Data protection
Thank you for your interest in the Forghani Negotiations internet portal. The protection of your personal data is very important to us and we want you to feel comfortable and secure when visiting our website and during all other communication processes with us. We therefore take the protection of your data and the applicable legal regulations very seriously. With this data protection declaration we would like to inform you in detail about the handling of your data. The current version of this data protection declaration can be accessed on the website of Forghani Negotiations under the menu item "Data protection declaration".
Definitions:
This data protection declaration is based on the definitions used by the European legislator for the adoption of the General Data Protection Regulation (GDPR) and which are printed in Article 4 of the GDPR.
For the purposes of this Regulation, the term means:
1. "Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified;
2. "Processing" means any process carried out with or without the aid of automated processes or any such series of processes in connection with personal data, such as collection, recording, organisation, ordering, storage, adaptation or modification, reading out, querying, use, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction;
3. "restriction of processing" the marking of stored personal data with the aim of restricting their future processing;
4. "Profiling" any type of automated processing of personal data consisting in using this personal data to evaluate certain personal aspects relating to a natural person, in particular aspects related to work performance, economic situation, health analyze or predict personal preferences, interests, reliability, behavior, location or relocation of that natural person;
5. "Pseudonymization" means the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is stored separately and is subject to technical and organizational measures that ensure that the personal data is not assigned to an identified or identifiable natural person;
6. "file system" means any structured collection of personal data that is accessible according to specified criteria, whether that collection is centralized, decentralized, or organized according to functional or geographic criteria;
7. "Responsible person" means the natural or legal person, public authority, agency or other body that alone or jointly with others decides on the purposes and means of processing personal data; if the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States;
8. "processor" means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller;
9. "Recipient" a natural or legal person, public authority, agency or other body to which personal data are disclosed, whether a third party or not. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients; the processing of this data by said authorities is carried out in accordance with the applicable data protection regulations, according to the purposes of the processing;
10. "Third party" means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct responsibility of the controller or processor, are authorized to process the personal data ;
11. "Consent" of the data subject means any voluntary, informed and unequivocal expression of will in the specific case, in the form of a declaration or other clear affirmative action, with which the data subject indicates that they are consenting to the processing of data concerning them agrees to personal data;
12. "Personal data breach" means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or accessed otherwise processed;
13. "genetic data" means personal data relating to the inherited or acquired genetic characteristics of a natural person, providing unequivocal information about the physiology or health of that natural person and obtained in particular from the analysis of a biological sample of that natural person;
14. "biometric data" means personal data relating to the physical, physiological or behavioral characteristics of a natural person, obtained using special technical processes, which enable or confirm the unique identification of that natural person, such as facial images or dactyloscopic data;
15. “health data” personal data relating to the physical or mental health of a natural person, including the provision of health care services, and revealing information about that state of health;
16. "Main Office"
a) in the case of a controller with establishments in more than one Member State, the location of its head office in the Union, unless the decisions regarding the purposes and means of the processing of personal data are taken in another establishment of the controller in the Union and that establishment is authorized to have these decisions implemented; in this case, the branch making such decisions shall be deemed to be the main branch;
b) in the case of a processor with establishments in more than one Member State, the location of its head office in the Union or, if the processor does not have a head office in the Union, the establishment of the processor in the Union where the processing activities are carried out within the framework of the activities of an establishment of a processor mainly take place insofar as the processor is subject to specific obligations under this regulation;
17. "Representative" a natural or legal person established in the Union who has been appointed in writing by the controller or processor in accordance with Article 27 GDPR and represents the controller or processor in relation to their respective obligations under this Regulation;
18. "Enterprise" means a natural or legal person, regardless of its legal form, engaged in an economic activity, including partnerships or associations regularly engaged in an economic activity;
19. “group of companies” a group consisting of a controlling company and its dependent companies; 20. "binding corporate rules" means personal data protection measures that a controller or processor established in the territory of a Member State undertakes to comply with in respect of data transfers or a category of data transfers of personal data to a controller or processor of the same group of companies or the same group of companies who are engaged in a joint economic activity in one or more third countries;
21. “Supervisory Authority” an independent governmental body established by a Member State pursuant to Article 51 GDPR;
22. “supervisory authority concerned” a supervisory authority affected by the processing of personal data because
a) the controller or the processor is established in the territory of the Member State of that supervisory authority,
b) this processing has or may have significant effects on data subjects residing in the Member State of this supervisory authority or
c) a complaint has been lodged with this supervisory authority;
23. “cross-border processing” either
a) processing of personal data carried out in the course of the activities of establishments of a controller or processor in the Union in more than one Member State, where the controller or processor is established in more than one Member State, or
b) processing of personal data carried out in the course of the activities of a single establishment of a controller or processor in the Union, but which has or may have a significant impact on data subjects in more than one Member State;
24. "relevant and reasoned objection" means an objection to a draft decision as to whether there has been a breach of this Regulation or whether envisaged action against the controller or processor is in accordance with this Regulation, where the scope of the risks is clear from the objection emanating from the draft decision in relation to the fundamental rights and freedoms of data subjects and, where appropriate, the free movement of personal data in the Union;
25. "Information society service" means a service within the meaning of Article 1(1)(b) of Directive (EU) 2015/1535 of the European Parliament and of the Council;
26. "international organization" means an organization under international law and its subsidiary bodies, or any other body created by or on the basis of an agreement concluded between two or more countries.
2. Name and contact details of the data controller
This data protection information applies to data processing by, Responsible: Forghani Negotiations, Owner Foad Forghani, Am alten Sportplatz 6, 61184 Karben-Petterweil, Telephone: +49 (0)6039 934 117 Fax: +49 (0)6039 934 143 Email: info(at)forghani-negotiations.de Web: www.forghani-negotiations.de
VAT ID no. DE 251 323 007.
3. Collection and storage of personal data as well as type and purpose of their use.
a) When visiting the website
When you visit our website http://www.forghani-negotiations.de/, the browser used on your device automatically sends information to our website server. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:
IP address of the requesting computer,
date and time of access,
name and URL of the retrieved file,
Website from which access is made (referrer URL),
Browser used and, if applicable, the operating system of your computer and the name of your access provider.
The data mentioned are processed by us for the following purposes:
Ensuring a smooth connection establishment of the website,
Ensuring comfortable use of our website,
Evaluation of system security and stability as well
for other administrative purposes.
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person.
In addition, we use cookies and analysis services when you visit our website. You can find more detailed explanations in Sections 4 and 5 of this data protection declaration.
When signing up for our newsletter
If you have given your express consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR, we will use your e-mail address to send you our newsletter on a regular basis. Providing an email address is sufficient to receive the newsletter.
You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you can send your unsubscribe request at any time to: info (at) forghani-negotiations.de by e-mail.
When using our contact form
If you have any questions, we offer you the opportunity to contact us using a form provided on the website. It is necessary to provide a valid e-mail address so that we know who sent the request and can answer it. Further information can be provided voluntarily.
Data processing for the purpose of contacting us takes place in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR on the basis of your voluntarily given consent. The personal data collected by us for the use of the contact form will be automatically deleted after the request you have made has been dealt with.
4. Sharing of Data
Your personal data will not be transmitted to third parties for purposes other than those listed below.
We only pass on your personal data to third parties if:
you have given your express consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR,
the transfer according to Article 6 paragraph 1 sentence 1 lit. f GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,
in the event that there is a legal obligation for the transfer according to Art. 6 Para. 1 S. 1 lit
this is legally permissible and required for the processing of contractual relationships with you in accordance with Article 6 (1) sentence 1 lit. b GDPR.
5.Cookies
We use cookies on our site. These are small files that your browser creates automatically and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your end device and do not contain viruses, Trojans or other malware.
Information is stored in the cookie that arises in connection with the specific end device used. However, this does not mean that we are immediately informed of your identity.
On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our site.
In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specific period of time. If you visit our site again to make use of our services, it will automatically be recognized that you have already been with us and what inputs and settings you have made so that you do not have to enter them again.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer (see Section 5). These cookies enable us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined period of time.
The data processed by cookies are required for the stated purposes to protect our legitimate interests and those of third parties in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR.
Most browsers accept cookies automatically. However, you can configure your browser in such a way that no cookies are stored on your computer or that a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.
6. Analysis and Tracking Tools
The tracking measures listed below and used by us are carried out on the basis of Article 6 (1) sentence 1 lit. f GDPR. With the tracking measures used, we want to ensure a needs-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as legitimate within the meaning of the aforementioned provision.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.
i) Google Analytics'
We use Google Analytics, a web analytics service provided by Google Inc. (https://www.google.de/intl/de/about/) (1600 Amphitheater Parkway, Mountain View, CA 94043, USA; hereinafter "Google"). In this context, pseudonymised usage profiles are created and cookies (see Section 4) are used. The information generated by the cookie about your use of this website such as
browser type/version,
operating system used,
referrer URL (the previously visited page),
host name of the accessing computer (IP address),
time of server request,
are transferred to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of these websites. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that an assignment is not possible (IP masking).
You can prevent the installation of cookies by setting the browser software accordingly; we would like to point out to you however that in this case not all functions of this website can be used in full.
You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https: // tools.google.com/dlpage/gaoptout?hl=de).
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link. An opt-out cookie will be set to prevent future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.
Further information on data protection in connection with Google Analytics can be found in the Google Analytics help (https://support.google.com/analytics/answer/ 6004245?hI=de).
ii) Google Adwords Conversion Tracking
We also use Google Conversion Tracking to statistically record the use of our website and to evaluate it for you in order to optimize our website. Google Adwords places a cookie (see section 4) on your computer if you have reached our website via a Google ad.
These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page.
Data protection authorities require the conclusion of an order data processing agreement for the permissible use of Google Analytics. A corresponding template is available from Google at http://www.google.com/analytics/terms/de.pdf
Each Adwords customer receives a different cookie. This means that cookies cannot be tracked via the websites of Adwords customers. The information obtained using the conversion cookie is used to create conversion statistics for Adwords customers who have opted for conversion tracking. The Adwords customers find out the total number of users who clicked on their ad and were forwarded to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.
If you do not want to take part in the tracking process, you can also refuse the setting of a cookie required for this - for example by means of a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser so that cookies from the domain "www.googleadservices.com" are blocked. You can find Google's data protection instructions for conversion tracking here (https://services.google. com/sitestats/en.html).
7. Social Media Plugins
We use social plug-ins from the social networks Facebook, Twitter and Instagram as well as LinkedIn and Xing on our website on the basis of Article 6 Paragraph 1 Clause 1 Letter f GDPR in order to make our company better known. The underlying advertising purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for data protection-compliant operation is to be guaranteed by their respective providers. We integrate these plug-ins using the so-called two-click method in order to provide the best possible protection for visitors to our website.
a) Facebook
Social media plugins from Facebook are used on our website to make their use more personal. For this we use the "LIKE" or "SHARE" button. This is an offer from Facebook.
If you access a page on our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted directly from Facebook to your browser, which integrates it into the website.
By integrating the plugin, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there.
If you are logged into Facebook, Facebook can directly assign your visit to our website to your Facebook account. If you interact with the plugins, for example by pressing the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your Facebook friends.
Facebook can use this information for advertising, market research and needs-based design of the Facebook pages. For this purpose, usage, interest and relationship profiles are created by Facebook, e.g. B. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services related to the use of Facebook.
If you do not want Facebook to associate the data collected through our website with your Facebook account, you must log out of Facebook before visiting our website.
The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options for protecting your privacy can be found in Facebook's data protection information (https://www.facebook.com/about/privacy/).
Twitter
Plugins of the short message network of Twitter Inc. (Twitter) are integrated on our website. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. You can find an overview of tweet buttons here (https://about.twitter.com/resources/buttons).
If you access a page on our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click the Twitter "tweet button" while you are logged into your Twitter account, you can link the content of our pages to your Twitter profile. This allows Twitter to assign your visit to our pages to your user account. We would like to point out that that we, as the provider of the pages, have no knowledge of the content of the data transmitted or how it is used by Twitter.
If you do not want Twitter to be able to assign your visit to our pages, please log out of your Twitter user account.
You can find more information on this in Twitter's privacy policy (https://twitter.com/privacy).
Instagram
Our website also uses so-called social plugins ("Plugins") from Instagram, which is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA ("Instagram").
The plugins are marked with an Instagram logo, for example in the form of an "Instagram camera".
If you access a page on our website that contains such a plugin, your browser establishes a direct connection to the Instagram servers. The content of the plugin is transmitted directly from Instagram to your browser and integrated into the page. Through this integration, Instagram receives the information that your browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are not currently logged in to Instagram.
This information (including your IP address) is transmitted directly from your browser to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can immediately assign your visit to our website to your Instagram account. If you interact with the plugins, for example by pressing the "Instagram" button, this information is also transmitted directly to an Instagram server and stored there.
The information is also published on your Instagram account and displayed to your contacts there.
If you do not want Instagram to directly assign the data collected via our website to your Instagram account, you must log out of Instagram before visiting our website.
For more information, see the privacy policy (https://help.instagram.com/155833707900388)
from Instagram.
d) LinkedIn
The “share function” of the LinkedIn network is also used on our website. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. If you click on the LinkedIn "Share button" (plug-in), you will be forwarded to your user account in a separate browser window - provided you are logged into your LinkedIn user account - and you can view the electronic publication stored on our website with the addition of a comment split. The plug-in establishes a direct connection between your browser and the LinkedIn server. LinkedIn receives the information that you have visited our website with your IP address. In addition, LinkedIn will then be able to assign your visit to our website to you and your user account. We point out that we have no knowledge of the content of the transmitted (personal) data and their use by LinkedIn. For more information, see LinkedIn's privacy policy at: https://www.linkedin.com/legal/privacy-policy.
e) XING
The “share function” of the XING network is also offered on our website. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. If you click on the XING "Share-Button" (plug-in), you will be forwarded to your user account in a separate browser window - provided you are logged into your XING user account - and you can view the electronic publication stored on our website with the addition of a comment split. The plug-in establishes a direct connection between your browser and the XING server. XING receives the information that you have visited our website with your IP address. We would like to point out that we have no knowledge of the content of the transmitted (personal) data or how it is used by XING. You can find more information on this in the XING data protection declaration at: https://www.xing.com/app/share?op=data_protection.
f) Youtube
Our website includes videos from the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Normally, when you call up a page with embedded videos, your IP address is sent to YouTube and cookies are installed on your computer. However, we have integrated our YouTube videos with the extended data protection mode. As a result, YouTube is still in contact with Google's DoubleClick service. However, according to Google's privacy policy, personal data is not evaluated. However, this means that YouTube does not store any information about visitors unless they watch the video. If you click on the video, your IP address will be transmitted to YouTube and YouTube will know that you have viewed the video. If you are logged in to YouTube, this information will also be assigned to your user account; You can prevent this by logging out of YouTube before viewing the video.
We have no knowledge of the possible collection and use of your data by YouTube and have no influence over it. For more information, see YouTube's privacy policy at www.google.de/intl/de/policies/privacy/. In addition, we refer to our general presentation in this data protection declaration for the general handling and deactivation of cookies.
8. Data subject rights
You have the right:
to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data was or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right to complain, the origin of your data, if not collected from us, and the existence of automated decision-making including profiling and, if necessary, meaningful information about their details;
in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us;
According to Art. 17 GDPR, to request the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required;
According to Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you use them to assert, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 GDPR;
in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another person responsible;
pursuant to Art. 7 Para. 3 GDPR, to revoke the consent you have given to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future and
to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.
9. Right to Object
If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Clause 1 Letter f GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided that there are reasons for this, which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without specifying a particular situation.
If you would like to make use of your right of revocation or objection, an e-mail to: info@forghani-negotiations.de is sufficient
10. Data Security
When you visit our website, we use the widespread SSL (Secure Socket Layer) method, often in conjunction with the highest level of encryption supported by your browser. This is usually a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties.
11. Updating and changing this data protection declaration
This data protection declaration is currently valid and has the status of May 2018. We reserve the right to adapt the data protection declaration if necessary so that it always complies with current legal requirements or to reflect changes to our services in the data protection declaration, e.g. when introducing new services . When you visit again, the new version shown applies if there has been a change in the meantime.
_____
We also offer you digital products such as tickets, online courses, vouchers, digital products and download products for sale on our website.
We use the elopage service for this.
As soon as you click on one of our product buttons, you leave our website and are forwarded to our individual elopage sales page.
elopage is a service of:
elopage GmbH
Kurfurstendamm 182
10707 Berlin
All functions on the sales side as well as the entire downstream sales process are carried out via elopage. You can find elopage's privacy policy here.
We have a separate data protection declaration on our elopage sales website, which you should also note.
We have concluded a corresponding contract in accordance with Art. 28 GDPR with elopage GmbH as our processor. The legal basis for the processing of personal data when forwarding from our website to the sales page via elopage results from Article 6 Paragraph 1 Sentence 1 lit. b)