The data controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States as well as other data protection provisions is
legally represented by the managing directors Mr. Alexander P. Sator, Mr. Younes Allaki, Mr. Alexander Bufalino and Mr. Kim Juchem
The data protection officer of the data controller may be contacted via the following contact details:
Herr Oliver Gönner
SICODA GmbH – Impekovener Str. 44
Tel.: 0228 286 140 – 61
We only process personal data of our users if this is necessary to provide a functioning website or to establish contact between the user and us via this website. The processing of personal data of our users usually only takes place with the user’s consent. An exception applies in those cases in which prior consent cannot be obtained for factual reasons and/or the processing of the data is permitted by provisions of statutory law.
To the extent we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 subpara. 1 lit. a GDPR serves as a legal basis.
If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 subpara. 1 lit. b GDPR serves as a legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
To the extent the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 subpara. 1 lit. c GDPR serves as a legal basis.
In the event that the vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para.1 subpara. 1 lit. d GDPR serves as a legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first interest, Art. 6 para. 1 subpara. 1 lit. f GDPR serves as a legal basis.
The personal data of the data subject will be erased or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for in EU or Member State regulations, laws or other provisions to which the data controller is subject. The data will also be blocked or deleted if a storage period prescribed in one of the aforementioned provisions expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
Every time you visit our website (1nce.com), our system automatically collects data and information from the computer system of the calling computer.
The following data is collected:
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 subpara. 1 lit. f GDPR.
The temporary storage of the IP address by the system is necessary to enable the website to be made available to the user’s computer. To that effect the IP address of the user must remain stored for the duration of the session.
The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
Our legitimate interest in data processing therefore results from Art. 6 para. 1 subpara. 1 lit. f GDPR.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. In the case of collection of data for the provision of the website, this is the case when the respective session has ended.
If the data is stored in log files, this is the case after seven days at the latest. Further storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an identification of the calling client is no longer possible.
The collection of the data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
The following data is stored and transmitted in the cookies:
The user data collected in this way is pseudonymized by technical precautions. Therefore, it is no longer possible to assign the data to the calling user. The data will not be stored together with other personal data of the user.
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 subpara. 1 lit. f GDPR.
The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 subpara. 1 lit. f GDPR.
The legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 subpara. 1 lit. a GDPR.
We need cookies for the following applications:
The user data collected by technically necessary cookies are not used to create user profiles.
The analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies we learn how the website is used and can thus continuously optimize our offer.
For these purposes, our legitimate interest also lies in the processing of personal data in accordance with Art. 6 para. 1 subpara. 1 lit. f GDPR.
You can subscribe to a free newsletter on our website. When registering for the newsletter, the data from the input mask is transmitted to us. This applies to the following data:
In addition, the following data is collected upon registration:
(1) IP address of the calling computer
(2) Date and time of registration
The user’s consent is obtained for processing the data as part of the technical registration process and reference is made to this privacy statement.
In connection with data processing for the dispatch of newsletters, no data is passed on to third parties. The data will be used exclusively for sending the newsletter.
The legal basis for the processing of data after registration for the newsletter by the user is Art. 6 para. 1 subpara. 1 lit. a GDPR.
The collection of the user’s email address serves to subsequently send the newsletter.
The collection of other personal data as part of the technical registration process serves to prevent misuse of the services or the email address used.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. The name and email address of the user will therefore be stored for as long as the subscription to the newsletter is active.
Other personal data collected during the technical registration process will normally be deleted within a period of seven days.
The subscription to the newsletter can be cancelled by the user at any time. For this purpose, there is a corresponding link in every newsletter.
By doing so, it is also possible to revoke the consent to the storage of personal data collected during the technical registration process.
Contact forms are available on our website which can be used for electronic contact. There is the possibility of using a general contact form to address requests or questions of any kind to us, as well as special contact forms that serve, for example, to request offers for our services or to establish a specific press contact. If a user uses one of these options, the data entered in the input mask will be transmitted to us and stored. Such data may be the following (depending on the contact form in which certain data may be partly marked as optional in the respective input mask):
At the time the message is sent, the following data is also stored:
Your consent is obtained for the processing of the data within the scope of the sending process and reference is made to this privacy statement.
Alternatively, you can contact us via one of the email addresses provided. In this case, the user’s personal data transmitted by email will be stored.
In this context, the data will not be passed on to third parties. The data is used exclusively for processing the conversation.
The legal basis for the processing of data is Art. 6 para. 1 subpara. 1 lit. a GDPR to the extent the user has provided his or her consent.
The legal basis for the processing of data transmitted in the course of sending an email or made known to us by telephone is Art. 6 para. 1 subpara. 1 lit. f GDPR.
If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 subpara. 1 lit. b GDPR.
The processing of personal data from the respective input mask serves us solely for the purpose of treating the contact established by the user. In case of contact by email, this also constitutes the necessary legitimate interest in the processing of the data.
The other personal data processed during the sending process serves to prevent misuse of the contact button/form and to ensure the security of our information technology systems.
The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. This is the case for the personal data entered into the input mask of the contact form and the data transmitted by email or telephone, when the respective conversation with the user has ended. The conversation is terminated when it can be assumed according to the circumstances that the issues in question have been finally clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
The user has the possibility to revoke his consent to the processing of personal data at any time. In such a case, the conversation cannot be continued.
The user can revoke his consent and object to the storage of personal data at any time by sending an email to firstname.lastname@example.org or by writing to our address (1NCE GmbH, Sternengasse 14-16, 50676 Cologne, Germany).
All personal data stored in the course of contacting us will be deleted in this case.
The foregoing does not apply on an exceptional basis if there is a concrete suspicion that the user in question might have acted illegally in the context of making contact (e.g. in the case of offensive or other statements that violate personal rights) and a continued storage of the data concerned is at least directly permitted by Art. 6 para. 1 subpara. 1 lit. f GDPR.
Our website is hosted on the server of a hosting provider (currently: maxcluster GmbH) in the Federal Republic of Germany. The personal data processed by us and described in detail in sections I. to IV. above is stored on this server. All our systems are encrypted according to the state of the art. Therefore, access to personal data by the hosting provider should normally hardly be possible. Nevertheless, we have concluded a data processing agreement with the hosting provider as a precautionary measure.
The legal basis for passing on the data to the hosting provider is Art. 6 para. 1 subpara. 1 lit. b, 28 GDPR.
The data is passed on to the hosting provider in order to enable the operation of the website and to make the content available to users.
The data passed on to the hosting provider will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. The duration of the passing on of the data to the hosting provider is identical to the duration of the storage of the data by us in accordance with the sections I. to IV. above.
The above described passing on of the data to the hosting provider as our technical service provider is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
The legal basis for the transmission of data (anonymized IP address of the user) to Google is Art. 6 para. 1 subpara. 1 lit. f, 28 GDPR.
The data is passed on to Google in order to be able to assess the use of the website by all users more reliably and to be able to continually improve the content and technical features of the website in line with customer requirements.
The user can prevent the use of Google Analytics as a whole or restricted to our website as follows:
The collection of data generated by the Google cookies and related to the use of the website (including the IP address) by Google and the processing of this data by Google can be completely prevented by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
When using our website, the user can also prevent Google Analytics from collecting data via his browser by clicking on the following link: Disable Google Analytics. An opt-out cookie is then set which prevents the future collection of data when visiting this website.
If personal data is processed by you as a user, you are affected within the meaning of GDPR and you are entitled to the following rights vis-à-vis the data controller:
You can ask us to confirm whether your personal data is processed by us.
If such processing has taken place, you can request the following information from the data controller:
You have the right to request information as to whether your personal data is transferred to a third country or to an international organization. In this context, you can request the appropriate guarantees in accordance with Art. 46 GDPR in connection with the transmission.
You have a right of rectification and/or completion vis-à-vis the data controller if the personal data processed concerning you is incorrect or incomplete. The data controller shall make the correction without undue delay.
Under the following conditions, you may request that the processing of your personal data be restricted:
If the processing of your personal data has been restricted, such data may only be processed – apart from being stored – with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on grounds of an important public interest of the European Union or a Member State.
If the processing has been restricted according to the above conditions, you will be informed by the data controller before the restriction is lifted.
You may request the data controller to delete the personal data relating to you without undue delay and the controller is obliged to delete this data without undue delay if one of the following reasons applies:
Has the data controller made your personal data public and is obliged to delete it in accordance with Art. 17 para. 1 GDPR, it shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform data processors who process such personal data that you as the data subject have requested the erasure, including all links to this personal data or of copies or replications, of this personal data.
The right to erasure does not exist to the extent the processing is necessary
If you have exercised your right to have the data controller correct, delete or limit the processing, the data controller is obliged to inform all recipients to whom your personal data has been disclosed of this correction or erasure of the data or restriction on processing, unless this proves impossible or involves a disproportionate effort.
The data controller shall have the right to be informed of such recipients.
You have the right to receive your personal data that you have provided to the data controller in a structured, common and machine-readable format. In addition, you have the right to pass this data on to another data controller without obstruction by the data controller to whom the personal data was provided, provided that
In exercising this right, you also have the right to request that your personal data be transferred directly from one data controller to another data controller, to the extent this is technically feasible. The freedoms and rights of other persons must not be affected by this.
The right to portability shall not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the controller.
You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data, which may be processed in accordance with Art. 6 para. 1 subpara. 1 lit. e or f GDPR; this also applies to profiling based on these provisions.
The data controller no longer processes your personal data, unless it can prove compelling reasons worthy of protection for the processing, which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If your personal data are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct marketing.
If you object to the processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
You have the possibility to exercise your right of objection in connection with the use of Information Society services by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.
You have the right to revoke your data protection related declaration of consent at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
You have the right not to be subject to a decision based exclusively on automated processing – including profiling – that has legal effect against you or significantly impairs you in a similar manner. This does not apply if the decision
However, these decisions may not be based on special categories of personal data according to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a or g GDPR applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests.
In the cases referred to in (1) and (3), the data controller shall take reasonable measures to safeguard your rights, freedoms and legitimate interests, including at least the right to obtain the intervention of a person by the data controller, to state your own position and to challenge the decision.
Without prejudice to any other administrative or judicial remedy, you have the right of appeal to a supervisory authority, in particular in the Member State where you reside, work or are suspected of infringement, if you believe that the processing of your personal data is contrary to GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and the results of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
We reserve the right to make changes to this privacy statement in the future. This applies in particular in case of implementation of changed legal requirements due to legal changes or changes in administrative or judicial practice.