Skip to main content

Liability for the content of this website

All data and information on our website has been carefully examined and checked by bewidata Unternehmensberatung und EDV-Service GmbH (hereinafter only “bewidata”).

Nevertheless, this data and information is provided without any guarantee or liability.

Under no circumstances is bewidata liable for direct and indirect damages as well as consequential damages, loss of profit, or for damages arising from the use or in connection with the use of the information on this website.

Copyright

All logos, design elements, trademarks, texts, images, graphics, and scripts of the offer www.bewidata.com (hereinafter only “contents”) are subject to copyright, trademark law, and other laws for the protection of intellectual property.

The rights to the contents are exclusively entitled to bewidata, unless otherwise indicated.

The contents may not be copied for commercial purposes or for passing on, nor may they be changed and used on other websites. Any reproduction, modification, or further distribution in any medium as a whole or in parts requires the prior written consent of bewidata.

Data protection declaration of bewidata GmbH

We are very glad about your interest in our company.

Data protection has a particularly high value for the management of bewidata Unternehmensberatung und EDV-Service GmbH. Using the website of bewidata Unternehmensberatung und EDV-Service GmbH is generally possible without providing any personal data.

However, if a person concerned would like to make use of special services of our company via our website, the processing of personal data could become necessary.

If the processing of personal data is necessary and there is no legal basis for such a processing, we generally obtain the consent of the person concerned.

The processing of personal data, for example the name, address, e-mail address, or telephone number of a person concerned, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to bewidata Unternehmensberatung und EDV-Service GmbH.

By means of this data protection statement, our company would like to inform the public about the type, scope, and purpose of the personal data collected, used, and processed by us. Furthermore, persons concerned are informed about their rights by means of this data protection declaration.

bewidata Unternehmensberatung und EDV-Service GmbH, as the party responsible for the processing, has implemented numerous technical and organizational measures to ensure that the personal data processed via this website is protected as thoroughly as possible.

Nevertheless, internet-based data transmissions can generally involve security gaps, so that absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us by alternative means, such as by telephone.

1. Definitions

The data protection declaration of bewidata Unternehmensberatung und EDV-Service GmbH is based on the terminology used by the European guidelines and regulations body when the General Data Protection Regulation (GDPR) was issued.

Our data protection declaration is intended to be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.

We use the following terms, among others, in this data protection declaration:

a) Personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter “person concerned”).

An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

b) Person concerned

A person concerned is any identified or identifiable natural person whose personal data are processed by the controller.

c) Processing

Processing is any operation or set of operations, performed with or without the aid of automated procedures, concerning personal data, such as collection, recording, organization, sorting, storage, adaptation or alteration, retrieval, querying, use, disclosure by transmission, dissemination or otherwise making available, matching or connecting, restriction, erasure, or destruction.

d) Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.

e) Profiling

Profiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, whereabouts, or movements of that natural person.

f) Pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific person concerned without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data is not assigned to an identified or identifiable natural person.

g) Controller or responsible body for the processing

The controller or the responsible body is the natural or legal person, public authority, agency, institution or other body which alone or jointly with others determines the purposes and means of the processing of personal data.

Where the purposes and means of such processing are determined by European Union law or by the law of the Member States, the controller and the criteria for his or her appointment may be determined by European Union law or by the law of the Member States.

h) Processor

A processor is a natural or legal person, public authority, institution, agency or other body that processes personal data on behalf of the controller or responsible body.

i) Recipient

The recipient is a natural or legal person, authority, institution, or other body to whom personal data is disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the course of a specific investigation mandate under European Union or national law shall not be considered as recipients.

j) Third party

A third party is a natural or legal person, public authority, institution, or body other than the person concerned, the controller, the processor and the persons who, under the direct authority of the controller or processor, are authorized to process the personal data.

k) Consent

Consent is any freely given, informed, and unambiguous expression of the data subject’s choice in a specific case, in the form of a statement or other unequivocal affirmative act by which the data subject indicates his or her consent to the processing of personal data relating to him or her.

2. Name and address of the controller or responsible body

Verantwortlicher im Sinne der Datenschutz-Grundverordnung, sonstiger in den Mitgliedstaaten der Europäischen Union geltenden Datenschutzgesetze und anderer Bestimmungen mit datenschutzrechtlichem Charakter ist die:

bewidata Unternehmensberatung und EDV-Service GmbH
Erthalstraße 1
55118 Mainz
Germany

Phone: +49 6131 6392 0
E-mail: info(at)bewidata.de
Websites: www.bewidata.com, www.moebelpilot.com

3. Name and address of the data protection officer

The data protection officer of the controller or responsible body is:

Henning Hanacek
Hanacek Factoring Consulting & Solutions eK

Im Hag 12
55559 Bretzenheim

Germany
 

Phone: +49 160 968 04 734
E-mail: bewidata(at)datenschutz.hanacekfc.de
Website: https://www.hanacekfcs.de

Every person concerned can contact our data protection officer directly at any time regarding all questions and suggestions concerning data protection.

4. Cookies

The websites of bewidata Unternehmensberatung und EDV-Service GmbH use cookies. Cookies are text files which are stored and saved on a computer system via an internet browser.

Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identification of the cookie.

It consists of a string of characters that can be used to assign Internet pages and servers to the specific Internet browser in which the cookie was stored.

This enables the Internet pages and servers visited to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified by the unique cookie ID.

By using cookies, bewidata Unternehmensberatung und EDV-Service GmbH can provide the users of this website with more user-friendly services, which would not be possible without the setting of cookies.

By means of a cookie, the information and offers on our website can be optimized for the user.

As already mentioned, cookies enable us to recognize the users of our website.

The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to enter his or her access data each time he or she visits the website, because this is done by the website and the cookie stored on the user’s computer system.

Another example is the cookie of a shopping cart in the online store. The online store uses a cookie to remember the items that a customer has added to the virtual shopping cart.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting of the Internet browser he or she is using, thus permanently objecting to the setting of cookies.

Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all standard Internet browsers.

If the person concerned deactivates the setting of cookies in the Internet browser used, it is possible that not all functions of our website can be used completely.

5. Use and disclosure of personal data

Any use of your personal data is only effected for the above-mentioned purposes and to the extent necessary to achieve these purposes.

Personal data will only be transmitted to state institutions and authorities within the scope of mandatory national legal provisions, or if the transmission is necessary for legal or criminal prosecution in the event of attacks on our network infrastructure.

Data will not be passed on to third parties for other purposes.

6. Collection of general data and information

The website of bewidata Unternehmensberatung und EDV-Service GmbH collects a number of general data and information with every access to the website by a person concerned or an automated system.

These general data and information are saved in the log files of the server.

This comprises (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrer), (4) the sub-websites which are accessed via an accessing system on our website, (5) the date and time of an access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) other similar data and information which serve to avoid dangers in case of attacks on our information technology systems.

When using these general data and information, bewidata Unternehmensberatung und EDV-Service GmbH does not draw any conclusions about the person concerned.

This information is rather required in order to (1) deliver the contents of our website correctly, (2) optimize the contents of our website as well as the advertising for it, (3) guarantee the permanent functionality of our information technology systems and the technology of our website, as well as (4) in order to provide law enforcement agencies with the information necessary for criminal prosecution in case of a cyber-attack.

These anonymously collected data and information are therefore statistically evaluated by bewidata Unternehmensberatung und EDV-Service GmbH on the one hand, and also with the aim of increasing data protection and data security within our company, and finally to ensure an optimal level of protection for the personal data processed by us.

The anonymous data of the server log files are stored separately from all personal data entered by a person concerned.

7. Routine deletion and blocking of personal data

The controller or responsible body shall process and store personal data relating to the person concerned only for the time necessary to achieve the purpose for which it is stored, or if provided for by the European Union legislator or any other law or regulation to which the controller is subject.

If the purpose of storage ceases to apply or if a storage period prescribed by the European legislator or any other competent legislator expires, the personal data will be blocked or deleted as a matter of routine and in accordance with legal requirements.

8. Rights of the person concerned

a) Right to confirmation

Every person concerned has the right, granted by the European legislator, to obtain confirmation from the controller or responsible body as to whether personal data relating to him are being processed.

If a person concerned wishes to exercise this right of confirmation, he or she may at any time contact an employee of the controller or responsible body.

b) Right to information

Every person concerned by the processing of personal data has the right, granted by the European legislator, to obtain at any time and free of charge from the controller or responsible body information on the personal data stored about him or her and a copy of this information.

  • Furthermore, the European legislator has granted the person concerned access to the following information:
  • the processing purposes
  • the categories of personal data processed
  • the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular to recipients in third countries or to international organizations
  • if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
  • the existence of a right of rectification or deletion of personal data concerning him or her, or of a right to have the controller or responsible body restrict processing or object to such processing
  • the existence of a right of appeal to a supervisory authority
  • if the personal data are not collected from the person concerned: any information available on the origin of the data
  • the existence of automated decision-making, including profiling, in accordance with Article 22(1) and (4) of the GDPR and, at least in these cases, significant information about the logic involved and the scope and intended impact of such processing on the person concerned

Furthermore, the person concerned has the right to be informed whether personal data has been transmitted to a third country or to an international organization.

If this is the case, the person concerned shall also have the right to be informed about the appropriate guarantees relating to the transmission.

If a person concerned wishes to exercise this right of access, he or she may at any time contact an employee of the controller or responsible body.

c) Right of rectification

Every person concerned by the processing of personal data has the right, granted by the European legislator, to request the immediate rectification of incorrect personal data concerning him or her.

Furthermore, the person concerned has the right to request the completion of incomplete personal data, also by means of a supplementary declaration, taking into account the purposes of the processing.

If a person concerned wishes to exercise this right of rectification, he or she may at any time contact an employee of the controller or responsible body.

d) Right of deletion (right to be forgotten)

Any person concerned by the processing of personal data has the right, granted by the European legislator, to obtain from the controller or responsible body the immediate deletion of the personal data concerning him or her, for any of the following reasons and to the extent that the processing is not necessary:

  • The personal data have been collected or otherwise processed for purposes for which they are no longer necessary.
  • The person concerned withdraws the consent on which the processing was based pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, and there is no other legal basis for the processing.
  • The person concerned objects to the processing pursuant to Art. 21(1) of the GDPR, and there are no overriding legitimate reasons for the processing, or the person concerned objects to the processing pursuant to Art. 21(2) of the GDPR.
  • The personal data were processed unlawfully.
  • The deletion of the personal data is necessary to comply with a legal obligation under European Union law or the law of the Member States to which the controller or responsible body is subject.
  • The personal data was collected in relation to information society services offered in accordance with Article 8(1) of the GDPR.
  • If one of the above reasons applies and a person concerned wishes to have personal data stored by bewidata Unternehmensberatung und EDV-Service GmbH deleted, he or she can contact an employee of the controller or responsible body at any time. The employee of bewidata Unternehmensberatung und EDV-Service GmbH will ensure that the request for deletion is complied with immediately.

If the personal data has been made public by bewidata Unternehmensberatung und EDV-Service GmbH and our company is the controller or responsible body in accordance with Article 17(1) of the GDPR, bewidata Unternehmensberatung und EDV-Service GmbH is obliged to delete the personal data, then bewidata Unternehmensberatung und EDV-Service GmbH will take appropriate measures, also of a technical nature, taking into account the available technology and the implementation costs, in order to inform other controllers or responsible bodies who process the published personal data, that the person concerned has requested from these other controllers or responsible bodies the deletion of all links to these personal data or of copies or replications of these personal data, insofar as the processing is not necessary.

The employee of bewidata Unternehmensberatung und EDV-Service GmbH will arrange the necessary in each individual case.

e) Right to limit processing

Any person concerned by the processing of personal data has the right, granted by the European legislator, to request the controller or responsible body to limit the processing if one of the following conditions is met:

  • The accuracy of the personal data is contested by the person concerned, for a period of time that allows the controller or responsible body to verify the accuracy of the personal data.
  • The processing is unlawful, the person concerned refuses to have the personal data deleted and instead requests the restriction of the use of the personal data.
  • The controller or responsible body no longer needs the personal data for the purposes of the processing, but the person concerned needs them in order to assert, exercise, or defend legal claims.
  • The person concerned has lodged an objection to the processing pursuant to Article 21 (1) of the GDPR, and it is not yet clear whether the controller’s or responsible body’s legitimate reasons outweigh those of the data subject.

If one of the above-mentioned conditions is met and a person concerned wishes to request the restriction of personal data stored at bewidata Unternehmensberatung und EDV-Service GmbH, he or she can contact an employee of the controller or responsible body at any time.

The employee of bewidata Unternehmensberatung und EDV-Service GmbH will arrange that the restriction of the processing is carried out.

f) Right to data transferability

Every person concerned by the processing of personal data has the right, granted by the European legislator, to receive the personal data concerning him or her which have been provided by the person concerned to a controller or responsible body, in a structured, conventional, and machine-readable format.

He or she also has the right to have this data communicated to another controller or responsible body without hindrance from the controller to whom the personal data has been made available, provided that the processing is based on the consent pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, or on a contract pursuant to Article 6(1)(b) of the GDPR, and provided that the processing is carried out with the aid of automated procedures, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Furthermore, when exercising their right to data transfer in accordance with Article 20 (1) of the GDPR, the person concerned has the right to request that personal data be transferred directly from one controller or responsible body to another controller or responsible body, insofar as this is technically feasible and provided that this does not adversely affect the rights and freedoms of other persons.

To assert the right to data transferability, the person concerned can contact an employee of bewidata Unternehmensberatung und EDV-Service GmbH at any time.

g) Right of objection

Every person concerned by the processing of personal data has the right, granted by the European legislator, to object at any time, for reasons arising from his or her particular situation, to the processing of personal data concerning him or her that is carried out on the basis of Article 6(1)(e) or (f) of the GDPR.

This also applies to profiling based on these provisions.

In the case of an objection, bewidata Unternehmensberatung und EDV-Service GmbH will no longer process the personal data, unless we can prove compelling reasons for processing worthy of protection, which outweigh the interests, rights, and freedoms of the person concerned, or the processing serves to assert, exercise, or defend legal claims.

If bewidata Unternehmensberatung und EDV-Service GmbH processes personal data in order to carry out direct advertising, the person concerned has the right to object to the processing of personal data for the purpose of such advertising at any time.

This also applies to profiling, insofar as it is related to such direct advertising.

If the person concerned objects to bewidata Unternehmensberatung und EDV-Service GmbH processing for the purposes of direct advertising, bewidata Unternehmensberatung und EDV-Service GmbH will no longer process the personal data for these purposes.

In addition, the person concerned has the right to object, for reasons arising from his or her particular situation, to the processing of personal data concerning him or her, which is carried out at bewidata Unternehmensberatung und EDV-Service GmbH for scientific or historical research purposes or for statistical purposes in accordance with Article 89(1) of the GDPR, unless such processing is necessary to fulfil a task in the public interest.

In order to exercise the right of objection, the person concerned can directly contact an employee of bewidata Unternehmensberatung und EDV-Service. The person concerned is also free to exercise his or her right of objection in relation to the use of information society services, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.

h) Automated decisions in individual cases, including profiling

Every person concerned by the processing of personal data has the right, granted by the European legislator, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or significantly affects him or her in a similar way, provided that the decision (1) is not necessary for the conclusion or performance of a contract between the person concerned and the controller or responsible body, or (2) is authorised by European Union or national legislation to which the controller or responsible body is subject and such legislation provides for adequate safeguards of the rights and freedoms and legitimate interests of the person concerned, or (3) with the explicit consent of the person concerned.

If the decision (1) is necessary for the conclusion or the fulfilment of a contract between the person concerned and the controller or (2) is made with the explicit consent of the person concerned, bewidata Unternehmensberatung und EDV-Service GmbH will take appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the person concerned, including at least the right to obtain the intervention of a person on the part of the controller, to present its own point of view, and to contest the decision.

If the person concerned wishes to exercise rights relating to automated decisions, he or she may at any time contact an employee of the controller or responsible body.

i) Right to revoke a data protection consent

Every person concerned by the processing of personal data has the right granted by the European legislator to revoke his or her consent to the processing of personal data at any time.

If the person concerned wishes to exercise his or her right to withdraw such a consent, he or she may contact an employee of the controller or responsible body at any time.

9. Legal basis of the processing

Article 6 I lit. a of the GDPR serves our company as a legal basis for processing operations for which we obtain consent for a specific processing purpose.

If the processing of personal data is necessary for the performance of a contract to which the person concerned is a party, as is the case, for example, with processing operations required for the supply of goods or the rendering of other services or consideration, the processing is based on Article 6 I lit. b of the GDPR.

The same applies to such processing operations which are necessary for the implementation of pre-contractual measures, for example in cases of inquiries about our products or services.

If our company is subject to a legal obligation which makes the processing of personal data necessary, for example to fulfil tax obligations, the processing is based on Article 6 I lit. c of the GDPR.

In rare cases, the processing of personal data may be necessary to protect the vital interests of the person concerned or another natural person.

This would be the case, for example, if a visitor to our company was injured and his name, age, health insurance details or other vital information had to be passed on to a doctor, hospital, or other third party. In this case, the processing would be based on Article 6 I lit. d of the GDPR.

Finally, processing operations could be based on Article 6 I lit. f of the GDPR. Processing operations based on this legal basis, which are not covered by any of the aforementioned legal bases, if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights, and freedoms of the data subject do not prevail.

We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the person concerned is a customer of the controller or responsible body (Reason for consideration 47 sentence 2 of the GDPR).

10. Legitimate interests in the processing pursued by the controller or responsible body or by a third party

If the processing of personal data is based on Article 6 I lit. f of the GDPR, our legitimate interest is to carry out our business activities for the benefit of the well-being of all our employees and our shareholders.

11. The duration for which the personal data is stored

The criterion for the duration of storage of personal data is the respective legal retention period. After this period has expired, the corresponding data is routinely deleted if it is no longer required for the fulfillment or initiation of a contract.

12. Legal or contractual provisions on the provision of the personal data; necessity for the conclusion of the contract; obligation of the person concerned to provide the personal data; possible consequences of not providing the data

We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual regulations (e.g. information on the contractual partner).

Sometimes, it may be necessary for a contract to be concluded that a person concerned provides us with personal data, which must subsequently be processed by us.

For example, the person concerned is obliged to provide us with personal data if our company concludes a contract with him or her.

Failure to provide the personal data would mean that the contract with the person concerned could not be concluded.

Before the person concerned makes personal data available, the person concerned must contact one of our employees. Our employee will inform the person concerned on a case-by-case basis whether the provision of the personal data is required by law or contract, or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data, and what the consequences would be if the personal data were not provided.

13. Existence of automated decision-making

As a responsible company, we avoid automatic decision-making or profiling.

This data protection declaration was created in cooperation with RC GmbH.

14. Integration, validity, and timeliness of the data protection declaration

By using our website, you consent to the use of data as described above.

The data protection declaration is currently valid, and dates from April 6, 2018.

Due to the further development of our website or the implementation of new technologies, it may become necessary to change this data protection declaration.

bewidata GmbH reserves the right to change the data protection declaration at any time with effect for the future. We recommend that you read the current data protection declaration again from time to time.