Data protection

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations (GDPR) and this privacy policy. It is generally possible to use our website without providing personal data. If personal data (e.g. name, address or email addresses, IP address, location data, photos and video recordings) is collected on our pages, this is always done on a voluntary basis as far as possible. Your personal data is collected, processed and stored primarily for correspondence with you and for the purposes for which you have provided us with the data. Insofar as it is necessary for the execution of orders or requests made by you, we will also pass on information to our affiliated companies or third parties. When passing on information, we limit ourselves to the information that is necessary to carry out the order. Our affiliated companies or third parties are in any case obliged to comply with data protection laws. Your personal data will never be passed on to third parties for marketing purposes. We would like to point out that the internet and in particular communication by e-mail is still to be understood as an insecure medium and can have security gaps. It is not possible to provide seamless protection of data against access by third parties. We constantly strive to install suitable technical and organisational measures to protect your personal data from access by third parties. However, we recommend that you use the postal service to send any strictly confidential information.

Security

This website uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as contact requests that you send to us. You can recognise an encrypted connection by the fact that the address line of the browser shows ‘https://’ instead of ‘http://’ and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.


Processing of data on our websites


Cookies

Our websites partly use so-called cookies. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored permanently or temporarily on your computer when you visit our websites and that your browser stores. Most of the cookies we use are so-called ‘session cookies’ to recognise that you have already visited individual pages on our website. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognise your browser the next time you visit and to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. You can adjust your browser settings so that you are informed when cookies are set and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.

Change cookie settings

Server log files

Every time you visit our website, our system automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and browser version
  • Operating system used
  • Website from which you visit us (referrer URL)
  • Website you visit
  • Host name and full IP address of the accessing computer


Date and time of the server request

The data is stored in the log files of our system. The user’s IP addresses or other data that would allow the data to be assigned to a user are not affected by this. This data is not stored together with other personal data of the user. The log files do not contain any IP addresses or other data that would allow the data to be assigned to a user. The temporary storage of IP addresses for the duration of the session is essential for sending the web pages and data from our servers to your browser in order to provide you with the requested information. This requires the storage of the IP address for the duration of the session. The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of data collection for the provision of the website, this is the case when the respective session has ended. The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Therefore, the user has no right of objection.

Contact form and e-mail contact

Our website includes a contact form that you can use to contact our company electronically. The data entered in the input mask (name, email address, telephone number, request) will be transmitted to us and stored. However, you can also send us an email. In this case, the user’s personal data transmitted with the email will be stored. When you use the data to process your contact request, your consent is assumed as part of the contact form submission process and reference is made to this data protection declaration. The technical data collected during the contact form submission process (IP address, date and time of registration) is used to prevent misuse of the contact form and to ensure the security of our computer systems and networks. Alternatively, you can contact us via the e-mail address provided. In this case (= hereby you also make your consent clear), the user’s personal data transmitted by e-mail will be stored. These data are also used exclusively for the purpose of processing your contact. Your data will be deleted after the final processing of your request. This is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that no statutory retention requirements preclude the deletion. We will not pass on your data to third parties without your consent. You have the option at any time to revoke your consent to the processing of personal data. If you have contacted us by e-mail, you can object to the storage of your personal data at any time by e-mail. In this case, all personal data stored in the course of contacting us will be deleted. If you provide us with this data, we can provide you with a more personal service and use it to process and respond to your enquiry.

Brevo (Newsletter)

This uses the functions of Brevo to send a newsletter. Brevo (formerly Sendinblue) | E-Mail Marketing, Automation & CRM Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, +49 (0)30 / 311 995 10, support@brevo.com

The legal basis for the processing is the legitimate interest in accordance with Art. 6 para. 1 lit. f) DSGVO to provide a newsletter.

A contract for commissioned data processing (AVV) has been concluded with Brevo regarding compliance with the DSGVO, the storage and processing of personal data.

https://www.brevo.com/de/datenschutz-uebersicht/

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. (‘Google’). Google Analytics uses ‘cookies’, which are text files placed on your computer, to help the website analyse how users use the site. These are text files that are stored on your computer and that allow an analysis of the use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

IP anonymisation (Google Analytics)

We have activated the IP anonymisation function on this website. This means that your IP address will be truncated by Google within the area of member states of the European Union or other parties to the Agreement on the European Economic Area prior to its transmission to the United States. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Browser Plugin (Google Analytics)

You can prevent the storage of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=de

Objection to data collection (Google Analytics)

You can prevent Google Analytics from collecting your data by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site:
https://tools.google.com/dlpage/gaoptout/

For more information about how Google Analytics handles user data, see Google’s privacy policy:

Demographic characteristics in Google Analytics

This website uses the ‘demographic characteristics’ function of Google Analytics. This allows reports to be created that contain statements about the age, gender and interests of the site visitors. This data comes from interest-based advertising from Google and from visitor data from third-party providers. This data cannot be assigned to a specific person. You can disable this feature at any time by adjusting the ads settings in your Google account or you can forbid the collection of your data by Google Analytics as described in the section ‘Refusal of data collection’.

Google Adwords

Our website uses Google Conversion Tracking. If you have reached our website via an ad placed by Google, Google Adwords will set a cookie on your computer. The conversion tracking cookie is set when a user clicks on an ad placed by Google. If the user visits certain pages on our site and the cookie has not yet expired, we and Google can recognise that the user clicked on the ad and was redirected to this page. Each Google AdWords customer receives a different cookie. This means that cookies cannot be tracked across the websites of AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in tracking, you can refuse the setting of a cookie required for this – for example, by means of a browser setting that generally deactivates the automatic setting of cookies or sets your browser so that cookies from the domain ‘googleleadservices.com’ are blocked. Please note that you must not delete the opt-out cookies if you do not want any measurement data to be recorded. If you have deleted all the cookies in your browser, you will need to reset the opt-out cookie each time you visit the site.

Google Maps

This website uses the Google Maps API to visually display geographic information. When you use Google Maps, Google also collects, processes and uses data about how visitors use the map functions. For more information about Google’s data processing, please refer to the Google Privacy Policy. You can also change your personal data protection settings in the data protection centre. Detailed instructions for managing your own data in connection with Google products can be found here: dataliberation.org

YouTube videos embedded

We provide information about MeteoViva and give us the opportunity to get in touch with you by making offers available online on various social media platforms (e.g. LinkedIn, Twitter). Please note that we have no influence on the processing of your personal data on these platforms and only the respective platform operator has full knowledge of the content of the transmitted data and its use. As a rule, cookies are stored in your browser when you visit the respective platform. You may be affected by this data collection even if you are not registered on the respective platform. We have no knowledge of whether the data is transferred outside the European Economic Area. The legal basis for the processing of personal data on the platforms by us is Art. 6 (1) point f GDPR. Our legitimate interest lies in being able to present MeteoViva to the outside world in a variety of ways and to use the communication options with our customers as effectively as possible. Consent to data processing in accordance with Art. 6 (1) point a GDPR may also be the legal basis if you have given this to the platform operator. You will receive detailed information about the platform operators’ data processing on the respective opt-out options, rights of access, as well as specific information about the respective platforms via the following data protection notices of the respective operators:

Google+ / YouTube (website/link)

Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

Privacy Policy: https://policies.google.com/privacy

Cookie Information: https://policies.google.com/technologies/ads?hl=de

Opt-out: https://adssettings.google.com/anonymous?

Specific information about YouTube accounts or channels: When you visit our YouTube page, YouTube processes your personal data. This data is transmitted to us by YouTube in anonymised form as part of the use of YouTube STUDIO. This anonymised data is statistical data about our channel subscribers. In addition, YouTube provides us with the username of your ‘Google+’ profile if you interact with us or our site, for example by liking or commenting on videos or subscribing to our channel.

YouTube (plug-ins)

Videos from the YouTube platform, which is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter Google), can be accessed on our website. We use these services on the basis of Art. 6 para. 1 lit. f) GDPR, as we have a legitimate interest in distributing and increasing the popularity of our online presence. If you are logged into your YouTube account and play the video, you enable YouTube to associate your browsing behaviour directly with your personal profile. This association takes place regardless of whether you click on the video or not. You can prevent this information from being linked to your YouTube account by logging out of your YouTube account. For more information about how user data is handled, please refer to YouTube’s privacy policy at: https://policies.google.com/privacy?hl=de&gl=de

LinkedIn (website/link)

Provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

Privacy Policy: https://www.linkedin.com/legal/privacy-policy

Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Specific information about LinkedIn company pages: When you visit our LinkedIn company page, LinkedIn processes your personal data. This data is transmitted to us by LinkedIn in anonymised form as part of LinkedIn Analytics. This anonymised data is statistical data about our subscribers. In addition, LinkedIn provides us with your profile name when you interact with us or our page, for example, by liking or commenting on posts or following our pages.

Online applications

Reference to special data protection declaration: https://meteoviva-gmbh.jobs.personio.de/privacy-policy

Disclosure of personal data by court or official order

We would like to point out that we may be forced by court or official order to disclose your personal data and related information. Updating this data protection declaration: Should we introduce further services, change internet procedures or if internet and IT security technology develops further or the legal basis changes, this data protection declaration will be updated. We therefore reserve the right to change or amend this data protection declaration. We will publish the current version at this point.

Right to information, deletion, blocking

You have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of the data processing. You also have the right to correct, block or delete this data. For further information on personal data, please contact the following address at any time:

Data protection officer:

meteoviva GmbH

Data protection officer

Friedlandstraße 18

D-52064 Aachen

E-Mail: datenschutz(at)meteoviva(dot)com

Web: www.meteoviva.com

Please understand that we require proof of identity if you wish to receive information about your data stored by us. Responsible bodies within the meaning of the Data Protection Act (DSGVO)

As of: 16 January 2025

Information on the processing of customer/supplier data

General

meteoviva GmbH takes the protection of your personal data very seriously. Your privacy is an important concern for us. We process your personal data in accordance with the applicable legal data protection requirements for the purposes listed below. Personal data in the sense of this data protection information is all information that can be related to your person.

In the following, you will learn how we handle this data. For a better overview, we have divided our data protection information into chapters.

The controller for data processing is

meteoviva GmbH

Managing Directors: Dr. Stefan Hardt and Uwe Großmann

Friedlandstraße 18

D-52064 Aachen

E-Mail: info(at)meteoviva(dot)com

Web: www.meteoviva.com

If you have any questions or comments about data protection (for example, to access or update your personal information), you can also contact our data protection officer.

Processing framework

Source of data collection

We process personal data that we have collected directly from you.
To the extent necessary for the provision of our services, we process personal data that we have legitimately received from other companies or other third parties (e.g. credit reference agencies, address publishers). In addition, we process personal data that we have legitimately taken, received or acquired from publicly accessible sources (such as telephone directories, commercial and association registers, civil registers, debtor registers, land registers, press, internet and other media) and are allowed to process.

Origin and categories of data not collected directly from you

To the extent necessary for the provision of our services, we process personal data that we have legitimately received from other companies or other third parties. In addition, we process personal data that we have legitimately obtained, received or acquired from publicly accessible sources (press, internet and other media) and are permitted to process. Relevant personal data categories may include, in particular:

  • Personal data (name, date of birth, place of birth, nationality, marital status, occupation/industry and similar data)
  • Contact details (address, email address, telephone number and similar data)
  • payment/cover confirmation for bank and credit cards customer history
  • data about your use of the telemedia we offer (e.g. when you access our websites, apps or newsletters, pages/links of ours you click on or entries and comparable data)
  • creditworthiness data

Purposes and legal bases of the data processed

We process personal data in compliance with the provisions of the German Federal Data Protection Act (BDSG) and the EU General Data Protection Regulation (GDPR), as well as all other relevant laws. If the GDPR is applicable to you, we hereby provide you with all the information in accordance with Art. 13 GDPR.

Which data is processed in detail and how it is used depends largely on the services requested or agreed in each case. Further details or additions for the purposes of data processing can be found in the respective contract documents, forms, a declaration of consent and/or other information provided to you (e.g. when using our website or our terms and conditions).

Purposes of fulfilling a contract or pre-contractual measures (Art. 6 para. 1 b GDPR)

We process personal data in order to perform our contracts with you and to carry out your orders, as well as to take measures and perform activities in the context of pre-contractual relationships, e.g. with prospective customers. This includes, in particular: contract-related communication with you, the corresponding billing and associated payment transactions, the verifiability of orders and other agreements, as well as quality control through appropriate documentation, goodwill procedures, measures to control and optimisation of business processes and for the fulfilment of general duties of care, control and monitoring by affiliated companies; statistical evaluations for corporate management, cost recording and controlling, reporting, internal and external communication.

Beyond the actual fulfilment of the contract or preliminary contract, we may process your data if it is necessary to protect our legitimate interests or those of third parties, in particular for purposes

  • advertising or market and opinion research, provided you have not objected to the use of your data;
  • examining and optimising procedures for needs analysis;
  • further developing services and products as well as existing systems and processes;
  • enhancing our data, including by using or researching publicly accessible data;
  • statistical evaluations or market analysis;
  • benchmarking;
  • the assertion of legal claims and defence in the event of legal disputes that are not directly attributable to the contractual relationship;
  • the restricted storage of data if deletion is not possible or only possible with a disproportionately high effort due to the special type of storage;
  • the development of scoring systems or automated decision-making processes;
  • the prevention and investigation of criminal offences, insofar as this is not exclusively for the purpose of complying with legal requirements;
  • building and plant security (e.g. through access controls), insofar as this goes beyond the general duty of care;
  • obtaining and maintaining certifications under private law or from public authorities;
  • securing and exercising the right to exclude persons from premises by means of appropriate measures (such as video surveillance) and to secure evidence in the event of criminal offences and their prevention.


Purposes within the scope of your consent (Art. 6 (1) (a) EU GDPR)

Your personal data may also be processed for certain purposes (e.g. use of your email address for marketing purposes) based on your consent. As a rule, you can revoke this at any time. You will be informed separately about the purposes and the consequences of a revocation or the non-granting of consent in the corresponding text of the consent. As a general rule, the revocation of consent is only effective for the future. Processing that took place before the revocation is not affected and remains lawful.

Purposes of fulfilling legal requirements (Art. 6 (1) (c) GDPR) or in the public interest (Art. 6 (1) (e) GDPR)

Like everyone who participates in economic life, we are also subject to a variety of legal obligations. These are primarily legal requirements (e.g. commercial and tax laws), but may also include regulatory or other official requirements. The purposes of processing may include the fulfilment of control and reporting obligations under tax law as well as the archiving of data for the purposes of data protection and data security as well as audits by tax and other authorities. In addition, the disclosure of personal data may be required as part of official/judicial measures for the purposes of gathering evidence, criminal prosecution or enforcing civil claims.

Scope of your obligations to provide us with data

You are only required to provide the data that is necessary for the commencement and execution of a business relationship or for a pre-contractual relationship with us or that we are legally obliged to collect. Without this data, we will generally not be able to conclude or execute the contract. This may also apply to data required at a later stage in the course of the business relationship. If we request additional data from you, you will be informed separately that the information is voluntary.

Consequences of not providing data

As part of the business relationship, you must provide the personal data that is necessary for the establishment, execution and termination of the legal transaction and the fulfilment of the associated contractual obligations or that we are legally obliged to collect. Without this data, we will be unable to carry out the legal transaction with you.

Recipients of the data

Within our company, your data is received by the internal departments or organisational units that require it to fulfil our contractual and legal obligations or in the context of processing and implementing our legitimate interests.

Your data will only be passed on to external parties

    • in connection with the performance of the contract;
    • for the purposes of complying with legal requirements that require us to provide information, report or disclose data or where the disclosure of data is in the public interest (see section 2.4);
    • insofar as external service providers process data on our behalf as processors or function providers (e.g. data centres, support/maintenance of IT applications, archiving, document processing, call centre services, compliance services, controlling, data validation or plausibility ity checks, data destruction, purchasing/procurement, customer administration, lettershops, marketing, media technology, research, risk controlling, billing, telephony, website management, auditing services, credit institutions, printing companies or companies for data disposal, courier services, logistics);
    • on the basis of our legitimate interest or the legitimate interest of the third party for the purposes mentioned (e.g. to authorities, credit reference agencies, collection agencies, lawyers, courts, experts, subsidiaries and committees and control bodies);

if you have given us permission to transfer the data to third parties.

We will not pass on your data to third parties beyond this. Insofar as we commission service providers within the scope of order processing, your data is subject to the same security standards there as it is with us. In all other cases, the recipients may only use the data for the purposes for which it was transmitted to them.

Storage periods

We process and store your data for the duration of our business relationship. This also includes the initiation of a contract (pre-contractual legal relationship) and the execution of a contract.

Furthermore, we are subject to various legal retention and documentation obligations. The periods for retention and documentation specified therein may be up to 15 years. In addition, personal data may be stored for the period during which claims can be asserted against us (statutory limitation period).

Furthermore, special legal provisions may require a longer retention period.
If the data is no longer required for the fulfilment of contractual or legal obligations and rights, it is regularly deleted, unless its – temporary – further processing is necessary to fulfil the purposes of an overriding legitimate interest. Such an overriding legitimate interest also exists, for example, if erasure is not possible or only possible with disproportionately high effort due to the special type of storage and processing for other purposes is excluded by suitable technical and organisational measures.

Your rights

Under certain conditions, you can assert your data protection rights against us.

For example, you have the right to request information from us about your data stored by us in accordance with the provisions of Art. 15 EU-GDPR.

Upon your request, we will correct the data stored about you in accordance with 16 EU-GDPR if it is inaccurate or incorrect.

If you wish, we will delete your data in accordance with the principles of Article 17 EU GDPR, provided that this does not conflict with other legal regulations or an overriding interest on our part (e.g. to defend our rights and claims).

Taking into account the requirements of Article 18 EU GDPR, you can request that we restrict the processing of your data.

Furthermore, you can object to the processing of your data in accordance with Art. 21 EU GDPR, on the basis of which we must stop processing your data. However, this right of objection only applies in very special circumstances of your personal situation, whereby the rights of our company may conflict with your right of objection.

You also have the right to receive your data in a structured, commonly used and machine-readable format or to transmit those data to a third party under the conditions set out in Article 20 EU GDPR.

In addition, you have the right to withdraw your consent to the processing of personal data at any time with effect for the future (see section 2.3).

Furthermore, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 EU GDPR). However, we recommend that you always address a complaint to our data protection officer first.

Your requests to exercise your rights should, if possible, be addressed in writing or by email to the above address or directly in writing or by email to our data protection officer.

Special note on your right to object under Article 21 of the GDPR

You have the right to object at any time to the processing of your data that is carried out on the basis of Article 6(1)(f) of the GDPR (data processing based on a balancing of interests) or Article 6(1)(e) of the GDPR (data processing in the public interest) if there are reasons for doing so that arise from your particular situation.

This also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

We may also process your personal data for direct marketing purposes. If you do not wish to receive advertising, you have the right to object to it at any time; this also applies to profiling insofar as it is associated with such direct marketing. We will take this objection into account for the future. We will no longer process your data for direct marketing purposes if you object to the processing for these purposes.

The objection can be made informally and should be addressed to

meteoviva GmbH

Data Protection Officer

Friedlandstraße 18

D-52064 Aachen

E-Mail: datenschutz(at)meteoviva(dot)com

Web: www.meteoviva.com

You also have the option of contacting the above-mentioned data protection officer or a data protection supervisory authority with a complaint.
The data protection supervisory authority responsible for us is:

State Commissioner for Data Protection and Freedom of Information

North Rhine-Westphalia

P.O. Box 20 04 44

40102 Düsseldorf

Tel.: 0211/38424-0

Fax: 0211/38424-10

E-mail: poststelle(at)ldi.nrw(dot)de

Information on the processing of customer/supplier data

General

meteoviva GmbH takes the protection of your personal data very seriously. Your privacy is an important concern for us. We process your personal data in accordance with the applicable statutory data protection requirements for the purposes listed below. Personal data in the sense of this data protection information is all information that is related to you as an individual.

The following information explains how we handle this data. For a better overview, we have divided our data protection information into chapters.

The data controller is

meteoviva GmbH

Managing Directors: Dr. Stefan Hardt and Uwe Großmann

Friedlandstraße 18

D-52064 Aachen

Fon: +49 (0) 241 94578 -0

Fax: +49 (0) 241 94578 100

E-mail: datenschutz(at)meteoviva(dot)com

E-mail: info(at)meteoviva(dot)com

Web: www.meteoviva.com

If you have any questions or comments about data protection (for example, to access or update your personal information), you can also contact our data protection officer.

Processing framework

Source of data collection

We process personal data that we have collected directly from you.

To the extent necessary for the provision of our services, we process personal data that we have legitimately received from other companies or other third parties (e.g. credit agencies, address publishers). In addition, we process personal data that we have legitimately taken, received or acquired from publicly accessible sources (such as telephone directories, commercial and association registers, civil registers, debtor registers, land registers, press, internet and other media) and are allowed to process.

Origin and categories of data not collected directly from you

To the extent necessary for the provision of our services, we process personal data that we have legitimately received from other companies or other third parties. In addition, we process personal data that we have legitimately obtained, received or acquired from publicly accessible sources (press, internet and other media) and are permitted to process. Relevant personal data categories may include, in particular:

  • Personal data (name, date of birth, place of birth, nationality, marital status, occupation/industry and similar data)
  • Contact details (address, email address, telephone number and similar data)
  • payment/cover confirmation for bank and credit cards customer history
  • data about your use of the telemedia we offer (e.g. when you access our websites, apps or newsletters, pages/links of ours you click on or entries and comparable data)
  • creditworthiness data

Purpose and legal basis of the data processed

We process personal data in compliance with the provisions of the German Federal Data Protection Act (BDSG) and the EU General Data Protection Regulation (GDPR), as well as all other relevant laws.

If the GDPR applies to you, we hereby provide you with all the information in accordance with Art. 13 GDPR.

Which data is processed in detail and how it is used depends largely on the services requested or agreed in each case. Further details or additions for the purposes of data processing can be found in the respective contract documents, forms, a declaration of consent and/or other information provided to you (e.g. when using our website or our terms and conditions).

Purposes of fulfilling a contract or pre-contractual measures (Art. 6 (1) (b) GDPR)

We process personal data in order to perform our contracts with you and to carry out your orders, as well as to take measures and perform activities in the context of pre-contractual relationships, e.g. with prospective customers. This includes, in particular: contract-related communication with you, the corresponding billing and associated payment transactions, the verifiability of orders and other agreements, as well as quality control through appropriate documentation, goodwill procedures, measures to control and optimisation of business processes and for the fulfilment of general duties of care, control and monitoring by affiliated companies; statistical evaluations for corporate management, cost recording and controlling, reporting, internal and external communication.

Beyond the actual fulfilment of the contract or preliminary contract, we may process your data if it is necessary to protect our legitimate interests or those of third parties, in particular for purposes

  • advertising or market and opinion research, provided you have not objected to the use of your data;
  • examining and optimising procedures for needs analysis;
  • further developing services and products as well as existing systems and processes;
  • enhancing our data, including by using or researching publicly accessible data;
  • statistical evaluations or market analysis;
  • benchmarking;
  • the assertion of legal claims and defence in the event of legal disputes that are not directly attributable to the contractual relationship;
  • the restricted storage of data if deletion is not possible or only possible with a disproportionately high effort due to the special type of storage;
  • the development of scoring systems or automated decision-making processes;
  • the prevention and investigation of criminal offences, insofar as this is not exclusively for the purpose of complying with legal requirements;
  • building and plant security (e.g. through access controls), insofar as this goes beyond the general duty of care;
  • obtaining and maintaining certifications under private or public law;
  • to ensure and exercise domiciliary rights by means of appropriate measures (such as video surveillance) and to secure evidence in the event of criminal offences and their prevention.

Purposes within the scope of your consent (Art. 6 (1) (a) EU GDPR): Your personal data may also be processed for specific purposes (e.g. using your email address for marketing purposes) on the basis of your consent. As a rule, you can revoke this consent at any time. You will be informed separately about the purposes and the consequences of a revocation or of not granting consent in the corresponding text of the consent. In principle, the revocation of consent is only effective for the future. Processing that took place before the revocation is not affected and remains lawful.

Purposes of compliance with legal requirements (Art. 6 (1) (c) GDPR) or in the public interest (Art. 6 (1) (e) GDPR)

Like everyone who participates in economic life, we are also subject to a variety of legal obligations. These are primarily legal requirements (e.g. commercial and tax laws), but may also include regulatory or other official requirements. The purposes of processing may include the fulfilment of control and reporting obligations under tax law as well as the archiving of data for the purposes of data protection and data security as well as audits by tax and other authorities. In addition, the disclosure of personal data may be required as part of official/judicial measures for the purposes of gathering evidence, criminal prosecution or enforcing civil claims.

Scope of your obligations to provide us with data

You are only required to provide the data that is necessary for the commencement and execution of a business relationship or for a pre-contractual relationship with us or that we are legally obliged to collect. Without this data, we will generally not be able to conclude or execute the contract. This may also apply to data required at a later stage in the course of the business relationship. If we request additional data from you, you will be informed separately that the information is voluntary.

Consequences of not providing data

As part of the business relationship, you must provide the personal data that is necessary for the establishment, execution and termination of the legal transaction and the fulfilment of the associated contractual obligations or that we are legally obliged to collect. Without this data, we will be unable to carry out the legal transaction with you.

Recipients of the data

Within our company, your data is received by the internal departments or organisational units that require it to fulfil our contractual and legal obligations or in the context of processing and implementing our legitimate interests.

Your data will only be passed on to external parties

  • in connection with the performance of the contract;
  • for the purposes of complying with legal requirements that require us to provide information, report or disclose data or where the disclosure of data is in the public interest (see section 2.4);
  • insofar as external service providers process data on our behalf as processors or function providers (e.g. data centres, support/maintenance of IT applications, archiving, document processing, call centre services, compliance services, controlling, data validation or plausibility ity checks, data destruction, purchasing/procurement, customer administration, lettershops, marketing, media technology, research, risk controlling, billing, telephony, website management, auditing services, credit institutions, printing companies or companies for data disposal, courier services, logistics);
  • on the basis of our legitimate interest or the legitimate interest of the third party for the purposes mentioned (e.g. to authorities, credit agencies, collection agencies, lawyers, courts, experts, subsidiaries and committees and control bodies);

if you have given us permission to transfer the data to third parties.

We will not pass on your data to third parties beyond this. If we commission service providers to process an order, your data will be subject to the same security standards there as they are with us. In all other cases, the recipients may only use the data for the purposes for which they were transmitted to them.

Storage periods

We process and store your data for the duration of our business relationship. This also includes the initiation of a contract (pre-contractual legal relationship) and the execution of a contract.

In addition, we are subject to various legal storage and documentation obligations. The periods for storage and documentation specified therein are up to 15 years. Furthermore, personal data may be stored for the period during which claims can be asserted against us (statutory limitation period).

Furthermore, special legal provisions may require a longer retention period.

If the data is no longer required for the fulfilment of contractual or legal obligations and rights, it is regularly deleted, unless its – temporary – further processing is necessary to fulfil the purposes of an overriding legitimate interest. Such an overriding legitimate interest also exists, for example, if erasure is not possible or only possible with disproportionately high effort due to the special type of storage and processing for other purposes is excluded by suitable technical and organisational measures.

Your rights

  • Under certain conditions, you can assert your data protection rights against us.For example, you have the right to request information from us about your data stored by us in accordance with the provisions of Art. 15 EU-GDPR.Upon your request, we will correct the data stored about you in accordance with 16 EU-GDPR if it is inaccurate or incorrect.
  • If you wish, we will delete your data in accordance with the principles of Article 17 EU GDPR, provided that this does not conflict with other legal regulations or an overriding interest on our part (e.g. to defend our rights and claims).Taking into account the requirements of Article 18 EU GDPR, you can request that we restrict the processing of your data.
  • Furthermore, you can object to the processing of your data in accordance with Art. 21 EU GDPR, on the basis of which we must stop processing your data. However, this right of objection only applies in very special circumstances of your personal situation, whereby the rights of our company may conflict with your right of objection.
  • You also have the right to receive your data in a structured, commonly used and machine-readable format or to transmit those data to a third party under the conditions set out in Article 20 EU GDPR.In addition, you have the right to withdraw your consent to the processing of personal data at any time with effect for the future (see section 2.3).
  • Furthermore, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 EU GDPR). However, we recommend that you always address a complaint to our data protection officer first.Your requests to exercise your rights should, if possible, be addressed in writing or by email to the above address or directly in writing or by email to our data protection officer.
  • Special note on your right to object under Article 21 of the GDPRYou have the right to object at any time to the processing of your data that is carried out on the basis of Article 6(1)(f) of the GDPR (data processing based on a balancing of interests) or Article 6(1)(e) of the GDPR (data processing in the public interest) if there are reasons for doing so that arise from your particular situation.

Special note on your right to object under Article 21 of the GDPR

You have the right to object at any time to the processing of your data that is carried out on the basis of Article 6(1)(f) of the GDPR (data processing based on a balancing of interests) or Article 6(1)(e) of the GDPR (data processing in the public interest) if there are reasons for doing so that arise from your particular situation.

This also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

We may also process your personal data for direct marketing purposes. If you do not wish to receive advertising, you have the right to object to it at any time; this also applies to profiling insofar as it is associated with such direct marketing. We will take this objection into account for the future. We will no longer process your data for direct marketing purposes if you object to processing for these purposes.

The objection can be made informally and should be addressed to

meteoviva GmbH

Data Protection Officer

Friedlandstraße 18

D-52064 Aachen

Fon: +49 (0) 241 94578 -0

Fax: +49 (0) 241 94578 100

E-mail: datenschutz(at)meteoviva(dot)com

E-mail: datenschutz(at)meteoviva(dot)com

Web: www.meteoviva.com

You also have the option of contacting the above-mentioned data protection officer or a data protection supervisory authority with a complaint.

The data protection supervisory authority responsible for us is:

State Commissioner for Data Protection and Freedom of Information

North Rhine-Westphalia

P.O. Box 20 04 44

40102 Düsseldorf

Tel.: 0211/38424-0

Fax: 0211/38424-10

E-mail: poststelle(at)ldi.nrw(dot)de