1. PERSONAL DATA
DATA COLLECTION ON OUR WEBSITE IN AN OVERVIEW
Who is responsible for the data collection on this website?
What type of data do we collect?
We collect the following data:
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form. This includes “contact details” and “details on your interest”.
Other data is collected automatically by our website’s software platform when you visit the website, including “usage data” and “meta/communication data”. This data is primarily technical data such as the browser and operating system you are using or when you accessed the page and which pages you accessed within this website. This data is collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site. With the consent of some visitors, we use the data to understand visitor interest and engagement with our website content in order to provide more valuable content and better functionality for the website’s visitors.
The contact details are processed by us for the following purposes:
The legal basis for the processing data from the territory of the European Union is the GDPR. GDPR means General Data Protection Regulation – Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. The Text can be found here: https://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32016R0679&from=DE. In most cases, the legal basis for the processing of your personal data is your consent for one or more specific purposes (Art. 6 para. 1 lit. a GDPR) or our legitimate interests (Art. 6 para. 1 lit f. GDPR).
2. TRANSMISSION OF DATA
Personal data that you provide to the operators of the website will not be disclosed to third parties.
3. STORAGE PERIOD
Insofar as no express storage period is specified during the collection, the personal data will be deleted as long as they are no longer required to fulfill the purpose of the collection, unless there are statutory retention requirements that prevent deletion. In any case the responsible parties will minimize the necessary storage period.
4. DATA SECURITY
Personal data collected through this website is stored on the website host’s server, HubSpot, Inc. Details on the security practices of HubSpot are available at https://www.hubspot.com/security.
The website operator has in place data security procedures to limit access to your personal data to those who must access it in order to fulfill the purpose of its collection, such as responding to your inquiry or sending you periodic emails with information you have requested.
We take technical and organizational security measures to protect your data, which we store and process in our company, against manipulation, loss of confidentiality, destruction and against access by unauthorized persons. Our company's security measures are continuously improved in line with technological developments.
5. DATA SUBJECT RIGHTS
OPPOSITION TO PROMOTIONAL EMAILS:
We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.
For California residents, the California Consumer Protection Act (the “CCPA”) provides various rights to individuals and households with respect to the collection and use of personal information that we have collected about you. Among other rights under the CCPA, you have the right to request that we: (i) disclose to you any personal information that we have about you; (ii) delete personal information that we have about you (subject to certain exceptions); or (iii) not “sell” your information to a third party (excluding qualified service providers), as that term is interpreted under the CCPA. It is unlawful for us to discriminate against you because you exercised any of your rights under the CCPA. If you are a California resident, you can submit such requests via email to our data protection officer at email@example.com and we will complete the request within the timeframe permitted by law.
For Nevada residents, please note that we do not sell personal information as defined by Nevada law (Ch. 603A, Sec. 1.6). You can submit a request to us regarding the sale of such information via email to our data protection officer at firstname.lastname@example.org.
If we provide any services in regard to your personal information pursuant to a contractual relationship with healthcare provider or another organization (collectively, a “Provider”), those contractual terms will govern the services and supersede these terms in the event of any conflict. Therefore, notwithstanding any of the privacy practices described here, separate contractual terms with the Provider may require us to handle personal information pursuant to more restrictive healthcare-specific laws, such as the Health Insurance Portability And Accountability Act (“HIPAA”). If applicable, please contact your Provider to exercise any rights with respect to your personal information.
ADITIONAL DATA SUBJECT RIGHTS FOR EU RESIENTS (OR WHEN GDPR OTHERWISE APPLIES):
REVOCATION OF YOUR CONSENT TO THE PROCESSING OF YOUR DATA
Many data processing operations are only possible with your expressed consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The revocation should be sent to email@example.com.
The data processed before we receive your request may still be legally processed.
RIGHT TO FILE COMPLAINTS WITH REGULATORY AUTHORITIES
If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities.
The responsible data protection authority for our company in Germany is:
Bayerisches Landesamt für Datenschutzaufsicht
Promenade 18, 91522 Ansbach, Germany
RIGHT TO DATA PORTABILITY
You have the right to have data (that we process based on your consent or in fulfillment of a contract) automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
RIGHT OF INFORMATION, BLOCKING, DELETION
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored, as well as its origin, the recipient, and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given (firstname.lastname@example.org) if you have further questions on the topic of personal data.
RIGHT OF CORRECTION
You also have the right to request the correction of your personal data submitted to us by using the website or delivered to us otherwise by your consent. The request should be addressed to our data protection officer (email@example.com).
STATUTORY DATA PROTECTION OFFICER
We have appointed a data protection officer for our website.
6. CONTACT FORM
If you wish to contact the website operators, you are invited to use the website’s Contact Form. To use the form, you are required to provide your name, email address, and the purpose of your inquiry. Other fields of information are optional. The personal data you provide through the contact form is used for the purpose of preparing and providing a response for your inquiry.
7. NEWSLETTER AND BLOG
If you wish to consent to receive emailed updates from the website operator (a “newsletter”), you are invited to use the subscription form. This form provides the ability to join a newsletter for “News” and/or a newsletter for “Insights”. The subscription form explains the emails you will receive if you consent to join one or both of these lists. The contact information you provide will be used only to send you the requested information on a periodic basis.
Subscription to these newsletters is also available through the website’s Contact Form by consenting to these newsletters at the time of submitting an inquiry through the Contact Form.
This website includes a blog. The ability for visitors to comment on blog posts is disabled on this website.
The “News” and “Insights” newsletters are sent out on an irregular basis, when there is content considered valuable by the website operator to deliver, that is appropriate to the expressed interest of the recipient.
When you register to receive our company's newsletter, the data you provide will only be used for this purpose.
Your name and a valid email address are required for effective registration. In order to check that the registration is actually made by the owner of an email address, we use the “double opt-in” procedure. For this purpose, the order for the newsletter, the dispatch of a confirmation email and the receipt of the response requested are logged. The data will only be used to send the newsletter and will not be passed on to third parties.
Each newsletter features a link to Unsubscribe from the newsletter, revoking your consent to receive that newsletter. In addition to unsubscribing, if you would no longer like to receive one or both of the newsletters, you can, if you choose, use the website’s Contact Form to provide feedback on what content would be valuable to you, or offer suggestions to improve the newsletter(s).
8. SERVER LOG FILES
When visiting our website your browser will transfer certain data to our web server. This is done for technical reasons and required to make available to you the requested information. The website automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:
This data will not be combined with data from other sources. We use this information to ensure the optimal operation of the HubSpot platform and for security purposes. The basis for data processing is Art. 6 (1) (f) GDPR, which allows the processing of data necessary for the purposes of the legitimate interests pursued by the controller. Our legitimate interests for example might be to prevent unauthorized access or hacking activities or to warranty the security of our website and systems. Moreover, we will store such data for a limited period for the above-mentioned reasons.
Our website uses necessary Cookies which are essential for the functioning of this website and do not require consent. We have a legitimate interest in the storage of necessary cookies (Art. 6 (1) (f) GDPR to ensure an optimized service provided free of technical errors. Moreover, our website uses analytics cookies which are non-essential cookies and were only activated by your consent.
Analytics Cookies include the following which are only activated by your consent are: hstc (tracking visitors, containing their domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session); hubspotutk (This cookie keeps track of a visitor's identity); hssc (keeps track of sessions); hssrc (This cookie is also set to determine if the visitor has restarted their browser changes the session cookie).
10. TRACKING TOOLS
This website does not use third party tracking tools. The website uses HubSpot analytics and the tracking used by HubSpot is explained in the Section 9: Cookies.
11. SOCIAL MEDIA PLUGINS
This website provides links to the website operator’s social media profiles on LinkedIn and Twitter. The website does not transmit any personal data to these social media platforms when those links are used.
Declaration according to German § 5 TMG:
Minaris Regenerative Medicine GmbH
Responsibility for content:
Dusan Kosijer, CEO authorised to represent the company
phone: +49 (0)89 7009608 – 0