/de/ihre-privatsphaere
https://privacy.xing.com/de/datenschutzerklaerung/informationen-die-wir-auf-grund-ihrer-nutzung-von-xing-automatisch-erhalten/messung-und-optimierung-von-werbung