Information for interested parties (Website) concerning the processing of personal data according to Art. 13 of the General Data Protection Regulation As of: 5 September 2018
Welcome to GitaroJIM! Thank you for your interest in our website. Protecting your personal data and your privacy is very important to us. As a result, we would like to provide you with information concerning data protection at our company. We comply with the legal regulations of the European General Data Protection Regulation (GDPR), the new German Data Protection Act (BDSG new), Telemedia Act (TMG) and other statutory provisions related to data protection. Our websites are protected from damage, destruction or unauthorized access through technical measures. We collect a minimum of personal data and only those which are required to perform our services, ensure the security of our operations, improve our offerings, prevent, detect and investigate potentially unauthorized or illegal activities, and to enforce our general terms and conditions.
To ensure that you are fully aware of how we process personal data on our websites, we have compiled this information in a comprehensive and readily understandable form. We would like to assure you that we take all necessary technological and organizational steps to protect your data.
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
TERRASYS Geophysics GmbH & Co. KG („TERRASYS“)
c/o Stefan Hoßfeld
Tel. +49 – 40 – 2800 46 0
2. Legal basis and purposes of processing
Insofar as we obtain consent from the data subject for personal data processing procedures, Art. 6(1)(a) of the General Data Protection Regulation (GDPR) serves as the legal basis. When processing personal data required for the fulfilment of a contract to which the data subject is party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing procedures required for the implementation of pre-contractual measures. Insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6(1)(d) GDPR serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not override the aforementioned interest, Art. 6(1)(f) GDPR serves as the legal basis for processing.
3. Data types and data subjects
When you access our websites, we automatically collect data of a general nature. These data (server log files) include the following: browser* (type/version), operating system*, the domain name of your Internet provider, time of access to the website, referrer URL* (the site visited previously), cookies and other similar general data.
4. Collection and storage of usage data
No data regarding usage of this website is stored.
5. Purposeful use of data
We follow the principle of purposeful use of data and collect, process and use your personal data only for those purposes for which you have provided them to us. Your personal data will not be disclosed to third parties without your express consent, unless this is necessary for provision of services or performance of a contract. Even transmission to state institutions and authorities entitled to receive information will occur only in accordance with legal disclosure requirements or if a court order obliges us to such disclosure. We also take data protection within the company very seriously. Our employees and our contracted service providers are obliged to secrecy and to compliance with legal data protection requirements.
6. Third country
When calling up the website, it cannot be guaranteed that the data remain within the EU. Due to the manner in which the Internet operates, it may be technically possible for an inquiry being sent from you to us or for data returning from a website to pass via a server in a non-secure third country. This cannot be prevented.
7. Data minimization, data economy
Generally, it is not necessary for you to enter personal data to use our website. However, we may need your personal information in order to provide our services. This applies to the mailing of informational materials or ordered goods as well as to responses to individual inquiries.
If you request us to provide services or to send goods in connection with such services, we collect and store your personal information only to the extent required for provision of the services or performance of the contract. It may be necessary to pass on your personal information to companies we use in providing the services or executing the contract. These are, for example, transportation companies or other service providers. If we should need to collect or store your personal data for particular activities or services, we will request your express consent in the relevant area of our website. Following completion of the contract, your data will be blocked and – when the retention periods required by tax and commercial law have elapsed – erased unless you have expressly agreed to allow continued use of these data. When a website is called up, we store the IP address for 7 days.
8. Rights of access, rectification, erasure, restriction of processing, data portability
Without indicating a reason, you may request information regarding your data stored by us free of charge at any time. You are entitled to have the data that we have collected about you blocked, rectified or erased. You may also withdraw the consent you provided us for collecting and using data, without indicating a reason. To do so, you can contact the address found in the imprint section. We are available to answer any further questions you might have regarding data protection or the processing of your personal data. Please note that data protection provisions may be subject to change. It is therefore advisable and necessary to remain informed of the changes to legal regulations and company practices. You can find further information under the following link from the Data Protection Office for Hamburg: https://www.datenschutz-hamburg.de
9. Responsible data protection authority & right to object
If you are not satisfied with our service or the information we have provided, please let us know using the aforementioned contact details. Please also use these details if you have discovered a data protection violation. Thank you for your support. In the event of problems with the processing of data, please feel free to contact our data protection officer (see contact details above) at any time. As a matter of principle, you have the right to lodge a complaint with a supervisory authority concerning the processing of your data. You may do so with the supervisory authority responsible for your location or with the supervisory authority responsible for us. The supervisory authority responsible for us is:
Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
Ludwig-Erhard-Str 22, 7. OG
11. Amendment of the data protection provisions
Our data protection policy may be adapted at irregular intervals so that it complies with current legal requirements or for the purpose of implementing changes to our services, e.g. for the incorporation of new offerings. The new data protection policy then automatically applies upon your next visit.