Privacy Policy

Privacy Policy

We are pleased with your visit to our Website. Subsequently, we would like to inform you about the processing of your data in accordance with Art. 13 General Data Protection Regulation (GDPR).

Person responsible

The person responsible for the data collection and processing described below is the employee named in the imprint (https://staging.nextpractice.de/en/imprint).

Storing the IP address for security purposes

We store the IP address transmitted by your web browser for a strictly earmarked period of seven days in order to be able to detect, limit and eliminate attacks on our web pages. After this period has expired, we delete or make the IP address anonymous. The legal basis is Art. 6 (1) clause 1 (f) GDPR.

Usage of data

When you visit our websites, so-called usage data is temporarily stored on our web server for statistical purposes as a protocol in order to improve the quality of our websites. The data set comprises:

  • the web page from which the file was requested,
  • file name,
  • query date and time,
  • the amount of data transferred,
  • access status (file transferred, file not found etc.),
  • description of the browser type used,
  • IP-Address of the requesting computer, truncated to prevent personal reference.

 The log data mentioned are only stored anonymously.

Data recipient

Order processor

We transmit your data during order processing in accordance with Art. 28 GDPR to service providers (e.g., hosting service providers) who support us in operating our websites and the associated processes. Our service providers are bound by strict instructions and contractual obligations. We use the following service providers:

Hosting service providers

Web analytics providers

In some cases, we transfer personal data to a third country outside the EU. We ensure an appropriate level of data protection at all times.

In the case of Google (Google Analytics, DoubleClick (USA)), an appropriate level of data protection is ensured by the corresponding participation in the Privacy Shield Agreement (Art. 45 (1) GDPR)

Your data are not shared with third parties within the meaning of Art. 4 (10) GDPR.

Cookies

We use cookies on our websites. Cookies are small text files that can be stored and read on your end device. A distinction is made between session cookies, which are deleted again as soon as you close your browser, and permanent cookies, which are stored beyond the individual session. Cookies may contain data that make it possible to recognise the device used. In some cases, however, cookies only contain information on certain settings that cannot be referenced to individuals.

We use session cookies and permanent cookies on our websites. Processing is carried out on the basis of Art. 6 (1) clause 1 (f) GDPR and in the interest of optimising or enabling user guidance and adapting the presentation of our website.

You can configure your browser to inform you of cookie placement. This will help clarify their use. You can also delete cookies at any time using the corresponding browser setting and prevent the setting of new cookies. Please note that our web pages may not be dis-played optimally and some of its features may no longer be technically available.

Retargeting Google

We use Google Remarketing technologies

We use Google’s cross-device remarketing technologies to be able to display targeted advertising on other websites based on your visit to our websites. Data processing is based on Art. 6 (1) clause 1 (a) of the GDPR.

How does remarketing work?

When you visit our websites, Google may retrieve recognition features for your browser or terminal device (e.g., a so-called browser fingerprint), evaluate your IP address or store a recognition feature in the form of a small text file on your terminal device (e.g. a so-called third party cookie). Google may also link and store your visit to our website with one or more of these recognition features in order to display our advertising on other pages on the Internet.

The recognition features described above are designed as pseudonyms and can be used by Google to recognise your terminal device on other Internet pages. For example, when you visit a page that participates in Google’s display advertising network (advertising on Google’s behalf), Google can recognise your device and browser using the features listed above.

We can also provide our websites with so-called ‘remarketing tags’. This means that we can include keywords in our Internet pages that contain statements about the content of the page displayed (such as product or service categories). The keywords we use do not contain any personal or sensitive information. Google maintains and stores these keywords for the above recognition features. So when you visit a page that we’ve tagged with a specific product category, Google stores that keyword and assigns it to your recognition characteristics.

We can thereby commission Google to place advertisements on other websites based on the pages visited by us. If you visit another website that participates in Google’s display advertising network, Google can use the recognition features and the keywords stored for these recognition features to determine whether and, if so, which of our ads should be displayed to you.

For more information on how Google Remarketing technologies work, visit https://www.google.com/policies/technologies/ads/.

What does cross-device remarketing mean?

If you sign in to Google services with your own credentials or use one or more of your own Google accounts, Google may link the recognition features of different browsers and devices. So if Google has created a unique identifier for the laptop, desktop PC or smartphone or tablet you are using, these identifiers can be associated once you use or have used a Google service with your sign-in information. In this way, Google can also play our advertising campaigns on terminal devices in a targeted manner. Google will only do this, however, if you have agreed to this data processing in the past.

You have the option of implementing settings for advertising

You can object to this form of advertising at any time. To do so, please visit https://support.google.com/ads/answer/2662922 and disable personalised advertising. Please note that these settings may not affect all devices and browsers. Further information is also available at https://support.google.com/ads/answer/2662922.

Google Analytics

We create pseudonymous usage profiles using Google Analytics for a user-friendly design of our websites. Google Analytics uses cookies that can be stored on your device and read by us. In so doing, we can recognise and count returning visitors. Data processing is based on Art. 6 (1) clause 1 (f) GDPR or Section 15 (3) of the German Telemedia Act and in the interest of knowing how often our websites have been visited by different users.

As a rule, the cookie-generated data regarding your use of this website will be forwarded to a Google server in the USA and stored there. However, because we have activated IP anonymisation on our websites, your IP address will first be truncated by Google within Member States of the European Union. Only in exceptional cases will the full IP address be transferred to a Google server in the USA (an appropriate level of data protection pursuant to Art. 45 (1) GDPR through Google’s participation in the Privacy Shield) and only truncated there. We have concluded a contract for order processing in accordance with Art. 28 GDPR with Google Inc. (USA). Google will therefore only use all information for strictly intended purposes in order to evaluate the use of our websites for us and compile reports on website activities.

You can object to the processing at any time. Please use one of the following options:

You can prevent cookies from being stored by selecting the appropriate settings in your browser; however, please note that by doing so, you may not be able to enjoy the full functionality of this website.

Furthermore, you can prevent the collection of data generated by the cookie and related to the usage of the website (incl. your IP address) and the processing of these data by Google by downloading and installing the browser plug-in available at the following link: (http://tools.google.com/dlpage/gaoptout?hl=de).

You can also prevent collection by Google Analytics by clicking on the following link. This will set an opt-out cookie to prevent the future collection of your data when visiting this website:

Google Maps

We have integrated Google Maps on our websites in the legitimate interest as defined in Art. 6 (1) (f) GDPR, to help you find the shortest way to our company locations. If you use the map, e.g., by clicking on our locations listed there, we do not collect any data from you. To the best of our knowledge, Google LLC 1600 Amphitheatre Parkway Mountain View, CA 94043 USA does not collect any personal information as part of Google Maps. nextpractice has no control on how Google Inc. processes data.Inc. You can find the Google Maps terms of use at http://www.google.com/intl/de_en/help/terms_maps.html

Data security

We implement technical and organisational measures in order to protect your data from unauthorised access to the extent possible. We use an encryption method on our web pages. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can recognise this by the fact that the lock icon in the status bar of your browser is closed and the address line starts with https://

You rights as a user

When processing your personal data, the GDPR grants you certain rights as a website user:

  1. Right to information (Art. 15 GDPR):

You are entitled to request confirmation as to whether your personal data are processed; if this is the case, you are entitled to access your personal data and the information speci-fied in Art. 15 GDPR.

  1. The right to rectification and erasure (Articles 16 and 17 GDPR):

You may request that your inaccurate personal data be rectified and the incomplete per-sonal data be completed without undue delay, where necessary.

You may also request that your personal data be erased without undue delay if one of the reasons listed in Article 17 GDPR applies in particular, if the data are no longer required for the intended purpose, for example.

  1. The right to restriction of processing (Art. 18 GDPR)

You may request a restriction on processing where one of the conditions listed in Article 18 GDPR applies, e.g., if you have objected to processing pursuant to Article 21(1) GDPR pending the verification whether our legitimate interests override yours.

  1. Right to data portability (Art. 20 GDPR)

In certain cases, set out in Article 20 GDPR, you are entitled to receive your personal data in a structured, commonly used and machine-readable format or to request the transmis-sion of the data to a third party.

  1. Right of objection (Art. 21 GDPR):

If data are collected on the basis of Art. 6 (1) (f) (data processing to protect legitimate interests), you are entitled to object to processing at any time on the grounds that arise from your particular situation. We shall no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing which override your inter-ests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

  1. The right to lodge a complaint with a supervisory authority

In accordance with Article 77 of the GDPR, you may appeal to a supervisory authority if you believe that the processing of your data violates data protection regulations. The right of appeal may be exercised in particular before a supervisory authority in the Member State where you are staying, working or where the suspected violation took place.

Our company’s data protection officer will be happy to provide you with any information or suggestions regarding data protection:

Dr. Uwe Schläger

datenschutz nord GmbH

Konsul-Smidt-Straße 88

28217 Bremen

Web: www.datenschutz-nord-gruppe.de

E-Mail: office@datenschutz-nord.de

Telefon: 0421 69 66 32 0