Privacy policy
General information
We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory provisions.
This data protection notice informs you about the processing of your personal data when using the website www.competo-cp.de (the “website”).
The controller within the meaning of the EU General Data Protection Regulation (“GDPR”) with regard to the processing of personal data in connection with the Website is Competo Capital Partners GmbH, Karlstraße 12 – Karolinen Karree, 80333 Munich (“Competo”, “we”, “us”).
In the following, we explain what data we collect when you use our website, for what purposes and how we use this data and what rights you are entitled to. Please note that the website may contain links to websites of other providers over which we have no control and to which this data protection information does not apply.
Our data protection information should be simple and understandable for everyone. As a rule, the official terms of the General Data Protection Regulation (GDPR) are used in this data protection information. The official definitions are explained in Art. 4 GDPR.
Processing of your data
2.1 VISITING THE WEBSITE 2.1.1.
ACCESS TO AND STORAGE OF INFORMATION IN END DEVICES By using our website, information (e.g. IP address) may be accessed or information (e.g. cookies) may be stored in your end devices and personal data within the meaning of the GDPR may be processed as a result.
In cases where such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of Section 25 para.
1 sentence 1, para.
2 No. 2 TTDSG.
In cases in which such a process serves other purposes (e.g. the needs-based design of our website), this is carried out on the basis of Section 25 para.
1 TTDSG only with your consent in accordance with Art. 6 para.
1 lit.
a GDPR.
Consent can be revoked at any time for the future.
Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.
2.1.2.
This website is hosted by an external service provider (hoster).
This website is hosted in the German IONOS data centers.
Personal data collected on this website is stored on the hoster’s servers.
This may include IP addresses, contact requests, meta and communication data, website access and other data generated via a website.
We have concluded an order processing contract with the provider in accordance with the requirements of Art. 28 GDPR, in which we oblige the provider to protect our customers’ data and not to pass it on to third parties.
2.1.3.
SERVER LOGFILES When you visit our website, it is technically necessary for data to be transmitted to our web server via your internet browser.
The following data is recorded anonymously during an ongoing connection for communication between your Internet browser and our web server – already during collection: – Referrer (previously visited website) – Requested website or file – Browser type and browser version – Operating system used – Device type used – Time of access – IP address in anonymized form (only used to determine the location of access) We collect the listed data in order to ensure a smooth connection setup of the website and a technically error-free provision of our services.
The processing of this data is absolutely necessary in order to make the website available to you.
The log files are used to evaluate system security and stability as well as for administrative purposes.
The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para.
1 lit.
f GDPR.
For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short period of time. Immediately after visiting our website, the data is anonymized by shortening the IP address at domain level so that it is no longer possible to establish a reference to the individual user.
2.2 CONTACTING US BY E-MAIL If you send us inquiries via the contact form or e-mail, your details from the inquiry form or your e-mail, including the personal data you provide there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions.
It is necessary to provide an e-mail address for contact purposes; providing your first name, surname and telephone number is voluntary.
We will never pass on this data without your consent.
The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 para.
1 lit.
f GDPR and, if applicable, Art. 6 para.
1 lit.
b GDPR, if your request is aimed at concluding a contract.
Your data will be deleted after final processing of your request, provided that there are no statutory retention obligations to the contrary.
In the case of Art. 6 para.
1 lit.
f GDPR, you can object to the processing of your personal data at any time.
2.3 USE OF COOKIES 2.3.1 The website only uses session cookies.
Cookies are small text files that are stored in your browser’s memory and whose data is used for technical session control.
They are used, for example, to make it easier for you to navigate through our website.
These session cookies are only stored for the duration of your use of our website, as they are only used to identify you as long as you are logged in to our website.
At the end of each session, the session cookies are deleted.
Session cookies are not used for any other purpose.
We use session cookies to recognize that you have already visited individual pages of our website.
You can configure your browser so that no cookies are stored or a message always appears before a new cookie is created.
2.3.2 The legal basis for the processing described in section 2.3 is Art. 6 para.
1 sentence 1 lit.
f GDPR (legitimate interest; the legitimate interest follows from the above-mentioned purposes, in particular to optimize the use of the website and to improve your user experience) 2.3.3 You can set your browser so that you – are informed about the setting of cookies, – allow cookies only in individual cases, – exclude the acceptance of cookies for certain cases or in general, – activate the automatic deletion of cookies when closing the browser. The cookie settings can be managed under the following links for the respective browsers: – Google Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647 – Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen – Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies – Safari: https://support.apple.com/kb/ph21411?locale=de_DE – Opera: https://help.opera.com/en/latest/web-preferences/#cookies You can also manage cookies from many companies and functions that are used for advertising individually.
To do this, use the corresponding user tools, available at https://www.aboutads.info/choices/ or https://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a so-called “do-not-track function”.
If this function is activated, the respective browser informs advertising networks, websites and applications that you do not wish to be “tracked” for the purpose of behavior-based advertising and the like.
Information and instructions on how to edit this function can be found under the following links, depending on your browser provider: – Google Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de – Mozilla Firefox: https://www.mozilla.org/de/firefox/dnt/ – Internet Explorer: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track – Safari: https://support.apple.com/kb/PH21416?locale=de_DE – Opera: https://help.opera.com/Windows/12.10/de/notrack.html You can also prevent so-called scripts from being loaded by default.
“NoScript” allows the execution of JavaScripts, Java and other plug-ins only on trusted domains of your choice.
Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox under
e.g. for Mozilla Firefox at: https://addons.mozilla.org/de/firefox/addon/noscript/).
However, deactivating cookies may mean that you cannot (fully) use all the functions of our website.
Social media presence
Below you will find information on the handling of your data that is collected through your use of our social media presence on social networks and platforms. Your data is processed in accordance with the statutory regulations. 3.1 RESPONSIBLE DATA CONTROLLER If your personal data is processed by a provider listed below, this provider is responsible for data processing within the meaning of the GDPR. For the assertion of your rights as a data subject, we would like to point out that these can be asserted most effectively with the respective providers. Only they have access to the data collected from you. If you still need help, please feel free to contact us at any time. We have online presences on the social media platforms of the following providers – Instagram Inc, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland – LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland 3.2 DATA PROTECTION OFFICER Information on how to contact the data protection officer of the social media providers can be found here: – Instagram Inc:
https://de-de.facebook.com/help/instagram/155833707900388 – LinkedIn Ireland Unlimited Company: https://www.linkedin.com/help/linkedin/ask/TSO-DPO 3.3 GENERAL INFORMATION ON SOCIAL MEDIA PLATFORMS 3.3.1 RESPONSIBLE AUTHORITY The controller for data processing within the meaning of the GDPR is the entity named at the beginning of this Privacy Policy, insofar as data transmitted by you via one of the social media platforms is processed by us. 3.3.2 OUR DATA PROTECTION OFFICER If you have any concerns about data processing carried out by us as the controller, you can contact our data protection officer using the contact details given under point 7 of this privacy policy. 3.4 GENERAL DATA PROCESSING ON SOCIAL MEDIA PLATFORMS 3.4.1 DATA PROCESSING FOR MARKET RESEARCH AND ADVERTISING As a rule, personal data is processed on the company website for market research and advertising purposes. For this purpose, a cookie is set in your browser that enables the respective provider to recognize you when you visit a website. The data collected can be used to create user profiles. These are used to place advertisements inside and outside the platform that presumably correspond to your interests. Furthermore, data can also be stored in the usage profiles independently of the devices you use. This is regularly the case if you are a member of the respective platforms and are logged in to them. 3.4.2 DATA PROCESSING WHEN CONTACTING US We ourselves collect personal data when you contact us, e.g. via the contact form. Which data is collected depends on the information you provide and the contact details you provide or release. This data is stored by us for the purpose of processing the inquiry and in the event of follow-up questions. Under no circumstances will we pass the data on to third parties without your consent. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR if your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. We assume that processing is complete if it can be inferred from the circumstances that the matter in question has been conclusively clarified. 3.4.3 DATA PROCESSING FOR CONTRACT DEVELOPMENT If your contact via a social network or other platform is aimed at concluding a contract for the provision of services with us, we process your data to fulfill the contract or to carry out pre-contractual measures or to provide the desired services. The legal basis for the processing of your data in this case is Art. 6 para. 1 lit. b GDPR. Your data will be deleted if it is no longer required for the performance of the contract or if it is clear that the pre-contractual measures will not lead to the conclusion of a contract corresponding to the purpose of the contact. Please note, however, that it may be necessary to store personal data of our contractual partners even after conclusion of the contract in order to comply with contractual or legal obligations. 3.4.4 DATA PROCESSING BASED ON CONSENT If you are asked by the respective providers of the platforms for consent to processing for a specific purpose, the legal basis for processing is Art. 6 para. 1 lit. a., Art. 7 GDPR. Any consent given can be revoked at any time with effect for the future. 3.5 DATA TRANSFER AND RECIPIENTS When visiting and using the platforms listed above, personal data may be transferred to the USA or other third countries outside the EU, which is why further protective mechanisms are required in these cases to ensure the level of data protection under the GDPR. Further information on whether and which suitable guarantees the providers can provide for this can be found in the list below. We have no influence on the processing of your personal data by the provider and how it is handled. We also have no information on this. For further information, please check the privacy policy of the respective provider and, if necessary, use the opt-out/personalization options with regard to data processing by the provider. We have online presences on the social media platforms of the following providers Instagram – Privacy Policy/Opt-Out: http://instagram.com/about/legal/privacy/ – Instagram (Facebook) uses standard data protection clauses according to the privacy policy to ensure an adequate level of data protection in accordance with the requirements of the GDPR for the transfer of data to the USA or other third countries outside the EU: http://instagram.com/about/legal/privacy/LinkedIn – Privacy Policy: https://www.linkedin.com/legal/privacy-policy – Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out – LinkedIn uses standard data protection clauses according to the privacy policy to ensure an adequate level of data protection in accordance with the requirements of the GDPR for the transfer of data to the USA or other third countries outside the EU: https://www.linkedin.com/legal/privacy-policy and https://www.linkedin.com/help/linkedin/answer/62533?trk=microsites-frontend _legal_privacy-policy&lang=de
Disclosure of data to third parties
The personal data collected in the course of using the website will not be passed on to third parties or transmitted in any other way without your consent – subject to other cases expressly described in this data protection notice.
We may use external service providers who process personal data on our behalf (e.g. IT service providers).
These service providers, which we have carefully selected, process the relevant personal data exclusively in accordance with our instructions (processors) and are regularly monitored by us.
Data processing contracts required in accordance with Art. 28 GDPR are concluded prior to commissioning.
Your personal data will also never be passed on to third parties by the service providers working for us.
We may pass on your personal data to third parties if we are legally obliged to do so (e.g. at the request of a court or law enforcement authority), Art. 6 para.
1 sentence 1 lit.
c GDPR, or in accordance with Art. 6 para.
1 sentence 1 lit.
b GDPR for the processing of contractual relationships with you.
Furthermore, data may be transferred on the basis of Art. 6 para.
1 sentence 1 lit.
f GDPR for the assertion, exercise or defense of legal claims or for other reasons in our legitimate interest, if there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data.
Duration of storage of your personal data
Insofar as no other storage period results from the other provisions of this data protection notice, we only store your personal data obtained by us in connection with the use of the website for as long as this is necessary in particular to process your inquiries to us, and thereafter only to the extent and insofar as we are obliged to do so due to mandatory statutory storage obligations.
If we no longer need your data for the purposes described above, it will only be stored for the respective statutory retention period and will not be processed for other purposes.
Your rights
Below you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data: The right to request information about your personal data processed by us in accordance with Art. 15 GDPR.
In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.
The right, in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or incomplete personal data stored by us.
The right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
The right to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR.
The right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller in accordance with Art. 20 GDPR
The right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR.
As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.
The right to withdraw consent granted pursuant to Art. 7 para.
3 GDPR: You have the right to withdraw your consent to the processing of data at any time with effect for the future.
In the event of revocation, we will delete the data concerned immediately, unless further processing can be based on a legal basis for processing without consent.
The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. RIGHT OF OBJECTION
If your personal data is processed by us on the basis of legitimate interests pursuant to Art. 6 para.
1 sentence 1 lit.
f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, insofar as this is done for reasons arising from your particular situation.
Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right to object without the requirement to specify a particular situation.
Data security
Competo maintains up-to-date technical measures to ensure data security (e.g. SSL encryption), in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge of it.
These are adapted to the current state of the art.
Existence of automated decision-making
As a responsible company, we do not use automated decision-making or profiling.
Legal obligations
The provision of personal data for the decision on the conclusion of a contract, the fulfillment of a contract or for the implementation of pre-contractual measures is voluntary.
However, we can only make the decision within the framework of contractual measures if you provide such personal data that is necessary for the conclusion of the contract, the fulfillment of the contract or pre-contractual measures.
Changes to the data protection information
From time to time it may become necessary to amend this data protection notice, for example due to further developments of our website or legal changes.
We therefore reserve the right to change the data protection information at any time with effect for the future.
We therefore recommend that you read this data protection notice again at regular intervals.
The latest version applies to your visit.
Contact us
You can contact us at the address given in section 1, as well as via:
E-mail: info@competo-cp.de
Telephone: +49 (0) 89 5432866-0
Fax: +49 (0) 89 5432866-20
For all questions regarding data protection (including exercising your rights according to Section 6), you can also directly contact our Data Protection Officer:
PROLIANCE GmbH
www.datenschutzexperte.de
Data Protection Officer
Leopoldstraße 21
80802 Munich
datenschutzbeauftragter@datenschutzexperte.de