Privacy notice

Responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is

MIPA SE
Am Oberen Moos 1
84051 Essenbach

Link to the imprint: https://wetterwart.com/impressum/

You can reach our data protection officer at

Bugl & Kollegen Gesellschaft für Datenschutz und Informationssicherheit mbH
Alexander Bugl
Eifelstraße 55
93057 Regensburg
Germany

E-mail: [email protected]

As a data subject, you have the following rights under the EU General Data Protection Regulation (GDPR):

Right to access (Art. 15 GDPR)

You have the right to request information about what personal data is stored about you, for what purpose it is processed, from whom it was received or to whom it is disclosed, and how long it will be stored.

Right to rectification (Art. 16 GDPR)

You can request the immediate rectification of inaccurate personal data or the completion of incomplete personal data.

Right to erasure (‘right to be forgotten’) (Art. 17 GDPR)

Under certain circumstances, you may request the erasure of your personal data, e.g. if it is no longer necessary for the purposes for which it was collected or if you have withdrawn your consent.

Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of the processing of your personal data, for example if you dispute the accuracy of the data or if the processing is unlawful but you request restriction instead of erasure.

Right to data portability (Art. 20 GDPR)

You can request that the personal data concerning you that you have provided to us be transmitted to you in a structured, commonly used and machine-readable format – or that we transfer this data directly to another controller.

Right to object (Art. 21 GDPR)

You have the right to object to the processing of your personal data at any time, provided that the processing is based on the legitimate interests of our company or on a task that is in the public interest. In the event of a justified objection, we will cease processing unless there are compelling legitimate grounds for the processing.

Withdrawal of consent (Art. 7 GDPR)

If you have given us your consent, you can withdraw it at any time for the future without giving reasons.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

The hosting services we use (services for operating and providing the website) serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services, which we use for the purpose of operating this online offering. 

In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offer on the basis of our legitimate interests in the efficient and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with Art. 28 GDPR (conclusion of a data processing agreement).

You can contact us by email, telephone, contact form, or letter, which may involve the processing of personal data. We process your data for the purpose of handling and processing your request. We will not disclose your data to third parties without your consent.

The legal basis for processing is our legitimate interest in the effective processing of your request in accordance with Art. 6 (1) lit. f GDPR.

When you contact us by email, we store your email address and the information contained in the email. If you use the contact form, your IP address will also be pseudonymized in addition to the information provided in the contact form. If you contact us by letter, your sender address and the content of the letter will be stored. If you contact us by telephone, we will collect personal data depending on the individual case. 

We store your data until you request us to delete it or until the purpose of processing (the processing of your request) has been fulfilled.

When you apply for a job with us, your personal data will be processed. The legal basis for processing is Art. 6 (1) (b) GDPR in connection with the implementation of pre-contractual measures. If your data is required after the application process has been completed in order to defend against legal claims, processing will be carried out on the basis of our legitimate interest in a duty of proof in accordance with Art. 6 (1) lit. f GDPR, for example in connection with the Equal Treatment Act.

We process the data that you have provided to us in your application and that we need to assess your suitability for the position in question.

The purposes of the processing are to manage your application, assess your suitability for the vacant position, and contact you in connection with your application or possible alternative positions.

We delete your data after six months. If you have agreed to be included in the applicant pool, we will delete it after two years. If your application leads to employment, we will store your data for the duration of your employment with us.

When you use our website purely for information purposes, we only store your personal data for the duration of your visit. After you leave the website, this data is automatically deleted.

In the case of active use, e.g. for contacting us, we initially store your personal data for the duration of processing your request. In addition, we store the data for as long as this is necessary to safeguard or enforce possible legal claims. The regular limitation period is 12 to 36 months, but can be up to 30 years in individual cases.

After expiry of the limitation period, your data will be deleted unless there is a legal obligation to retain it. Such obligations arise in particular from the German Commercial Code (§§ 238, 257 para. 4 HGB) or the German Fiscal Code (§ 147 para. 3, 4 AO) and are generally between two and ten years.

As part of our business activities, we work together with various external bodies. Personal data is only passed on to these recipients if this is necessary to fulfill contractual obligations, if we are legally obliged to do so (e.g. to tax authorities), if there is a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR, if you have given your consent in accordance with Art. 6 para. 1 lit. a GDPR or if another legal basis permits the transfer of data.

If we use service providers as processors, the transfer of personal data takes place exclusively on the basis of a valid contract for order processing. In the case of joint controllership, a joint processing agreement is concluded in accordance with Art. 26 GDPR.

You will receive more detailed information on the recipients used in the course of this privacy policy or you can contact us using the contact details provided above.

Personal data is only transferred to countries outside the European Union (EU) or the European Economic Area (EEA) if this is necessary or permitted by law, if you have given us your express consent or as part of order processing.

If service providers are used in a third country, we oblige them to comply with the level of data protection applicable in the EU by means of suitable guarantees - usually the EU standard contractual clauses. If the European Commission has issued an adequacy decision, we base the data transfer on this. You can obtain further information on this via the contact options listed above.

We may process the personal data of our customers, interested parties, suppliers, vendors and partners for communication, planning, implementation of the contractual relationship, marketing, administration and security purposes. 

The legal basis for the processing of the data provided is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR and the fulfilment of the contract pursuant to Art. 6 para. 1 lit. b GDPR.

As part of the business relationship, we process contact information, billing information and payment data, other necessary information in a project or contractual relationship or information that is voluntarily provided to us.

We use the 'Google Maps' service on our website to visually display geographic information and provide directions. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Irland.

The legal basis for the use of Google Maps is your consent pursuant to Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future.

The data processed by Google Maps includes your IP address, location data, device information, browser details, usage data, and it may set cookies.

If you are logged into a Google account, Google Maps data can be linked to a user profile.

The purpose of data processing is to display interactive maps and provide location-based services to users.

It cannot be ruled out that personal data may be transferred to unsafe third countries (United States) where the level of data protection is lower than in the EU. We have entered into a data processing agreement (DPA) with Google that ensures that personal data will only be processed in accordance with our instructions and in compliance with the GDPR. Google is certified under the EU-US Data Privacy Framework, which regulates the secure processing of EU citizens data in the US.

Further information on the privacy policy of Google Maps can be found at: policies.google.com/privacy

We use the web analysis software Matomo on our website. Matomo is hosted on our own servers so that no data is passed on to third parties.

The legal basis for the use of Matomo is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to analyze and optimize our website by understanding user behavior and improving user experience.

The data processed by Matomo includes your IP address (anonymized), location and time of visit, device information, browser details and information on website interaction.

The purpose of data processing is the statistical analysis of user behavior and the creation of anonymous user profiles.

Matomo's default data retention period is 24 months (2 years). You can find this information in Matomo's official documentation at: https://matomo.org/faq/general/faq_34856/