We are very pleased about your interest in our website - and thus in our company. The protection of your private rights and freedoms is very important to us; we only use your data for the purposes intended. Since it is important to us that you are aware at all times of the extent to which we collect, use and, if necessary, transfer your data to third parties, we will provide you with the following comprehensive information on the processing of your personal data collected by us or stored by us.
Visiting our website is generally possible without providing (personal) data; if there are exceptions to this for selected services, we will explain these in the following chapters. When processing personal data, we strictly adhere to the requirements of the EU General Data Protection Regulation (GDPR) and any other data protection regulations.
INTERKULTUR
Ruhberg 1
35463 Fernwald
Germany
Phone: +49 (0)6404 69749-25
E-mail: data-protection@interkultur.com
Website: https://www.interkultur.com
Jörg ter Beek
Cortina Consult GmbH
Hafenweg 24
48155 Münster
Germany
Data protection team for general data protection inquiries:
Team e-mail: dsb.interkultur@cortina-consult.de
Phone: 0251 95203740
Website: https://www.cortina-consult.com
To ensure that we always have up-to-date data protection information in connection with the services of our website, we use the CLOUD DSE service of Cortina Consult GmbH, Hafenweg 24 in 48155 Münster. In this process, the contents of our privacy policy are hosted on the servers at Cortina Consult and managed centrally. Necessary changes are implemented promptly by Cortina Consult and immediately displayed via direct integration on our website.
The EU General Data Protection Regulation (GDPR) provides for extensive rights for data subjects in Chapter III, which we explain to you accordingly below with regard to the processing of your personal data:
This requirement concerns in particular information on the following details of data processing:
We will correct any erroneous data immediately, provided that you inform us of the circumstance accordingly.
Provided that the processing is no longer necessary and one of the following conditions is met:
Provided that one of the following conditions is met:
If it is technically possible and does not affect the rights and freedoms of other persons, we will - at your request - transfer your data to another recipient (responsible party).
If we collect or have collected and process personal data from you (on the basis of Art. 6 (1) e or f or Art. 9 (2) a GDPR), you have the right to object to the data processing (including profiling) at any time (with effect for the future). In exceptional cases, the objection may be ineffective, e.g. if we can demonstrate compelling interests worthy of protection for the processing that outweigh your interests or processing serves the assertion, exercise or defense of legal claims. If we process your personal data for the purpose of direct marketing, you have the right to object to such processing at any time. This also applies to profiling, insofar as it is related to such direct advertising. You also have the right to object to processing of your data concerning you which is carried out by us for scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, unless such processing is necessary for the performance of a task carried out in the public interest.
If we collect or have collected and process personal data from you, you have the right not to be subject to any decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you. Exceptions to this requirement apply if the decision is necessary for the conclusion or performance of a contract between you and us or you have expressly consented to the processing. In any case, we will take reasonable steps to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain the intervention of a person on our part, to express our own point of view and to contest the decision.
You have the right to revoke consent to the processing of personal data at any time.
The following information applies to the data processing on our website in general. If there are exceptions or additions to this information, these are described in detail in the relevant sections.
We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. In addition, we have implemented SSL encryption (SHA256) on our website to protect your data. However, despite regular checks, complete protection against all dangers is not possible.
We process personal data in accordance with the requirements of the GDPR, depending on the type and purpose of the processing as follows:
Permitted use | Specification of the GDPR |
Informed consent | Art. 6 para. 1 a |
Performance of a contract | Art. 6 para. 1 b |
Implementation of pre-contractual measures | Art. 6 para. 1 b |
Fulfillment of legal obligations | Art. 6 para. 1 c |
Protection of vital interests | Art. 6 para. 1 d |
Safeguarding our legitimate interest | Art. 6 para. 1 f |
Our legitimate interest, as defined in Article 6 (1) f GDPR, is based on the performance of our business activities in order to maintain our ability to operate and secure the employment of our employees.
After the purpose of storage has ceased, the retention periods are generally at least six or ten years. As a rule, data is deleted immediately in accordance with our deletion concept, provided that this does not conflict with any retention obligation, necessity for contract fulfillment or a legitimate interest.
We store your personal data only for the period required to fulfill the specified purpose. After the purpose no longer applies and after expiration of any existing retention periods, your data will be deleted immediately. If deletion is not possible, the data will be blocked instead.
As soon as you visit our website, our web server collects some general data and technical information - as shown in the table below:
Data collected | Purpose of the survey |
---|---|
browser types and versions used | correct display of the page content |
Operating system used, visitor origin (referrer, e.g. Google), subpages clicked on | Optimization of our website content as well as our advertising |
Date and time of access to the website as well as IP address and internet service provider of the visitor | Ensuring the permanent functionality of our IT systems (for the operation of the website) and prevention of misuse |
Other data and information for security in the event of attacks | Providing relevant information to law enforcement agencies in the event of a cyberattack |
Under certain circumstances (e.g. due to legal or contractual regulations), an obligation arises for you to provide us with your personal data. Examples of such processing as follows:
Nature or purpose of the processing | Need |
---|---|
Conclusion of a sales contract (e.g. your address) | Fulfillment of the contractual obligation (e.g. delivery of the goods to your address) |
In the employee context (e.g. transmission of data to the tax office) | Compliance with legal requirements (e.g. tax regulations) |
We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. In addition, we have implemented SSL encryption (SHA256) on our website to protect your data. However, despite regular checks, complete protection against all dangers is not possible.
If applicable, in deviation from or in addition to the above-mentioned general information, you will find details of the individual data processing on our website below.
Purpose of processing | Provision of information in the form of electronic circulars |
Legal basis | Consent (Art. 6 para. 1 lit. a GDPR) |
Recipient (if applicable) | none |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | A data transfer to a third country does not take place and is not planned. |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | There is no obligation to provide personal data. Newsletters are sent exclusively after registration via a double opt-in procedure (voluntarily given and revocable informed consent pursuant to Article 6 (1) a DSGVO) or after a purchase contract has been successfully concluded and the e-mail address has been collected in this process (pursuant to Section 7 (3) UWG). |
Consequences of non-compliance (in case of failure to provide the required data) | Non-compliance (i.e. not providing the required data) would result in the newsletter not being delivered to you. |
If applicable, existence of an automated decision-making process | In this context, we do not use automatic decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data comes from the data subject himself. |
Change of purpose, if applicable | none |
Purpose of processing | Processing and, if necessary, answering the request of the form sender |
Legal basis (according to Art. 6 / 9 GDPR) | |
Recipient (if applicable) | The data will not be passed on to third parties and/or to a third country. |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | Data transfer to a third country does not take place and is not planned. |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | There is no obligation. |
Consequences of non-compliance (in case of failure to provide the required data) | none |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data originates from the person concerned. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Data and categories requested in the respective form. |
Change of purpose if necessary | none |
We use cookies on this website; these are small text files that are stored on your computer via your internet browser (e.g. Google Chrome, Safari, Firefox, Edge). These cookies are used for various purposes: Many cookies are technically necessary to provide you with certain website functions (e.g. shopping cart functions, saving your login information), other cookies are used for the security of your data or the website and some cookies can be used to analyze your user behavior. The latter cookies may contain a so-called cookie ID - a unique identifier consisting of a character string that enables websites and servers to be assigned to the storing browser.
Cookies that are necessary to carry out the transmission of a message via a public telecommunications network and cookies that are absolutely necessary to provide you with an expressly requested function are referred to as "technically necessary cookies" and may be set without your explicit consent (Section 25 (2) TDDDG). All other cookies are subject to consent (Section 25 (1) TDDDG); where applicable, this is regulated by our consent management platform.
We use cookies in part only for the duration of your visit to the website, in part for a predefined period and in part permanently. You can delete all these cookies manually or automatically at any time via your web browser.
It is possible to use our website (although possibly not to its full extent) without cookies. Most browsers are set to accept cookies automatically. However, you can deactivate the storage of cookies or set your browser so that it notifies you as soon as cookies are sent.
Purpose of processing | Compliance with legal obligations, storage of consent |
Legal basis (according to Art. 6 / 9 GDPR) | |
Recipient (if applicable) | Usercentrics A/S, Havnegade 39, 1058 Kopenhagen, Denmark |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | Data transfer to a third country does not take place and is not planned. |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | no |
Consequences of non-compliance (in case of failure to provide the required data) | no |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data usually comes from the data subject, but can also come from third parties. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Opt-in and opt-out data, referrer URL, user agent, user settings, consent ID, time of consent, consent type |
Change of purpose if necessary | no |
Data protection officer of the provider | privacy@cookiebot.com |
Privacy policy of the provider | https://www.cookiebot.com/de/privacy-policy/ |
Purpose of processing | Placement of advertisements for relevant search queries in the results of the Google search engine and in the network of Google Ads participants.Evaluation of success rates of placed advertisements (conversion tracking) |
Legal basis (according to Art. 6 / 9 GDPR) | |
Recipient (if applicable) | Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Irland |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | if applicable, transfer, storage and processing in the USA; Google LLC The data transfer is based on the EU-US Data Privacy Framework, through which Google LCC is certified. |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | no |
Consequences of non-compliance (in case of failure to provide the required data) | no |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data usually comes from the data subject, but can also come from third parties. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Which pages and functions are accessed or clicked during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visits, date, access location, Time of visit, user agent |
Change of purpose, if applicable | no |
Opt-Out | Prevent cookies from being set, object to interest-based advertising by Google at https://adssettings.google.de/ , See also under Cookies |
Data protection officer of the provider | https://support.google.com/policies/contact/general_privacy_form |
Privacy policy of the provider | https://business.safety.google/privacy/ |
Purpose of processing | Creation of usage profiles to optimize the cost-benefit factor on the website |
Legal basis | Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG) |
Recipient (if applicable) | Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | If applicable, transmission, storage and processing in the USA, Google LLCThe data transfer is based on the EU-U.S. Data Privacy Framework through which Google LCC is certified |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none |
Consequences of non-compliance (in case of failure to provide the required data) | none |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | As a rule, the data originates from the data subject themselves. |
If applicable, categories of pb data (if not collected directly from the data subject) | which pages and functions are accessed or clicked on during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visit, date, access location, time of visit, user agent |
Change of purpose if necessary | none |
Opt-Out | Installation of the browser plugin: https://tools.google.com/dlpage/gaoptout, see also under Cookies |
Data protection officer of the provider | https://support.google.com/policies/contact/general_privacy_form |
Privacy policy of the provider | https://policies.google.com/privacy?hl=en |
Purpose of processing | Simplified management of analysis tools through central control and management of the collected analysis mechanisms |
Legal basis | Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG) |
Recipient (if applicable) | Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Irland |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Google LLC is certified according to the EU-US Data Privacy Framework (DPF). |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | no |
Consequences of non-compliance (in case of failure to provide the required data) | no |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | As a rule, the data comes from the person concerned. |
Where applicable, categories of personal data (if not collected directly from the data subject). | which pages and functions are accessed or clicked during the website visit (click behavior), IP address assigned by the Internet service provider (ISP) in anonymized form, previously visited website (referrer), subpages visited, time spent on the website, frequency of visits, date, access location, time of visit |
Opt-Out | no |
Data protection officer of the provider | https://support.google.com/policies/contact/general_privacy_form |
Privacy policy of the provider | https://business.safety.google/privacy/ |
Purpose of processing | Our website uses the visitor action pixel from Meta (formerly Facebook) to measure conversions. The behavior of website visitors can be tracked after they have been redirected to the provider\'s website by clicking on a Facebook ad. In this way, the effectiveness of Facebook ads can be evaluated for statistical and market research purposes and optimized for future advertising measures. |
Legal basis (according to Art. 6 / 9 GDPR) | Consent (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG). If personal data is collected on our website with this tool and forwarded to Facebook, we are jointly responsible with Meta Platforms Ireland Ltd. for this data processing (Art. 26 GDPR). We expressly point out that this joint responsibility is limited exclusively to the collection of data and the transfer to Facebook. The further processing of personal data by Facebook is the responsibility of Facebook. You can find the wording of the agreement on joint processing here: https://www.facebook.com/legal/controller_addendum. |
Recipient (if applicable) | Meta Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour Dublin 2 Ireland |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | If applicable, transfer, storage and processing of personal data in the USA. The data transfer is based on the standard contractual clauses of the EU Commission. Meta Platforms is certified in accordance with the EU-US Data Privacy Framework (DPF). |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none |
Consequences of non-compliance (in case of failure to provide the required data) | none |
If applicable, existence of an automated decision-making process | In this context, we do not use automatic decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data usually originates from the data subject, but may also originate from third parties. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Ads viewed, Browser information, Content viewed, Device information, Geographic location, Interactions with ads, services, and products, IP address, Marketing information, Pixel ID, Referrer URL, Usage data, User behavior, Facebook user ID, Device operating system, Device ID, HTTP header, Items clicked, Pages viewed, Facebook cookie information, Page/click behavior, User agent, Browser type. |
Change of purpose if necessary | none |
Data protection officer of the provider | https://www.facebook.com/help/contact/540977946302970 |
Privacy policy of the provider | https://www.facebook.com/privacy/explanation |
Purpose of processing | Analysis, marketing, functionality. |
Legal basis (according to Art. 6 / 9 GDPR) | |
Recipient (if applicable) | TikTok Inc.TikTok Information Technologies UK Limited, TikTok Pte. Ltd.Aviation House, 125 Kingsway Holborn, London, WC2B 6NH. |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | SingaporeChinaUnited States of AmericaUnited Kingdom (adequacy decision) |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | no |
Consequences of non-compliance (in case of failure to provide the required data) | no |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data usually comes from the data subject, but can also come from third parties. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Device information, information about the operating system, time zone, usage data, IP address |
Change of purpose if necessary | no |
Purpose of processing | This is a video player service. It can be used by users to view, rate, share, comment on and upload videos. |
Legal basis (according to Art. 6 / 9 GDPR) | |
Recipient (if applicable) | Google Ireland Limited; Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland |
If applicable, intention of forwarding to a third country or int. organization (incl. info on adequacy decision of the Commission or suitable guarantees) | If applicable, transmission, storage and processing in the USA, Google LLCThe data transfer is based on the EU-U.S. Data Privacy Framework through which Google LCC is certified. |
If known: Duration of data storage | See General deadlines for data deletion |
Obligation to provide personal data (e.g. due to legal or contractual regulations) / necessity | none |
Consequences of non-compliance (in case of failure to provide the required data) | none |
If applicable, existence of an automated decision-making process | In this context, we do not use automated decision-making. |
If applicable, origin of the data (if not collected directly from the data subject) | The data usually originates from the data subject, but may also originate from third parties. |
Where applicable, categories of personal data (if not collected directly from the data subject). | Device informationIP addressReferrer URLViewed videos |
Change of purpose if necessary | none |
Change of purpose if necessary | https://safety.google/privacy/privacy-controls/ |
Data protection officer of the provider | https://support.google.com/policies/contact/general_privacy_form |
Privacy policy of the provider | https://policies.google.com/privacy?hl=en |