Privacy policy
Privacy policy for pages of visitdessau.com
Thank you for your interest in our website. The protection of your personal data is important to us. This policy will inform you in detail about how your data will be handled.
1. Name and address of the controller
The controller for the processing your personal data within the meaning of Art. 4 No. 7 GDPR is:
Stadtmarketinggesellschaft Dessau-Roßlau mbH, represented by its Managing Director Torsten Ceglarek
Kavalierstr. 37-39
06844 Dessau-Roßlau
Tel: +49 340 882920 – 11
Fax: +49 340 204 882920 – 99
e-mail: post@smg-dessau-rosslau.de
2. Contact details of the data protection officer
Our data protection officer is available at all times to answer any questions you may have and to act as your contact person on the subject of data protection. If you have any questions, please contact:
Paul Lehmann
Kavalierstr. 37-39
06844 Dessau-Roßlau
Tel: +49 340 882920 – 11
Fax: +49 340 204 882920 – 99
e-mail: post@smg-dessau-rosslau.de
3. Collection, processing, and use of personal data
When visiting our website
You can visit our website without providing any personal information. Every time you visit our website, data and information are automatically collected by your device’s system; this information is stored in so-called server log files. This information relates to an identified or identifiable natural person. The data is automatically transferred by your browser when you visit our website. The following information is transferred: The time you visit our website, the URL of the website, your operating system, the type and version of the browser you are using, the IP address of your computer, and the city from which you are visiting our website.
The legal basis for data processing is Art. 6(1) lit. f) GDPR. We have a legitimate interest in presenting you with a website optimised for your browser and in enabling communication between our server and your terminal device. For optimal communication, we need, in particular, to process your IP address. The processed information is stored only as long as necessary for the intended purpose or as required by law.
The purpose of this processing is to improve our offer, including retrievability of our website from your device, and make sure that our website is displayed correctly on your device or in your browser. Furthermore, the data is used to optimise our website and to ensure the security of our systems. We will not evaluate this data for marketing purposes or drawing conclusions about the data subject. In addition, we use cookies and analysis services when you visit our website. For further details, please refer to section 5.
When responding to user requests
On our website, you will also find a contact form. If we receive personal data from you when you try to contact us, we will use it exclusively for processing the conversation. If you use the contact form, we will collect, store, and process your first and last name, your e-mail address, and, if applicable, your address. The legal basis for the data processing is your consent pursuant to Art. 6(1) lit. a) GDPR.
You can also use our e-mail address or phone number to contact us. In this context, your data will not be passed on to third parties. The purpose of entering data in the contact form is to contact us.
4. Data security
We use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorised access by third parties (e.g., TSL encryption for our website). In doing so, we consider the state of the art, implementation costs and the nature, scope, context, and purpose of the processing, as well as the existing risks of a data breach (including its probability and impact) for the data subject. Our security measures are continuously improved in line with technological developments.
5. Disclosure of personal data
Your data will only be passed on if this is necessary to fulfil the contract, invoice our services, or (if you have given your consent to do so) disclose your data otherwise. Personal data may also be transferred to recipients who are based outside the EEA in so-called third countries. In this case, we will ensure that either an adequate level of data protection exists at the recipient’s site or that your consent to the transfer has been obtained before the transfer.
6. Use of cookies
We use so-called cookies in several places on our Internet pages. These are small files that your browser automatically creates and stores on your device when visiting our pages. They serve to make our offer more user-friendly, effective, and secure. Some of the cookies we use are deleted after the end of the browser session, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and enable us to recognise your browser on your next visit (so-called permanent or persistent cookies). If cookies are set, they collect and process specific user information such as browser and location data and IP address values to an individual extent. Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. The duration of the respective cookie storage can be found in the overview of the cookie settings of your web browser.
Any use of cookies that is not absolutely necessary for technical reasons is deemed to be data processing that is only permitted with your explicit and active consent pursuant to Art. 6(1) s. 1 lit. a) GDPR. This applies in particular to the use of advertising, targeting, or sharing cookies. We use advertising cookies and tracking mechanisms; for more detailed explanations, please see section 6. We use these cookies and tracking mechanisms only if you have previously consented to their use. In addition, we will only share your personal data processed through cookies with third parties if you have given your explicit consent to do so. You can revoke any consent already given with effect for the future or give us your consent later.
Most browsers accept cookies automatically. You can altogether disable the storage of cookies in your browser, limit their storage to specific pages or configure your browser so that it automatically notifies you as soon as a cookie is to be set and asks you for consent. You can also block or delete individual cookies. For technical reasons, however, this may result in some functions of our website being impaired and no longer functioning fully.
7. Borlabs
This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consent. Borlabs Cookie does not process any personal data. The borlabs-cookie stores the consent you gave when you entered the website. If you wish to revoke this consent, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked again for your cookie consent.
8. Live chat system Tidio
We use the live chat system Tidio on our website, a service provided by Tidio LLC, 180 Steuart St, San Francisco, CA 94119, USA. Tidio allows visitors to communicate directly with us and ask questions.
Use of the chat is voluntary. What data is processed?
When you use the chat, the following data may be processed, depending on the course of the conversation:
Chat content (messages entered by you)
Time stamp of the communication
Browser and device data
Any contact information provided voluntarily (only if you enter it yourself)
Tidio stores this data in order to process the request and operate the system technically.
Legal basis:
Processing is carried out in accordance with Art. 6 (1) (a) GDPR on the basis of your consent, which you must give via our cookie consent manager (Borlabs Cookie) before Tidio is loaded.
Third country transfer:
Tidio also processes data in the USA. The Standard Contractual Clauses (SCC) of the EU Commission pursuant to Art. 46 GDPR apply to data transfers.
Information on this: https://www.tidio.com/privacy-policy/
Purpose of processing:
Provision of real-time support and response to user inquiries.
Revocation of your consent
You can revoke your consent at any time via our Borlabs cookie banner.
Tidio will then no longer be loaded and the chat will no longer be available.
9. Google Analytics
We create pseudonymous usage profiles to design our Internet pages as needed; to this end, we use Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses targeting cookies that are stored on your device and can be read by us. In this way, we can recognise returning visitors, count them, and learn how often different users have accessed our website.
The information generated by the cookie about your use of our website is usually transmitted to a Google server in the US and stored there. However, your IP address is shortened before the usage statistics are analysed so that no conclusions can be drawn as to your identity. To this end, the code “anonymizeIP” has been added to Google Analytics on our website to make sure that IP addresses are collected in an anonymous form.
Google will use this information on our behalf to evaluate your use of our website, compile reports on website activity, and provide other services relating to website activity and Internet usage to us as the website operator. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. The data processing is based on your consent, according to Art. 6(1) s. 1 lit. a) GDPR. Google Analytics cookies, including your usage behaviour, are only stored if you have previously consented to this tracking. You can revoke this consent at any time with effect for the future. As part of this processing, personal data is transferred to the USA. The data transfer is based on European standard contractual clauses in which Google agrees to comply with European data protection law for the services provided by Google. We have also concluded an order processing agreement with Google LLC pursuant to Art. 28 GDPR.
10. Open Street Map
We use the open source map service “OpenStreetMaps” (also known as “OSM”) from the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom, to display geodata. OSM is used to provide interactive maps on our website that show you various routes, distances, and overviews. This service enables us to present our website in an appealing way by loading map material from an external server. The following data is transferred to the OSM servers during display: the pages of our website that you have visited and the IP address of your device. The legal basis for the processing of your data in relation to the “OSM” service is Art. 6 (1) (f) GDPR (legitimate interest in data processing). The legitimate interest arises from our need to present our online offering in an appealing manner and to make it easy to find the locations listed on our homepage.
For more information on the handling of user data, please refer to the OSM privacy policy: https://wiki.osmfoundation.org/wiki/Privacy_Policy
11. Google Maps
This website uses the Google Maps map service. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. It is necessary to store your IP address to use the functions of Google Maps. This information is usually transferred to and stored on a Google LLC server in the USA. While we are a provider of this website, we do not influence this data transfer. For more information on how we handle user data, please see Google’s privacy policy at: https://policies.google.com/privacy?hl=de&gl=de.
When the user calls up the map service, the user’s data is exclusively used for the best possible display of the map functions and temporary storage of the selected settings. This data includes, in particular, IP addresses, data about your browser, device, and operating system, as well as website call data. The legal basis for data processing is Art. 6(1) lit. f) GDPR.
12. SAiNT-Widget
Our website uses a widget from the SAiNT open data platform to provide interactive content and functions. When the widget is loaded, content is downloaded directly from saint.tech and displayed.
A statistical, non-personal evaluation of the use of the widget is carried out exclusively on SAiNT’s servers. No personal data is transmitted to SAiNT.
The widget sets technically necessary session cookies and uses session storage to temporarily store user settings. No further storage or processing of personal data takes place.
The widget contains map material from Mapbox. The provider Mapbox processes data within the framework of a data processing agreement with SAiNT in compliance with the EU Standard Contractual Clauses (SCCs).
If the user actively agrees to access their location via the browser, the location is used for personalized search results and travel recommendations. The location query is made directly via the browser and can be refused or revoked at any time.
The current weather at the location can also be taken into account when calculating location-based recommendations. No personal data is transmitted to the weather service provider, as all requests are routed through a proxy server.
For more information on SAiNT’s privacy policy, please visit: saint.tech/datenschutz.
13. Social media profiles
We do not use social media plugins on our websites. If our website contains icons from social media providers (e.g., from Facebook, Instagram, and Twitter), we only use these icons to create a passive link to the pages of the respective social media provider.
14. Facebook fan page
As the operator of a Facebook fan page, we can only view the information stored in your public Facebook profile, provided that you have such a profile and are logged in to it when you access our fan page. In addition, Facebook provides us with anonymous usage statistics that we use to improve the user experience when you are vising our fan page. We do not have access to the usage data that Facebook collects to create these statistics. Facebook has agreed to assume primary responsibility under the GDPR to process this data, comply with all obligations under the GDPR concerning this data, and provide data subjects with the material commitments made by Facebook in this regard. This data processing serves our (and your) legitimate interest in improving the user experience and adapting the website to the target group’s needs. The legal basis for data processing is Art. 6(1) lit. f) GDPR. Besides, Facebook uses so-called cookies stored on your device when you visit our fan page, even if you do not have your own Facebook profile or are not logged into it during your visit to our fan page. These cookies allow Facebook to create user profiles based on your preferences and interests and show you ads (inside and outside of Facebook) tailored to those preferences. Cookies remain on your device until you delete them. For further details, and in particular how
you as a data subject can exercise your rights, please refer to the data protection information at: https://www.facebook.com/policy.php
10. Rights of data subjects
To protect your personal data with regard to data processing, you can exercise your rights against us at any time using the contact details provided at the beginning of section 1. You have the following rights:
Right to information
According to Art. 15 GDPR, you can request information about your data processed by us. In particular, you can obtain information about the purposes of the processing, the category of data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if we did not collect it, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.
Right to rectification
Pursuant to Art. 16 GDPR, you can immediately request the rectification of incorrect data or the completion of your data stored by us.
Right to erasure
Pursuant to Art. 17 GDPR, you may request the deletion of your data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or the assertion, exercise, or defence of legal claims.
Right to restriction of processing
Pursuant to Art. 18 GDPR, you may request the restriction of the processing of your data if the accuracy of the data is disputed by you or the processing is unlawful.
Right to data portability
Pursuant to Art. 20 GDPR, you may receive the data you have provided to us in a structured, commonly used, and machine-readable format or request that it be transmitted to another controller (“data portability”).
Right of withdrawal of consent
If you have given your consent to the data processing, you may withdraw your consent at any time, pursuant to Art. 7(3) GDPR; the term “consent” shall be defined as your voluntary will, made understandable in an informed manner and unambiguously by a declaration or other unambiguous confirming act, that you agree to the processing of the personal data in question for one or more specific purposes. As a result, we may no longer continue the data processing based on this consent for the future.
If your personal data is processed based on legitimate interests pursuant to Art. 6(1) s. 1 lit. e) or lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising. This is true, in particular, if the
processing is not necessary for the performance of a contract concluded with you. Unless your objection does not relate to direct marketing, we ask you to explain why you do not want us to process your data as we have done. In the event of your justified objection, we will review the merits of the case and either discontinue or adapt the data processing or inform you about our compelling legitimate grounds based on which we will continue the processing. In addition, you have the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR.
No automated decision-making
We do not intend to use any personal data collected from you for any automated decision-making process (including profiling).
Status of the privacy policy
This privacy policy was updated in December 2020. Due to the further development of our website and the offers provided on our website or due to changes in legal or regulatory requirements, it may become necessary to change this privacy policy.