Data Privacy
Data Privacy
A24 Landschaft Landschaftsarchitektur GmbH takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal regulations of the relevant data protection laws, in particular the EU General Data Protection Regulation (GDPR) as well as this privacy policy. This Privacy Policy covers the use of our digital services, including our social media profiles on all Internet-enabled devices. Our digital services may contain links to other third-party service provider websites that are not covered by this privacy statement.
Data Controller
The responsible data controller for the processing of your personal data is
A24 Landschaft
Landschaftsarchitektur GmbH
Köpenicker Straße 154 a
10997 Berlin
post@a24-landschaft.de
If you have any questions about our data privacy policy, please write to us at the above postal address, adding “Data protection”, or to the above e-mail address with the subject “Data protection”.
Purpose and legal basis of the data processing
Data processing for the provision of contractual services
We process personal data in order to process the contractual relationships and to be able to submit contractual offers tailored to your requirements. The collection of the data takes place in particular for the conclusion and/or for the performance of a contract. For your order, we need your correct name, address and invoice data. We may ask for your e-mail address and telephone number so that we can communicate with you regarding the service you have ordered.
The basis for the data processing is Art. 6 (1) s. 1 lit. b GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
Data processing for communication with you
In addition to the contractual data, we process your communication data (names of contact persons, address, telephone number, e-mail address) in order to contact you and communicate with you within the contractual relationship. Personal data that you provide to us by e-mail or via another communication channel opened by us will only be processed for correspondence with you or only for the purpose for which you have provided us with the data.
The processing of this data is based on Art. 6 (1) s. 1 lit. b GDPR if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the enquiries addressed to us (Art. 6 (1) s. 1 lit. f GDPR) or on your consent (Art. 6 (1) s. 1 lit. a GDPR), if this has been obtained in this regard.
Cookies
We may use so-called cookies to provide you with website-specific services. Cookies are small text files that are stored on a visitor's computer and contain data about the respective user in order to enable access to various functions.
Websites may use both session cookies and persistent cookies. A session cookie is temporarily stored on the computer you are using while you navigate through the website. A session cookie is deleted as soon as you close your internet browser or as soon as your session has expired after a certain time. A persistent cookie remains on your computer until it is deleted.
We may work with third parties on some of our offers and therefore cookies from partner companies may also be stored when you visit such a website (third-party cookies). We may inform you in advance about the use of such cookies and the scope of the data stored or retrieved in each case. You may receive additional information on the cookies used via the cookie tool we use and the explanations provided there.
We use necessary cookies that are required to enable the provision of the services owed by us or to ensure the functionality of our services. The legal basis for setting these cookies is § 25 (2) No. 2 German Telecommunications-Telemedia Data Protection Act (TTDSG). Any processing of personal data carried out in this context is then based on Art. 6 (1) s. 1 lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures, or on Art. 6 (1) s. 1 lit. f GDPR, which permits the processing of data to protect the legitimate interests of the controller, unless the interests or the fundamental rights and freedoms of the data subject outweigh the interest of the controller in the processing of the data. Our interest then lies in ensuring the provision of the functions of our services.
For the use of other, non-required cookies, we may obtain your consent. The cookies are then set on the basis of your consent in accordance with § 25 (1) TTDSG, and any processing of personal data carried out in this context in accordance with Art. 6 (1) s. 1 lit. a GDPR. You can revoke your consent at any time - among other things via the cookie tool we have integrated. The legality of the data processing already carried out on the basis of your consent remains unaffected by the revocation.
Matomo
We may use the web analytics service Matomo to analyse the use and optimise our website. When used, Matomo creates an internal hash value for each visitor to the respective website, which is calculated from various factors such as the anonymised IP address, the resolution, the browser, the plugins used and the operating system. Unlike other statistics programs, Matomo does not transmit any data to a third-party server. The IP address transmitted by your browser via Matomo is neither combined with other data collected by us nor passed on to third parties and is only stored anonymously. Within the scope of our web analysis with Matomo, no tracking cookies are set on your computer. If individual pages of our website are called up, the following data are processed: two bytes of the IP address of your calling system (anonymous), browser type and version, operating system used, the website called up, the website from which you are visiting us (referrer URL) - if your browser does not prohibit this, the pages and files that you call up on our website, possibly the website that you visit after ours (referrer URL). the website you visit after ours (when clicking on an external link on our website), the date and time of your access, the time you spend on the website, the frequency with which you access the website, your location (country).
The use of Matomo described above is based on Art. 6 (1) s. 1 lit. f GDPR. We have a legitimate interest in analysing user behaviour in order to optimise our website and identify errors.
Data processing in the context of our Facebook and Instagram company websites
We operate a company page (fan page) on the social network facebook.com (“Facebook”) and a page/profile on the social network Instagram (“Instagram”) of the company Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. For the operation of the aforementioned pages, we are jointly responsible with Meta Platforms Ireland Limited (“Meta”) within the meaning of Art. 4 No. 7 GDPR. Linked here you will find the Terms of Use and Policies of Facebook as well as the Joint Responsibility Agreement pursuant to Art. 26 GDPR and the Terms of Use of Instagram and the Instagram Data Policy.
For the type and scope of the information you provide, the associated purposes of the data processing, its lawfulness and information on exercising your rights, please refer to the data protection notices of Facebook or Instagram, as well as further information provided by Meta on the processing of "Insights data" (see above). Meta provides us with so-called page insights for our site. Page Insights (including https://www.facebook.com/business/a/page/page-insights) is summarised data that allow us to understand how people interact with our site. The generation and provision of these page insights is the responsibility of Facebook, over which we have no control. This also applies to the data processing, which is carried out exclusively for the purposes of Meta Platforms Ireland Limited. Meta also assumes all obligations under the GDPR with regard to the processing of insights data (including Articles 12 and 13 GDPR, Articles 15 to 22 GDPR and Articles 32 to 34 GDPR).
The purpose of our data processing of the data provided is the statistical evaluation of the use of our company pages. This enables us, for example, to determine the preferred visiting and posting times of our users and to use this data to optimise our posts and our company pages. In addition, we process personal data made publicly available by you there (e.g. clear names in the user profile) as well as data directly related to activities on our company pages (e.g. contributions, posts, likes, marks), also for the purpose of communicating with you.
The basis for data processing is Art. 6 (1) s. 1 lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures, insofar as the data are processed in accordance with the Facebook or Instagram terms of use, otherwise, insofar as there is a data protection responsibility on our part, Art. 6 (1) s. 1 lit. f GDPR, which permits the processing of data for the protection of the legitimate interests of the controller, insofar as the interests or fundamental rights and freedoms of the data subject are not outweighed. Our interest lies in providing content and communicating with users of thesocial networks and improving the reach and effectiveness of our posts.
Please assert your rights to information, correction, deletion, restriction of processing and data transferability of your stored Insights data against Meta, as Meta has assumed the corresponding obligations:
Meta Platforms Ireland Limited
4 Grand Canal Square
Dublin 2, Ireland
Privacy policy: https://www.facebook.com/about/privacy/
Data processing in the context of our LinkedIn company page
We operate a company page in the social network linkedin.com of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”) and are provided with so-called page analytics by LinkedIn with regard to our services. We are jointly responsible with LinkedIn for this operation of the LinkedIn company page within the meaning of Article 26 of the GDPR.
For the type and extent of the information provided to LinkedIn, the related purposes of LinkedIn's data processing, its lawfulness and information on how to exercise your rights, please refer to LinkedIn's privacy notice at URL https://www.linkedin.com/legal/privacy-policy and the shared responsibility agreement found at URL https://legal.linkedin.com/pages-joint-controller-addendum. Page Analytics is summarised data that allows us to understand how people interact with our site. The generation and provision of these page analytics is the responsibility of LinkedIn, over which we have no control. LinkedIn assumes all obligations under the GDPR with regard to the processing of insights data (including Articles 12 and 13 GDPR, Articles 15 to 22 GDPR and Articles 32 to 34 GDPR).
The purpose of our data processing of the data provided by LinkedIn is the statistical evaluation of the use of our company page. This enables us, for example, to determine the preferred visiting and posting times of our users and to use this data to optimise our posts and our company page. In addition, we process personal data made publicly available by you on LinkedIn (e.g. clear names in the user profile) as well as data directly related to activities on our company page (e.g. contributions, posts, likes, marks), also for the purpose of communicating with you.
The basis for the above data processing is Art. 6 (1) s. 1 lit. a GDPR. If you have given your consent to LinkedIn, you can revoke this consent at any time with effect for the future. If you have given us consent in this regard, you can revoke this consent at any time with effect for the future. Otherwise, the basis for our data processing is Art. 6 (1) s. 1 lit. f GDPR, which permits the processing of data to protect the legitimate interests of the controller, provided that the interests or fundamental rights and freedoms of the data subject are not overridden. Our interest lies in providing content and communication with LinkedIn users and in improving the reach and effectiveness of our posts.
Please assert your rights to information, correction, deletion, restriction of processing and data transferability of your stored Insights data against LinkedIn, as LinkedIn has assumed the corresponding obligations:
LinkedIn Ireland Unlimited Company
Wilton Place
Dublin 2
Ireland
Privacy policy https://www.linkedin.com/legal/privacy-policy
Data processing for applications
You can send us applications for jobs in our company via our websites and the contact details we have stored there. Insofar as personal data is transmitted to us by you in this way or in any other way when you apply, we process your data for the purpose of examining, processing and responding to your application and, if necessary, for preparing the employment relationship.
The basis for the data processing is either Art. 88 (1) GDPR, § 26 (1) German Federal Data Protection Act (BDSG (new)) which allows the processing of for the purpose of deciding on the justification, for the establishment as well as for the performance of employment relationships or - if you have given your consent - Art. 6 ( 1) s. 1 lit. a GDPR. You may revoke any consent you have at any time with effect for the future. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing operations already carried out remains unaffected by the revocation.
Data processing for the protection of legitimate interests
We may also process your data if it is necessary to protect the legitimate interests of us or of third parties. This may be the case in particular to ensure IT security and IT operations, especially in the case of support requests, to be able to understand and prove facts in the event of legal disputes and to statistically evaluate the use of our website. The basis for data processing is then Art. 6 (1) s. 1 lit. f GDPR.
Other data processing based on your consent
It may also happen that we ask for your consent to process personal data. Any consent given and the relevant data processing is on a voluntary basis and you will not suffer any disadvantage if you do not consent.
The data processing is then based on your consent pursuant to Art. 6 (1) s. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. An informal notification to us is sufficient for this purpose. The legality of the data processing operations already carried out remains unaffected by the revocation.
Log files
Each time our websites are accessed, usage data is transmitted by the respective internet browser and stored in log files, the so-called server log files. The data records stored in this process contain the following data: Browser type and browser version, operating system used, referrer URL, time of server request and (shortened) IP address.
This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to subsequently check this data if we become aware of concrete indications of illegal use.
The basis for data processing is Art. 6 (1) s. 1 lit. f GDPR, which permits the processing of data to protect the legitimate interests of the controller, provided that the interests or fundamental rights and freedoms of the data subject do not prevail. We have an interest in the prosecution, prevention and punishment of unlawful use of our offer.
Data processing for the fulfilment of legal obligations
In addition, we process your data to fulfil legal obligations (e.g. regulatory requirements, commercial and tax storage and proof obligations). The basis for the data processing is Art. 6 ( 1) s. 1 lit. c GDPR, which permits the processing for the fulfilment of a legal obligation.
Recipients of the personal data
Your personal data will only be passed on to third parties or otherwise transferred if this is necessary for the purpose of contract processing or billing or if you have previously consented or if there is a legal basis for the transfer.
Service providers who support us in the context of the aforementioned processing of your data are domainfactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning (e-mail provider & server hosting) and, where applicable, other sales and marketing partners, software (SaaS) providers, IT service providers, in particular service providers for software and hardware maintenance, and e-mail service providers.
Duration of data storage
In principle, we delete your data as soon as it is no longer required for the above-mentioned purposes, unless temporary storage is still necessary. For example, we store your data on the basis of legal obligations to provide proof and to retain data, which result from the German Commercial Code and the German Fiscal Code, among other things. The storage periods are then up to ten full years. In addition, we keep your data for the period in which claims can be asserted against our company (statutory limitation period of three or up to thirty years).
Data security
Your personal data will be transmitted securely by us through encryption. We use the SSL (Secure Socket Layer) coding system for this. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. Furthermore, we secure our websites and other systems through technical and organisational measures against loss, destruction, access, modification or distribution of your data by unauthorised persons.
Data subject rights
Within the framework of the applicable legal provisions, you have the right at any time to obtain information about the personal data we have stored about you, its origin and recipients and the purpose of the data processing and, if applicable, the right to have this data corrected or deleted.
For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time using the contact details given in section 1.
You may also have the right to restrict the processing of your data and the right to receive the data you have provided in a structured, common and machine-readable format.
If you have given us consent to process personal data for specific purposes, you can revoke your consent at any time with effect for the future. If we process your data on the basis of legitimate interests, you may object to this processing on grounds relating to your particular situation. If we cannot substantiate compelling legitimate reasons for further processing that outweigh your interests, rights and freedoms, or if we process the data in question from you for the purpose of direct marketing, we will then no longer process your data.
In addition, you have the right to contact a data protection supervisory authority (right of complaint).