We are very pleased about your interest in our company. Data protection is of a particularly high priority for the management of Futavis GmbH. When using the dashboard of Futavis GmbH, personal data are processed. The processing of personal data is always in line with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to Futavis GmbH. By means of this data protection declaration, our company would like to inform about the type, scope and purpose of the personal data collected, used and processed by us. Furthermore, data subjects are informed of their rights by means of this data protection declaration.
As the controller, Futavis GmbH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. Nevertheless, Internet-based data transmissions can always be subject to security vulnerabilities, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.
The following privacy statement gives you an overview of how we ensure this protection and what kind of data is collected for which purpose. You will also be informed about your rights.
- Definitions according to Art. 4 GDPR
Our data protection declaration should be legible and understandable for the public, as well as our customers and business partners. To ensure this, we would like to first explain the terminology used:
- a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“user”). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- b) Processing
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- c) Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
- d) Processor
Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
- e) Recipient
Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
- f) Third party
Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
Consent of the user is any freely given, specific, informed and unambiguous indication of the users wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
- h) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements.
- Processing of personal data
Each time a data subject or automated system calls up the website, Futavis GmbH collects a series of general data and information. This general data and information are stored in the log files of the server. The following data may be collected: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites that are accessed via an accessing system on our website, (5) the date and time of an access to the website, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information that serve to avert danger in the event of attacks on our information technology systems.
When using these general data and information, the Futavis GmbH does not draw any conclusions about the data subject. Rather, this information is needed (1) to deliver the content of our website correctly, (2) to optimize the content of our website and the advertising for it, (3) to ensure the long-term functionality of our information technology systems and the technology of our website, and (4) to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber-attack. Therefore, the Futavis GmbH analyzes anonymously collected data and information on one hand, and on the other hand, with the aim of increasing the data protection and data security of our enterprise, to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from any personal data provided by a data subject.
- Transfer of personal data
As a matter of principle, your data will only be forwarded to responsible internal departments and specialist departments. Your personal data will not be passed on to other companies affiliated with Futavis GmbH without your prior express consent.
Among other things, we use tools from companies whose structure also includes companies outside the EU. These third countries do not always have a level of data protection appropriate to GDPR. Arbitrary access by investigating authorities can therefore not be completely ruled out, which may affect the rights and freedoms of data subjects. However, Futavis GmbH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website.
Any further use or disclosure of your personal data to third parties will not take place.
- Contact via the website
Based on statutory provisions, the website of Futavis GmbH contains data that enable a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or by post, the personal data transmitted by the data subject will be stored automatically. Such personal data transmitted on a voluntary basis by a data subject to the controller will be stored for the purposes of processing or contacting the data subject. No disclosure of this personal data to third parties will take place.
- Legal basis of the processing
Art. 6(1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the user is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. Is our company subject to a legal obligation by which processing of personal data is required, such as for the fulfillment of tax obligations, the processing is based on Art. 6(1) lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the user or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6(1) lit. d GDPR. Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the user which require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the user is a client of the controller (Recital 47 Sentence 2 GDPR).
- Storage duration of personal data
The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage or where provided for by the European Directive and Regulation or other legislator in laws or regulations to which the controller is subject. If the storage purpose ceases to apply or if a storage period prescribed by the European Directive and Regulation Maker or another competent legislator expires, the personal data will be deleted routinely and in accordance with the statutory provisions.
- Data protection during applications and the application process
The controller collects and processes the personal data of applicants for the purpose of processing the application procedure. The processing may also be carried out electronically. This is particularly the case if an applicant sends relevant application documents to the controller by electronic means, for example by e-mail or via a web form located on the website. If the data controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents shall be automatically deleted six months after the notification of the rejection decision, provided that no other legitimate interests of the controller prevent such deletion. Other legitimate interest in this sense is, for example, a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).
We only use technical and session cookies. Technical cookies are necessary for the operation of the website and its essential functions. Session cookies are temporary cookies that are deleted when the browser is closed. Tracking cookies are used for website analysis and marketing purposes. We only use the latter with your prior consent. You can revoke your consent in the browser settings at any time. You can also refuse the use of tracking cookies from the beginning.
- Google Tools
- Google Analytics (with anonymization function)
The controller has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, compilation and analysis of data about the behavior of visitors to websites. A web analysis service collects, among other things, data about which website a data subject came to a website from (so-called referrers), which sub-pages of the website were accessed or how often and for how long a sub-page was viewed. A web analysis is predominantly used for the optimization of a website and for the cost-benefit analysis of internet advertising.
The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
The controller uses the addition “_gat._anonymizeIp” for web analysis via Google Analytics. By means of this addition, the IP address of the Internet connection of the data subject is shortened and anonymized by Google if access to our website is from a member state of the European Union or from another state party to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website, and to provide other services related to the use of our website.
Google Analytics sets a cookie on the information technology system of the data subject. What cookies are has already been explained above. By setting the cookie, Google is enabled to analyze the use of our website. By each call of one of the individual pages of this website, which is operated by the controller and on which a Google Analytics component has been integrated, the internet browser on the information technology system of the data subject is automatically caused by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. As part of this technical process, Google obtains knowledge of personal data, such as the IP address of the data subject, which Google uses, among other things, to track the origin of visitors and clicks and subsequently enable commission calculations. By means of the cookie, personal information, for example the access time, the place from which an access originated and the frequency of visits to our website by the data subject, is stored. Each time the data subject visits our website, this personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may disclose this personal data collected via the technical procedure to third parties.
The data subject can prevent the setting of cookies by our website, as already described above, at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Such a setting of the Internet browser used would also prevent Google from setting a cookie on the information technology system of the data subject. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.
another controller without hindrance from the controller to whom the personal data have been provided, provided that the processing is based on consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract pursuant to Art. 6 para. 1 lit. b GDPR and the processing is carried out with the aid of automated procedures, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, when exercising the right to data portability pursuant to Art. 20 para. 1 GDPR, the data subject shall have the right to obtain that the personal data be transferred directly from one controller to another controller where technically feasible and provided that this does not adversely affect the rights and freedoms of other individuals.
The controller has integrated the Google+ button as a component on this website. Google+ is a so-called social network. A social network is a social meeting place operated on the Internet, an online community that usually allows users to communicate and interact with each other in virtual space. A social network can serve as a platform for sharing opinions and experiences or enables the Internet community to provide personal or company-related information. Among other things, Google+ allows users of the social network to create private profiles, upload photos and network via friend requests.
The operating company of Google+ is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
By each call of one of the individual pages of this website, which is operated by the controller and on which a Google+ button has been integrated, the internet browser on the information technology system of the data subject is automatically caused by the respective Google+ button to download a representation of the corresponding Google+ button from Google. As part of this technical process, Google receives knowledge of which specific subpage of our website is visited by the data subject. More detailed information on Google+ is available at https://developers.google.com/+/.
If the data subject is logged in to Google+ at the same time, Google recognizes which specific subpage of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Google+ button and assigned by Google to the respective Google+ account of the data subject.
If the data subject activates one of the Google+ buttons integrated on our website and thus submits a Google+1 recommendation, Google assigns this information to the personal Google+ user account of the data subject and stores this personal data. Google stores the Google+1 recommendation of the data subject and makes it publicly available in accordance with the terms and conditions accepted by the data subject in this regard. A Google+1 recommendation made by the data subject on this website will subsequently be stored and processed together with other personal data, such as the name of the Google+1 account used by the data subject and the photo stored in this account, in other Google services, for example the search engine results of the Google search engine, the Google account of the data subject or in other places, for example on websites or in connection with advertisements. Furthermore, Google is able to link the visit to this website with other personal data stored by Google. Google further records this personal information with the purpose of improving or optimizing Google’s various services.
Google always receives information via the Google+ button that the data subject has visited our website if the data subject is simultaneously logged into Google+ at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Google+ button or not.
If the data subject does not want personal data to be transmitted to Google, he or she can prevent such transmission by logging out of his or her Google+ account before accessing our website.
Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/.
Further information from Google on the Google+1 button can be found at https://developers.google.com/+/web/buttons-policy.
- Google Fonts
On our website we use Google Fonts. These are Google Fonts and a directory of more than 1400 fonts that Google makes available to its users. The Google Fonts can be used both remotely and locally. In our case, the Google Fonts are used locally, so that no transmission of your personal data is transmitted to Google.
- aa) Local use:
If the Google Fonts are used locally, the fonts are uploaded to the company’s own server. The font is then loaded from your own storage space when it is called up and is thus integrated locally. There is no connection to Google servers in this case.
- bb) Remote use
If Google Fonts are used remotely, the fonts are loaded directly from Google servers when the website is accessed. A connection to the Google servers is established here and the IP address is transmitted to Google.
The Google Fonts data is stored by Google for one year. If you have consented, the legal basis for the processing of your personal data is Art. 6 para. 1 lit. a DSGVO. In addition, we have a legitimate interest in processing for the optimization of our website, so that the legal basis here is Art. 6 para. 1 lit. f DSGVO.
The operating company of Google Fonts is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/. Further information on Google Fonts can be found at https://developers.google.com/fonts.
We use WordPress.com for our website, this is a content management system. WordPress makes it easier to create websites, manage them and publish content online.
WordPress stores your personal data (e.g. name, first name, email, phone, company, IP address, time of website visit, browser data, etc.). The legal basis for the processing of your personal data results from Art. 6 para. 1 lit. f DSGVO, because the use of WordPress is necessary for the presentation of our company on the Internet.
The provider of WordPress is the company Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, USA.
- Social networks
The controller has integrated components of the LinkedIn Corporation on this website. LinkedIn is an Internet-based social network that enables users to connect with existing business contacts and to make new business contacts. Over 400 million registered individuals use LinkedIn in more than 200 countries. This makes LinkedIn currently the largest platform for business contacts and one of the most visited websites in the world.
With each individual retrieval of our website that is equipped with a LinkedIn component (LinkedIn plug-in), this component causes the browser used by the data subject to download a corresponding representation of the component from LinkedIn. Further information on LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. As part of this technical procedure, LinkedIn receives knowledge of which specific sub-page of our website is visited by the data subject.
If the data subject is logged in to LinkedIn at the same time, LinkedIn recognizes which specific sub-page of our website the data subject is visiting with each call-up of our website by the data subject and for the entire duration of the respective stay on our website. This information is collected by the LinkedIn component and assigned by LinkedIn to the respective LinkedIn account of the data subject. If the data subject activates a LinkedIn button integrated on our website, LinkedIn assigns this information to the personal LinkedIn user account of the data subject and stores this personal data.
LinkedIn always receives information via the LinkedIn component that the data subject has visited our website if the data subject is logged into LinkedIn at the same time as calling up our website; this takes place regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, he or she can prevent the transmission by logging out of his or her LinkedIn account before accessing our website.
LinkedIn offers the possibility to unsubscribe from email messages, SMS messages and targeted ads as well as to manage ad settings at https://www.linkedin.com/psettings/guest-controls. LinkedIn also uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be rejected at https://www.linkedin.com/legal/cookie-policy.
The controller has integrated components of Xing on this website. Xing is an Internet-based social network that allows users to connect with existing business contacts and to make new business contacts. Individual users can create a personal profile of themselves on Xing. Companies can, for example, create company profiles or publish job offers on Xing.
The operating company of Xing is XING AG, Dammtorstraße 30, 20354 Hamburg, Germany.
Each time one of the individual pages of this website operated by the controller is called up and on which a Xing component (Xing plug-in) has been integrated, the Internet browser on the information technology system of the data subject is automatically prompted by the respective Xing component to download a representation of the corresponding Xing component from Xing. Further information on the Xing plug-ins can be found at https://dev.xing.com/plugins. As part of this technical procedure, Xing receives information about which specific subpage of our website is visited by the data subject.
If the data subject is logged in to Xing at the same time, Xing recognizes which specific sub-page of our website the data subject is visiting each time the data subject calls up our website and for the entire duration of the respective stay on our website. This information is collected by the Xing component and assigned by Xing to the respective Xing account of the data subject. If the data subject activates one of the Xing buttons integrated on our website, for example the “Share” button, Xing assigns this information to the personal Xing user account of the data subject and stores this personal data. Xing always receives information via the Xing component that the data subject has visited our website if the data subject is simultaneously logged into Xing at the time of calling up our website; this takes place regardless of whether the data subject clicks on the Xing component or not. If the data subject does not want this information to be transmitted to Xing, he or she can prevent the transmission by logging out of his or her Xing account before accessing our website.
The data protection provisions published by Xing, which can be accessed at https://www.xing.com/privacy, provide information about the collection, processing and use of personal data by Xing.
Furthermore, Xing has published privacy notices for the XING Share button at https://www.xing.com/app/share?op=data_protection.
- Rights of data subject’s
- a) Right to confirmation, Art. 15 GDPR
Every data subject has the right to obtain confirmation from the controller as to whether personal data concerning him or her are being processed.
- b) Right of access, Art. 15 GDPR
Any person affected by the processing of personal data has the right to obtain from the controller, at any time and free of charge, information about the personal data stored about him or her and a copy of that information. Furthermore, the data subject has the right to information as to whether personal data have been transferred to a third country or to an international organization. If this is the case, the data subject also has the right to obtain information about the appropriate safeguards in connection with the transfer.
- c) Right to rectification, Art. 16 GDPR
Every person affected by the processing of personal data has the right to demand that inaccurate personal data concerning him or her be corrected without delay. Furthermore, the data subject has the right to request the completion of incomplete personal data – also by means of a supplementary declaration – considering the purposes of the processing.
- d) Right to erasure (right to be forgotten), Art. 17 GDPR.
Any person affected by the processing of personal data has the right to demand from the controller that the personal data concerning him or her be erased without delay.
If the personal data has been made public by Futavis GmbH and our company as the controller is required pursuant to Art. 17 para. 1 GDPR to erase the personal data, Futavis GmbH shall implement reasonable measures, including technical measures, taking into account the available technology and the cost of implementation, in order to inform other data controllers which, process the published personal data that the data subject has requested from those other data controllers to erase all links to or copies or replications of the personal data, unless the processing is necessary.
- e) Right to restriction of processing, Art. 18 GDPR
Any person concerned by the processing of personal data has the right to obtain from the controller the restriction of processing.
- f) Right to data portability, Art. 20 GDPR
Every person affected by the processing of personal data has the right to receive the personal data concerning him or her, which have been provided by the data subject to a controller, in a structured, commonly used and machine-readable format. He or she also has the right to transmit this data to
- g) Right to object, Art. 21 GDPR
Any person affected by the processing of personal data has the right to object at any time, on grounds relating to his or her situation, to the processing of personal data concerning him or her carried out based on Art. 6 para. 1 lit. e or lit. f GDPR. This also applies to profiling based on these provisions.
The Futavis GmbH shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the assertion, exercise or defense of legal claims.
If the Futavis GmbH processes personal data for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data processed for such marketing. This also applies to profiling, insofar as it is related to such direct marketing. If the data subject objects to Futavis GmbH to the processing for direct marketing purposes, Futavis GmbH will no longer process the personal data for these purposes.
In addition, the data subject has the right, on grounds relating to his or her situation, to object to processing of personal data concerning him or her which is carried out by the Futavis GmbH for scientific or historical research purposes, or for statistical purposes pursuant to Art. 89 para. 1 GDPR unless such processing is necessary for the performance of a task carried out in the public interest.
- h) Automated decisions in individual cases, including profiling.
Any person concerned by the processing of personal data has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her, unless the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is permitted by Union or Member State law to which the data controller is subject, and that law contains suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is made with the data subject’s explicit consent.
If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the data controller, or (2) it is made with the data subject’s explicit consent, the Futavis GmbH shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, which include at least the right to obtain the data subject’s involvement on the part of the controller, to express his or her point of view and to contest the decision.
As a responsible company, we do not use automatic decision-making or profiling.
- i) Right to revoke consent under data protection law, Art. 7 para. 3 GDPR
Any person affected by the processing of personal data has the right to withdraw consent to the processing of personal data at any time.
- j) Right to lodge a complaint with the competent supervisory authority, Art. 77 GDPR
Every person affected by the processing of personal data has, in case of the GDPR violations, the right to lodge a complaint with the competent supervisory authority.
- k) Exercising the rights of data subjects
If a data subject wishes to exercise his or her rights, he or she may contact us at any time. The contact details are given below.
- Contact details of the controller
The controller within the meaning of the GDPR is:
Nerscheider Weg 170
Tel.: +49 241 93851804
- Amendment of privacy Statement
We may update our privacy Statement from time to time. Therefore, we recommend that you regularly inform yourself about any updates and amendments that have been made.