Privacy

We appreciate your visit to our website www.holert.com and your interest in our company.

The protection of your personal data, such as your date of birth, name, telephone number, address, etc., is very important to us.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

Responsible

The responsible party within the meaning of Art. 4 No. 7 GDPR is the party who, alone or jointly with others, decides on the purposes and means of processing personal data.

With regard to our website, the responsible party is:

Holert GmbH

Luise-Ullrich-Straße 20

80636 Munich

Germany

Email: info@holert.com

Tel: +49 89 599974700

Contact details of the data protection officer

We have appointed a data protection officer in accordance with Art. 37 GDPR. You can contact our data protection officer using the following contact details:

Dr. Jochen Notholt (lawyer)

Lindwurmstr. 10

80337 Munich

Germany

Email: inbox@comp-lex.de

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device used to access it (e.g., computer, mobile phone, tablet, etc.).

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used;

(2) The operating system of the accessing device;

(3) Host name of the accessing computer;

(4) The IP address of the accessing device;

(5) Date and time of access;

(6) Websites and resources (images, files, other page content) accessed on our website;

(7) Websites from which the user's system accessed our website (referrer tracking);

(8) Notification of whether the access was successful;

(9) Amount of data transferred

This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Art. 6 (1) (f) GDPR (legitimate interest). Our legitimate interest is to ensure that the purpose described below is achieved.

Purpose of data processing

The temporary (automated) storage of data is necessary for the process of visiting a website in order to enable the website to be delivered. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat misuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as quickly as possible to display errors, attacks on our IT systems, and/or errors in the functionality of our website. In addition, the data is used to optimize the website and to generally ensure the security of our information technology systems.

Duration of storage

The aforementioned technical data will be deleted as soon as it is no longer needed to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Right to object and right to erasure

You can object to the processing at any time in accordance with Art. 21 GDPR and request the deletion of data in accordance with Art. 17 GDPR. You can find out what rights you have and how to exercise them in the lower section of this privacy policy.

Special functions of the website

Our site offers you various functions, the use of which requires us to collect, process, and store personal data. Below, we explain what happens to this data:

Contact form(s)

What personal data is collected and to what extent is it processed? We will process the data you enter in our contact forms, which you have entered in the input mask of the contact form, for the purpose stated below.
Legal basis for the processing of personal data: Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent through clear affirmative action or behavior or express consent).
Purpose of data processingWe will only use the data collected via our contact form or contact forms to process the specific contact request received via the contact form.
Duration of storage After processing your request, the collected data will be deleted immediately, unless there are legal retention periods.
Right of revocation and deletion The right of revocation and deletion is based on the general provisions on the right of revocation and deletion under data protection law described below in this privacy policy.
Necessity of providing personal data The use of the contact forms is voluntary and is not required by contract or law. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must fill in the fields marked as mandatory. If you do not fill in the necessary information on the contact form, you will either not be able to send the request, or we will unfortunately not be able to process your request.

Statistical evaluation of visits to this website - web tracker

When you visit this website or individual files on the website, we collect, process, and store the following data: IP address, website from which the file was accessed, file name, date and time of access, amount of data transferred, and notification of the success of the access (so-called web log). We use this access data exclusively in non-personalized form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to evaluate visits to this website:

Custom AudiencesWe use the Custom Audiences service provided by Meta Platforms Ireland Ltd., Merrion Road, D04 X2K5 Dublin 4, Ireland, email: impressum-support@support.facebook.com, website: http://facebook.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ) . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Facebook Custom Audience is an advertising tool from Facebook that can be used to target advertising campaigns at website visitors. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/privacy/policy/. The provider also offers an opt-out option at https://www.facebook.com/privacy/policy/.
Facebook Connect We use the Facebook Connect service from Meta Platforms Ireland Ltd., Merrion Road, D04 X2K5 Dublin 4, Ireland, email: impressum-support@support.facebook.com, website: http://www.facebook.com/ on our site. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ) . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Facebook Connect allows users to use their Facebook profile to simplify registration with other web services. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/privacy/policy/. The provider also offers an opt-out option at https://www.facebook.com/privacy/policy/.
GoogleWe use the Google service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. We use Google to be able to load additional Google services on the website. The service is used to provide additional Google services, such as the data processing required for the provision of streams and fonts and relevant content from Google Search. It is technically necessary in order to exchange the information about the website visitor already available to Google between Google services and to provide the website visitor with individual content tailored to their Google account. For processing itself, the service or we collect the following data: background data stored in the Google user account or other Google services about the site visitor, background data for the provision of Google services such as streaming data or advertising data, data about the site user's interaction with Google Search, information about the device used, the user's IP address and browser, and other data from Google services for the provision of Google services related to our website. If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transfer and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads, and Google Fonts in accordance with Google's privacy policy. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
Google AdsWe use the Google Ads service from Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Google Ads is an advertising system that allows us to place advertisements on external websites on the Internet to inform our customers about our services. Google Ads displays advertisements on external websites that are individually tailored to our customer base according to parameters set by us and that lead to our website. If the visitor to the site clicks on the Google Ads advertisement, they will be taken to our website. In order to measure the success and remuneration of Google Ads advertisements, Google Ads measures the success of the advertising campaign when our website is accessed. Our website processes the data provided by Google Ads in order to analyze and improve our advertising measures and to calculate any remuneration that may be due. With your consent, your data may also be used for remarketing purposes. For the processing itself, the service or we collect the following data: data on the advertising interests of site visitors, interactions of site visitors with advertising in relation to our website, data about visits to our website by site visitors who have previously clicked on Google Ads advertising and arrived at our website, data about the device used, the IP address and browser of the user, and other data from Google services for the provision and refinement of Google advertising in relation to our website. If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the necessary data. In the context of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using Google Ads on our website, Google may transmit and process information from other Google services in order to provide background services for the improvement and customization of Google advertising. For this purpose, data may also be processed by other Google services such as Google APIs, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform, and Google Fonts in accordance with Google's privacy policy under Google's own responsibility for data protection. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. Further information on the responsible handling of business data can be found at https://business.safety.google/privacy/. You can revoke your consent at any time. You can find more detailed information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
Google AnalyticsWe use the Google Analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/, on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ) . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Google Analytics is a web tracker that analyzes the behavior of site visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behavior of site users. To this end, Google collects the page interactions of site visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that enable the tracking of individual site visitors and their interaction with other Google services, such as the Google Ads advertising network. Data from other Google services is also used to close data gaps and generate comprehensive statistics on the content of our website using machine learning technologies, modeled statistics, and forecasting functions. If Google Analytics is active on our website, the data collected by Google Analytics is transferred to servers belonging to Google Ireland Limited. As part of order processing, personal data may also be transferred to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. We carry out the analysis using Google Analytics in order to continuously optimize our website and make it more accessible. This is a so-called reach measurement. For the processing itself, the service or we collect the following data: Data on the interactions of site visitors with the content of the website, data on the use of the services presented on our website, data from external Google services, provided they interact with our website, such as advertising data or data on behavior in relation to advertising, data on the approximate geographical origin, the browser used, operating system, and other information about the device used. Google Analytics will store the data relevant for web tracking for as long as is necessary to fulfill the booked web service. Data collection and storage is anonymous. If individual interactions by site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data once the purpose has been achieved. The data will be deleted at the latest when it is no longer subject to any legal retention obligations. As a rule, we will delete this data after 12 months at the latest. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.
Google Analytics (Google Signals) We use the Google Analytics (Google Signals) service provided by Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Google Analytics is a web tracker that analyzes the behavior of site visitors and their interactions with our website and provides us with evaluations and forecasts about the content and products of our website and their popularity (so-called tracking). We have integrated Google Analytics so that the service can compile an analysis of the surfing behavior of site users. To this end, Google collects the page interactions of site visitors with our website and, if applicable, existing information resulting from the reading of cookies or other storage technologies and prepares it statistically for us. Google Analytics uses data processing technologies that enable the tracking of individual site visitors and their interaction across devices and sessions with other Google services, such as the Google Ads advertising network. Data from other Google services is also used to close data gaps and create comprehensive statistics on the content of our website using machine learning technologies, modeled statistics, and forecasting functions. If Google Analytics is active on our website, the data collected by Google Analytics is transferred to servers belonging to Google Ireland Limited. In the context of order processing, personal data may also be transferred to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. Personal data is also transferred to the USA. We use Google Analytics to analyze our website in order to continuously optimize it and make it more accessible. This is known as reach measurement. For the processing itself, the service or we collect the following data: data on the interactions of site visitors with the content of the website, data on the use of the services presented on our website, data from external Google services, insofar as they interact with our website, such as advertising data or data on behavior in relation to advertising, data on the approximate geographical origin, the browser used, operating system, and other information about the device used, across devices and sessions if applicable. Google Analytics will store the data relevant for the provision of web tracking for as long as is necessary to fulfill the booked web service. Data collection and storage is anonymized. If individual interactions by site visitors make it possible to subsequently establish a personal reference to specific actions, we will delete the collected data once the purpose has been achieved. The data will be deleted at the latest when it is no longer subject to any legal retention obligations. As a rule, we will delete this data after 12 months at the latest. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=de.
Google Tag Manager We use the Google Tag Manager service from Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. Google Tag Manager provides a technical platform for executing other web tools and web tracking programs using so-called “tags” and controlling them in a bundled manner. In this context, Google Tag Manager stores cookies on your computer and, insofar as web tracking tools are executed using Google Tag Manager, analyzes your surfing behavior (so-called “tracking”). The data generated by the “tags” is merged, stored, and processed by Google Tag Manager under a uniform user interface. All integrated ‘tags’ are listed separately in this privacy policy. When you use our website with Google Tag Manager “tags” activated, data such as your IP address and user activities are transmitted to Google's servers. The tracking tools used in Google Tag Manager ensure that the IP address is anonymized by Google Tag Manager before transmission through IP anonymization of the source code. Tag Manager allows the measurement values of various service providers (Google and third-party providers) to be linked and evaluated on the basis of so-called tag management. Google Tag Manager helps us compile reports on website activity and control the web tools on our website. For processing purposes, the service or we collect the following data: cookies, web tracking data, outgoing or incoming links, information generated during the integration and activation of JavaScript code on the website by Google Tag Manager and the web tools triggered by Google Tag Manager. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy. The provider also offers an opt-out option at https://policies.google.com/privacy.
Microsoft Clarity We use the Microsoft Clarity service from Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, 18 Dublin, Ireland, email: kunden@microsoft.com, website: https://www.microsoft.com/de-de on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. The service enables us to analyze user behavior. This allows us to make our website more attractive and improve the user experience. You can view the certification of the parent company Microsoft within the framework of the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://privacy.microsoft.com/de-de/privacystatement.

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, so-called web services. When you visit our website, these external providers may receive personal information about your visit to our website. In this case, data may be processed outside the EU. You can prevent this by installing a corresponding browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on the websites you visit.

We use the following external web services:

Font AwesomeWe use the Font Awesome service from Fonticons Inc., 6 Porter Road, Apartment 3R, MA 02140 Cambridge, United States, email: hello@fontawesome.com, website: https://fontawesome.com/, on our website. The transfer also takes place to a third country for which there is no adequacy decision by the Commission. Therefore, the level of protection customary for the GDPR cannot be guaranteed during the transfer, as it cannot be ruled out that authorities in the third country, for example, may have access to the collected data. The legal basis for the processing of personal data is your consent in accordance with Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. The Font Awesome service is used to load fonts on our website in order to display the site in a visually improved version. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://fontawesome.com/privacy.
HubSpot Forms by HubSpot We use the HubSpot Forms by HubSpot service from HubSpot, Inc, 25 First Street, 2141 Cambridge, United States, email: privacy@hubspot.com, website: https://www.hubspot.de/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d -4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent in accordance with Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. With the help of hsforms, we can easily provide you with surveys and forms on our website. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.hubspot.com/de/privacy-policy.
Hubspot We use the Hubspot service from HubSpot, Inc., 25 First Street, 2141 Cambridge, United States, email: hubspotgermany@hubspot.com, website: https://www.hubspot.de/, on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. HubSpot is a CRM platform for marketing, sales, and service. The service provides us with tools for social media marketing, content management, web analytics, customer service, and search engine optimization, among other things. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.hubspot.com/de/privacy-policy.
Hubspot Cookie BannerWe use the Hubspot Cookie Banner service from Hubspot, Inc., 25 First Street, 2141 Cambridge, United States, email: privacy@hubspot.com, on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d -4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, meaning that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing is Art. 6 (1) (c) GDPR. The use of the service helps us to comply with our legal obligations. The service integrates a cookie banner on our website, which enables us to fulfill our legal obligations. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can find out what rights you have with regard to processing at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://legal.hubspot.com/de/privacy-policy.
LinkedInWe use the LinkedIn service provided by LinkedIn Ireland Unlimited Company, Wilton Place, 2 Dublin, Ireland, email: info_impressum@cs.linkedin.com, website: https://www.linkedin.com/, on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). . The operator of the service is certified under the DPF, so that the usual level of protection under the GDPR applies to the transfer. The legal basis for the processing of personal data is your consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our website. When using the LinkedIn plugin, we establish a connection to the LinkedIn platform to enable LinkedIn members who are logged in to interact with us. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You can find more information on revoking your consent either in the consent form itself or at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy. The provider also offers an opt-out option at https://www.linkedin.com/help/linkedin/answer/68763?lang=de.
ProvenexpertWe use the Provenexpert service from Expert Systems AG, Quedlinburger Straße 1, 10589 Berlin, Germany, on our website. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. Provenexperts.com aggregates rating information from several portals on our website. With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.provenexpert.com/de-de/datenschutzbestimmungen/. The provider also offers an opt-out option at https://www.provenexpert.com/de-de/datenschutzbestimmungen/.
Legal text snippet and modules We use the legal text snippet and modules service provided by Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, email: support@website-check.de, website: https://www.website-check.de/ on our website. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing is Art. 6 (1) lit. c GDPR. The use of the service helps us to comply with our legal obligations. With the help of the service, the content of our legal texts is reloaded on our website. The current legal texts are reloaded via the integration on our website. This integration may also allow additional technical modules to be loaded with regard to the legal texts or legally required elements. You can find out what rights you have with regard to processing at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.
Website Check Seal We use the Website Check Seal service provided by Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, email: support@website-check.de, website: https://www.website-check.de/, on our website. Personal data is transmitted exclusively to servers in the European Union. The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. The Website-Check GmbH script involves the technical integration of the Website-Check Seal. With this seal, we want to show that we take the issue of data protection very seriously. Data is transferred to Website-Check GmbH for the delivery and display of the seal on our site. With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy. Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.
Social plug-in – “Facebook by META”
- What personal data is collected and to what extent is it processed? We have integrated a social plug-in from the social network “Facebook by META” into our website, which is operated by Meta Platforms Ireland Ltd., Merrion Road, D04 X2K5 Dublin 4, Ireland, email: impressum-support@support.facebook.com, website: http://www.facebook.com/ (“Facebook by META”). When you visit a page that contains such a plug-in, your browser automatically establishes a background connection to the Facebook by META servers. The content of the plug-in is transmitted directly from Facebook by META to your browser and only integrated into our site. Through this integration, Facebook by META receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a Facebook by META profile or are not currently logged in to Facebook by META. This information (including your IP address) is transmitted directly from your browser to a Facebook by META server in Ireland and stored there. If you are logged in to Facebook by META, Facebook by META can immediately associate your visit to our website with your Facebook by META profile. If you interact with the plug-ins, for example by clicking the “Like” button or posting a comment, this information is also transmitted directly to a Facebook by META server and stored there. The information is also published on your Facebook by META profile and displayed to your Facebook by META contacts who you have enabled for this purpose.
- Legal basis for the processing of personal data: Art. 6 (1) (a) GDPR (if you have registered with Facebook by META) and Art. 6 (1) (f) GDPR (if you have not registered with Facebook by META). . Insofar as processing is based on Art. 6 (1) (f) GDPR, the legitimate interest of the website operator is to enable users to interact with the website operator's content on Facebook by META.
- Purpose of data processing The primary purpose of data collection is to offer you a social interaction option linked to Facebook by META and thus make our website interactive. The scope of data collection and the further processing and use of the data you provide by Facebook by META, as well as your rights and settings options for protecting your privacy, can be found in the Facebook by META privacy policy: https://www.facebook.com/privacy/policy/
- Duration of storage Facebook by META will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.
- Right to object and deleteIf you do not want the social plug-in from Facebook by META to be executed, you can also prevent this by installing a corresponding add-on or script blocker. If you do not want Facebook by META to assign the data collected via our website to your Facebook by META profile, you must log out of Facebook by META before visiting our website. The options for objection and deletion are otherwise based on the general provisions on the right to object and the right to deletion under data protection law described below in this privacy policy.
Social plug-in – “X (formerly Twitter)”
- What personal data is collected and to what extent is it processed? We have integrated a social plug-in from the social network “X (formerly Twitter)” into our website, which is operated by X Corp., 1355 Market Street, Suite 900, 94103 San Francisco California, United States, email: de-support@twitter.de, website: https://twitter.com/de (“X (formerly Twitter)”). When you visit a page that contains such a plug-in, your browser automatically establishes a background connection to the servers of X (formerly Twitter). The content of the plug-in is transmitted directly from X (formerly Twitter) to your browser and only integrated into our site. Through this integration, X (formerly Twitter) receives the information that your browser has loaded a specific page of our website. This also applies if you do not have an X (formerly Twitter) profile or are not currently logged in to X (formerly Twitter). This information (including your IP address) is transmitted directly from your browser to a server of X (formerly Twitter) in the United States and stored there. If you are logged in to X (formerly Twitter), X (formerly Twitter) can immediately associate your visit to our website with your X (formerly Twitter) profile. If you interact with the plug-ins, for example by clicking the “Like” button or posting a comment, this information is also transmitted directly to a server of X (formerly Twitter) and stored there. The information is also published on your X (formerly Twitter) profile and displayed to your X (formerly Twitter) contacts who you have enabled for this purpose.
- Legal basis for the processing of personal data: Art. 6 (1) (a) GDPR (if you have registered with “X (formerly Twitter)”) and Art. 6 (1) (f) GDPR (if you have not registered with X (formerly Twitter)). Insofar as processing is based on Art. 6 (1) (f) GDPR, the legitimate interest of the site operator is to enable users to interact with the site operator's content on X (formerly Twitter).
- Purpose of data processing The primary purpose of data collection is to offer you a social interaction option linked to X (formerly Twitter) and thus make our website interactive. The scope of data collection and the further processing and use of the data you leave behind by X (formerly Twitter), as well as your rights in this regard and setting options for protecting your privacy, can be found in the privacy policy of X (formerly Twitter): https://x.com/de/privacy
- Duration of storage X (formerly Twitter) will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.
- Right to object and delete If you do not want the social plug-in from X (formerly Twitter) to be executed, you can also prevent this by installing a corresponding add-on or script blocker. If you do not want X (formerly Twitter) to assign the data collected via our website to your X (formerly Twitter) profile, you must log out of X (formerly Twitter) before visiting our website. The options for objection and removal are otherwise based on the general provisions on the right to object and the right to erasure under data protection law described below in this privacy policy.

Information about the use of cookies

What personal data is collected and to what extent is it processed? We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. Cookies are small text files that your browser can store on your access device. These text files contain a characteristic string of characters that uniquely identifies your browser when you return to our website. The process of storing a cookie file is also referred to as “setting a cookie.” Cookies can be set by the website itself as well as by external web services. Cookies are set by our website or external web services to maintain the full functionality of our website, improve user-friendliness, or pursue the purpose specified with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g., individual or random IDs, so that we can offer more personalized services. Details are listed in the following table.
Legal basis for the processing of personal data: Insofar as cookies are processed on the basis of consent in accordance with Art. 6 (1) (a) GDPR, this consent also applies as consent within the meaning of § 25 (1) TDDDG for the setting of cookies on the user's end device. If another legal basis is specified in accordance with the GDPR (e.g., for the fulfillment of a contract or to comply with legal obligations), the storage or setting of cookies is based on an exception in accordance with Section 25 (2) TDDDG. This is the case “if the sole purpose of storing information in the end user's terminal equipment or the sole purpose of accessing information already stored in the end user's terminal equipment is to carry out the transmission of a message via a public telecommunications network” or “if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is strictly necessary for the provider of a digital service to be able to provide a digital service expressly requested by the user.” The relevant legal basis is set out in the cookie table listed later in this section.
Purpose of data processing Cookies are set by our website or external web services to maintain the full functionality of our website, improve user-friendliness, or pursue the purpose specified with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g., individual or random IDs, so that we can offer more personalized services. Details are listed in the following table.
Duration of storageOur cookies are stored until they are deleted in your browser or, in the case of session cookies, until the session has expired. Details are listed in the table below.
Option to object and delete You can set your browser according to your preferences so that cookies are generally prevented from being set. You can then decide on a case-by-case basis whether to accept cookies or accept cookies in principle. Cookies can be used for various purposes, e.g., to recognize that your access device is already connected to our website (permanent cookies) or to store recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

__cf_bm .twitter.com X (formerly Twitter) Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information used to calculate Cloudflare's proprietary bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (except for time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 (1) (f) GDPR (legitimate interests) approx. 30 minutes Security

__cf_bm .hubapi.com, .hsadspixel.net, .hubspot.com, .hsappstatic.net, .hsforms.net, .hubspot.net, .hubspotusercontent-na1.net, .hs-sites.com, .hs-analytics.net, .www.holert.com, .hubspotvideo.com, .hs-scripts.com Hubspot Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information used to calculate Cloudflare's proprietary bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (except for time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 (1) (f) GDPR (legitimate interests) approx. 31 minutes Security

__cf_bm .hs-banner.com Hubspot cookie banner Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information used to calculate Cloudflare's proprietary bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 (1) (f) GDPR (legitimate interests) Approx. 31 minutes Security

__cf_bm .hubspotusercontent.com, .hs-scripts.com, .hubspot.net, .www.holert.com, .hsforms.net, .allocatus.holert.com, .hubspotusercontent-na1.net, .hubspot.com, .hubspot-logos.com Website operator Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information used to calculate Cloudflare's proprietary bot score and, if anomaly detection is enabled in Bot Management, a session identifier. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 (1) (f) GDPR (legitimate interests) approx. 30 minutes Security

__cf_bm .hsforms.com HubSpot Forms by HubSpot Cloudflare places the __cf_bm cookie on end-user devices that access customer websites protected by Bot Management or Bot Fight Mode. The __cf_bm cookie is necessary for these bot solutions to function properly. The cookie contains information used to calculate Cloudflare's own bot score and, if anomaly detection is enabled in bot management, a session ID. The information in the cookie (with the exception of time-related information) is encrypted and can only be decrypted by Cloudflare. Art. 6 para. 1 lit. f GDPR (legitimate interests) approx. 31 minutes Security

__hs_cookie_cat_pref .holert.com Website operator We use the cookie to store the cookie preferences of our site visitors and to ensure that only cookies are set and processed on our site for which the site visitor has consented to data processing. Art. 6 (1) (c) GDPR (compliance with legal obligations) approx. 6 months Cookie banner

__hssc .holert.com Hubspot This cookie stores the domain, the number of visitors, and the time when the visits began. It thus determines whether the number of sessions needs to be increased. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) Approx. 30 minutes Analytics

__hssrc .holert.com Hubspot This cookie measures whether the visitor has restarted their browser and thus determines whether there is a new website visit. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) Session configuration

__hstc .holert.com Hubspot This cookie stores the domain, user token, time of first, last, and current visit, and number of sessions on the site. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) approx. 6 months Analytics

_cfuvid .hubspot.com, .www.holert.com Hubspot This cookie is part of the services offered by Cloudflare, including load balancing, website content delivery, and DNS connections for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) Session Configuration

_cfuvid .hsforms.com HubSpot Forms by HubSpot This cookie is part of the services offered by Cloudflare, including load balancing, website content delivery, and DNS connection provision for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR (consent) Session Configuration

_cfuvid .www.holert.com, .allocatus.holert.com Website operator This cookie is part of the services offered by Cloudflare, including load balancing, website content delivery, and DNS connection provision for website operators. It is used for rate limiting to distinguish individual users who share the same IP address. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) Session Configuration

_fbp .com, .holert.com Facebook Connect Facebook uses this cookie to display advertising products and assign advertising clicks to a user. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) Approx. 3 months Marketing

_ga holert.com Google Analytics This cookie assigns an ID to a user so that the web tracker can summarize the user's actions under this ID. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 24 months Analytics

_ga_ holert.com Google Analytics This cookie stores a unique ID for a website visitor in connection with Google Analytics or Google Tag Manager and tracks how the visitor uses the website. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 24 months Analytics

_gcl_au holert.com Google Tag Manager This cookie is used by Google AdSense to increase the efficiency of advertising. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 3 months Marketing

bscookie .linkedin.com LinkedIn The cookie used assigns an ID to the site visitor and collects statistical data on the site visitor's website visits. This serves to personalize the advertising displayed to the user. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 12 months Marketing

hubspotutk .holert.com Hubspot This cookie is used by HubSpot to track website visitors. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 6 months Analytics

li_gc .linkedin.com LinkedIn This cookie stores guests' consent to the use of non-essential cookies. Art. 6 (1) (c) GDPR (compliance with legal obligation) approx. 6 months Cookie banner

lidc .linkedin.com LinkedIn This cookie assigns an ID to the site visitor. This ID is used to collect data on visitor behavior on multiple websites in order to display personalized advertising to the site visitor. Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) approx. 24 hours Marketing

test_cookie .doubleclick.net Website operator This cookie is set to determine whether the website visitor's browser supports cookies for the Doubleclick service. Art. 6 (1) (c) GDPR (fulfillment of legal obligation) approx. 15 minutes Cookie banner

Data security and data protection, communication by email

Your personal data is protected by technical and organizational measures during collection, storage, and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by email, we cannot guarantee complete data security during transmission to our IT systems, so we recommend encrypted communication or postal mail for information that requires a high level of confidentiality.

Right to information and requests for correction – Deletion & restriction of data – Revocation of consent – Right to object

Right to information

You have the right to request confirmation as to whether we process your personal data. If this is the case, you have the right to information specified in Art. 15 (1) GDPR, provided that the rights and freedoms of other persons are not affected (cf. Art. 15 (4) GDPR). We will also be happy to provide you with a copy of the data.

Right to rectification

In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data (such as your address, name, etc.) stored by us corrected at any time. You can also request that the data stored by us be completed at any time. Any necessary adjustments will be made immediately.

Right to erasure

Pursuant to Art. 17 (1) GDPR, you have the right to have us erase the personal data collected about you if

the data is no longer required;
the legal basis for processing has ceased to apply without replacement due to the withdrawal of your consent;
you have objected to the processing and there are no legitimate reasons for the processing;
your data is being processed unlawfully;
a legal obligation requires this or collection has taken place in accordance with Art. 8 (1) GDPR.

According to Art. 17 (3) GDPR, this right does not apply if

the processing is necessary for the exercise of the right to freedom of expression and information;
your data has been collected on the basis of a legal obligation;
the processing is necessary for reasons of public interest;
the data is necessary for the assertion, exercise, or defense of legal claims.

Right to restriction of processing

Pursuant to Art. 18 (1) GDPR, you have the right to request the restriction of the processing of your personal data in individual cases.

This is the case if

the accuracy of the personal data is disputed by you;
the processing is unlawful and you do not consent to erasure;
the data is no longer required for the processing purpose, but the collected data serves to assert, exercise, or defend legal claims;
an objection to the processing has been lodged in accordance with Art. 21 (1) GDPR and it is still unclear which interests prevail.

Right of revocation

If you have given us your express consent to the processing of your personal data (Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

Right to object

Pursuant to Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 (1) (f) (within the scope of a legitimate interest). You are only entitled to this right if there are special circumstances that speak against the storage and processing of your data.

How can you exercise your rights?

You can exercise your rights at any time by contacting us using the contact details below:

Holert GmbH

Luise-Ullrich-Straße 20

80636 Munich

Germany

Email: info@holert.com

Tel.: +49 89 599974700

Right to data portability

According to Art. 20 GDPR, you have the right to request the transfer of your personal data. We will provide the data in a structured, commonly used, and machine-readable format. The data can be sent either to you or to a representative designated by you.

Upon request, we will provide you with the following data in accordance with Art. 20 (1) GDPR:

Data collected on the basis of express consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR;
Data that we have received from you in accordance with Art. 6 (1) (b) GDPR within the framework of existing contracts;
Data that has been processed as part of an automated procedure.

We will transfer the personal data directly to a controller of your choice, provided this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons in accordance with Art. 20 (4) GDPR.

Right to lodge a complaint with the supervisory authority in accordance with Art. 77 (1) GDPR

If you suspect that your data is being processed unlawfully on our site, you can of course seek legal clarification of the issue at any time. In addition, you have every other legal option available to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 (1) GDPR. You have the right to lodge a complaint pursuant to Art. 77 GDPR in the EU member state of your place of residence, your place of work, and/or the place of the alleged infringement, i.e., you can choose the supervisory authority to which you wish to lodge your complaint from the above-mentioned locations. The supervisory authority to which the complaint has been lodged will then inform you of the status and results of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Created by:

Privacy Policy

Responsible

Contact details of the data protection officer

Provision of the website and creation of log files

What personal data is collected and to what extent is it processed?

Legal basis for the processing of personal data

Purpose of data processing

Duration of storage

Right to object and right to erasure

Special functions of the website

Contact form(s)

Statistical evaluation of visits to this website - web tracker

Integration of external web services and processing of data outside the EU

Information about the use of cookies

Data security and data protection, communication by email

Right to information and requests for correction – Deletion & restriction of data – Revocation of consent – Right to object

Right to information

Right to rectification

Right to erasure

Right to restriction of processing

Right of revocation

Right to object

How can you exercise your rights?

Right to data portability

Right to lodge a complaint with the supervisory authority in accordance with Art. 77 (1) GDPR