Our Privacy Policy

General information

The protection of your data is of particular concern to us. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the EU General Data Protection Regulation (GDPR) and the country-specific implementation laws applicable to us. With the help of this data protection declaration, we inform you comprehensively about the processing of your personal data by BIOCOM AG and the rights to which you are entitled.

Personal data is the information that makes it possible to identify a natural person. This includes in particular your name, date of birth, address, telephone number, e-mail address and your IP address.
The responsible body for data processing on this website is:

BIOCOM AG
Jacobsenweg 61
13509 Berlin

If you have specific questions about the protection of your data, please contact our data protection officer: datenschutz[at]biocom.de

Data processing related to visiting this website

Categories, sources and origin of data 

In server log files, the provider of the website automatically collects and stores information that your browser transmits to us. These are:

  • Visited page on our domain
  • Date and time of the server request
  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • IP address (anonymised)

These data are not merged with other data sources. The data processing is based on Art. 6 para. 1 lit. b EU-GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

Passing on to third parties 

We use processors, i.e. companies that we commission to process data within the scope provided by law, Art. 28 DSGVO. This applies in particular to the areas of payment and shipping. The necessary data protection agreements were concluded with these service providers.

Otherwise, data will only be passed on to third parties if we are obliged to do so by mandatory legal provisions (passing on data to external bodies such as supervisory authorities or law enforcement agencies).
Within our company, we ensure that only those persons receive your data who need it in order to fulfill their contractual and legal obligations.

Storage period of the data 

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods mean that data must continue to be stored. This applies in particular to commercial law or tax law storage obligations (e.g. Commercial Code, Tax Code, etc.). If there are no further storage obligations, the data will be deleted as soon as it has been used for its intended purpose.

Data transmission 

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognise an encrypted connection by the “https://” address line of your browser and by the lock symbol in the browser line.
In order to protect data stored with us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons in the best possible way, we use appropriate technical and organisational security measures.

Third country transmission  

Data will only be transferred to third countries (outside the European Union or the European Economic Area) to the extent that this is necessary for the performance of the contractual obligation is required by law or you have given us your consent.

Cookies 

Our website uses cookies. These are small text files that your web browser stores on your device. Cookies help us to make our site more user-friendly, effective and secure. Some cookies are “session cookies”. Such cookies are deleted automatically at the end of your browser session. On the other hand, other cookies remain on your terminal until you delete them yourself. Such cookies help us to recognise you when you return to our website.
With a modern web browser, you can monitor, restrict or prevent the use of cookies. Many web browsers can be configured so that cookies are deleted automatically when the program is closed. The deactivation of cookies can result in a limited functionality of our website.

The setting of cookies, which are necessary for the exercise of electronic communication processes or the provision of certain functions requested by you (e.g. shopping cart), takes place on the basis of Art. 6 para. 1 lit. f EU-GDPR. As the operator of this website, we have a legitimate interest in the storage of cookies for the technically error-free and smooth provision of our services. If other cookies are set (e.g. for analysis functions), these will be dealt with separately in this data protection declaration.

Matomo  

Our website uses the web analysis service Matomo. Matomo is an Open Source solution.

You can deactivate the storage and use of your data here. Your browser uses an opt-out cookie, which prevents the storage of Matomo usage data. If you delete your cookies, the Matomo opt-out cookie will also be removed. When you visit our website again, the opt-out cookie must be set again to prevent the storage and use of your data.

Newsletter with Brevo

This website uses Brevo (previously Sendinblue) to send newsletters. The provider is SendinBlue GmbH, Köpenicker Strasse 126, 10787 Berlin, Germany.
Brevo is a service that can be used, among other things, to organise and analyse the sending of newsletters. The information you enter to subscribe to the newsletter is stored on Brevo’s servers.

Data analysis by Brevo

With the help of Brevo we are able to analyse our newsletter campaigns. For example, we can see whether a newsletter message has been opened and which links have been clicked on, if any. Among other things, this enables us to find out which links were clicked on particularly often.

Legal basis

Your data will be used exclusively for sending the newsletter. We do not pass on this data to third parties, nor do we use it for other purposes. Our registration system, which includes a confirmation message with a web link for full registration (double opt-in), ensures that you have expressly requested the newsletter.

If you do not want Brevo to analyse your data, you must unsubscribe from the newsletter. To do this, we provide a link in every newsletter message.

Data processing is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

For further details, please refer to the privacy policy of Brevo:
https://www.brevo.com/legal/privacypolicy/

Your rights as a data subject

Your rights as a data subject are standardised in Art. 15 – 22 EU-GDPR.

These include

  • The right of access (Art. 15),
  • The right to rectification (Art. 16),
  • The right to erasure “right to be forgotten” (Art. 17),
  • The right to restriction of processing (Art. 18),
  • The right to data portability (Art. 20),
  • The right to object to data processing (Art. 21),
  • Right of appeal to the competent supervisory authority (Art. 77),

Right of access, rectification, deletion, limitation

You have the right to free information about your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if applicable, the right to correction, blocking or deletion of this data at any time within the framework of the applicable statutory provisions. You can contact us at any time in this regard and also for further questions on the subject of personal data.

Data portability

Data that we process automatically on the basis of your consent or in fulfilment of a contract can be handed over to yourself or third parties. The information is provided in a machine-readable format. If you request the direct transfer of the data to another responsible person, this will only be done as far as it is technically feasible.

Rights of objection

Some data processing operations are only possible with your express consent. A revocation of your already given consent is possible at any time. An informal notification by e-mail is sufficient for the revocation. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right of complaint to the responsible supervisory authority

You can assert the aforementioned rights in writing using the contact details given in point 1. You also have a right of appeal to a data protection supervisory authority in accordance with Article 77 of the EU DS Block Exemption Regulation if you believe that we have disregarded data protection regulations when processing your personal data. You can lodge a complaint with the Federal Commissioner for Data Protection and Freedom of Information (BfDI), for example.

Contact details of the BfDI:
Der Bundesbeauftragte für den Datenschutz und die Informationsfreiheit
Hussarenstraße 30
53117 Bonn
E-mail: poststelle@bfdi.bund.de