Skip to content

Data protection information for the use of our website

The present information on data protection in accordance with Art. 13 et seq. DSGVO serves the duty to inform when collecting personal data.

1. Name and contact details of the person responsible:

byterunner GmbH & Co. KG
Represented by the management
Herzogspitalstr. 24
80331 München
(hereinafter “byterunner”, “we”, “us”)

2. Contact details of the data protection officer:

Holzhofer Consulting GmbH
Martin Holzhofer
Lochhamer Str. 31
82152 Planegg
Tel.: (0 89) 1 25 01 56 00
E-Mail: datenschutzbeauftragter@holzhofer-consulting.de
www.holzhofer-consulting.de

3. Purposes for which the personal data are to be processed and the legal basis for the processing:

3.1. Processing of access data (Art. 6 para. 1 lit. f. DSGVO).

For technical reasons, we process a limited amount of data (so-called connection data) each time you access our website. This data is technically necessary to establish and carry out a connection between your terminal device and our servers. This data is processed in the main memory of the web server for the duration of the connection.
The following data or data categories are collected:
– IP address
– Source port of the calling device or a gateway (e.g., firewall or proxy) – Time stamp (date and time) of the request
– Amount of data transferred
– Message whether the retrieval was successful (by means of HTTP error code) – Message explaining why the request failed (using HTTP error code) – Referrer (website from which our main page or sub-pages were called up) – User agent (type of browser used to access our website and its version) – Width and height of the display screen
– Language settings of your browser

The IP address, timestamp, HTTP error code, referrer and user agent are automatically logged when you access our website in order to ensure the functionality and protection of our website. Furthermore, the logs serve to optimise the website. Your IP address is only processed in the logs in abbreviated form and is thus anonymised. It is not possible for us to create a user profile or a personal reference with this data.

The processing is carried out on the basis of legitimate interest according to Art. 6 para. 1 lit. f DSGVO. A balancing of interests was carried out and came to the conclusion that the processing operations are necessary to protect our legitimate interests and that these
outweigh your interests, fundamental rights and freedoms that require the protection of personal data.

3.2. Technically required cookies

This website partly uses so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Such cookies are mandatory and technically necessary for the operation of the website and to provide the service requested by the user and can therefore not be deactivated.

The processing is carried out on the basis of legitimate interest in accordance with Art. 6 (1) lit. f DSGVO. A balancing of interests was carried out and came to the conclusion that the processing operations are necessary to safeguard our legitimate interests and that these outweigh your interests, fundamental rights and freedoms requiring the protection of personal data.

3.3. Cookies requiring consent such as analysis and tracking cookies as well as related technologies (e.g., tracking scripts)

There are currently no advertising and marketing cookies, or analysis tools integrated on the website which, for example, record the user’s behaviour and send him advertising tailored to this (e.g. Google Analytics or Google Ads). However, third-party services are used which are not technically necessary for the operation of the website (e.g. Google Maps). These
services only become active after you have expressly given your consent. An overview of all third-party services integrated on the website that require your consent, as well as detailed information on each service, can be found under section 9.

3.4. Data use based on your consent (Art. 6 para. 1 lit. a) DSGVO)

In the event of a promotional approach, we will only contact you via the communication channels to which you have consented, subject to the sending of mail. For this purpose, we use your data for the following purposes:
– Quality assurance: In order to continuously improve our performance, our products and our services for you, we conduct surveys on your satisfaction and your experiences from your contractual relationship with us.
– General and personalised advertising.
– If you have given us a SEPA direct debit mandate, we will also use your bank details.

3.5. Data processing for the implementation of pre-contractual measures with interested parties

Our offer is aimed exclusively at entrepreneurs, tradespeople, freelancers, and public institutions. Contracts with consumers according to § 13 BGB are not concluded. If you are interested in our services offered on the website, we process and store the information you provide when you contact us, e.g. via our contact form. All information for the fulfilment of the information obligations for these processing activities pursuant to Art. 13 et seq. DSGVO can be found in our Data protection information for our customers and interested parties.

4. Data transfer to a third country

Data transfers to countries outside of the EU and the European Economic Area (“third countries”) arise in the context of the administration, development, and operation of IT systems. The transfer only takes place on the basis of:

– an adequacy decision of the European Commission within the meaning of Art. 45 DSGVO.
– an approved certification mechanism pursuant to Art. 42 DSGVO together with legally binding and enforceable obligations of the controller or processor in the third country. – of standard data protection clauses approved by the Commission pursuant to the review procedure under Article 93(2) of the GDPR.

Currently, a transfer of personal data to the US takes place using third-party services of US companies in the following cases:
– Transfer of data to Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

5. Categories of data recipients

For the processing of personal data for the purposes mentioned here, we use the following categories of recipients as processors within the meaning of Art. 28 DSGVO:
– Server providers for the purpose of hosting our websites
– IT service providers for the maintenance of our IT infrastructure
– External service providers for additional services
– Further processors within the meaning of Art. 28 DSGVO in the course of Order processing
– …
Your data will also be passed on if we are legally obliged to do so.

6. Storage period and criteria for determining the duration

Personal data are generally only stored for as long as is necessary to fulfill the purposes mentioned here. If there are statutory retention periods, we are obliged to save the data until these periods have expired. After the statutory retention requirements have expired, we will delete this data again.

In the present case, all connection data in the web server’s memory is automatically deleted shortly after the connection has ended. The anonymized access logs are kept for 30 days. If parts of the access log are required for the purpose of preserving evidence, these are excluded from deletion until the respective incident has been finally clarified. We store your data for advertising purposes until you object to its use, you revoke your consent, or an address is no longer permitted by law.

7. Information on your data subject rights

You can request information from us at any time (Art. 15 GDPR) about the data stored about you and their correction (Art. 16 GDPR) in the event of errors. You can also restrict the processing (Art. 18 GDPR), the portability (Art. 20 GDPR) of the data you have provided to us in a machine-readable format or the deletion of your data (Art. 17 GDPR) – if they are no longer required.

You also have the right to object to the use of your data based on public or legitimate interests at any time (Art. 21 GDPR).
If we process your data based on your consent, you can revoke this consent at any time with effect for the future (Art. 7 Para. 3 GDPR). Once we have received your revocation, we will no longer process your data for the purposes specified in the consent.
If you would like to make use of your rights as a data subject, please address your request to:

byterunner GmbH & Co. KG
Herzogspitalstr. 24
80331 München
info@byterunner.de

8. Information on automated decision-making including profiling

Automated individual case decisions including profiling in accordance with Art. 22 Para. 1 and 4 DSGVO do not take place on the part of byterunner GmbH & Co. KG.

9. Right of complaint to a supervisory authority

You can also lodge a complaint with a supervisory authority at any time. The Bavarian State Office for Data Protection Supervision, Postfach 1349, 91504 Ansbach, is responsible for us. Alternatively, you can approach the local supervisory authority responsible for you.

10. Data protection information for all third-party services integrated on the website.

10.1. Data protection notice on the use of Google Maps

This website uses Google Maps to display interactive maps and to create directions. and for the creation of directions. Google Maps is a mapping service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. Using Google Maps, information about the use of this website, including your IP address and the IP address and the (start) address entered in the route planner function to Google in the USA.

Google in the USA. If you call up a web page on our website which contains Google Maps, your browser establishes a direct connection with the Google servers. Google transmits the map content directly to your browser, which then integrates it into the website. Therefore, we have no influence on the extent of the data collected by Google in this way. According to our state of knowledge this is at least the following data:

– Date and time of the visit to the website in question,
– Internet address or URL of the website accessed,
– IP address, (start) address entered as part of route planning.
We have no influence on the further processing and use of the data by Google and can therefore assume no responsibility for this. If you do not want Google to collect data about you via our website, you can deactivate JavaScript in your browser settings. In this case, however, you will not be able to use the map display. The legal basis for the processing of your personal data is your voluntary and informed consent in accordance with Art. 6 Para. 1 S. 1 lit. a DSGVO. You give your consent via the Consent Banner. For further information on the purpose and scope of the data collection and the further use of the data by Google, please refer to the Google’s privacy policy at https://policies.google.com/privacy?hl=de

10.2. Data protection notice on the use of Google Fonts API/ gStatic API

Parkway, Mountain View, California 94043, USA. (“Google”). These web fonts are integrated through a server call, usually a Google server in the USA. This establishes a connection with your device and it is transmitted to the server, among other things, which of our Internet pages you have visited. The IP address of the browser of your terminal device is also collected by Google.

The legal basis for the processing of your personal data is your voluntary and informed consent according to Art. 6 para. 1 p. 1 lit. a DSGVO.

You can find more information at
https://developers.google.com/fonts/faq?tid=331597391040

11. Data protection notice on the use of Cloudflare

We use Cloudflare from Cloudflare, Inc. (101 Townsend St., San Francisco, CA 94107, USA) to make our website faster and more secure. Cloudflare uses cookies and processes user data. Cloudflare, Inc. is an American company that provides a content delivery network (CDN) and security services. These services are located between the user and our hosting provider and act as a reverse proxy for websites.

A CDN is a network of servers connected over the Internet. Cloudflare has distributed such servers all over the world in order to bring websites to your screen faster through a system of load sharing. In addition, Cloudflare also offers various security services for the website, such as DDoS protection or the web application firewall.

Cloudflare generally only forwards data that is controlled by website operators. The content is not determined by Cloudflare, but always by the website operator. In addition, Cloudflare may collect certain information about the use of our website and process data that is sent by us or for which Cloudflare has received instructions. In most cases, Cloudflare receives data such as contact information, IP addresses, security fingerprints, DNS log data and performance data for websites that are derived from browser activity.

The legal basis for the processing of your data is our overriding legitimate interest in the optimal and secure operation of our website in accordance with Article 6 (1) (f) GDPR. Further information on data protection at Cloudflare is available at: https://www.cloudflare.com/de-de/privacypolicy/

 
Cookie Consent with Real Cookie Banner