The MYCROLAB GbR team („we“, “us”, or “MYCROLAB”) is happy about your visit and your interest in the associated products and services.
The protection of your personal data is very important to us. In accordance with articles 12, 13 and 21 of the General Data Protection Regulation (GDPR), we would like to inform you about how we handle your personal data when you use our website www.mycrolab.de and about your rights under the GDPR.
According to Art 4. Point 1 of Regulation (EU) 2016/679 (General Data Protection Regulation), “personal data” is defined as any information relating to an identified or identifiable natural person. This includes, for example, name, address, e-mail address and user behavior.
According to Art. 4 Par. GDPR, the controller is:
Alina Stein, Anne-Marie Mölders, Stefan Decker
Phone: +49 (0) 15123066284
More information in the legal notice.
- Collection and storage of personal data and purpose and type of data processing
You can visit the website www.mycrolab.de without providing any further information about yourself. If you use our website for informational purposes only, we do not process any personal data, with the exception of the data transmitted by your browser to enable you to visit the website and information transmitted to us in the context of cookies used to analyze the usage.
Upon visiting the website
If you wish to view our website, we collect the following data, which are technically necessary for us to enable you to view our website and to ensure stability and security:
- IP address
- Date and time of the request
- Content of the website
- Transferred data volume
- Web browser
- Browser language and version
- Access status (HTTP status)
- Operating system
- Website from which you come to our website
The aforementioned data is also stored in so-called log files on the servers of our hosting partner. These data will not be stored together with other personal data of yours. We process and/or store your personal data on a server of an external provider in the European Union. This ensures that the standards and regulations of European data protection law are observed.
In the above-mentioned purposes lies our legitimate interest in data processing. The legal basis for the collection and temporary storage of the aforementioned data is Art. 6. Para. 1 p. 1 lit. f) GDPR.
The collection of the above data for the provision of our website and the storage of this data in log files is mandatory for the operation of our website. There is no possibility to object for the duration of the respective session.
Using of our contact form and contact via E-Mail
On our website we offer various ways of contacting us. If you use the offered contact form, it is necessary to enter a name and an e-mail address. All other personal data can be added optionally. The transmitted data will be stored for the purpose of contacting you later. This is also our legitimate interest in processing your personal data. If you have given us your consent, the legal basis for processing this data is Art. 6 Para. 1 lit. a) DSGVO.
Alternatively, it is possible to contact us via the provided e-mail address (firstname.lastname@example.org). In this case, your personal data transmitted with the e-mail will be stored. The legal basis for data processing for the purpose of contact is Art. 6 para. 1 lit. f DSGVO. If you wish to work towards the conclusion of a contract through your e-mail, Art. 6 para. 1 lit. b) DSGVO constitutes an additional legal basis.
- Processing of Data
Personal data will only be passed on to third parties (recipients) if we are entitled to do so in accordance with data protection regulations. MYCROLAB may pass on your personal data to third parties (recipients) if:
- You have given consent to the processing of your personal data for one or more specific purposes (Art. 6 para. 1 lit. a GDPR)
- processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (Art. 6 para. 1 lit. b GDPR)
- processing is necessary for compliance with a legal obligation to which the controller is subject (Art. 6 para. 1 lit. c GDPR)
- processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data (Art. 6 para. 1 lit. f GDPR)
The data which is processed by cookies and which is required for the provision of the functions of our website is not used to create user profiles. If cookies are used for analysis purposes, they serve to improve the quality and user-friendliness of our website, as well as its content and functions. They enable us to understand how the website is used, what features are used and how often. This enables us to continually improve our services.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, disabling cookies completely may mean that you will not be able to use all the features of our website.
Our legitimate interest in data processing lies in the aforementioned purposes. The legal basis is Art. 6 para. 1 lit. f) GDPR.
In addition to the aforementioned informational use of our website, we offer various services which you can use if you are interested. For this purpose, it is usually necessary to provide further personal data. We need these data to provide the respective service. The above principles of data processing apply.
In some cases, we use external service providers who have been carefully selected and commissioned by us to process this data. These service providers are bound by our instructions and are regularly controlled by us. If personal data is passed on to third parties in the course of services that we offer jointly with partners, you can find more detailed information in the following descriptions of the individual services.
- External Partners
Google will use this information to evaluate your use of our website on our behalf, compile reports on website usage and provide us with further services related to website and internet usage. Pseudonymous user profiles can be created from the processed data. he IP address transmitted during the use of Google Analytics is not combined with other data from Google.
We use Google Analytics for the purpose of analyzing the use of our website and continuously improving individual functions and offers as well as the user experience. Through the statistical evaluation of user behavior, we can improve our offer and make it more interesting for you as a user. This is also our legitimate interest in the processing of the above data by Google. The legal basis is Art. 6 Para. 1 S. 1 lit. f) GDPR.
In order to oblige Google to process orders for the data transmitted only in accordance with our instructions and to comply with the applicable data protection regulations, we have concluded an order processing contract with Google. In the exceptional cases in which personal data is transferred to the USA, Google has submitted itself to the Privacy Shield Agreement concluded between the European Union and the USA and certified itself. As a result, Google is committed to complying with the standards and regulations of European data protection law. For more information, please refer to the following linked entry: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Third Party Information: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, Fax: +353 (1) 436 1001.
On our website we use “Google Web Fonts”, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as: “Google”). Google Web Fonts enables us to use external fonts, so-called Google Fonts. For this purpose, the required Google font is loaded from your web browser into the browser cache when you access our website. This is necessary so that your browser can display our texts in a visually improved way. If your browser does not support this function, a standard font from your computer is used for display. The integration of these web fonts is done by a server call, usually at a Google server in the USA. This transfers to the server which of our Internet pages you have visited. The IP address of the browser of your end device is also stored by Google. We have no influence on the scope and further use of the data collected and processed by Google through the use of Google Web Fonts.
We use Google Web Fonts for optimization purposes, in particular to improve the use of our website for you and to make its design more user-friendly. This is also our legitimate interest in the processing of the above data by the third-party provider. The legal basis is Art. 6 Para. 1 p. 1 lit. f) GDPR.
Google has signed and certified a Privacy Shield Agreement between the European Union and the United States. This means that Google is committed to complying with the standards and regulations of European data protection law. You can find more information in the following linked entry: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Further information about Google Web Fonts can be found at http://www.google.com/webfonts/, https://developers.google.com/fonts/faq?hl=de-DE&csw=1 und https://www.google.com/fonts#AboutPlace:about
On our website we use “YouTube”, a social plug-in of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). to integrate contents of the social platform YouTube on websites of our Internet presence. This transfers data to a Google server in the USA and stores it there. If you have a user account with Google and are registered, Google can assign the visit to your user account. Google stores this data as user profiles and uses it for advertising, market research and/or the design of its websites to meet your needs. Such an evaluation is carried out in particular (also for users who are not logged in) to display demand-oriented advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles. Please contact Google directly.
We use YouTube to be able to display and offer you contents and functions of the social platform YouTube on our website and thereby to improve our offer as well as the user experience and make it more interesting. This also includes our legitimate interest in the processing of the above data by the third party provider. The legal basis is Art. 6 Para. 1 S. 1 lit. f) GDPR.
If you want to prevent data transfer, you cannot use the YouTube functions. Irrespective of this, we recommend that you regularly log out of your user account after using a social network, especially before activating integrated content, as this allows you to avoid being assigned to your profile by the respective provider.
Google has signed and certified a privacy shield agreement between the European Union and the United States. This means that Google is committed to complying with the standards and regulations of European data protection law. For more information, please refer to the following linked entry: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Third Party Information: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland
Further information on data protection and the use of data by Google can be found on the following Google website: http://www.google.de/intl/de/policies/privacy
- Social Media
- Data Subject Rights
You have the right:
- according to Art. 15 GDPR to request information about personal data processed by us. In particular, you may request information about the purposes of processing, the categories of personal data concerned, the recipients or categories of recipient to whom the personal data have been or will be disclosed, where possible, the envisaged period for which the personal data will be stored, the existence of the right to request from the controller rectification or erasure of personal data, restriction of processing of personal data concerning the data subject or to object to such processing, the right to lodge a complaint, where the personal data are not collected from the data subject, any available information as to their source, the existence of automated decision-making, including profiling and meaningful information about the logic involved;
- according to Art. 16 GDPR to obtain from the controller without undue delay the rectification of inaccurate personal data stored with us concerning you;
- according to Art. 17 GDPR the erasure of personal data concerning you without undue delay, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
- according to Art. 18 GDPR to obtain restriction of processing if the accuracy of the personal data is contested, the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead, we no longer need the data for the purposes of the processing, but are required by the data subject for the establishment, exercise or defense of legal claims or if you have objected to processing pursuant to Article 21GDPR;
- according to Art. 20 GDPR to receive the personal data concerning you, which you provided to us, in a structured, commonly used and machine-readable format and to request to transmit those data to another controller;
- according to Art. 7 Para. 3 GDPR to withdraw your consent at any time. As a result, we may no longer continue the data processing that was based on this consent for the future and
- according to Art. 77 GDPR to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or our office.
- Right to Object
If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1, P. 1, lit f) GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, if there are reasons for doing so arising from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection, which will be implemented by us without specifying a special situation.
If you wish to make use of your right of revocation or objection, simply send an e-mail to email@example.com.
- Additional Information
We draw your attention to the following in accordance with Art. 13 Para. 2 lit e GDPR: You are not obliged to provide us with personal data. Failure to do so will not result in any negative consequences for you. The provision of your personal data to us is not required by law or contract. However, we will not be able to provide individual services (such as feedback after filling out the contact form) if you do not agree to the use and disclosure of your personal data as provided here. If the provision of some data is voluntary, we will inform you accordingly in the context of the respective application form.
We draw your attention to the following in accordance with Art. 13 Para. 2 lit f GDPR: We do not process your personal data for the purpose of automated decision making.
We draw your attention to the following in accordance with Art. 13 Para 1 lit f GDPR: We intend to transfer the personal data to a third country or an international organization. Our legitimate interest in such a transfer is to continuously develop and improve the services we offer by evaluating user behavior. We only transfer the data if the data protection guarantees for a transfer to a third country according to Art. 44 et. seq. GDPR are observed.
- Data Security
We use the common SSL (Secure Socket Layer) procedure within the website visit in connection with the highest encryption level supported by your browser. Usually this is a 256 bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
It may become necessary to amend this data protection declaration as a result of the further development of our website and offers above or due to changes in legal or official requirements. You can access and print out the current data protection declaration at any time on the website at www.mycrolab.de/datenschutzerklärung