Publisher and responsible for content
Plan-Soft Interior Design GmbH
Zwötzener Straße 75
07551 Gera
Phone: +49/0365 551 550 0
E-Mail: info@plan-soft.com
Managing Director: Steven Kaiser
Registered office: Gera
Commercial Register: District Court Jena HRB 203934
VAT identification number: DE 158276314
We are not obligated to participate in dispute resolution proceedings before a consumer arbitration board, nor do we participate in them.
Privacy Policy
1. Information on the collection of personal data
We are informing you here about the collection and processing of personal data during the use of our website.
Personal data includes, for example, name, e-mail address, or IP address. Our website can usually be used without entering personal data.
2. Responsible Entity
Plan-Soft Interior Design GmbH
Zwötzener Straße 75
07551 Gera
Phone: +49/0365 551 550 0
E-Mail: info@plan-soft.com
For questions regarding data protection, you can contact this address or the contact details provided in the imprint at any time.
3. Rights of Data Subjects
As a person affected, you have the following rights:
– Information: You have the right to request information about the data we process concerning you.
– Correction: You may request the correction of inaccurate or incomplete personal data.
– Deletion: You can request the deletion of your personal data.
– Restriction of processing: In certain cases, you can request to restrict the processing of your data.
– Withdrawal of consent: If you have given us consent to process your data, you can withdraw it at any time.
4. Right to complain
You have the right to lodge a complaint with a competent data protection supervisory authority.
The contact details for the responsible data protection supervisory authority can be found here: https://www.tlfdi.de
5. Collection of personal data when visiting our website
Server Log Files
When you visit our website, we automatically collect and store information in server log files, which your browser automatically transmits to us. This data is necessary for operation and technical stability when running the website.
These are:
– Browser type and browser version
– operating system used
Referrer URL
- Hostname of the accessing computer
– Date + Time of server request
– IP address
These data cannot be attributed to specific individuals. These data will not be merged with other data sources. The basis for data processing is Art. 6 Para. 1 lit. f GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We reserve the right to review this data retrospectively if we become aware of concrete indications of unlawful use. This data will be stored for 1 year and then automatically deleted.
Cookies
The websites use what are called cookies in part. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are used to make our offering more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and that your browser saves. Most of the cookies we use are so-called „session cookies.“ They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies allow us to recognize your browser on your next visit. You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for specific cases or in general, and to activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be restricted.
6. SSL Encryption
This site uses SSL encryption for security and to protect the transmission of confidential content, such as requests you send to us as the site operator. You can recognize an encrypted connection by the change in the browser's address bar from „http://“ to „https://“ and by the padlock icon in your browser bar. When SSL encryption is active, the data you transmit to us cannot be read by third parties.
7. Weglot Translation Service
We use the translation service Weglot, registered at 138 rue Pierre Joigneaux, 92270 Bois-Colombes, France. Weglot is registered in the Nanterre Trade and Companies Register under number 818 164 964. Weglot is loaded when the website is accessed, allowing you to change the language to something other than German via the language icon in the website's footer. This establishes a direct connection between your browser and the Weglot server when you visit this website. Weglot thereby receives information that you have visited this website with your IP address. The storage and analysis of data are based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in presenting a significant portion of their website in common languages for non-German-speaking visitors. If consent has been requested (e.g., consent to store cookies), processing is exclusively based on Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time. Further information on this can be found in Weglot's privacy policy: https://weglot.com/privacy/.
8. Objection to advertising emails
The use of contact data published within the framework of the imprint obligation for sending unsolicited advertising and information materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails.
9. Storage Duration
Unless a more specific storage period is mentioned within this privacy policy, the
Your personal data with us until the purpose for data processing ceases to apply. If you
assert a legitimate request for deletion or revoke consent for data processing,
will your data be deleted, unless we have other legally permissible reasons for storing your
personal data (e.g., retention periods under tax or commercial law); in
In the latter case, the deletion occurs after these reasons cease to apply.
10. General Information on the Legal Basis for Data Processing on This Website
If you have consented to data processing, we will process your personal data on
Basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, if special categories of data
processed according to Art. 9(1) GDPR. In the case of explicit consent to the transfer
data processing is also based on Art.
49 Abs. 1 lit. a DSGVO. Unless you consent to the storage of cookies or access to information on
Your consent via your terminal device (e.g., via device fingerprinting) means that data processing will also occur
based on § 25 para. 1 TDDDG. The consent can be revoked at any time. Are your data to
necessary for contract fulfillment or for the performance of pre-contractual measures, we process your
Data on the basis of Art. 6(1)(b) GDPR. Furthermore, we process your data if it
required for compliance with a legal obligation pursuant to Art. 6(1)(c) GDPR.
The data processing can furthermore be based on our legitimate interest pursuant to Art. 6 para. 1 lit. f
The GDPR will be applied. The respective legal bases applicable in individual cases will be detailed in the following
sections of this privacy policy.
11. Recipients of personal data
In the course of our business operations, we work with various external parties. In doing so
is also partially required for the transfer of personal data to these external bodies.
We only disclose personal data to external entities when it is necessary within the scope of a
Contract fulfillment is required if we are legally obligated to do so (e.g., data transfer).
to tax authorities), if we have a legitimate interest according to Art. 6 (1) lit. f GDPR in disclosing
or if any other legal basis permits data transfer. When using
We only provide customer personal data to contract processors based on a valid
contract for order processing. In case of joint processing, a contract for
joint processing concluded.
12. Withdrawal of your consent to data processing
Many data processing operations are only possible with your explicit consent. You can provide a
revoke consent at any time. The legality of the processing carried out up to the revocation
Data processing remains unaffected by the revocation.
13. Right to object to data collection in special cases and to direct marketing (Art. 21 GDPR)
WHEN DATA PROCESSING IS BASED ON ARTICLE 6 (1) (E) OR (F) GDPR
FOLLOWING, YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR
Circumstances arise for which the processing of your personal data
TO OBJECT; THIS ALSO APPLIES TO ANYTHING BASED ON THESE PROVISIONS
PROFILING. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED,
TAKE NOTICE OF THIS PRIVACY POLICY. IF YOU OBJECT,
We will no longer process your personal data, as
UNLESS WE HAVE COMPELLING GROUNDS FOR PROCESSING
TO PROVE THAT YOUR INTERESTS, RIGHTS, AND FREEDOMS PREVAIL OR THAT
PROCESSING IS FOR THE ASSERTION, EXERCISE, OR DEFENSE OF
CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).
WILL YOUR PERSONAL DATA BE PROCESSED FOR DIRECT ADVERTISING,
You therefore have the right to object to the processing of your data at any time
PERSONAL DATA CONCERNING SUCH ADVERTISING PURPOSES
TO INSERT; THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS CONCERNED WITH SUCH DIRECT ADVERTISING
CONNECTION ESTABLISHED. IF YOU OBJECT, YOUR PERSONAL DATA
SUBSEQUENTLY NO LONGER USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION)
(PURSUANT TO ART. 21 PARA. 2 GDPR).
14. Right to Data Portability
You have the right to data that we collect based on your consent or in fulfillment of a contract
automated processing, in itself or to a third party in a common, machine-readable format
to have it handed over. If you want the data to be transferred directly to another responsible party
demand, this only happens if it is technically feasible.
15. Inquiry by email, telephone, or fax
If you contact us by email, phone, or fax, your inquiry, including all resulting
the personal data mentioned above (name, request) for the purpose of processing your request
stored and processed by us. We do not share this data without your consent.
The processing of this data is based on Art. 6 para. 1 lit. b GDPR, provided that your request relates to
relates to the fulfillment of a contract or to the performance of pre-contractual measures
required. In all other cases, the processing is based on our legitimate interest in
effective processing of inquiries addressed to us (Art. 6 Para. 1 lit. f GDPR) or on your
Consent (Art. 6(1)(a) GDPR) if it has been requested; the consent can be withdrawn at any time
revocable.
The data you send us via contact requests will remain with us until you ask us to delete it.
withdraw your consent for data storage, or the purpose for data storage ceases to apply
(e.g., after your request has been processed). Mandatory legal provisions –
in particular statutory retention periods – remain unaffected.
16. Integration of Real Cookie Banner
We use the consent tool „Real Cookie Banner“ to manage the cookies and similar technologies (tracking pixels, web beacons, etc.) used and related consents. You can find details on how „Real Cookie Banner“ works at https://devowl.io/de/rcb/datenverarbeitung/.
The legal bases for processing personal data in this context are Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used, and the related consents.
Providing personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obligated to provide personal data. If you do not provide personal data, we cannot manage your consents.
17. Integrating the Cloudflare Service
When visiting this website, personal data is processed. The categories of data processed are: technical connection data from server access (IP address, date, time, requested page, browser information). Purpose of processing: provision of the website. Legal basis for processing: legitimate interest which outweighs the rights and freedoms of the data subjects (Art. 6 (1) f GDPR). Legitimate interests in this context: strong economic interest in the secure and functional operation of the technical systems. Data is transferred: to the processor Cloudflare Germany GmbH, Rosental 7, 80331 Munich, Germany. This may also include the transfer of personal data to a country outside the European Union. The transfer of data is based on standard data protection clauses adopted by the Commission according to the examination procedure referred to in Article 93(2) of the GDPR.
18. Contact Form on Our Website
When you contact us through our online form, the following information will be collected:
Company
– Contact Person
- Email address
– Phone number
– general information via message field
The basis for data processing is Art. 6 para. 1 lit. f GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures. All data transmitted in this regard will be transferred to us in encrypted form. This information will only be stored and processed within the scope and for the duration of processing the request via the contact form. The storage, processing, and deletion of this information will be carried out in accordance with legal data protection regulations. We secure our website and other systems using technical and organizational measures against loss, destruction, access, modification, or dissemination of your data by unauthorized persons. We do not pass this data on to third parties. No further information about you will be requested, stored, or processed. All data will be deleted at the end of the processing of the request.
19. Transmission of Personal Data
As part of our processing of personal data, it may be transmitted or disclosed to other parties, companies, legally independent organizational units, or individuals. Recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.
20. International Data Transfers
Data Processing in Third Countries: If we transfer data to a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if this occurs in connection with the use of third-party services or the disclosure or transfer of data to other persons, bodies, or companies (which can be identified by the postal address of the respective provider or if the privacy policy explicitly refers to data transfer to third countries), this is always done in compliance with legal requirements.
For data transfers to the USA, we primarily rely on the Data Privacy Framework (DPF), which was recognized as a safe legal framework by an adequacy decision of the EU Commission dated July 10, 2023. In addition, we have concluded Standard Contractual Clauses with the respective providers, which comply with the requirements of the EU Commission and establish contractual obligations for the protection of your data.
This dual protection ensures comprehensive security for your data: the DPF forms the primary layer of protection, while the Standard Contractual Clauses serve as an additional safeguard. Should changes arise within the framework of the DPF, the Standard Contractual Clauses act as a reliable fallback option. This way, we ensure that your data remains adequately protected at all times, even in the event of political or legal shifts.
For individual service providers, we will inform you whether they are DPF certified and whether standard contractual clauses are available. Further information on the DPF and a list of certified companies can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/ (in English).
For data transfers to other third countries, appropriate safeguards apply, particularly standard contractual clauses, explicit consent, or legally required transfers. Information on third-country transfers and applicable adequacy decisions can be found in the information provided by the EU Commission: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=de.
21. Social Media Presence
We maintain online presences on social networks and process user data within this framework to communicate with active users there or to provide information about us.
We would like to point out that user data may be processed outside the European Union. This can pose risks for users, for example, because the enforcement of user rights could be made more difficult.
Furthermore, user data within social networks is usually processed for market research and advertising purposes. For example, usage profiles can be created based on user behavior and resulting interests. The latter may in turn be used to display advertisements, both within and outside the networks, that are presumed to match user interests. Therefore, cookies are usually stored on users' computers, which store user behavior and interests. In addition, data independent of the devices used by the users can also be stored in the usage profiles (especially if they are members of the respective platforms and logged in there).
For a detailed description of the respective processing methods and the possibilities of objection (opt-out), please refer to the privacy policies and information provided by the operators of the respective networks.
Even in the case of information requests and the assertion of data subject rights, we point out that these can be most effectively asserted with the providers. Only the latter have access to the user data and can take corresponding measures and provide information directly. If you still need assistance, you can contact us.
- Processed data types: Contact data (e.g. postal and email addresses or phone numbers); Content data (e.g. text or image messages and posts as well as information relating to them, such as authorship or creation time). Usage data (e.g. page views and duration of stay, click paths, intensity and frequency of use, device types and operating systems used, interactions with content and functions).
- Affected persons: User (e.g., website visitor, online service user).
- Purposes of processing: Communication; Feedback (e.g. collecting feedback via online form). Public relations.
- Storage and Deletion: Deletion according to the information in the section „General Information on Data Storage and Deletion.“.
- Legal basis: Legitimate interests (Art. 6(1)(f) GDPR).
Further information on processing, procedures, and services:
- Instagram Social network, allows sharing of photos and videos, commenting and liking posts, sending messages, subscribing to profiles and pages; Service provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland; Legal basis: Legitimate interests (Art. 6(1)(f) GDPR); Website: https://www.instagram.com; Privacy Policy https://privacycenter.instagram.com/policy/. Basis for third-country transfers: Data Privacy Framework (DPF).
Source: Parts of the text were adopted from e-recht24.de and Datenschutz Generator.