Privacy Protection/Cookies

Privacy Protection

Dear Visitors to our Internet Portal,

In order to make your visit to our webpages safe and enjoyable, we would like to inform you how we handle your data.

General Privacy Statement

Data Protection Notice Pursuant to Art. 13 and 21 GDPR

 

Data Controller

Niedersachsen Ports GmbH & Co. KG, Hindenburgstraße 26-30, 26122 Oldenburg, Germany, is responsible for the collection and processing of data.
We generally only collect data required by law.
The specification of data such as phone number and e-mail address is voluntary. There are no negative consequences for not providing these data. Not furnishing these data may however result in subsequent communication being delayed or encumbered.

What is the Legal Basis on Which Niedersachsen Ports is Processing the Data?

  • Data Processing for the Fulfillment of Contracts:
    We process the collected data pursuant to Art. 6, Sec. 1, Letter B GDPR for the fulfillment of contracts. This also includes the associated customer support, contacting, and support of interests.
    If necessary, personal data will be passed to the companies participating in the execution of this agreement.
    The data required for the fulfillment of a contract are stored for the duration of the business relationship and are deleted no later than six months after the end or the termination of such contract. The data will not be deleted if there are accounts receivables still outstanding after the end or termination of the contract that must be recovered. If statutory retention periods exist, the affected data are archived for the duration of these periods.
  • Data Processing on the Basis of Consent:
    If you have given separate consent, a corresponding processing of data will occur on the basis of Art. 6, Sec. 1, Letter a GDPR. You may withdraw your consent at any time without any effect on the legality of previously performed processing. If the consent is withdrawn, we will seize to process the corresponding data. You have the right to object to the data processing. For further details, please see the item "Rights of an Affected Person". 

Whom Does Niedersachsen Ports Transfer the Data to?

We only transfer your data to third parties as long as a statutory privacy entitlement exists to do so (e.g. pursuant to the above-mentioned legislation).
We may also disseminate your data to external service providers (such as IT service providers), who are assisting us in the processing of data in the context of subcontracted processing. These service providers are strictly bound by our instructions.
We will neither sell your personal data to third parties nor market them in any other way.

What are Your Rights as an Affected Person?

Affected persons have the right to obtain from the Data Controller information about the personal data concerning them and the right to correction of incorrect data, or their deletion if one of the reasons named in Art. 17 GDPR applies, for example, if the data are no longer needed for the pursued purposes. There is also the right to restrict the processing, if one of the prerequisites named in Art. 18 GDPR applies and in instances, where the right to data portability pursuant to Art. 20 GDPR applies. If data are collected based on Art. 6, Sec. 1, Letter e (processing of data to comply with regulatory tasks or to protect the public interest), the affected person has the right, for reasons arising from their specific situation, to object to the processing of such data at any time. At that point, we will seize to process those personal data, unless there are provable compelling reasons for the processing that need to be protected and that outweigh the interests, rights and freedoms of the affected person, or if the processing is performed to assert, exercise or defend legal claims.

The Right to Appeal to a Regulatory Authority

Each affected person has the right to appeal to a regulatory authority if they think that the processing of the data concerning them violates privacy law. The right to appeal may be asserted in particular towards a regulatory authority in the Member State of residence of the affected person or at the location of the alleged infringement.
The competent regulatory authority for Niedersachsen is:

Barbara Thiel
Niedersachsen State Commissioner for Data Protection
Prinzenstraße 5
30159 Hannover 
Germany

T   +49 (0)511-120 4500
F   +49 (0)511-120 4599
poststelle@No~Spamlfd.niedersachsen.de 

Notice of Right of Objection

If data are collected on the basis of Art. 6, Sec. 1, Letter e (processing of data to comply with regulatory tasks or to protect the public interest) or Letter f (processing of data for the protection of legitimate interests), you have the right, for reasons arising from your specific situation, to object to the processing of such data at any time. At that point, we will seize to process those personal data, unless there are provable compelling reasons for the processing that need to be protected and that outweigh the interests, rights and freedoms of the affected person, or if the processing is performed to assert, exercise or defend legal claims. If possible, kindly address your objection to: dbleckmann@datenschutz-nord.de.

For questions concerning the topic of data protection (privacy), please do not hesitate to contact our Data Protection Officer: Dr. Uwe Schläger

Contact
Dominik Bleckmann           
Datenschutz Nord GmbH        
Konsul-Smidt-Straße 88           
28217 Bremen
Germany                
T   +49 (0)421 696632 0
F   +49 (0)421 696632 11
office@No~Spamdatenschutz-nord.de  
www.datenschutz-nord-gruppe.de

Privacy Statement Website

We appreciate your visit on our web pages. Below we would like to inform you about the handling of your data pursuant to Art. 13 General Data Protection Regulation (GDPR).

Data Controller
Niedersachsen Ports GmbH & Co. KG, Hindenburgstraße 26-30, 26122 Oldenburg, Germany, is responsible for the collection and processing of data.

Storage of the IP address
We save the IP address transmitted from your web browser strictly for the purpose for which it is intended for a period of seven days with the interest of recognizing, quarantining and remove attacks on our web pages. After this period has expired, we will delete or anonymize the IP address. Legal basis is Art. 6, Sec. 1, Letter f GDPR.

Usage Data
When you visit our web pages, our web server makes a temporary record of so-called usage data saved as a log for statistical purposes to improve the quality of our web pages. This set of data consists of

  • the page from which the file was requested,
  • the name of the file,
  • date and time of the request,
  • the data quantity transferred,
  • the access status (file transferred, file not found),
  • the description of the type of web browser used,
  • the IP address of the requesting computer, which is truncated so that an identification and reference to a person can no longer be recovered.

The aforementioned log data will only be stored as anonymized data.
 

1. Data Security

In order to protect your data against unauthorized access as comprehensively as possible, we take technical and organizational measures. On our pages we rely on an encryption process. Your information is transferred from your computer to our server and vice versa via the Internet using a TLS encryption. You can tell this by the fact that the lock icon in the status bar of your browser is closed and the address bar begins with .
 

2. Data Transfer to Third Parties

Within the context of subcontracted processing pursuant to Art. 28 GDPR, we transfer your data to service providers who assist us in operating our websites (e.g. hosting) and related processes. Our service providers are strictly bound by our instructions and have signed corresponding contracts they must abide by.
Data Transfer to Third Countries
Sometimes we forward personal data to a third country outside the EU. For those instances, we have put in place an adequate level of protection for the data: In the case of Google Analytics (USA), an adequate level of data protection results from their participation in the Privacy Shield Framework (Art. 45, Sec. 1 GDPR).
 

3. Cookies

We use cookies on our websites. Cookies are small text files that are stored on your device and can be dumped. A distinction is made between session cookies that are deleted as soon as you close your browser and permanent cookies that are stored beyond the individual session. Cookies may contain data that make a recognition of the utilized device possible. Sometimes, cookies may just contain information about certain settings that cannot be traced back to the individual user.
On our websites, we use session cookies. The processing is performed based on Art. 6, Sec. 1, Letter f GDPR and with the emphasis on optimizing and/or enabling user guidance and adjusting the display of our website.
You can set up your browser to let you know, when cookies are placed. This makes the use of cookies transparent for you. In addition, you can also delete cookies and prevent the placement of new cookies at any time via the corresponding browser setting. Please note that after those tweaks, our web pages may not be displayed properly and that it may be technically impossible to have some of the functions at your disposal.
 

4. Tracking Tools

Google Analytics
With the help of Google Analytics, we create pseudonymous user profiles for the demand-oriented design of our website. Google Analytics uses cookies that are stored on your device and can be dumped by us. In this way we can recognize returning visitors and count them as such. Data processing is performed based on Art. 6, Sec. 1, Letter f GDPR and/or Section 15, Para. 3 TMG (German Broadcast Media Act) and based on our legitimate interest to know, how often our websites were called by different users.
The information generated by the cookies about your usage of this website are generally sent to one of Google's servers in the US and stored there. However, since we have enabled the IP anonymization on this website, Google will truncate your IP address within member states of the European Union prior to transmission to the US. Only as a matter of exception, the full IP address is transferred to a Google server in the USA and truncated there (an adequate level of protection for the data is provided due to Google’s participation in the Privacy Shield Framework pursuant to Art. 45, Sec. 1 GDPR). In addition, we have concluded a contract with Google Inc. (USA) for subcontracting the processing of data pursuant to Art. 28 GDPR.  According to it, Google may use any information/data strictly for the purpose for which it is intended, i.e. to evaluate the use of our website for us and to compile reports about the website activities.

You may object to the processing at any time. For this purpose, kindly utilize one of the following options:

  1. You may prevent the storage of cookies by adjusting your browser software accordingly, however we need to point out that this might prevent you from experiencing the full contents and all the features of this website.
  2. In addition, you can prevent the collection, transmission, and processing of data containing information about your usage of the website (incl. your IP address) to Google by downloading and installing the following browser plugin, available under this link: (http://tools.google.com/dlpage/gaoptout).
  3. You may also prevent any data collection by Google Analytics by clicking the following link. An opt-out cookie is set that will permanently prevent the collection of your data when you visit this website: <a href="javascript:gaOptout()">click here to object to the processing of your data by Google Analytics.</a>

5. Contact Form

You may get in touch with us via a web form. For you to be able to use our contact form, we require your name and your e-mail address. Feel free to share further information, but this is not required.
Legal basis for processing is Art. 6, Sec. 1, Letter f GDPR. Your data will only be processed to respond to your request. There will be no dissemination to third parties.
Online Job Applications
We process your personal data in accordance with the applicable data protection regulations based on Section 26 of the German Federal Data Protection Act (BDSG). We process the data you disclose to us in the context of your online application solely for candidate selection. Data processing for any other purpose does not occur.
The volume of data you transmit in connection with your online application is completely up to you. Online applications are electronically routed to our HR department and then processed as soon as possible. The data is encrypted during transfer.  Usually, we will forward applications to the respective head of a department in house. Beyond that, there will be no dissemination of your data. Your details will be treated confidentially within our company. If your application does not result in a hire, your documents will be deleted after 6 months.
 

6. Your Rights as a User

For the processing of your personal data, the GDPR affords you certain rights as a website user:

  1. Right to Information (Art. 15 GDPR):
    You have the right to demand confirmation as to whether or not personal data concerning you are being processed. If so, you have a right to be informed about these personal data and about any information detailed under Art. 15 GDPR.
  2. Right to Correction and Deletion (Art. 16 and 17 GDPR):
    You have the right to demand immediate correction of incorrect personal data concerning you and to demand completion of incomplete personal data, if applicable.
    You also have the right to require that personal data concerning you will be deleted immediately, if one of the reasons detailed in Art. 17 GDPR applies, e.g., if the data are no longer needed for the (initially) pursued purposes.
  3. Right to Limitation of Processing (Art. 18 GDPR): You have the right to demand only limited processing, if one of the prerequisites listed in Art. 18 GDPR is met, e.g. if you have objected against the processing - for the duration of a potentially needed verification.
  4. Right to Data Portability (Art. 20 GDPR):
    In certain cases that are detailed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, well-established and machine-readable format or to demand the transmission of these data to a third party.
  5. Right to Objection (Art. 21 GDPR): If data are collected on the basis of Art. 6, Sec. 1, Letter f (processing of data for the protection of legitimate interests), you have the right, for reasons arising from your specific situation, to object to the processing of such data at any time. At that point, we will seize to process those personal data, unless there are provable compelling reasons for the processing that need to be protected, which outweigh the interests, rights and freedoms of the affected person, or if the processing is performed to assert, exercise or defend legal claims.
  6. Right to Appeal to a Regulatory Authority
    Pursuant to Art. 77 GDPR, you have the right to appeal to a regulatory authority if you think that the processing of the data concerning you violates privacy law. The right to appeal may be asserted in particular towards a regulatory authority in the Member State of your residence, your place of work, or at the location of the alleged infringement.

 

7. Contact Details Data Protection Officer

Our corporate data protection officer is available for information, or to take suggestions regarding privacy protection: Dr. Uwe Schläger

Contact:
Dominik Bleckmann           
Datenschutz Nord GmbH        
Konsul-Smidt-Straße 88           
28217 Bremen, Germany                
T   +49 (0)421 696632 0
F   +49 (0)421 696632 11
office@No~Spamdatenschutz-nord.de  
www.datenschutz-nord-gruppe.de