Privacy.

Person party:

Rantum Capital Management GmbH

Neue Mainzer Straße 2-4, Maintor Panorama 60311 Frankfurt am Main

registered under HRB 94787 Frankfurt am Main Managing Directors: Dr. Dirk Notheis, Marc Pahlow VAT ID No. DE 2856 70 929

and

Rantum Advisors GmbH

Neue Mainzer Straße 2-4, Maintor Panorama 60311 Frankfurt am Main

registered under HRB 102756 Frankfurt am Main Managing Directors: Dr. Dirk Notheis, Marc Pahlow VAT ID DE 3022 29 934

Personal data that we process

Privacy policy

This privacy policy explains the type, scope and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and the associated websites, functions and content as well as external online presences, such as our social media profile. (hereinafter collectively referred to as “online offer”). With regard to the terms used, such as “personal data” or their “processing”, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Data protection officer:

VIVACIS Consulting GmbH

Horexstr. 1

61352 Bad Homburg

Types of data processed:

Contact data, content data, usage data, meta/communication data

Processing of special categories of data (Art. 9 para. 1 GDPR):

In principle, no special categories of data are processed unless they are provided by users for processing, e.g. entered in online forms.

Categories of data subjects affected by the processing:

Visitors and users of the online offer.

Purpose of the processing:

Providing the online offering, its content and functions, responding to contact requests and communicating with users.

Status: 02.08.20 24

Relevant legal bases

In accordance with Art. 13 GDPR, we inform you of the legal basis of our data processing. If the legal basis is not stated in the privacy policy, the following applies The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing for the performance of our services and implementation of contractual measures as well as responding to inquiries is Art. 6 para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art. 6 para. 1 lit. f GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

Changes and updates to the privacy policy
We ask you to inform yourself regularly about the content of our privacy policy. We will adapt the privacy policy as soon as changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or other individual notification.

Security measures
We take appropriate technical and organizational measures in accordance with Art. 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk; the measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, disclosure, safeguarding of availability and its separation. Furthermore, we have established procedures that guarantee the exercise of data subject rights, deletion of data and reaction to data threats. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technology design and data protection-friendly default settings (Art. 25 GDPR).

The security measures include, in particular, the encrypted transmission of data between your browser and our server.

Cooperation with processors and third parties

If we disclose data to other persons and companies (processors or third parties) as part of our processing, transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission (e.g. if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6 para. 1 lit. b GDPR), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

If we commission third parties with the processing of data on the basis of a so-called “order processing contract”, this is done on the basis of Art. 28 GDPR.

 

Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this occurs in the context of the use of third-party services or disclosure or transfer of data to third parties, this will only take place if it is done to fulfill our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only if the special requirements of Art. 44 et seq. GDPR are met. This means, for example, that processing takes place on the basis of special guarantees, such as compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

 

Rights of the data subjects

You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR.

You have accordingly. Art. 16 GDPR, you have the right to request the completion of data concerning you or the rectification of inaccurate data concerning you.

In accordance with Art. 17 GDPR, you have the right to demand that the data in question be deleted immediately or, alternatively, to demand that the processing of the data be restricted in accordance with Art. 18 GDPR.

In accordance with Art. 19 GDPR, you have the right to receive a notification from the controller regarding the rectification or erasure of your personal data or the restriction of processing.

You have the right to request to receive the data concerning you that you have provided to us in accordance with Art. 20 GDPR and to request its transmission to other controllers.

You also have the right to lodge a complaint with the competent supervisory authority in accordance with Art. 77 GDPR.

Right of withdrawal
You have the right to withdraw your consent in accordance with Art. 7 para. 3 GDPR with effect for the future.

Right of objection
You can object to the future processing of data concerning you in accordance with Art. 21 GDPR at any time. In particular, you may object to processing for direct marketing purposes.

Cookies and right of objection in the case of direct advertising
We use temporary and permanent cookies, i.e. small files that are stored on users’ devices (for an explanation of the term and function, see the last section of this privacy policy). Some of the cookies are used for security purposes or are necessary for the operation of our online offering (e.g. to display the website) or to save the user’s decision when confirming the cookie banner. In addition, we or our technology partners use cookies to measure reach and for marketing purposes, about which users are informed in the course of the privacy policy.

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/. Furthermore, the storage of cookies can be achieved by deactivating them in the browser settings. Please note that you may then not be able to use all the functions of this website.

Deletion of data
Die von uns verarbeiteten Daten werden nach Maßgabe der Art. 17 und 18 DSGVO gelöscht oder in ihrer Verarbeitung eingeschränkt. Sofern nicht im Rahmen dieser Datenschutzerklärung ausdrücklich angegeben, werden die bei uns gespeicherten Daten gelöscht, sobald sie für ihre Zweckbestimmung nicht mehr erforderlich sind und der Löschung keine gesetzlichen Aufbewahrungspflichten entgegenstehen. Sofern die Daten nicht gelöscht werden, weil sie für andere und gesetzlich zulässige Zwecke erforderlich sind, wird deren Verarbeitung eingeschränkt. D.h. die Daten werden gesperrt und nicht für andere Zwecke verarbeitet. Das gilt z.B. für Daten, die aus handels- oder steuerrechtlichen Gründen aufbewahrt werden müssen.

In accordance with legal requirements, data is stored in particular for 6 years in accordance with Section 257 (1) HGB (trading books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting vouchers, etc.) and for 10 years in accordance with Section 147 (1) AO (books, records, management reports, accounting vouchers, commercial and business letters, documents relevant for taxation, etc.).

Provision of contractual services

We process inventory data (e.g., names and addresses as well as contact data of users), contract data (e.g., services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. 6 para. 1 lit b. GDPR. The entries marked as mandatory in online forms are required for the conclusion of the contract.

The deletion takes place after the expiry of statutory warranty and comparable obligations, the necessity of storing the data is reviewed every three years; in the case of statutory archiving obligations, the deletion takes place after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligation); information in the customer account remains until its deletion.

Contacting us

When contacting us (via contact form or e-mail), the user’s details are processed to process the contact request and its handling in accordance with Art. 6 para. 1 lit. b) GDPR. We delete the inquiries if they are no longer required.

We review the necessity every two years; we store inquiries from customers who have a customer account permanently and refer to the information on the customer account for deletion. In the case of statutory archiving obligations, the deletion takes place after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligation).

Collection of access data and log files

We collect on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR, we collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Log file information is stored for a maximum of seven days for security reasons (e.g. to investigate misuse or fraud) and then deleted. Data whose further storage is required for evidence purposes is excluded from deletion until the respective incident has been finally clarified.

Cookies & reach measurement

Cookies are pieces of information that are transferred from our web server or third-party web servers to the user’s web browser and stored there for later retrieval. Cookies can be small files or other types of information storage.

Users are informed about the use of cookies in the context of pseudonymous reach measurement as part of this privacy policy.

If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

You can object to the use of cookies for reach measurement and advertising purposes via the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Integration of third-party services and content

The following presentation provides an overview of third-party providers and their content, together with links to their privacy policies, which contain further information on the processing of data and, in some cases already mentioned here, opt-out options:

External fonts from Google, LLC, https://www.google.com/fonts (“Google Fonts”). The integration of Google Fonts takes place via a server call at Google (usually in the USA). Privacy policy: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated.

Maps provided by the “Google Maps” service of the third-party provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, opt-out: https://www.google.com/settings/ads/.

Videos from the “YouTube” platform of the third-party provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://policies.google.com/privacy, opt-out: https://adssettings.google.com/authenticated.

External code of the JavaScript framework “jQuery”, provided by the third-party provider jQuery Foundation, https://jquery.org.

Use of the Smush Pro image compression service

We use the Smush Pro plugin on our website, which is provided by WPMU DEV, to optimize the loading times of our website. Smush Pro is used for the automated compression and optimization of images uploaded to our website without significantly impairing the image quality.

The following data is processed:

– Metadata such as image size, format and file name

– The images are temporarily transferred to external servers for compression.

Data transfer to third parties  As part of image compression by Smush Pro, images may be transmitted to WPMU DEV servers in the USA. Data may be transferred to and processed on servers outside the European Union.

Purpose of processing The purpose of image compression is to improve the loading times of our website and thus optimize the user experience.

Storage duration The data is only stored on the WPMU DEV servers for as long as is necessary for compression. Once the compression process is complete, the data is deleted immediately.

Legal basis The data is processed on the basis of our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR to optimize website performance.

Use of IONOS as hosting service provider

Our website is hosted by IONOS (IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany). IONOS provides the technical infrastructure on which our website is hosted and operated. As part of hosting, IONOS processes personal data that is collected on our website and stores it on its servers.

The processed data includes in particular

– IP addresses of visitors

– Meta and communication data (e.g. browser type, access times)

– Content data (e.g. entries in contact forms)

– Usage data (e.g. websites visited, access times)

Data processing by IONOS IONOS processes the data on the basis of an order processing contract in accordance with Art. 28 GDPR. The IONOS servers are located in data centers within the European Union, so that data is not transferred to third countries.

Purpose of data processing The processing of data by IONOS is necessary to ensure the availability and security of our website. IONOS stores the log files and other information for analysis and security purposes. This data is not merged with other data sources.

Legal basis The processing is based on our legitimate interest (Art. 6 para. 1 lit. f GDPR) in the secure and efficient provision of our website.

Storage period The log files stored at IONOS are stored for a maximum period of [X] days and then deleted, unless storage is required for reasons of proof (e.g. in the case of security-related incidents).

Use of the Polylang plugin

We use the Polylang plugin on our website, which is provided by the company WP SYNTEX (28, rue Jean Sébastien Bach, 38090 Villefontaine, France). Polylang enables us to design our website in multiple languages and to offer content in different languages.

Processing of data by Polylang Polylang does not store any personal data of website visitors. However, the plugin uses technical cookies to save the user’s selected language and to restore it when they visit our website again. These cookies serve the purpose of user-friendliness and ensure that the visitor’s preferred language is automatically selected.

Zu den verarbeiteten Daten gehören insbesondere:

– The user’s selected language setting (in the form of a cookie)

– Technical data such as browser information for saving the language setting

Legal basis The data is processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) in providing a user-friendly and multilingual website.

Storage period The cookies set by Polylang are stored for a period of [number of days] days and then automatically deleted. The cookies do not contain any personal data and are used exclusively to improve the user experience.

 

Cookie-Einstellungen
Auf dieser Website werden Cookie verwendet. Diese werden für den Betrieb der Website benötigt oder helfen uns dabei, die Website zu verbessern.
Alle Cookies zulassen
Auswahl speichern
Individuelle Einstellungen
Individuelle Einstellungen
Dies ist eine Übersicht aller Cookies, die auf der Website verwendet werden. Sie haben die Möglichkeit, individuelle Cookie-Einstellungen vorzunehmen. Geben Sie einzelnen Cookies oder ganzen Gruppen Ihre Einwilligung. Essentielle Cookies lassen sich nicht deaktivieren.
Speichern
Abbrechen
Essenziell (1)
Essenzielle Cookies werden für die grundlegende Funktionalität der Website benötigt.
Cookies anzeigen