Data privacy

HEAT GmbH
Seilerbahnweg 14
61462 Königstein i. Ts. | Germany
Phone: +49 (0) 61 74 – 96 94 70
Fax: +49 (0) 61 74 – 96 94 729
E-mail: [email protected]

You can find HEAT’s data protection policy on https://www.heat-international.de/data-privacy/

DATA PRIVACY

HEAT GmbH, which operates this website, takes the protection of your personal data very seriously. We treat your personal data confidentially in accordance with statutory data protection regulations and this Data Privacy Statement.

It is possible to use our website without providing any personal data. Any personal data (for example name, address or email address) that is collected on our website is collected on a voluntary basis insofar as this is possible. This data will not be disclosed to any third party without your express consent.

Please note that data transmission via the internet (e.g., in the case of communication by email) may be subject to security gaps. It is not possible to protect such data completely against access by third parties.

Purpose of data collection, processing or use

Within the context of the RefNat4LIFE project activities, personal data is collected, processed, used, and, where applicable, transmitted for the purpose of obtaining, implementing, and billing orders.

In the staff department, personal data is collected, processed, used, and, where applicable, transmitted for internal purposes (personnel and payroll management, recruitment, travel management) and also to meet the requirements under statutory obligations.

Description of affected groups and their related data / data categories
Within the context of normal business activities, addresses, contractual and payment information, and data concerning electronic information for clients, employers, consultants as well as freelance experts and employees of partner consulting companies are collected, processed, and used.

In the staff department (head office employees, visiting staff, national staff, integrated professionals, family members, applicants, former employees), additional information concerning qualifications and applications, duration of employment, remuneration, social security information, contact details, bank details, work documents are collected, processed, and used.

Recipients / categories of recipients, to whom the data may be disclosed
Responsible internal administrators (bookkeeping, accounting, contracts department, project management, telecommunications and IT); external clients (GIZ, KfW, Ministries, World Bank, EU, Asian and other development banks, etc.).

For staff management: any internal department involved in carrying out respective business processes (project management and administrative departments).

Public authorities on the basis of statutory regulations (social insurance carriers, tax authorities, health insurance companies); bank institutions (for salary transactions); creditors (in the case of wage / salary garnishment); travel agencies.

Standard periods for the deletion of data
Personal data is deleted on a regular basis when it is no longer needed to fulfill a contract, if the person in question has not provided their separate approval to retain said data or if statutory retention obligations and deadlines do not stipulate that data be retained for a longer period.

Planned transmission of data to third countries
In general, no personal data will be transmitted to third countries by electronic means. Exceptions to this are possible when there is a specific legal basis for such a transmission.

Your rights
You may at any time request information about the use of your personal data (according to § 15 DSGVO) or request the verification, correction or deletion of your personal data (§§ 16 and 17 DSGVO). You may also at any time request the restriction of the use or processing of your personal data (§§ 18 and 19 DSGVO), request the transmission of your personal data to third parties (§ 20 DSGVO), or object to the use of your personal data (§ 21 DSGVO).

If you want to exercise any of the above-mentioned rights, please send an e-mail to: [email protected]. We will endeavour to take the necessary measures as soon as possible.

Data privacy regarding the use of Jetpack
This website uses Jetpack for website statistics. The provider of this service is: Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, United States of America.

Information can be found in the Jetpack data privacy statement: https://jetpack.com/support/privacy and at https://automattic.com/privacy-notice/

Data privacy regarding the use of Facebook plugins (Like button)
The RefNat4LIFE website contains plugins for the social network Facebook, the provider of which is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook plugins on our website can be recognized by the Facebook logo or “Like” button. For an overview of the Facebook plugins, see: http://developers.facebook.com/docs/plugins/

When you visit our website, the plugin establishes a direct connection between your browser and the Facebook server. Facebook thereby receives the information that you have visited our website using your IP address. If you click the Facebook “Like” button while you are logged in to your Facebook account, you automatically link the contents of our website to your Facebook profile. This allows Facebook to assign your visit to our website to your user account. Please note that GFA, as the provider of this site, has no knowledge of the content of the data thus transmitted to or used by Facebook. Additional information can be found in the Facebook data privacy statement: http://de-de.facebook.com/policy.php. If you do not want Facebook to be able to assign your visit to our website to your Facebook account, please log out of your Facebook account.

Data privacy regarding the use of LinkedIn
Our website uses functions from the LinkedIn network. The provider of that service is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time a page of this website containing a LinkedIn functions is called up, a connection is established with the LinkedIn servers. LinkedIn is informed that you have visited our website using your IP address. If you click the Recommend button from LinkedIn and are logged in to your LinkedIn account, LinkedIn is able to assign your visit to our website to your user account. Please note that GFA, as the provider of this site, has no knowledge of the content of the data thus transmitted to or used by LinkedIn. Additional information can be found in the LinkedIn data privacy statement: https://www.linkedin.com/legal/privacy-policy

Data privacy regarding the use of Twitter
Our website uses functions of Twitter. The provider of that service is:

(a) for accounts within the U.S.A.:
Twitter, Inc.
Attn: Privacy Policy Inquiry
1355 Market Street, Suite 900
San Francisco, CA 94103

(b) for accounts outside of the U.S.A.:
Twitter International Company
Attn: Privacy Policy Inquiry
One Cumberland Place, Fenian Street
Dublin 2, D02 AX07 IRELAND

Each time a page of this website containing a Twitter function is called up, a connection is established with the Twitter servers. To our knowledge, no personal data is stored when doing so. In particular, no IP address is stored and usage behaviour is not evaluated.

Additional information concerning data privacy of Twitter can be found in the Twitter data privacy statement at https://twitter.com/en/privacy

Server log files
The provider of this website automatically collects and stores information in so-called server log files which your browser automatically transmits to us. This information includes:

The data thus collected cannot be connected to a specific person. The data is not merged or compared with data from other sources. We reserve the right to subsequently examine this data if concrete evidence of unlawful use is made known to us.

Cookies
Parts of this website use so-called cookies. Cookies will not harm your computer and do not contain any virus. Cookies are used to make our offer more user-friendly, effective, and safe. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are “session cookies”. Session cookies are automatically deleted at the end of your visit. Other cookies are stored on your computer until you delete them. These cookies make it possible for us to recognize your browser the next time you visit our website.

The data is processed according to Art. 6 paragraph 1 (f) of the EU General Data Protection Regulation (GDPR) with the legitimate interest of analyzing usage to improve the company’s website.

Regarding cookies, you can adjust the settings on your browser in different ways:

Deactivating cookies may limit the functionality of this website.

Contact via E-Mail
If you send us an inquiry via our [email protected] e-mail account, we will store the information you provide , including the contact information that you provide, so that we can process your inquiry, and in the case there is a follow-up inquiry. This data will never be disclosed without your consent.

Objection to promotion mail
The use of the contact information included in the Legal Notice to send unsolicited advertising and informational materials is herewith prohibited. The operators of this website expressly reserve the right to take legal steps in the event that unsolicited advertising materials are sent, specifically through spam e-mail.

Store owner benchmark tool

Registering to the survey: This website provides an online survey that you choose to complete voluntarily. The survey includes a number of different formula fields. When you register to the survey and consent to our Terms of use and Privacy policy, you agree to the data you enter being stored on the server.

Storage and processing of data: The data you enter in the survey will be stored on the server of Domainfactory GmbH, located in the EU. The survey uses the programme custom WordPress plugin (coded by Yes We Work Ltd). Data will be transferred between the server and the user’s browser via a secure (https) connection. Data will be stored in a cloud and locally. The data will be processed by HEAT GmbH, Germany. Access is secured via a password-secured log-in to administrative users of the HEAT website or HEAT web server only. The data will be anonymized and stored for the purpose to continuously improve the survey tool and its benchmark calculations.

Use of personal data: The survey provider processes your data for the evaluation of your store’s performance to provide you with a tailored result at the end of the survey. The data entered in the formula fields are stored on the server in order to provide you with a downloadable result report once you have completed the survey and also allows you to pause and resume the survey. To develop and improve our tool further we also use data to check whether our benchmarking categories are set properly. The data stored on the server only contain personal data if you enter such data in the text fields (e.g. to enter your name and store name on the summary report). Only your email is mandatory to participate in the survey.

Data retention period: Personal data is deleted on a regular basis when it is no longer needed to fulfil the described purposes.

Newsletter data
If you wish to receive the newsletter offered on the website, we need your email address as well as information that would allow us to verify that you are the owner of the email address provided, and that you agree to receive the newsletter. We use Mailchimp for sending out the project’s newsletters. The Mailchimp account is managed by our project partner shecco (view their privacy policy here). By subscribing, you acknowledge that your information will be transferred to Mailchimp for processing. Additional information concerning data privacy of Mailchimp can be found in the Intuit data privacy statement at https://www.intuit.com/privacy/statement/ We do not collect any additional data. You may revoke your consent to the storage of the data, your email address and the use thereof to send the newsletter at any time by simply clicking the “Unsubscribe” button contained in the newsletter, or by writing us directly at [email protected]