Information about data handling

Privacy policy
Privacy policy and the protection of personal data are of utmost importance for the Q-fin GmbH. We handle your personal data confidential and accordingly to the statutory data protection regulations and this data protection declaration.
Using our website is usually able without giving personal data. If personal data wants to be collected on our website (e.g. name, address or e-mail address), this is always done, as far as possible, on a voluntary basis. This data will not be passed on to third parties without your express consent. We would like to point out that data transmission over the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible. For this reason, every person concerned has the option of transmitting personal data by alternative means, by post, e-mail, fax or telephone.

Cookies
Cookies are small files that contains a string, which will be send to your computer or device that you are using to browse on our website. If you open our website again, our website will recognize your browser because of this cookie. Cookies can save user settings and other information. Cookies can save information about you, like your name or mail address. Our website has only access to data that you provide. Therefore it isn’t possible to determine your mail address unless you provide the address. A website can’t get access to information on your computer. You can object to this information processing by deactivating or deleting cookies via your internet browser under user settings. If you deactivate the usage of cookies by default, it is possible, that our website won’t work correct.

Server-Log-Files
A computer connected to the internet receives a unique number from its internet service provider. This is the internet protocol address (IP). Depending on the user’s service, the provider can assign a different address to the user each time the user connects to the internet. Because IP addresses are typically assigned in country-based blocks, an IP address can often be used to identify the country in which this computer is connected to the internet. When you visit our websites, our web server temporarily records the following server log: the IP address, the name of the file(s) you accessed, the date and time of the access, the amount of data transferred, the message about the successful access, the browser type and version, the user’s operating system, the referrer URL (the previously visited page) and the requesting provider. We collect and use this log data for the purpose of system security and the functional design of the website. If this is not the case, IP addresses will be shortened by us before further use in such a way that any personal reference is no longer possible. If you agree to a contractual relationship, the collecting and using of the log data will be used as contractual documentation and as an encounter of abuse. We reserve the right to check the data afterwards, if there are concrete indicators for illegal usage.

Twitter
Functions of the Twitter service are embedded on our sites. These functions will be provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the “Re-Tweet” function, your visited websites will be linked to your Twitter-Account and made known to other users. Data will also be transferred to Twitter. We point out, that we, as owners of this site, won’t have any knowledge about the content of the transmitted data and of their usage by Twitter. Further information can be found in the data protection declaration of Twitter. See:

https://twitter.com/privacy.
You can edit your Twitter privacy settings in the account settings:
https://twitter.com/account/settings.

YouTube
Our website uses plugins from Google’s YouTube site. Owner of the site is YouTube, LLC, 901 Cherry Ave, San Bruno, CA, 94066, USA. If you visit one of our sites with a YouTube plugin, a connection to the YouTube servers will be made. The YouTube server will be informed, which of our sites you have been visited. If you are logged into your YouTube account, you allow YouTube to save your surfing behaviour directly to your profile. You can prevent this by logging out of your YouTube account. Further information can be found in the data protection declaration of YouTube. See: https://www.google.de/intl/de/policies/privacy

SSL-encryption
This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as a site operator. You can recognize an encrypted connection, if the address line of your browser switches from “http://” to “https://” and also by the “lock” symbol in your address line. If SSL encryption is active, your transmitted data can’t be read by third parties.

Usage of web fonts
External fonts (Google Fonts) will be used on these sites. Google Fonts is a service by Google Inc. („Google“). The embedding of these web fonts is made by accessing a server; usually it’s a server by Google in the USA. The Server will be informed, which of our websites you have been visited. The IP address of the browser of the visitor’s terminal device is also stored by Google. Further information can be found in the data protection information by Google which you can find here:
https://www.google.com/fonts#AboutPlace:about
https://www.google.com/policies/privacy/

Objection for advertising-mails
We herewith object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information material. We expressly reserve the right to take legal action in the event of unsolicited advertising information, such as spam e-mails.

Usage and transfer of personal data
If you provide personal data, we will only use them to answer your requests, for the processing of contracts concluded with you and registrations and for technical administration. Your personal data will only be passed on or otherwise transmitted to third parties if this is necessary for the purpose of contract processing – in particular passing on order data to suppliers – or if this is necessary for billing purposes or if you have given your prior consent. We will only disclose data to the relevant authorities if this is provided by law. The deletion of saved personal data will occur, if you object your agreement for saving your data, if your knowing for the fulfilment of the saving purpose isn’t necessary any more or if the saving is inadmissible anymore by legal reasons. After the expiration of the tax and commercial law regulations the data will be deleted, unless you have agreed to use the data beyond this. We take all necessary technical and organisational security measures to protect personal data from loss and misuse. All data are saved in a secure operating environment, without public access. Confidential information will be, if possible, encrypted by a SSL certificate and transferred via HTTPS-protocol. When communicating via E-Mail, we can’t ensure an entire data protection, so we advise you to send confidential information by post or using an appropriate encryption tool. Our data processors have been obliged to maintain the confidentiality of data secrecy.

Legal basis
The legal basis for processing your data conforms to the person group you belong. Basically personal data will be processed by us, if
– a voluntary approval is given (Art. 4 No.11 DS-GVO, Art. 7 DS-GVO)
– contractual or pre-contractual connections exists (Art. 7 EU-DSRL and § 28 No. 1 BDSG)
– we are legally obliged to save them (Art.6 DS-GVO)
– in the event of a balance between processing and non-processing, a legitimate interest in processing prevails (Art.6 DS-GVO).
– a processing could theoretically take place, if the processing is of public interest or would consist in the exercise of official authority (Art. 6 DS-GVO)

Right to information, deletion, blocking
You have the right to get information about your stored personal data anytime and free of charge, their origin and receiver and the purpose of the data processing and also the right of correction, blocking or deletion of this data. You can contact us anytime concerning the subject personal data using the contact information given in the imprint.

Name and contact of the person in charge for the processing:

The data processing is in the responsibility by the Q-fin GmbH.

Responsible for data protection:
Sandra Fischer
Wittenberger Str. 21
39106 Magdeburg
Tel.: 0391 620 86 90
Fax: 0391 620 86 91
Email: datenschutz@q-fin.de

The data protection supervisor of the Q-fin GmbH can be contacted at:
Q-fin GmbH
Wittenberger Str. 21
39106 Magdeburg
Tel.: 0391 620 86 90
Fax: 0391 620 86 91
Email: datenschutz@q-fin.de

You have the opportunity to complain to a data protection supervisory authority.
The responsible supervisory authority and contact persons (acc. Art.4 No.1 DS-GVO) of the federal state Saxony-Anhalt is:

State representative for data protection Saxony-Anhalt
Dr. Harald von Bose
Leiterstraße 9
39104 Magdeburg
Telephone: 0391 81803 10
E-Mail: poststelle@lfd.sachsen-anhalt.de