Privacy Policy

Privacy Policy

Status: 2 September 2024

Table of Contents:

Controller
Overview of Processing
Relevant Legal Bases
Security Measures
Transmission of Personal Data
General Information on Data Storage and Deletion
Rights of Data Subjects
Business Processes and Procedures
Use of Cookies
Web Analytics, Monitoring and Optimisation
Plug-ins and Embedded Functions and Content
Changes and Updates
Definitions

Controller
Deichmann Corporate Finance GmbH
Hildeboldplatz 15-17
50672 Cologne
E-mail address: mail@deichmanncf.com
Imprint: www.deichmanncf.com

Overview of Processing

The following overview summarises the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

Inventory data
Payment data
Contact data
Content data
Contract data
Usage data
Meta, communication and procedural data
Categories of data subjects
Service recipients and clients
Interested parties
Communication partners
Users
Business and contractual partners

Purposes of processing

Provision of contractual services and fulfilment of contractual obligations
Reach measurement
Office and organisational procedures
Profiles with user-related information
Provision of our online offering and user-friendliness
Business processes and business management procedures

Relevant Legal Bases
Relevant legal bases under the GDPR: Below you will find an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may also apply in your or our country of residence or domicile. If, in individual cases, more specific legal bases are relevant, we will inform you of these in this privacy policy.

Consent (Art. 6 (1) sentence 1 lit. a GDPR) – The data subject has given consent to the processing of their personal data for one or more specific purposes.

Performance of a contract and pre-contractual enquiries (Art. 6 (1) sentence 1 lit. b GDPR) – Processing is necessary for the performance of a contract to which the data subject is party, or in order to take steps at the request of the data subject prior to entering into a contract.

Legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data.

National data protection regulations in Germany: In addition to the data protection regulations of the GDPR, national data protection provisions apply in Germany. These include in particular the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). The BDSG contains, in particular, special regulations on the right of access, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated individual decision-making, including profiling. Furthermore, the data protection laws of the individual federal states may apply.
Notice on the applicability of the GDPR and the Swiss DPA: These data protection notices serve both to provide information under the Swiss Data Protection Act (Schweizer DSG) and under the General Data Protection Regulation (GDPR). For this reason, please note that, due to the broader territorial scope and better comprehensibility, the terminology of the GDPR is used. In particular, instead of the terms used in the Swiss DPA such as “processing” of “personal data”, “overriding interest” and “particularly sensitive personal data”, the terms used in the GDPR “processing” of “personal data”, “legitimate interest” and “special categories of data” are used. However, the legal meaning of the terms is determined in the context of the applicability of the Swiss DPA in accordance with the Swiss DPA.

Security Measures
We take appropriate technical and organisational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk.
These measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input, disclosure, securing of availability and separation of the data. Furthermore, we have established procedures that ensure the exercise of data subject rights, erasure of data and responses to data threats. In addition, we already take the protection of personal data into account during the development or selection of hardware, software and processes in accordance with the principle of data protection by design and by default.
Securing online connections using TLS/SSL encryption technology (HTTPS): In order to protect user data transmitted via our online services from unauthorised access, we use TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are the cornerstones of secure data transmission on the internet. These technologies encrypt the information transmitted between the website or app and the user’s browser (or between two servers), thereby protecting the data from unauthorised access. TLS, as the more advanced and secure version of SSL, ensures that all data transmissions comply with the highest security standards. When a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL. This serves as an indicator for users that their data is transmitted securely and in encrypted form.

Transmission of Personal Data
In the course of processing personal data, it may happen that this data is transmitted to other entities, companies, legally independent organisations or persons, or disclosed to them. Recipients of this data can include, for example, IT service providers or providers of services and content that are integrated into a website. In such cases, we observe the legal requirements and in particular conclude contracts or agreements with the recipients of your data that serve to protect your data.
Data transmission within the organisation / corporate group: We may transmit personal data to other companies within our corporate group or grant them access to such data. If the data is shared for administrative purposes, this is based on our legitimate business and economic interests or occurs where it is necessary for the fulfilment of our contractual obligations, or where the data subjects have given their consent or there is a legal permission to do so.

General Information on Data Storage and Deletion
We delete personal data that we process in accordance with the statutory provisions as soon as the underlying consents are revoked or there are no further legal bases for the processing. This applies in cases where the original purpose of processing ceases to apply or the data is no longer required. Exceptions exist if statutory obligations or specific interests require longer retention or archiving of the data.
In particular, data that must be retained for commercial or tax law reasons, or whose storage is necessary for the prosecution of legal claims or for the protection of the rights of other natural or legal persons, must be archived accordingly.
Our data protection notices contain additional information on the retention and deletion of data that specifically apply to certain processing operations.
If multiple specifications regarding retention periods or deletion deadlines apply to a data set, the longest period is always decisive.
If a period does not explicitly begin on a specific date and is at least one year, it automatically starts at the end of the calendar year in which the event triggering the period occurred. In the case of ongoing contractual relationships in which data is stored, the event triggering the period is the effective date of termination or other end of the legal relationship.
Data that is no longer required for the original purpose but is retained on the basis of statutory requirements or other reasons is processed by us exclusively for the reasons that justify its retention.
Further information on processing operations, procedures and services:
Retention and deletion of data: The following general periods apply for retention and archiving under German law:

10 years – Retention period for books and records, annual financial statements, inventories, management reports, opening balance sheet as well as working instructions and other organisational documents required for their understanding, accounting vouchers and invoices (§ 147 (3) in conjunction with (1) nos. 1, 4 and 4a AO, § 14b (1) UStG, § 257 (1) nos. 1 and 4, (4) HGB).

6 years – Other business documents: received commercial or business letters, copies of letters sent, other documents insofar as they are relevant for taxation, e.g. hourly wage slips, cost accounting sheets, calculation documents, price labelling, but also payroll accounting documents, insofar as they are not already accounting vouchers, and till receipts (§ 147 (3) in conjunction with (1) nos. 2, 3, 5 AO, § 257 (1) nos. 2 and 3, (4) HGB).

3 years – Data required to take into account potential warranty and damage claims or similar contractual claims and rights as well as to process associated enquiries, based on past business experience and common industry practice, is stored for the duration of the regular statutory limitation period of three years (§§ 195, 199 BGB).

Rights of Data Subjects
Rights of data subjects under the GDPR: As a data subject, you have various rights under the GDPR, which arise in particular from Art. 15 to 21 GDPR:

Right to object: You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is based on Art. 6 (1) lit. e or f GDPR; this also applies to profiling based on those provisions. Where personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing; this also applies to profiling to the extent that it is related to such direct marketing.

Right to withdraw consent: You have the right to withdraw consents you have given at any time.

Right of access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data and further information and a copy of the data in accordance with the legal requirements.

Right to rectification: You have the right, in accordance with the statutory provisions, to request the completion of incomplete data concerning you or the rectification of inaccurate data concerning you.

Right to erasure and restriction of processing: In accordance with the statutory provisions, you have the right to request that data concerning you be erased without undue delay or, alternatively, to request restriction of the processing of the data in accordance with the statutory provisions.

Right to data portability: You have the right to receive the data concerning you which you have provided to us in a structured, commonly used and machine-readable format, in accordance with the statutory provisions, or to request that it be transmitted to another controller.

Right to lodge a complaint with a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.

Business Processes and Procedures
Personal data of service recipients and clients – including customers, clients or, in specific cases, principals, patients or business partners as well as other third parties – is processed within the framework of contractual and similar legal relationships and pre-contractual measures such as the initiation of business relationships. This data processing supports and facilitates business processes in areas such as customer management, sales, payment transactions, accounting and project management.
The data collected is used to fulfil contractual obligations and to design operational processes efficiently. This includes the handling of business transactions, the management of customer relationships, the optimisation of sales strategies as well as ensuring internal accounting and financial processes. In addition, the data helps safeguard the rights of the controller and supports administrative tasks and the organisation of the company.
Personal data may be passed on to third parties if this is necessary for the fulfilment of the aforementioned purposes or for statutory obligations.
Types of data processed: Inventory data (e.g. full name, residential address, contact information, customer number – this text area must be unlocked with a premium licence – premium text premium text premium text); payment data (e.g. bank details, invoices, payment history – this text area must be unlocked with a premium licence – premium text premium text); contact data (e.g. postal and e-mail addresses or – this text area must be unlocked with a premium licence – premium text premium text premium text); content data (e.g. textual or visual messages and contributions, as well as information relating to them, such as details of authorship – this text area must be unlocked with a premium licence – premium text premium text premium text premium text premium text premium text). Contract data (e.g. subject matter of contract, term, customer category – this text area must be unlocked with a premium licence – premium text premium text).
Data subjects: Service recipients and clients; interested parties; communication partners; business and contractual partners.
Purposes of processing: Provision of contractual services and fulfilment of contractual obligations; office and organisational procedures; business processes and business management procedures.
Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and deletion”.
Legal bases: Performance of a contract and pre-contractual enquiries (Art. 6 (1) sentence 1 lit. b GDPR). Legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR).

Use of Cookies
Cookies are small text files or other storage markers that store information on end devices and from which information can be read. For example, they can be used to store the login status in a user account, the contents of a shopping basket in an online shop, the content accessed or the functions used within an online offering. Cookies can also be used in relation to different interests, e.g. for the purpose of the functionality, security and convenience of online offerings as well as for the creation of analyses of visitor flows.
Notes on consent: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users unless this is not required by law. Consent is not particularly necessary if the storage and reading of information, including cookies, is strictly necessary in order to provide users with a telemedia service (i.e. our online offering) expressly requested by them. Revocable consent is clearly communicated to users and includes information on the respective use of cookies.
Notes on data protection legal bases: The legal basis on which we process the personal data of users with the help of cookies depends on whether we ask users for their consent. If users consent, the legal basis for the processing of their data is the given consent. Otherwise, the data processed with the help of cookies is processed on the basis of our legitimate interests (e.g. in an economically efficient operation of our online offering and its improvement in terms of usability) or, if this is done in the context of the fulfilment of our contractual obligations, if the use of cookies is necessary to fulfil our contractual obligations. We inform you as part of this privacy policy or as part of our consent and processing procedures about the purposes for which we use cookies.
Storage period: With regard to storage duration, the following types of cookies are distinguished:

Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online offering and closed their end device (e.g. browser or mobile application).

Permanent cookies: Permanent cookies remain stored even after the end device is closed. For example, the login status can be saved and preferred content displayed directly when the user revisits a website. Likewise, the user data collected by means of cookies may be used for reach measurement. Unless we provide users with explicit information on the type and storage period of cookies (e.g. as part of obtaining consent), users should assume that cookies are permanent and the storage period can be up to two years.

General notes on withdrawal and objection (opt-out): Users can withdraw any consent they have given at any time and also lodge an objection to processing in accordance with the legal requirements, including by using the privacy settings of their browser.
Types of data processed: Meta, communication and procedural data (e.g. IP addresses, timestamps, identification numbers, persons involved).
Data subjects: Users (e.g. website visitors, users of online services).
Legal bases: Legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR). Consent (Art. 6 (1) sentence 1 lit. a GDPR).
Further information on processing operations, procedures and services:
Processing of cookie data based on consent: We use a consent management solution in which users’ consent to the use of cookies or to the procedures and providers mentioned in the consent management solution is obtained. This procedure serves to obtain, log, manage and revoke consents, in particular with regard to the use of cookies and similar technologies used to store, read and process information on users’ end devices. Within the framework of this procedure, users’ consents for the use of cookies and the associated processing of information, including the specific processing and providers mentioned in the consent management procedure, are obtained. Users also have the option to manage and revoke their consents. The consent declarations are stored in order to avoid a renewed query and to be able to prove consent in accordance with legal requirements. Storage takes place server-side and/or in a cookie (known as an opt-in cookie) or by means of similar technologies in order to be able to assign the consent to a specific user or their device. Unless specific information is provided regarding providers of consent management services, the following general notes apply: The duration of storage of consent is up to two years. A pseudonymous user identifier is created, which is stored together with the time of consent, details of the scope of consent (e.g. relevant categories of cookies and/or service providers) as well as information on the browser, system and end device used; legal basis: consent (Art. 6 (1) sentence 1 lit. a GDPR).

Web Analytics, Monitoring and Optimisation
Web analytics (also referred to as “reach measurement”) is used to evaluate the visitor flows of our online offering and can include behaviour, interests or demographic information on visitors, such as age or gender, as pseudonymous values. With the help of reach analysis, we can, for example, recognise at which time our online offering or its functions or content are used most frequently or invite reuse. We can also track which areas need optimisation.
In addition to web analysis, we can also use test procedures, for example to test and optimise different versions of our online offering or its components.
Unless otherwise stated below, profiles, i.e. data summarised into a usage process, can be created for these purposes and information stored in a browser or on an end device can be stored and then read. The data collected includes in particular visited websites and used elements as well as technical information, such as the browser used, the computer system used as well as information on times of use. Where users have agreed to the collection of their location data to us or to the providers of the services we use, location data can also be processed.
In addition, the IP addresses of users are stored. However, we use an IP masking procedure (i.e. pseudonymisation by shortening the IP address) to protect users. Generally, no clear data of users (such as e-mail addresses or names) are stored as part of web analytics, A/B testing and optimisation, but pseudonyms. This means that neither we nor the providers of the software used know the actual identity of the users, but only the information stored in their profiles for the respective procedures.
Notes on legal bases: Where we ask users for their consent to the use of third-party providers, the legal basis for the data processing is the consent. Otherwise, users’ data is processed on the basis of our legitimate interests (i.e. interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
Types of data processed: Usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication and procedural data (e.g. IP addresses, timestamps, identification numbers, persons involved).
Data subjects: Users (e.g. website visitors, users of online services).
Purposes of processing: Reach measurement (e.g. access statistics, detection of returning visitors); profiles with user-related information (creating user profiles); provision of our online offering and user-friendliness.
Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and deletion”. Storage of cookies of up to 2 years (unless otherwise stated, cookies and similar storage methods can be stored on users’ devices for a period of two years).
Security measures: IP masking (pseudonymisation of the IP address).
Legal bases: Consent (Art. 6 (1) sentence 1 lit. a GDPR). Legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR).
Further information on processing operations, procedures and services:
Google Analytics: We use Google Analytics to measure and analyse the use of our online offering on the basis of a pseudonymous user identification number. This identification number does not contain any unique data, such as names or e-mail addresses. It is used to assign analysis information to an end device in order to recognise which content users have accessed within one or several usage processes, which search terms they have used, whether they have accessed it again or interacted with our online offering. The time of use and its duration are also stored, as well as the sources of users who refer to our online offering and technical aspects of their end devices and browsers.
Pseudonymous user profiles are created with information from the use of different devices, and cookies may be used for this purpose. Google Analytics does not log or store individual IP addresses for EU users. Analytics, however, provides coarse geographic location data by deriving the following metadata from IP addresses: city (and the derived latitude and longitude of the city), continent, country, region, subcontinent (and ID-based counterparts). For EU traffic, IP address data is used exclusively for this derivation of geolocation data before it is immediately deleted. It is not logged, is not accessible and is not used for any further purposes. When Google Analytics collects measurement data, all IP lookups are performed on EU-based servers before the traffic is forwarded to Analytics servers for processing; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; legal basis: consent (Art. 6 (1) sentence 1 lit. a GDPR); website: https://marketingplatform.google.com/intl/de/about/analytics/
; security measures: IP masking (pseudonymisation of the IP address); privacy policy: https://policies.google.com/privacy; data processing agreement: https://business.safety.google/adsprocessorterms/; basis for third-country transfers: Data Privacy Framework (DPF); opt-out option: opt-out plug-in: https://tools.google.com/dlpage/gaoptout?hl=de, settings for ad display: https://myadcenter.google.com/personalizationoff. Further information: https://business.safety.google/adsservices/
(types of processing and processed data).

Plug-ins and Embedded Functions and Content
We integrate function and content elements into our online offering that are obtained from the servers of their respective providers (hereinafter referred to as “third-party providers”). These may include, for example, graphics, videos or city maps (hereinafter collectively referred to as “content”).
The integration always requires that the third-party providers of this content process the users’ IP address, as they would not be able to send the content to their browser without the IP address. The IP address is therefore required for the display of this content or functions. We endeavour to use only content whose respective providers use the IP address solely for delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the users’ device and, among other things, contain technical information on the browser and operating system, referring websites, time of visit and other information on the use of our online offering, as well as be linked with such information from other sources.
Notes on legal bases: Where we ask users for their consent to the use of third-party providers, the legal basis for the data processing is the consent. Otherwise, users’ data is processed on the basis of our legitimate interests (i.e. interest in efficient, economical and recipient-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.
Types of data processed: Usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication and procedural data (e.g. IP addresses, timestamps, identification numbers, persons involved).
Data subjects: Users (e.g. website visitors, users of online services).
Purposes of processing: Provision of our online offering and user-friendliness.
Retention and deletion: Deletion in accordance with the information in the section “General information on data storage and deletion”. Storage of cookies of up to 2 years (unless otherwise stated, cookies and similar storage methods can be stored on users’ devices for a period of two years).
Legal bases: Consent (Art. 6 (1) sentence 1 lit. a GDPR). Legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR).
Further information on processing operations, procedures and services:
Google Fonts (retrieval from Google server): Retrieval of fonts (and symbols) for the purpose of technically secure, maintenance-free and efficient use of fonts and symbols with regard to up-to-dateness and loading times, their uniform display and taking into account any licence restrictions. The provider of the fonts is informed of the user’s IP address so that the fonts can be made available in the user’s browser. In addition, technical data (language settings, screen resolution, operating system, used hardware) is transmitted that is necessary for the provision of the fonts depending on the devices used and the technical environment. This data may be processed on a server of the font provider in the USA – When visiting our online offering, users’ browsers send their browser HTTP requests to the Google Fonts Web API (i.e. a software interface for retrieving the fonts). The Google Fonts Web API provides users with the Cascading Style Sheets (CSS) of Google Fonts and then the fonts specified in the CSS. These HTTP requests include (1) the IP address used by the respective user to access the internet, (2) the requested URL on the Google server and (3) the HTTP headers including the user agent describing the browser and operating system versions of the website visitors, as well as the referrer URL (i.e. the webpage on which the Google font is to be displayed). IP addresses are neither logged nor stored on Google servers and are not analysed. The Google Fonts Web API logs details of the HTTP requests (requested URL, user agent and referrer URL). Access to this data is restricted and strictly controlled. The requested URL identifies the font families that the user wants to load fonts for. This data is logged so that Google can determine how often a particular font family is requested. The user agent must be logged by the Google Fonts Web API to be able to generate the font that is optimised for the respective browser type. The user agent is primarily logged for debugging and used to generate aggregated usage statistics that measure the popularity of font families. These aggregated usage statistics are published on the “Analytics” page of Google Fonts. Finally, the referrer URL is logged so that the data can be used for production maintenance and an aggregated report of the top integrations can be generated based on the number of font requests. According to Google’s own information, none of the information collected by Google Fonts is used to create profiles of end users or for targeted advertising; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; legal basis: legitimate interests (Art. 6 (1) sentence 1 lit. f GDPR); website: https://fonts.google.com/
; privacy policy: https://policies.google.com/privacy; basis for third-country transfers: Data Privacy Framework (DPF). Further information: https://developers.google.com/fonts/faq/privacy?hl=de

Changes and Updates
We kindly ask you to regularly review the content of our privacy policy. We will adapt the privacy policy as soon as changes in our data processing activities make this necessary. We will inform you as soon as the changes require an act of cooperation on your part (e.g. consent) or another individual notification.
If we provide addresses and contact details of companies and organisations in this privacy policy, please note that addresses may change over time and we ask you to check the details before contacting them.

Definitions
In this section, you will find an overview of the terminology used in this privacy policy. As far as terms are legally defined, their legal definitions apply. The explanations below are primarily intended to aid understanding.

Inventory data: Inventory data comprises essential information that is necessary for the identification and administration of contractual partners, user accounts, profiles and similar assignments. This data may include, among other things, personal and demographic details such as names, contact information (addresses, telephone numbers, e-mail addresses), dates of birth and specific identifiers (user IDs). Inventory data forms the basis for any formal interaction between individuals and services, institutions or systems, by enabling unique allocation and communication.

Content data: Content data includes information generated in the course of the creation, editing and publication of content of all kinds. This category of data can include texts, images, videos, audio files and other multimedia content that is published on various platforms and media. Content data is not limited to the actual content itself, but also includes metadata that provides information about the content, such as tags, descriptions, author information and publication dates.

Contact data: Contact data is essential information that enables communication with individuals or organisations. It includes, among other things, telephone numbers, postal addresses and e-mail addresses as well as means of communication such as social media handles and instant messaging identifiers.

Meta, communication and procedural data: Meta, communication and procedural data are categories that contain information on the manner in which data is processed, transmitted and managed. Metadata, also known as data about data, includes information that describes the context, origin and structure of other data. It can include details such as file size, creation date, the author of a document and change histories. Communication data records the exchange of information between users via various channels, such as e-mail traffic, call logs, messages on social networks and chat histories, including the persons involved, timestamps and transmission paths. Procedural data describes the processes and workflows within systems or organisations, including workflow documentation, logs of transactions and activities as well as audit logs that are used to track and review processes.

Usage data: Usage data refers to information that records how users interact with digital products, services or platforms. This data includes a wide range of information showing how users use applications, which functions they prefer, how long they stay on certain pages and which paths they navigate through an application. Usage data can also include the frequency of use, activity timestamps, IP addresses, device information and location data. It is particularly valuable for analysing user behaviour, optimising user experiences, personalising content and improving products or services. In addition, usage data plays a crucial role in identifying trends, preferences and potential problem areas within digital offerings.

Personal data: “Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Profiles with user-related information: The processing of “profiles with user-related information”, or simply “profiles”, includes any type of automated processing of personal data consisting of the use of such personal data to analyse, evaluate or predict certain personal aspects relating to a natural person (depending on the type of profiling, this may include various information regarding demographics, behaviour and interests, such as interaction with websites and their content, etc.) (e.g. interest in certain content or products, click behaviour on a website or location). Cookies and web beacons are often used for profiling purposes.

Reach measurement: Reach measurement (also referred to as web analytics) serves to analyse the visitor flows of an online offering and can include the behaviour or interests of visitors with regard to certain information, such as content of websites. With the help of reach analysis, operators of online offerings can, for example, recognise at which time users visit their websites and which content they are interested in. This enables them, for example, to better adapt the content of the websites to the needs of their visitors. For the purposes of reach analysis, pseudonymous cookies and web beacons are often used to recognise returning visitors and thus obtain more accurate analyses of the use of an online offering.

Controller: “Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Processing: “Processing” means any operation or set of operations which is performed on personal data, whether or not by automated means. The term is broad and covers virtually any handling of data, including collection, analysis, storage, transmission or erasure.

Contract data: Contract data is specific information relating to the formalisation of an agreement between two or more parties. It documents the conditions under which services or products are provided, exchanged or sold. This data category is essential for the management and fulfilment of contractual obligations and includes both the identification of the contracting parties and the specific terms and conditions of the agreement. Contract data can include start and end dates of the contract, the type of services or products agreed, price agreements, payment terms, termination rights, renewal options and special terms or clauses. It serves as the legal basis for the relationship between the parties and is crucial for clarifying rights and obligations, enforcing claims and resolving disputes.

Payment data: Payment data includes all information required to carry out payment transactions between buyers and sellers. This data is of crucial importance for e-commerce, online banking and any other form of financial transaction. It includes details such as credit card numbers, bank details, payment amounts, transaction data, verification numbers and billing information. Payment data may also contain information on payment status, chargebacks, authorisations and fees.

Cookiebot
Our website loads a web service of the company Cybot A/S, Havnegade 39, 1058 Copenhagen (hereinafter: cookiebot.com). We use this data to ensure the full functionality of our website. In this context, your browser may transmit personal data to cookiebot.com. The legal basis for data processing is Art. 6 (1) lit. f GDPR. The legitimate interest lies in the error-free functioning of the website. The data is deleted as soon as the purpose for its collection has been fulfilled. Further information on the handling of transferred data can be found in the privacy policy of cookiebot.com: https://www.cookiebot.com/de/privacy-policy/
. You can prevent the collection and processing of your data by cookiebot.com by deactivating the execution of script code in your browser or installing a script blocker in your browser (you can find these, for example, at www.noscript.net or www.ghostery.com
). The following information is stored in our Cookiebot account: the user’s IP address in anonymised form (the last three digits are set to “0”), date and time of consent, user’s browser, the URL from which the consent was sent, an anonymous, random and encrypted key value, the user’s consent status, which serves as proof of consent. The key and consent status are also stored in the user’s browser in the “CookieConsent” cookie, so that the website can read and respect the user’s consent for up to 12 months for all subsequent page requests and future user sessions. You can view and change your consent level at any time. You will find this further down on this page.
This website uses cookies. When you visit this website, personal data is processed and cookies are stored on your end device. Our cookies, which are absolutely necessary for the provision of the functions of the website, are always set when you use the website. Third-party cookies for analysis or tracking purposes (Google Analytics) are only activated if you click on “Allow cookies”. You can find out more about this (including the option to withdraw your consent) in our privacy policy — Imprint.
Cookies are small text files that websites use to make the user experience more efficient.
By law, we can store cookies on your device if these are strictly necessary for the operation of this site. For all other types of cookies, we need your permission.
This site uses different types of cookies. Some cookies are placed by third parties that appear on our pages.
You can change or withdraw your consent at any time from the cookie declaration on our website.
In our privacy policy, you can learn more about who we are, how you can contact us and how we process personal data.
Please provide your consent ID and the date when you contact us regarding your consent.
Your consent applies to the following domains: www.deichmanncf.com
Your current state: Allow all.
Your consent ID: bnGVC+zpyZbo+Ty/0qr7BrxR2Qex1rPMGM18O6117JotbIG4TbX3/w==
Consent date: Wednesday, 8 October 2025 at 15:39:42 CEST
Change consent | Withdraw consent
The cookie declaration was last updated on 12/3/25 by Cookiebot:

Necessary (2)
Necessary cookies help make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

Statistics (2)
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.