Data Protection Policy

We value your privacy

  1. Data protection information

This Data Protection Policy contains information on the extent to which we process your personal data (hereinafter referred to as “data”).

 

2. Controller

The controller in accordance with the General Data Protection Regulation (GDPR) is:

RMCB GmbH
Listertalstrasse 73
57439 Attendorn
Germany

Website: www.the-flag.de
E-mail: datenschutz@the-flag.de

3. Data protection officer contact details

RMCB GmbH
To the data protection officer
Listertalstrasse 73
57439 Attendorn
Germany

E-mail: datenschutz@the-flag.de

4. Data processing

We process data to operate our website. This also includes disclosure in the form of transfer to third parties and, if necessary, to so-called third countries outside the European Union (EU) and the European Economic Area.

An adequacy decision, the so-called “EU-US Privacy Shield”, has been issued by the EU Commission for data transfers to the USA. With this decision, the EU Commission confirms that the guarantees given for data transfers to the USA are based on the provisions of the EU-US Privacy Shield and meet the EU data protection standard. We have marked the participation of our service providers in the EU-US Privacy Shield whenever we transfer data to the USA.

The individual data affected, processing purposes, legal bases, recipients and transfer to third countries are stated below:

a) Log files when visiting websites

We log your website visit. We process the name of the accessed web page, date and time of access, transferred data volume, browser type and version, your operating system, referrer URL (previously visited web page), your IP address and querying provider. This is necessary to ensure that the website is secure. We process the data on the basis of our legitimate interests in accordance with Art. 6 (1) lit. f GDPR, to guarantee the security of the website. Log files are deleted after seven days, unless they are required for clarifying or proving specific violations of the law that have been uncovered within the retention period.

b) Hosting

All data related to the operation of this website is stored as part of the hosting process. The data is processed on the basis of our legitimate interests in accordance with Art. 6 (1) lit. f GDPR, to make it possible to operate the website. We use the services of web hosting providers to operate our website to whom we transfer the above-stated data (Section 4 b).

c) Contacting us

If you contact us, we process your name, any contact details you provide and your message for the sole purpose of processing and handling your query. The data is processed on the basis of Art. 6 (1) lit. b GDPR for the fulfilment of the agreement and/or our pre-contractual obligations or on the basis of our legitimate interests in accordance with Art. 6 (1) lit. f GDPR for the purpose of processing your query.

d) Contacting us for job applications

If you contact us to send us your job application, e.g. per e-mail or through a contact form, your data (e.g. name, e-mail address, requested place of work, if stated by you), your message and the submitted job application documents are processed for the sole purpose of processing and handling your job application. The predominant legal basis for these data processing activities is Section 26 of the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). It states that data may be processed which is required in connection with making a decision about concluding an employment contract with an applicant.

Should the data be required once the application process has closed, i.e. for prosecution purposes, the data may be processed to maintain our legitimate interests in accordance with Art. 6 (1) lit. f GDPR, namely for the assertion and/or defence of claims.

e) Inclusion in our pool of applicants

By your request, we can include your application profile in our pool of applicants so that we can consider and invite you to apply for suitable vacancies. The data is processed on the basis of your consent in accordance with Art. 6 (1) lit. a GDPR.

f) Newsletter

You can subscribe to our e-mail newsletter to receive regular information on our company and products. When subscribing to the newsletter, we process the data entered by you (e-mail address and other voluntary information). We use the double-opt-in method for newsletter subscriptions. To prevent misuse, we will send you an e-mail requesting that you confirm your subscription once you have subscribed. Your subscription is logged in order to have evidence that the subscription process meets legal requirements. We log the storage of the subscription and confirmation date and time as well as your IP address.

The subscription confirmation e-mail is sent, and the related data logged, on the basis of our legitimate interest to prove that your subscription was processed properly in accordance with Art. 6 (1) lit. f GDPR and the newsletter is sent out on the basis of your consent in accordance with Art. 6 (1) lit. a GDPR.

g) Buyer profile

If you wish to offer us your property for sale, we process your contact details within the scope of pre-contractual correspondence and/or for concluding the agreement.

Your data is processed on the basis of Art. 6 (1) lit. b GDPR.

h) Video surveillance in our properties

We occasionally use video surveillance in our properties. The monitored areas are marked with the following pictogram and information:

We use video surveillance to protect against burglaries and vandalism. The legal basis for this is our legitimate interest in accordance with Art. 6 (1) lit. f GDPR regarding the protection of property against vandalism. All persons present in the marked area are recorded. All recordings are automatically deleted after 30 days.

5. Cookies

On our website, we use so-called cookies. Cookies are small text files stored on your end device (PC, smartphone, tablet, etc.) and saved by your browser.

Purposes
We use technically necessary cookies to ensure the optimal functionality of our website. For example, these cookies enable navigation through the website, as well as other basic functionality.
We also use optional cookies that give us additional information, for example to analyse data traffic, or for advertising and marketing purposes.

Duration
Cookies may remain on your device for different periods of time:
Session cookies: These cookies are deleted from your end device immediately after you close your internet browser.
Persistent cookies: These cookies remain on your device even after you close your web browser. This enables us, for example, to recognize you the next time you visit our website.

Cookie providers
The cookies that we set directly are so-called first-party cookies. Other, third-party cookies may be set by third-party websites, for example when displaying content (advertisements, images, tracking pixels, etc.).

Legal basis of data processing
In general: The legal basis of data processing with cookies is your consent in accordance with Art. 6 Para. 1 a) GDPR or our overriding legitimate interests in the optimization and provision of the functionality of our website in accordance with Art. 6 Para. 1 f) GDPR.

Revocation and objection
For data processing performed on the basis of your consent, you may revoke your consent at any time with future effect (so-called “opting out”). For data processing performed on the basis of a legitimate interest, you may object to further data processing with future effect.

You can revoke your consent at any time using the opt-out link in the section for the corresponding service in the data protection policy.

For information about objecting to data processing, see Cookie Details.

Cookie browser settings
You can also prevent or restrict future data processing with cookies be configuring your browser settings accordingly, for example by turning cookies off. Previously saved cookies can be deleted in your browser settings. For more information about browser settings for specific browsers, visit the following links:

Mozilla Firefox: https://support.mozilla.org/de/kb/
Internet Explorer: https://support.microsoft.com/de-de/help/17442/
Google Chrome: https://support.google.com/accounts/
Opera: http://www.opera.com/de/help
Safari: https://support.apple.com/kb/PH17191?

Our cookies
More information about the specific cookies that are used, their purposes, and their duration can be found under Cookie Details. Analysis / Marketing.

aa) Google services

We use a range of services by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter “Google”) on our website. This may result in data transfers to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 in the USA. In any such case, Google LLC has subscribed to the EU-US Privacy Shield.

The certificate can be viewed at:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
You can find more information about data protection at:
https://policies.google.com/privacy?hl=de&gl=de

Google Analytics
On our website, we use the Google Analytics tracking tool by Google. We use Google Analytics to evaluate your use of the website, compile reports about activities performed on our website, and provide other services related to the use of the website in order to improve its user-friendliness.
When using Google Analytics, the interactions of website visitors are recorded, in particular with cookies, and systematically evaluated.
Details about the cookies that are used can be found under Cookie Details.

We use Google Analytics with the “anonymizeIp()” extension. This shortens IP addresses from member states of the EU or EEA. If a transfer is performed to Google’s servers in the USA, the full IP address is only transferred and abbreviated there in exceptional cases. In general, this prevents any direct reference to individuals. In particular, the data can no longer be associated with the computer or end device of the website visitor.

The use of Google Analytics means that the following data are processed:

  • 3 bytes of the IP address of the website visitor’s system (anonymized IP address),
  • the website that was accessed,
  • the website that redirected the user to the requested page of our website (referrer),
  • the subpages accessed from our website,
  • the time spend on our website,
  • the frequency that our website was accessed.

According to its own policy, Google never associates your IP address with other Google data.
The legal basis of this data processing is your prior consent in accordance with Art. 6 Para. 1 a) GDPR.

Revocation of your consent
You can revoke your consent at any time with future effect by configuring the corresponding setting at http://www.google.de/ads/preferences or clicking the following opt-out link:


Alternatively, you can configure your settings as described under Cookie Details.
Please also note the information about the use of data by Google in Google partner networks under: http://www.google.com/intl/de/policies/privacy/partners/

 

6. Integration of external content

We use dynamic content from third parties to optimize the presentation and offerings of our website. When visiting the website, a request to the server of the relevant content provider is automatically made using an application programming interface (“API”) that transfers certain log data (such as the user’s IP address). The dynamic content is then transferred to our website, where it is displayed.

a) Google Maps

We use the “Google Maps” mapping service by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland “Google” on our website to offer you an interactive map. When displaying the map, data, including your IP address and location, are transferred to Google servers in the USA, where they are stored. This processing is performed on the basis of our overriding legitimate interest in optimally marketing our offerings in accordance with Art. 6 Para. 1 f) GDPR.

In exceptional cases where Google transfers data to the USA, Google- LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA has subscribed to the EU-US Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

More information about data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de

b) Google Fonts

We use external fonts from Google Fonts to make visiting our website more attractive. These fonts are loaded from the servers of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) when our website is visited.

This does not lead Google to save cookies in your browser. However, to the best of our knowledge, the IP address of the user’s end device is transmitted to Google and stored. This processing is performed on the basis of our overriding legitimate interest in optimally marketing our offerings in accordance with Art. 6 Para. 1 f) GDPR.

Google is certified according to:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
More information about data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de

7. Data retention period

We store your personal data only as long as it is required for the purposes for which it is processed or until you withdraw your previous consent for us to do so. The retention period for certain data may be up to 10 years in the event of us having to comply with statutory retention periods, regardless of the processing purposes.

8. Your rights as the data subject

a) Information

You can request free-of-charge information on all of your personal data that we have stored at any time.

b) Correction, deletion and restriction of processing (block), objection

Should you no longer agree to the storage of your personal data, or should your data have become incorrect, we shall initiate its deletion or block upon your corresponding request or make the respective corrections (if this is possible in accordance with the applicable laws). The same applies if you wish for us to restrict the processing of your data in the future. You have the right to object, in particular, if your data is required for the performance of a task that is in the interest of the public or in our legitimate interest as well as any profiling based thereon. You also have the same right to object to data processing for the purpose of direct advertising.

c) Data transferability

By your request, we shall provide you with your data in a standard, structured and machine-readable format so that you can transfer it to another controller.

d) Right to revoke your consent with future effect

You can revoke any consent you may have given with future effect. Your revocation shall not affect the legitimacy of the processing up to the date of revocation.

e) Right to complain

You may, at any time, complain to a supervisory authority with regard to your rights as the data subject:

(https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html).

f) Restrictions

The above rights do not apply to data that we cannot use for identifying the data subject, such as data that has been anonymised for analysis purposes. Information, deletion, blocking, correction and transfer to another company with regard to this data may be possible if you provide us with additional information that enables us to identify the data subject.

9. Assertion of your rights as the data subject

Should you have questions regarding the processing of your personal data as well as information on, the correction, blocking and deletion of, and objection to data, or wish to transfer the data to another company, please contact datenschutz@the-flag.de.

WE ARE OPEN!

Stuck in Frankfurt, Munich or Zurich and current circumstances are hindering your travels? THE FLAG offers you serviced apartments with fully equipped kitchenettes suitable for these times! You want to do “home office away from home”? We offer special rates for this as well.
Just contact: sales@the-flag.de for more info.

Read more about our precautions against COVID19 here!