Privacy policy

Name and address of the responsible person

The responsible person(s) within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection provisions is:

HALBE TREPPE GmbH
Mansfelder Street 56
06108 Halle (Saale)
Phone: 0345 47891418
Email: datenschutz@halbe-treppe.de

You can add further details to the Imprint take out.

Data Protection Officer

We are not required by law to appoint a data protection officer and have not appointed one.

General notes and mandatory information

Privacy

We take the protection of your personal data very seriously and treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done. We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot usually be read by third parties.

Objection to advertising e-mails

The use of contact data published within the framework of the imprint obligation to send advertising and information materials not expressly requested is hereby prohibited. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

Scope of the processing of personal data

We process personal data of our users only insofar as this is necessary for the provision of a functional website and our content and services. The processing of personal data of our users takes place regularly only after consent of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is permitted by legal regulations.

Legal bases for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 (1) lit. c DSGVO serves as the legal basis.

In the event that vital interests of the data subject or another natural person make it necessary to process personal data, Art. 6 (1) lit. d DSGVO serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 (1) lit. f DSGVO serves as the legal basis for the processing.

Data deletion and storage duration

The personal data of the data subject shall be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

This necessity may exist in particular if the data is still required in order to be able to fulfill contractual services, to check and grant or ward off warranty and, if applicable, guarantee claims. In the case of statutory retention obligations, deletion is only considered after the expiry of the respective retention obligation.

Registered users can assume that data about a purchase (e.g. invoices) will be kept for 10 years.

The following applies to user accounts: If the account is no longer active, a check will be made after 12 months at the latest to determine whether the account can be deleted. Deletion is not possible if the underlying contractual relationship has not yet been completely terminated. This may be the case, for example
case if there are still receivables on our part.

Recipient / passing on of data

A transfer of personal data to third parties, for commercial or non-commercial purposes, does not take place.

However, we may use service providers for the operation of these web pages or for e-mail services, for example. Here it may happen that a service provider obtains knowledge of personal data. We select our service providers carefully, particularly with regard to data protection and data security, and take all measures required by data protection law for permissible data processing.

Data processing outside the European Union

As a matter of principle, we do not process data outside the European Union. The server on which this website is hosted is located in a data center in Germany and is operated by a German company.

Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller.

Right to information

You may request confirmation from the controller as to whether personal data concerning you is being processed by us. In the case of a request for information that is not made in writing and that cannot otherwise be verified with certainty, you must expect inquiries about your identification.

Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another controller without hindrance by the controller, within the framework of the legal requirements, insofar as this is technically feasible. The freedoms and rights of other persons may not be affected by this.

Right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6 (1) (e) or (f) of the GDPR; this also applies to profiling based on these provisions. In these cases, you can expect that we will make inquiries about the "special situation" as defined in Art. 21 (1) DSGVO.

Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. A list of data protection officers within the Federal Republic of Germany and their contact details can be found at https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Data collection on our website

Provision of the website and creation of log files

Description and scope of data processing: The provider of the websites automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • IP addresses
  • Timestamp (day and time of the server request)
  • Request line (path of the destination address without the domain)
  • Status code (e.g. 404, if the visitor tried to access a non-existent page)
  • Size of the response body (data temporarily downloaded from the browser, e.g. images and texts).
  • Referer sent by the client (through which website the visitor came to this website).
  • User agent sent by the client (information about the type and version of the browser and the operating system).
  • Remote User (login process on the website using http-Basicauth, not in normal case)

Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 lit. f DSGVO.

Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session. The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. This data is not merged with other data sources.

Duration of storage, possibility of objection and elimination

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after 7 days at the latest.

Storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

Further processing of IP addresses

Description and scope of data processing

In addition, the IP address is stored in our system in the event of incorrect login attempts. This is done to prevent and analyze hacking attempts. Furthermore, this data is required for registered users, e.g. to analyze and correct technical errors during login.
can. In addition, IP addresses of visitors are stored as part of a so-called "404 detection".

Legal basis for data processing

The legal basis for the processing of this data with regard to mere visitors to this website is Art. 6 (1) lit. f) DSGVO. For registered users of these internet pages, the legal basis is Art. 6 para. 1 lit. b) DSGVO.

Purpose of data processing

Our interest here is to ensure the integrity, confidentiality and availability of the data processed via these Internet pages. Within the framework of a balancing of interests, our interests outweigh our interests here with regard to the processing of this data.

With respect to registered users of our "platform" (these Internet pages), it is also our contractual obligation to take such measures as are necessary to ensure the integrity, confidentiality and availability of users' personal data.

Duration of storage, possibility of objection and elimination

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected or the aforementioned storage period has expired.

In the case of further processing of IP addresses, this is the case after 14 days at the latest. Storage beyond this period is possible.

If an analysis shows that a visitor to the website is attempting to gain unlawful access to our "platform" (these Internet pages), the IP address is stored for a longer period in order to block the IP address if necessary. We determine the storage period on an occasion-by-cause basis after conducting a proportionality test.

If you are a customer or registered user of this website, the IP address that was assigned to your terminal device when the contract was concluded will be stored until the end of the contractual relationship. The same applies if you have purchased a download product. In this case, the time and IP address from which the download was made will be stored for as long as you are a registered user of this website.

The collection of data to ensure the integrity, confidentiality and availability of the data is mandatory. In this respect, there is no possibility of objection on the part of the user.

Cookies use

Cookie settings

Description and scope of data processing

These Internet pages partly use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser for a certain period of time.

Session cookies

Most of the cookies we use are so-called session cookies. They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.

Application cookies

During a pure visit to the website, no cookies are set in the visitor's browser. These are usually only used for the duration of the session ("session cookies"), e.g. to place an order or the "logged in stan-
tus" or to manage the so-called "session".

The software used here sometimes uses cookies during interactions that are stored for a longer period of time. These are used, for example, through the use of the "cookie banner".

Furthermore, cookies are also used if you have a user account on our website and you have activated the "Remember selection" function when logging in, or if you set up a user account on this website and remain logged in as a user, i.e. you do not log out or log off.

Legal basis for data processing

The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. c) and f) DSGVO. For the cookies that apply to registered users, the additional legal basis is Art. 6 para. lit. b) DSGVO.

Purpose of data processing

As the operator, we have a legitimate interest in storing cookies for the technically error-free and optimized provision of our services, as well as to be able to provide our contractual services with the corresponding ease of use for registered users. Insofar as other cookies (e.g. cookies for the analysis of your surfing behavior) are stored, these are treated separately in this data protection declaration.

Duration of storage, possibility of objection and elimination

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected or the aforementioned storage period has expired.

The duration of the cookies is usually up to 14 days, in the case of the use of the function "Remember selection" for convenience 90 days.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or generally. In addition, you can also delete the above-mentioned cookies in your browser on an ad hoc basis in individual cases or periodically in order to delete tracking information. You can find more details in the program help for the browser. If cookies are deactivated, the functionality of this website may be limited.

User account ("Account") and registration

Description and scope of data processing

If you have created a user account on this site, the information you provide will be stored for the duration of the user relationship.

With regard to the mandatory information required in each case, we refer to our terms of use, from which the corresponding information can be found. We may use other user registration forms that may collect other information from you.

In particular, the online courses you have completed, your learning progress, and possibly also the certificates for your online courses or orders you have placed are stored in your user account.

When you create a user account, you will also be sent so-called transactional emails from our website. Transactional e-mails are, for example, e-mails in which you are asked to verify your e-mail address for a "double opt-in" or in which you are sent a link to reset your password via the "Forgotten password" function, you are informed about news regarding online courses you have taken, or you are sent an e-mail from our website.
be informed confirming a purchase, membership, etc..

Legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent.

If the registration serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 para. 1 lit. b DSGVO.

The upstream and downstream data processing is based on Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the preparation of newsletter dispatch, maintenance of blacklists and unsubscriptions.

Purpose of data processing

Registration is necessary for the identification of the user in order to be able to use certain free or chargeable services of our website, such as the content intended for the user (such as training courses, videos, presentations, etc.) and, if applicable, for the individual assignment of results and answers in the context of online training courses.

Duration of storage, possibility of objection and elimination

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is the case for the data collected during the registration process when the registration on our website is cancelled or modified.

As a user, you have the option to cancel the registration at any time and the data stored about you can be changed at any time.

If the data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, early deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

Contact form and e-mail contact

Description and scope of data processing

Our website contains a contact form that can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask is transmitted to us and stored. These data are:

  • Last name, first name
  • E-mail address

The following data is also stored at the time the message is sent:

  • The IP address of the user
  • Date and time of use

For the processing of data, their consent is obtained during the submission process and reference is made to this privacy policy.

Alternatively, it is possible to contact us via the e-mail address provided. In this case, the personal data of the user transmitted with the e-mail will be stored.

In this context, the data will not be passed on to third parties. The data is used exclusively for the processing of the conversation.

Legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent.

The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 (1) lit. f DSGVO. If the e-mail contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) lit. b DSGVO.

Purpose of data processing

The processing of personal data from the input mask serves us solely to process the contact. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the submission process are used to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage, possibility of objection and elimination

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. The additional personal data collected during the submission process will be deleted after a period of 14 days at the latest.

For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

At the end of each year, a check is made to determine whether further storage is necessary or whether there are retention obligations for the e-mails. Depending on this, e-mails are further stored or deleted.

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.