Privacy Policy

With this privacy policy, visitors to the www.cesiun.de website are informed which data is collected, processed and used when using the website www.cesiun.de and for what purposes.

1. Responsibility for data collection
‍
Responsibility for the lawful collection, processing and use of user data is
‍
Cesiun GmbH
Mühlenstraße 8A
29221 Celle
germany
‍
Phone: +49 (0) 5141 889 09 25
Fax: +49 (0) 5141 309 99 95

2. Definitions
‍
Ours is based on the terms used by the European legislator when enacting the General Data Protection Regulation (GDPR).

The definitions can be found in § 4 EU-DSGVO, available at:
http://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:02016R0679-20160504&from=EN

3. Collection of general data and information
‍
Each time the website is accessed by a data subject or an automated system, the website of collects a series of general data and information. This general data and information is stored in the server's log files. The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites that are accessed via an accessing system on our website, (5) the date and time of access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and Information that serves to avert threats in the event of attacks on our information technology systems.
‍
When using these general data and information, www.cesiun.de does not draw any conclusions about the data subject. Rather, this information is required to (1) correctly deliver the content of our website, (2) to optimize the content of our website and advertising for it, (3) to ensure the long-term functionality of our information technology systems and the technology of our website, and (4) to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack. This anonymously collected data and information is therefore evaluated by www.cesiun.de statistically and also with the aim of increasing data protection and data security in our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data in the server log files is stored separately from all personal data provided by a data subject.
The legal basis for processing this data is Section 15 (1) of the German Telemedia Act (TMG) /Art. 7 lit. f Directive 95/46/EC or, from May 25, 2018: Article 6 (1) (f) of the European General Data Protection Regulation 2016/679.

4. Storage period and storage location
‍
Personal data is deleted when knowledge of it is no longer required for the purposes described in this privacy policy, unless legal provisions require longer storage.
Unless otherwise described in this privacy policy, personal data is processed exclusively in data centers that are within the scope of the European Data Protection Directive 95/46/EC or (from May 25, 2018) the EU General Data Protection Regulation 2016/679.

5. Data protection regulations on the application and use of Google AdWords
‍
The person responsible for processing has integrated Google AdWords on this website. Google AdWords is an Internet advertising service that allows advertisers to place ads both in Google's search engine results and in the Google advertising network. Google AdWords allows an advertiser to define specific keywords in advance, which are used to display an ad in Google's search engine results only when the user retrieves a keyword-relevant search result with the search engine. In the Google advertising network, ads are distributed on topic-relevant websites using an automatic algorithm and taking into account the previously defined keywords.
‍
The operating company of Google AdWords services is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. The purpose of Google AdWords is to promote our website by displaying interest-based advertising on the websites of third-party companies and in the search engine results of the Google search engine and to display third-party advertising on our website. If a data subject reaches our website via a Google ad, a so-called conversion cookie is stored on the data subject's information technology system by Google. What cookies are has already been explained above. A conversion cookie loses its validity after thirty days and is not used to identify the person concerned. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages on the website have been accessed.
‍
The data and information collected through the use of conversion cookies is used by Google to create visit statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via AdWords ads, i.e. to determine the success or failure of the respective AdWords ad and to optimize our AdWords ads for the future. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject. Conversion cookies are used to store personal information, such as the websites visited by the data subject. Each time you visit our website, personal data, including the IP address of the Internet connection used by the data subject, is therefore transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected via the technical process with third parties.
‍
As already described above, the data subject can prevent cookies from being set by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a conversion cookie on the data subject's information technology system. In addition, a cookie already set by Google AdWords can be deleted at any time via the Internet browser or other software programs. The data subject also has the option of objecting to interest-based advertising by Google. To do this, the data subject must access the link www.google.de/settings/ads from each of the Internet browsers they use and make the desired settings there.
‍
Further information and Google's applicable privacy policy can be found at https://www.google.de/intl/de/policies/privacy/.

6. Rights of the person concerned
‍
a) Right to confirmation
‍
Every data subject has the right granted by the European legislator of directives and regulations to request confirmation from the controller as to whether personal data concerning them is being processed.
‍
b) Right to information
‍
Every person affected by the processing of personal data has the right, granted by the European legislator of directives and regulations, to receive free information from the controller about the personal data stored about him and a copy of this information. In addition, the European legislator has provided the data subject with information on the following information:
‍
- the purposes of processing
- the categories of personal data that are processed
- the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular recipients in third countries or international organizations
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the

Criteria for determining this duration
‍
- the existence of a right to correct or delete personal data concerning you or to restrict processing by the person responsible or a right to object to this processing
- the existence of a right of appeal to a supervisory authority
- if the personal data is not collected from the data subject: All available information about the origin of the data
- the existence of automated decision-making, including profiling, in accordance with Article 22 (1) and (4) GDPR and — at least in these cases — meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.
‍
In addition, the data subject has the right to information as to whether personal data has been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate guarantees in connection with the transfer.
‍
c) Right to rectification
‍
Every person affected by the processing of personal data has the right, granted by the European legislator of directives and regulations, to request the immediate correction of incorrect personal data concerning him or her. In addition, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data — including by means of a supplementary statement.
‍
d) Right to delete (right to be forgotten)
‍
Every person affected by the processing of personal data has the right granted by the European legislator of directives and regulations to request that the person responsible delete the personal data concerning him or her immediately, provided that one of the following reasons applies and insofar as processing is not necessary:
The personal data was collected or otherwise processed for purposes for which they are no longer necessary.
‍
The data subject withdraws the consent on which the processing was based in accordance with Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR and there is no other legal basis for processing.
The data subject objects to processing in accordance with Article 21 (1) of the GDPR and there are no overriding legitimate reasons for the processing, or the data subject objects to the processing in accordance with Article 21 (2) of the GDPR.
‍
The personal data was processed unlawfully.
‍
The deletion of personal data is necessary to fulfill a legal obligation under Union law or the law of the Member States to which the person responsible is subject.
The personal data was collected in relation to information society services offered in accordance with Article 8 (1) GDPR.
‍
e) Right to restrict processing
‍
Every person affected by the processing of personal data has the right granted by the European legislator of directives and regulations to demand that the person responsible restrict processing if one of the following conditions is met:
‍
The accuracy of the personal data is disputed by the data subject, for a period of time which enables the person responsible to verify the accuracy of the personal data.
The processing is unlawful, the data subject refuses to delete the personal data and instead demands that the use of the personal data be restricted.
The controller no longer needs the personal data for processing purposes, but the data subject needs them to assert, exercise or defend legal claims.
The data subject has objected to processing in accordance with Article 21 (1) of the GDPR and it is not yet clear whether the legitimate reasons of the person responsible outweigh those of the data subject.
‍
f) Right to data portability
‍
Every person affected by the processing of personal data has the right granted by the European legislator of directives and regulations to receive personal data concerning them, which have been provided by the data subject to a controller, in a structured, common and machine-readable format. It also has the right to transfer this data to another person responsible without hindrance from the person responsible to whom the personal data has been provided, provided that the processing is based on consent in accordance with Article 6 (1) letter a GDPR or Article 9 (2) letter a GDPR or on a contract in accordance with Article 6 (1) (b) GDPR and the processing is carried out using automated procedures, provided that the processing is not necessary for the performance of a task that is in the public interest or in The exercise of public authority is carried out, which has been delegated to the person responsible.
Furthermore, when exercising their right to data portability in accordance with Article 20 (1) GDPR, the data subject has the right to have the personal data transmitted directly from one controller to another controller, insofar as this is technically feasible and provided that this does not affect the rights and freedoms of other persons.
‍
g) Right to object
‍
Every person affected by the processing of personal data has the right granted by the European legislator of directives and regulations to object at any time, for reasons arising from their particular situation, to the processing of personal data concerning them carried out on the basis of Article 6 (1) (e) or (f) GDPR. This also applies to profiling based on these provisions.
In the event of an objection, we will no longer process the personal data unless we can demonstrate compelling legitimate grounds for processing which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to processing of personal data concerning him or her by www.cesiun.de for scientific or historical research purposes, or for statistical purposes pursuant to Article 89 (1) of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
To exercise the right to object, the data subject may directly contact www.cesiun.de. Notwithstanding Directive 2002/58/EC, the data subject is also free to exercise his right of objection in connection with the use of information society services by means of automated procedures using technical specifications.
‍
h) Automated decisions in individual cases, including profiling
‍
Any person affected by the processing of personal data has the right granted by the European legislator of directives and regulations not to be subject to a decision based exclusively on automated processing — including profiling — which has legal effect against him or similarly significantly affects him, provided that the decision (1) is not necessary for the conclusion or performance of a contract between the data subject and the controller, or (2) due to Union or Member State legislation to which the controller is subject is permitted and this legislation contains appropriate measures to protect the rights and freedoms and legitimate interests of the data subject or (3) is carried out with the express consent of the data subject.
‍
If the decision (1) is necessary for the conclusion or performance of a contract between the data subject and the controller, or (2) is made with the express consent of the data subject, www.cesiun.de shall take appropriate measures to protect the rights and freedoms and legitimate interests of the data subject, including at least the right to obtain the action of a person on the part of the person responsible, to state its own position and to challenge the decision.
‍
i) Right to withdraw consent under data protection law
‍
Every person affected by the processing of personal data has the right, granted by the European legislator of directives and regulations, to withdraw consent to the processing of personal data at any time.
To exercise the rights set out in this section and in the event of questions and complaints regarding the use of their personal data, users of the website and, where applicable, other data subjects may contact us:

Cesiun GmbH
‍
Represented by:
Ferhat Baysar
‍
Mühlenstraße 8A
29221 Celle
germany
‍
Phone: +49 (0) 5141 59 344 20
Fax: +49 (0) 5141 309 99 95

Users and, where applicable, other data subjects can also contact the competent supervisory authority with complaints about the use of data by www.cesiun.de.