The following data protection information applies to data processing by:
Controller: Pattern Recognition Company GmbH Innovations Campus Lübeck Maria-Goeppert-Straße 3 23562 Lübeck Telefax: +49 451 8836819 www.pattern-recognition-company.com
2. Our collection and storage of personal data and the type and purpose of its use
Personal data is information about the personal or objective circumstances of an identified or identifiable natural person.
In the following sections we tell you whether and when your data and personal data are collected: Im Folgenden teilen wir Ihnen mit, ob und wann Daten und personenbezogene Daten von Ihnen erhoben werden:
a) When you visit our website When you access our website the browser being used on your device automatically sends information to our website server. This information is stored temporarily in a logfile. The following information is recorded without any action on your part and stored until it is deleted automatically:
date and time of access,
name and URL of the file retrieved,
website, from which access takes place (Referrer URL),
browser used and operating system of your computer, the name of your access provider and your IP address.
The data above are processed by us for the following purposes:
to ensure a smooth connection to our website,
to ensure the convenient use of our website,
to analyse system security and stability, and
for other administrative purposes.
The legal basis for our data processing is Art. 6(1)(f) General Data Protection Regulation (GDPR). Our legitimate interest follows from the purposes of data processing listed above.
Under no circumstances do we use the data collected to identify you personally.
When you visit our website we also set cookies and use analytics services. Further explanations can be found in Point 4 and 5 of our Data Protection Policy.
b) When contact is made by email/telephone If you contact us by email, by telephone or by post, the data you provide are stored by us in order to respond to your enquiry. The data you provide in the course of your requests and enquiries is voluntary. Data processing for the purpose of making contact with us takes place on the basis of your freely given consent in line with Art. 6(1)(a) GDPR. The data generated in this context is deleted when the storage is no longer necessary or the processing is restricted if statutory record-keeping obligations exist.
c) When our contact form is used
If you have any questions, we offer you the opportunity of contacting us via a form provided on the website. To do so you must provide a valid email address and your name, so that we know who the enquiry is from and so that we can answer it. The disclosure of other personal data is optional.
Data processing for the purpose of making contact with us takes place on the basis of your freely given consent in line with Art. 6(1)(a) GDPR.
The personal data we collect for the use of the contact form are deleted automatically when your enquiry has been settled, unless you have given us your explicit consent to further processing.
d) When you use our webshop
If you place an order in our webshop you must provide the personal data that we need to perform the contract and carry out your order. The essential information for the performance of contracts is marked; other information is provided voluntarily.
We use the data you provide to fulfil your order. To do so we may forward your payment data to our bank. The legal basis for this is Art. 6(1)(b) GDPR.
We may also process the data you provide to inform you about other interesting products from our portfolio or to send you emails with technical information.
We are obliged by commercial and tax law to retain your address, payment and order data for ten years. However, after two years we restrict the processing; in other words, your data are only used to comply with statutory obligations.
To prevent unauthorised third-party access to your personal data, especially financial data, the order process is encrypted using TSL/SSL technology.
e) When our forum is used
Posts in our forum can be read without registration. If you want to get actively involved with the forum, however, you must register by giving your email address and choosing a password and user name.
There is no obligation to use your real name; it can also be a pseudonym. We use a double opt-in for the registration, i.e. your registration is only complete when you have confirmed an email sent to you for this purpose by clicking on the link it contains. If you do not confirm your registration within  hours it will be deleted from our database automatically.
If you register a forum account, in addition to your registration data we store all the disclosures you make in the forum, i.e. all public comments, posts, private messages, etc., in order to operate the forum. The data is stored until you cancel your registration. The legal basis for this is Art. 6(1)(f) GDPR.
If you close your account, your public statements, especially your comments in the forum, remain visible for all readers. Your account can no longer be retrieved, however, and is identified accordingly in the forum. All other data are deleted. If you want your public comments to be deleted too, please get in touch with the controller using the contact details provided above.
f) When you receive our newsletter We use the services of MailChimp to send our newsletter. MailChimp is a newsletter distribution platform from the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE # 5000, Atlanta, GA 30308, USA, with servers in the USA.
MailChimp receives your email address, your user status and the time stamp of the registration from us. This information is required to send and evaluate the newsletter. In this way we can e.g. Send newsletters only to the target groups for which the content is relevant, while other users do not receive notifications that you are not interested in. According to MailChimp, it can evaluate the data in order to improve its service. MailChimp does not use your data to write to you and does not pass this data on to third parties.
In addition to the data that we transfer to MailChimp, data is also collected within the service. It is registered whether a newsletter has been opened, whether within the newsletter
a link was clicked on which device was used to open a newsletter and from which location the newsletter was opened. If you unsubscribe from the newsletter, this is also stored in MailChimp, so that no further newsletters are sent to your address.
MailChimp is certified under the US-EU data protection agreement “Privacy Shield” and is committed to complying with the data protection requirements of the European Union. At this link you can read MailChimp’s data protection regulations.
We obtain your consent to process your data during the registration process. No data are forwarded to third parties in connection with the data processing for sending newsletters. The data are used exclusively to send the newsletters. The legal basis for data processing after subscribing to the newsletter is Art. 6(1)(a) GDPR, providing consent is given.
The data are deleted as soon as they are no longer necessary for the purpose for which they were collected. The user’s email address is therefore stored for as long as the newsletter subscription is active.
We use a double opt-in for subscriptions to the newsletter. This means we send a confirmation email to the address provided, asking you to verify your registration for our newsletter by clicking on the confirmation link. When you verify the confirmation link, you have subscribed to our newsletter. Otherwise we store your data as a potential subscriber and delete your data within 30 days.
You can cancel the newsletter subscription at any time. To do so all you have to do is send us an email. This also enables you to withdraw your consent to the storage of your personal data that was collected when you registered.
3. Forwarding of data
Your personal data will not be forwarded to third parties for any purpose other than those listed below.
We forward your personal data to third parties when:
you have given your consent in accordance with Art. 6(1)(a) GDPR,
it is necessary in accordance with Art. 6(1)(f) GDPR to claim, exercise or defend legal rights and there is no reason to suppose that you have
an overriding interest in the non-disclosure of your data,
this is lawful and necessary pursuant to Art. 6(1)(b) GDPR to perform a contract with you
The data processed by cookies are necessary for the purposes mentioned to pursue our legitimate interests and those of third parties in accordance with Art. 6(1)(f) GDPR.
Most browsers accept cookies automatically.
However, you can configure your browser so that no cookies are stored on your computer or a warning is displayed before a new cookie is set. Completely deactivating cookies may mean that you cannot use all the functions of our website.
5. Analytical Tools
The tracking tools listed below are used by us on the basis of Art. 6(1)(f) GDPR. By using these tracking tools we want to ensure that our website is designed to meet our needs and optimised on an ongoing basis.
At the same time we use tracking tools to gather statistics about the use of our website and to analyse them for the purpose of optimising our offering for you. These interests are deemed to be legitimate within the meaning of the GDPR.
The respective data processing purposes and data categories can be found under the corresponding tracking tools.
Use of Google Analytics (anonymised)
On our website we use Google Analytics, a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, known hereafter as “Google”.
On our website we use Google Analytics with an IP anonymisation function. In this case Google abbreviates your IP address within the member states of the European Union or other parties to the treaty creating the European Economic Area and so makes it anonymous.
Google will use this information to analyse your use of this website, to compile reports on website activities and to provide additional services in connection with website use and internet use. Google may also transfer this information to third parties to the extent required by law or when third parties process these data on behalf of Google.
By its own account, Google will not merge your IP address with other Google data under any circumstances. You can adjust the settings on your browser software to prevent cookies being installed, but we point out that in this case you may not be able to use all the functions of our website to their full extent.
Furthermore, Google offers a deactivation option for the most common browsers, which gives you more control over the data that Google collects and processes. If you activate this option, no information about your visit to the website will be sent to Google Analytics. Activating it does not prevent information being sent to us, however, or to any other web analytics services that we may use.
Further information about the opt-outs provided by Google and how to activate this option can be found under the following link: https://tools.google.com/dlpage/gaoptout?hl=de We have signed a data processing agreement with Google.
6. Rights of data subjects
You have the right:
defined in Art. 15 GDPR to information about our processing of your personal data. In particular you can obtain information about the purpose of processing, the category of personal data, the categories of recipients to whom your data are or have been disclosed, the planned retention period, the existence of a right to rectification, erasure, restriction of and objection to processing, a right of complaint, the origin of your data to the extent that they were not collected by us, the existence of any automated decision-making, including profiling, and meaningful information about the relevant details;
defined in Art. 16 GDPR to the rectification or completion of your personal data stored by us without undue delay;
defined in Art. 17 GDPR to the erasure of personal data stored by us to the extent that the processing is not necessary to exercise the right of free expression and information, to meet a legal obligation, in the public interest or to claim, exercise or defend legal rights;
defined in Art. 18 GDPR to restrict the processing of your personal data insofar as you dispute the accuracy of the data, their processing is unlawful, but you object to their deletion and we no longer need the data, but you need them to claim, exercise or defend legal rights or have objected to their processing in line with Art. 21 GDPR;
defined in Art. 20 GDPR to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and the right to transmit those data to another controller;
defined in Art. 7(3) GDPR to withdraw your consent at any time. This means that we may not continue to process the data on the basis of this consent and
defined in Art. 77 GDPR to lodge a complaint with a supervisory authority. To do so you can generally write to the supervisory authority at your usual place of residence or your place of work or our place of business.
7. Right to object
To the extent that your personal data are processed on the basis of legitimate interests pursuant to Art. 6(1)(f) GDPR, you have the right pursuant to Art. 21 GDPR to object to the processing of your personal data on grounds relating to your particular situation or if you object to direct advertising. In the latter case you have a general right to object, which we will respect without any indication of a particular situation.
If you wish to withdraw consent or object, please send an email to the address above.
8. Data security
When you visit our website we use the widespread SSL technology (Secure Socket Layer) in conjunction with the highest encryption level that your browser supports. This is generally 256 bit encryption. If your browser does not support 256 bit encryption, we use the 128 bit v3 technology. You can tell when a specific page of our website is encrypted by the icon of a key or a closed padlock that is shown in the search bar of your browser.
Otherwise, we take suitable technical and organisation measures to protect your data against chance or deliberate manipulation, partial or complete loss, destruction or unauthorised third-party access.
We have implemented security standards to protect the personal data you provide us with by means of common industry standards and technologies. We regularly audit our systems for potential vulnerabilities and attacks and use a data centre protected against attacks at the system level, in order to protect your data stored on our servers.
However, since the internet is not a totally safe environment, we cannot assume any warranty or liability for the security of the data you send us via the internet.
There is no guarantee that information will not be accessed or that information is not disclosed, modified or destroyed due to a penetration of our physical, technical and organisational security measures.
9. Erasure of data
We would like to point out that the data processed by us is erased or its processing is restricted in accordance with Art. 17 and 18 GDPR (see Rights of data subjects for further details). Unless explicitly stated otherwise in this data protection policy, the data stored by us is erased as soon as they are no longer necessary for the purpose for which they were collected and statutory record-keeping obligations do not prevent their erasure. If data are not erased because they are required for other lawful purposes, their processing is restricted. This means the data are blocked and not processed for other purposes. This applies for example to data that has to be retained under commercial or tax law. Statutory retention periods are in particular 6 years pursuant to Section 257 para. 1 German Commercial Code (HGB) for commercial ledgers, inventories, opening balance sheets, financial statements, correspondence, accounting documents, etc., and 10 years pursuant to Section 147 para. 1 German Tax Code (AO) for accounts, records, management reports, accounting documents, correspondence, tax documents, etc.