Data Protection

Introduction

We are pleased that you are interested in reanmo (hereinafter "we", "us") and that you are visiting our website.

With the information presented below, we give you an overview of the processing of your personal data on our website https://reanmo.de/ (hereinafter "website").

We also want to inform you about your rights under data protection laws. The processing of your personal data by us is always in accordance with the General Data Protection Regulation (hereinafter "GDPR"), the Act on Data Protection and Protection of Privacy in Telecommunications and Telemedia (hereinafter "TTDSG") and all applicable country-specific data protection regulations.

1 Responsibility

Responsible within the meaning of the GDPR is the

reanmo GmbH Konrad-Zuse-Str. 6 46397 Bocholt Telephone: [tel:+49 (0) 2871 2039 190](+49 (0) 2871 2039 190) EMail: info@reanmo.com

2 Data Protection Officer

You can reach our data protection officer as follows:

Niklas Hanitsch secjur GmbH Steinhöft 9 20459 Hamburg

Telephone: +49 40 228 599 5 20 Email: dsb@secjur.com

You can contact our data protection officer directly at any time with any questions or suggestions regarding data protection and the exercise of your rights.

3 Definition

This data protection declaration is based on the terms of the GDPR. For the sake of simplicity, we would like to explain some important terms in this context in more detail:

• Personal data : Personal data is any information relating to an identified or identifiable natural person. A natural person is considered to be identifiable if, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.
• Data Subject : Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.
• Processing : Processing is any process carried out with or without the help of automated processes or any such series of processes in connection with personal data, such as collecting, recording, organizing, arranging, storing, adapting or changing, reading out, querying, the use, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction.
• Recipient : Recipient is a natural or legal person, public authority, agency or other body to which personal data are disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients. Daten zu verarbeiten.
• Third Party : Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct responsibility of the controller or processor, are authorized to process the personal data.
• Consent : Consent is any expression of will voluntarily given by the data subject in an informed manner and unequivocally for the specific case in the form of a declaration or other clear affirmative action, with which the data subject indicates that they are processing their personal data data agrees.
  

4 Origin of the personal data

We may receive personal data in the following ways:

4.1 Information Provided by You

You have the option of providing information (e.g. contact details) about yourself on our website.

4.2 Data collected and generated automatically

By using our website, data is automatically collected and generated.

4.3 Information Collected by Third Parties

Insofar as we maintain presences in social and professional networks, we can receive data from you via these (e.g. if you contact us via a social or professional network or react to one of our shared content there).

5 Scope, purpose, legal basis, storage period and, if applicable, recipients and third-country transmission of the respective processing of personal data.

5.1 General information

In the following we give you an overview of which personal data we process. For this we show in welc the scope, for what purposes and on what legal basis we process personal data.

We will not pass on your personal data to third parties without your consent, unless this is permitted by law (e.g. because this is necessary for the performance of the contract).

The processing of your personal data can be based in particular on the following legal bases:

• Article 6 Paragraph 1 Sentence 1 Letter a) GDPR serves as the legal basis for processing operations in which we obtain consent for a specific type of processing.
• If the processing of personal data is necessary to fulfill a contract to which you are a party, the processing is based on Article 6 (1) sentence 1 lit. b) GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures.
• If we are subject to a legal obligation which necessitates the processing of personal data, the processing is based on Article 6 (1) sentence 1 lit. c) GDPR.
• FFurthermore, processing operations can be based on Article 6 Paragraph 1 Sentence 1 Letter f) GDPR. Processing operations are based on this legal basis if the processing is necessary to safeguard a legitimate interest of ours, provided that the interests, fundamental rights and fundamental freedoms of the person concerned do not prevail.
  

5.2 Data transfers to third countries

Among other things, we use services from companies that are based in third countries (e.g. in the USA). If these services are active, there is a possibility that data will be transmitted to a third country and processed there. We would like to point out that in these countries no level of data protection comparable to that of the EU can be guaranteed.

US companies are, for example, obliged to hand over data to authorities or similar institutions, without you as the person concerned being able to lodge an effective legal remedy according to our understanding of the law. We have no influence on such data transfer.

5.3 Deletion of data

Insofar as no specific storage period is specified in this data protection notice, the data processed by us will be deleted in accordance with the legal requirements as soon as your consent to processing is revoked or other permissions are no longer applicable (e.g. if the purpose of processing this data is no longer applicable or they are not necessary for the purpose). If the data is not deleted because it is required for other, legally permissible purposes, its processing will be limited to these purposes. This means that the data will be blocked and not processed for other purposes. This applies e.g. B. for data that must be stored for commercial or tax reasons or whose storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.

5.4 Safety measures

We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons to ensure a level of protection appropriate to the risk.

The measures include, in particular, securing the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access, input, disclosure, securing availability and their separation. Furthermore, we have set up procedures that ensure the exercise of data subject rights, the deletion of data and reactions to data threats. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

5.5 Transmission of personal data

As part of our processing of personal data, it may happen that the data is transmitted to other bodies, companies, legally independent organizational units or persons or that it is disclosed to them. The recipients of this data can e.g. B. service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.

5.6 Website in general

5.6.1 Provision of the website, server log files

5.6.1.1 Scope of processing

To provide our website, we use storage space, computing capacity and software that we rent from an appropriate server provider (web hoster). These services also include sending, receiving and storing e-mails. In addition, when you visit our website, data that your browser transmits to our server is automatically processed. This general data and information is stored in the log files of the server (in so-called "server log files"). Can be recorded:

• BBrowser type and browser version
• operating system used
• Referrer URL (previously visited website)
• Host name of the accessing computer
• Date and time of the server request
• IP adresse
  

5.6.1.2 purpose of processing

When using this data and information, we do not draw any conclusions about your person. The purposes we pursue include in particular:

• Provision of our website
• Provision of our online offer and user-friendliness
• Operation and provision of information systems
• Content Delivery Network (CDN)
• Provision of contractual services
• customer service
• Providing an Email Communication
• Ensuring a smooth connection to the website
• Clarification of abuse or fraudulent activities,
• Problem analysis in the network
• Evaluation of system security and stability.
  

5.6.1.3 Legal basis

The legal basis for data processing is our legitimate interest within the meaning of Article 6 Paragraph 1 Sentence 1 Letter f) GDPR. We have a legitimate interest in being able to provide our website in a technically flawless manner.

5.6.1.4 Recipients of personal data

Your data will be passed on to the required extent to service providers for hosting and content delivery network (CDN) as part of order processing.

5.6.2 Use of cookies

5.6.2.1 General information

We use cookies on our website.

These are text files that your browser creates automatically and that are stored on your IT system when you visit our site. Through cookies, certain information flows to the place that sets the cookie. By using cookies, it is not possible to run programs or transmit viruses to your end device. If you do not want cookies to be used, you can switch them off in the settings.

When you visit our website or a sub-website for the first time and it contains cookies, you will be shown a "cookie banner". There you will be informed about the individual cookies that we use. You can find out about each individual cookie with regard to the name, the provider, the purpose of the processing and the storage period. You can also allow us to use non-essential cookies and reverse this decision there.

From a legal point of view, a distinction must be made between necessary and non-essential cookies.

5.6.2.2 Necessary cookies

We use necessary cookies. These are cookies that are technically required to provide all functions of our website. The legal basis for data processing is our legitimate interest within the meaning of Article 6 Paragraph 1 Sentence 1 Letter f) GDPR. We have an overriding legitimate interest in being able to offer our offer in a technically flawless manner. The legal basis for the use of cookies vis-à-vis our contractual partners who use contractual services owed by us via our website is Article 6 Paragraph I lit. b) GDPR, the provision of our contractual services.

5.6.2.3 Non-essential cookies

We also use non-essential cookies (e.g. analysis and marketing cookies). These are cookies that are not technically necessary. We use them to understand your behavior on our website and to improve our offer. The legal basis for data processing is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a) GDPR. The cookies are only set after you have given your consent via our “cookie banner”.

5.6.2.4 Storage duration

With regard to the storage period, the following types of cookies are distinguished:

• Temporary cookies (also: session or session cookies): emporary cookies are deleted at the latest after a user has left an online offer and closed his end device (e.g. browser or mobile application).
• Permanent cookies: Permanent cookies remain stored even after the end device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, the user data collected with the help of cookies can be used to measure reach. If we do not provide users with explicit information on the type and storage period of cookies (e.g. in the context of obtaining consent), users should assume that cookies are permanent and the storage period can be up to two years.
  

5.6.3 Cookie Banner

5.6.3.1 Scope of processing

With our cookie banner we inform you about the specific cookies we use. In addition, we give you the opportunity to decide whether you want to consent to the setting of non-essential cookies. Can be processed:

• Usage data (e.g. websites visited, time of access)
• Meta and communication data (e.g. IP address)
  

5.6.3.2 Purpose of processing

We process your personal data for the following purposes:

• Informing the user about the cookies we use
• Enabling you to consent to technically unnecessary cookies
  

5.6.3.3 Legal basis of processing

The legal basis for the use of the cookie banner is Article 6 Paragraph 1 Sentence 1 Letter f) GDPR. We have an overriding legitimate interest in using the cookie banner, which enables us to obtain the legally required consent for the use of unnecessary cookies and to meet our obligation to provide information regarding cookies.

5.6.3.4 Storage duration

The cookie banner saves the preferences until they are reset or adjusted by you.

5.6.3.5 Recipients of personal data

Your data will be passed on to a service provider for cookie banners as part of order processing to the extent required.

5.7 Contact options

5.7.1 Scope of processing

You can contact us via e-mail or the contact form on our website.

As part of contacting and answering your request, we process the following personal data from you:

• First and Last Name
• E-mail address
• phone number
• address data
• Date and time of the request
• IP address
• possibly communication content
  

5.7.2 Purpose of processing

We process your data to answer your request and other matters resulting from it.

5.7.3 Legal basis

If your request is related to pre-contractual measures or an existing contract with us, the legal basis is the fulfillment of the contract and the implementation of pre-contractual measures in accordance with Article 6 (1) sentence 1 lit. b) GDPR.

If your request is made independently of pre-contractual measures or existing contracts with us, our overriding legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 lit. f) GDPR represent the legal basis provide a way for you to contact us on our website.

5.7.4 Storage duration

We delete your personal data as soon as they are no longer required to achieve the purpose of the collection. In the context of contact requests, this is generally the case if the circumstances show that the specific matter has been finally processed.

5.7.5 Recipients of personal data

Your data will be passed on to a service provider for customer contact management as part of order processing to the extent required.

5.8 Customer Relationship Management System

5.8.1 Scope and purpose of processing

We use functions of a customer relationship management system ("CRM system") on this website. The CRM system enables us, among other things, to manage existing and potential customers as well as customer contacts and to organize sales and communication processes. The use of the CRM system also enables us to analyze and optimize our customer-related processes. Details on the functions of the CRM we use can be found here:

https://legal.hubspot.com/de/privacy-policy

As a result, we process the following data, among others:

• E-mail address
• First and Last Name
• address
• IP address
• phone number
  

5.8.2 Legal basis

The CRM is used on the basis of Article 6 (1) (f) GDPR. We have a legitimate interest in customer administration and customer communication that is as efficient as possible. If a corresponding consent has been requested, the processing takes place exclusively on the basis of Article 6 (1) (a) GDPR; the consent can be revoked at any time via our cookie banner.

5.8.3 Recipients of personal data

Your data will be passed on to a service provider for CRM systems as part of order processing to the extent required.

5.9 Google Tag Manager

5.9.1 Scope and purpose of processing

We use the Google Tag Manager to control the use of code snippets ("tags"), e.g. B. Tracking code on our website. The Google Tag Manager enables us to exchange code on our website quickly and easily via a web interface without having to intervene in the source code.

We use the Google Tag Manager to process the following personal data, among others:

• IP adresse
• Device data, such as operation system, browser version, screen resolution
  

5.9.2 Legal basis

The legal basis for the use of the Google Tag Manager is the voluntary and revocable consent you have given pursuant to Article 6 Paragraph 1 Letter a GDPR. You can revoke your consent at any time with effect for the future by making the appropriate changes or adjustments in your cookie settings.

5.9.3 Storage duration

Personal data will be anonymized by Google after 9 months, provided there are no legal storage obligations.

5.9.4 Recipients of personal data

Your data will be sent to Google Ireland Ltd. to the extent required. passed on as part of order processing.

5.10 Google Analytics

5.10.1 Scope and purpose of processing

This website uses functions of the web analysis service Google Analytics. With the help of Google Analytics, we analyze your user behavior in order to make decisions regarding product and marketing optimization based on the results. We process the following personal data through Google Analytics:

• Time of request
• IP addresses
• Online labels
• Device identifiers
• Technical characteristics of users (e.g. browser type and version, device type, operating system)
• Measurement of user behavior (e.g. views of individual pages/content, views of content in different areas, session duration/length of stay, bounce rate
• Use of individual functionalities of the website (e.g. search queries, downloads)
• eCommerce activity (e.g. products purchased, sales)
• Referrer URL (the previously visited page)
  

5.10.2 Legal basis

The legal basis for the use of Google Analytics is the voluntary and revocable consent you have given pursuant to Article 6 Paragraph 1 Letter a GDPR. You can revoke your consent at any time with effect for the future by making the appropriate changes or adjustments in your cookie settings.

5.10.3 Storage duration

Personal data will be anonymised by Google 14 months after your last activity, provided there are no legal storage obligations.

5.11 LinkedIn Analytics

5.11.1 Scope and purpose of processing

We use LinkedIn Analytics on our website to obtain statistical information about the use of our website and to optimize our online marketing activities. LinkedIn Analytics is a web analytics service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

LinkedIn Analytics uses cookies that are stored on your end device and enable analysis of website usage. The information generated by the cookies about your use of our website (including your IP address) is transmitted to LinkedIn servers and stored there. LinkedIn uses this information to compile reports on website activity for us as the website operator and to provide other services related to website activity and internet usage.

5.11.2 Legal basis

LinkedIn Analytics is used on the basis of your consent in accordance with Article 6 (1) (a) GDPR, which is obtained in the cookie banner on our website. Your consent includes in particular the processing of your IP address and the placement of cookies on your end device for analysis purposes.

You can revoke your consent at any time by adjusting the settings in your web browser accordingly and deleting cookies.

Further information on data processing by LinkedIn Analytics can be found in LinkedIn's data protection declaration at: https://www.linkedin.com/legal/privacy-policy.

5.11.3 Storage duration

Personal data is anonymised by LinkedIn for 30 days after your last activity, provided there are no legal storage obligations.

5.12 Google Ad Services

5.12.1 Scope of processing

Google AdServices ("Ads") is used to address visitors to the online presence for advertising purposes via Google Ads ads. Google Ads can be used to create target groups that B. have accessed certain pages. This makes it possible to identify the user on other online presences and to display targeted advertising. Google sets a cookie on the user's computer. This allows personal data to be stored and evaluated, above all the

• activity of the user (in particular which pages have been visited and which elements have been clicked on),
• Device and browser information (in particular the IP address and the operating system),
• Data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and also
• data from advertising partners (in particular pseudonymised user IDs).

Further information on Google Ads and Google's data protection declaration can be found at: https://www.google.com/intl/de/policies/privacy/

5.12.2 Purpose of processing

With Google Ads, target groups are specifically addressed in order to show them advertising that corresponds to the interests of the visitor when they visit the website.

5.12.3 Legal basis

The legal basis for the use of Google Ads is the voluntary and revocable consent you have given, in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future by making the appropriate changes or adjustments in your cookie settings.

5.12.4 Storage duration

Personal data will be anonymised by Google 14 months after your last activity, provided there are no legal storage obligations.

5.13 LinkedIn Ads

5.13.1 Purpose and scope of processing

We use LinkedIn Ads on our website, an advertising service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn Ads enables us to place targeted advertising for our products and services on LinkedIn and other partner sites.

If you visit our website and give your consent in the cookie banner, certain information about your usage behavior (e.g. pages visited, ads clicked) will be recorded and used by LinkedIn Ads in order to be able to show you personalized ads. This may result in the processing of your personal data such as IP address, browser information and device information.

5.13.2 Legal basis

The processing of your personal data in the context of LinkedIn Ads is based on your consent in accordance with Article 6 (1) (a) GDPR, which is obtained in the cookie banner on our website. Your consent includes both the processing of your personal data and the placement of cookies on your end device for advertising purposes.

You have the right to withdraw your consent at any time by adjusting the settings in your web browser accordingly and deleting cookies.

5.13.3 Storage duration

The data collected by LinkedIn is usually stored for a period of 180 days. However, please note that LinkedIn itself may set longer retention periods. For more information on how long LinkedIn stores data and how your personal information is protected, we recommend that you read LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

5.14 Google Double Click

5.14.1 Scope and purpose of processing

We use the online marketing tool DoubleClick from Google. DoubleClick is used to show you interest-based ads across the Google advertising network. With the help of DoubleClick, the advertisements can be tailored to the interests of the respective viewer. For example, our advertising may be displayed in Google search results or in advertising banners associated with DoubleClick. In order to be able to show users interest-based advertising, DoubleClick must recognize the respective viewer and be able to assign the websites they have visited, clicks and other information on user behavior to them. For this purpose, DoubleClick uses cookies or comparable recognition technologies (e.g. device fingerprinting). The information collected is combined into a pseudonymous user profile in order to display interest-based advertising to the user concerned. In addition, DoubleClick can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a DoubleClick ad and later uses the same browser to go to the advertiser's website and buys something there.

5.14.2 Legal basis

The legal basis for the processing of your data is the consent you have given in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR.

5.15 Integration of Third-Party Content

5.15.1 General information

We use content or service offerings from third parties within our online offering in order to provide their content and services, e.g. B. to include videos or fonts (hereinafter uniformly referred to as "content").

This always presupposes that the third-party providers of this content perceive the IP address of the user, since without the IP address they could not send the content to their browser. The IP address is therefore required for the display of this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers can also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information can also be stored in cookies a are stored on the user's device and contain, among other things, technical information about the browser and operating system, referring websites, visiting times and other information on the use of our online offer, as well as being linked to such information from other sources.

5.15.2 Google Fonts

This website uses Google Fonts to display fonts in an appealing way. Google Fonts is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). When retrieving fonts from Google Fonts, connection data is transmitted to Google servers in the USA. This is the IP address of the user, the website from which the user retrieves the fonts and information about the browser used. The processing of personal data takes place on the basis of your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future. Further information on data processing by Google can be found in Google's data protection information: https://policies.google.com/privacy.

6 Your rights In this section we inform you about the rights you have in relation to the processing of your data. You can find the exact scope of the right mentioned in each case in the corresponding article of the GDPR. If you wish to exercise any of your rights, please contact us via email (mailto:dsb@secjur.com).

6.1 Right to confirmation

You have the right to request confirmation from us as to whether we are processing personal data relating to you.

6.2 Information (Article 15 GDPR)

You have the right to receive information from us free of charge at any time about the personal data stored about you and a copy of this data in accordance with the statutory provisions.

6.3 Correction (Article 16 GDPR)

You have the right to request the correction of inaccurate personal data concerning you. You also have the right, taking into account the purposes of the processing, to request the completion of incomplete personal data.

6.4 Deletion (Article 17 GDPR)

You have the right to request that personal data relating to you be deleted immediately if one of the statutory reasons applies and if the processing or storage is not necessary.

6.5 Restriction of processing (Article 18 GDPR)

You have the right to demand that we restrict processing if one of the legal requirements is met.

6.6 Data portability (Art. 20 GDPR)

You have the right to receive the personal data that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transmit this data to another responsible person without hindrance from us, to whom the personal data was provided, provided that the processing is based on the consent in accordance with Article 6 Paragraph 1, Sentence 1 lit Article 9 paragraph 2 letter a) GDPR or on a contract in accordance with Article 6 paragraph 1 sentence 1 letter b) GDPR and the processing is carried out using automated procedures, unless the processing is necessary for the performance of a task is in the public interest or is carried out in the exercise of official authority which has been transferred to us.

In addition, when exercising your right to data portability in accordance with Article 20 (1) GDPR, you have the right to obtain that the personal data be transmitted directly from one person responsible to another person responsible, insofar as this is technically feasible and provided that this does not affect the Rights and freedoms of other people are impaired.

6.7 Objection (Article 21 GDPR)

You have the right, for reasons that arise from your particular situation, at any time against the processing of personal data relating to you, which is based on data processing in the public interest pursuant to Article 6 Paragraph 1 S. 1 lit. e) GDPR or on The basis of our legitimate interest in accordance with Article 6 Paragraph 1 Sentence 1 Letter f) GDPR is to file an objection..

If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

6.8 Revocation of a data protection consent

You have the right to revoke your consent to the processing of personal data at any time with effect for the future.

6.9 Complaint to a supervisory authority

You have the right to complain to a supervisory authority responsible for data protection about our processing of personal data.

7 Up-to-dateness and changes to the data protection notice

This data protection information is currently valid and has the following status: July 2023.

If we further develop our website and our offers or if legal or official requirements change, it may be necessary to change this data protection notice. You can access the current data protection information here at any time.