When you use this website, various personal data are collected. This privacy statement explains what data we collect and what we use it for. It also explains how and for what purpose this is done. We want to point out that data transmission on the Internet (e.g., when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
We manage our websites in accordance with the principles set out below:
We treat your personal data confidentially and in accordance with the legal data protection regulations and this data protection declaration.
Protection of privacy in terminal equipment - TTDSG
Please note that the further information in this privacy notice refers to processing personal data according to DSGVO.
1. Name and address of the controller
The responsible party within the meaning of the General Data Protection Regulation and other national data protection laws of the member states of the European Union as well as other data protection regulations is:
The Dillinger Group
c/o DG ENERGY Service GmbH
Managing Director: Simon Dillinger
Registration number: Local court Regensburg HRB 17058
VAT ID No. DE 259 922 719
2. Explanations of terms
3. Legal basis for the processing of personal data
We only process your personal data, such as your surname and first name, e-mail address and IP address, etc., if there is a legal basis. Here, according to the General Data Protection Regulation, three regulations, in particular, come into consideration:
a) You have given us your consent to processing your personal data for one or more purposes, Art. 6 (1) p. 1 lit. a DSGVO. In this context, we will inform you in detail about the purpose(s) of the processing, and your explicit consent will be documented with us.
b) The processing of your personal data is necessary for the performance of a contract or the implementation of pre-contractual measures with you, Art. 6 para. 1 p. 1 lit. b DSGVO.
c) The processing of personal data is necessary to protect our legitimate interests unless your interests or fundamental rights and freedoms prevail, Art. 6 para. 1 p. 1 lit. f DSGVO.
However, we will always point out to you again the respective points on which legal basis the processing of your personal data takes place.
4. Transfer of personal data
Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data may be transferred to these third countries and processed there. We want to point out that no level of data protection comparable to that in the EU can be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you, as a data subject being able to take legal action against this. Therefore, it cannot be ruled out that US authorities (e.g., intelligence services) process, evaluate, and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.
We do not transfer your personal data to third parties for purposes other than those listed below. We will only disclose your personal data to third parties if:
a) you have given your express consent to do so in accordance with Art. 6 (1) p. 1 lit. a DSGVO,
b) the disclosure according to Art. 6 para. 1 p. 1 lit. f DSGVO is necessary for the assertion, exercise, or defense of legal claims, and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
c) there is a legal obligation for the disclosure in accordance with Art. 6 (1) sentence 1 lit. c DSGVO.
d) this is legally permissible and necessary for processing contractual relationships with you according to Art. 6 para. 1 p. 1 lit. b DSGVO.
5. Storage period and deletion
We store all personal data you transmit to us only as long as they are needed to fulfill the purposes for which these data were transmitted or as long as this is required by law. Upon fulfillment of the purpose and/or expiration of the legal storage periods, we will delete or block the data.
If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.
6. SSL or TLS encryption
This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the website operator. You can recognize an encrypted connection by the fact that the browser's address line changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL encryption is activated, third parties cannot read the data you transmit to us.
7. Hosting and content delivery networks (CDN)
When using the items listed below, the data processing is technically provided by COCO. In this respect, reference is also hereby made to COCO's data protection information.
The website is hosted by Host Europe. The provider is Host Europe GmbH, Hansestraße 111, 51149, Cologne (hereinafter referred to as Host Europe). When you visit our website, Host Europe collects various log files, including your IP addresses.
The use of Host Europe is based on Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in the most reliable presentation of our website. If a corresponding consent has been requested, the processing is carried out exclusively based on Art. 6 (1) lit. a DSGVO and Section 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. for device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.
We, or COCO, have concluded a contract on order processing (AVV) with the above-mentioned provider. This contract is required by data protection law, which ensures that this provider only processes the personal data of our website visitors per our instructions and in compliance with the DSGVO.
Amazon CloudFront CDN
The website uses the content delivery network Amazon CloudFront CDN. The provider is Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855, Luxembourg (hereinafter "Amazon").
Amazon CloudFront CDN is a globally distributed content delivery network. Technically, the information transfer between your browser and our website is routed via the Content Delivery Network. This allows us to increase the global accessibility and performance of our website.
The use of Amazon CloudFront CDN is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 para. 1 lit. f DSGVO).
The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://aws.amazon.com/de/blogs/security/aws-gdpr-data-processing-addendum/.
More information about Amazon CloudFront CDN can be found here: https://d1.awsstatic.com/legal/privacypolicy/AWS_Privacy_Notice__German_Translation.pdf.
We, respectively COCO, have concluded a contract on order processing (AVV) with the provider mentioned above. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.
8. Collection and storage of personal data as well as their type and purpose of use
Your data is collected on the one hand by you providing it to us. This can be, for example, data that you enter in a contact form. Other data is collected automatically or after your consent when you visit the website by our IT systems.
a) When visiting the website
When you call up our website, information is automatically sent to our website server by the browser used on your terminal device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:
- The IP address of the requesting computer
- Date and time of access
- Name and URL of the accessed file
- The website from which the access was made (referrer URL)
- Browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
A combination of these data with other data sources is not made.
The aforementioned data is processed by us for the following purposes:
Ensuring error-free and comfortable use of our website
Evaluation of system security and stability
Analysis of your user behavior
Data that allow a conclusion to your person, such as the IP address, will be deleted after 7 days at the latest. If the data is stored beyond this period, it will be pseudonymized, so an assignment to you is no longer possible.
b) Contact form / e-mail contact
We provide a form on our website so that you have the opportunity to contact us at any time. For the use of the contact form, it is necessary to provide a name for a personal salutation and a valid e-mail address to contact us so that we know from whom the request comes and can also process it. We do not pass on this data without your consent.
If you send us inquiries via the contact form, your information from the inquiry form, including the contact data you provide there, as well as your IP address, will be processed in accordance with Art. 6 Para. 1 DSGVO to carry out pre-contractual measures, which take place in response to your inquiry or to exercise our legitimate interest, namely to carry out our business activities. The consent can be revoked at any time.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to store it, or the data's purpose no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular retention periods - remain unaffected.
Please note that the message is provided with https transport encryption to protect the data transmitted in your request. You can achieve a higher level of security by contacting us by telephone or fax during the specified opening hours using the above telephone or fax number, or by visiting us in person.
You are also welcome to send us an e-mail instead using the e-mail address provided on our website. In this case, we will store and process your e-mail address and the information you provide in the e-mail in accordance with Art. 6 (1) p. 1 lit. b and f DSGVO to process your message.
The inquiries and the associated data will be deleted no later than 3 months after receipt unless they are required for a further contractual relationship.
c) Google Fonts
We use Google Fonts on our Internet pages. This enables the display of fonts. The company responsible for the European region is Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
However, the fonts used are not retrieved from Google servers but are stored locally. Accordingly, there is no connection to Google servers, and no data transmission (e.g., IP address) to Google takes place.
The data processed by cookies is necessary for the aforementioned purposes to protect our legitimate interests and those of third parties in accordance with Art. 6 (1) p. 1 lit. f DSGVO.
Cookies have various functions. Numerous cookies are technically necessary, as certain website functions would not work without them (e.g., the display of content such as images or videos). Other cookies are used to evaluate user behavior or display advertising.
Most browsers automatically accept cookies based on the browser's default setting. However, you can configure your browser so that either no cookies are stored on your end device or at least a notice is displayed before a new cookie is stored. If you completely deactivate the cookie function in your browser, you may not be able to use all the functions of our website.
Below we explain the different types of cookies we use.
a) Session cookies
In order to make the use of our offer more pleasant for you, we use so-called session cookies to recognize that you have already visited individual pages of our website. These session cookies are automatically deleted after you leave our site.
b) Temporary cookies
These temporary cookies are stored on your terminal device for a certain fixed period of time.
c) Cookies for marketing and optimization purposes.
These cookies are automatically deleted after a defined period of time.
If settings already made are subsequently adjusted and revoked, it is necessary to delete the cookies already set in the browser settings.
In some cases, cookies from third-party companies may also be stored on your terminal device when you enter our site (third-party cookies). These enable you or us to use certain services of the third-party company (e.g. cookies for processing payment services). As cookies are used by third-party companies or for analysis purposes, we will inform you separately about this within the scope of this data protection declaration and, if necessary, request your consent.
10. Rights of the data subject
You are entitled to the following rights:
In accordance with Art. 15 DSGVO, you have the right to request information free of charge about your personal data processed by us. This right to information includes information about
- the purpose of processing
- the categories of personal data
- the recipients or categories of recipients to whom your data have been or will be disclosed
- the planned storage period or at least the criteria for determining the storage period
- the existence of a right to rectification, erasure, restriction of processing, or objection
- the existence of a right of appeal to a supervisory authority
- the origin of your personal data, if it was not collected by us
- the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details.
For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time.
In accordance with Art. 16 DSGVO, you have a right to prompt correction of incorrect or incomplete personal data stored by us.
Pursuant to Art. 17 DSGVO, you have the right to request that we delete your personal data without delay, unless further processing is necessary for one of the following reasons:
- to exercise the right to freedom of expression and information
- for compliance with a legal obligation that requires processing under the law of the European Union or the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
- for reasons of public interest in the area of public health in accordance with Art. 9(2)(h) and (i) and Art. 9(3) DSGVO
- for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) DSGVO, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing for the assertion, exercise or defense of legal claims.
d) Restriction of processing
In accordance with Art. 18 DSGVO, you may request the restriction of the processing of your personal data for one of the following reasons:
If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
The processing is unlawful, and you refuse the erasure of the personal data.
We no longer need personal data for the processing, but you need it to assert, exercise or defend legal claims.
If you have lodged an objection pursuant to Art. 21 (1) DSGVO, a balancing of your and our interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
For this purpose, you can contact us at any time.
If you have restricted the processing of your personal data, this data may - apart from being stored - only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.
If you have requested the rectification or erasure of your personal data or a restriction of processing pursuant to Articles 16, 17(1), and 18 of the GDPR, we will inform all recipients to whom your personal data has been disclosed unless this proves impossible or involves a disproportionate effort. You may request that we inform you of these recipients.
You have the right to have data that we process automatically based on your consent or in the performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
In accordance with Art. 7 (3) DSGVO, you have the right to revoke your consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent until the revocation. In the future, we may no longer continue the data processing that was based on your revoked consent.
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.
Many data processing operations are only possible with your express consent. You can revoke the consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying the particular situation. If you wish to exercise your right of revocation or objection, an e-mail to contact(at)thedillingergroup.de will suffice.
j) Right to object to the collection of data in special cases and to direct marketing (Art. 21 DSGVO).
k) Automated decision in individual cases, including profiling.
You have the right not to be subject to a decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision:
- is necessary for the conclusion or performance of a contract between you and us
- is permitted by the legislation of the European Union or the Member States to which we are subject and such legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests
- is made with your express consent.
However, these decisions must not be based on special categories of personal data pursuant to Article 9(1) of the GDPR unless Article 9(2)(a) or (g) of the GDPR applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests.
With regard to the above-mentioned cases, we take appropriate measures to safeguard the rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person from our side, to express your point of view, and to contest the decision.