Privacy policy

Privacy Policy

Personal data (hereinafter mostly referred to as "data") is processed by us only within the scope of necessity and for the purpose of providing a functional and user-friendly Internet presence, including its contents and the services offered there.

Pursuant to Article 4(1) of Regulation (EU) 2016/679, i.e. the basic Regulation on data protection (hereinafter referred to as the 'DSGVO'), 'processing' means any operation or set of operations relating to personal data, such as collection, recording, organisation, sorting, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, comparison or association, limitation, erasure or destruction, carried out with or without the aid of automated processes.

With the following data protection declaration we inform you in particular about type, extent, purpose, duration and legal basis of the processing of personal data, as far as we decide either alone or together with others about the purposes and means of the processing. In addition, we will inform you below about the third-party components used by us for optimisation purposes and to increase the quality of use, insofar as third parties process data on their own responsibility.

Our privacy policy is structured as follows:

I. Information about us as responsible
II. Contact details of the Data Protection Officer
III. Rights of users and affected
IV. Information on data processing

I. Information about us as responsible persons

Responsible provider of this website in the sense of data protection:

EQS Group AG
Karlstr. 47
80333 Munich
Germany

Legally represented by its Management Board, Messrs Tobias Meibom, Stefan Witjes

Phone: +49 (0) 30 40 363 47 - 0
Fax: +49 (0) 30 40 363 47 99
E-Mail: info@gateway-re.de

II. Contact details of the Data Protection Officer

The company data protection officer is Mr. Thoralf S. Thorson. He is available at the address above or at:
datenschutz@gateway-re.de

III. Rights of users and data subjects

With regard to the data processing described in more detail below, users and data subjects have the right to

  • to confirmation within the meaning of Art. 15 DSGVO whether data relating to them will be processed, to information on the data processed, to further information on the data processing and to copies of the data;
  • to correct or complete inaccurate or incomplete data within the framework of Art. 16 DSGVO;
  • to the immediate deletion of the data concerning them within the framework of Art. 17 DSGVO;
  • restriction of processing in accordance with Art. 18 DSGVO;
  • to receive the data concerning them and provided by them and to transfer these data to other providers/responsible persons within the framework of Art. 20 DSGVO, if the processing is based on a consent or a contract and the processing is carried out by means of automated procedures;
  • on complaint to the supervisory authority if they are of the opinion that the data concerning them are being processed by the provider in breach of data protection provisions (cf. also Art. 77 DSGVO).

In addition, the provider is obliged to inform all recipients to whom data have been disclosed by the provider of any rectification or deletion of data or of the restriction of processing which takes place pursuant to Articles 16, 17 para. 1, 18 DSGVO. However, this obligation does not exist if this notification is impossible or involves disproportionate effort. Irrespective of this, the user has a right to information about these recipients.


Users and data subjects also have the right under Art. 21 DSGVO to object to the future processing of data concerning them, provided that the data are processed by the provider in accordance with Art. 6 para. 1 lit. f) DSGVO. The controller will then examine whether he can establish compelling legitimate reasons for the processing, overriding the interests, rights and freedoms of the data subject, or whether the processing is conducive to the assertion, exercise or defence of rights. In such a case, the controller may proceed with the processing. Furthermore, an objection against data processing for the purpose of direct marketing is admissible without the responsible party being able to examine the individual case in the aforementioned sense.


IV. Information on data processing

Server data

For technical reasons, in particular to ensure a secure and stable internet presence, data is sent to us or to our web space provider by your internet browser.

QiTEC IT Service GmbH
Täubchenweg 8
04317 Leipzig
Germany

who works for us as an order processor. With these so-called server log files, the type and version of your internet browser, the operating system, the website from which you switched to our internet presence (referrer URL), the website(s) of our internet presence that you visit, the date and time of the respective access and the IP address of the internet connection from which the use of our internet presence takes place are collected.

These data collected in this way are temporarily stored, but not together with other data from you.

This storage takes place on the legal basis of Art. 6 para. 1 sentence 1 lit. f) DSGVO (balancing of interests). Our legitimate interest lies in the improvement, stability, functionality and security of our internet presence as well as in the provision of the contents of the website accessed by the user.

The data will be deleted after seven days at the latest, unless further storage is necessary for evidence purposes. Otherwise, the data shall be wholly or partially excluded from erasure until the incident has been finally resolved.

There is no obligation to provide the data, but if the data is not provided, we will not be able to provide the content accessed on the website.