Privacy policy
- What is the purpose of this Privacy Policy?
The General Data Protection Regulation (GDPR) regulates the processing of personal data and contains some obligations for companies. According to Art. 13 GDPR, you as a data subject have, for example, the right to be informed about certain aspects of the processing already at the time of collection of your personal data. When using this website and its features, various personal data are collected and processed. Therefore, we have to inform you about specific processes. This is the purpose of this Privacy Policy.
- What are personal data?
The subject of privacy are personal data (hereinafter also referred to as “data”), i.e. all information that somehow relates to a person, such as name, address, profession, e-mail address, state of health, income, marital status, genetic characteristics, phone number and user data such as the IP address.
- What does processing of personal data mean?
Processing means any operation related to personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- What are cookies?
Cookies are small data packets, usually consisting of letters and numbers that are stored on a browser when you visit certain websites. Cookies do not contain any data that identify you personally. However, the information we store about you may be associated with the data obtained from and stored in the cookies.
- Who is responsible for the data processing on the website?
The Controller for the processing of your personal data on the website www.angioconsult.de (hereinafter referred to as “website”) is AngioConsult GmbH. You will find the contact details in the legal notice.
- How do I contact the Data Protection Officer?
We have appointed an external data protection officer, who can be reached at MORGENSTERN consecom GmbH, Große Himmelsgasse 1, 67346 Speyer, Germany and at the phone number +49 (0) 6232-10011944.
- Accessing the website
Each time the website is visited, usage data are transmitted by the respective browser and stored in log files. The data records stored in this process contain the following data: date and time of access, name of the subpage accessed, IP address, referrer URL (origin URL from which you came to the website), amount of data transferred as well as product and version information of the browser used.
The admissibility of this processing is based on Art. 6 para. 1 b), f) GDPR (user relationship, legitimate interest). Our legitimate interest lies in providing a website with information, offering services to customers and optimising the website operation. The processing of usage data is necessary so that you can access our website. Some usage data are analysed in anonymous form in order to further improve the website and make it more user-friendly, to find and correct errors more quickly and to control server capacities. Thus, for example, it can be traced at what time the use of the website is particularly popular and appropriate data volume can be made available.
Your IP address is deleted or anonymised after termination of use. Any further storage does not take place.
- Contact form and e-mail by click
You can contact us via a contact form. Therefore, you have to provide your name and e-mail address. In some parts of the website, you also have the option of opening an e-mail to us with just one click. In this case, the e-mail address that is linked to your e-mail program is automatically used as the sender. If you do not want your e-mail address to be retrieved in this way, you can change this in your settings accordingly.
The admissibility of this processing is based on Art. 6 para. 1 b) GDPR (pre-contractual measure). If you want to use our contact form or send us an e-mail, it is required to enter the data.
Your request will be deleted after 6 weeks, unless a contract is concluded with us. In some cases, the data will be stored for a longer period of time if we have an overriding legitimate interest.
- Use of cookies
Cookies are set on our website. The cookies which are technically necessary for operation are used, for example, to improve user-friendliness, optimise presentation, prevent fraud and ensure security.
The admissibility of this processing is based on Art. 6 para. 1 f) GDPR (legitimate interest). We want to ensure an optimised presentation of the website so that the information can be viewed well and securely by you. If you delete the necessary cookies, this may lead to functional restrictions and an impairment of security.
Two types of cookies are used: temporary cookies are automatically deleted when you close your browser (session cookies). Persistent cookies, on the other hand, have a maximum duration of up to 20 days.
- Google services and tools
We use various services of Google Ireland Limited (hereinafter referred to as “Google”), Gordon House, Barrow Street, Dublin 4, Ireland, on our website. Personal data (e.g. date and time of access, IP address) may be transferred to servers in Ireland or the USA. In cases of data transfer to the USA, Google has globally included the standard data protection clauses approved by the EU Commission. The regulations contained and their compliance ensure an adequate level of privacy also for processing outside the EU and the EEA. How the data transferred to Google are used there and how long they are stored is described in Google’s Privacy Policy for the respective service. The use is regularly in anonymised or at least pseudonymised form.
The following services are used on our website:
Google Web Fonts
We have integrated Google Fonts to improve the typeface and the integration of external fonts on our website. Google Fonts is installed locally. A connection to Google servers does not take place.
The admissibility of the processing is based on Art. 6 para. 1 f) GDPR (legitimate interest). We want to ensure that our website is presented in the best possible way and is easy to read. If you deactivate the service, the content of our website will be displayed in a different font.
You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://policies.google.com/privacy?hl=en.
- OpenStreetMap
We have integrated the map service OpenStreetMap on our website provided by OpenStreetMap Foundation, St John’s Innovation Centre, Cowley Road, Cambridge, CB4 0WS, Great Britain. OpenStreetMap allows you to better find the location of our headquarters. Personal data (e.g. date and time of access, IP address) may be transferred to servers in countries outside the EU and the EEA (in particular to the USA) during use.
The admissibility of this processing is based on Art. 6 para. 1 f) GDPR (legitimate interest). We want to facilitate locating our company and ensure that our headquarters can be found easily. The data processing takes place automatically when accessing the website.
We do not store any personal data from OpenStreetMap.
For more information on the processing of data by the provider of OpenStreetMap, please refer to the Privacy Policy of the OpenStreetMap Foundation.
- MapBox API
We use MapBox API on the website, which is a service provided by MapBox Inc, 740 15th Street NW, 5th Floor, Washington, District of Columbia 20005, USA. MapBox API allows you to visually display geographic information. This makes it easier for you to find our location. When using MapBox, personal data (e.g. date and time of access, IP address) may be transferred to servers in countries outside the EU and the EEA (in particular to the USA).
The admissibility of this processing is based on Art. 6 para. 1 f) GDPR (legitimate interest). We want to facilitate finding our company and ensure that our headquarters can be found easily. The data processing takes place automatically when you access the website.
We do not store any personal data generated via MapBox API.
For more information on the processing of your personal data, please refer to the Privacy Policy of MapBox Inc.
- Hosting with Amazon Web Services (AWS)
Our website is hosted on Amazon Web Services (AWS). This is an offer of Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, USA. The server is located within the EU or the EEA. However, it cannot be ruled out that data may also be transferred to third countries such as the USA. We have concluded the standard data protection clauses approved by the EU Commission with Amazon Web Services, Inc. and have contractually agreed that an adequate level of privacy will also be maintained outside the EU and the EEA.
- Application
You can apply to us for vacancies or on your own initiative and send us your application documents by e-mail. We process your personal data for the assessment in the application process and to communicate with you.
Based on Section 26 German Federal Data Protection Act “BDSG” (application procedure and establishment of an employment relationship), this data processing is permitted. If you do not provide us with any documents, we will not be able to take you into consideration.
Application documents will be retained for 3 months in the event of rejection, unless you have given your consent for longer retention.
- Recipients
The data collected when accessing and using the website and the information you provide when contacting us will be transferred to our server and stored there.
If you contact us via the website, your request will be processed and answered by the relevant employees. Our website is hosted by a service provider and managed by an external administrator. It is therefore possible that the generated usage data or specific information from the contact form can be viewed by these processors as part of the hosting and maintenance of the website. In addition, we have integrated various third-party services that receive data about the use of the website.
The transfer to these recipients takes place either in the context of the use of the website on the basis of a legal permission or in the context of a formally correctly justified data processing.
- Your rights
You have a right of access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR) and data portability (Art. 20 GDPR).
If your personal data are processed on the basis of Art. 6 para. 1 f) GDPR, you have the right to object on grounds relating to your particular situation, including profiling based on this provision (Art. 21 GDPR).
You can withdraw your consent given to us at any time with effect for the future. However, this has no effect on the data processing based on this consent that took place until that time (e.g. storage of application documents).
For your notification, please use the contact address given in the legal notice.
You also have the right to contact a supervisory authority (e.g. “Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit” Rheinland-Pfalz, Hintere Bleiche 34, 55116 Mainz, Germany).