Our data privacy statement
Preamble
The protection of your data is important to us and we know that it is also important to you. Please read our privacy policy for information on how CIKONI GmbH collects, uses, stores and protects your personal data and what rights you have as a data subject.
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
This data protection declaration applies to the use of the website www.cikoni.com, www.cikoni.de as well as subdomains and other websites of CIKONI GmbH.
1 Name and contact details of the data controller and the company data protection officer.
The responsible party within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:
CIKONI GmbH
Zettachring 12A
70569 Stuttgart
Germany.
E-mail: info@cikoni.com
Website: www.cikoni.com
Telephone: +49 711 26 37 56 00
The company data protection officer of CIKONI GMBH can be reached at the above address, or at info@cikoni.com.
2 General information on data processing
As a matter of principle, we collect and use personal data of our users only to the extent that this is necessary for the provision of a functional website as well as our contents and services. The use of our website is generally possible without providing personal data. Insofar as personal data (e.g. name, address or e-mail addresses) is collected on our website, this is generally only done with the user’s consent. An exception applies in those cases where it is not possible to obtain prior consent for factual reasons and the processing of the data is permitted by legal regulations. This data will not be passed on to third parties without your express consent.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) lit. a EU General Data Protection Regulation (DSGVO) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.
Insofar as processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis.
In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) lit. d DSGVO serves as the legal basis.
If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing.
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need to continue storing the data for the conclusion or performance of a contract.
3 Collection and storage of personal data as well as type and purpose of their use
a) When visiting the website
When you visit our website www.cikoni.com, the browser used on your end device automatically sends information to the server of our website. The following information is collected without your intervention and stored until automated deletion:
IP address of the requesting computer,
Date and time of access,
Name and URL of the accessed file,
website from which the access was made (referrer URL),
websites that are accessed by the user’s system via our website,
browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
This information is temporarily stored in a so-called log file. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person. We do not combine this data with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.
The legal basis for the temporary storage of the data and log files is Art. 6 para. 1 p. 1 lit. f DSGVO.
The aforementioned data is processed by us for the following purposes:
Ensuring a smooth connection setup and delivery of the website to the user’s computer,
Ensuring the functionality of our website,
Ensuring the security of our information technology systems and
Optimization of the website Evaluation of system security and stability.
Our legitimate interest follows from the data collection purposes listed above. In these purposes also lies our legitimate interest in data processing according to Art. 6 para. 1 lit. f DSGVO.
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.
The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.
b) When using our contact form
For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. In doing so, it is necessary to provide a valid e-mail address so that we know from whom the inquiry originates and in order to be able to answer it. Further mandatory data are the name and the message of the user.
For the processing of the data, your consent is obtained during the sending process and reference is made to this data protection declaration. In this context, the data will not be passed on to third parties. The data will be used exclusively for processing the conversation and for subsequent contact.
Data processing for the purpose of contacting us is based on your voluntarily given consent in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO.
The processing of personal data from the input mask serves us solely to process the contact. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
As software for the use of the contact form, we use ContactForm 7 as a plug-in for WordPress. Currently, no information is available as to what data information is collected.
A recording of the data on our part within the conversation does not take place. The personal data collected by us for the use of the contact form will be automatically deleted after completion of the request you have made. For the personal data from the input mask of the contact form, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified and there is no further interest in cooperation.
The user has the option to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.
4 Transfer of data
Your personal data will not be transferred to third parties for purposes other than those listed below.
We will only pass on your personal data to third parties if:
within the framework of a consent expressly granted by you in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO,
if the transfer is indispensable for the implementation of offers or services that you want to claim, according to Art. 6 para. 1 p. 1 lit. f DSGVO and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure,
in the event that there is a legal obligation for disclosure pursuant to Art. 6 (1) sentence 1 lit. c DSGVO, as well as
if this is legally permissible and necessary for the processing of contractual relationships with you according to Art. 6 para. 1 p. 1 lit. b DSGVO.
5 Cookies
We use cookies on our website. These are small files that are automatically created by your browser and stored on your end device (laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your end device, do not contain viruses, Trojans or other malware.
In the cookie, information is stored that arises in each case in connection with the specific end device used. However, this does not mean that we gain direct knowledge of your identity. The cookies on our website do not collect any personal data about you or your usage.
On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.
The legal basis for the processing of personal data using cookies is Art. 6 (1) lit. f DSGVO.
The purpose of using technically necessary session cookies Cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. The user data collected through technically necessary cookies are not used to create user profiles. In these purposes also lies our legitimate interest in the processing of personal data according to Art. 6 para. 1 lit. f DSGVO.
Cookies are stored on the user’s computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies. Most browsers accept cookies automatically. Of course, you can also view our website without cookies. You can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. Cookies that have already been stored can be deleted at any time. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.
6 Social Media Plug-ins
We use social plug-ins of various social networks on our website on the basis of Art. 6 para. 1 p. 1 lit. f DSGVO in order to make CIKONI GMBH better known via these. The underlying promotional purpose is to be regarded as a legitimate interest within the meaning of the DSGVO. The responsibility for data protection-compliant operation is to be ensured by their respective providers.
a) Facebook
Social media plugins from Facebook, provider Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, are used on our website to make their use more personal. For this purpose, we use the “LIKE” or “SHARE” button. This is an offer from Facebook. You can find an overview of the Facebook plugins here: https://developers.facebook.com/docs/plugins/.
When you call up a page of our website that contains such a plugin, your browser establishes a direct connection with Facebook’s servers. The content of the plugin is transmitted by Facebook directly to your browser, which then integrates it into the website.
By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there.
If you are logged in to Facebook, Facebook can directly assign your visit to our website to your Facebook account. If you interact with the plugins, for example by clicking the “LIKE” or “SHARE” button, the corresponding information is also transmitted directly to a Facebook server and stored there. This allows Facebook to associate the visit to our pages with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. The information is also published on Facebook and displayed to your Facebook friends.
Facebook may use this information for the purposes of advertising, market research and demand-oriented design of the Facebook pages. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.
If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting our website.
For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights in this regard and setting options for protecting your privacy, please refer to Facebook’s privacy policy (https://www.facebook.com/about/privacy/).
b) Twitter
Plugins of the short message network of Twitter Inc. (Twitter) are integrated on our Internet pages. These functions are offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. You can find an overview of tweet buttons here (https://about.twitter.com/resources/buttons).
When you call up a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter thereby receives the information that you have visited our site with your IP address. If you click the Twitter “tweet button” while you are logged into your Twitter account, you can link the content of our pages on your Twitter profile and share it with other users. This allows Twitter to associate the visit to our pages with your user account. In the process, data is also transferred to Twitter. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Twitter.
If you do not want Twitter to be able to associate your visit to our pages, please log out of your Twitter user account.
For more information, see the privacy policy of Twitter ((https://twitter.com/privacy).
c) Xing
Our website uses functions of the XING network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time one of our pages containing XING functions is called up, a connection to XING servers is established. As far as we are aware, no personal data is stored in the process. In particular, no IP addresses are stored or usage behavior evaluated.
Further information on data protection and the XING Share button can be found in the XING data protection declaration at: https://www.xing.com/app/share?op=data_protection.
d) Google+
Our pages use functions of Google+. The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Collection and dissemination of information: Using the Google+ button, you can publish information worldwide. Through the Google+ button, you and other users receive personalized content from Google and our partners. Google stores both the information that you gave +1 for a content and information about the page you were viewing when you clicked +1. Your +1s may be displayed as notices along with your profile name and photo in Google services, such as search results or your Google profile, or elsewhere on websites and ads on the Internet.
Google records information about your +1 activities to improve Google services for you and others. To use the Google+ button, you need a globally visible, public Google profile, which must contain at least the name chosen for the profile. This name is used in all Google services. In some cases, this name may also replace another name you used when sharing content through your Google Account. The identity of your Google profile may be displayed to users who know your email address or have other identifying information about you.
Use of Collected Information: In addition to the uses explained above, the information you provide will be used in accordance with Google’s applicable privacy policy. Google may publish aggregate statistics about users’ +1 activities or share them with users and partners, such as publishers, advertisers or affiliated websites.
e) LinkedIn
Our pages use functions of Twitter. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
Collection and sharing of information: Using the LinkedIn button, you can publish information worldwide. Through the button, you and other users receive personalized content from LinkedIn and partners. LinkedIn stores both the information that you gave a Like for a piece of content and information about the page you were viewing when you clicked Like. Your Likes may be displayed as notices along with your profile name and photo in LinkedIn services, such as in search results or on your profile, or elsewhere on websites and ads across the Internet.
LinkedIn records information about your activities to improve the services for you and others. To use the button, you must have a globally visible, public LinkedIn profile, which must include at least the name chosen for the profile. This name is used in all LinkedIn services. In some cases, this name may also replace another name you used when sharing content through your LinkedIn account. The identity of your LinkedIn profile may be displayed to users who know your email address or have other identifying information about you.
Use of Collected Information: In addition to the uses explained above, the information you provide will be used in accordance with the applicable LinkedIn privacy policy. LinkedIn may publish aggregate statistics about user activity or share them with users and partners, such as publishers, advertisers, or affiliated websites.
f) Instagram
Our pages use functions of Instagram. The provider is Instagram LLC, represented by Kevin Systrom and Mike Krieger, 1601 Willow Rd, Menlo Park CA 94025, USA.
Collection and sharing of information: Using the Instagram button, you can post information around the world. Through the button, you and other users receive personalized content from Instagram and our partners. Instagram stores both the information that you gave a Like for a piece of content and information about the page you were viewing when you clicked Like. Your Likes may be displayed as notices along with your profile name and photo in Instagram services, such as in search results or on your profile, or elsewhere on websites and ads across the web.
Instagram records information about your activities to improve Instagram services for you and others. To use the Instagram button, you must have a globally visible, public Instagram profile, which must include at least the name chosen for the profile. This name is used in all Instagram services. In some cases, this name may also replace another name you used when sharing content through your Instagram account. The identity of your profile may be displayed to users who know your email address or have other identifying information about you.
Use of Collected Information: In addition to the uses explained above, the information you provide will be used in accordance with the applicable Instagram privacy policy. Instagram may publish aggregate statistics about user activity or share them with users and partners, such as publishers, advertisers, or affiliated websites.
7 Data subject rights
You have the right to:
In accordance with Art. 15 DSGVO, to request information free of charge about your personal data processed by us. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, and the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
pursuant to Art. 16 DSGVO, to request the correction of incorrect or incomplete personal data stored by us without undue delay;
pursuant to Art. 17 DSGVO, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
pursuant to Art. 18 DSGVO, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 DSGVO;
pursuant to Art. 20 DSGVO, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
in accordance with Art. 7 (3) DSGVO, to revoke your consent once given to us at any time. This has the consequence that we may no longer continue the data processing, which was based on this consent, for the future; and
to complain to a supervisory authority in accordance with Art. 77 DSGVO. The data protection supervisory authority responsible for us can be reached at: The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg, P.O. Box 10 29 32, 70025 Stuttgart, Königstraße 10a, 70173 Stuttgart, Tel.: 0711/61 55 41 – 0, Fax: 0711/61 55 41 – 15, E-Mail: poststelle@lfdi.bwl.de, Internet: https://www.baden-wuerttemberg.datenschutz.de
If you wish to exercise your right to information and correction, please contact us by e-mail at: info@cikoni.com or by post at: Data Protection Officer, CIKONI GmbH, Nobelstraße 15, 70569 Stuttgart.
8 Right of objection
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without specifying a particular situation.
If you would like to exercise your right of revocation or objection, it is sufficient to send an e-mail to info@cikoni.com or contact us by post at: Data Protection Officer, CIKONI GmbH, Nobelstraße 15, 70569 Stuttgart.
9 Data security
Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted when you see the closed key or lock symbol in the lower status bar of your browser. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
10 Actuality and change of this privacy policy
This data protection declaration is currently valid and has the status May 2018.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at https://www.cikoni.com/de/datenschutz.
11 Objection to unsolicited advertising/information material
We hereby object to the use of contact data published within the framework of the imprint obligation for the purpose of sending unsolicited advertising and information material. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
