We at Greenbootcamps GmbH take the protection of the personal data of visitors to our website, our customers, business partners, etc. very seriously. With our data protection declaration, we would like to inform you about the nature, scope and purpose of the processing of personal data within the framework of our website, its functions and content as well as about our external websites such as our other social media profiles. In doing so, we collect, process and use your personal data in accordance with the content of these data protection regulations and the applicable data protection regulations, in particular the GDPR. We therefore ask you to read the following remarks carefully.
The terms used in this data protection declaration are defined in more detail in Article 4 of the General Data Protection Regulation (hereinafter referred to as “GDPR”). “Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as “user” or “data subject” or “you”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more special features that express the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. person.” “Processing” means any operation or set of operations performed with or without the aid of automated procedures in connection with personal data. The term goes far and wide and covers virtually any handling of data.” ‘pseudonymisation’ means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not addressed by an identified or identifiable natural person. person.” Profiling” means any type of automated processing of personal data consisting in the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal preferences, interests, reliability, behaviour, location or movement of such data. analyze or predict a natural person.
“Controller” means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. In this case, we.” ‘processor’ means a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.’ ‘recipient’ means a natural or legal person, public authority, agency, or other body to which personal data is disclosed, whether or not it is a third party.
Responsible for data protection
The controller within the meaning of the GDPR pursuant to Article 4 (7) and other national data protection laws of the member states as well as other data protection regulations is:
Managing Director: Thorsten Leich
Tel. +49 40 23830550
Fax +49 40 23830552
In principle, we process the personal data of the users of our website insofar as this is necessary for the provision of a functional website as well as our content and services, in particular to answer contact inquiries and communication with users and customers as well as security measures, reach measurement/marketing and provision of a newsletter.
The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems.
An evaluation of the data for marketing purposes does not take place in this context. These purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR. A storage of this data together with other personal data of the user does not take place.
This is not done by assigning it to you personally, but by assigning an identification number to the cookie (“cookie ID”). A combination of the cookie ID with your name, your IP address or with similar data that would enable the cookie to be assigned to you does not take place.
c) You can prevent the storage of cookies by setting your browser software; accordingly, however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link: google.com/dlpage/gaoptout.
d) We only use Google Analytics with the extension “_anonymizeIp()”. As a result, IP addresses are further processed in abbreviated form, so that personal reference can be excluded. Insofar as the data collected about you has a personal reference, this will be excluded immediately, and the personal data will be deleted immediately.
e) When transferring data from the EEA to other countries, such as the United States, Google complies with the legal framework that ensures a level of protection equivalent to EU law. https://policies.google.com/privacy/frameworkslegal basis for the processing of personal data with Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.
With regard to the duration of the storage of personal data of the users, we have selected the shortest period of 14 months for anonymization or deletion by Google.
In accordance with Article 13 GDPR, we will inform you of the legal bases on which our data processing is based.
We do not pass on your personal data to third parties unless you have consented to the transfer of data or we are entitled or obliged to pass on data due to legal provisions and/or official or court orders. In particular, this may involve the provision of information for the purposes of criminal prosecution, to avert danger or to enforce intellectual property rights.
The data processed by us will be deleted or restricted in their processing in accordance with Articles 17 and 18 GDPR. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and no other retention obligation has been provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract. In the case of storage of the log file data (see above III. 2.), they will be deleted for security reasons (e.g. to investigate misuse or fraud) only and at the latest after 7 days. A further storage of data for evidentiary purposes is possible. Such data is excluded from deletion until the final clarification of the respective incident. Usually, the IP addresses of the users are then deleted or alienated in such a way that an assignment of the calling client is no longer possible.
The Website may contain hyperlinks to and from third party websites. If you follow a hyperlink to one of these websites, please note that we cannot assume any responsibility or guarantee for third-party content or data protection conditions. Please ensure the applicable data protection conditions before submitting personal data to these websites.
As part of this communication, data of the users and respective members of the network or platform may also be processed by the respective platform/network operator outside the scope of the GDPR. As a result, there is a risk for the user that he will be unable to enforce his rights under European data protection regulations insufficiently or with difficulty. As far as these are companies that are based in the United States of America (USA) and have submitted to the Privacy Shield Agreement, they are obliged to comply with European data protection standards.
Usually, the network and platform operators use the data processed by the users for advertising and market research purposes by generating so-called usage profiles from the usage behavior of the users, which are based, among other things, on the interests of the users in order to be able to offer the individual user advertising that is as interest-based as possible both on and outside of the individual user. For this purpose, it is necessary that the network or platform operator stores cookies on the user’s computer, in which the user’s usage behavior and, among other things, the interests of the user are stored when he is on the Internet. This data is then transmitted to the platform or network operator as soon as the user calls up websites of the platform or network operator again and processed by the latter. The network/platform operator receives the data even if the user uses a device other than the one on which the aforementioned cookies are stored. For this purpose, however, it is usually necessary that the user is logged in to the platform or in the network.
As a rule, the network and platform operator provides us with an evaluation of its data processing for market research and advertising purposes. The processing of users’ personal data is therefore carried out on the basis of Art. 6 para. 1 lit. f. GDPR and is based on our legitimate interest in communicating with the user and being able to provide him with the most specified information possible. Insofar as the users are asked by the respective provider of a platform for consent to the aforementioned data processing and this is granted, the right to data processing is then based on Art. 6 para. 1 lit. a., Art. 7 GDPR.
Further information on data processing as well as, among other things, the rights and possibilities given to the user can be viewed at the respective network and/or platform operator. This also includes, for example: the right to object to data processing, which is usually implemented as an opt-out.
The aforementioned information is available to users, for example, and not exhaustively, under the following links:
For the assertion of rights of information or use, we would like to point out that these should be asserted against the aforementioned network / platform provider, as only these have the necessary access to the user data to carry out necessary measures or to provide information. As far as necessary and possible, we are happy to support the user with the concerns.
Status: July 2022