data privacy statement

General

The

Bundesanzeiger Verlag GmbH
Amsterdamer Str. 192
50735 Cologne

Tel.: (02 21) 9 76 68-0
Fax: (02 21) 9 76 68-278
E-mail: service@bundesanzeiger.de

operates this website for purposes of offering information and services.

We will process your personal data exclusively in accordance with the provisions of the Data Privacy Law as amended. Please refer to “Definitions” in the small glossary of data privacy terminology. The following provisions will inform you about the type, scope and reasons why personal data may be collected, processed and used. This Data Privacy Statement applies exclusively to our web pages. Should links on our web pages take you to other web pages, then please refer to those pages for information on how they will handle your data. Technical and organisational measures will be implemented wherever possible to encrypt your personal data using digital security systems and to prevent manipulation, deletion or unauthorised access.

Browser data

We will for technical reasons and for reasons of maintaining and improving functionality automatically collect and store information your Internet browser may transmit to us and will only transmit such data to third parties to the extent required. Our legitimate interest pursuant to Article 6 (1) f GDPR in processing such data lies in the operational reliability of the website.

This includes:
– Browser type and version

– Operating system

– Website from where you arrived (referrer URL)

– Website you are visiting

– Date and time of access

– Your Internet protocol data (IP address)

– Transmitted data volumes

– Access status (transfer files, file not found etc.)

These anonymous data will be stored separately from any personal data you may give, to prevent tracking of specific persons. Your visits may be analysed for statistical purposes, to optimise our Internet presence and our offers. These data will be erased after analysis.

Anonymised profiles of use

Unless otherwise stated here, you will not be required to furnish personal data when using our website. Information about when a user accesses the abovementioned websites or retrieves a file will be stored in a log file. We will use such information to technically enable your visit to our website. We will also use such information for statistical purposes and towards the improvement of our website design and layout. The use of these data will not reference any persons. Pursuant to Article 6 (1) f GDPR, our legitimate interest in processing lies in the reliability and functionality of the website.

The following dataset will be stored for each retrieval:

  • Name of the retrieved file
  • Date and time of retrieval
  • Transmitted data volume
  • Message whether the retrieval was successful
  • Description of the type of Web browser used
  • Requesting domain
  • Country of origin of the domain

Creating a user profile (registration)

You may register on our website and create a user profile. Following your registration on our website, we will collect and use the data your Internet browser automatically transmits, together with the data below. These data will be designated mandatory or optional, depending on the purpose of processing:

  • Date of registration
  • Your first name and surname
  • Your address
  • Your e-mail address

You will under your user profile be able to access other parts of our website and log into the offers you procured. The legal basis for data processing will be the consent of the affected parties, pursuant to Article 6 (1) a) EU-GDPR.

Collection and use of personal data

Your personal data will be used exclusively for the purpose of and to the extent required for justification, structuring of content or amendments to the contractual relationship (master data). We explicitly reserve the right of recourse to legal issues pertaining to permissions and legality.

We will ask you for certain personal information when you contact us by e-mail, fax or phone. We will only ask for data required for proper processing of your contact enquiry, including at least your surname and first name, your e-mail address and phone number.

The legal basis will here be a legitimate interest pursuant to Article 6 (1) f) GDPR. The required data fields will, in each case, be marked. You may also in the course of your contact enquiry volunteer additional data. We will store these data and use them for our response to your contact enquiry. Certain services on our portal will be offered in cooperation with partner companies. We may need to disclose your personal data to these partner companies in order to offer such partner services. The data will again in such cases, be used exclusively to enable responding to your contact request– both by our partner and by us . Voluntary provisioning of such data will imply your consent to their use as defined above. We will record your consent to the collection and use of data. The legal basis for data processing pursuant to Article 6 (1) a) GDPR is the consent of the affected parties. Your name and address must, for instance, be disclosed to providers of chargeable billing services. Unless mandatory, your personal data will not without your explicit consent be disclosed to third parties that are not in a contractual relationship.

We are permitted in specific cases and on-demand of an authorised body to disclose master data for purposes of law enforcement and hazard control by state police authorities, for the fulfilment of the statutory responsibilities of the Federal and State authorities for the protection of the constitution and fulfilment of the statutory responsibilities of the Federal Information services and military counter-intelligence, or for the assertion of intellectual property rights.

We will use the means available to us to carefully examine any such requests and will not disclose your data unless our statutory obligation is absolutely evident. The legal basis of data processing pursuant to Article 6 (1) c) GDPR would, in such cases be compliance with our statutory obligations and pertinent special laws.

Use of cookies and analysis tools

a) Cookies

Our website makes use of cookies. Cookies are small text files which our web server will send to your computer to store certain information (e.g. attributes for identification). Cookies will be used for statistical analysis of usage, including the recording of new and recurring visits when you use our website anonymously. We also use Cookies to determine the extent to which free content is used. Our website will send a Unit ID to your browser to determine this parameter. This will be an anonymous code used exclusively to establish the already used free content. When you visit our website under your user profile, Cookies will be used for the duration of your visit to identify your browser and the various Web pages you are visiting.

Our website can also be used without allowing the storage of Cookies. You can block the storage of Cookies in your browser settings or tell your browser to inform you when a web page wants to store Cookies. You may then decide to accept or reject the storage of Cookies. For our website to remain fully functional, it will, however, be necessary for technical reasons to allow the unrestricted storage of temporary Cookies. Even when Cookies are deactivated, our website will send the above Unit ID to your browser to measure the usage of free content. The legal basis for this is a legitimate interest pursuant to Article 6 (1) f) GDPR. You may refer to the Help pages for your Internet browser for further information on the blocking of Cookies. Look under windows.microsoft.com for Windows Internet Explorer and under support.mozilla.com for Firefox, for example.

In detail, the following cookies are used:

  1. cc

Lifetime: 90 days (if you click on “Accept Cookies” in Cookie Consent Banner), otherwise 1 day
Purpose of data collection: Technically necessary cookie to store the settings regarding the cookie consent.

  1. JSESSIONID

Lifetime: Duration of the session
Purpose of data collection: technically necessary cookie to manage the user session.

  1. lang

Lifetime: 2 days
Purpose of data collection: technically necessary cookie to store the language settings.

  1. validade-cookie

Lifetime: End of the session
Purpose of data collection: technically necessary cookie to check whether cookies may be set.

  1. wordpress_test_cookie

Lifetime: End of the session

Purpose of data collection: technically necessary cookie, description: A test cookie to check if cookies may be set.

  1. pll_language

Lifetime: 1 year
Purpose of data collection: technically necessary cookie to store the language settings.

  1. NSC_cboa_xxx.fcjmboapomjof.ef

Lifetime: End of the session
Purpose of data collection: technically necessary cookie for load balancing.

b) Matomo

With your consent, this website uses Matomo, an open source web analysis tool (https://matomo.org), to collect and store data for optimization purposes. From this data, user profiles can be created under a pseudonym. Cookies can be used for this purpose. The cookies enable the recognition of the internet browser. The data collected with Matomo will not be used to personally identify the visitor of this website and will not be combined with personal data about the bearer of the pseudonym without the separately given consent of the person concerned. The software runs exclusively on the servers of the Bundesanzeiger Verlag GmbH. The information generated by the cookie about your use of this website is also not passed on to third parties. The legal basis for the processing is your consent according to Article 6 paragraph 1 of the GDPR.

Im Einzelnen werden folgende Cookies eingesetzt:

_pk_id
Type: Statistics
Lifetime: 13 months
Data: visitorID.cookieCreationTimestamp, visitsCount.currentVisitTimestamp, lastVisitTimestamp.lastEcommerceOrderTimestamp
Purpose: Stores user details, e.g. the unique visitor ID

_pk_ref
Type: Statistics
Lifetime:  6 months
Daten: Referrer URL
Purpose: Saves referrer information from the first time you enter the website

_pk_ses, _pk_cvar, _pk_hsr
Type: Statistics
Lifetime: 30 minutes
data: Matomo sessionId, if it is not set at visit, the visitCount in _pk_id is increased, page specific variable keys and values, Matomo Heatmap session recording data
Purpose: To store short-term data about visits to the website

_pk_testcookie
Type: Statistics
Lifetime: short term (< 1 second)
data: Test data
Purpose: Is created and deleted directly to test whether the user’s browser supports cookies.

In the default setting the web analysis is deactivated. You can decide whether a unique web analysis cookie may be stored in your browser to enable the website operator to collect and analyze various statistical data. If you would like to decide against this at a later date, please select the appropriate option under the following link “Revoke cookie settings” to store the Matomo deactivation cookie in your browser.

c) Mouseflow

This website uses Mouseflow, a web analysis tool from Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark, to record randomly selected individual visits (only with anonymous IP address). For this purpose, data is collected and stored for marketing and optimization purposes.
These data are:
– Clicks, mouse movements, hovering, scrolling
– Browser
– Device (Desktop/Tablet/Mobile)
– Language
– Operating system
– Screen resolution
– Visit duration
– Navigation (URLs)
– Page content (HTML)
– ISP & Location (City, State/Region, Country)
– Type of visitor (first visitor/returnee)
– Individual tags or variables

This creates a log of mouse movements and clicks with the intention of randomly replaying individual website visits and deriving potential improvements for the website.

Furthermore, feedback campaigns are played out via mouseflow, which are intended to record the satisfaction with the website or certain specific contents. The play of such feedback campaigns and participation are also recorded in the cookie.

The data collected with Mouseflow will not be used to personally identify the visitor of this website and will not be merged with personal data about the bearer of the pseudonym without the separately given consent of the person concerned. The processing is based on your consent in accordance with Article 6 paragraph (1) a) GDPR. You have the right to revoke your consent at any time.
If you do not wish a recording, you can deactivate it on all websites that use mouseflow by clicking on the following link: www.mouseflow.de/opt-out/.
The data will be deleted as soon as they are no longer required for the purpose of their collection and no legal retention periods exist. Deletion usually takes place after 12 months.
In detail, the following cookies are used:

Cookie Name: Mf_[website-id]
Purpose: 1st party cookie,
identifies the current session on the website
Lifetime: Duration of the session

Cookie Name: Mf_user
Purpose: 1st party cookie,
checks whether a new or returning user is entering the site
Lifetime: persistent

External links or hyperlinks to Web pages of other providers

Our Internet offer contains external links or hyperlinks to the Web pages of other providers. Such content must be distinguished from its own content. Such external content will neither originate from ourselves, nor do we have any influence on the contents of third-party sites. You will on selection of an external link or hyperlink be redirected from our website to the website of that external provider. We cannot then guarantee that these external providers will respect the confidentiality of your data or comply with data protection regulations. The specific operator of such websites will be solely responsible for this.

We will immediately remove a link or hyperlink from our website should we become aware of illegal content they may offer. Please contact the data protection officer for more information: dsb@bundesanzeiger.de.

Your rights / contact details / objection

Objection and revocation

You may at any time and without prior consent object to the use of your data, with future effect.

We point out that you may also at any time and with future effect revoke (even partially) any consent you may have given. Please in this respect contact the Data Protection Officer, Bundesanzeiger Verlag GmbH, Amsterdamer Straße 192, 50735 Cologne,

Phone: +49 (0) 221 / 9 76 68-0,

eMail: dsb@bundesanzeiger.de

You also have the following rights:

Article 13, 14 EU-GDPR – Right to information

Article 15 EU GDPR – Right of access: We will on request gladly inform you about your stored personal data. The information will be provided in text form. Contact – see below.

Article 16 EU GDPR – Right to rectification

Article 17 EU-GDPR – Right to erasure

Article 18 EU GDPR – Right to restriction of processing

Article 19 EU GDPR – Notification

Article 20 EU-GDPR – Right to data portability

Article 21 EU GDPR – Objection

Article 22 EU GDPR – Automated individual decision-making, including profiling

Article 23 EU GDPR – Restrictions

Article 77 EU GDPR – Right to lodge a complaint

The legislator has enacted multiple obligations and terms relating to the retention of data. Data will on expiry of these periods automatically be erased.

Note: We endeavour to take technical and organisational steps to ensure that your personal data will be stored in a way to prevent access by third parties. Since full data security cannot be guaranteed during communication by e-mail, we recommend mailing confidential information by post.

Scope of application

This privacy policy applies to the domain

Bringen Sie Ihre Jahresfinanzberichte mit dem ESEF-Manager schnell und einfach in das neue ESEF-Berichtsformat!


and
https://www.esef-manager.eu/en/.

Currency and amendments of the Data Privacy Statement

All amendments to the Data Privacy Statement will be published on this website and will apply from the date of publication. We will obtain your permission should Bundesanzeiger Verlag GmbH wish to use your data for additional purposes. The intended use of these data will only change with your consent.

This privacy policy is currently valid and dated 09.12.2020.

Definition / Glossary

“Anonymisation” means that personal data will be changed in a way to ensure that personal or factual detail will not be assignable to a specific or identifiable natural person unless with unreasonably high costs of time, effort and labour.

“Personal data” includes all information referring to a specific or identifiable natural person (“affected person”); an identifiable person is a person who is directly or indirectly identifiable, especially by assigned identifiers such as name, identification number and other special characteristics describing physical, physiological, genetic, mental, economic, cultural or social identity.

A “Responsible body” is any person or body collecting, processing or using personal data for own purposes or commissioning others to do so.

“Special types of personal data” is defined as data on racial or ethnic origin, political opinions, religious or philosophical convictions, trade union memberships, health or sex life.

“Consent by the affected person” constitutes any clear communication of the wish of that person, given without coercion, relating to the specific case and cognizant of the situation, by way of a statement or other unambiguous action by which the affected person demonstrates that he/she agrees to the processing of the specific personal data.

A “Recipient” is any person or entity receiving data. A “Third-party” is any person or entity external to the responsible body. Third parties exclude the affected person or bodies or persons and entities commissioned to collect, process or utilise personal data inland, in another member state of the European Union or in another member country of the Agreement on the European Economic Area.

“Collection” is defined as the acquisition of data about the affected person or entity.

A “third party“ is a natural or legal person, public authority, institution or any other body other than the affected person, the entity responsible for processing or the processor of the order data including the persons authorised to process personal data under the direct responsibility of the processor or entity responsible for processing;

“Pseudonymisation” is defined as the substitution of the name and other identifying features with a code designed to exclude or considerably complicate identification of the entity concerned.

“Company” is every natural person or legal entity performing a commercial activity, irrespective of its legal form, including private companies or associations carrying out regular commercial activities.

“Group of companies” is a group comprising a controlling company and the companies it controls.

“Processing” is here defined as storing, changing, transmitting, blocking and deleting of personal data. The following definitions also apply, irrespective of the processes used: 1. Storage – the acquisition, recording or storing of personal data on data carriers for purposes of further processing or use, 2. Changing – editing of stored personal data, 3. Transmission – the disclosure to third parties of stored personal data or personal data obtained through data processing, in a manner to allow a) passing such data on to a third party or b) enabling third parties to view or retrieve the data 4. Blocking – marking stored personal data to restrict further processing or use, “Deleting” – rendering stored personal data not recognisable.

Extrajudicial online dispute resolution

The European Commission provides a platform for extrajudicial online dispute resolution (so-called OS platform) at ec.europa.eu/consumers/odr/. Please note that we do not participate in dispute resolutions before consumer dispute resolution authorities.