This privacy statement explains why, how, and what processing of personal data is performed on websites of Compe10ce GmbH & Co KG. These websites constitute all websites hosted under the domains c10.de und compe10ce.net and related subdomains.

Controller
Compe10ce GmbH & Co KG
Rosenthaler Straße 51
10178 Berlin
Germany

Phone
+49-3641-376300
+49-3641-559440

Fax
+49-3641-376122

Email
info@compe10ce.net

Managing Directors
Bertram Hesse
Roy Sarnoch
René Helbig

Definitions
This privacy statement uses definitions from the General Data Protection Regulation (GDPR) Article 4.

Personal Data
Personal Data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Processor
Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Data Subject
Every visitor of our websites and user of provided services is affected by data processing.

Processed Data
On our websites we collect and process meta and communication data such as IP addresses, data transferred by the browser (operating system, browser type, referrer) and usage data such as visited web pages and time visited.

Data Processing at our Hosting Company
We use services of hosting companies to deliver the mentioned websites and services. These companies process meta, communication, usage as well as content data as specified above. Most importantly log files are processed which contain the following information:
IP address,
Date and time of the request,
URL of the of the requested page,
HTTP response code, such as 200 or 404,
Size of the requested page,
URL of the previous page (referrer),
Browser and operating system of the user.

The processing is necessary for compliance with legal obligation (GDPR Article 6(1)). The log data is stored for 60 days and deleted afterwards.
We host with and on domainfactory.

Purpose of Processing
The purpose of our data processing is to offer websites for informational purposes around Compe10ce and its services.

Lawfulness of Processing
Lawfulness of processing is defined in Article 6 of the GDPR. If not defined differently, we process data according to consent as defined in Article 6(1), for the performance of a contract as defined in Article 6(1), and for the purposes of the legitimate interests pursued by the controller or by a third party as defined in Article 6(1).

Rights of the Data Subject
The GDPR gives you the following rights:

Withdrawal of Consent
When the data processing is based on consent, you can withdraw that consent at any time according to Article 7(3). The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

Right of Access
According to Article 15, you can request confirmation whether or not personal data about you is processed as well as which data was or is processed, Article 15(1).

Right to Rectification
According to Article 16, you can request data rectification of inaccurate personal data that concerns you, as well as the completion of incomplete data.

Right to Erasure (“right to be forgotten”) and Restriction
You can request erasure of your personal data as defined in Article 17 or restrict the processing as defined in Article 18.

Right to Data Portability
You can request your data in a structured, commonly used and machine-readable format and have the right to transmit those data to another party. See Article 20(1).

Right to Object
You have the right to object at any time to processing of personal data concerning you according to Article 21.

Right to Lodge a Complaint
According to Article 77, you can lodge a complaint with a supervisory authority. In general you can direct your complaint to any data privacy supervisory authority. A list can be found here https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

Transmission of Data to Third Party Countries
We are using several service that might transfer personal data to third party countries such as but not limited to Google Webfonts and Google Maps. Before using these offerings, we verified the requirements of Chapter 5 GDPR especially concerning Article 44 and following. The processing of data is therefore based on special guarantees given such as the Privacy Shield in case of data transfer to the US.

Inclusion of Third Party Services

We include third party services in our web offerings. When you open our websites, you also request data from third parties at the same time. Your IP address will be transferred in any case and if the third party decides to do so, a cookie might be placed as well. In addition to that, the time, browser, OS, and referrer (aka our website) information will be transferred.
We use these third parties:Google Fonts, YouTube

We use fonts from Google Fonts, maps from Google Maps and might embed videos from YouTube. These services are offered by Google LLC, 1600 Amphitheatre Pkwy, Mountain View, California 94043. You can find Google’s data privacy information here: policies.google.com/privacy.
The Privacy Certification can be found at www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active. At adssettings.google.com/authenticated you can modify your privacy settings with Google as well as opt-out of personalized advertising.

Usage of Cookies
We use cookies (cookies are small blocks of information that a site transfers to your computer, if you permit that):
Temporary Cookies: They will be stored and transferred as long as you have your browser open.
Permanent Cookies: These cookies will be stored as long as defined initially in the cookie. Closing your browser does not make a difference, you have to or can actively remove it.

Analytics using …
We use webalizer from domainfactory to get an idea of how many visitors we have as well as what information is of interest. Anonymous IP , the time, browser and referrer will be stored as recorded. A cookie is placed as well to see if a visitor returns later.
We do not share the collected data with anyone outside Compe10ce.