DIE WORTWERKSTATT
Agentur für Kommunikation

Privacy policy

Protecting your personally identifiable information is important to us. We would therefore like to inform you in the following about how your data is being handled, both on this homepage and in principle. In order to fulfill our obligation to provide information according to Art. 12 ff. of the General Data Protection Regulation (GDPR), we would like to make the following information on data privacy available to you:

Who is responsible for the processing of your data?

Within the meaning of data privacy law, the following is the responsible party:

DIE WORTWERKSTATT GmbH
Agentur für Kommunikation
Jahnstrasse 63
72127 Kusterdingen

Phone: +49 7071 156-0
Fax: +49 7071 156-11
E-mail: info@wortwerkstatt.de
Internet: www.wortwerkstatt.de

You will find further information on our company, details about authorized representatives, and other contact details in the site notice on our website.

Information on data processing via this website

The operators of these pages take the protection of your personally identifiable information very seriously. We treat your personally identifiable information confidentially and in accordance with the statutory data privacy regulations and this privacy policy.

If you use this website, various personally identifiable information will be collected. Personally identifiable information is information that could be used to identify you personally. This privacy policy explains what information we collect and what we use it for. It also explains how and why this happens.

We would like to advise you that data transmission over the Internet (e.g., when communicating by e-mail) is always associated with certain security risks. Complete protection of data against access by third parties is not possible.

SSL or TSL encryption

This website uses SSL or TSL encryption for security reasons and to protect the transmission of sensitive content, such as any orders or requests you may send to us as the website operator. You can recognize an encrypted connection when the browser’s address line changes from „http://“ to „https://“ and the padlock icon is displayed in your browser’s address bar. If SSL or TSL encryption is enabled, the data you submit to us cannot be read by third parties.

Server log files

The provider of the web pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include the following:

Browser type and browser version

Operating system used

Referrer URL

Hostname of the accessing computer

Time of the server request

IP address

This data is never merged with other data sources.

This data is collected on the basis of Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website, and server log files must be recorded to do this.

Security plugin

We use a WordPress plugin to protect against external attacks by hackers and bots (brute force attacks, login hacking). In order for it to be possible to initiate appropriate countermeasures in the event of any attacks, this plugin stores the IP addresses of the users who visit our site. The IP addresses are only stored in the local WordPress database and not transmitted to third parties.

The use of iThemes Security is in the interest of safe use of our websites and also serves to protect users against malware, Trojans, and so on. This constitutes a legitimate interest according to Art. 6 (1) (f ) GDPR.

Contact form

If you send us inquiries using a contact form, your details from the request form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. We will not share this information without your consent.

The processing of the data entered into the contact form is therefore carried out based exclusively on your consent (Article 6 (1) (a) GDPR). You can revoke this consent at any time. An informal e-mail message to us is sufficient. The legality of the data processing operations carried out up until revocation of consent remains unaffected by the revocation.

The data entered by you in the contact form will remain with us until you ask us to delete it or revoke your consent to its storage, or until the reason for the data storage no longer applies (e.g., after completion of your request). Mandatory statutory provisions, especially retention periods, remain unaffected.

Which of your data is processed by us? And for what purpose?

If we receive data from you, we will only process it for the purposes for which we received or collected it.

Data processing for other purposes can only be considered if the necessary legal requirements pursuant to Art. 6 (4) GDPR have been met. In this case, we will of course comply with any obligation to provide information under Art. 13 (3) GDPR and Art. 14 (4) GDPR.

What is the legal basis for this?

The legal basis for processing of personally identifiable information is Art. 6 GDPR, unless there are specific legal provisions. In particular, the following possibilities are relevant here:

Consent (Art. 6 (1) (a) GDPR)

Data processing for the performance of contracts (Art. 6 (1) (b) GDPR

Data processing on the basis of weighing of interests (Art. 6 (1) (f) GDPR)

Data processing to fulfill a legal obligation (Art. 6 (1) (c) GDPR)

If personally identifiable information is processed on the basis of your consent, you have the right to revoke this consent at any time with effect for the future.

If we process data on the basis of a weighing of interests, you as the data subject have the right to object to the processing of personally identifiable information, taking into account the provisions of Art. 21 GDPR.

How long is the data stored?

We process the data as long as this is necessary for the respective purpose. Insofar as legal retention obligations exist – under commercial law or tax law, for example – the relevant personally identifiable information shall be stored for the duration of the retention obligation. After expiration of the retention obligation, a check is carried out for whether processing is still necessary. If a requirement no longer exists, the data is deleted.

As a matter of principle, we regularly evaluate data with regard to the need for further processing. Due to the quantity of data, this check is carried out with regard to specific types of data or processing purposes.

You can of course request information about your personally identifiable information stored by us at any time (see below) and, if it is not necessary to retain the data, request that the data be deleted or that its processing be limited.

To which recipients will the data be forwarded?

Public bodies and institutions if there is a legal or official obligation to do so.
In rare individual cases of maintenance or fault analysis, hardware or software support partners of hardware may be commissioned. Contractual provisions on limiting the use of data to proper purposes and confidentiality according to applicable law will be concluded with these partners.

Your personally identifiable information will only be disclosed to third parties if this is necessary for the execution of the contract with you, if the disclosure is permissible on the basis of a weighing of interests within the meaning of Art. 6 (1) (f) GDPR, if we are legally obliged to disclosure, or if you have given consent to disclose your information.

Where is the data processed?

Your personally identifiable information is processed by us exclusively in data centers of the European Union.

Information on the newsletter and consent

The following information is intended to inform you about the content of our newsletter, the subscription, shipping and statistical evaluation procedures, as well as your right of objection. By subscribing to our newsletter, you agree to receive it and to the described procedures.

Content of the newsletter

We send newsletters, emails and other electronic notifications with advertising information (hereinafter “newsletter”) only with the consent of the recipient or legal permission. Insofar as the content of the newsletter is concretely described as part of a subscription, it is relative for the consent of the users. Otherwise, our newsletters only contain information on our agency’s current developments, in-house personal data and reference projects, as well as up-to-date information on developments in the communications industry.

Double opt-in and logging

Subscribing to our newsletter is part of a so-called double opt-in procedure. This means that you will receive an email after subscribing requesting you to confirm your subscription. This confirmation is necessary so that nobody can subscribe with an email address that is not their own. Subscription to the newsletter will be logged as proof of the subscription process in accordance with legal requirements. This includes the storage of the subscription and confirmation time as well as the IP address. Similarly, changes to your data stored with MailChimp will be logged.

Use of the “MailChimp” mailing platform

The newsletter is distributed via “MailChimp,” a newsletter mailing platform by the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
The email addresses of our newsletter recipients, as well as their other information described in the context of this notice, are stored on the “MailChimp” servers in the USA. “MailChimp” uses this information to send and evaluate the newsletters on our behalf. Furthermore, “MailChimp” may, according to its own information, use this data to optimize or improve its own services, for example, for the technical optimization of the sending and presentation of the newsletter or for economic purposes to determine from which countries the recipients originate. However, “MailChimp” does not use the data of our newsletter recipients to contact them on their own behalf or to disclose this data to third parties. We trust the reliability as well as the IT and data security of “MailChimp.” “MailChimp” is certified under the US-EU „Privacy Shield“ and is committed to complying with EU data privacy regulations. Furthermore, we have concluded a “Data Processing Agreement” with “MailChimp”. This is a contract by which “MailChimp” undertakes to protect the data of our users, process this data on our behalf in accordance with its data privacy policy and, in particular, not divulge it to third parties. The privacy policy of “MailChimp” can be viewed here.

Subscription details

To subscribe to the newsletter, all you have to do is enter your email address. Optionally, we ask that you provide your first and last name. These are only used to personalize the newsletter. For reasons of data minimization, you are only required to specify your email address for the subscription.

Statistical survey and analyses

The newsletters contain a so-called “web beacon”, which is a single pixel-sized file that communicates with the “MailChimp” server when the newsletter is opened. As part of this communication, technical information, such as information about your browser and your system, as well as your IP address and the time of the communication is collected. This information is used to improve the technical performance of the services based on the technical data or target groups and their reading habits based on their locations (which can be determined using the IP address) or access times. Statistical surveys also include determining whether the newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our desire nor that of “MailChimp” to observe individual users. On the contrary, the evaluations serve to identify the reading habits of our users and to adapt our content to them or to send different content that corresponds to the interests of our users.

Online viewing and data management

There are cases in which we direct the newsletter recipients to the “MailChimp” website. For example, our newsletters include a link that allows newsletter recipients to view the newsletters online (e.g. if they cannot view it properly in their email program). Furthermore, newsletter recipients can subsequently correct their data, such as email address. Likewise, the “MailChimp” privacy policy is only available on their website.
In this context, we would like to point out that the “MailChimp” website uses cookies and thus personal data is also processed by “MailChimp,” its partners and service providers (e.g. Google Analytics). We have no influence on this data collection.  For more information, see the “MailChimp” privacy policy. For more information on opting out of the collection of data for advertising purposes, please visit http://www.aboutads.info/choices/ and http://www.youronlinechoices.com/ (for Europe).

Unsubscribing/Revocation

You may unsubscribe from receiving our newsletter at any time by revoking your consent. Your consent to the sending of the newsletter via “MailChimp” and the statistical analyses is terminated simultaneously. It is unfortunately not possible to terminate the sending via MailChimp or the statistical evaluation separately. A link to unsubscribe from the newsletter can be found at the end of each newsletter.

Legal basis: General Data Protection Regulation

In accordance with the provisions of the General Data Protection Regulation (GDPR), which will be applicable as of May 25, 2018, we hereby inform you that the consent to the sending of email addresses is based on Art. 6 (1) lit a. 7 GDPR and Section 7 (2) no. 3 and (3) UWG (German Act Against Unfair Competition). The use of the mailing platform “MailChimp,” the implementation of statistical surveys and analyses, as well as the logging of the subscription process are based on our legitimate interests in accordance with. Art. 6 (1) lit. f GDPR. We are interested in using a user-friendly and secure newsletter system that serves both our business interests and the expectations of our users.
We would like to further point out that you can opt out of the future processing of your personal data in accordance with the statutory requirements found in Art. 21 GDPR at any time. This objection may in particular be made against the processing of the data for direct marketing purposes.

Information about the newsletter as per the template from the lawyer Dr. Thomas Schwenke.

Using Web fonts

External fonts (Google Fonts) are used on these web pages. Google Fonts is a service of Google Inc. (“Google”). These Web Fonts are integrated by a server call, usually a Google server in the USA. The server call process causes information regarding which of our Internet pages you have visited to be sent to the server. Google also stores the IP address of the browser of the terminal device of the visitor to these Internet pages. For more information, please refer to Google’s privacy policy, which can be found here and here.

Job applications

You have the opportunity to apply for jobs advertised by us. For this purpose, you provide us with personally identifiable information, which we process exclusively for the application process. In order to process your application conscientiously, your documents will be stored on the server of DIE WORTWERKSTATT GmbH.

After your data has been saved, our employees have access to your data, which is integrated in the applicant selection and application process. This applies regardless of the channel through which your application entered our system (online or in paper form). We process the data entered on the basis of Section 26 (1) of Germany’s Federal Data Protection Act (FDPA) insofar as this is necessary for the decision on the establishment of an employment relationship.

Your data will be completely deleted three months after receipt at the latest. Application documents submitted in paper form will be returned to you by postal mail.

Your rights

You have the right to information about the personally identifiable information about your person that we process.

In case of a request for information which is not made in writing, we ask for your understanding that we may then request proof from you that you are the person who you claim to be.

Furthermore, you have the right to correction or deletion or to restriction of the processing of your information to the extent to which you are legally entitled to this.

You also have the right to object to processing of your information within the scope of the statutory provisions. The same applies to your right to data portability.

In particular, you have a right to object under Art. 21 (1) and (2) GDPR to the processing of your data in conjunction with direct advertising if this occurs on the basis of weighing of interests.

To do so, please contact us via email: datenschutz@wortwerkstatt.de or by mail:

DIE WORTWERKSTATT GmbH
Subject: Revoke data collection WORTWERKSTATT
Postfach 11 55
72125 Kusterdingen

Our Data Protection Officer

We have appointed an external data protection officer for our company. You can reach this person using the following contact option:

Ulrike Eben
c/o DIE WORTWERKSTATT GmbH
Postfach 11 55
72125 Kusterdingen

Email: datenschutz@wortwerkstatt.de

Right to lodge a complaint

You have the right to complain to a data protection supervisory authority about the processing of personally identifiable information by us.

Objection to advertising emails

We hereby expressly object to the third-party use of contact data, which has been published in accordance with legal notice requirements, for the transmission of unsolicited advertising and information material. The website operators reserve the right to take legal action against unsolicited transmission of advertising and information material, such as spam mails, etc.

Contact

DIE WORTWERKSTATT GmbH
Jahnstraße 63
D-72127 Kusterdingen
GERMANY
Phone: +49 7071 156-0
Email: info@wortwerkstatt.de
Fax: +49 7071 156-11


By using the contact form I agree with the data processing. Privacy Policy