DE | EN

DATA PROTECTION

Thank you for your interest in our services and your visit to our website. The protection of your personal data is important to us. Therefore, we would like to inform you about the type, scope and purpose of the personal data processed by us. Furthermore, we would like to inform you about your rights.

If you have any further questions regarding the handling of your personal data, you are welcome to contact our data protection officer.

Name and address of the data protection officer

If you have any questions regarding the processing of your personal data, you can contact our Data Protection Officer directly, who will also be available in case of requests for information, requests or complaints.

For the company First Coin GmbH the responsible person for data protection is:

Mr. Clemens Marckhoff
First Coin GmbH
Neue Mainzer Str. 46-50

60311 Frankfurt am Main

E-Mail: clemens.marckhoff(at)firstcoin.de

Contact

If you contact our company, personal data will be collected by us (for example by contact form, e-mail or telephone). Of course, we will only use the personal data voluntarily transmitted to us for the purpose for which you provide us with these when contacting us. Of course you can revoke your declarations of consent at any time in the future. Please contact our data protection officer for this.

Definitions

Our privacy policy is based on the terminology provided for in Article 4 of the EU General Data Protection Regulation (GDPR). Our privacy policy should be easy, readable and understandable for everyone. To ensure this, we would like to explain in advance the terminology used.

However, if some terms are not understandable, you are welcome to contact our data protection officer.

What is personal data?

The concept of personal data is defined in Article 4 of the GDPR. According to this, personal data are all information relating to an identified or identifiable natural person ('the person concerned'). A natural person is considered to be identifiable who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person can be identified.

This includes, for example, your name, address, telephone number or date of birth.

What does the term processing mean?

Processing means any process or series of operations associated with personal data, such as collecting, collecting, organizing, organizing, storing, adapting or modifying, reading out, querying, which is performed with or without the aid of an automated process use, disclosure by transmission, dissemination or other form of provision, matching or linking, restriction, erasure or destruction.

Who is responsible for the processing?

Responsible person is the natural or legal person, authority, institution or other body which, alone or together with others, decides on the purposes and means of processing personal data.

Responsible within the meaning of the GDPR for the processing of data on this website is:

First Coin GmbH
Neue Mainzer Str. 46-50
60311 Frankfurt am Main

Phone: +49 (0) 170 45 33 600

Website: www.firstcoin.de
E-Mail: clemens.marckhoff(at)firstcoin.de

Who is the processor?

A processor is a natural or legal person, public authority, body or body that processes personal data on behalf of the controller.

What is profiling?

Profiling is any type of automated processing of personal data that involves the use of such personal information to evaluate certain personal aspects relating to a natural person, in particular aspects relating to job performance, economic situation, health, personal preferences, interests, reliability, behavior, whereabouts, or relocation of that natural person.

Use of personal data

Applications

The controller collects and processes the personal data of applicants for the purpose of processing the application process. The processing can also be done electronically. This is particularly the case if an applicant submits corresponding application documents by electronic means, for example by e-mail, to the controller. If the controller concludes a contract of employment with an applicant, the data transmitted will be stored for the purposes of the employment relationship in accordance with the law. If no contract of employment with the candidate is concluded by the controller, the application documents will be automatically deleted six months after notification of the rejection decision, unless deletion precludes other legitimate interests of the controller. Other legitimate interest in this sense, for example, a burden of proof in a procedure under the Allgemeinen Gleichbehandlungsgesetz (AGG)

Logfiles

The use of this website is basically possible without any indication of personal data. However, if a data subject wishes to use our company's special services through our website, personal data processing may be required. If the processing of personal data is required and there is no legal basis for such processing, we generally seek the consent of the data subject.

Every time you access one of our internet pages (https://www.firstcoin.de) and every time a file is accessed, access data about this process is stored in a log file on our server. Data that can be recorded:

  • the browser types and versions used,
  • the operating system used by the accessing system,
  • the website from which an accessing system comes to our website (so-called referrer),
  • the sub-web pages, which are accessed via an accessing system on our website,
  • the date and time of access to the website,
  • an internet protocol address (IP address),
  • the internet service provider of the accessing system and
  • other similar data and information used in the case of attacks on our information technology systems.

When using this data and information, our company does not draw any conclusions about the data subject. This information is needed to:

  • to deliver the contents of our website correctly,
  • to optimize the contents of our website as well as the promotion of these,
  • to ensure the lasting functioning of our information technology systems and the technology of our website as well as
  • to provide law enforcement with the necessary information for law enforcement in the event of a cyberattack.

These anonymously collected data are evaluated on the one hand for statistical and also for data security reasons. Disclosure to third parties will not take place for commercial or non-commercial purposes. The anonymous data is stored separately from any personal information provided by an affected person.

Insofar as the opportunity to enter personal or business data (e-mail addresses, telephone numbers, names, addresses) exists within the Internet offer, the user makes this disclosure on an expressly voluntary basis. Again, your data will be treated confidentially and will not be shared with third parties.

Cookies and Tracking

Our websites use cookies. Cookies are text files that are stored in or by the Internet browser on the user's computer system. When a user opens a website, a cookie can be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is reopened. In order to measure the success and reach of our website, we conduct analyzes of user behavior (so-called web analysis). Regularly so-called tracking tools are used.

A distinction is made between:

  • Technically necessary cookies
  • Cookies for measuring reach
  • Tracking tools for usage analysis

These different types are described in more detail in the following chapters.

The storage of their transmitted data takes place on the systems of our hosting service provider in Germany.

Technically necessary cookies

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser be identified even after a page break.

Technically necessary cookies are not required to display the website. Some functions of the website, such as contact form, etc. can not be used properly without these cookies. Consequently, there is no possibility of contradiction on the part of the user, a deactivation of these cookies can be made by setting the respective browser.

Cookies for measuring reach

Reach measurement cookies collect information about the usage of the website, e.g. Website calls or error messages. These cookies do not store information that allows the user to be identified. The collected information is aggregated exclusively and thus evaluated anonymously.

Tracking tools for usage analysis

In the usage analysis, we collect information about the usage of our website, e.g. Website calls or error messages. We do not store any information that allows us to identify the user. The collected information is aggregated exclusively and thus evaluated anonymously.

We use commercially available technology to further develop our website and offers according to your usage habits. For example, Google Analytics. With the collected data, we can see which sections and texts on our site are read more or how, for example, our navigation arrives.

Google Analytics

This website uses functions of the web analytics service Google Analytics. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.

IP anonymization

We have activated the function IP anonymization on this website. As a result, your IP address will be truncated by Google within member states of the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics within the framework of Google Analytics will not be merged with other data provided by Google.

Browser Plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all the functions of this website in full. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install: tools.google.com/dlpage/gaoptout.

Objection against data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Deactivate Google Analytics.

For more information on how to handle user data on Google Analytics, please see the Google Privacy Policy: support.google.com/analytics/answer/6004245.

Data processing:

We have entered into an agreement with Google for order data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Google reCAPTCHA

Wir nutzen “Google reCAPTCHA” (im Folgenden “reCAPTCHA”) auf unseren Websites. Anbieter ist die Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

With reCAPTCHA we want to check if the data entry on our websites (for example in a contact form) is done by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For analysis, reCAPTCHA evaluates various information (for example, the IP address, website visitor's time spent on the website, or user mouse movements). The data collected during the analysis will be forwarded to Google.

The reCAPTCHA analyzes are completely in the background. Site visitors are not advised that an analysis is taking place.

Data processing is based on Art. 6 para. 1 lit. f GDPR. The Web site operator has a legitimate interest in protecting its web sites from abusive automated spying and SPAM.

For more information on Google reCAPTCHA and the Google Privacy Policy, please visit the following links: https://www.google.com/ intl / en / policies / privacy /

and www.google.com/recaptcha/intro /android.html code.

Deletion and blocking of data

We store personal data of the data subject only for the period necessary to achieve the purpose of the storage. An extension of the retention period is only necessary if required by applicable laws and regulations.

Following the storage, personal data will be routinely blocked or deleted in accordance with the law.

No data transfers to third parties

A transmission of your data to third parties does not take place, unless we are legally obliged to do so. If external service providers come into contact with your personal data, we have ensured through legal, technical and organizational measures as well as regular checks that they comply with the provisions of data protection laws.

Rights of the person concerned (your rights)

Right to obtain information

Any person affected by the processing of personal data shall have the right at any time to obtain from the controller any information free of charge concerning the personal data stored about him, as well as a copy of such information. Furthermore, the data subject has the right to provide information about:

  • the processing purposes
  • the categories of personal data being processed
  • the recipients or categories of recipients to whom the personal data have been disclosed or are still being disclosed, in particular to recipients in third countries or to international organizations
  • if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
  • the existence of a right to rectification or erasure, of personal data concerning them, or of restrictions on processing by the controller or a right to object to such processing
  • the existence of a right of appeal to a supervisory authority
  • if the personal data are not collected from the data subject: All available information about the origin of the data
  • the existence of automated decision-making, including profiling, in accordance with Article 22 (1) and (4) GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended impact of such processing on the data subject

Furthermore, the data subject has a right of access as to whether personal data has been transmitted to a third country or to an international organization. If this is the case, the data subject has the right to obtain information about the appropriate guarantees in connection with the transfer.

If you would like to avail yourself of this right to information, you can contact our data protection officer at any time.

Right of correction

Any person affected by the processing of personal data has the right to demand the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing.

If you would like to exercise this right to rectification, you can contact our data protection officer at any time.

Right to cancellation (right to be forgotten)

Any person affected by the processing of personal data shall have the right to require the controller to delete the personal data concerning him without delay, provided that one of the following is true:

  • The personal data has been collected for such purposes or otherwise processed for which they are no longer necessary.
  • The person concerned revokes the consent on which the processing was based on Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR and lacks any other legal basis for the processing.
  • The data subject submits an objection to the processing in accordance with Art. 21 (1) GDPR and there are no legitimate reasons for the processing, or the person concerned objects to the processing pursuant to Art. 21 (2) GDPR.
  • The personal data was processed unlawfully.
  • The deletion of personal data is necessary to fulfill a legal obligation under Union or national law, to which the controller is subject. The personal data were collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.

If you would like to claim this right to cancellation, you can contact our data protection officer at any time.

Right to restriction of processing

Any person affected by the processing of personal data shall have the right to require the controller to restrict the processing if any of the following conditions apply:

  • The accuracy of the personal data is contested by the data subject for a period of time that enables the person responsible to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject refuses to delete the personal data and instead requests the restriction of the use of personal data.
  • The controller no longer needs the personal data for processing purposes, but the data subject needs them to assert, exercise or defend legal claims.
  • The person concerned has objection to the processing acc. Art. 21 para. 1 DSGVO and it is not yet clear whether the legitimate reasons of the person responsible outweigh those of the data subject.

If one of the above conditions is met and an affected person requests the restriction of personal data, they can contact our data protection officer at any time.

Right to data portability

Any person affected by the processing of personal data shall have the right to receive in a structured, common and machine-readable format personal data relating to him / her provided to a controller by the data subject.

It also has the right to transfer this information to another person without hindrance by the controller to whom the personal data has been provided, provided that

  • the processing is based on the consent pursuant to Article 6 (1) (a) of the GDPR or Article 9 (2) (a) GDPR or on a contract pursuant to Article 6 (1) (b) GDPR;
  • and the processing is done by automated methods.

This right does not apply to any processing necessary for the performance of a task in the public interest or in the exercise of public authority delegated to the controller.

Furthermore, in exercising their right to data portability under Article 20 (1) of the GDPR, the data subject has the right to obtain that the personal data is transmitted directly from one controller to another, insofar as this is technically feasible and if not so the rights and freedoms of others are impaired.

To assert the right to data portability, the data subject may contact our data protection officer at any time.

Right to objection

Any person concerned by the processing of personal data shall have the right, at any time, to object to the processing of personal data relating to the processing of personal data pursuant to Article 6 (1) (e) or (f) of the GDPR.

In the event of an objection, our company no longer processes personal data unless we can prove compelling legitimate grounds for processing that outweigh the interests, rights and freedoms of the data subject, or the processing is for the purposes of asserting, exercising or defending legal claims.

If our company processes personal data in order to operate direct mail, the data subject has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to the profiling, as far as it is associated with such direct mail.

In order to exercise the right to object, the data subject may at any time contact our data protection officer directly.

Automated decisions in individual cases including profiling

Any person affected by the processing of personal data shall have the right not to be subject to a decision based solely on automated processing, including profiling, which has a legal effect on it or which, in a similar manner, significantly affects it, provided that the decision:

  1. is not required for the conclusion or performance of a contract between the data subject and the controller, or
  2. is permitted under Union or Member State legislation to which the controller is subject, and where such legislation contains appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject; or
  3. with the express consent of the data subject.

Is the decision

  1. required for the conclusion or performance of a contract between the data subject and the controller or
  2. it is carried out with the express consent of the person concerned,

our company will take reasonable steps to safeguard the rights and freedoms and legitimate interests of the data subject.

If the data subject wishes to assert rights with regard to automated decisions, they can contact our data protection officer at any time.

Right to revoke a declaration of consent

Any person affected by the processing of personal data has the right to withdraw consent to the processing of personal data at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

If the data subject wishes to assert their right to withdraw consent, they can contact our data protection officer at any time.

Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State of its place of residence, employment or the place of alleged infringement, if you believe that the processing of personal data concerning you is contrary to DSGVO violates. The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.

Security

We have taken extensive technical and organizational protection measures to protect your information. Was considered and is here u.a. the state of the art, the implementation costs, the nature and extent of the processing, the different probabilities of occurrence and the severity of the risk to the rights and freedoms of a natural person.

Our security procedures are regularly reviewed and adapted to technological progress.