privacy

Data protection

This data protection declaration clarifies the type, scope and purpose of the processing of personal data (hereinafter referred to as "data") within our online offer and the websites, functions and content associated with it as well as external online presences, such as our social media profile. (hereinafter jointly referred to as "online offer"). With regard to the terms used, such as "personal data" or their "processing", we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Responsible:

Name: Leading Concepts GmbH

Street no.: Steinleitenweg 2

ZIP, city, country: 90587 Veitsbronn

Managing Director: Lars Tiefel

Email address: support@leading-concepts.de

Types of data processed:

☒ Inventory data (eg, names, addresses).

☒ Contact information (e.g., email, phone numbers).

☒ Content data (e.g., text input).

☒ Contract data (e.g. object of contract, term, customer category).

☒ Usage data (e.g. websites visited, interest in content, access times).

☒ Meta/communication data (e.g. device information, IP addresses).

Processing of special categories of data (Article 9 (1) GDPR):

☒ No special categories of data are processed.

Categories of persons affected by the processing:

☒ Customers

In the following, we also refer to the data subjects as "users".

Purpose of processing:

☒ Provision of the online offer, its content and functions. ☒ Provision of contractual services, service and customer care.

☒ Answering contact requests and communicating with users.

☒ Marketing, advertising and market research.

☒ Security Measures.

Status: 29.10.2019

1. Relevant Legal Bases

In accordance with Art. 13 GDPR, we will inform you of the legal basis for our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies: The legal basis for obtaining consent is Art. 6 (1) lit. a and Art Answering inquiries is Article 6(1)(b) GDPR, the legal basis for processing to fulfill our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing to safeguard our legitimate interests is Article 6(1)(c) GDPR 6 Paragraph 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 Paragraph 1 lit. d GDPR serves as the legal basis.

2. Changes and Updates to the Privacy Policy

We ask you to inform yourself regularly about the content of our data protection declaration. We will adapt the data protection declaration as soon as the changes in the data processing we carry out make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

3. Security Measures

3.1. In accordance with Art. 32 GDPR, we take appropriate technical measures, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probability of occurrence and severity of the risk for the rights and freedoms of natural persons and organizational measures to ensure a level of protection appropriate to the risk; The measures include, in particular, securing the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access, input, transfer, securing availability and their separation. Furthermore, we have set up procedures that ensure that the rights of data subjects are exercised, that data is deleted and that data is reacted to if the data is at risk. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings (Article 25 GDPR).

3.2. The security measures include, in particular, the encrypted transmission of data between your browser and the servers of our web hosting provider.

4. Cooperation with Processors and Third Parties

4.1. If, as part of our processing, we disclose data to other people and companies (contract processors or third parties), transmit it to them or otherwise grant them access to the data, this is only done on the basis of legal permission (e.g. if the data is transmitted to third parties, as to payment service providers, pursuant to Art. 6 Para. 1 lit. b GDPR is required for the fulfillment of the contract), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

4.2. If we commission third parties to process data on the basis of a so-called "order processing contract", this is done on the basis of Art. 28 DSGVO.

5. Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or this happens as part of the use of third-party services or disclosure or transmission of data to third parties, this only takes place if it is to fulfill our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the special requirements of Art. 44 et seq. GDPR are met. This means that the processing takes place, for example, on the basis of special guarantees, such as the officially recognized determination of a data protection level corresponding to that of the EU (e.g. for the USA through the "Privacy Shield") or compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").

6. Rights of data subjects

6.1. You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR.

6.2. You have accordingly. Art. 16 DSGVO the right to request the completion of the data concerning you or the correction of incorrect data concerning you.

6.3. In accordance with Art. 17 GDPR, you have the right to demand that the data in question be deleted immediately, or alternatively, in accordance with Art. 18 GDPR, to demand a restriction of the processing of the data.

6.4. You have the right to request that you receive the data that you have provided to us in accordance with Art. 20 GDPR and to request that it be transmitted to other responsible parties.

6.5. You also have the right, in accordance with Article 77 GDPR, to lodge a complaint with the competent supervisory authority.

7. Right of Withdrawal

You have the right to revoke your consent in accordance with Article 7 (3) GDPR with effect for the future.

8. Right to Object

You can object to the future processing of data relating to you at any time in accordance with Art. 21 GDPR. The objection can be made in particular against processing for direct advertising purposes.

9. Special provisions for our offer on Amazon's marketplaces

9.1. Validity of the Amazon data protection declaration : The data protection declaration of Amazon applies in all other respects. In this respect, Amazon is responsible for data processing. You can find out more about how Amazon handles your data here: //amazon.de/gp/help/customer/display.html/ref=footer_privacy?ie=UTF8&nodeId=3312401.

9.2. These special provisions were created with the Trusted Shops legal texter (//shop.trustedshops.com/de) in cooperation with Wilde Beuger Solmecke Rechtsanwälte (// wbs-law.de).