DATA PROTECTION

We are very pleased that you are interested in our company. Data protection is of a particularly high priority for the management of the VISUS Advisory GmbH. In principle, it is possible to use the VISUS Advisory GmbH website without providing any personal data. However, if a data subject wants to use special company services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to VISUS Advisory GmbH. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed of the rights to which they are entitled by means of this data protection declaration. We are delighted that you are interested in our company. Data protection is of a particularly high priority for the management of the VISUS Advisory GmbH. In principle, it is possible to use the VISUS Advisory GmbH website without providing any personal data. However, if a data subject wants to use special company services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.

As the controller responsible for processing, VISUS Advisory GmbH has implemented numerous technical and organizational measures to ensure the most complete possible protection of personal data processed via this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us in alternative ways, for example by telephone.

1. Name and address of the person responsible for processing

The person responsible within the meaning of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions of a data protection nature is:

VISUS Advisory GmbH
Kennedydamm 5
40476 Dusseldorf
Germany
Tel: +49 (0) 211 17835846
Email: info@visusadvisory.com
Website: www.visusadvisory.com

2. Name and address of the data protection officer

The data protection officer of the person responsible for processing is:

Lucas.rachner@visusadvisory.com
Kennedydamm 5
40476 Dusseldorf
Germany
Germany
Tel: +49 (0) 211 17835846
Email: info@visusadvisory.com

Every data subject can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.

3. Hosting, Access Data and Encryption

You can visit our website without providing any personal information. Each time a website is called up, the web server automatically saves a so-called server log file, which e.g

the name of the requested file,
your IP address,
date and time of retrieval,
amount of data transferred and
contains the requesting provider (access data) and documents the retrieval.

This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the website and improving our Internet offering. In accordance with Article 6 Paragraph 1 Sentence 1 Letter f GDPR, this serves to protect our legitimate interests in a correct presentation of our offer, which predominate within the framework of a weighing of interests. All access data will be deleted within seven days after the end of your visit to the site.

The data is stored for security reasons, e.g. B. to be able to clarify cases of abuse. If data has to be kept for reasons of proof, they are excluded from deletion until the incident has been finally clarified.

In order to protect your transmitted data in the best possible way, the website operators use SSL encryption. You can recognize such encrypted connections by the prefix "https://" in the page link in the address bar of your browser. Unencrypted pages are marked with "http://". All data that you transmit to this website - such as inquiries or logins - cannot be read by third parties thanks to SSL encryption.

4.Cookies

The Internet pages of the VISUS Advisory GmbH use cookies. Cookies are text files that are filed and saved on a computer system via an Internet browser.

Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which websites and servers can be assigned to the specific internet browser in which the cookie was stored. This enables the visited websites and servers to distinguish the individual browser of the person concerned from other internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

Through the use of cookies, the VISUS Advisory GmbH can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

By means of a cookie, the information and offers on our website can be optimized for the user. As already mentioned, cookies enable us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. These can be found for the respective browsers under the following links:

Internet Explorer™
Safari™
Chrome™
Firefox™
Opera™

If cookies are not accepted, the functionality of our website may be restricted.

5. Contact option via the website

Due to legal regulations, the VISUS Advisory GmbH website contains information that enables quick electronic contact to our company and direct communication with us, which also includes a general address for so-called electronic mail (e-mail address). If a person concerned contacts the person responsible for processing by e-mail or via a contact form, the personal data transmitted by the person concerned will be automatically saved. This personal data will not be passed on to third parties. The data is processed on the basis of a legitimate interest (Art. 6 Para. 1 lit. f GDPR) in the effective processing of inquiries addressed to us. If you contact us to request an offer, the data will be processed to carry out pre-contractual measures (Article 6 (1) (b) GDPR). The transmitted data will be deleted as soon as the purpose for storing the data no longer applies. If there is a contractual relationship, we are subject to the statutory retention periods and delete your data after these periods have expired.

6. Rights of the data subject

a) Right to information

Every data subject has the right, granted by the European directive and regulation giver, to request confirmation from the person responsible for processing as to whether personal data relating to them are being processed. According to Art. 15 GDPR, every person affected by the processing of personal data has the right to receive information about the personal data stored about him or her, as well as a copy of this information.

b) Right to rectification

According to Art. 16 GDPR, every person affected by the processing of personal data has the right to demand the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data - also by means of a supplementary declaration.

d) right to erasure (right to be forgotten)

According to Art. 17 Para. 1 GDPR, every person affected by the processing of personal data has the right to demand from the person responsible that the personal data concerning them be deleted immediately. The right does not exist if the processing is required in accordance with Art. 17 Para. 3 GDPR.

Right to restriction of processing

According to Art. 18 GDPR, every person affected by the processing of personal data has the right to request the person responsible to restrict the processing.

f) right to data portability

According to Art. 20 GDPR, every person affected by the processing of personal data has the right to transfer the personal data concerning them.

g) right to object

According to Art. 21 GDPR, every person affected by the processing of personal data has the right, for reasons arising from their particular situation, to object at any time to the processing of personal data relating to them, which is based on Art. 6 Para. 1 Letters e or f GDPR takes place to object.

h) Right to withdraw consent under data protection law

Any person affected by the processing of personal data has the right to revoke consent to the processing of personal data at any time in accordance with Art. 7 Para. 3 GDPR. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the point of revocation.

If the data subject wishes to assert their right to revoke consent, they can contact our data protection officer or another employee of the data controller at any time.

i) exercise your rights

To exercise your rights, you can contact the responsible body or the data protection officer using the contact details given above. The restrictions under §§ 34 and 35 BDSG apply to the right to information and the right to erasure

j) Right of appeal to the supervisory authority in accordance with Article 77 (1) GDPR

In addition, there is a right of appeal to the competent supervisory authority:

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
P.O. Box 20 04 44
40102 Dusseldorf
Phone: 0211/38424-0
Fax: 0211/38424-999
Email: poststelle@ldi.nrw.de

The person concerned is free to submit his complaint to the supervisory authority in the member state of his habitual residence, his place of work or the place of the alleged infringement.

7. Data protection for applications and in the application process

The person responsible for processing collects and processes the personal data of applicants for the purpose of handling the application process. The processing can also take place electronically. This is particularly the case if an applicant submits the relevant application documents electronically. If the person responsible for processing concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the person responsible for processing does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that deletion does not conflict with any other legitimate interests of the person responsible for processing. Another legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

8. Legal basis of processing

Art. 6 I lit. a DS-GVO serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary to fulfill a contract to which the data subject is party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 I lit. b GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures, for example in the case of inquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data could become necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 I lit. d GDPR. Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, provided that the interests, fundamental rights and fundamental freedoms of the person concerned do not prevail. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, he took the view that a legitimate interest could be assumed if the data subject is a customer of the person responsible (recital 47 sentence 2 DS-GVO).

9. Duration for which the personal data will be stored

The criterion for the duration of the storage of personal data is the respective statutory retention period. After the deadline has expired, the corresponding data will be routinely deleted, provided that they are no longer required to fulfill the contract or to initiate a contract.

10. Statutory or contractual requirements for providing the personal data; Necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

We clarify that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual regulations (e.g. information on the contractual partner). Sometimes it may be necessary for a contract to be concluded that a person concerned makes personal data available to us, which must then be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide the personal data would mean that the contract with the data subject could not be concluded.

11. Existence of automated decision-making

As a responsible company, we do not use automatic decision-making or profiling.

Current status: Düsseldorf, February 15, 2023

__________________________________________________________________________________________________________________________________________________________

definition

The data protection declaration of VISUS Advisory GmbH is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public as well as for our customers and business partners. To ensure this, we would like to explain the terms used.

We use the following terms, among others, in this data protection declaration:

a) personal data

Personal data is any information relating to an identified or identifiable natural person (hereinafter "data subject"). A natural person is considered to be identifiable if, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.

b) data subject

Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.

c) processing

Processing is any process carried out with or without the help of automated procedures or any such series of processes in connection with personal data such as collecting, recording, organizing, arranging, storing, adapting or changing, reading out, querying, using, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction.

d) Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.

e) profiling

Profiling is any type of automated processing of personal data, which consists in using this personal data to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal Analyze or predict that natural person’s preferences, interests, reliability, behavior, whereabouts or relocation.

f) pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data not assigned to an identified or identifiable natural person.

g) Responsible or responsible for processing

The person responsible or responsible for processing is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data. If the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States.

h) Processor

Processor is a natural or legal person, public authority, institution or other body that processes personal data on behalf of the person responsible.

i) receiver

Recipient is a natural or legal person, public authority, institution or other body to which personal data is disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.

j) third party

Third party is a natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct responsibility of the controller or the processor, are authorized to process the personal data.

k) consent

Consent is any expression of will voluntarily given by the data subject in an informed manner and unequivocally for the specific case in the form of a declaration or other clear confirmatory action with which the data subject indicates that they consent to the processing of their personal data is.

1. Name and address of the person responsible for processing

VISUS Advisory GmbH
Kennedydamm 5
40476 Dusseldorf
Germany
Tel: +49 (0) 211 17835846
Email: info@visusadvisory.com
Website: www.visusadvisory.com

2. Name and address of the data protection officer

The data protection officer of the person responsible for processing is:

Lucas Rachner
VISUS Advisory GmbH
Kennedydamm 5
40476 Dusseldorf
Germany
Tel: +49 (0) 211 17835846
Email: info@visusadvisory.com
Website: www.visusadvisory.com

Every data subject can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.

3. Hosting, Access Data and Encryption

You can visit our website without providing any personal information. Each time a website is called up, the web server automatically saves a so-called server log file, which e.g

the name of the requested file,
your IP address,
date and time of retrieval,
amount of data transferred and
contains the requesting provider (access data) and documents the retrieval.

This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the website and improving our Internet offering. In accordance with Article 6 Paragraph 1 Sentence 1 Letter f GDPR, this serves to protect our legitimate interests in a correct presentation of our offer, which predominate in the context of a weighing of interests. All access data will be deleted within seven days after the end of your visit to the site.

In order to protect your transmitted data in the best possible way, the website operators use SSL encryption. You can recognize such encrypted connections by the prefix "https://" in the page link in the address line of your browser. Unencrypted pages are marked with "http://". All data that you transmit to this website - such as inquiries or logins - cannot be read by third parties thanks to SSL encryption.

4.Cookies

The Internet pages of the VISUS Advisory GmbH use cookies. Cookies are text files that are filed and saved on a computer system via an Internet browser.

Through the use of cookies, the VISUS Advisory GmbH can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

The person concerned can prevent the setting of cookies by our website at any time by means of a corresponding setting in the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

Internet Explorer™
Safari™
Chrome™
Firefox™
Opera™

If cookies are not accepted, the functionality of our website may be restricted.

5. Contact option via the website

6. Rights of the data subject

a) Right to information

b) Right to rectification

d) right to erasure (right to be forgotten)

Right to restriction of processing

According to Art. 18 GDPR, every person affected by the processing of personal data has the right to request the person responsible to restrict the processing.

f) right to data portability

According to Art. 20 GDPR, every person affected by the processing of personal data has the right to transfer the personal data concerning them.

g) right to object

h) Right to withdraw consent under data protection law

If the data subject wishes to assert their right to revoke consent, they can contact our data protection officer or another employee of the data controller at any time.

i) exercise your rights

j) Right of appeal to the supervisory authority in accordance with Article 77 (1) GDPR

In addition, there is a right of appeal to the competent supervisory authority:

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
P.O. Box 20 04 44
40102 Dusseldorf
Phone: 0211/38424-0
Fax: 0211/38424-999
Email: poststelle@ldi.nrw.de

The person concerned is free to submit his complaint to the supervisory authority in the member state of his habitual residence, his place of work or the place of the alleged infringement.

7. Data protection for applications and in the application process

8. Legal basis of processing

9. Duration for which the personal data will be stored

11. Existence of automated decision-making

As a responsible company, we do not use automatic decision-making or profiling.

Current status: Willich, 02/15/2023

__________________________________________________________________________________________________________________________________________________________

definition

We use the following terms, among others, in this data protection declaration:

a) personal data

b) data subject

Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.

c) processing

d) Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.

e) profiling

f) pseudonymization

g) Responsible or responsible for processing

h) Processor

Processor is a natural or legal person, public authority, institution or other body that processes personal data on behalf of the person responsible.

i) receiver

j) third party

k) consent

DATA PROTECTION

imprint

data protection

Arrange an AI seminar

NEWSLETTER