Data Protection Declaration

At Symbolex GmbH we take data protection very seriously and we respect your personal privacy. It meets our business standards that we handle your personal data lawfully, confidentially and correctly at any time.

Our Data Protection Declaration aims at informing you about how Symbolex GmbH (“we“) protects your personal data while visiting our website www.360obp.eu. It provides information about the specific kind of personal data that we collect, the purposes for which we use such data, and the options you have to limit the use of such. The processing of your data complies with the legal regulations on data protection.

By accessing www.360obp.eu you are consenting to the process of collecting and managing your personal data as described in this Data Protection Declaration. We recommend reading it carefully and regularly review our website and our Data Protection Declaration for any updates because of possible changes. We may adapt them to the current legal requirements and take into account changes in our services.

This version is last updated in October 2021.

Responsible party in terms of data protection rights, as well as accountable for content is

Symbolex GmbH
Carlsplatz 24, 40213 Düsseldorf, Germany

VAT number: DE274246908
Registered at the Local Court of Düsseldorf under HRB 64347

E-Mail: start@360obp.eu
Phone: +49 211 17 60 71 - 30

Contact Person: Agnieszka Remmen
E-Mail: a.remmen@symbolex.de

Personal Data

Personal data is every kind of information that relates to an identified or identifiable natural person. This may be information such as your name, your age, your address, your telephone number or your e-mail address. But this may also include unique numerical identifiers such as the IP address of your computer or the MAC address of your mobile phone.

Data Security

All personal data transmitted by you will be encrypted using the generally accepted and secure standards (SSL or TLS). TLS or SSL are safe and proven standards.

We also take appropriate technical and organizational security measures to protect your personal data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Notice for Parents

We encourage parents to take an active role in their children's online activities. Although we don’t direct our website to children, it may happen that we unknowingly collect personal information from children without a parental consent. If you believe that we have collected personal information in such a case, please inform us using the contact options offered. We will then immediately take appropriate actions regarding the respective data.

Links to Other Websites

Our website www.360obp.eu may contain hyperlinks which redirect to other websites when you click on them. While we try to link only to websites that share our standards and respect for privacy, we are not responsible for the privacy practices of any third parties or the content of the linked websites. When visiting linked websites, we recommend that you check the applying Data Protection Declaration of these websites in order to determine whether and to what extent personal data is collected, processed, used or made available to third parties.

Legal obligations

The provision of personal data for the decision on the conclusion of a contract, the performance of the contract or the implementation of pre-contractual measures is voluntary. However, we can only make the decision in the context of contractual measures if you provide such personal data as are necessary for the conclusion of the contract, the performance of the contract or pre-contractual measures.

Automated decisions / profiling

Automated decision-making or any other profiling processes according to Art. 22 DSGVO are not being applied by us.

Data processing by visiting our website

You can visit our website www.360obp.eu without providing any personal information. Whenever a web page is called up, the web server automatically stores access data in so-called server log files which are automatically communicated by your browser. This may include data such as the date and time of the retrieval, the name of the requested file, the last visited website, the browser used, the amount of data transmitted, your IP address, the requesting provider etc.

Within the processing procedure, a third-party provider provides the services for hosting and displaying the website. This service provider is located within a country in the European Union or the European Economic Area.

For the purpose of a shorter loading time of our online presence, we also use a so-called Content Delivery Network ("CDN"), in which the website is delivered via the web server of a CDN provider working for us within the scope of order processing. This way access data is also collected on the web servers of the provider.

We collect the data listed in order to ensure a smooth connection of the website and to allow users to conveniently use our website. In addition, the log file serves the evaluation of system security and stability as well as administrative purposes. The legal basis for the temporary storage of data or log files is Art. 6 (1) lit. f GDPR. The use of a CDN provider, as well as the procedure described here, serves to safeguard our legitimate interests, which are predominant in the context of a weighing up of interests in accordance with Art. 6 (1) lit. f GDPR regarding the correct representation of website.

For reasons of technical security, in particular to ward off attacks on our web server, this data is stored by us for a short time. Based on these data, we cannot draw any conclusions about individual persons. After seven days at the latest, the data is anonymised by shortening the IP address at domain level, so that it is no longer possible to relate to the individual user.

Such anonymized data may also be processed for statistical purposes. Neither do we store such data together with other personal data of the user nor do we compare such with other databases.

We may also collect or receive your data through:

• our corporate email address: start@360obp.eu: with this option of communication we are always at your service, regardless of your concern;

• our corporate phone number +49 211 17 60 71-30 : you may chose to call us for further information or assistance;

• using our contact form: under the “contact“ section on our website we offer you to contact us via a contact form where you can place an inquiry or ask for assistance or further information needed;

• subscribing to updates and invitations: you have the option to receive updates and invitations by providing your business email address therefore. In case you chose to provide it to us, we will send you news related to our services, the updates of our blog and information that appears to be relevant for you;

• social networks: we may create corporate accounts on social media networks such as LinkedIn, Xing, Twitter or Facebook. We are “Responsible for the processing of the user’s data” on this social networks. By joining our corporate accounts as a follower or giving a reaction (i.e. a “like”) to it or to any of its contents, will mean your acceptance of this privacy policy.

The personal information we collect from you may include:

• your first and last name;

• your business email address;

• your company name;

• your job title;

• your business phone number and

• your inquiry.

You are not obligated to provide this information. In case of failure we may not be able to provide you with the requested assistance or service. By providing this information in a voluntary way through any of the above listed options, you are expressly and voluntarily accepting this Data Protection Declaration

The purposes of data processing through the above listed options are the following:

• Handle and correctly process your inquiries;

• recommend services and inform about news which may be of your interest (only where you have consented to be contacted for such purposes);

• develop our offers and our website to ensure that our services are as useful and user-friendly as possible;

• contact you.

We may also collect or receive your data through the implementation of GOOGLE MAPS:

On our website we use the integration of Google Maps to visualise geographic information. In accordance with Art. 6 (1) 1 lit. f, this serves to safeguard our legitimate interests, which are predominant in the context of a weighing up of interests, in an optimised representation of our offer at individual locations.

Google Maps is an offer from Google LLC (www.google.com).

Google LLC is headquartered in the United States. This country has an adequacy ruling from the European Commission. This goes back to the EU US Privacy Shield, under which Google LLC is certified. A current certificate can be viewed here: https://www.privacyshield.gov/list

When accessing a website that incorporates Google Maps, the Google web server automatically collects access data in server log files, which are automatically communicated by your browser, such as the name of the requested file, the website visited last, date and time retrieval, browser used, amount of data transferred, the IP address, the requesting provider, etc. When using Google Maps, Google also processes data on the use of the Maps functions by visitors to the websites.

For more information about Google's privacy policy and setting options, visit www.google.com/policies/privacy/.

With whom is your personal information shared?

The very nature of the services our 360° Online Brand Protection service cooperation offers, means that we may have to share your personal information. We will only do so with trusted organisations. We may disclose your personal information with the members of our 360° Online Brand Protection Service Cooperation, Dr. Peter Remmen and Corma GmbH, in respect of your legal needs or regarding investigative intelligence within our offered range of services; in the event of a reorganisation, sale or takeover, with the organisation(s) involved in the reorganisation, sale or takeover; if required by law, for example this may occur in the administration of justice or where we have to defend ourselves legally.

We use external service providers for the processing of our services, which we have carefully selected and commissioned in writing, e.g. for web or content hosting. They are bound by our instructions and are regularly monitored by us. Where necessary, we do have order processing contracts according to Art. 28 GDPR. The service providers will not pass on this data to any third party.

How long will your personal data be stored?

The duration of the storage of your personal data is determined by the relevant statutory retention periods (for example, commercial law and tax law). After expiry of the respective deadline, the corresponding data will be routinely deleted. If data is required to fulfil the contract or to initiate an agreement or if we have a legitimate interest in the re-storage, the data will be deleted if it is no longer required for these purposes or if you make use of your right of revocation or objection.

Use of cookies

Our website uses cookies that are stored by the browser on your device and that contain certain settings for the use of the website (e.g. the current session). Cookies are used to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser.

Most of the cookies we may use are session cookies, which are automatically deleted after the browser is closed. Other cookies remain stored on your device until you delete them or the memory expires. These cookies allow us to recognize your browser on your next visit. In some cases, the cookies are used to simplify website processes by storing settings (e.g. the provision of already selected options).

If individual personal data are processed by implemented cookies, the processing is carried out in accordance with Art. 6 (1) lit. b GDPR either for the execution of the contract or in accordance with Art. 6 (1) lit. f GDPR for safeguarding our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, to prevent the acceptance of cookies for certain cases or in general, as well as to enable the automatic deletion of cookies when closing the browser.

The cookie settings can be managed under the following links for the respective browser:

• Google Chrome: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en

• Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen

• Internet Explorer: http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies

• Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

• Opera: https://help.opera.com/en/latest/security-and-privacy/

You can also individually manage the cookies of many companies and features that are used for advertising. Use the appropriate user tools, available at:

• https://www.aboutads.info/choices/

• http://www.youronlinechoices.com/uk/your-ad-choices

Most browsers also offer a so-called "Do-Not-Track feature". With this feature enabled, your browser will inform ad networks, websites, and applications about the fact, that you do not want to be tracked for e.g. behavioural advertising..

Please find further specific information and instructions here:

• Google Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de

• Mozilla Firefox: https://www.mozilla.org/de/firefox/dnt/

• Internet Explorer: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track

• Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

• Opera: https://help.opera.com/en/presto/be-safe-and-private/#notrack

In addition to this, you can prevent the loading of so-called scripts by default. E.g. NoScript allows you to run JavaScripts, Java and other plug-ins only on the trusted domains of your choice.

Please find further Information and instructions how this kind of function can be obtained from the provider of your browser (eg for Mozilla Firefox at: https://addons.mozilla.org/de/firefox/addon/noscript/ ).

Please note that disabling cookies may limit the functionality of this website.

YOUR RIGHTS

• Art. 15 GDPR gives you the right to demand information about the personal data processed by us.

• Art. 16 GDPR gives you the right to demand the correction of incorrect personal data or completion of personal data stored by us.

• Art. 17 GDPR gives you the right to demand the deletion of your personal data stored by us, unless further processing is required
  - to exercise the right to freedom of expression and information;
  - to fulfil a legal obligation;
  - for reasons of public interest or
  - to assert, exercise or defend legal claims.

• Art. 18 GDPR gives you the right to demand the restriction of the processing of your personal data, in case
  - the accuracy of the data is disputed by you;
  - the processing is illegal, but you reject its deletion;
  - we no longer need the data, but you need it for asserting, exercising or defending legal claims, or
  - you have filed an objection against the processing in accordance with Art. 21 GDPR.

• According to Art. 19 GDPR if you have asserted the right of rectification, deletion or limitation of the processing the responsible person has to notify all recipients of your personal data, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about those recipients.

• Art. 20 GDPR gives you the right to receive your personal data, which you have provided to us. This should happen in a structured, common and machine-readable format. You can also demand the data transfer to a responsible third party.

• Art. 7 sec. 3 GDPR gives you the right to withdraw your consent at any time as far as the data processing is based on your consent. As a result, we are not allowed to continue the data processing based on this consent for the future.

• Art. 77 GDPR gives you the right to complain to a supervisory authority. You have the choice to contact the supervisory authority of your usual place of residence or work or our company. A list of data protection officers and their contact details can be found here: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

If you wish to exercise your rights, contact us using the contact details provided on our website or use our contact form.

RIGHT OF OBJECTION

Art. 21 GDPR gives you the right to oppose processing based on purposes of legitimate interest with effect for the future.

If the processing is for the purpose of direct marketing, you can exercise this right at any time without the requirement of specifying a particular situation.

If the processing is operated for other purposes according to Art. 6 (1) 1 lit f GDPR, you are only entitled to a right of objection if there are reasons that arise from your particular situation.

After exercising your right of objection, we will stop processing your personal data for these purposes, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing serves the assertion, exercise or defence of legal claims.

If you would like to exercise your right of revocation or objection, please send an e-mail to start@obp.eu

ENFORCEMENT OF THIS DATA PROTECTION DECLARATION

Feel free to contact us in case of any questions regarding this data protection declaration or our processing of your personal data. Please write to start@360obp.eu to reach out to us.