Privacy Policy
Data protection information
We welcome you to our website and appreciate your interest in our company. The protection of your personal data is important to us. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the EU General Data Protection Regulation (EU GDPR) and the country-specific implementation laws applicable to our company.
Our privacy policy explains what personal data we collect from you via our website, what we use it for, when we delete it and how your data is protected in the best possible way by security measures. We also inform you of the respective legal basis that allows us to process the data in question.
You will also be informed of your statutory rights in connection with the processing of this data.
Personenbezogene Daten sind diejenigen Informationen, die eine Identifizierung einer natürlichen Person möglich machen. This includes, in particular, name, date of birth, address, telephone number, e-mail address, but also your IP address.
Anonymous data exists if no personal reference to the user can be established.
The responsible body within the meaning of data protection law is
Novaco Invest GmbH Dillberg 14 97828 Marktheidenfeld
Please send your inquiries, complaints and notifications to the e-mail address info@novaco-invest.com
First of all, we would like to take this opportunity to inform you of your rights as a data subject. These rights are standardized in Art. 15 – 22 EU GDPR. This includes:
– The right of access (Art. 15 EU GDPR),
– The right to erasure (Art. 17 EU GDPR),
– The right to rectification (Art. 16 EU GDPR),
– The right to data portability (Art. 20 EU GDPR),
– The right to restriction of data processing (Art. 18 EU GDPR),
– The right to object to data processing (Art. 21 EU GDPR).
To assert these rights, please contact:
Novaco Invest GmbH Dillberg 14 97828 Marktheidenfeld
info@novaco-invest.com
The same applies if you have any questions about data processing in our company or wish to withdraw your consent. You also have the right to lodge a complaint with a data protection supervisory authority.
Rights of objection
Please note the following in connection with rights of objection:
If we process your personal data for the purpose of direct advertising, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling insofar as it is associated with direct advertising.
If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made informally, if possible to:
Novaco Invest GmbH Dillberg 14 97828 Marktheidenfeld
info@novaco-invest.com
In the event that we process your data to protect legitimate interests, you can object to this processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions.
We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves the establishment, exercise or defense of legal claims.
Disclosure to third parties
We will only pass on your data to third parties within the framework of the statutory provisions or with the appropriate consent. Otherwise, your data will not be passed on to third parties unless we are obliged to do so due to mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).
Recipients of the data / categories of recipients
Within our company, we ensure that only those persons receive your data who need it to fulfill their contractual and legal obligations.
In certain cases, service providers support our specialist departments in the fulfillment of their tasks. The necessary data protection contracts have been concluded with all service providers.
Transfer to third countries / intention to transfer to third countries
Data is only transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual relationship, is required by law or if you have given us your consent to do so.
We do not (currently) transfer your personal data to any service providers or group companies outside the European Economic Area.
Storage duration of the data
We store your data for as long as it is required for the respective processing purpose. Please note that numerous retention periods require that data (must) continue to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further retention obligations, the data is routinely deleted once the purpose has been achieved.
In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the scope of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.
Obligation to provide the data
Various personal data are necessary for the establishment, execution and termination of the contractual relationship and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.
We have summarized the details for you in the point above. In certain cases, data must also be collected or made available due to legal provisions. Please note that it is not possible to process your request or perform the underlying contractual relationship without providing this data.
Data collection / personal data
Which data we process is determined by the respective context: this depends on whether you visit our website or enter an inquiry in our contact form, for example.
Please note that we may also provide information for special processing situations separately in a suitable place, e.g. in the case of a contact request.
We collect and process the following data when you visit our website:
- Web browser and operating system used
- Name of the internet service provider
- Information about the website from which you are visiting us
- Information about the websites you visit on our site, the date and time of your visit
- Name of the requested file, e.g. whether the file was transferred, amount of data transferred
- The IP address assigned by your internet service provider
For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us in accordance with Art. 6 para. 1 lit. f EU-GDPR. After seven days at the latest, the data is anonymized by shortening the IP address at domain level. No reference is made to the individual user. The data is only processed in anonymized form for statistical purposes.
Further data collection
All personal data that we obtain from you via the website will only be processed for the purposes described in more detail below. This is done in accordance with the relevant legal provisions or only with your consent.
In particular, Art. 6 EU GDPR specifies when data processing is permitted. This specifies constellations when data processing is permitted.
This is the case, for example, if
- you have given your consent (Art. 6 para. 1 lit. a EU GDPR),
- the data is required to fulfill a contract / pre-contractual measures (Art. 6 para. 1 lit. b EU-GDPR),
- the data is necessary for compliance with a legal obligation (Art. 6 para. 1 lit. c EU GDPR) or
to safeguard the legitimate interests of our company, provided that your interests worthy of protection do not outweigh these (Art. 6 para. 1 lit. f EU GDPR). - The personal data collected will of course be treated confidentially. In our company, only authorized persons have access to your data who are involved in technical, commercial, editorial or customer administration support.
We will only pass on your data to third parties within the framework of the statutory provisions or with the appropriate consent, or we will not pass on your data to third parties unless we are obliged to do so due to mandatory legal provisions.
Kontaktformular / Kontaktaufnahme per E-Mail (Rechtsgrundlage Art. 6 Abs. 1 lit. a, b EU-DS-GVO)
Contact form / contact by e-mail (legal basis Art. 6 para. 1 lit. a, b EU-GDPR)
There is a contact form on our website that can be used to contact us electronically. If you write to us via the contact form, we will process the data you provide in the contact form to contact you and answer your questions and requests.
The principle of data minimization and data avoidance is observed in that you only have to provide the data that we absolutely need to contact you. This is your e-mail address and the message field itself. In addition, your IP address is processed for technical reasons and for legal protection. All other data are voluntary fields and can be provided optionally (e.g. to answer your questions more individually).
We collect and process the following data as part of a contact request:
– Surname, first name
– contact details
– Information on wishes and interests
If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your request; no further data will be collected.
Automated decision-making including profiling in accordance with Art. 22 (1) and (4) EU GDPR
No automated processes are used to find out more about your interests or purchasing behavior, for example, on the basis of personal data (so-called profiling).
We do not use any purely automated processing procedures to reach a decision.
Cookies (Art. 6 para. 1 lit. f EU-GDPR or Art. 6 para. 1 lit. a EU-GDPR with consent, § 25 para. 1,2 TDDDG)
Our website uses so-called cookies in several places. They serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser (locally on your hard disk).
Most of the cookies we use are so-called “session cookies”. These are automatically deleted after your visit. Permanent cookies are automatically deleted from your computer when they expire (usually six months) or you delete them yourself before they expire.
They use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.
Due to our legitimate interest (Art. 6 para. 1 lit. f GDPR), we set technically necessary cookies, which are absolutely necessary for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent if their sole purpose is to store or access information stored in the terminal device for the transmission of messages or if they are absolutely necessary to provide the service you have expressly requested, Section 25 (2) TDDDG.
Most web browsers accept cookies automatically. However, you can usually change your browser settings if you prefer not to send the information. You can then still use the services on our website without any restrictions.
Cookies are stored on the user’s computer and transmitted by it to our website. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers.
Please note: If you deactivate the setting of cookies, you may not be able to use all the functions of our website to their full extent.
Secure transmission of your data
We use appropriate technical and organizational security measures to protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, always using the latest encryption protocols.
It is of course also possible to use alternative communication channels (e.g. by post).
Online services for children
Children and persons under the age of 16 may not transmit any personal data to us or submit a declaration of consent without the consent of their legal guardians (usually their parents). We would like to encourage parents and legal guardians to actively participate in the online activities and interests of their children.
Links to other providers
Our website also contains – clearly recognizable – links to the websites of other companies.