Privacy policy
In the following, we, Liesner & Co. GmbH, inform you about the collection and processing of personal data in the context of your use of our website liesner.co. We process your personal data strictly in accordance with the applicable legal provisions, in particular the European General Data Protection Regulation (“GDPR”) and the German Federal Data Protection Act (“BDSG”).
- Data controller
The data controller within the meaning of the GDPR is Liesner & Co. GmbH, Mönckebergstraße 22, 20095 Hamburg (t.: +49 40 822 12 47 00, f.: +49 40 303 935 69, e-mail: office@liesner-co.de).
If you have any questions about the processing of your personal data, you can also contact our data protection officer, Fieldfisher Tech Rechtsanwaltsgesellschaft mbH, Amerigo-Vespucci-Platz 1, 20457 Hamburg, e.g. by e-mail to datenschutz@liesner-co.de.
- Data collection on our website
Automatically collected data
Every time a user accesses our website and every time a file is retrieved, data about this process is temporarily stored and processed in a log file (so-called “server log data”). These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
The server log data is processed on the basis of Art. 6 (1) (f) GDPR. As the website provider, we have a legitimate interest in the use of this data for the technically error-free and optimised provision of our service and for troubleshooting and protection against unauthorised attempts at access, fraud and misuse. We delete the server log data after 7 days. If further storage is required for evidence purposes, we will only delete the data concerned once the incident has been finally clarified and may also pass it on to the competent investigating authorities for the purpose of criminal prosecution.
Cookies
Some webpages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognise your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.
The data controller for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). The information collected by cookies about your use of this website is generally transmitted to a Google server in the USA and stored there.
We use the User ID function. With the help of the user ID, we can assign a unique, permanent ID to one or more sessions (and the activities within these sessions) and analyse user behaviour across devices.
We use Google Signals. This collects additional information in Google Analytics about users who have activated personalised ads (interests and demographic data) and ads can be delivered to these users in cross-device remarketing campaigns.
In Google Analytics 4, the anonymisation of IP addresses is activated by default. Due to IP anonymisation, your IP address will be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
During your visit to the website, your user behaviour is recorded in the form of “events”. Events can be:
- Page views
- First visit to the website
- Start of the session
- Websites visited
- Your “click path”, interaction with the website
- Scrolls (whenever a user scrolls to the end of the page (90%))
- Clicks on external links
- internal search queries
- Interaction with videos
- File downloads
- Viewed / clicked adverts
- Language setting
It is also recorded:
- Your approximate location (region)
- Date and time of the visit
- Your IP address (in abbreviated form)
- technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
- Your internet provider
- the referrer URL (via which website/advertising medium you came to this website)
- Purposes of the processing
- Google will use this information on our behalf to analyse your use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website.
Recipients of the data are/may be:
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor pursuant to Art. 28 GDPR)
- Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
- Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
For data transfers to the USA, the European Commission adopted its adequacy decision on 10 July 2023. Google LLC is certified under the EU-US Privacy Framework. Since Google servers are distributed worldwide and a transfer to third countries (for example to Singapore) cannot be completely ruled out, we have also concluded the EU standard contractual clauses with the provider.
You can find more information on the terms of use of Google Analytics and on data protection at Google at https://marketingplatform.google.com/about/analytics/terms/us/ and at https://policies.google.com/?hl=en.
- Processors
For hosting, optimising and securing our websites, we use qualified service providers who process personal data on our behalf and strictly in accordance with our instructions as so-called processors within the meaning of Art. 28 GDPR.
- Data subject rights
As a data subject, you have the following rights under the GDPR:
(a) In accordance with Art. 15 GDPR, to request information about your personal data processed by us and a copy of this personal data;
(b) In accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or incomplete personal data stored about you;
(c) To request the erasure of your stored personal data in accordance with Art. 17 GDPR;
(d) To demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR;
(e) In accordance with Art. 20 GDPR – data portability – to receive your personal data that you have provided in a structured, commonly used and machine-readable format or to request the transfer to another controller;
(f) In accordance with Art. 7 (3) GDPR – withdrawal of consent – to withdraw your consent once given with effect for the future at any time;
(g) You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6 (1) (e) GDPR (data processing in the public interest) and Article 6 (1) (f) GDPR (data processing on the basis of legitimate interests).
(h) To lodge a complaint with a data protection supervisory authority in accordance with Art. 77 GDPR. The supervisory authority responsible for us is: Hamburg Commissioner for Data Protection and Freedom of Information of the Free and Hanseatic City of Hamburg, Ludwig-Erhard-Str 22, 7th floor, 20459 Hamburg, Tel.: 040 / 428 54 – 4040, Fax: 040 / 428 54 – 4000, E-Mail: mailbox@datenschutz.hamburg.de.
- Changes to the privacy policy
We reserve the right to amend this privacy policy from time to time, e.g. if further processing activities are to be included or if this is necessary due to changes in the law or case law. We publish the currently valid version at: liesner.com/datenschutz/