Name and address of the person responsible for processing

The person responsible within the meaning of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions of a data protection nature is:

CODE MASCHINE GmbH
Bei der Neue Münze 11a
22145 Hamburg
Telephone: +49 40 39 87 65 55
Email: info@codemaschine.de

Name and address of the data protection officer

We do not employ an external data protection officer. CODE MASCHINE GmbH is therefore responsible within the meaning of the GDPR.

Definitions

1) “Personal data” means any information relating to an identified or identifiable natural person.
A natural person is considered to be identifiable if he or she can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more special characteristics that express the physical , physiological, genetic, psychological, economic, cultural or social identity of that natural person.

2) “Processing” is any operation or series of operations carried out with or without the aid of automated procedures in connection with personal data, such as collecting, recording, organizing, classifying, storing, adapting or modifying, reading out, querying , use, disclosure by transmission, distribution or other form of delivery, alignment or combination, restriction, deletion or destruction.

3) “Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, decides on the purposes and means of processing personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

4) “Recipient” means a natural or legal person, public authority, agency or other body to which personal data is disclosed, whether or not it is a third party. However, public authorities which may receive personal data in the context of a specific investigative task under Union or Member State law shall not be deemed to be recipients; the processing of these data by the said authorities will be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing.

Scope

This data protection declaration and the associated consent to data processing by the data subjects (users) apply to this website of CODE MASCHINE GmbH (codemaschine.dev).

Legal basis

We process personal data based on at least one of the following legal bases:

• Consent of the data subject to the processing of personal data concerning him or her for one or more specific purposes (Art. 6 Para. 1 Sentence 1 Letter a GDPR);
• Fulfillment of a contract with the data subject or to carry out pre-contractual measures at the request of the data subject (Art. 6 para. 1 sentence 1 lit. b GDPR);
• Fulfillment of a legal obligation to which we are subject (Art. 6 Para. 1 Sentence 1 Letter c GDPR);
• To protect the vital interests of the data subject or those of another natural person (Art. 6 Para. 1 Sentence 1 Letter d GDPR);
• Safeguarding our legitimate interests or those of a third party (Art. 6 Para. 1 Sentence 1 Letter f GDPR)

Transfer of data to recipients

We only pass on personal data to recipients (processors or other third parties) to the extent necessary and only under one of the following conditions:

• Within CODE MASCHINE GmbH we can provide our customers with comprehensive and up-to-date support.
• The person concerned has consented to the transfer.
• The transfer serves to fulfill contractual obligations or pre-contractual measures at the request of the person concerned.
• We are legally obliged to pass it on.
• The transfer is based on legitimate interests of us or a third party.

Third countries

The transfer of personal data to a country or an international organization outside the European Union (EU) or the European Economic Area (EEA) will only take place in accordance with the requirements of Art. 44 ff. GDPR, subject to legal or contractual permissions. This means that for the country in question there is an adequacy decision by the EU Commission in accordance with Art. 45 GDPR, suitable guarantees for data protection in accordance with Art. 46 GDPR or binding internal data protection regulations in accordance with Art. 47 GDPR.

Rights of those affected

As a data subject, you have the following rights:

• According to Art. 15 GDPR, you can request information about your personal data processed by us. You can also request information regarding the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data has been disclosed or will be disclosed, the planned storage period or the criteria for determining the storage period, the origin your data, provided it was not collected from you, the existence of automated decision-making including profiling and, if necessary, meaningful information on its details such as logic, scope and effects, the existence of a right to correction or deletion of the data concerning you, the right to restriction the processing or objection to this processing, the existence of a right to lodge a complaint with the supervisory authority. Finally, you have the right to know whether personal data has been transferred to a third country or international organization and, if so, about the appropriate safeguards in connection with the transfer.
• In accordance with Art. 16 GDPR, you can request the immediate correction of incorrect personal data stored by us or the completion of your personal data.
• According to Art. 17 GDPR, you can request the deletion of your personal data stored by us, unless the processing is carried out to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims is required.
• According to Art. 18 GDPR, you can request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful but you refuse its deletion and we no longer need the data and you no longer need it from us You need the data required to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR, but it is not yet clear whether our legitimate reasons for data processing outweigh your interest.
• According to Art. 20 GDPR, you can request that your personal data that you have provided to us be transferred to another person responsible in a structured, common and machine-readable format.
• According to Art. 21 GDPR, you can object to the processing of your personal data if there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising and the legal basis for the processing of the personal data is legitimate interests in accordance with Art. 6 Section. 1 p. 1 lit. f GDPR.
• according to Art. 7 para. 3 GDPR, you can revoke your consent to us at any time. This means that we are no longer allowed to continue data processing based on this consent in the future.
• According to Art. 77 GDPR, you can complain to a supervisory authority, in particular in the member state of your usual place of residence, your place of work or the place of the alleged violation.

If you would like to assert the above data subject rights, you can contact us or our data protection officer at any time using the contact details listed above.

Deletion and restriction of personal data

Unless otherwise regulated in this data protection declaration for the individual case, personal data will be deleted if this data is no longer necessary for the purposes for which it was collected or otherwise processed and the deletion does not conflict with any legal retention obligations. We will also delete the personal data we process upon request in accordance with Article 17 of the GDPR if the conditions provided for therein are met. If personal data is required for other legally permissible purposes, it will not be deleted, but rather its processing will be restricted in accordance with Art. 18 GDPR. In the event of restriction, the data will not be processed for other purposes. This applies, for example, to personal data that we must retain for commercial or tax reasons. Documents according to Section 257 Para. 1 No. 2 and 3 HGB and Section 147 Para. 1 No. 2, 3, 5 AO for 6 years, documents in accordance with Section 257 Para. 1 No. 1 and 4 HGB as well as Section 147 Para. 1 No. 1, 4, 4a AO kept for 10 years.

Links and content on third party sites

On the website you will find links to third-party offers. CODE MASCHINE GmbH cannot accept any liability for these pages and the respective handling of personal data.

Disclaimer: In its judgment dated May 12, 1998, the Hamburg Regional Court decided that by providing a link, one may also be responsible for the contents of the linked page. According to the LG, this can only be prevented by expressly distancing oneself from this content. CODE MASCHINE GmbH has placed links to other sites on the Internet on the pages. The following applies to all of these links: The CODE MASCHINE GmbH expressly declares that the CODE MASCHINE GmbH has no influence on the design and content of the linked pages. Therefore, Die CODE MASCHINE GmbH hereby expressly distances itself from all content of all linked pages on the homepage and does not adopt this content as its own. This declaration applies to all links displayed on the homepage and to all content of the pages to which the banners, buttons and links visible on Die CODE MASCHINE GmbH lead.

SSL encryption

As far as technically possible, all CODE MASCHINE GmbH internet offerings use SSL encryption for security reasons and to protect the transmission of confidential content, such as the inquiries that you send to us as the site operator. You can recognize an encrypted connection by the browser’s address line changing from “http://” to “https://” and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

Hosting

To provide our Internet offering, we use services from hosting companies, such as the provision of web servers, storage space, database services, security services and maintenance services.
Here we, or our hosting provider, process personal data of users of our internet offering based on our legitimate interests in the efficient and secure provision of this online offering in accordance with. Art. 6 para. 1 lit. f GDPR.

Access data and log files

When you access our website or individual pages, the browser on your device automatically sends information to the server of our website. This information is stored in so-called log files by us or our hosting provider and deleted as soon as it is no longer needed.

The following information is stored, among others:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the retrieved file
• Website from which access is made (referrer URL)
• browser used and, if applicable, the operating system of your computer
• Status codes and amount of data transferred

This data is processed for the following purposes:

• Provision of the Internet offering including all functions and content
• Ensuring a smooth connection to the website
• Ensuring comfortable use of our website
• Ensuring system security and stability
• Anonymized statistical analysis of access
• Optimization of the website
• Disclosure to law enforcement authorities if there has been an unlawful interference/attack on our systems
• other administrative purposes

The legal basis for data processing is Art. 6 Para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes described above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about a person.

Google Web Fonts

Type and extent of processing
This website uses external fonts from Google, so-called web fonts, to display fonts. To do this, your browser loads the required web font into the browser cache when you access the website. If your browser does not support this function, your computer will use a standard font to display the website. This service records your IP address, which of our websites you have visited and, if necessary, other data required by Google to provide the web fonts. The information generated about your use of this website is stored on a server in the USA. This information may also be transferred to third parties if this is required by law or if third parties process this data on behalf of us or Google.

Purpose and legal basis
The use of Google Fonts is based on our legitimate interests, i.e. interest in uniform provision and the optimization of our online offering in accordance with Art. 6 Para. 1 lit. f. GDPR.

Storage period
The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the data protection declaration for Google Fonts: https://policies.google.com/privacy.