PRIVACY POLICY

 

Data Privacy Policy of AXICA Kongress- und Tagungszentrum Pariser Platz 3 GmbH

We thank you for visiting our website and your interest in our company. Protecting your personal data is of the utmost importance to us. When processing your personal data, such as your name, address, email address or phone number we strictly comply with the existing European and national legislation.

Below AXICA Kongress- und Tagungszentrum Pariser Platz 3 GmbH (hereafter: "AXICA") will inform the public about the nature, scope and purpose of personal data processed by us. We will also inform you about your rights in this Data Privacy Notice.

 

I. CONTROLLER'S NAME AND ADDRESS

The controller in the sense of the EU General Data Protection Regulation and the Federal Data Protection Act of 25 May 2018 is:

 

AXICA Kongress- und Tagungszentrum Pariser Platz 3 GmbH

Pariser Platz 3

10117 Berlin

Phone number: +49 30 200086-0

Fax number: +49 30 200086-701

Website: www.axica.de

Email: info(a)axica.de

 

The managing directors of AXICA Kongress- und Tagungszentrum Pariser Platz 3 GmbH are

Friedhelm Leschinger and Marc-Alexander Mundstock.

 

To send an email please replace "a" by "@". This notation is used to protect against spam.

 

II. NAME AND ADDRESS OF OUR DATA PROTECTION OFFICER

AXICA’s Data Protection Officer:

 

SHIELD GmbH

Martin Vogel

Perleberger Str. 10b

25421 Pinneberg

Phone number: +49 4101 77 44 70

Email: info(a)shield-datenschutz.de

 

To send an email please replace "a" by "@". This notation is used to protect against spam.

 

III. VISITING OUR WEBSITE

1. Scope of the processing of personal data
Each time our website www.axica.de is accessed, AXICA collects certain general data and information from the system of the requesting computer. The following data is recorded:

  • internet browser types and versions used
  • operating system used by the accessing system
  • the website from which the accessing system arrived at our website (called referrer)
  • the sub-pages from which our website is accessed by a requesting system
  • the date and time of access to the website
  • an internet protocol address (IP address)
  • the internet service provider of the requesting system
  • other similar data and information which may be needed to address safety and security needs in the case of attacks on our IT systems.

This general information is then stored in the server log files. The data in the server log files is kept separately from any personal data provided by a data subject.

 

2. Legal basis
The legal foundation for temporarily storing the data in the log files is Art. 6 para. 1 lit. f GDPR.

 

3. Purpose of data processing
AXICA has an interest in making available our website, keeping it functional and optimising it to meet our visitors' interests.

The processing of the data mentioned above is necessary to ensure that our website content is correctly delivered when our website is accessed, to optimise the website content and tailor advertising to our website, and to ensure the continued functioning of our IT systems and internet technology. The data is also stored for the purpose of providing the information required for the prosecution of criminal offences to the criminal investigation authorities in the case of a cyber attack.

 

Length of data storage

AXICA will principally store personal data collected during a visit to the website only for the time needed for achieving the purpose for which the data were stored.

The purpose has been achieved when the session ends and the data have been analysed for the purpose of optimising the website and ensuring the safety and security of our IT systems. The data stored in the log files will be erased after seven days. The data may be stored for further extended periods. In this case your IP addresses will be deleted.

 

4. Opt-out and erasure option
You have no possibility to object to the data being collected for the purpose of making the website available and being store in log files, as this is absolutely necessary for operating the website.

 

IV. USE OF COOKIES

1. Description and scope of data processing
In order to make our online presence user-friendly and tailor it to the needs of our website visitors, we use cookies. Cookies are small text files which are sent from a web server to your internet browser each time you access our website and are stored locally on the end device of the website user (PC, notebook, tablet, smart phone etc.). Most cookies contain what is referred to as a cookie ID. A Cookie ID is a unique cookie identifier. It is made up of a string of characters which allows websites and servers to identify the internet browser where the cookie was saved.

 

Legal basis
The legal basis for the processing of personal data while using cookies is Art. 6 para. 1 lit. f GDPR.

 

2. Purpose of data processing
AXICA has an interest in making its website user-friendly. Using cookies with a cookie ID allows the accessed websites and servers to distinguish the individual browser from any other internet browsers which contain different cookies. A certain internet browser can be recognised and identified through the unique cookie ID. This information allows the end device to be automatically recognised, if the website is revisited with the same end device, and makes navigation easier for the user.

 

3. Length of data storage, opt-out and erasure option
Cookies are stored on your computer which transmits them to our website. You have control over the use of cookies: You can accept or reject cookies – also for web tracking – in the settings of your internet browser. You can configure your internet browser so that acceptance of cookies is generally blocked or that you are alerted if a cookie is to be saved. In this case the website functioning may however be affected (for example for online orders). The internet browser also has a function which allows you to delete browser cookies (for instance via "Clear all browser data"). This is possible in all standard internet browsers. More information can be found in the user instructions and/or settings section of your internet browser.

 

V. "GOOGLE ANALYTICS" WEBSITE ANALYTICS SERVICES

If you have given your consent, Google Analytics, a web analysis service of Google Inc. („Google“) is used on this website. The use includes the „Universal Analytics“ operating mode. This makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID and thus analyze a user's activities across devices. This data protection notice is provided by https://www.intersoft-consulting.de

Google Analytics uses „cookies“, which are text files placed on your computer, to help the website analyze how users interact with the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google will reduce your IP address within Member States of the European Union or in other states party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. We would like to point out that on this website Google Analytics has been extended to include IP anonymisation in order to ensure anonymous collection of IP addresses (so-called IP masking). The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. For more information on terms of use and data protection, please visit https://www.google.com/analytics/terms/gb.html or https://policies.google.com

 

1. Purposes of the Processing
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services related to website and Internet use.

 

2. Legal Basis
The legal basis for the use of Google Analytics is your consent in accordance with https://gdpr-info.eu/art-6-gdpr/ Art. 6 para. 1 lit. a GDPR.

 

3. Recipients or Categories of Recipients
The recipient of the collected data is Google.

 

4. Transfer to Third Countries
Personal data will be transferred to the USA under the EU-US Privacy Shield on the basis of the European Commission's adequacy decision. You can download the certificate https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

 

5. Duration of Data Storage
The data sent by us and linked to cookies, user-identifiers (e.g. User-IDs) or advertising-identifiers are automatically deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month.

 

6. Rights of the Persons affected
You can revoke your consent at any time with effect for the future by blocking the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functionalities of this website to their full extent.

You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the https://tools.google.com/dlpage/gaoptout?hl=en Browser Add-on</a>. Opt-out cookies will prevent future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt-out on all systems used. If you click here, the opt-out cookie will be set: javascript:gaOptout() Disable Google Analytics.

 

VI. NEWSLETTER

1. Description and scope of data processing
On our website users are given the opportunity to subscribe to our regular free newsletter. When you sign up for the newsletter, your email address is transmitted to us via the entry form. We also record the IP address of the requesting computer, the date and time when you sign up.

Users who have left their email address with AXICA in the context of the performance of a contract will also receive a newsletter. In this case the email address is used for mailing the newsletter. The newsletter is used exclusively for promoting AXICA's owns services and offerings.

We will not transfer any data to third parties in connection with the data processing performed for the mailing of newsletters. The data will be used exclusively for mailing the newsletter.

 

Legal basis

If you sign up for the newsletter on our website, we will ask for your consent during registration. The legal basis for the processing of the data in this case is Art. 6 para. 1 lit. (a) GDPR.

If the newsletter is sent out after a previous contract performance, the legal basis is Section 7 para. 3 UWG (German Law against Unfair Competition). In this case the mailing would also be authorised by Art. 6 para. 1 lit. (f) GDPR.

 

2. Purpose of data processing
AXICA has an interest in making you offers for other events and thus generating additional business. Your email address may be collected and stored for the purpose of sending you the newsletter.

 

3. Length of data storage
AXICA will store your personal data solely for the time period necessary for achieving the purpose for which the data is held. This means your email address will be stored for as long as the newsletter subscription is still active.

Users who have subscribed to the newsletter can withdraw their consent given for this use of their email address at any time. Each newsletter contains a link for such a withdrawal. AXICA would like to point out that the withdrawal of consent will only take effect prospectively. Any data processing performed up to the time of the withdrawal will still remain lawful.

If you receive the newsletter as a result of the performance of a contract, you can still unsubscribe from the newsletter at any time by clicking the corresponding link in each newsletter.

 

VII. REGISTRATION

1. Description and scope of data processing
AXICA offers you the opportunity to participate in various events. On our website you can register for an event, show your interest and create an account for a chosen event by providing your personal data. The contact information is entered via an input form and transmitted to and stored by AXICA. The personal data submitted by you are recorded and stored solely for internal use and purposes. During registration, we will also record the IP address assigned by your internet service provider and also the date and time of the registration. This data will not be disclosed to any third parties, unless we are required to do so by law or such disclosure serves the purpose of investigating or prosecuting criminal offences.

 

2. Legal basis
If registration is for precontractual measures, the legal basis for the processing of the data is Art. 6 para. 1 lit. (b) GDPR.

 

3. Purpose of data processing
A registration with voluntary submission of personal data serves the purpose of offering you content or services which by their very nature can only be offered to registered users. The purpose of data processing are inquiries about events, customer’s own events, media and press requests and newsletters.

The IP address, date and time are gathered as this is the only way to prevent misuse of the offered services, and if needed these data would assist in solving any criminal offences or copyright infringements. It is therefore necessary to retain such data for the safeguarding and protection of the data controller responsible for data processing.

 

4. Length of data storage
AXICA will store your personal data solely for the time period necessary for achieving the purpose for which the data is held. The data will be erased if the registration is cancelled or if the data is no longer necessary for executing the contract. Even after the contract has been concluded, it may be necessary to retain the contractual partner’s personal data to be able to comply with contractual or legal obligations.

 

5. Opt-out and erasure option
You can demand that the personal data submitted with the registration be completely erased from our databases. The account can be deleted as follows:

AXICA will delete any personal data collected through submission of the registration immediately after staging the event.

 

VIII. CONTACTING US

Irrespective of whether the entering into communication described below could be considered data collection in the sense of the law or not, as a precaution we would like to inform you about how we treat your personal data when you contact us.

 

1. Description and scope of data processing
Personal data is also processed by AXICA, if you voluntarily submit it. This is the case, for instance, every time when you contact AXICA through the provided email address or by calling us. In this case the transmitted personal data, such as your email address or phone number, will be collected. Of course, any personal data submitted this way will only be used for the purpose for which you made it available when contacting us.

 

2. Legal basis
The legal basis for the processing of the data which is transmitted during the submission of an email is Art. 6 para. 1 lit. (f) GDPR.

If the aim of the communication is to conclude a contract, an additional legal basis for the processing is Art. 6 para. 1 lit. (b) GDPR.

 

3. Purpose of data processing
The data will be processed solely for the purpose of processing your communication.

 

4. Length of data storage
AXICA will store your personal data solely for the time period necessary for achieving the purpose for which the data is held. The personal data which AXICA has received through your contacting us will be stored until it becomes apparent from the circumstances that the matter which led you to contacting us has been finally resolved.

 

5. Opt-out and erasure option
You can object to the storage and processing of your personal data at any time. If you do, we cannot continue the communication. In this case all personal data will be erased.

 

IX. LINKS TO OTHER WEBSITES

The www.axica.de website provides links to other websites (also referred to as external links).

As a provider of its own proprietary content AXICA is responsible in accordance with the applicable European and national laws and regulations. These proprietary contents must be distinguished from the links to content provided by other providers. AXICA has no control over whether the operators of other websites comply with the applicable European and national laws and regulations or not. In this regard you have to inform yourself about the data privacy policies on the relevant websites. AXICA will assume no liability for any external contents which are provided for use via links and which are specially identified, not do we appropriate the content as our own. Any unlawful, incomplete or faulty content and any damage arising from the use of or failure to use the information is the sole responsibility of the provider of the website to which we linked.

 

X. LINKS TO SOCIAL NETWORKS

On the AXICA website you can find links which enable you to easily share the content on the AXICA website on social media. After clicking these links, a login window pops up for connecting to Facebook, Google plus, Twitter, LinkedIn or XING. Only by calling one of these links can your data be transferred to the social network. This applies in particular to the social networks which you are already logged into at the time of visiting the AXICA website. AXICA does not use social plugins which transmit website visitor data to social networks unsolicited.

The following links to social networks can be found on our website:

 

1. On Facebook
Only if you click this link will a direct connection be established between your internet browser and the Facebook server via the popup window.

Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. If you are logged into Facebook at the time, the visit to the AXICA website can be linked to your Facebook account and stored on Facebook. Even if you have no Facebook account, it cannot be ruled out that Facebook may store your IP address, if you call up the link.

If you click the "Share post" / "Recommend webpage" Facebook link while logged into your Facebook account, you can link the content of this webpage to your Facebook profile. This enables Facebook to collate your visit to this website with your Facebook user account. More detailed information about data collection (purpose, scope, further processing, use) and your rights and setting options can be found in Facebook’s Data Privacy Policy. This information is made available by Facebook at http://www.facebook.com/policy.php. There you can also find an overview of the setting options for your personal Facebook account to protect your privacy and any associated rights you have. In order to prevent Facebook from generally accessing your data on the AXICA website and other websites, you can block the Facebook social plugins by installing an add-on for your internet browser (e.g. "Facebook blocker").

 

2. On Google +
Only if you click this link will a direct connection be established between your internet browser and the Google server via the popup window.

If you click the "Share post" / "Recommend webpage" Google + link into your Google account, you can link the content of this webpage to your Google profile. This enables Google + to collate your visit to this website with your Google + user account. Further information about data collection (purpose, scope, further processing, use) and your rights and setting options can be found in the Data Privacy Policy of Google +. This information is made available by Google at http://www.google.com/intl/de/policies/privacy.

 

3. On Twitter
Only if you click this link will a direct connection be established between your internet browser and the Twitter server via the popup window.

Twitter is operated by Twitter Inc.,795 Folsom St., Suite 600, San Francisco, CA 94107, USA. If you click the "Twitter" link while logged into your Twitter account, you can link the content of this webpage to your Twitter profile. This enables Twitter to collate your visit to this website with your Twitter user account. Further information about data collection (purpose, scope, further processing, use) and your rights and setting options can be found in Twitter’s Data Privacy information. This information is made available by Twitter in its Data Privacy Policy. There you can also find an overview of the setting options in your personal Twitter account to protect your privacy and any associated rights you have. In order to prevent Twitter from generally accessing your data on the AXICA website and other websites, you can block Twitter social plugins by installing an add-on for your internet browser (e.g. "Twitter blocker", https://disconnect.me).

 

4. On LinkedIn
Only if you click this link will a direct connection be established between your internet browser and the LinkedIn server via the popup window.

LinkedIn is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. If you click the "Share post" / "Recommend webpage" LinkedIn link while logged into your LinkedIn account, you can link the content of this webpage to your LinkedIn profile. This enables LinkedIn to collate your visit to this website with your LinkedIn user account. Further information about data collection (purpose, scope, further processing, use) and your rights and setting options can be found in LinkedIn’s Data Privacy Policy. This information is made available by LinkedIn at http://www.linkedin.com/static?key=privacy_policy&trk=hb_ft_priv.

 

5. On XING
Only if you click this link will a direct connection be established between your internet browser and the XING server via the popup window.

If you click the "Share post" / "Recommend webpage" XING link, a connection to XING AG ("XING") is established via your internet browser. XING does not save any of your personal data when you access this website. In particular IP addresses are not stored by XING. No analysis of your user behaviour is performed with cookies when the "XING Share button" is used. The current data privacy information for the use of XING and supplementary information are available on this website: https://dev.xing.com/plugins/share_button/privacy_policy

 

XI. APPLICANTS

1. Description and scope of data processing
AXICA collects and processes the personal data submitted by applicants. The processing can also be performed electronically. This is in particular the case if the applicant sends the application to AXICA by electronic means, such as email.

 

2. Legal basis
The legal basis for the collection of applicants' information is Art. 6 para. 1 (b) GDPR.

 

3. Purpose of data processing
The collection of personal data is necessary for the decision as to whether to enter into an employment contract.

 

4. Length of data storage
AXICA will store your personal data solely for the time period necessary for achieving the purpose for which the data is held.

If no employment contract is concluded with the applicant, the application documents will be automatically erased after informing the applicant about the rejection, unless such erasure conflicts with AXICA's other legitimate interests. Such a legitimate interest could be the obligation to furnish proof pursuant to the Allgemeine Gleichbehandlungsgesetz (AGG) [German General Equality of Treatment Act].

 

5. Opt-out and erasure option
The collection of the data is necessary for carrying out the application procedure. Applicants can object to the processing of their data at any time. If they do, it should be noted that completion of the application procedure may not be possible.

 

XII. DATA SUBJECTS' RIGHTS

If personal data is processed, the affected individual is referred to as a data subject within the meaning of the GDPR. A data subject has the following rights against the Controller.

 

1. Right to obtain confirmation:
Every data subject has the right to obtain from the controller responsible for the processing confirmation as to whether or not personal data concerning him or her is being processed. If an individual concerned wishes to exercise his or her right to obtain confirmation, such individual can do so at any time by contacting the controller responsible for the processing.

 

2. Right of access:
Every data subject impacted by the processing of his or her personal data has the right to be informed free of charge by the controller responsible for processing as to which personal data concerning him or her has been stored and to receive a copy of such information. Data subjects can demand access to the following information:

  • the processing purposes
  • the categories of personal data to be processed
  • the receiver or categories of receivers to whom the personal data was or is to be disclosed, in particular if such receiver is located in third countries or is an international organisation
  • if possible the planned length of storage for which the personal data will be held or, should this not be possible, the criteria for the definition of such time period
  • information about the rights of having the personal data relating to him or her corrected or erased or the right to restrictions on processing by the controller or the right to object to such processing
  • information about the right to complain to the authorities
  • all available information about the origin of the data, if the personal data were not collected directly from the data subject,
  • information about the existence of an automated decision-making process, including profiling pursuant to Art. 22 paras. 1 and 4 EU-GDPR and — at least in these cases — meaningful information about the logic involved as well as the implications and the intended effects of such procedures on the data subject.

In addition, the data subject is entitled to be informed as to whether personal data were transmitted to a third country or an international organisation. Should this be case, the data subject also has the right to be informed of all suitable guarantees relating to this transmission.

If a data subject wishes to exercise this right of access, he or she can do so at any time by contacting the controller responsible for data processing.

 

3. Right to rectification:
Every data subject impacted by the processing of personal data has the right to demand that any incorrect personal data concerning him or her be rectified without undue delay. Taking into account the purposes of the processing, the data subject also has the right to have incomplete personal data completed — including by means of providing a supplementary statement.

If a data subject wishes to exercise this right to rectification, he or she can do so at any time by contacting the controller responsible for processing.

 

4. Right to erasure (Right to be forgotten):
Every data subject impacted by the processing of personal data has the right to obtain from the controller the erasure of the personal data concerning him or her without undue delay, where one of the following grounds apply and to the extent that the processing is not necessary:

  • The personal data is no longer necessary to implement the purposes for which they were collected or otherwise processed.
  • The data subject has withdrawn his or her consent on which the processing was based in accordance with Art. 6 para. 1 lit (a) GDPR or Art. 9 para. 2 lit (a) GDPR, and there is no other legal basis for the processing.
  • The data subject objects to the processing pursuant to Art. 21 para. 1 GDPR, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Art. 21 para. 2 GDPR.
  • The personal data have been unlawfully processed.
  • The personal data have to be erased for compliance with a legal requirement under Union or Member State law, to which the controller is subject.
  • The personal data have been collected in connection with an offer of information society services pursuant to Art. 8 para. 1 GDPR.

If any of the grounds mentioned above applies and a data subject wishes to obtain the erasure of personal data held by AXICA, they can do so at any time by contacting the controller responsible for processing. In this case, the data subject's request for erasure will be met immediately.

Where the personal data were made public by AXICA and where our company as the controller is obliged pursuant to Art. 17 para. 1 GDPR to erase the personal data, AXICA, taking into account available technology and the cost of implementation, will take reasonable steps, including technical measures, to inform controllers responsible for the data processing who have processed the published personal data that the individual concerned has requested the erasure by such controllers of any links to, or copy or replication of, those personal data, insofar as the processing is not required. The controller responsible for the processing will then take the appropriate steps in the individual case.

 

5. Right to restriction of processing:
Every data subject impacted by the processing of personal data has the right to obtain from the controller restriction of processing, where one of the following conditions apply:

The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.

The processing is unlawful, the data subject has rejected the erasure of the personal data and demands restriction of their use instead.

The controller no longer needs the personal data for the purposes of processing, but they are still needed by the data subject for establishing, exercising or defending his or her legal claims.

The data subject has objected to the processing pursuant to Art. 21 para. 1 GDPR, and it has not yet been verified whether the legitimate grounds of the controller override those of the data subject.

Where any of the conditions mentioned above are present and the data subject wishes to obtain restriction of the personal data held by AXICA, they can do so at any time by contacting the controller responsible for the processing. In this case the restriction of processing will be implemented immediately.

 

6. Right to data portability:
Every data subject impacted by the processing of personal data has the right to be given the personal data concerning him or her, which such individual provided to a controller, in a structured, commonly used and machine-readable format. A data subject also has the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where the processing is based on consent given pursuant to Art. 6 para. 1 (a) GDPR or Art. 9 para. 2 (a) GDPR or on a contract pursuant to Art. 6 para. 1 (b) GDPR; and the processing is carried out by automatic means, and insofar as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority conferred on the controller.

In exercising his or her right to data portability, the data subject has the right pursuant to Art. 20 para. 1 GDPR to have the personal data transmitted directly from one controller to another, where technically feasible and if this does not adversely affect the rights and freedoms of others.

Where the data subject wishes to exercise the right to portability, he or she can do so at any time by contacting the controller responsible for data processing.

 

7. Right to object:
Every data subject impacted by the processing of personal data has the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is performed based on Art. 6 para. 1 (e) or (f) GDPR. The also applies to profiling based on these legal provisions.

AXICA will no longer process the personal data in the case of an objection, unless AXICA can provide compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or the processing serves the purpose of establishing, exercising or defending legal claims.

Where AXICA processes personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data for such marketing. The same shall apply to profiling to the extent that it is related to such direct marketing. Where the data subject objects to the processing for direct marketing purposes vis-à-vis AXICA, AXICA will stop processing the personal data for such purposes.

The data subject also has the right to object, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her, performed by AXICA for scientific or historical research purposes or statistical purposes pursuant to Art. 89 para. 1 GDPR, unless the processing is necessary for performing a task carried out for reasons of public interest.

Where a data subject wishes to exercise his or her right to object, such person can do so by directly contacting the controller responsible for processing. Furthermore, the data subject may exercise his or her right to object by automated means using technical specifications in the context of the use of information society services, and notwithstanding Directive 2002/58/EC.

 

8. Automated individual decision-making, including profiling:
Every data subject impacted by the processing of personal data has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or significantly affects such person in a similar way - unless such decision:

  • is necessary for concluding or fulfilling a contract between the data subject and the controller or
  • is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or
  • is based on the data subject's explicit consent.

If the decision is necessary for concluding or fulfilling a contract made between the data subject and AXICA or if it is based on the data subject's explicit consent, AXICA will implement suitable measures to safeguard the rights and freedoms and the legitimate interests of the data subject; including at least the right to obtain human intervention on the controller's part, to express the data subject’s own point of view and to contest the decision.

If the data subject wishes to exercise his or her rights in relation to automated decisions, he or she can do so at any time by contacting the controller responsible for data processing.

 

9. Right to withdraw consent for data processing:
Every data subject impacted by the processing of personal data is entitled to withdraw his or her consent to the processing of personal data at any time. The consent should be withdrawn in the same manner as it was given.

The withdrawal of consent shall take effect solely for the future. Any data processing performed up to the time of the withdrawal will still remain lawful.

 

XIII. COMPLAINTS TO SUPERVISORY AUTHORITY

Without any prejudice to any other administrative or judicial remedy you are entitled to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you think that the processing of personal data relating to you infringes the GDPR.

The supervisory authority where the complaint was lodged will inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

 

XIV. CHANGES TO THIS DATA PROTECTION POLICY

AXICA reserves the right to change its data protection practices and this policy in order to adapt data to any changes to relevant laws and/or regulations or to better meet the needs. Any changes to data privacy practices will be published on this page. Therefore, the version date of the data privacy notice should be heeded.

Berlin, 25 May 2018