Data protection declaration / information according to Art. 13 GDPR
The following declaration is aimed at all users of this website.
I. Responsible authority
The body responsible for the operation of this website within the meaning of Article 4 No. 7 GDPR is:
New Medical GmbH & Co. KG
Berghamerstrasse 10
85435 Erding
Tel: +49 8122 55 3 77 20
Email: info@cosmetic-op.de
II. Use of the website
1. General Use
This website can be used largely without providing any personal data. However, as with most websites, some of your data is processed automatically. This data serves to ensure the smooth construction and problem-free use of this website. When you open this website, the browser used on your device automatically sends various information to the server on which this website is hosted. This includes the time the page was accessed, the browser used, the IP address of the requesting computer and the website from which access was made. Also information about your operating system.
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the necessity of processing for smooth use. No conclusions are drawn about the person using the data collected in this way.
2. Cookies
This site uses cookies. A cookie is a small text file. The cookie text file is generated automatically by this website. This text file is saved by your computer in a storage space allocated to your Internet browser on your computer’s hard drive. Information about the use of this website is stored in the cookie text file. This makes it possible to identify the requesting browser. However, this does not automatically mean that conclusions about your identity could or would be drawn from this cookie text file.
In particular, we use the pll_language cookie to store the language you have chosen.
By default, most browsers accept the storage of cookies. However, browsers allow the option to no longer allow these cookie text files to be stored. This can be general or restricted. It is also possible to set a prior notification or a prior query. If the use of cookie text files is generally no longer permitted, there is a risk that you will not be able to use all of the functions provided on this website in the intended manner.
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the necessity of the collection for smooth use. No conclusions are drawn about the person using the data collected in this way.
II. Data collection by third parties
1. Analysis tools (google Analytics)
This website uses Google Analytics. This service is used to analyze site usage. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The analysis is carried out using cookies. What a cookie is and how you can restrict or prohibit the use of cookies, see point II.2 above. The information obtained from these text files is transmitted to the service provider Google on their server in the USA and stored there . Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
The analysis carried out using this service relates to the use of this website and generally also includes your IP address. The body responsible for the operation of this website has preset the anonymization of the recorded IP address. This means that your IP address is not completely recorded by the system. The last digits are deleted before transmission. Google also guarantees that this IP address will not be associated with other Google data.
Google will use the data collected to evaluate the use of this website and create a report on the use of this website for the operator of this website and send it to them. Google will also offer the operator other services related to the use of this website and the Internet. Google also reserves the right to transfer the data collected to third parties. Google guarantees that it will only do this if required by law or if third parties process the data on behalf of Google.
You can further restrict the collection of data by Google. For example, there are add-ons for many browsers. This should make it possible to further restrict or completely prevent the collection of data by Google Analytics. Tools that can help you can be found on this page: https://tools.google .com/dlpage/gaoptout
Google’s data protection regulations can be found at https://policies.google.com/privacy</a >
Instructions on how to manage your data on Google can be found at
http://www.dataliberation.org/
If you need further information about Google Analytics:
Google Analytics Terms of Use
http://www.google.com/analytics/terms/de. html
Information about data protection from Google Analytics
https://support.google.com/analytics/answer/6004245</a >
The legal basis for this data processing is your consent in Article 6 Paragraph 1 Sentence 1 Letter a GDPR. You can revoke your consent at any time. The processing carried out up to the time of revocation remains lawful even after revocation.
2. Hosting
This website is hosted on a server owned by Raidboxes GmbH. You can find their data protection regulations at https://raidboxes.io/legal/privacy/
3. Google Maps
This website uses the map service Google Maps offered by Google. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
This service cannot function without the processing of personal data. Your IP address and data will be transferred via the system you use to servers operated by the service provider Google in the USA and processed there. Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
The terms of use of Google Maps can be found at https://www. google.com/intl/de_de/help/terms_maps.html
Google’s data protection regulations can be found at https://policies.google.com/privacy</a >
Instructions for managing your data on Google can be found at http://www.dataliberation.org/</a >
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the opportunity this creates to enable the person concerned to use the map function.
4. Google Webfonts
This website uses Google web fonts. Google Webfonts are an offer from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The font used is loaded from a Google server when you access this website. Your IP address and data will be transferred via the system you use to servers operated by the service provider Google in the USA and processed there. Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
The data protection regulations for the use of Google Webfonts can be found at https://developers.google.com/ fonts/faq
Google’s data protection regulations can be found at https://policies.google.com/privacy</a >
You can set your browser so that it does not load fonts from Google servers. If Google Webfonts cannot be used, this has no effect on the general functionality of this website.
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the design possibilities that arise from the use of unusual fonts.
5. Twitter
This website uses components from X (formerly Twitter). X is a microblogging service. This service is provided by X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103 USA. The data controller for use in the European Union is Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland.
When my website is accessed, the component of Company X integrated into this website establishes contact with the service provider’s servers. Your data will be passed on to X. It can be assumed that data will be transferred to servers in the USA. X guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with X, then X will link the processed data to this account and add it to the profile that has been created about you there. This is especially the case when you share (retweet) a post.
Further information on how Twitter handles personal data can be found in its privacy policy https://twitter. com/de/privacy
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the simplified communication and distribution options for content.
6. Facebook and Instagram
This website uses components from Facebook and Instagram. Both are social networks. These services are offered by Meta Platforms Inc., 1601 Willow Road, Menlo Park, CA 94025. The data controller for use in the European Union is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland.
When you access this website, the Meta Platforms component integrated on this website establishes contact with the service provider’s servers. Your data will be passed on to Meta Platforms. It can be assumed that data will be transferred to servers in the USA. Meta Platforms guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with a Meta Platforms service, Meta Platforms will link the processed data to this account and add it to the profile that has been created about you there. This is particularly the case if you share a post on this website or press the “Like” or Instagram button.
Further information on how Meta Platforms handles personal data can be found in their data policy at https: //de-de.facebook.com/about/privacy and Instagram’s data policy at http://instagram.com/about/legal/privacy/. There you will also find options to delete the data you have processed.
In addition, most browser providers offer add-ons that are intended to prevent data processing by Facebook (facebookblocker).
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the simplified communication and distribution options for content and the widespread use of social media offerings. Many users today also expect Internet offerings to be linked to social media platforms.
7. Google / YouTube
This website uses YouTube to make its own videos publicly accessible. YouTube is a social network. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
When you access our website, contact is made with the service provider’s servers to retrieve the video embedded on this website. Your data will be passed on to Google. It can be assumed that data will be transferred to servers in the USA. Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with Google / YouTube, Google will link the processed data to this account and add it to the profile that has been created about you there.
Google offers you the option of https://adssettings.google.com/authenticated Opt out.
Further information on how Google handles personal data can be found in its privacy policy https://policies. google.com/privacy
Instructions for managing your data on Google can be found at http://www.dataliberation.org/</a >
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the simplified communication and distribution options for content and the widespread use of social media offerings. Many users today also expect internet offerings to be linked to social media platforms and for videos to be integrated into websites.
8. Facebook Pixel
This website uses Facebook Pixel. This is a tool for recording and analyzing usage. These services are offered by Meta Platforms Inc., 1601 Willow Road, Menlo Park, CA 94025. The data controller for use in the European Union is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland.
This tool is used to tailor our offers to the users who are actually interested in the offers. Meta Platforms uses the data for analysis and for its own advertisements.
A tracking pixel is a small graphic that is automatically loaded when you visit this page. This file contains Java script code. This code allows accurate tracking of your activity on the site. Your IP address, your email address and the URL visited are recorded. This data from you will be passed on to Meta Platforms. It can be assumed that data will be transferred to servers in the USA. Meta Platforms guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with a Meta Platforms service, Meta Platforms will link the processed data to this account and add it to the profile that has been created about you there.
Further information on how Meta Platforms handles personal data can be found in their data policy at https: //de-de.facebook.com/about/privacy. There you will also find options to delete the data you have processed.
The legal basis for this data processing is your consent in Article 6 Paragraph 1 Sentence 1 Letter a GDPR. You can revoke your consent at any time. The processing carried out up to the time of revocation remains lawful even after revocation.
9. Google Tag Manager
This website uses Google Tag Manager. This service is an administration tool. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Various services are bundled in Google Tag Manager. When you access our website, contact is established with the service provider’s servers. The programs stored on the server are then executed there. Your data will be passed on to Google. It can be assumed that data will be transferred to servers in the USA. Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with Google, Google will link the processed data to this account and add it to the profile that has been created about you there.
Google offers you the option of https://adssettings.google.com/authenticated Opt out.
Further information on how Google handles personal data can be found in its privacy policy https://policies. google.com/privacy
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the simplified administration of the services.
10. Google DoubleClick
This website uses the Google DoubleClick service. Google DoubleClick is an offer from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The data controller for use in the European Union is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This service promises more targeted and effective advertising measures.
During tracking, a cookie is stored on your computer. What a cookie is and how you can restrict or prohibit the use of cookies, see point II.2 above. This cookie stores when you have clicked on an advertisement from my company, as well as your usage and purchasing behavior on it Page analyzed. For this purpose, the data is transferred to a server of the service provider Google in the USA and processed there. Usage statistics are created there. These statistics are created only for this site and are not made available to any third parties. It is apparently not possible to identify a person based on this data. Further information can be found at www.google.de/doubleclick.
Google guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
Google’s data protection regulations can be found at https://policies.google.com/privacy</a >
You can read the regulations on personal advertising by Google, for each browser separately, at www.google. de/settings/ads view and change.
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter a GDPR. You can revoke your consent at any time.
11. Borlabs
This website uses the borlabs service. Borlabs is a consent management service. This service is an offer from Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg.
This tool records whether you have given your consent to use certain services. The data is recorded using cookies. For what a cookie is and how you can restrict or prohibit the use of cookies, see point II.2 above. As a European company, Borlabs is forced to comply with European data protection regulations.
The data protection regulations of the company borlabs can be found at https://de.borlabs.io/datenschutz/< /a>
The legal basis for this data processing is a legal obligation within the meaning of Article 6 Paragraph 1 Sentence 1 Letter c GDPR. We are required to obtain your consent to use certain services.
12. Vimeo
This website uses vimeo to make its own videos publicly accessible. Vimeo is a platform through which videos can be distributed, commented on and rated. This service is provided by Vimeo.com Inc., 330 West 34th Street, 5th Floor, New York, New York 10001, USA. The data controller for use in the European Union is Robert Niedermeier, DATA BUSINESS SERVICES GmbH & CO KG-Germany, Nördliche Münchner Str. 47, 82031 Grünwald/Munich.
When you access our website, contact is made with the service provider’s servers to retrieve the video embedded on this website. Your data will be passed on to Vimeo. It can be assumed that data will be transferred to servers in the USA. Vimeo guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
If you have a user account with Vimeo, Vimeo will link the processed data to this account and add it to the profile that has been created about you there.
Further information on how vimeo handles personal data can be found in their privacy policy https://vimeo.com/ privacy
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter a GDPR. You can revoke your consent at any time.
13. OpenStreetMap
This website uses OpenStreetMap. This is a map service. OpenStreetMap is a service of the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, UK.
When you access our website, contact is made with the service provider’s servers to retrieve the map integrated on this website. Your data will be passed on to the OpenStreetMaps Foundation. It can be assumed that data will be transferred to servers in the USA. OpenStreetMaps guarantees compliance with European data protection regulations. This is done in accordance with the standard contractual clauses.
Further information on how the OpenStreetMap Foundation handles personal data can be found in its privacy policy https:// wiki.osmfoundation.org/wiki/Privacy_Policy
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter a GDPR. You can revoke your consent at any time.
14. Buttonizer
This website uses the Buttonizer service. This enables the display of floating buttons. This is a service provided by BlinktUit, Bredewater 16, 2715 CA Zoetermeer, The Netherlands.
When you access this website, the BlinkUit component integrated on this website establishes contact with the service provider’s servers in order to load the rating of our website. Your data will be passed on to BlinkUit. As a European company, BlinkUit is forced to comply with European data protection rules.
The data protection regulations can be found at https://buttonizer.pro/gdpr/
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the design possibilities that arise from the use of unusual designs.
15. ekomi
This website works with ekomi. This is a platform for reviews. This is a service provided by eKomi Holding GmbH, Zimmerstraße 11, 10969 Berlin.
When you access this website, the eKomi component integrated on this website establishes contact with the service provider’s servers in order to load our review. For this purpose, your data will be passed on to eKomi. As a European company, eKomi is forced to comply with European data protection rules.
The data protection regulations can be found at https://www.ekomi.de/de/datenschutz/
The legal basis for this data processing is Article 6 Paragraph 1 Sentence 1 Letter f GDPR. The legitimate interest arises from the possible proof of the seriousness of our offer in this way.
IV. Contact form
You have the option of contacting us using the contact form provided on this website or by email. The data transmitted in this way will be stored for the duration of the communication or until the request has been processed.
No personal data collected as a result of such contact will be passed on to third parties without your express consent.
The legal basis for this data processing can be Article 6 Paragraph 1 Sentence 1 Letter a GDPR. This requires the prior granting of consent. In principle, it is also possible to give this consent implicitly, for example by consciously transmitting data. When data is processed in accordance with Article 6 Paragraph 1 Sentence 1 Letter a of the GDPR, i.e. based on consent, the person affected by the data processing has the right to revoke their consent at any time. However, the data processing carried out up to that point remains lawful despite the revocation.
The legal basis for this data processing can also be Article 6 Paragraph 1 Sentence 1 Letter b GDPR. This is the legal basis for data processing within the framework of a contractual relationship.
V. Confidentiality of communication
VI. Data storage
Unless other deadlines regarding the storage period are expressly stated in this declaration, the storage period of the processed data is based on the relevant legal regulations.
VII. Rights of those affected
As already explained in the points above, you could be affected by the processing of personal data due to your use of this website or due to voluntary transmission. As a data subject, you can request information free of charge from the responsible body (see point I above) about the data processed by this body (Article 15 GDPR).
In addition, a data subject can request correction of the processed data (Article 16 GDPR) or deletion (Article 17 GDPR). In addition, the restriction of the processing of personal data (Art. 18 GDPR) can also be requested in accordance with the legal provisions. Affected persons have the right to object to processing that is based on a survey based on Article 6 Paragraph 1 Sentence 1 Letter e or f GDPR (Article 21 GDPR). It is also assured that the right to data portability (Art. 20 GDPR) will be guaranteed. To exercise these rights, please contact the person responsible for this website (see point I above).
VIII. Right of appeal
If you notice one or more data protection violations on this website, you have the right, in addition to other extrajudicial and judicial remedies, to complain about these violations to a data protection authority. A list of, among others, the data protection authorities based in Germany can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschrift_Links/anschrift_links-node.html
The supervisory authority responsible for this website is the Bavarian State Office for Data Protection Supervision, Promenade 27, 91522 Ansbach. You can find an online complaint form there at: https://www.lda. bayern.de/de/beschwerde.html
IX. Subject to change
As of: December 2023
