Privacy Policy

Table of Contents

1. Data protection at a glance

General information

The following notices provide an overview of what types of your personal data we process, for what purposes and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and, in particular, on our website. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to the statements listed below.

Data collection in the context of the provision of our services and on this website

Who is responsible for data collection?

Data processing at IIC-AM GmbH and on this website is carried out by the data controller. You can find the contact details in the section „Information on the controller“ in this data protection declaration.

How do we collect your data?

On the one hand, your data is collected when you provide it to us, e.g. by e-mail, telephone or post.

Other data is collected automatically or with your consent by our IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view, IP address). This data is collected automatically as soon as you enter this website.

What do we use your data for?

On our website, data is collected in order to ensure error-free provision of the website. Other data may be used for anonymous analysis of your user behaviour.

Below we provide a non-exhaustive overview of the data we process in the course of providing our services, the purposes of the processing and the categories of data subjects:

Types of data processed

Purposes of data processing

Categories of data subjects

Which rights do you have regarding your data?

You have the right at any time to receive information free of charge about the origin, recipient and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time about this and other questions on the subject of data protection (see 2. "Note on the controller").

Analysis tools and tools from third-party providers

When visiting this website, your surfing behaviour may be statistically analysed. This is mainly done with so-called analysis programmes.

Information on these analysis programmes can be found in the following data protection declaration, under 4. "Data collection on this website / "Services" and in particular under 5. "Hosting".

Table of Contents

2. General notes and mandatory information

Data protection

IIC-AM GmbH takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

When you contact us, use our services or use this website, various personal data are collected. Personal data is data with which you can be personally identified. This Privacy Policy explains what information we collect and how we use it. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

Information on the controller

The controller under data protection legislation and the service provider under the German Telemedia Act at IIC-AM GmbH is:

Mr. William Goh

IIC-AM GmbH
Campus-Boulevard 79
52074 Aachen
Germany

Phone: +49 241 89437703
E-Mail: contact-web@iic-am.eu

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Storage period and deletion of data

Unless a more specific storage period is stated within this privacy policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you assert a legitimate request for deletion or revoke consent to data processing, your data will be deleted unless we have other legally permissible reasons and obligations for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted after these reasons and obligations cease to apply.

General information on the legal basis for data processing

Information on the relevant legal basis in each individual case is provided in the following sections of this data protection declaration.

Revocation of your consent to data processing

Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to data collection in special cases and to direct marketing (Art. 21 DSGVO)

Right of appeal to the competent supervisory authority

In the event of breaches of the DSGVO, data subjects shall have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged breach. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to data portability (Art. 20 DSGVO)

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

Information (Art. 15 DSGVO), correction (Art. 16 DSGVO) and deletion (Art. 17 DSGVO)

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if applicable, a right to correction or deletion of this data. You can contact us at any time for this purpose and for further questions on the subject of personal data.

Right to restriction of processing (Art. 18 DSGVO)

You have the right to request the restriction of the processing of your personal data. To do this, you can contact us at any time. The right to restriction of processing exists in the following cases:

If you have restricted the processing of your personal data, this data may - apart from being stored - only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.

Transmission of personal data

In the course of our processing of personal data, the data may be transferred to or disclosed to other bodies, companies, legally independent organisational units or persons. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we comply with the legal requirements and, in particular, conclude appropriate contracts or agreements that serve to protect your data with the recipients of the data.

We may transfer personal data to other bodies within our organisation or grant them access to such data. Where this transfer is for administrative purposes, the transfer of data is based on our legitimate business and commercial interests or is made where it is necessary to fulfil our contractual obligations or where we have the consent of the data subject or legal permission.

Data processing in third countries

If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of using third-party services or disclosing or transferring data to other persons, entities or companies, this will only be done in accordance with legal requirements.

Subject to express consent or contractually or legally required transfer, we only process or have the data processed in third countries with a recognised level of data protection, with a contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO).

Security measures and SSL or TLS encryption

We take appropriate technical and organisational measures in accordance with the law, taking into account the state of the art, the cost of implementation and the nature, scope, circumstances and purposes of the processing, as well as the various probabilities of occurrence and the level of risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

Depending on the URL selected to reach this page, this page may use SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as enquiries that you send to us as the page operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from „http://“ to „https://“ and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Table of Contents

3. Data collection in the context of the provision of our services

Enquiry by e-mail, telephone or fax and provision of our business services

If you contact us by e-mail, telephone or fax, your enquiry including all resulting personal data (name, contact information, enquiry) will be stored and processed by us for the purpose of processing your request.

We process data of our contractual and business partners, e.g. customers and interested parties in the context of pre-contractual, contractual and comparable legal relationships as well as related measures and in the context of communication with the contractual partners or contractual partners in initiation. In addition, we process the data to protect our rights and for the purposes of the obligations associated with the agreed services, administrative tasks and company organisation. Within the framework of the applicable law, we only pass on the data of contractual partners or contractual partners in initiation to third parties to the extent that this is necessary for the aforementioned purposes or for the fulfilment of legal obligations.

The data we process will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

Table of Contents

4. Data collection on this website

Cookies

Our internet pages use so-called „cookies“. Cookies are small data packets and do not cause any damage to your end device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your end device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser.

Cookies can originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services of third-party companies within websites (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. for displaying videos). Other cookies may be used to evaluate user behaviour or for advertising purposes.

Cookies that are necessary to carry out the electronic communication process, to provide certain functions you have requested or to optimise the website (e.g. cookies to measure web audience) (necessary cookies) are stored on the basis of Art. 6 (1) lit. f DSGVO, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimised provision of its services. If consent to the storage of cookies and comparable recognition technologies has been requested, the processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG); the consent can be revoked at any time.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

We only use the following cookies on this website:

Services

We only use the following services on this website:

Cookie Banners and Cookie Consent Tools

As described in this statement, we only use technically necessary cookies and services on this website. This website does not use cookies for advertising or tracking purposes. This means that it is not legally necessary to use a cookie banner or a cookie consent tool. Nevertheless, we inform visitors to our website about the situation by means of a cookie banner and refer to our data protection declaration there.

Table of Contents

5. Hosting

We host the contents of our website with the following provider:

Strato

The provider is Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin (hereinafter "Strato"). When you visit our website, Strato collects various log files including your IP addresses for a limited period of time in order to detect and defend against attacks. According to Strato, the following log data is collected during this process: Client domain, Anonymised client IP, Request line, Timestamp, Status code, Response body size, Referer sent by client, User agent sent by client, Remote user. You can find a more detailed explanation of the data elements at Strato at https://www.strato.de/blog/dsgvo-logfiles. To detect attacks, Strato stores non-anonymised IP addresses for a maximum of seven days. After that, they are irrevocably anonymised. However, customers, including IIC-AM GmbH, can view IP addresses anonymised exclusively and permanently. Strato relies on the legal basis of legitimate interests, Art. 6 para. 1 lit. f DSGVO.

For further information, please refer to Strato's privacy policy: https://www.strato.de/datenschutz/.

The use of Strato on our part is also based on Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in ensuring that our website is presented as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

Order processing

We have concluded a contract on order processing (AVV) for the use of the above-mentioned service. This is a contract required by data protection law, which ensures that this service only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.

Table of Contents

6. Further

Changes to our privacy policy

We reserve the right to adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection statement will then apply to your next visit.

Status of this version: 01.02.2023.

This data protection declaration was created with the help of https://www.datenschutzerklaerung.de and has been revised and supplemented.

Table of Contents