Privacy Policy

Privacy Policy

General notes and mandatory information

When you visit our website, various data, including personal data, is collected. We treat your personal data (definition according to Art. 4 (1) DSGVO) confidentially and according to the legal data protection regulations. This privacy policy explains what data we collect, what we use it for, how and for what purpose this is done. This is done primarily to provide you with convenient and secure access to our information and offers. Of course, we also pursue economic interests with our web presence, with which we want to strengthen both our image and our sales. For reasons of fairness and transparency, we are happy to inform you about this in detail below in accordance with the EU Data Protection Regulation (GDPR):

WHO IS RESPONSIBLE FOR DATA COLLECTION?

The Bürgermeister-Reuter-Stiftung https://www.brst.de/impressum/ as website operator is responsible for the data collection based on your visit to this website.

HOW DO WE COLLECT YOUR DATA?

On the one hand, your data is automatically collected by the IT systems used when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website. Other data is collected when you provide it to us. This can be, for example, data that you enter in a contact form.

WHAT DO WE USE YOUR DATA FOR?

Part of the data is collected to ensure error-free provision of the website. We explain further details in the following sections.

TLS ENCRYPTION

This site uses TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If TLS encryption is activated, the data you transmit to us cannot be read by third parties.”

YOUR CONTACT TO OUR DATA PROTECTION OFFICER

We have appointed the company mb-Datenschutz GmbH https://mb-datenschutz.de/ as data protection officer.

Please direct any queries regarding data protection to the e-mail address dsb@brst.de.

(For all other inquiries please use the following e-mail address: info@brst.de).

DATA COLLECTION ON OUR WEBSITE

COOKIES

Our website uses so-called cookies. These serve to make our offer more user-friendly, effective and secure. Cookies are text files that are stored in the browser on your terminal device.

Cookies do not cause any damage to your computer and do not contain viruses. A distinction is made between so-called “session cookies” and “persistent cookies”. The former are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until they expire or are deleted. These cookies make it possible to recognise your browser on your next visit and to apply the settings you have previously made for you. You can set your browser so that you are informed about the setting of cookies and only allow them in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

Session cookies, which are required to carry out the electronic communication process, are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. for the analysis of your surfing behaviour) are stored, these are treated separately in this data protection declaration.

Server log files

The provider of our website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. The data in the log files include:

  • the referrer URL (the website you came from),
  • the browser type, browser version and language,
  • the operating system used and its interface,
  • the IP address (anonymized),
  • the time of the server request,
  • the http status code – access status,
  • the amount of data transferred,

The storage period is 7 days. This data is not merged with other data sources.

Art. 6 (1) lit. f DSGVO is the legal basis for data processing, which permits the processing of data for the optimal presentation and security of the website based on our legitimate interest.

VISITOR INTERACTION WITH THE WEBSITE

RESERVATION MASK

If you send us your reservation request, your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass on this data to third parties without your consent.

The processing of the data entered in the enquiry form is generally carried out on the legal basis of Art. 6 Para. 1 lit. b DSGVO (contract initiation or implementation). Your data will remain with us until you request us to delete it or the purpose for storing the data no longer applies (e.g. after processing your enquiry has been completed). If we have to comply with legal retention periods, we delete them after their expiry.

COMMENT FUNCTION ON THIS WEBSITE

For the comment function on this site, in addition to your comment, information on the time of the creation of the comment, your e-mail address and, if you do not post anonymously, the username you have chosen will be stored.

The storage of comments is based on your consent (Art. 6 para. 1 lit. a DSGVO), which you can revoke at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations carried out until then remains unaffected by the revocation.

Our comment function stores the IP addresses of users who post comments until the commented content has been completely deleted or the comments have to be deleted for legal reasons (e.g. offensive comments). We need this data to be able to take action against the author in the event of legal violations. The legal basis is our legitimate interest (Art. 6 para. 1 lit. f DSGVO). Independently of this, we check the comments on our site before activating them. If we are requested by investigating authorities to hand over data due to infringing comments, this is done on the legal basis of the legal obligation to hand over data (Art. 6 para. lit. c DSGVO).

COMPANY PAGES IN SOCIAL MEDIA

PRIVACY POLICY FOR OUR FACEBOOK PRESENCE

The goals of our Facebook page are

  • direct contact with our online visitors with the aim of customer acquisition and retention and the associated offer of contemporary communication channels,
  • references to our contributions and offers,
  • statistical analyses for our own market research purposes.

According to Art. 6 (1) f DSGVO, the use of this social media channel is in our legitimate interest. Nevertheless, it is important to us to inform you transparently here as far as possible about the data protection-relevant matters for which we bear active joint responsibility.

When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is available in the form of cookies on your terminal device. This information is used to provide us, as the operator of the Facebook page, with statistical information about the use of our page. If you would like to avoid this, log out of Facebook or disable the option “remain logged in” and configure your browser so that cookies are not set or are deleted promptly. For more information on Facebook’s use of cookies, please see their Cookie Policy. You can also influence the way Facebook uses your data to a small extent in the advertising settings and in the general settings.

For the basic functions, you can find Facebook’s privacy policy here: https://www.facebook.com/privacy/explanation

The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook describes in general terms what information it receives and how it is used in its data use policy.

WHAT RIGHTS DO YOU HAVE UNDER THE EU-DSGVO?

The EU Data Protection Regulation aims to ensure that you, as the data subject, have the greatest possible control over your personal data. All data that can be directly or indirectly related to you as a person is considered personal data. In order for you to effectively exercise control over your data, you have the following rights vis-à-vis us:

  • the right to information according to Art. 15 EU-DSGVO,
  • the right to rectification according to Art. 16 EU-DSGVO,
  • the right to deletion according to Art. 17 EU-DSGVO,
  • the right to restriction of processing pursuant to Art. 18 EU-DSGVO and
  • the right of objection from Art. 21 EU-DSGVO as well as
  • the right to lodge a complaint with a supervisory authority pursuant to Art. 77 EU-DSGVO if you believe that we are processing your data unlawfully. You can find the supervisory authority responsible for our company here: https://www.bfdi.bund.de/DE/Home/home_node.html

The right to data portability according to Art. 20 would only be relevant when visiting our website if you had the possibility to create a profile (e.g. applicant profile, member profile or similar) or to enter corresponding information about yourself.

Status: 15.09.2021