Privacy policy

Cadomo Nord GmbH attaches great importance to the protection of your privacy and your personal data as well as the required data security and therefore collects, processes and uses your personal data exclusively in accordance with the principles described below as well as the requirements of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) and Telecommunications Telemedia Data Protection Act (TTDSG) applicable to Cadomo Nord GmbH.

Table of contents

I. Name and address of the person responsible

II. Name and address of the data protection officer

III. Your personal data

IV. General information on data processing

V. Provision of the website and creation of log files / log files

VI. Use of cookies

VII. Communication

VII.1 General contact requests and use of the contact form

VIII. Plugins & Tools

VIII.1 Use of Complianz

VIII.2 Use of Vet7.well

IX. Rights of the data subject

X. Automated decision making and profiling

XI. Links to other websites

XII. Security

XIII. Availability and Changes

I. Name and address of the person responsible

The responsible party within the meaning of the EU General Data Protection Regulation (“DSGVO”) and other national data protection laws of the EU member states as well as other applicable data protection regulations for the operation of the website (hereinafter “Website”) is:

Cadomo Nord GmbH

c/o: DICP

Prinzregentenstrasse 56

80538 Munich

Tel.: +49 4221 689660

Mail: info@cadomovets.com

represented by

Dr. Andrea Wolk, Jens-Peter Neumann (hereinafter “Cadomo” or “we”).

If you wish to object to the collection, processing or use of your data by us in accordance with this data protection declaration, either as a whole or for individual measures, you can send your objection by e-mail, fax or letter to the aforementioned contact details or to our data protection officer. You can also obtain information about your personal data at any time and free of charge using the contact details provided.

II. Name and address of the data protection officer

The data protection officer of the controller can be reached as follows:

Email: cadomo-ds@bay-gmbh.com

BAY GmbH Auditing Company Law Firm

Hultschiner Strasse 8, 86177 Munich

III. Your personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). We process your personal data exclusively to enable us to provide you with the website. We only collect personal data, such as your name and e-mail address, if you provide it to us voluntarily or if you have consented to its collection. For the technically required data, we refer to the execution under “Provision of the website and creation of log files / log files” and “Use of cookies”.

IV. General information on data processing

1. scope of the processing of personal data

We process personal data (hereinafter also referred to as “data”) of data subjects, i.e. visitors to the website, via our website insofar as this is necessary to provide a functional website and our content and services. The processing of personal data of our users is regularly carried out only after the consent of the user to the processing. An exception applies in those cases in which processing of the data is permitted by legal regulations, is required for the fulfillment of a contract or is technically necessary.

2. legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 para. 1 lit. a) DSGVO in conjunction with. § 25 para. 1 TTDSG as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b) DSGVO as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary for the fulfillment of a legal obligation to which our company is subject, Art. 6 para. 1 lit. c) DSGVO as the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d) DSGVO as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override the former interest, Art. 6 para. 1 lit. f) DSGVO in conjunction with. § 25 para. 2 S.2 TTDSG as the legal basis for the processing.

3. data deletion and storage period

The personal data of the data subject shall be deleted or blocked as soon as the purpose of the storage ceases to apply. In addition, storage may take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. Blocking to further data processing or deletion of data also occurs when a legally prescribed storage period expires, unless there is a need for further storage of the data for contract fulfillment.

V. Provision of the website and creation of log files / log files

1. description and scope of data processing

During the mere informational use of the website, we only collect the personal data that your browser transmits to our server or provider and that is technically necessary for the purpose of displaying our website to you and ensuring its stability and security.

We have contracted the company Raidboxes GmbH, Hafenstraße 32, 48153 Münster, Germany (hereinafter “Rainboxes”) for the hosting and technical provision of our website. We have concluded the required data protection agreement with Rainboxes for commissioned processing in accordance with Art. 28 DSGVO. According to this agreement, Rainboxes undertakes to ensure the necessary protection of your data and to process it exclusively on our behalf and in accordance with our instructions, in accordance with the applicable data protection regulations. For more information on Rainboxes, visit the website: https://raidboxes.io/.

The following data in log files or log files provided by Rainboxes as part of hosting:

(1) the browser type and version used, if you have consented to transmission within your browser settings,
(2) the operating system and the Internet service provider of the user,
(3) Date and time of the server request,

(4) the previously visited website, only if it has linked to our website and the visitor has clicked on this link,
(5) the IP address of the users,
(6) the amount of data sent/transmitted.

The data is stored on servers hosted in Germany by Hetzner Online GmbH. Raidboxes uses this information for the stated purpose on our behalf. An independent use of the data by Raidboxes as well as an unauthorized transfer to third parties does not take place. This data is not stored together with other personal data of the user.

2. legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 lit. f) GDPR.

3. purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website or content to the end device used by the user. For this purpose, the user’s IP address must remain stored for the duration of the session.

The storage of all the above information ((1) – (6)) in log files or log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the necessary security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 lit. f) GDPR.

4. duration of storage

The storage period of the log files for the purposes listed above is usually seven days.

5. possibility of objection and elimination

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of a website. There is no possibility of objection on the part of the user.

VI. use of cookies

1. description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. Cookies cannot execute programs or transfer viruses to your computer. When a user accesses a website, a cookie may be stored on the user’s terminal device. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is accessed again. Some of the cookies we use are deleted at the end of the browser session, i.e. after you close your browser (so-called “session cookies”). Other cookies remain on your terminal device and allow us to recognize your browser on your next visit, if you have consented to this.

In the following, we provide you with an overview of the cookies used, their validity period and the respective opt-out options. Soweit Sie uns durch Ihre Browsereinstellungen die Verwendung von Cookies erlauben, können unter anderen folgenden Cookies auf unserer Webseite come into play:

(a)Technically necessary cookies (essential):

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.

The following essential or technically necessary cookie is stored on your terminal device and transmitted to us each time you visit our website:

Currently, no other cookies are set except for the cookies from Complianz.

In addition, third-party providers may set so-called third-party cookies on your terminal device due to the use of various plugins on our website. For a description of the technically necessary cookies, the functionality, the purpose and the objection options, please refer to the explanations under “Plugins & Tools”.

2. legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f DSGVO in conjunction with § 25 para. 2 (2) TTDSG.

3. purpose of data processing

The purpose of using technically necessary cookies is to enable the use of our websites for the users. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognized even after a page change. The user data collected through technically necessary cookies are not used to create user profiles.

4. duration of storage, possibility of objection and elimination

Cookies are stored on the user’s computer and transmitted from it to our site. Therefore, as a user, you also have full control over the use of cookies. By changing the settings in your Internet browser, you can disable or restrict the transfer of cookies. Cookies that have already been saved can be deleted at any time. This can also be automated. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

VII Communication

VII.1 General contact requests

1. description and scope of data processing

On our website it is possible to contact us via a provided telephone number or e-mail address. In all cases, the transmitted personal data of the user will be processed. The scope of the personal data processed as well as which personal date is processed in each individual case may vary depending on the contact. In particular, this includes the following data:

(1) Salutation;

(2) Your first and last name*;
(3) Your communication data (e-mail address*, telephone number);

(4) resulting correspondence.

Mandatory fields are marked with *.

Your data or the resulting correspondence will be processed exclusively by us. Beyond that, the data will not be passed on to third parties. The data will be used exclusively for the conversation started by the user to contact you by phone, mail, telephone or e-mail regarding your request.

2. legal basis for data processing

The legal basis for the processing of data transmitted in the course of sending an e-mail or via telephone is Art. 6 para. 1 lit. a) DSGVO. If the contact by the user aims at the conclusion of a contract, the legal basis for the processing is Art. 6 para. 1 lit. b) GDPR to be mentioned.

3. purpose of data processing

The processing of your personal data voluntarily provided to us by e-mail or telephone, serves us solely to process the contact or to answer your questions.

4. duration of storage

All contact requests will be forwarded to the responsible contact person within our company.

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data transmitted by e-mail or by telephone, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.

5. revocation and removal option

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued. The revocation can be made at any time via the above contact details…. All personal data stored in the course of contacting us will be deleted in this case.

VIII. Plugins & Tools

We use extensions, plugins and offers from third parties on our website for the uniform presentation of our website. Personal data is passed on to the third-party providers or transmitted automatically. The type, scope and purpose of this processing of personal data are listed and explained below:

:

VIII.1 Use of Complianz

1. description and scope of data processing

We use the services of Complianz B.V., Kalmarweg 14-5, 9723 JG Groningen, The Netherlands (hereinafter “Complianz”) for the provision of a Consent Management Platform (in short: “CMP”), i.e. a system that regulates the use of third party providers, technical measures as well as cookies via granted or rejected consent. The CMP ensures that no actions are set or carried out without previously given consent that are subject to a consent requirement. A data protection agreement for commissioned processing (AV contract within the meaning of Article 28 DSGVO based on the EU standard contractual clauses) is not required with Complianz, as it is a local installation of the WordPress plug-in and thus no user data is transmitted to Complianz.

Complianz processes the following data to provide and manage the CMP:

  • Your IP address
  • Time Stamp,
  • ControllerID,
  • ProzessorID,
  • browser used,
  • Your given consents or individual data protection settings

The contents of our CMP are based on the rules and overviews as defined in the current IAB TCF standard. We always use the current “Transparency & Consent Framework” from IAB Europe. For more information on the IAB TCF standard, visit https://iabeurope.eu/transparency-consent-framework/.

Complianz uses the following cookies:

  • cmplz_policy_id: non-identifiable user ID used for recording consent (storage period: 1 year)
  • cmplz_cconsented_services: indicates which services the user has consented to (storage period: 1 year)
  • cmplz_statistics: The user has agreed to the use of statistics cookies (storage period: 1 year)
  • cmplz_functional: the user has agreed to the use of functional cookies (storage period: 1 year)
  • cmplz_preferences: Indicates which privacy setting the user has made (storage time: 1 year)
  • cmplz_consented_services: The user has agreed to the use of statistics cookies (storage period: 1 year)
  • cmplz_marketing: The user has agreed to the use of statistics cookies (storage period: 1 year)
  • cmplz_banner-status: Indicates whether the banner is still displayed to the user (storage time: 1 year)

The retention period is the length of time that the data processed by the CMP is stored for the purpose of consent management. The consent data (consent given and revocation of consent) is kept for one year. Within this period, no renewed consent is required, unless new systems are introduced or due to legal or regulatory frameworks, it is necessary to obtain renewed consent.

For more information about Complianz’s data processing, please see Complianz’s Privacy Policy at. https://complianz.io/legal/privacy-statement/?cmplz_region_redirect=true&cmplz-region=eu.2. Purpose and legal basis for data processing

The purpose of data processing by Complianz is to provide and manage the consents given by our website visitors in a privacy compliant manner. The use of Complianz serves the purpose of providing informed consent by the website visitor, proof of consent given and not given, as well as managing the individual privacy settings of our website visitors. The processing is carried out for the purpose of obtaining the website visitor’s consent, providing revocation and objection options, providing evidence of the consent obtained (time of consent, end device used), and identifying the user to manage his or her individual data protection settings.

The use of a consent management platform as well as the management and storage of your consents to the processing of your personal data is based on our legal obligation to provide a website that complies with data protection law (Art. 6 para. 1 sentence 1 lit. c) DSGVO). The legal basis for the use of the service provider Complianz Consent Manager is also Art. 6 para. 1 S. 1 lit. f) GDPR. Our legitimate interest lies in the legally secure documentation and verifiability of consent as well as the control of our analysis campaigns on the basis of your consent through the use of specialized processors and the associated technical implementation.

3. possibility of objection, revocation and removal

The processing of data to provide a CMP solution is mandatory for the operation of the website. There is no possibility for the user to object as long as we have a legal obligation to obtain the user’s consent to certain data processing operations.

The processing of data to provide our CMP is mandatory for the operation of the website. Consequently, there is no possibility for the user to object.

VIII.2 Use of Vet7.well

On our website we use the service Vet7.well to enable our customers to book appointments. You can find more information on the processing of your personal data under the following link:

IX. Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller or the person responsible:

1. right to information

You may request confirmation from the controller as to whether personal data concerning you is being processed by us. If there is such processing, you may request information from the controller about the following:

(1) the purposes for which the personal data are processed;
(2) the categories of personal data which are processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage duration;
(5) the existence of a right to rectify or erase the personal data concerning you, a right to have the controller restrict the processing, or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;

You have the right to request information on whether personal data concerning you is transferred to a third country or to an international organization. In diesem Zusammenhang können Sie verlangen, über die geeigneten Garantien gem. Article 46 of the GDPR in connection with the transfer.

To exercise your right to free information, please contact us directly using the contact details in our imprint or contact our data protection officer (see sections I and II).

2. right to rectification

You have a right to rectification and/or completion vis-à-vis the data controller, insofar as the personal data processed concerning you are inaccurate or incomplete. The responsible party shall make the correction without undue delay.

3. right to restriction of processing

Under the following conditions, you may request the restriction of the processing of personal data concerning you:

(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
(2) the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of the personal data;
(3) the controller no longer needs the personal data for the purposes of processing, but you need them for the assertion, exercise or defense of legal claims; or
(4) if you object to the processing pursuant to Art. 21 para. 1 DSGVO and it has not yet been determined whether the legitimate reasons of the controller outweigh your reasons.

Where the processing of personal data concerning you has been restricted, such data may be processed, with the exception of their storage, only with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

4. right to deletion

a) Obligation to delete

You may request the controller to delete the personal data concerning you without undue delay, and the controller is obliged to delete such data without undue delay, if one of the following reasons applies:

(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent on which the processing according to. Art. 6 par. 1 lit. a DSGVO in conjunction with. § 25 para. 1 TTDSG and there is no other legal basis for the processing.
(3) They shall lay down in accordance with Art. 21 par. 1 DSGVO and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. Art. 21 par. 2 DSGVO to object to the processing.
(4) The personal data concerning you have been processed unlawfully.
(5) The deletion of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
(6) The personal data concerning you have been processed in relation to information society services offered pursuant to Art. 8 para. 1 DSGVO collected.

b) Information to third parties

If the controller has made the personal data concerning you public and is responsible pursuant to. Art. 17 par. 1 DSGVO to erase them, it shall take reasonable measures, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers processing the personal data that you, as data subject, have requested erasure of all links to or copies or replications of such personal data.

c) Exceptions

The right to erasure does not exist insofar as the processing is necessary to

(1) to exercise the right to freedom of expression and information;
(2) for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) to assert, exercise or defend legal claims.

5. right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the data controller.

6. right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that

(1) the processing is based on consent pursuant to. Art. 6 par. 1 lit. a DSGVO in conjunction with. § 25 para. 1 TTDSG is based and
(2) the processing is carried out with the aid of automated procedures.

In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

7. right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 para. 1 lit. e or f DSGVO is carried out. This also applies to profiling based on these provisions.

In addition, you have the right to object at any time to the processing of your personal data concerning you for the purpose of direct marketing; this also applies to profiling, insofar as it is associated with such direct marketing.

The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.

8. right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

9. right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.

The data protection authority responsible for us is the Bavarian State Office for Data Protection Supervision, home address, Promenade 18, 91522 Ansbach, Germany, postal address: P.O. Box 1349, 91504 Ansbach, Germany, further information on the internet at www.lda.bayern.de.

X. Automated decision making and profiling

As a responsible company, we refrain from profiling or the use of automated decision-making.

XI. Links to other Internet pages

This privacy statement applies exclusively to our website. The Internet pages in this presentation may contain links to third-party Internet pages as well as social media platforms. Our data protection declaration does not extend to these websites or providers. When you leave the Website, it is recommended that you carefully read the privacy policy of each Internet site that collects personal data.

XII Security

We take the necessary security measures to protect your personal data against unlawful or accidental access or deletion, alteration or loss and against unauthorized disclosure. We encrypt your data during transmission via our website and use so-called SSL (Secure Socket Layer) or TLS (Transport Layer Security) connections. We secure our website and our other systems and personal data by appropriate technical and organizational measures, in particular against loss, destruction, unauthorized access, modification or disclosure to third parties.

XIII Availability and changes

You can view this privacy policy at https://www /privacy/. In addition, you can save or print this privacy policy by using the corresponding functions of your browser.

We reserve the right to change this privacy policy from time to time or to adapt it to legal requirements and therefore ask you to check the current privacy policy each time you visit our website.

Version: June 2023