Due to the Internet and electronic data processing, individuals may feel that they are losing track of where their data is stored and for what purpose. The careful and secure handling of your data is very important to us. Therefore, we would like to explain to you, as a visitor to our homepage, how EnhancedRO, hereby referred to as "ERO", ensures the confidentiality of your personal data and respects your personal rights.
Updating of the privacy declaration
Insofar as we introduce new products or services, change procedures or if the Internet and EDP security technology develops further, the "privacy declaration" must be updated. We therefore reserve the right to amend or supplement the declaration as required. We will publish any change at that point. The current version was updated on April 28, 2021.
Name and address of the controller
The controller within the meaning of the General Data Protection Regulation (GDPR), other privacy laws applicable in the Member States of the European Union and other provisions of a privacy nature is:
Collection and storage of personal data and the nature and purpose of their use
Visiting the website
When you visit our website, the browser used on your terminal device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:
IP address of the requesting computer,
Date and time of access,
Name and URL of the file accessed,
Website from which the access is made (referrer URL),
browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The above data is processed by us for the following purposes:
Ensuring a smooth connection setup of the website,
Ensuring a comfortable use of our website,
Evaluation of system security and stability, and
for other administrative purposes.
When using our contact form
For questions of any kind, we offer you the possibility to contact us via a form provided on the website. This function is only available if you are logged in via your master account. Via this login, your inquiry will be assigned to your account ID so that we know from whom the inquiry originated and in order to be able to answer it. Additional information can be provided voluntarily. Data processing for the purpose of contacting us is based on your voluntarily given consent according to Article 6 para. 1 p. 1 lit. a GDPR. The personal data collected by us for the use of the contact form will be automatically deleted after completion of your request.
Passing on of data
We do not transfer your personal data to third parties for purposes other than those listed below. We will only disclose your personal data to third parties if: you have given your express consent to this in accordance with Article 6 (1) p. 1 lit. a GDPR, the disclosure is necessary for the assertion, exercise or defense of legal claims pursuant to Article 6 (1) p. 1 lit. f GDPR and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data in the event that there is a legal obligation for disclosure pursuant to Article 6 (1) sentence 1 lit. c GDPR, as well as this is legally permissible and necessary according to Article 6 para. 1 p. 1 lit. b GDPR for the processing of contractual relationships with you.
For the purpose of demand-oriented design and continuous optimization of our pages, we use Google Analytics, a web analytics service provided by Google Inc. (https://about.google/intl/en/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter "Google"). In this context, pseudonymized usage profiles are created and cookies (see under section 4) are used. The information generated by the cookie about your use of this website such as...
operating system used,
Referrer URL (the previously visited page),
Host name of the accessing computer (IP address),
Time of the server request,
Social media plug-ins
Comment function on this website
For the comment function on this site, in addition to your comment, information about the time of creation of the comment, your e-mail address and, if you do not post anonymously, the username you have chosen will be stored. Our comment function stores the IP addresses of users who post comments. Since we do not check comments on our site before they are activated, we need this data to be able to act against the author in the event of legal violations such as insults or propaganda.
This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
You have the right to...
request information about your personal data processed by us in accordance with Article 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, and the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
in accordance with Article 16 GDPR, to immediately request the correction of incorrect or completion of your personal data stored by us;
pursuant to Article 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims;
pursuant to Article 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Article 21 GDPR;
pursuant to Article 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
in accordance with Article 7 (3) GDPR, to revoke your consent once given to us at any time. This has the consequence that we may no longer continue the data processing based on this consent for the future; and
complain to a supervisory authority in accordance with Article 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our registered office for this purpose. You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another controller without hindrance by the controller to whom the personal data was provided, provided that
the processing is based on consent pursuant to Article 6 (1) a GDPR or Article 9 (2) a GDPR or on a contract pursuant to Article 6 (1) b GDPR and the processing is carried out with the help of automated procedures. In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.
The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Right of objection
If your personal data is processed on the basis of legitimate interests pursuant to Article 6 (1) p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Article 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation.
If you wish to exercise your right of revocation or objection, it is sufficient to send an e-mail to email@example.com.
Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 of the GDPR.
Legal basis of processing
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Article 6(1)(a) GDPR serves as the legal basis. When processing personal data that is necessary for the performance of a service for the data subject, Article 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures. Insofar as processing of personal data is necessary for compliance with a legal obligation to which we are subject, Article 6(1)(c) GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Article 6(1)(d) GDPR serves as the legal basis. If the processing is necessary to protect one of our legitimate interests or those of a third party, and if the interests, fundamental rights and freedoms of the data subject do not override the former interest, Article 6(1)(f) GDPR serves as the legal basis for the processing. Our legitimate interest lies in making our content available.
Duration of the storage of personal data
Personal data is stored for the duration of the respective statutory retention period. After expiry of this period, the data is routinely deleted, unless it is necessary for the initiation or fulfillment of a contract.
Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the closed key or lock symbol in the lower status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments to ensure your entered credentials are treated with the utmost importance and care.