Skip to content Skip to primary navigation

Pri­vacy

We are very pleased about your interest in our com­pany. Data pro­tec­tion is of a par­tic­u­larly high pri­or­ity for the man­age­ment of Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH. The use of the Inter­net pages of the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH is pos­sible without any indic­a­tion of per­son­al data. How­ever, if a data sub­ject wants to use spe­cial ser­vices of our enter­prise via our web­site, pro­cessing of per­son­al data could become neces­sary. If pro­cessing of per­son­al data is neces­sary and there is no leg­al basis for such pro­cessing, we will gen­er­ally obtain the con­sent of the data subject.

The pro­cessing of per­son­al data, such as the name, address, e‑mail address, or tele­phone num­ber of a data sub­ject shall always be in line with the Gen­er­al Data Pro­tec­tion Reg­u­la­tion, and in accord­ance with the coun­try-spe­cif­ic data pro­tec­tion reg­u­la­tions applic­able to the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH. By means of this data pro­tec­tion declar­a­tion, our com­pany would like to inform the pub­lic about the type, scope and pur­pose of the per­son­al data we col­lect, use and pro­cess. Fur­ther­more, data sub­jects are informed of their rights by means of this data pro­tec­tion declar­a­tion.

As the con­trol­ler, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH has imple­men­ted numer­ous tech­nic­al and organ­iz­a­tion­al meas­ures to ensure the most com­plete pro­tec­tion of per­son­al data pro­cessed through this web­site. Nev­er­the­less, Inter­net-based data trans­mis­sions can always be vul­ner­able to secur­ity risks, so that abso­lute pro­tec­tion can­not be guar­an­teed. For this reas­on, every data sub­ject is free to trans­mit per­son­al data to us by altern­at­ive means, for example by telephone.

1. Defin­i­tions

The data pro­tec­tion declar­a­tion of Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH is based on the terms used by the European Dir­ect­ive and Ordin­ance when issu­ing the Gen­er­al Data Pro­tec­tion Reg­u­la­tion (DS-GVO). Our data pro­tec­tion declar­a­tion should be easy to read and under­stand for the pub­lic as well as for our cus­tom­ers and busi­ness part­ners. To ensure this, we would like to explain the ter­min­o­logy used in advance. We use the fol­low­ing terms, among oth­ers, in this pri­vacy policy:

  • per­son­al data: Per­son­al data means any inform­a­tion relat­ing to an iden­ti­fied or iden­ti­fi­able nat­ur­al per­son (here­in­after data sub­ject”). An iden­ti­fi­able nat­ur­al per­son is one who can be iden­ti­fied, dir­ectly or indir­ectly, in par­tic­u­lar by ref­er­ence to an iden­ti­fi­er such as a name, an iden­ti­fic­a­tion num­ber, loc­a­tion data, an online iden­ti­fi­er or to one or more factors spe­cif­ic to the phys­ic­al, physiolo­gic­al, genet­ic, men­tal, eco­nom­ic, cul­tur­al or social iden­tity of that nat­ur­al person.
  • Data sub­ject: The data sub­ject is any iden­ti­fied or iden­ti­fi­able nat­ur­al per­son whose per­son­al data are pro­cessed by the controller.
  • Pro­cessing: Pro­cessing means any oper­a­tion or set of oper­a­tions which is per­formed upon per­son­al data, wheth­er or not by auto­mat­ic means, such as col­lec­tion, record­ing, organ­iz­a­tion, fil­ing, stor­age, adapt­a­tion or alter­a­tion, retriev­al, con­sulta­tion, use, dis­clos­ure by trans­mis­sion, dis­sem­in­a­tion or oth­er­wise mak­ing avail­able, align­ment or com­bin­a­tion, restric­tion, eras­ure or destruction.
  • Restric­tion of pro­cessing: Restric­tion of pro­cessing is the mark­ing of stored per­son­al data with the aim of lim­it­ing their future processing.
  • Pro­fil­ing: pro­fil­ing is any type of auto­mated pro­cessing of per­son­al data that con­sists of using such per­son­al data to eval­u­ate cer­tain per­son­al aspects relat­ing to a nat­ur­al per­son, in par­tic­u­lar to ana­lyze or pre­dict aspects relat­ing to that nat­ur­al per­son’s job per­form­ance, eco­nom­ic situ­ation, health, per­son­al pref­er­ences, interests, reli­ab­il­ity, beha­vi­or, loc­a­tion or change of location.
  • Pseud­onym­iz­a­tion: Pseud­onym­iz­a­tion is the pro­cessing of per­son­al data in such a way that the per­son­al data can no longer be attrib­uted to a spe­cif­ic data sub­ject without the use of addi­tion­al inform­a­tion, provided that such addi­tion­al inform­a­tion is kept sep­ar­ate and is sub­ject to tech­nic­al and organ­iz­a­tion­al meas­ures to ensure that the per­son­al data is not attrib­uted to an iden­ti­fied or iden­ti­fi­able nat­ur­al person.
  • Con­trol­ler: The con­trol­ler is the nat­ur­al or leg­al per­son, pub­lic author­ity, agency or oth­er body which alone or jointly with oth­ers determ­ines the pur­poses and means of the pro­cessing of per­son­al data. Where the pur­poses and means of such pro­cessing are determ­ined by Uni­on or Mem­ber State law, the con­trol­ler or the spe­cif­ic cri­ter­ia for its des­ig­na­tion may be provided for under Uni­on or Mem­ber State law.
  • Pro­cessor: A pro­cessor is a nat­ur­al or leg­al per­son, pub­lic author­ity, agency or oth­er body that pro­cesses per­son­al data on behalf of the controller.
  • Recip­i­ent: A recip­i­ent is a nat­ur­al or leg­al per­son, pub­lic author­ity, agency or oth­er body to whom per­son­al data are dis­closed, wheth­er or not a third party. How­ever, pub­lic author­it­ies that may receive per­son­al data in the con­text of a spe­cif­ic invest­ig­at­ive task under Uni­on or Mem­ber State law are not con­sidered recipients.
  • Third Party: a third party is a nat­ur­al or leg­al per­son, pub­lic author­ity, agency or oth­er body oth­er than the Data Sub­ject, the Con­trol­ler, the Pro­cessor and the per­sons author­ized to pro­cess the Per­son­al Data under the dir­ect respons­ib­il­ity of the Con­trol­ler or the Processor.
  • Con­sent: Con­sent means any freely giv­en indic­a­tion of the data sub­ject’s wishes in an informed and unam­bigu­ous man­ner for the spe­cif­ic case, in the form of a state­ment or oth­er unam­bigu­ous affirm­at­ive act by which the data sub­ject indic­ates that he or she con­sents to the pro­cessing of per­son­al data relat­ing to him or her.

2. Name and address of the controller

The respons­ible party with­in the mean­ing of the Gen­er­al Data Pro­tec­tion Reg­u­la­tion, oth­er data pro­tec­tion laws applic­able in the Mem­ber States of the European Uni­on and oth­er pro­vi­sions of a data pro­tec­tion nature is:

Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH
Für­sten­rieder Strasse 279a
81377 Munich
Ger­many
Phone: +49 89 74 120 – 370
E‑Mail: info@​ibbnetzwerk-​gmbh.​com
Web­site: www​.ibbnet​zwerk​-gmbh​.com

3. Cook­ies

The Inter­net pages of Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH use cook­ies. Cook­ies are text files that are stored on a com­puter sys­tem via an Inter­net browser.

Numer­ous Inter­net pages and serv­ers use cook­ies. Many cook­ies con­tain a so-called cook­ie ID. A cook­ie ID is a unique iden­ti­fi­er of the cook­ie. It con­sists of a string of char­ac­ters by which Inter­net pages and serv­ers can be assigned to the spe­cif­ic Inter­net browser in which the cook­ie was stored. This enables the vis­ited Inter­net pages and serv­ers to dis­tin­guish the indi­vidu­al browser of the data sub­ject from oth­er Inter­net browsers that con­tain oth­er cook­ies. A spe­cif­ic inter­net browser can be recog­nized and iden­ti­fied via the unique cook­ie ID.

Through the use of cook­ies, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH can provide the users of this web­site with more user-friendly ser­vices that would not be pos­sible without the cook­ie set­ting.

By means of a cook­ie, the inform­a­tion and offers on our web­site can be optim­ized for the user. Cook­ies enable us, as already men­tioned, to recog­nize the users of our web­site. The pur­pose of this recog­ni­tion is to make it easi­er for users to use our web­site. For example, the user of a web­site that uses cook­ies does not have to re-enter his or her access data each time he or she vis­its the web­site, because this is handled by the web­site and the cook­ie stored on the user­’s com­puter sys­tem. Anoth­er example is the cook­ie of a shop­ping cart in an online store. The online store remem­bers the items that a cus­tom­er has placed in the vir­tu­al shop­ping cart via a cook­ie.

The data sub­ject can pre­vent the set­ting of cook­ies by our web­site at any time by means of an appro­pri­ate set­ting of the Inter­net browser used and thus per­man­ently object to the set­ting of cook­ies. Fur­ther­more, cook­ies that have already been set can be deleted at any time via an Inter­net browser or oth­er soft­ware pro­grams. This is pos­sible in all com­mon Inter­net browsers. If the data sub­ject deac­tiv­ates the set­ting of cook­ies in the Inter­net browser used, not all func­tions of our web­site may be fully usable.

4. Col­lec­tion of gen­er­al data and information

The web­site of the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH col­lects a series of gen­er­al data and inform­a­tion whenev­er a data sub­ject or auto­mated sys­tem calls up the web­site. This gen­er­al data and inform­a­tion is stored in the log files of the serv­er. The fol­low­ing data may be col­lec­ted: (1) the browser types and ver­sions used, (2) the oper­at­ing sys­tem used by the access­ing sys­tem, (3) the web­site from which an access­ing sys­tem accesses our web­site (so-called refer­rer), (4) the sub-web­sites that are accessed via an access­ing sys­tem on our web­site, (5) the date and time of an access to the web­site, (6) an Inter­net pro­tocol address (IP address), (7) the Inter­net ser­vice pro­vider of the access­ing sys­tem and (8) oth­er sim­il­ar data and inform­a­tion that serve to avert danger in the event of attacks on our inform­a­tion tech­no­logy systems.

When using these gen­er­al data and inform­a­tion, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH does not draw any con­clu­sions about the data sub­ject. Rather, this inform­a­tion is needed (1) to deliv­er the con­tent of our web­site cor­rectly, (2) to optim­ize the con­tent of our web­site and any advert­ising for it, (3) to ensure the long-term func­tion­al­ity of our inform­a­tion tech­no­logy sys­tems and the tech­no­logy of our web­site, and (4) to provide law enforce­ment author­it­ies with the inform­a­tion neces­sary for pro­sec­u­tion in the event of a cyber attack. There­fore, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH ana­lyzes anonym­ously col­lec­ted data and inform­a­tion on one hand, and on the oth­er hand, with the aim of increas­ing the data pro­tec­tion and data secur­ity of our enter­prise so as to ensure an optim­al level of pro­tec­tion for the per­son­al data we pro­cess. The anonym­ous data of the serv­er log files are stored sep­ar­ately from any per­son­al data provided by a data subject.

5. Regis­tra­tion on our web­site (mem­ber login)

The data sub­ject has the pos­sib­il­ity to register on the web­site of the con­trol­ler by provid­ing per­son­al data and after hav­ing been accep­ted into the net­work. Which per­son­al data is trans­mit­ted to the data con­trol­ler in this con­text res­ults from the respect­ive input mask used for the regis­tra­tion. The per­son­al data entered by the data sub­ject are col­lec­ted and stored exclus­ively for intern­al use by the con­trol­ler and for its own pur­poses. The con­trol­ler may arrange for the data to be trans­ferred to one or more pro­cessors, who will also use the per­son­al data exclus­ively for an intern­al use attrib­ut­able to the con­trol­ler.

By regis­ter­ing on the web­site of the con­trol­ler, the IP address assigned by the Inter­net ser­vice pro­vider (ISP) of the data sub­ject, the date as well as the time of regis­tra­tion are also stored. The stor­age of this data takes place against the back­ground that only in this way can the mis­use of our ser­vices be pre­ven­ted and, if neces­sary, this data makes it pos­sible to cla­ri­fy com­mit­ted crimes. In this respect, the stor­age of this data is neces­sary for the pro­tec­tion of the data con­trol­ler. As a mat­ter of prin­ciple, this data is not passed on to third parties unless there is a leg­al oblig­a­tion to pass it on or the passing on serves the pur­pose of crim­in­al pro­sec­u­tion.

The regis­tra­tion of the data sub­ject by vol­un­tar­ily provid­ing per­son­al data serves the pur­pose of the con­trol­ler to offer the data sub­ject con­tent or ser­vices which, due to the nature of the mat­ter, can only be offered to registered users. Registered per­sons are free to modi­fy the per­son­al data provided dur­ing regis­tra­tion at any time or to have it com­pletely deleted from the data stock of the con­trol­ler.

The con­trol­ler shall provide any data sub­ject at any time, upon request, with inform­a­tion about what per­son­al data is stored about the data sub­ject. Fur­ther­more, the con­trol­ler shall cor­rect or delete per­son­al data at the request or indic­a­tion of the data sub­ject, provided that this does not con­flict with any stat­utory reten­tion oblig­a­tions. The entire staff of the con­trol­ler shall be avail­able to the data sub­ject as con­tact per­sons in this context.

6. Sub­scrip­tion to our Newsletter

Users of Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH’s web­site can sub­scribe to the company’s elec­tron­ic­al news­let­ter. The fol­low­ing notes con­tain inform­a­tion regard­ing the newsletter’s con­tent and pro­cesses of regis­tra­tion, dis­tri­bu­tion, and stat­ist­ic­al assess­ments as well as your right to object. By sub­scrib­ing to our news­let­ter, you acknow­ledge the newsletter’s receipt and described processes. 

  • News­let­ter Con­tent: The Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH dis­trib­utes news­let­ters, e‑mails and oth­er elec­tron­ic­al mes­sages con­tain­ing advert­ise­ment (“News­let­ter”) only sub­ject to the recipient’s con­sent and stat­utory pro­vi­sions. We inform our cli­ents and busi­ness part­ners reg­u­larly on cur­rent devel­op­ments with­in our net­works and with­in the field of indus­tri­al bio­tech­no­logy. Our company’s news­let­ter can only be received prin­cip­ally by per­sons (1) who hold a val­id email address and (2) who registered with the news­let­ter. A per­son who registers with our news­let­ter via his/​her email address, will receive a con­firm­a­tion email accord­ing to the Double-Opt-In pro­ced­ure based on stat­utory pro­vi­sions. This con­firm­a­tion email serves the con­trol wheth­er the hold­er of the indic­ated email address author­ized the newsletter’s receipt. 
  • Double-Opt-In andPro­to­colling: The news­let­ter regis­tra­tion takes place as a so-called Double-Opt-In pro­ced­ure. I.e., you receive an email once you registered, in order to con­firm your regis­tra­tion. This con­firm­a­tion is required to val­id­ate the indic­ated email address. News­let­ter regis­tra­tions are pro­to­colled to provide proof of the regis­tra­tion pro­cess accord­ing to stat­utory pro­vi­sions. This pro­cess includes the stor­age of regis­tra­tion and con­firm­a­tion time as well as the respect­ive IP-address. 
    Upon regis­tra­tion, we also save the IP-address assigned by the Inter­net-Ser­vice-Pro­vider (ISP) con­cern­ing the person’s used com­puter sys­tem at that time as well as date and time of the regis­tra­tion. Pro­cessing these data is required to be able to under­stand (pos­sible) abuse of the email address at a later stage and serves the controller’s leg­al protection.
  • Using Plug-ins Cam­paign in Craft CMS”: The news­let­ter is dis­trib­uted via Cam­paign”, a Plug-in for Craft CMS of the Aus­tri­an pro­vider PutY­our­Light­sOn. The email addresses of our news­let­ter recip­i­ents, and their fur­ther described data, are stored on European serv­ers. Cam­paign and Craft CMS pro­cess these inform­a­tion to dis­trib­ute and assess the news­let­ter on our behalf. 
  • Regis­tra­tion Data: It is only required to indic­ate your email address to register with the news­let­ter. We option­ally request your saluta­tion, title, name and sur­name. These data only serve the newsletter’s personalization. 
  • Stat­ist­ic­al Assess­ment and Ana­lys­is:
    The stat­ist­ic­al assess­ment includes the determ­in­a­tion wheth­er the news­let­ter has been opened, when it has been opened and which links have been clicked. These inform­a­tion can be asso­ci­ated with the respect­ive news­let­ter recip­i­ent. How­ever, we do not aspire to observe indi­vidu­al users. Instead, we use these assess­ments to identi­fy the users’ read­ing habits as well as to tail­or con­tents respect­ively or to dis­trib­ute dif­fer­ent con­tents con­cern­ing our users’ interests. 
  • Online View and Data Man­age­ment: Our news­let­ters con­tain a link to view the news­let­ter online (e.g., in case of dis­play dif­fi­culties with­in the email pro­gram). In addi­tion, news­let­ter recip­i­ents can amend their email addresses, among oth­er data, subsequently. 
  • Cancellation/​Withdrawal: You can unsub­scribe from our news­let­ter at any time, i.e., to with­draw from your agree­ment. Sim­ul­tan­eously, your agree­ment to the newsletter’s dis­tri­bu­tion via Cam­paign and its stat­ist­ic­al ana­lys­is expires. A sep­ar­ate with­draw­al from the newsletter’s dis­tri­bu­tion via Cam­paign or from the stat­ist­ic­al assess­ment is unfor­tu­nately not pos­sible. You find a link at the bot­tom of each news­let­ter to unsubscribe. 
  • Stat­utory Pro­vi­sions of GDPR: In com­pli­ance with the require­ments of the Gen­er­al Data Pro­tec­tion Reg­u­la­tion, being effect­ive as of May 25, 2018, we inform you that the accept­ance of the email address’ dis­tri­bu­tion takes place on the basis of Art. 6 sect 1 lit. a, 7 GDPR as well as § 7 sect. 2 no. 2 and sect. 3 UWG (Act Against Unfair Com­pet­i­tion). Using Craft CMS Plug-in Cam­paign, stat­ist­ic­al assess­ments and ana­lys­is as well as pro­to­cols of regis­tra­tion pro­cesses are based on our eli­gible interest accord­ing to Art. 6 sect. 1 lit. f GDPR. Our interest con­cerns the applic­a­tion of a user-friendly and secure news­let­ter sys­tem, which also serves our busi­ness interests and com­plies with the user’s expectation. 

We would like to point your atten­tion to your right to object the future pro­cessing of your per­son­al data accord­ing to stat­utory pro­vi­sions Art. 21 GDPR at any time. The objec­tion can par­tic­u­larly be against the pro­cessing for the pur­pose of dir­ect advertising. 

7. Con­tact pos­sib­il­ity via the website

Based on stat­utory pro­vi­sions, the web­site of the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH con­tains data that enable a quick elec­tron­ic con­tact to our enter­prise, as well as dir­ect com­mu­nic­a­tion with us, which also includes a gen­er­al address of the so-called elec­tron­ic mail (e‑mail address). If a data sub­ject con­tacts the con­trol­ler by e‑mail or by using a con­tact form, the per­son­al data trans­mit­ted by the data sub­ject will be stored auto­mat­ic­ally. Such per­son­al data trans­mit­ted on a vol­un­tary basis by a data sub­ject to the con­trol­ler will be stored for the pur­poses of pro­cessing or con­tact­ing the data sub­ject. No dis­clos­ure of this per­son­al data to third parties will take place.

8. Routine dele­tion and block­ing of per­son­al data

The con­trol­ler pro­cesses and stores per­son­al data of the data sub­ject only for the peri­od neces­sary to achieve the pur­pose of stor­age or where provided for by the European Dir­ect­ive and Reg­u­la­tion or oth­er legis­lat­or in laws or reg­u­la­tions to which the con­trol­ler is subject.

If the stor­age pur­pose ceases to apply or if a stor­age peri­od pre­scribed by the European Dir­ect­ive and Reg­u­la­tion Maker or anoth­er com­pet­ent legis­lat­or expires, the per­son­al data will be routinely blocked or deleted in accord­ance with the stat­utory provisions.

9. Rights of the per­son concerned

  • Right to con­firm­a­tion: Every data sub­ject has the right, gran­ted by the European Dir­ect­ive and Reg­u­la­tion, to obtain con­firm­a­tion from the con­trol­ler as to wheth­er per­son­al data con­cern­ing him or her are being pro­cessed. If a data sub­ject wishes to exer­cise this right, he or she may, at any time, con­tact any employ­ee of the controller.
  • Right of access: Any per­son con­cerned by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to obtain at any time from the con­trol­ler, free of charge, inform­a­tion about the per­son­al data stored about him or her and a copy of that inform­a­tion. Fur­ther­more, the European Dir­ect­ive and Reg­u­la­tion has gran­ted the data sub­ject access to the fol­low­ing information:
    • the pur­poses of processing
    • the cat­egor­ies of per­son­al data processed
    • the recip­i­ents or cat­egor­ies of recip­i­ents to whom the per­son­al data have been or will be dis­closed, in par­tic­u­lar in the case of recip­i­ents in third coun­tries or inter­na­tion­al organizations
    • if pos­sible, the planned dur­a­tion for which the per­son­al data will be stored or, if this is not pos­sible, the cri­ter­ia for determ­in­ing this duration
    • the exist­ence of a right to obtain the rec­ti­fic­a­tion or eras­ure of per­son­al data con­cern­ing him or her, or to obtain the restric­tion of pro­cessing by the con­trol­ler, or a right to object to such processing
    • the exist­ence of a right of appeal to a super­vis­ory authority
    • if the per­son­al data are not col­lec­ted from the data sub­ject: Any avail­able inform­a­tion about the ori­gin of the data
    • the exist­ence of auto­mated decision-mak­ing, includ­ing pro­fil­ing, pur­su­ant to Art­icle 22(1) and (4) of the GDPR and, at least in these cases, mean­ing­ful inform­a­tion about the logic involved and the scope and inten­ded effects of such pro­cessing for the data subject.
  • Fur­ther­more, the data sub­ject shall have the right to obtain inform­a­tion as to wheth­er per­son­al data have been trans­ferred to a third coun­try or to an inter­na­tion­al organ­iz­a­tion. If this is the case, the data sub­ject also has the right to obtain inform­a­tion about the appro­pri­ate safe­guards in con­nec­tion with the trans­fer. If a data sub­ject wishes to exer­cise this right of access, he or she may, at any time, con­tact an employ­ee of the controller.
  • Right to rec­ti­fic­a­tion: Any per­son affected by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to request the rec­ti­fic­a­tion without delay of inac­cur­ate per­son­al data con­cern­ing him or her. Fur­ther­more, the data sub­ject has the right to request the com­ple­tion of incom­plete per­son­al data — also by means of a sup­ple­ment­ary declar­a­tion — tak­ing into account the pur­poses of the pro­cessing. If a data sub­ject wishes to exer­cise this right to rec­ti­fy, he or she may, at any time, con­tact any employ­ee of the controller.
  • Right to eras­ure (right to be for­got­ten): Any per­son con­cerned by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to obtain from the con­trol­ler the eras­ure without delay of per­son­al data con­cern­ing him or her, where one of the fol­low­ing grounds applies and inso­far as the pro­cessing is not necessary:
    • The per­son­al data were col­lec­ted or oth­er­wise pro­cessed for such pur­poses for which they are no longer necessary.
    • The data sub­ject with­draws his or her con­sent on which the pro­cessing was based pur­su­ant to Art­icle 6 (1) (a) DS-GVO or Art­icle 9 (2) (a) DS-GVO and there is no oth­er leg­al basis for the processing.
    • The data sub­ject objects to the pro­cessing pur­su­ant to Art­icle 21(1) DS-GVO and there are no over­rid­ing legit­im­ate grounds for the pro­cessing, or the data sub­ject objects to the pro­cessing pur­su­ant to Art­icle 21(2) DS-GVO.
    • The per­son­al data have been pro­cessed unlawfully.
    • The eras­ure of the per­son­al data is neces­sary for com­pli­ance with a leg­al oblig­a­tion under Uni­on or Mem­ber State law to which the con­trol­ler is subject.
    • The per­son­al data has been col­lec­ted in rela­tion to inform­a­tion soci­ety ser­vices offered pur­su­ant to Art­icle 8(1) DS-GVO.
    • If one of the afore­men­tioned reas­ons applies, and a data sub­ject wishes to arrange for the eras­ure of per­son­al data stored by the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH, he or she may, at any time, con­tact any employ­ee of the con­trol­ler. The Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH shall arrange for the eras­ure request to be com­plied with imme­di­ately.
      If the per­son­al data has been made pub­lic by the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH and our com­pany is respons­ible for it pur­su­ant to Art. 17 Para. 1 DS-GVO, Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH shall imple­ment reas­on­able meas­ures, includ­ing tech­nic­al meas­ures, to com­pensate oth­er data con­trol­lers for pro­cessing the per­son­al data pub­lished, tak­ing into account the avail­able tech­no­logy and the cost of imple­ment­a­tion, in order to inform the data sub­ject that he or she has reques­ted from those oth­er data con­trol­lers to erase all links to the per­son­al data or cop­ies or rep­lic­a­tions of the per­son­al data, unless the pro­cessing is neces­sary. The Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH will arrange the neces­sary in indi­vidu­al cases.
  • Right to restric­tion of pro­cessing: Any per­son con­cerned by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to obtain from the con­trol­ler the restric­tion of pro­cessing where one of the fol­low­ing con­di­tions is met:
    • The accur­acy of the per­son­al data is con­tested by the data sub­ject for a peri­od enabling the con­trol­ler to veri­fy the accur­acy of the per­son­al data.
    • The pro­cessing is unlaw­ful, the data sub­ject objects to the eras­ure of the per­son­al data and requests instead the restric­tion of the use of the per­son­al data.
    • The con­trol­ler no longer needs the per­son­al data for the pur­poses of the pro­cessing, but the data sub­ject needs it for the asser­tion, exer­cise or defense of leg­al claims.
    • The data sub­ject has objec­ted to the pro­cessing pur­su­ant to Art­icle 21 (1) of the GDPR and it is not yet clear wheth­er the legit­im­ate grounds of the con­trol­ler over­ride those of the data subject.
  • If one of the afore­men­tioned con­di­tions is met, and a data sub­ject wishes to request the restric­tion of per­son­al data stored by the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH, he or she may, at any time, con­tact any employ­ee of the con­trol­ler. The Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH will arrange the restric­tion of the processing.
  • Right to data port­ab­il­ity: Any per­son con­cerned by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to receive the per­son­al data con­cern­ing him or her, which have been provided by the data sub­ject to a con­trol­ler, in a struc­tured, com­monly used and machine-read­able format. He or she also has the right to trans­mit such data to anoth­er con­trol­ler without hindrance from the con­trol­ler to whom the per­son­al data have been provided, provided that the pro­cessing is based on con­sent pur­su­ant to Art­icle 6(1)(a) of the GDPR or Art­icle 9(2)(a) of the GDPR or on a con­tract pur­su­ant to Art­icle 6(1)(b) of the GDPR and the pro­cessing is car­ried out by auto­mated means, unless the pro­cessing is neces­sary for the per­form­ance of a task car­ried out in the pub­lic interest or in the exer­cise of offi­cial author­ity ves­ted in the con­trol­ler.
    Fur­ther­more, when exer­cising the right to data port­ab­il­ity pur­su­ant to Art­icle 20(1) of the GDPR, the data sub­ject shall have the right to obtain that the per­son­al data be trans­ferred dir­ectly from one con­trol­ler to anoth­er con­trol­ler where tech­nic­ally feas­ible and provided that this does not adversely affect the rights and freedoms of oth­er indi­vidu­als.
    In order to assert the right to data port­ab­il­ity, the data sub­ject may at any time con­tact the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH.
  • Right to object: Any per­son con­cerned by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to object at any time, on grounds relat­ing to his or her par­tic­u­lar situ­ation, to the pro­cessing of per­son­al data con­cern­ing him or her car­ried out on the basis of Art­icle 6(1)(e) or (f) of the GDPR. This also applies to pro­fil­ing based on these pro­vi­sions. The Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH shall no longer pro­cess the per­son­al data in the event of the objec­tion, unless we can demon­strate com­pel­ling legit­im­ate grounds for the pro­cessing which over­ride the interests, rights and freedoms of the data sub­ject, or for the asser­tion, exer­cise or defence of leg­al claims. If the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH pro­cesses per­son­al data for dir­ect mar­ket­ing pur­poses, the data sub­ject shall have the right to object at any time to pro­cessing of per­son­al data pro­cessed for such mar­ket­ing. This also applies to the pro­fil­ing, inso­far as it is related to such dir­ect mar­ket­ing. If the data sub­ject objects to the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH to the pro­cessing for dir­ect mar­ket­ing pur­poses, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH will no longer pro­cess the per­son­al data for these pur­poses. In addi­tion, the data sub­ject has the right, on grounds relat­ing to his or her par­tic­u­lar situ­ation, to object to pro­cessing of per­son­al data con­cern­ing him or her which is car­ried out by the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH for sci­entif­ic or his­tor­ic­al research pur­poses, or for stat­ist­ic­al pur­poses pur­su­ant to Art­icle 89(1) of the Data Pro­tec­tion Reg­u­la­tion, unless such pro­cessing is neces­sary for the per­form­ance of a task car­ried out in the pub­lic interest. In order to exer­cise the right to object, the data sub­ject may dir­ectly con­tact any employ­ee of the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH. The data sub­ject is also free to exer­cise his/​her right to object by means of auto­mated pro­ced­ures using tech­nic­al spe­cific­a­tions in con­nec­tion with the use of inform­a­tion soci­ety ser­vices, not­with­stand­ing Dir­ect­ive 2002/58/EC.
  • Auto­mated decisions in indi­vidu­al cases, includ­ing pro­fil­ing: Any data sub­ject con­cerned by the pro­cessing of per­son­al data shall have the right, gran­ted by the European Dir­ect­ive and the Reg­u­la­tion, not to be sub­ject to a decision based solely on auto­mated pro­cessing, includ­ing pro­fil­ing, which pro­duces leg­al effects con­cern­ing him or her or sim­il­arly sig­ni­fic­antly affects him or her, unless the decision (1) is neces­sary for enter­ing into, or the per­form­ance of, a con­tract between the data sub­ject and the con­trol­ler, or (2) is per­mit­ted by Uni­on or Mem­ber State law to which the con­trol­ler is sub­ject and that law con­tains suit­able meas­ures to safe­guard the data sub­ject’s rights and freedoms and legit­im­ate interests, or (3) is made with the data sub­ject’s expli­cit con­sent.
    If the decision (1) is neces­sary for enter­ing into, or the per­form­ance of, a con­tract between the data sub­ject and the data con­trol­ler, or (2) it is made with the data sub­ject’s expli­cit con­sent, the Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH shall imple­ment suit­able meas­ures to safe­guard the data sub­ject’s rights and freedoms and legit­im­ate interests, which include at least the right to obtain the data sub­ject’s involve­ment on the part of the con­trol­ler, to express his or her point of view and to con­test the decision.
    If the data sub­ject wishes to exer­cise the rights con­cern­ing auto­mated decisions, he or she may, at any time, con­tact any employ­ee of the controller.
  • Right to with­draw con­sent under data pro­tec­tion law: Any per­son affected by the pro­cessing of per­son­al data has the right gran­ted by the European Dir­ect­ive and Reg­u­la­tion to with­draw con­sent to the pro­cessing of per­son­al data at any time. If the data sub­ject wishes to exer­cise the right to with­draw con­sent, he or she may, at any time, con­tact any employ­ee of the controller.

10. Leg­al basis of processing

Art­icle 6 I lit. a DS-GVO serves our com­pany as the leg­al basis for pro­cessing oper­a­tions in which we obtain con­sent for a spe­cif­ic pro­cessing pur­pose. If the pro­cessing of per­son­al data is neces­sary for the per­form­ance of a con­tract to which the data sub­ject is a party, as is the case, for example, with pro­cessing oper­a­tions that are neces­sary for the deliv­ery of goods or the pro­vi­sion of anoth­er ser­vice or con­sid­er­a­tion, the pro­cessing is based on Art­icle 6 I lit. b DS-GVO. The same applies to such pro­cessing oper­a­tions that are neces­sary for the imple­ment­a­tion of pre-con­trac­tu­al meas­ures, for example in cases of inquir­ies about our ser­vices. If our com­pany is sub­ject to a leg­al oblig­a­tion by which a pro­cessing of per­son­al data becomes neces­sary, such as for the ful­fill­ment of tax oblig­a­tions, the pro­cessing is based on Art. 6 I lit. c DS-GVO. In rare cases, the pro­cessing of per­son­al data might become neces­sary to pro­tect vital interests of the data sub­ject or anoth­er nat­ur­al per­son. This would be the case, for example, if a vis­it­or were to be injured on our premises and as a res­ult his or her name, age, health insur­ance data or oth­er vital inform­a­tion had to be passed on to a doc­tor, hos­pit­al or oth­er third party. Then the pro­cessing would be based on Art. 6 I lit. d DS-GVO. Finally, pro­cessing oper­a­tions could be based on Art. 6 I lit. f DS-GVO. Pro­cessing oper­a­tions that are not covered by any of the afore­men­tioned leg­al bases are based on this leg­al basis if the pro­cessing is neces­sary to pro­tect a legit­im­ate interest of our com­pany or a third party, provided that the interests, fun­da­ment­al rights and freedoms of the data sub­ject are not over­rid­den. Such pro­cessing oper­a­tions are per­mit­ted to us in par­tic­u­lar because they were spe­cific­ally men­tioned by the European legis­lat­or. In this respect, it took the view that a legit­im­ate interest could be assumed if the data sub­ject is a cus­tom­er of the con­trol­ler (recit­al 47 sen­tence 2 DS-GVO).

11. Legit­im­ate interests in the pro­cessing pur­sued by the con­trol­ler or a third party

If the pro­cessing of per­son­al data is based on Art­icle 6 I lit. f DS-GVO, our legit­im­ate interest is the per­form­ance of our busi­ness activ­it­ies for the bene­fit of the well-being of all our employ­ees and our shareholders.

12. Dur­a­tion for which the per­son­al data are stored

The cri­terion for the dur­a­tion of stor­age of per­son­al data is the respect­ive stat­utory reten­tion peri­od. After expiry of the peri­od, the cor­res­pond­ing data is routinely deleted, provided that it is no longer required for the ful­fill­ment or ini­ti­ation of the contract.

13. Leg­al or con­trac­tu­al require­ments to provide the per­son­al data; neces­sity for the con­clu­sion of the con­tract; oblig­a­tion of the data sub­ject to provide the per­son­al data; pos­sible con­sequences of non-provision

We would like to inform you that the pro­vi­sion of per­son­al data is partly required by law (e.g. tax reg­u­la­tions) or may also res­ult from con­trac­tu­al reg­u­la­tions (e.g. inform­a­tion on the con­trac­tu­al part­ner). Some­times, in order to con­clude a con­tract, it may be neces­sary for a data sub­ject to provide us with per­son­al data that must sub­sequently be pro­cessed by us. For example, the data sub­ject is obliged to provide us with per­son­al data if our com­pany con­cludes a con­tract with him or her. Fail­ure to provide the per­son­al data would mean that the con­tract with the data sub­ject could not be con­cluded. Before provid­ing per­son­al data by the data sub­ject, the data sub­ject must con­tact us. Indus­tri­elle Bio­tech­no­lo­gie Bay­ern Net­zwerk GmbH will inform the data sub­ject on a case-by-case basis wheth­er the pro­vi­sion of the per­son­al data is required by law or by con­tract, or is neces­sary for the con­clu­sion of the con­tract, wheth­er there is an oblig­a­tion to provide the per­son­al data, and what the con­sequences of not provid­ing the per­son­al data would be.

14. Exist­ence of auto­mated decision making

As a respons­ible com­pany, we do not use auto­mat­ic decision-mak­ing or profiling.

15. Use of Google Analytics

This web­site uses Google Ana­lyt­ics, a web ana­lyt­ics ser­vice provided by Google, Inc. (“Google”). The use is based on Art. 6 para. 1 p. 1 lit. f. DSGVO. Google Ana­lyt­ics uses cook­ies”, which are text files placed on your com­puter, to help the web­site ana­lyze how users use the site. The inform­a­tion gen­er­ated by the cook­ie about your use of the web­site such as.

  • Browser type/​version,
  • oper­at­ing sys­tem used,
  • Refer­rer URL (the pre­vi­ously vis­ited page),
  • host name of the access­ing com­puter (IP address),
  • time of the serv­er request,

are usu­ally trans­ferred to a Google serv­er in the USA and stored there. The IP address trans­mit­ted by your browser as part of Google Ana­lyt­ics is not merged with oth­er data from Google. We have also exten­ded Google Ana­lyt­ics on this web­site with the code anonym­izeIP”. This guar­an­tees the mask­ing of your IP address so that all data is col­lec­ted anonym­ously. Only in excep­tion­al cases will the full IP address be trans­ferred to a Google serv­er in the USA and shortened there.

On behalf of the oper­at­or of this web­site, Google will use this inform­a­tion for the pur­pose of eval­u­at­ing your use of the web­site, com­pil­ing reports on web­site activ­ity and provid­ing oth­er ser­vices relat­ing to web­site activ­ity and inter­net usage to the web­site oper­at­or. You may refuse the use of cook­ies by select­ing the appro­pri­ate set­tings on your browser, how­ever please note that if you do this you may not be able to use the full func­tion­al­ity of this web­site.

You can also pre­vent the col­lec­tion of data gen­er­ated by the cook­ie and related to your use of the web­site (includ­ing your IP address) to Google and the pro­cessing of this data by Google by down­load­ing and installing the browser plu­gin avail­able at the fol­low­ing link: http://​tools​.google​.com/​d​l​p​a​g​e​/​g​a​o​p​t​o​u​t​?​hl=de. As an altern­at­ive to the browser add-on, espe­cially for browsers on mobile devices, you can also pre­vent the col­lec­tion by Google Ana­lyt­ics by click­ing on this link. An opt-out cook­ie will be set, which pre­vents the future col­lec­tion of your data when vis­it­ing this web­site. The opt-out cook­ie is only val­id in this browser and only for our web­site and is stored on your device. If you delete the cook­ies in this browser, you must set the opt-out cook­ie again. We con­tin­ue to use Google Ana­lyt­ics to ana­lyze data from Double Click cook­ies and also AdWords for stat­ist­ic­al pur­poses. If you do not wish to do this, you can deac­tiv­ate this via the Ads Pref­er­ences Man­ager (http://​www​.google​.com/​s​e​t​t​i​n​g​s​/​a​d​s​/​o​n​w​e​b​/​?​hl=de).

Source cita­tion: With the excep­tion of point 6, which also comes in part from the fol­low­ing source: Note on the news­let­ter accord­ing to the sample of law­yer Dr. Thomas Schwen­ke” and point 15, which was cre­ated by www​.121watt​.de, this pri­vacy state­ment was cre­ated by the pri­vacy state­ment gen­er­at­or of Kiel extern­al data pro­tec­tion com­mis­sion­er in cooper­a­tion with RC GmbH, which recycles used note­books and the file-shar­ing law­yers of WBS-LAW.