1. Name and Address of the Controller

We, Laschinger Seafood GmbH, are the data controller in accordance with the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) as well as other data protection provisions who is responsible for our website and the associated data processing.

Comprehensive information on our company can be found in the imprint.

2. Data Protection Officer

We have appointed an external Data Protection Officer for our company. He can be contacted under the following contact details:

• Kämmer Consulting GmbH
• Telefon: +49 531 702249-0
• E-Mail: dsb-team@kaemmer-consulting.de

Requests to the data protection concerning our company you can write an e-mail to the address info@laschinger.de at any time.

3. Provision of the Website and Creation of Log Files

3.1 Description and Scope of Data Processing

Each time our website is accessed, our system, i.e. the web server, automatically collects information from the computer system of the accessing computer and/or the terminal of the user.

We collect the following data:

• Information on the browser type and version used
• The operating system of the terminal of the user
• The internet service provider of the user
• The IP address of the user
• Access date and time
• Website from which the user accessed our website

3.2 Legal Basis for Data Processing

The legal basis for the temporary storage of this data and the log files is point (f) of Art. 6(1) GDPR (our legitimate interest as the responsible website operator).

3.3 Purpose of the data processing

It is necessary for our system to temporarily store the IP address of the user in order to enable the website to be delivered to the user’s computer. To this end, the IP address of the user must be saved for the duration of the session.

The storage of the aforementioned data in log files is carried out in order to guarantee the functionality of our website. In addition, the data helps us to optimise the website and to ensure the security of our IT systems (e.g. to detect intrusion). The data is not evaluated for marketing purposes in this context.

3.4 Retention Period

The aforementioned data will be erased once it is no longer required to fulfil the purpose of its collection. Where data is captured to provide the website, it will be erased once the respective session has been terminated. Where data is stored in log files, this will be the case after 14 days at the latest. Further retention beyond this is possible. In this case, we will erase or alter the IP address of the user so that an assignment of the accessing client is no longer possible, and the data included will no longer display any personal reference.

4. Email Contact and Contact Form

4.1 Description and Scope of Data Processing

We can be contacted via our contact form and the email address provided. In this case, the personal data of the sender, thus of the user, which is transferred together with the enquiry will be stored.

4.2 Legal Basis for Data Processing

The legal basis for the processing of this data which is transferred in the course of sending an enquiry is point (a) of Article 6(1) GDPR (consent).

If the purpose of the enquiry is to conclude a contract, an additional legal basis for processing is point (b) of Art. 6(1) GDPR (performance of a contract).

4.3 Purpose of the data processing

Processing such personal data solely serves to process the contact.

4.4 Retention Period

The aforementioned data will be erased once it is no longer required to fulfil the purpose of its collection. For personal data that was sent by email or using the contact form, this is the case when the relevant conversation with the user has come to an end. The conversation is deemed terminated once it becomes clear from the circumstances that the relevant issue has been conclusively resolved.

4.5 Right to object

The user has the possibility to object to data processing at any time. Objections can be sent to the following email address: info@laschinger.de.

All personal data stored in the course of contact will be erased in this case.

5. Application via Email

We offer you the opportunity to apply us via our Email address. With these applications, your application data will be electronically collected and processed by us for the purpose of handling the application process.

The legal basis for the processing is § 26 para. 1 BDSG i.V.m. Art. 88 para. 1 GDPR.

If an employment contract is concluded after the application procedure, we store your data submitted in the application in your personal file for the purpose of the usual organizational and administrative process – this of course taking into account the wider legal obligations.

The legal basis for this processing is also § 26 (1) BDSG i.V.m. Art. 88 para. 1 GDPR.

When rejecting an application, we will automatically delete the data submitted to us six months after notification of the rejection. However, the deletion does not take place if the data requires a longer storage, due to legal provisions for example because of the burden of proof according to the AGG or until the conclusion of a judicial procedure.

The legal basis in this case is § 24 para. 1 no. 2 BDSG. Our legitimate interest lies in the legal defense and enforcement.

If you expressly agree to a longer storage of your data, for example, for your inclusion in an applicant or interest database, the data will be further processed on the basis of your consent. Legal basis is then Art. 6 para. 1 lit. a) GDPR. Of course, you can revoke your consent at any time according to Art. 7 para. 3 GDPR by declaring to us with effect for the future.

6. Web analysis using Matomo (formerly Piwik)

On our website we use the open source software tool Matomo (formerly Piwik) on the basis of our legitimate interest in the statistical analysis of user behaviour in order to optimise our offering and for marketing purposes pursuant to point (f) of Art. 6(1) GDPR.

Cookies may also be used for this purpose. Cookies are small text files which are stored locally in the buffer of the web browser of the visitor to the website. Among other things, cookies enable the recognition of the web browser. Data collected using the Matomo technology (including your anonymised IP address) will be processed on our servers.

The following data are saved when individual pages of our website are accessed:

• Two bytes of the IP address of the user system that has requested the page
• The website from which the user has accessed the website (referrer)
• The subpages accessed from the website visited
• The duration of the visit to the website
• The frequency of website access

The software is configured so that the IP addresses are not stored in full but with two bytes of the IP address masked (e.g.: 130.75.xxx.xxx). This means that the abbreviated IP address cannot be associated with the accessing computer. The anonymisation of the IP address sufficiently protects the user's interest in the protection of their personal data.

Cookies are stored on the user’s computer and transferred from it to our site. Therefore, you as the user also have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transfer of cookies.

Cookies, which have already been stored, can be erased at any time. This can also occur automatically. If cookies are deactivated for our website, you may no longer have full use of the website functions.

7. Tracking using Google Analytics

7.1 Description and Scope of Data Processing

We use the tracking tool Google Analytics on our website. In Google Analytics, interactions of the user with our website are primarily collected and systematically analyzed with the aid of cookies. The following data are saved when individual pages of our website are accessed:

• Three bytes of the IP address of the user system that has requested the page (anonymised IP address)
• The website accessed
• The website from which the user accessed our website (referrer)
• The subpages accessed from the page visited
• The duration of the visit to the website
• The frequency of website access

The software is set so that the last octet of the IP address is masked, and the full IP address is not saved (example: 192.168.79. ***). This means that the abbreviated IP address can no longer be associated with the accessing computer or terminal of the user.

7.2 Legal Basis for Data Processing

The legal basis for processing the personal data of users point (a) of Art. 6(1) GDPR (consent).

7.3 Purpose of the Data Processing

Using Google Analytics to process the user’s personal data allows us to analyze the surf behavior of our users. Evaluating the data obtained enables us to compile information on the use of individual components of our website. This helps us to continuously improve our own website and its user-friendliness.

7.4 Retention Period

The data stored using tracking is deleted as soon as it ceases to be required for our recording purposes. In our case, this is the case after fourteen months.

7.5 Right to object

Users can prevent Google Analytics from using their data on our website with the help of a browser add-on that disables Google Analytics JavaScript’s (ga.js, analytics.js, dc.js).

Should the user wish to disable Google Analytics, they can download and install the add-on for their own web browser. The add-on to disable Google Analytics is compatible with the standard versions of Chrome, Internet Explorer, Safari, Firefox and Opera. For the add-on to function it must be correctly loaded and executed in the browser. In addition, third-party cookies must be activated for Internet explorer. Interested parties can find more information under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

8. Integration of Google Maps

8.1 Description and Scope of Data Processing

We embed maps of the ‘Google Maps’ service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To provide the map material, Google processes data technically required for that purpose.

8.2 Legal Basis for Data Processing

Embedding the services provided by Google Maps is necessary so we can design our website in line with demand. This is also our legitimate interest in data processing pursuant to point (f) of Art. 6(1) GDPR (our legitimate interest as controller).

8.3 Further Information on Data Processing

Further data processing is the responsibility of Google LLC. Further information on the handling of your data by Google can be found at: www.policies.google.com/privacy.

9. Integration of Social Plug-Ins

Description and Scope of Data Processing

We currently use the following social media plug-ins to support our public relations activities:

• Facebook

We use what is referred to as the so-called “double click solution”. This means that when you visit our website, categorically no personal data will initially be forwarded to the providers of these plug-ins. Personal data is only transferred if you click on one of the plug-ins: By activating the plug-in, automatized data will be transferred to the respective plug-in provider and stored there (in the case of the American (USA) providers, in the USA). We have no influence on the collected data or the data processing procedures, nor are we aware of the full extent of the data that is collected, the purposes of the processing or the retention periods. As the plug-in provider mainly carries out the data collection using cookies, we recommend you use the security settings of your browser to erase all cookies before clicking on the greyed-out box.

Facebook

The controller who is responsible for the processing has integrated components of the company Facebook into this website. Facebook is a social network. A social network is a social meeting place operated on the Internet, an online community that generally enables users to communicate with each other and interact in a virtual space. A social network may serve as a platform for the exchange of opinions and experiences or enable the Internet community to provide personal or business-related information. Facebook allows the users of its social network to create private profiles, to upload photos, and to network through friend requests.

The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a data subject lives outside of the United States of America or Canada, the data controller is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Through each visit to one of the individual pages of this website which is operated by the controller responsible for the processing and into which a Facebook component (Facebook plug-in) has been integrated, the web browser on the information technology system of the data subject will be automatically prompted to download a display of the corresponding Facebook component from Facebook by the Facebook component. An overview of all the Facebook plug-ins is available at https://developers.facebook.com/docs/plugins/. During the course of this technical procedure, Facebook is made aware of the specific sub-page of our website that was visited by the data subject.

If the data subject is logged into Facebook at the same time, every time the data subject accesses our website and for the entire duration of their stay on our website, Facebook is able to see which specific sub-pages of our website the data subject visits. This information will be collected by the Facebook component and assigned to the respective Facebook account of the data subject. If the data subject clicks on one of the Facebook buttons that has been integrated in our website such as the "Like" button, or if the data subject submits a comment, Facebook will match this information with the personal Facebook user account of the data subject and store this personal data.

Through the Facebook component, Facebook will always receive notification of any visit made to our website by the data subject if the data subject is simultaneously logged into Facebook when they access our website; this will occur regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want such a transfer of information to Facebook to take place, he or she may prevent this transfer by logging out of their Facebook account before they access our website.

The privacy policy published by Facebook, which can be accessed under https://www.facebook.com/about/privacy/, provides information on the collection, processing, and use of personal data by Facebook. It also provides information on the setting options that Facebook offers to protect the privacy of the data subject. In addition, different configuration options are available that can prevent data from being transferred to Facebook. The data subject can use such applications to suppress the transfer of data to Facebook.

10. Data Subject Rights

If the user’s personal data is processed, then they are a “data subject” in the sense of GDPR. They have the following rights vis-à-vis us as the controller:

• Right of Access
• Right to Rectification
• Right to the Restriction of Processing
• Right to Erasure
• Right to Be Informed
• Right to Data Portability
• Right to Object
• Right to Withdraw the Consent Given Under Data Protection Law
• Right to Lodge a Complaint with a Data Protection Supervisory Authority

Information on the Withdrawal of Consent:

A data subject has the right to withdraw their declaration of consent under data protection law at any time. However, the withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

Information on the Right to Lodge a Complaint with a Supervisory Authority:

Without prejudice to any other administrative or judicial remedy, the data subject has the right to lodge a complaint with a supervisory authority, in particular in the member state of the user’s habitual residence, place of work or place of the alleged infringement if the user considers that the processing of their personal data by us infringes the GDPR.