for the website dominium-koeln.de
As of October 2018
The Controller for processing personal data is:
Generali Real Estate S.p.A.
Opladener Strasse 8
50679 Cologne, Germany
+49 221 42034201
(“we” or “us”).
Our data protection officers can be reached by post at the above-mentioned addresses addressed to the Data Protection Officer, or by email to firstname.lastname@example.org
Personal data also includes information about your use of our website. We collect information about your visits to our website, such as the amount of data transferred, the location from where you retrieve data from our website as well as other connection data and sources that you access. This is usually done by using logs files, cookies or other web analysis tools (please refer to section 5.2 for web analysis tools).
Every time you access a page or file, access data about this process is stored in a log file on our server. Information collected primarily includes the page from which the files are accessed, location of the page, file name, your current IP address, date and time of the request, access status (file transmitted, file not found, etc.), data volume transferred, browser type and language of the browser (referrer and user agent).
3.1. Purposes of and legal basis for data processing
3.1.1 Visiting the website
We use your personal data for the following purposes:
– To provide information about our online services, their features, and content
– To improve our online services
– To prevent misuse/fraud of this website
– To provide the services you require and to be able to contact you at your request or to be able communicate with you
– To ensure that our website is presented to you in the most effective and interesting manner, e.g. storage of information about your display preferences, analysis, further development of our platform and advertising of our partners
– To enable you to participate in interactive services, if you so wish
– To inform you about changes to our services and/or those of our partners.
The legal basis for processing personal data for the above purposes is Art. 6 (1) f) GDPR, in order to protect our legitimate interests or those of third parties. This may be necessary, in particular; to safeguard IT security and IT operations. Data processing for the purpose of contacting is carried out in accordance with Art. 6 (1) a) GDPR on the basis of your consent.
If we intend to process your personal data for a purpose not mentioned above, we will inform you in advance according to the statutory provisions.
3.2 Data storage period
We will delete your personal information as soon as it is no longer necessary for the above purposes. We may store personal data for the time in which claims can be made against us (statutory limitation period of three or up to thirty years). In addition, we store your personal data to the extent we are obliged by law; accordingly, retention periods are up to ten years. Log file information listed in section 3.3 is stored for a maximum of thirty days.
3.3 Automatically collected usage data
So-called usage data are logged in server log files every time the website is being used, as is customary on the Internet. This usage data is transmitted automatically by your internet browser. It includes the following information:
– pseudonymised IP address (Internet Protocol address) of the computer from which the website is accessed
– Internet address of the website from which the website was accessed (so-called origin or referrer URL); name of the service provider used to access the website
– name(s) of the requested file(s) or information
– date and time as well as duration of request
– data volume transferred
– http status code (e.g., “request successful” or “requested file not found”).
The above log file information is stored by us for security reasons (e.g. for the identification of attempted attacks) for a maximum of thirty days and shall be erased thereafter. Data whose further retention is needed for evidence purposes shall be exempt from such erasure until the final clarification of the incident. In individual cases, log file information may be forwarded to investigating authorities. Furthermore log file information is only stored and statistically evaluated anonymously in order to continuously improve this website, to adapt it to the interests of the users, and to locate and fix errors more quickly (see section 5 Cookies and web analysis).
You can request information about the data stored about you, their origin and recipients and the purpose of the storage.
You may, moreover, request that your data be corrected if it is incorrect or incomplete.
You may be entitled to have your data erased or blocked if the collecting, processing or use of your data proves to be unlawful or is no longer necessary.
Additionally, you may have the right to restrict the processing of your data as well as the right to receive the data you have provided in a structured, commonly used, and machine-readable format.
You have the right to object to the processing of your personal data for purposes of direct marketing and/or market and opinion research.
If we process your data in order to safeguard legitimate interests, you have the right to object, on grounds relating to your particular situation, to the processing of your personal data.
You can assert your rights with:
Generali Real Estate S.p.A.
Opladener Strasse 8
50679 Cologne, Germany
+49 221 42034201
You can also contact our data protection officer: Generali Real Estate S.p.A., German Affiliate, Opladener Straße 8, 50679 Cologne, Germany, addressed to the “Data Protection Officer” or by email to email@example.com
You have the right to lodge a complaint with a data protection authority. The data protection authority responsible for us is:
Office for Data Protection and Freedom of Information for the State of North Rhine-Westphalia
(Landesbeauftragte für Datenschutz und
Kavalleriestr. 2 – 4
40213 Dusseldorf, Germany
5.1.1 What are cookies?
Cookies are small files that are stored on your data carrier by your browser which store certain settings and data for the exchange with our system. Cookies do not do any harm to your computer and do not contain any viruses. Furthermore, no personal information is stored in cookies.
5.1.2 What cookies do we use and for what purpose?
Basically, there are two different types of cookies: so-called session cookies, which are deleted as soon as you close your browser and temporary/permanent cookies that are stored on your data carrier for an extended period of time or indefinitely. In addition, we work with various service providers or partners that help by using cookies to make the website and our services more interesting for you (so-called third-party cookies). Storing cookies helps us to tailor our contact page and our services to your requirements and interests, and it makes it easier for you to use, for example by saving certain entries from you so you do not have to constantly re-enter them. By means of analysing the anonymously and partially pseudonymised usage data of our website – on the basis of cookies and via the respective Internet browser (on the basis of so-called server log files) – we optimise or improve our website and online services for you. This also allows us to detect and fix any errors more quickly and to control server capacities depending on the nature and time of usage. This analysis does not allow any conclusions to be drawn about the name or the person behind the pseudonym.
5.1.3 How can cookies be deactivated?
You can set your browser to notify you when cookies are installed. You can also completely disable the acceptance of cookies in your browser settings. If you wish to accept our cookies only, but not the cookies of our service providers and partners, you can choose “block third-party cookies” in your browser settings. However, please note that the use of our website may then be restricted or impossible.
5.2 Web analysis tools and option to object (opt-out)
For the statistical evaluation of this website, we use the technologies of the following providers: YouTube, Google Maps, Google Analytics.
Google is certified according to the Privacy Shield Agreement, which guarantees compliance with the European data protection law. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will process this information on our behalf to evaluate the use of our website by users, to compile reports on activities within this website and to provide us with further services related to the use of this website and the use of associated services on the Internet. Pseudonymous user profiles can be created from the processed data.
We only use Google Analytics with activated IP anonymisation. This means that the user’s IP address will be truncated by Google within member states of the European Union or others party to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there.
The IP address transmitted by your browser will not be linked to other data held by Google. Users can prevent the storage of cookies by setting their browser software accordingly; users may also prevent the collection of data generated by the cookie and related to their use of the website as well as the processing of such data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
Any personal user data will be erased or anonymised after 14 months.
5.2.3 Google Maps
For the fulfilment of our contractual obligations with you, we are entitled to share your data with our service providers. Additionally, we may share your personal data with third parties if sales, competitions, contracts or similar services are offered by us together with partners. Detailed information will be provided when entering your personal data or in the description of the respective service.
Other than that, we do not share your personal data with third parties, unless you have agreed to the data transfer or we are entitled or obliged to transfer the data due to statutory provisions and/or administrative or judicial orders. This may, in particular, be the provision of information for law enforcement purposes, hazard prevention, or enforcement of intellectual property rights.
Our service providers and partners have their registered office within the EU or EEA or in countries that have been classified by the European Commission as having an adequate level of data protection or who otherwise ensure an adequate level of data protection to the service provider (e.g. by using the standard contractual clauses of the European Union).
Service providers and partners receive from us solely the personal data they need for the specific activity. The contracted service providers and partners thereby act in accordance with contractual obligations which ensure that they fully comply with the requirements of all applicable data protection regulations, including the necessary technical security measures.
7.1 Links on social media
7.2 Links to websites of other providers
We are making major technical and organisational efforts to protect your personal data against loss, counterfeiting or unauthorised access. In the event that you wish to contact us by email, we point out that the confidentiality of information submitted can not necessarily be guaranteed, as the content of unencrypted emails during transmission may generally be subject to spy attacks by unauthorised third parties. Most email providers already use automated transport encryption for safeguarding confidentiality in email communications. Please check with your email provider if they also use the TLS protocol. Otherwise, you may consider switching to an email provider with TLS to ensure sufficient encryption.
In addition to the TLS encryption method, we also offer end-to-end PGP encryption for safeguarding the confidentiality of your sensitive data. PGP encrypts your emails so that only the intended recipient can read them.