We are very pleased about your interest in our app - and thus in our company. The protection of your private rights and freedoms is important to us; we only use your data for the purposes intended. Since it is important to us that you are aware at all times of the extent to which we collect, use and, if necessary, transmit your data to third parties, we will inform you below in detail about the processing of your personal data collected by us or stored by us.
In principle, you can use our pages without providing any data; if there are exceptions to this for selected services, we will explain these in the following chapters. When processing personal data, we strictly adhere to the requirements of the EU General Data Protection Regulation (GDPR) and any other data protection regulations.
Goldschmidt Holding GmbH
Dr.-Ing. Georg Friberg (CEO), Sebastian Kanz (CFO)
Hugo-Licht-Straße 3
04109 Leipzig
Germany
E-mail: info@goldschmidt.com
Jörg ter Beek
Cortina Consult GmbH
Hafenweg24
48155 Münster
Germany
To ensure always up-to-date data protection information in connection with the services of our app, we use the CLOUD DSE service of Cookiebox GmbH from Münster.
The EU General Data Protection Regulation (GDPR) provides for extensive rights for data subjects in Chapter III, which we explain to you accordingly below with regard to the processing of your personal data:
This requirement concerns in particular information on the following details of data processing:
We will correct any incorrect data immediately, provided that you inform us of the circumstances accordingly.
Provided that the processing is no longer necessary and one of the following conditions is met:
Provided that one of the following conditions is met:
If it is technically possible and does not affect the rights and freedoms of other persons, we will - at your request - transfer your data to another recipient (responsible party).
If we collect or have collected and process personal data from you (on the basis of Art. 6 (1) e or f or Art. 9 (2) a GDPR), you have the right to object to the data processing (including profiling) at any time (with effect for the future). In exceptional cases, the objection may be ineffective, e.g. if we can demonstrate compelling interests worthy of protection for the processing that outweigh your interests or processing serves the assertion, exercise or defense of legal claims. If we process your personal data for the purpose of direct marketing, you have the right to object to such processing at any time. This also applies to profiling, insofar as it is related to such direct advertising. You also have the right to object to processing of your data concerning you which is carried out by us for scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.
If we collect or have collected and process personal data from you, you have the right not to be subject to any decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you. Exceptions to this requirement apply if the decision is necessary for the conclusion or performance of a contract between you and us or you have expressly consented to the processing. In any case, we will take reasonable steps to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain the intervention of a person on our part, to express our own point of view and to contest the decision.
You have the right to revoke consent to the processing of personal data at any time.
The following information applies to the data processing in our app in general. If there are exceptions or additions to this information, these are described in detail in the respective sections.
We secure our app and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. In addition, we have implemented SSL encryption (SHA256) on our app to protect your data. However, despite regular checks, complete protection against all threats is not possible.
We process personal data in accordance with the requirements of the GDPR, depending on the type and purpose of the processing as follows:
| Permitted use | Specification of the GDPR |
| Informed consent | Art. 6 para. 1 a |
| Performance of a contract | Art. 6 para. 1 b |
| Implementation of pre-contractual measures | Art. 6 para. 1 b |
| Fulfillment of legal obligations | Art. 6 para. 1 c |
| Protection of vital interests | Art. 6 para. 1 d |
| Safeguarding our legitimate interest | Art. 6 para. 1 f |
Our legitimate interest, as defined in Article 6 (1) f GDPR, is based on the performance of our business activities in order to maintain our ability to operate and secure the employment of our employees.
After the purpose of storage has ceased, the retention periods are generally at least six or ten years. As a rule, data is deleted immediately in accordance with our deletion concept, provided that this does not conflict with any retention obligation, necessity for contract fulfillment or a legitimate interest.
We store your personal data only for the period required to fulfill the specified purpose. After the purpose ceases to apply and after any existing retention periods have expired, your data will be deleted immediately. If deletion is not possible, the data will be blocked instead.
As soon as you use our app, some general data and technical information is collected - as shown in the table below:
| Operating system used, visitor origin (referrer, e.g. Google), subpages clicked on | Optimization of our app content as well as our advertising |
| Date and time of access to the website as well as IP address and internet service provider of the visitor | Ensuring the permanent functionality of our IT systems (for the operation of the website) and prevention of misuse |
| Other data and information for security in the event of attacks | Providing relevant information to law enforcement agencies in the event of a cyberattack |
Under certain circumstances (e.g. due to legal or contractual regulations), an obligation arises for you to provide us with your personal data. Examples of such processing as follows:
Nature or purpose of the processing | Need |
|---|---|
| Conclusion of a sales contract (e.g. your address) | Fulfillment of the contractual obligation (e.g. delivery of the goods to your address) |
| In the employee context (e.g. transmission of data to the tax office) | Compliance with legal requirements (e.g. tax regulations) |
The app needs access to various functions and interfaces of your smartphone for some functions. To do this, you must grant the app certain permissions. The permissions can differ between different operating systems and are usually combined into permission categories. You can revoke the permissions at any time in the smartphone settings.
| Authorization | Purpose of the authorization |
|---|---|
| Location access | Locating the device |
| Access to the camera | Taking photos, images |
If applicable, in deviation from or in addition to the above-mentioned general information, you will find details on the individual data processing in our app below.
We use cookies in this app; these are small text files that are stored in your app. This cookie may contain a so-called cookie ID - a unique identifier consisting of a string of characters that allows an assignment of Internet pages and servers to the storing browser. At the same time, these cookies provide us with information that allows us to optimize our app to the needs of our visitors. We use cookies in part only for the duration of the stay within the app. All cookies of the app contain purely technical information, no personal data. It is possible to use our offers (although possibly not to the full extent of their functions) without cookies.
| Purpose of the processing of general data |
| ||||
| Legal basis (according to Art. 6 / 9 DSGVO) | |||||
| If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | A data transfer to a third country does not take place and is not planned. | ||||
| If known: Duration of data storage | See General deadlines for data deletion | ||||
| Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none | ||||
| Consequences of non-compliance (in case of failure to provide the required data) | Without the data, the export to Dari cannot take place. | ||||
| If applicable, existence of an automated decision-making process | In this context, we do not use automatic decision-making. | ||||
| If applicable, origin of the data (if not collected directly from the data subject) | The data originates from the data subject. | ||||
| Change of purpose, if applicable | none |
| Purpose of the processing of general data |
| ||||
| Legal basis (according to Art. 6 / 9 DSGVO) | |||||
| Recipient (if applicable) | Alphabet Inc., Google LLC, Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland | ||||
| If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | United States of America | ||||
| If known: Duration of data storage | See General deadlines for data deletion | ||||
| Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none | ||||
| Consequences of non-compliance (in case of failure to provide the required data) | none | ||||
| If applicable, existence of an automated decision-making process | In this context, we do not use automatic decision-making. | ||||
| If applicable, origin of the data (if not collected directly from the data subject) | The data usually originates from the data subject, but may also originate from third parties. | ||||
| Change of purpose, if applicable | none | ||||
Privacy policy of the provider |
| Purpose of the processing of general data |
| ||||
| Legal basis (according to Art. 6 / 9 DSGVO) | |||||
| Recipient (if applicable) | Alphabet Inc., Google LLC, Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland | ||||
| If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | United States of America | ||||
| If known: Duration of data storage | See General deadlines for data deletion | ||||
| Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none | ||||
| Consequences of non-compliance (in case of failure to provide the required data) | none | ||||
| If applicable, existence of an automated decision-making process | In this context, we do not use automatic decision-making. | ||||
| If applicable, origin of the data (if not collected directly from the data subject) | The data usually originates from the data subject, but may also originate from third parties. | ||||
| Change of purpose, if applicable | none | ||||
Privacy policy of the provider |