Data Protection / Privacy Policy
1. General Information and Responsible Controller
We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations (especially the EU General Data Protection Regulation – GDPR) and this privacy policy.
The controller (responsible party) for data processing on this website is:
stemick GmbH Byk-Gulden-Str. 2 78467 Konstanz Germany
Represented by: Dr. Stefan Röpcke
Phone: +49 -176 – 7079 – 4231 Email: info@stemick-lab.com
(See our Imprint for full details).
2. Your Rights as a Data Subject
You have the following rights regarding your personal data:
-
Right of Access (Art. 15 GDPR): You have the right to request information about the personal data we process.
-
Right to Rectification (Art. 16 GDPR): You have the right to request the immediate correction of inaccurate or incomplete personal data stored by us.
-
Right to Erasure (Art. 17 GDPR): You have the right to request the deletion of your personal data stored by us, unless processing is necessary to exercise the right of freedom of expression, to comply with a legal obligation, for reasons of public interest, or to assert, exercise, or defend legal claims.
-
Right to Restriction of Processing (Art. 18 GDPR): You have the right to request the restriction of the processing of your personal data.
-
Right to Data Portability (Art. 20 GDPR): You have the right to receive your personal data, which you have provided to us, in a structured, common, and machine-readable format.
-
Right to Withdraw Consent (Art. 7(3) GDPR): You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
-
Right to Object (Art. 21 GDPR): You have the right to object to the processing of your personal data on grounds relating to your particular situation, provided the processing is based on Art. 6(1)(e) or (f) GDPR.
3. Right to Lodge a Complaint
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR), in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.
The supervisory authority responsible for stemick GmbH is:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg (The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg) Postfach 10 29 32, 70025 Stuttgart Königstrasse 10a, 70173 Stuttgart Phone: 0711/61 55 41 – 0 Email: poststelle@lfdi.bwl.de Website:
4. Data Collection on This Website
a) Server Log Files
When you visit our website, the provider of the pages automatically collects and stores information in so-called “server log files,” which your browser automatically transmits to us. These are:
-
Browser type and browser version
-
Operating system used
-
Referrer URL (the page you visited before)
-
Host name of the accessing computer
-
Time of the server request
-
IP address (may be anonymized)
This data is not merged with other data sources.
The basis for this data processing is Art. 6(1)(f) GDPR. We have a legitimate interest in the technically error-free presentation, stability, and security of our website.
b) Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there (e.g., name, email address, phone number, and your message), will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.
The processing of this data is based on Art. 6(1)(b) GDPR if your request is related to the performance of a contract or is necessary for pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Art. 6(1)(f) GDPR).
The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory statutory provisions – in particular retention periods (e.g., from commercial or tax law) – remain unaffected.
c) Cookies
Our website may use “cookies.” Cookies are small text files that are stored on your device and do not cause any damage.
-
Technically Necessary Cookies: We use cookies that are essential for the operation of the website and its basic functions. These are stored based on Art. 6(1)(f) GDPR (legitimate interest) or § 25 (2) TTDSG (German Telecommunications Telemedia Data Protection Act), as they are strictly necessary to provide the service you requested.
-
Other Cookies (e.g., Analytics, Marketing): Any other cookies (e.g., for analyzing surfing behavior or displaying advertising) are stored only with your explicit consent (Art. 6(1)(a) GDPR and § 25 (1) TTDSG). You provide this consent via a cookie consent banner when you first visit the site. You can revoke this consent at any time.
[Note for you: If you use tools like Google Analytics, Matomo, or social media plugins, you MUST list them here and explain what data they collect and the legal basis. This template assumes you are not using them yet.]
5. Data Security
For security reasons and to protect the transmission of confidential content, such as inquiries you send to us via the contact form, this site uses SSL/TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https” and by the lock symbol in your browser line.
When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.
6. Data Retention
We process and store your personal data only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject.
If the storage purpose is not applicable, or if a storage period prescribed by law expires, the personal data is routinely blocked or erased in accordance with legal requirements.