Data protection notice axicorp
As of: 16.03.2022
In the following, we inform you in accordance with the legal requirements - in particular the EU General Data Protection Regulation (GDPR, available here) – about the processing of personal data by our company.
1. General information
Personal data
Personal data means any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Personal data includes, for example, names or address data.
Our online offer can generally be used without disclosing your identity. In the event of participation in one of our personalised services, you will be asked separately for the data required for the processing of the services. It is your free decision to participate in these services and to enter the corresponding data.
We store your details on protected servers in Germany. Access to it is only possible for the necessary number of specially authorised persons who are involved in the technical, commercial and editorial care of the data and the servers. In connection with your access, data are stored on our servers for security purposes that may allow identification (for example, IP address, date, time and pages viewed). These are only used for statistical purposes to evaluate and continuously improve the quality of our Internet offer. This is also partly done by using counting graphics placed on the pages of our offer. However, the data obtained in this way are strictly anonymised and do not allow any conclusions to be drawn about the users' personal data. Under no circumstances will your data be used to create user profiles of any kind.
Disclosure of personal data to third parties
As a matter of principle, we do not pass on any personal data to third parties. In particular, no data will be passed on to third parties for advertising purposes. If you use personalised services of our offer, the collection of personalised data and their transfer to third parties may be necessary for the purpose of implementing and processing the service. However, these data are only stored or passed on to the extent necessary for order processing. Third parties to whom your data is passed on in the context of order processing are also bound by the statutory regulations for the handling of personal data. Insofar as we are obliged to do so by law or by court order, we transmit data to the respective authorities entitled to receive information.
Data economy
We store personal data in accordance with the principles of data minimisation/data economy and storage limitation only for as long as is necessary or prescribed by law (statutory storage period). If the purpose of the information collected no longer applies or the storage period ends, we block or delete the data.
2. Scope
This privacy notice applies to:
- Our online offer "axicorp", available at www.axicorp.de
- as well as whenever reference is otherwise made to this data protection notice from one of our offers (e.g. websites, subdomains, mobile applications, web services or integrations in third-party sites), irrespective of the way in which you access or use them.
3. Data controller
The data controller - the person who determines the purposes and means of the processing of personal data - in relation to the services is:
axicorp Pharma GmbH
Marie-Curie-Straße 11
61381 Friedrichsdorf
Tel. +49 61 72 49 99-0 (local rate)
Fax +49 61 72 49 99-1500
service@axicorp.de
4. Data Protection Officer
Mr Ronald Baranowski
SIX DATENSCHUTZ GmbH
Kasseler Str. 30
61118 Bad Vilbel
Phone +49 6101 982 94 22
Mobile: +49170 557 09 38
Contact by email
datenschutz@axicorp.de
Contact by post
axicorp GmbH
– Data protection officer –
Marie-Curie-Straße 11
61381 Friedrichsdorf
5. Data processing in detail
Accessing our services
When accessing our services (e.g. loading and viewing the website, opening and navigating within the mobile device app), access data are processed. Access data are required to establish the connection, to display the content of the services, to diagnose errors and to detect attacks on our site based on unusual activity. The processing is carried out in accordance with Art. 6 (1) f) GDPR (legitimate interest). Our legitimate interest lies in the proper functioning of our services, the security of data and business processes, the prevention of misuse and the prevention of damage through interference with information systems. Error logs, which record faulty page views, are deleted from our web server after seven days. In addition to the error messages, this log data contains the accessing IP address and, depending on the error, the accessed website.
Regarding the storage periods of our web hoster Mittwald (source mittwald.de), they inform us of the following (excerpt):
"How long are access, FTP, error and mail logs stored at Mittwald"?
The access logs of the web servers record which page requests have taken place and when. They contain the following data: IP, directory protection user, date, time, pages viewed, logs, status code, amount of data, referrer, user agent, host name accessed. The IP addresses are stored anonymously. To do this, the last three digits are removed, i.e. 127.0.0.1 becomes 127.0.0.*. IPv6 addresses are also anonymised. The anonymised IP addresses are retained for 60 days. Details of the directory protection user used are anonymised after one day. Accesses via FTP are logged with anonymised information on user name and IP address and stored for 60 days. The mail logs for sending emails from the web environment are anonymised after one day and then retained for 60 days. Anonymisation removes all data on the sender/recipient, etc. Only the data on the time of sending and the information on how the email was processed (queue ID or not sent) are retained. Mail logs for sending via our mail servers are deleted after four weeks. The longer retention period is necessary to ensure the functionality of the mail services and spam control."
We would particularly like to point out that the transmission of certain access data to external content providers is unavoidable due to the technical functioning of information transmission on the Internet. The third-party providers themselves are responsible for the data protection-compliant operation of the IT systems they use. The decision on the storage period of the data is the responsibility of the service providers.
Use of cookies
This website uses cookies. These are text files that are stored on your computer from the server. They contain information on the browser, IP address, operating system and Internet connection. We will not pass this data on to third parties or link it to personal data without your consent. Cookies fulfil two main tasks. They help us to make it easier for you to navigate through our offer and enable the correct display of the website. They are not used to introduce viruses or launch programmes.
In order to use the functions of the axicorp portal pages, you must allow cookies to be set in your browser. The operation of the website requires the use of "cookies". Session cookies required. They are only required for the respective website visit and are usually deleted when you close your browser window if your browser is set to delete cookies when you close it. Please note the cookie settings of your browser. You can also manually delete the session cookies used by axicorp from your hard drive at the end of the browser session. You can find details of this in the help menu of your Internet browser. axicorp will not collect, process or use any personal data by means of cookies. The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR (legitimate interest: smooth operation and correct presentation of the website).
The pages http://www.aboutads.info/choices/ (USA) and http://www.youronlinechoices.com/uk/your-ad-choices/ (Europe) allow you to manage online ad cookies.
Cookiebot
On our website, the service Cookiebot of the company Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark is used. The purpose of processing this service is to request your consents for the non-technical cookies used on our website and to document them in accordance with applicable data protection regulations and laws.
In this context, your browser transmits personal data in the form of your IP address to cookiebot.com, which are immediately anonymised there and not stored. A cookie is then stored by Cybot A/S in your browser, in which the consents or objections you have given to certain consents are stored. Information on data protection at Cybot can be found here: https://www.cookiebot.com/de/privacy-policy/
The legal basis for this data processing is Art. 6 (1) lit. c GDPR - a legal obligation, which is that for non-technically necessary cookies according to the ECJ ruling of 1 October 2019, AZ C-673/17, consent must be obtained before they are used.
Your data will be deleted as soon as the purpose for which it was collected has been fulfilled and there are no statutory retention periods to the contrary, in particular if it is no longer required to document our obligations to provide evidence pursuant to Art. 7 GDPR.
If you wish to prevent Cybot A/S from processing your data, you can disable the execution of script code in your browser.
Google Analytics
This homepage uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, due to the activation of IP anonymisation on these websites, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. When using the service, data are transferred to servers in the USA. Due to the declaration of invalidity of the EU-US Privacy Shield (ECJ 16.7.2020), processing is only possible with your consent pursuant to Art. 6 (1) a GDPR. A transfer within the meaning of the European level of data protection is not guaranteed with the declaration of invalidity.
Alternatively or additionally create appropriate safeguards by concluding the EU standard data protection clauses issued by the European Commission with the receiving entity pursuant to Art. 46 para. 2 c) GDPR and an adequate level of data protection. Copies of the EU standard data protection clauses are available on the European Commission's website, available here.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and Internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent cookies from being stored by setting your browser software accordingly. However, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent.
The processing is carried out in accordance with Art. 6 para. 1 lit a GDPR with your consent, which we obtain before you visit our website.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: Browser add-on to deactivate Google Analytics.
You can find more information on terms of use and data protection at http://www.google.com/analytics/terms/de.html or at https://www.google.de/intl/de/policies/.
Google Campaign Manager (formerly Double Click)
This website also uses the online marketing tool Campaign Manager from Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. Campaign Manager uses cookies to serve ads that are relevant to users, to improve campaign performance reports or to prevent a user from seeing the same ads more than once. Google uses a cookie ID to record which ads are displayed in which browser and can thus prevent them from being displayed more than once.
In addition, Campaign Manager can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a Campaign Manager ad and later uses the same browser to visit the advertiser's website and make a purchase. According to Google, Campaign Manager cookies do not contain any personal information.
Due to the marketing tools used, your browser automatically establishes a direct connection with Google's server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Campaign Manager, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider will obtain and store your IP address.
In addition, the Campaign Manager (DoubleClick Floodlight) cookies used allow us to understand whether you take certain actions on our website after you have accessed or clicked on one of our display/video ads on Google or on another platform via Campaign Manager (conversion tracking). Campaign Manager uses this cookie to understand the content you have interacted with on our websites so that we can later send you targeted advertising.
You can prevent participation in this tracking process in various ways:
a) by adjusting your browser software accordingly; in particular, the suppression of third-party cookies will result in you not receiving any third-party ads;
b) by disabling cookies for conversion tracking by setting your browser to block cookies from the domain googleadservices.com, www.google.de/settings/ads, whereby this setting will be deleted when you delete your cookies;
c) by deactivating the interest-based ads of the providers that are part of the self-regulatory campaign "About Ads" via the link www.aboutads.info/choices, whereby this setting is deleted when you delete your cookies;
d) by permanently deactivating it in your browsers Firefox, Internet Explorer or Google Chrome under the link www.google.com/settings/ads/plugin,
e) by means of the corresponding cookie setting. We would like to point out that in this case you may not be able to use all the functions of this website to their full extent. In addition, you can prevent Google from collecting the data generated by the cookies about your use of the websites and the processing of these data by Google by using the link provided at support.google.com/adsense/answer/142293 under "Display Settings", "Campaign Manager Deactivation Extension" and downloading and installing the browser plugin.
The processing is carried out in accordance with Art. 6 para. 1 lit a GDPR with your consent, which we obtain before you visit our website.
For more information on the Google Marketing Platform, please visit marketingplatform.google.com/about/ as well as on data protection at Google in general: www.google.de/intl/de/policies/privacy . Alternatively, you can visit the Network Advertising Initiative (NAI) website at www.networkadvertising.org.
When using the service, data are transferred to servers in the USA. Due to the declaration of invalidity of the EU-US Privacy Shield (ECJ 16.7.2020), processing is only possible with your consent pursuant to Art. 6 (1) a GDPR. A transfer within the meaning of the European level of data protection is not guaranteed with the declaration of invalidity.
Alternatively or additionally create appropriate safeguards by concluding the EU standard data protection clauses issued by the European Commission with the receiving entity pursuant to Art. 46 para. 2 c) GDPR and an adequate level of data protection. Copies of the EU standard data protection clauses are available on the European Commission's website, available here.
YouTube
We have integrated a link on our website to the YouTube video platform operated by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: YouTube). If you wish, you can use the "YouTube button" or the share function. For this purpose, it is necessary to register with YouTube. Registration has the effect of activating the provider's plugin.
When you click on a YouTube button on our website, a connection to YouTube's servers is established. This tells YouTube which website you have visited. If you have your own YouTube account and are already logged in there, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this assignment if you log out of your account beforehand.
We have also embedded YouTube videos on our website. When you click on the video on our website, a connection to the YouTube servers is established. This tells YouTube which website you have visited. If you have your own YouTube account and are already logged in there, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this assignment if you log out of your account beforehand. For further information on the collection and use of your data by YouTube, please refer to the data protection information at www.policies.google.com/privacy?hl=de.
The processing is carried out in accordance with Art. 6 para. 1 lit a GDPR with your consent, which we obtain before you visit our website.
When using the service, data are transferred to servers in the USA. Due to the declaration of invalidity of the EU-US Privacy Shield (ECJ 16.7.2020), processing is only possible with your consent pursuant to Art. 6 (1) a GDPR. A transfer within the meaning of the European level of data protection is not guaranteed with the declaration of invalidity.
Alternatively or additionally create appropriate safeguards by concluding the EU standard data protection clauses issued by the European Commission with the receiving entity pursuant to Art. 46 para. 2 c) GDPR and an adequate level of data protection. Copies of the EU standard data protection clauses are available on the European Commission's website, available here.
Newsletter
Below we describe how your personal data are processed if you would like to subscribe to a newsletter. For the subscription, we need your email address. You can also provide your name. We use the double opt-in procedure to verify the registration. You will receive an email at the address you provided, asking you to confirm your registration. The processing is based on Art. 6 para. 1 a) GDPR (consent). The data is stored for the duration of the newsletter subscription. The newsletter is sent via our service provider retarus GmbH (Aschauer Str. 30, 81549 Munich). retarus manages and stores our templates, blacklists and distribution lists. In addition, we collect information with tracking methods, such as link tracking, opening rates and returns. The processing is carried out in accordance with the provisions of Art. 28 GDPR.
Unsubscribing from the newsletter is possible at any time and can be done either by sending a message to the contact option described above or via a link provided for this purpose in the newsletter. The processing is carried out in accordance with Art. 6 para. 1 lit a GDPR with your consent.
Contact form
If you contact us via the online form or by email, we will store the information you provide in order to answer your enquiry and to be able to ask any follow-up questions. The processing is based on Art. 6 (1) b) GDPR (contract performance, pre-contractual measures). Your data will be stored for the duration of the customer relationship and then deleted after compliance with statutory warranty and other periods. Tax-relevant data are stored for 6 years.
Application
You also have the option of sending us your application documents by email to bewerbung(at)axicorp.de. If you apply with us, the following data will be processed from you: First name and surname, address, landline telephone number, mobile telephone number, email address as well as references and certificates. These data are used for the purposes of initiating or fulfilling a contract in accordance with Art. 6 para. 1 letter b GDPR.
We do not pass on your data to other recipients and do not transfer it to a third country or an international organisation. The planned storage period for this data is 6 months. . Insofar as your application could be of interest for future job offers, we will store your application data for a further period of 12 months after you have expressly consented to such storage and use.
Competitions
In order to enable you to participate in competitions offered by our company, we collect and process your personal data. These include: First name, surname, pharmacy name, postal address, email, optional: Salutation, telephone number.
The legal basis for the processing of your personal data is Art. 6 para. 1 lit. a GDPR - your consent or 6 para. 1 lit. b GDPR - the fulfilment of a contract that you enter into with us by participating in a competition and accepting the conditions of participation or Art. 6 para. 1 lit. c GDPR - fulfilment of a legal obligation (obligations to provide evidence).
Your above-mentioned personal data will only be used for the purpose of conducting the competition, including determining the winners, informing the winner(s) and sending the prize.
Your data will only be transmitted to third parties if this is necessary for the implementation of the competition (e.g. lettershops, advertising agencies, other service providers) or, if applicable, cooperation partners who provide prizes. Third parties to whom your data is passed on in the context of order processing are bound by the statutory regulations for the handling of personal data or are obligated to maintain confidentiality. No other disclosure or transfer of personal data of the competition participants to unauthorised third parties will take place.
Your data may also be transferred to internal company departments involved in the execution of the respective business processes, such as marketing, accounting or IT.
As soon as the purpose of the competition has been fulfilled and you have not been determined as the winner, we will delete your data within 6 weeks of the end of the competition. If you have been determined as the winner, there are statutory retention periods with regard to your personal data. These are 10 years for accounting documents according to § 147 para. 1 of the German Fiscal Code (AO) and 6 years for business documents according to § 257 para. 1 of the German Commercial Code (HGB).
6. Your rights
Revocation of consent - data information and changes, deletion & blocking of data
You can at any time
- object to the use of your personal data for the future
- revoke your consent to the use of your personal data for advertising purposes.
- You have the right to obtain information about the personal data stored about you at reasonable intervals or can obtain a copy of it, to which recipients or categories of recipients your data has been disclosed and what the purpose of the storage is.
- correct or update your personal data
- lock your data
- or have them deleted. The deletion is replaced by the blocking of your data, provided that legal regulations stipulate certain retention periods.
You can revoke any consent you have given us to use your personal data at any time. Requests for information, deletion and correction of your data and suggestions can be sent to the following address:
axicorp GmbH
– Data protection officer–
Marie-Curie-Straße 11
61381 Friedrichsdorf
See also contact details of the data protection officer under point 4.
Right to complain to the supervisory authority pursuant to Art. 77 para. 1 GDPR
If you have a reasonable suspicion that we are processing your data unlawfully, you can contact the competent supervisory authority. You have the right to complain in the EU Member State of your place of residence, place of work and/or place of the alleged infringement, i.e. you can choose the supervisory authority you contact in the above-mentioned places. The supervisory authority to which the complaint was lodged will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy under Article 78 GDPR.
The supervisory authority responsible for axicorp is:
The Hessian Data Protection Commissioner
PO Box 3163
65021 Wiesbaden
poststelle@datenschutz.hessen.de
Telephone: +49 611 1408 - 0
Fax: +49 611 1408 - 611
Change to our privacy notices
In order to ensure that our privacy notices always comply with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the privacy notices have to be adapted due to new or revised services. The new privacy notices will then take effect the next time you visit our website.