Data Protection
Privacy Policy of Dresden Marketing GmbH
In the following privacy policy, we, Dresden Marketing GmbH, Messering 7, 01067 Dresden, as the data controller within the meaning of the General Data Protection Regulation (GDPR), explain what personal data we process when you visit our website and use our online services. We would like to point out that, by default, all data transmissions in connection with our website take place via an encrypted connection.
We reserve the right to amend our privacy policy from time to time to ensure it always complies with current legal requirements or to reflect changes to our services. We therefore recommend that you read the privacy policy regularly to stay up to date with how we protect the personal data we process.
Logging and creation of log files
When you access our website, a range of technical data is logged. This general data and information is stored in the server’s log files. The browser type and version, the operating system used, the referrer URL, the hostname of the accessing computer, the time of the server request and the IP address are recorded in a log file. The processing of personal data is carried out for the purpose of providing the website, as well as for troubleshooting and investigating cases of misuse or fraud, on the basis of a legitimate interest pursuant to Article 6(1), first sentence, point (f) of the GDPR. The log files are deleted after 7 days.
Use of cookies
We use cookies on our website. Cookies enable us to optimise the information and content on our website to suit the user’s needs. Cookies allow us to recognise users of our website. The purpose of this recognition is to make it easier for users to use our website. You can find the settings for the cookies used in the cookie banner, which can be accessed at any time via the icon at the bottom of the page.
Cookies are used on our website in connection with the following services:
Matomo – Web analytics
On the basis of your consent in accordance with Article 6(1), first sentence, point (a) of the GDPR, and with regard to the setting of cookies in accordance with Section 25(1) of the TTDSG in conjunction with Article 4(11), Article 7 of the GDPR, we use the web analytics service Matomo, utilising our own server infrastructure, to improve our website. For the purposes of using Matomo, the cookie used is stored for 1 year. Through usage analysis, usage data (e.g. web pages visited, access times) and communication data (e.g. IP addresses, device information) are processed in order to evaluate the use of our online service and to compile reports on activities within our online service. This may also involve the creation of anonymised user profiles. Further information on the functionality of the Matomo web analytics service is available on the provider’s website.
Furthermore, only strictly necessary cookies are used on our website in accordance with Section 25(2)(2) of the TTDSG. The subsequent processing of your personal data is carried out on the basis of our overriding legitimate interest in accordance with Article 6(1), first sentence, point (f) of the GDPR. Our legitimate interest in this regard is to ensure that the website is provided in a manner that complies with data protection regulations (storage of selections made in the cookie banner, retention period: 1 year) and to ensure the unrestricted technical functionality of the website (identification of logged-in users, storage period: session).
To provide the consent management system, we use, on the basis of our overriding legitimate interest in ensuring the website is provided in compliance with data protection regulations in accordance with Article 6(1), first sentence, point (f) of the GDPR, we use the service provided by Cookiebot, a service of Usercentrics A/S. In this context, the following data is processed: the IP address, including geolocation; an individual user ID; language settings; and the nature and time of the consent given. A data processing agreement in accordance with Article 28 of the GDPR has been concluded with Usercentrics A/S for the use of Cookiebot.
Use of local browser storage
We use local browser storage on our website. This involves data being stored locally in your browser’s cache, which remains there and can be read even after you close the browser window or exit the programme – provided you do not clear the cache. We use this storage on the basis of Section 25(1) of the German Telemedia Act (TTDSG) for the purpose of saving the selected zoom level. Third parties cannot access the data stored in the local browser storage. It is not passed on to third parties.
Links to other websites
Our website contains links to other websites, known as external links. We have no control over whether the operators of other websites comply with data protection regulations. Please note that by clicking on a link to another website, you will be subject to different data protection policies. We have no influence over the data processing carried out on those sites. External links are marked as such in accordance with Section 19(3) of the TTDSG.
Use of service providers to operate the website
To provide the website, we use service providers who process personal data on behalf of the controller or through whom access to personal data cannot be ruled out. We have concluded data processing agreements with all these service providers in accordance with Article 28 of the GDPR. In addition to the service providers already mentioned, this includes neusta destiantion.one GmbH (website management).
We also host the content of our website with the following provider: Host Europe
The provider is Host Europe GmbH, Hansestraße 111, 51149 Cologne (hereinafter ‘Host Europe’). When you visit our website, Host Europe collects various log files, including your IP addresses.
For further details, please refer to Host Europe’s privacy policy: https://www.hosteurope.de/AGB/Datenschutzerklaerung/.
The use of Host Europe is based on Article 6(1)(f) of the GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. Where consent has been sought, processing is carried out exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g. for device fingerprinting) within the meaning of the TTDSG. Consent may be withdrawn at any time.
Newsletter
Newsletter data
If you wish to subscribe to the newsletter offered on the website, we require your email address and information that enables us to verify that you are the owner of the email address provided and that you consent to receiving the newsletter. No further data is collected, or only on a voluntary basis. We use newsletter service providers, as described below, to manage the newsletter.
Rapidmail
This website uses Rapidmail to send newsletters. The provider is rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg im Breisgau, Germany.
Rapidmail is a service that can be used, amongst other things, to organise and analyse the sending of newsletters. The data you provide for the purpose of subscribing to the newsletter is stored on Rapidmail’s servers in Germany.
Data analysis by Rapidmail
For analysis purposes, emails sent via Rapidmail contain a so-called ‘tracking pixel’, which connects to Rapidmail’s servers when the email is opened. This allows us to determine whether a newsletter message has been opened.
Furthermore, with the help of Rapidmail, we can determine whether any links in the newsletter message have been clicked and, if so, which ones. All links in the email are so-called tracking links, which are used to count your clicks. If you do not wish Rapidmail to carry out this analysis, you must unsubscribe from the newsletter. We provide a link for this purpose in every newsletter.
For further details on Rapidmail’s analytics functions, please refer to the following link: https://de.rapidmail.wiki/kategorien/statistiken/.
Legal basis
Data processing is carried out on the basis of your consent (Article 6(1)(a) of the GDPR). You may withdraw this consent at any time. The lawfulness of any data processing operations that have already taken place remains unaffected by the withdrawal.
Retention period
The data you have provided to us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter, and will be deleted from the newsletter distribution list once you have unsubscribed. Data stored by us for other purposes remains unaffected by this.
After you unsubscribe from the newsletter distribution list, your email address may be stored on a blacklist by us or the newsletter service provider, where necessary to prevent future mailings. The data from the blacklist is used solely for this purpose and is not combined with any other data. This serves both your interests and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Article 6(1)(f) of the GDPR). There is no time limit on storage on the blacklist. You may object to this storage provided that your interests override our legitimate interest.
For further details, please refer to Rapidmail’s data security information at: https://www.rapidmail.de/datensicherheit.
Integration of the Sachsenauskunft widget
We embed an externally hosted widget from Sachsenauskunft (https://www.sachsenauskunft.de/) on our website via an iFrame. For technical reasons, the following data is transmitted when the page loads: IP address (encrypted), date and time, URL accessed, referrer, browser type and operating system. The provider stores this data exclusively in anonymised or pseudonymised form and uses it solely to ensure the service operates correctly and for troubleshooting. The data is not passed on to third parties; no external tracking or analytics services are integrated (analysis is carried out using Matomo on our own servers).
Further information on data processing and your rights can be found in the provider’s privacy policy at https://www.sachsenauskunft.de/datenschutz. Information on the accessibility of the widget (BITV 2.0 / WCAG 2.1) can be found at https://www.sachsenauskunft.de/barrierefreiheit.
Data subjects’ rights and contact details for the Data Protection Officer
Data subjects may at any time request information about the personal data concerning them and, where applicable, request the rectification or erasure of such data, or the restriction of processing, or object to the processing. Furthermore, they have a right to data portability. Furthermore, where data processing is carried out on the basis of consent, this consent may be withdrawn at any time with effect for the future. To exercise your rights, please contact us at info[at]marketing.dresden.de or our external Data Protection Officer at zentrale[at]dids.de (further contact details are available at www.dids.de). Furthermore, in accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a data protection supervisory authority if you suspect that the processing of personal data is unlawful.