We want you to feel safe when visiting our websites and confident that we take seriously the protection of your personal data. In addition to complying with the statutory provisions on data protection in accordance with the DSGVO, we commit ourselves to handling your data responsibly so that your privacy is protected at all times.
The following data protection guidelines explain what information we collect on our website and how it is used.
BBJ Consult AG
Phone: +49 (0) 30 814 068 100
Prof. Dr. Michael Niechzial, Chairman of the Managing Board
General notes and mandatory information
When using the Internet, your browser transmits data. This includes the name of your Internet service provider, an IP address, the website from which you are visiting us, the files you retrieve from us, the amount of data transferred and the date and duration of your visit. This data is stored and evaluated on our web server for statistical purposes and to guarantee system security. We will not use this data to identify you, or anyone in connection to you, personally.
Revocation of your consent to data processing
Some data processing operations are only possible with your express consent. A revocation of your prior consent is possible at any time. An informal notification by e-mail is sufficient for the revocation. The legal status of data processed prior to the revocation of consent remains unaffected even after the request has been implemented.
Right of objection: You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you on the basis of Art. 6 para. 1 lit. e or f DSGVO; this also applies to profiling based on these provisions. If the personal data concerning you is processed for the purpose of direct advertising, you have the right at any time to object to the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected with such direct advertising.
Right to information
Upon request, we will inform you as soon as possible, in accordance with applicable law, whether and which personal data we have stored about you. Should incorrect information be stored despite our efforts to ensure that the data is correct and up to date, we will correct this at your request.
You have the right to free information about your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if applicable, the right to block or delete this data at any time within the framework of the applicable statutory provisions.
Furthermore, in the event of a breach of data protection law, you have the right to lodge a complaint with the relevant supervisory authority. This depends on your federal state of residence, your occupation or the presumed violation. You will find a list of supervisory authorities (for the non-public sector) with their addresses under:
Personal data is information with which a person can be identified, i.e. information that can be traced back to a person. This includes information such as a name, address, postal address and e-mail address. As a rule, it is possible to visit our websites without providing personal data. Personal data is only collected if you provide it to us voluntarily.
Disclosure of personal information to third parties
We generally do not pass your data on to third parties. All persons working at and for our company are bound by the Federal Data Protection Act (BDSG) and the following statutory provisions. Only if we are obliged to do so by law or by court order will we pass on your data to bodies entitled to receive information.
Data transmitted via the contact form, including your contact data, will be stored in order to process your request or follow-up questions. This data will not be passed on without your consent.
The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 para. 1 lit. a DSGVO). A revocation of your prior consent is possible at any time. An informal notification by e-mail is sufficient for the revocation. The legal status of data processed prior to the revocation of consent remains unaffected even after the request has been implemented.
Data transmitted via the contact form will remain with us until you request deletion, revoke your consent to storage or until there is no longer any need for data storage. Mandatory legal provisions – in particular retention periods – remain unaffected.
Note: The deactivation of cookies may result in limited functionality of our website.
Links to other websites
Our websites contain links to third-party websites over whose content we have no control. The respective provider or operator of such pages is always responsible for the contents of the linked pages. We also have no influence whatsoever on the legality of the contents of these websites. Therefore we reject any responsibility for the content of other websites linked to our page.
We ask you to inform us immediately of any illegal content on the linked pages.
SSL or TLS encryption
For security purposes, and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and by the lock symbol in the browser line.
Server log files
In server log files, the provider of the website automatically collects and stores information that your browser automatically transmits to us. These are:
- Page visited on our domain
- Date and time of the server request
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- IP address
This data is not merged with other data sources. The data processing is based on Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
Our software is continuously updated to the newest version in the event of changes. Nevertheless, we would like to point out that the tools currently available cannot fully guarantee the protection of data transmitted over the Internet. Other Internet users may possess the technological tools to interfere with network security and control message traffic without authorization.
Hosting and e-mailing
The hosting services used by us provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail, security services and technical maintenance services which we use for the purpose of operating this website.
In this way we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, meta data and communication data of customers, interested parties and visitors to this online service on the basis of our legitimate interests in order to provide this efficient and secure online service in accordance with Art. 6 Para. 1 lit. f DSGVO in conjunction with Art. 28 DSGVO (conclusion of an order processing contract).
We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the version, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the likelihood of occurrence and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.
Measures shall include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the access of, input, disclosure, securing and separation of data. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and processes, in accordance with the principle of data protection through technology design and data protection-friendly default settings.
Applicable legal bases
In accordance with Art. 13 DSGVO we inform you about the legal basis of our data processing. For users from the area subject to the application of the data protection basic regulation (DSGVO), i.e. the EU and the EEC, the following applies if the legal basis is not mentioned in the data protection explanation:
The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 DSGVO;
The legal basis for the processing for the fulfillment of our services and the implementation of contractual measures as well as the answering of inquiries is Art. 6 para. 1 lit. b DSGVO;
The legal basis for the processing of the fulfillment of our legal obligations is Art. 6 para. 1 lit. c DSGVO;
In the event that the vital interests of the data subject or another natural person necessitate the processing of personal data, Art. 6 para. 1 lit. d DSGVO serves as the legal basis.
The legal basis for the processing necessary for the performance of a task which is in the public interest or in the exercise of official authority entrusted to the data controller is Art. 6 para. 1 lit. e DSGVO.
The legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f DSGVO.
The processing of data for purposes other than those for which they were collected is prohibited is determined in accordance with the provisions of Art. 6 (4) DSGVO.
The processing of special categories of data (pursuant to Art. 9 para. 1 DSGVO) is governed by the provisions of Art. 9 para. 2 DSGVO.