DATA PRIVACY STATEMENT

 

The following information gives you an overview of the processing of your data when you visit the website www.bluebayconsult.com and contact us via this page. We inform you about the data we collect and how we use it. We will also notify you of your rights under applicable data protection law and let you know whom to contact if you have any questions.

 

1. Who is responsible for data processing?

 

Responsible for the processing of your data when you visit www.bluebayconsult.com or contact us via the site:

 

BLUEBAYCONSULT GmbH

Roman Diehl

Managing Partner

Theresienstrasse 14

80333 Munich

Germany

Mobile: 00491726001813

Mail: roman.diehl@bluebayconsult.com

 

2. Which data do we process?

2.1 Use of the Website

When using our website for information purposes only, we collect the personal data that your browser transmits to our server. Our site receives a series of general data and information each time a person or an automated system accesses the website. This public data and information are stored in the log files of the server. In detail, this can be the following data:

  • browser types and versions of the accessing system used;

  • the operating system used by the accessing system;

  • the website from which an accessing system reaches our site (so-called referrer);

  • the sub websites which are accessed via an accessing network on our website;

  • the date and time of access to our website;

  • an Internet Protocol (IP) address;

  • the Internet service provider of the accessing system;

  • other similar data and information used for security purposes in the event of attacks on our information technology systems.

2.2 Contact via the website

In this case, we process the data you provide us.

 

3. For what purposes do we process your data and on what legal basis?

3.1 Use of the Website

When utilising the general data collected when you visit our website (section 2), no conclusions are drawn about you as the person concerned. Instead, this data is required:

  • to deliver the contents of our website correctly,

  • to optimise the contents of our site as well as the advertising for them,

  • to ensure the long-term functionality of our information technology systems and the technology of our website, and

  • to provide law enforcement agencies with the information necessary for law enforcement in the event of a cyber attack.

This anonymously collected data and the information is therefore evaluated by us statistically and also with the aim of increasing data protection and data security in our company in order ultimately to ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data provided by a person concerned. The legal basis for the described data processing is Art. 6 Abs. 1 Buchstabe f Datenschutz-Grundverordnung (DS-GVO).

3.2 Contact via the website

We store the data that you transmit to us here for the sole purpose of processing/responding to your inquiry. The legal basis for the described data processing is Art. 6 Abs. 1 Buchstabe b DS-GVO.

 

4. Who has access to your data and for what reason?

The persons with access to your data use it to carry out the tasks assigned to them. These can also be service providers who support us in fulfilling out our functions, e.g. service providers in the following categories:

  • Hosting service provider for the operation of our servers;

  • Development service provider for programming, development, maintenance and support of software applications;

  • Service providers used by us must meet special confidentiality requirements. You will only have access to your data to the extent and for the period necessary to perform the tasks.

  • In the event of suspicion of a criminal offence, we may disclose your data to law enforcement authorities (police, public prosecutor's office).

 

5. Is data processed outside the European Union?

We also use service providers located in third countries outside the European Union to process your data.

Countries outside the European Union handle the protection of personal data differently from countries within the European Union. There is currently no decision by the EU Commission that these third countries generally offer an adequate level of protection. We have therefore taken extraordinary measures to ensure that your data are processed in third countries as securely as within the European Union. With service providers in third countries, we conclude the data protection contract (standard data protection clauses) provided by the European Union Commission for the processing of personal data in third countries. This ensures appropriate guarantees for the protection of your data with service providers in third countries. You can request a copy of this data protection agreement at the contact details given above.

 

6. How long is the data stored?

We only store your data for as long as we need it for the respective processing purposes. If the data are no longer necessary for the fulfilment of the processing purposes mentioned in these data protection instructions, they will be deleted, unless their storage is still required for the fulfilment of commercial or tax storage obligations.

 

7. What rights do you have?

7.1 Information

You can request information about your data processed by us. For details, we refer to Art. 15 DS-GVO.

7.2 Correction

If your details are not or no longer correct, you can request the correction of your data. If your data is incomplete, you can request a completion. For details, we refer to Art. 16 DS-GVO.

7.3 Deletion

You have the right to request the deletion of your data. Please note that a claim for cancellation depends on the existence of a legitimate reason. Besides, there are no regulations that oblige us to keep your data. For details, we refer to Art. 17 DS-GVO.

7.4 Limitation of processing

You have the right to request that the processing of your data be restricted. Please note that a claim to the limitation of processing depends on the existence of a legitimate reason. For details, we refer to Art. 18 DS-GVO.

7.5 Opposition

You have the right to object to the processing of your data for reasons arising from your particular situation. In the event of a justified objection, we will no longer process your data. For details, we refer to Art. 21 DS-GVO.

7.6 Objection to the processing of your data for direct marketing purposes

You have the right to object to the processing of your data for direct marketing purposes at any time. This also applies to profile in connection with direct advertising. You can address your objection to us form-free, best to the contact as mentioned above data stating the keyword "objection to the processing of my data for advertising purposes". For details, we refer to Art. 21 DS-GVO.

7.7 Right of appeal

You are entitled to file a complaint with a data protection supervisory authority if you do not agree to the processing of your data. For details, we refer to Art. 77 DS-GVO.

7.8 Data transferability

You have the right to receive personal data that you have provided to us in an electronic format. For details, we refer to Art. 20 DS-GVO.

7.9 Revocation of your consent

You have the right to revoke your consent to the processing of your data which you have given to us at any time. This also applies to the revocation of declarations of approval that you have provided to us before the validity of the essential data protection regulation, i.e. before 25.05.2018. The easiest way to revoke your permission is to send an e-mail to the above contact details. The revocation of the consent does not affect the legality of the processing of your data up to the revocation. For more information, we refer Art. 7 DS-GVOto Art. 7 DS-GVO.