Privacy Statement

Thank you for visiting our website www.rheinwert.com and for your interest in our company. The protection of your personal data is important to us. Personal data is information about personal or factual circumstances of a specific or identifiable natural person. These include, for example, the name, address, telephone number and date of birth, but also all other data relating to an identifiable person. As personal data are subject to special legal protection, we only collect these to the extent necessary for making our website available and for providing our services. Below we describe which personal data we collect during your visit to our website and how we use them.
Our data protection practice complies with legal regulations, in particular those of the Federal Data Protection Act (BDSG), the German Telemedia Act (TMG) and the General Data Protection Regulation of the EU (GDPR). We will only collect, process and store your personal data insofar as this is necessary for the functional provision of this website and our content and services, as well as for processing enquiries and, where applicable, for handling orders/performing contracts, but only insofar as there is a legitimate interest or consent of the user within the meaning of Article 6, paragraph 1f of the GDPR. Only if you have separately given your prior consent, will your data be used for further purposes as clearly stated in the consent, e.g. for sending advertising information by newsletter.

1. Controller within the meaning of Article 4, paragraph 7 of the General Data Protection Regulation (GDPR)

The Controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection regulations is:

Rheinwert Immobilienconsulting GmbH
Steinstrasse 16-18
40212 Düsseldorf

Email: info@rheinwert.com
Tel.: +49 (0) 211 176007 0
Fax: +49 (0) 211 176007 49

2. Provision of the website and creation of log files

Each time you access our website, our system automatically collects data and information from the computer system of the accessing computer. The following data are collected:

Scope of data processing

(1) Data about the type of browser and the version used
(2) The operating system of the accessing device
(3) The IP address of the accessing device
(4) Date and time of access
(5) Websites and resources (images, files, other page content) accessed on our website.
(6) Websites from which the user's system accessed our website (referrer tracking)

These data are stored in the log files of our system. These data are not stored together with the personal data of a specific user, so that individual site visitors are not identified.

  • Legal basis for the processing of personal data

    Article 6, paragraph 1f of the GDPR (legitimate interest). It is our legitimate interest to ensure that the purpose described below is achieved.

  • Purpose of data processing

    Logging is used to maintain the compatibility of our website for as many visitors as possible and to combat misuse and troubleshooting. This requires logging of the technical data of the accessing computer in order to be able to respond to display errors, attacks on our IT systems and/or errors in the functionality of our website, as quickly as possible. The data are also used to optimise the website and to ensure the security of our information technology systems.

  • Retention period

    The above technical data will be deleted once they are no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after visiting our website.

  • Option to object and erase data

    The options of objection and erasure are based on the general regulations on the right of objection under data protection legislation and the right to erasure described below in this privacy statement.

3. Automatic credit assessment/scoring

As far as we provide in advance, we reserve the right to obtain an automatic credit check based on mathematical-statistical procedures from the following company/companies in order to safeguard our legitimate interests. We obtain information about the statistical probability of a payment default from the following service provider. The credit check may contain probability values (score values), which are calculated on the basis of scientifically recognised mathematical-statistical procedures. The future non-payment risk of the customer is determined by means of a large number of criteria such as income, address data, occupation, marital status and previous payment behaviour. The result is expressed in the form of a payment value (so-called score). The information thus obtained forms the basis of our decision on the justification, performance or termination of a contractual relationship. However, the choice of one of the payment methods offered does not depend on such data. The options of objection and erasure are based on the general regulations on the right of objection under data protection legislation and the right to erasure described below in this privacy statement. Specifically:

  • Creditsafe Deutschland GmbH:

    Creditsafe Deutschland GmbH, Schreiberhauer Straße 30, 10317 Berlin (www.creditsafe.com): Our company regularly checks your creditworthiness when concluding contracts and in certain cases, where there is a legitimate interest, also in respect of existing customers. For this purpose, we cooperate with Creditsafe Deutschland GmbH, Schreiberhauer Straße 30, 10317 Berlin, from which we receive the necessary data. For this purpose we transmit your name and contact data to Creditsafe Deutschland GmbH.

4. Integration of external web services and processing of data outside the EU

On our website we use active Java Script content from external providers, so-called web services. By accessing our website, these external providers may receive personal data about your visit to our website. As a result, data may be processed outside the EU. You can prevent this by installing a Java Script blocker such as the browser plug-in 'NoScript' (www.noscript.net) or by deactivating Java Script in your browser. This may result in functional restrictions on Internet pages you visit.
We use the following external web services:

  • Amazon

    A web service of Amazon Europe Core S.à r.l. , 5 Rue Plaetis, 2338 Luxembourg (hereinafter: Amazon) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to Amazon. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the faultless functioning of the website. The data will be deleted once the purpose of its collection has been fulfilled. Amazon's privacy statement contains more information on the handling of the transferred data: https://www.amazon.de/gp/help/customer/display.html/ref=footer_privacy?ie=UTF8&nodeId=201909010. You can prevent collection and processing of your data by Amazon by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • CloudFlare

    A web service of the company CloudFlare Inc., 101 Townsend St, 94107 San Francisco (hereinafter: CloudFlare) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to CloudFlare. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. CloudFlare has been certified within the scope of the EU-US Privacy Shield Agreement (see https://www.privacyshield.gov/list). The data will be deleted once the purpose of its collection has been fulfilled. CloudFlare's privacy statement contains more information on the handling of the transferred data: https://www.cloudflare.com/security-policy/?utm_referrer=https://www.google.de/. You can prevent collection and processing of your data by CloudFlare by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • Cookie Consent

    A web service of the company Silktide Ltd, Brunel Parkway Pride Park (hereinafter: Cookie Consent) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to Cookie Consent. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. The data will be deleted once the purpose of its collection has been fulfilled. Cookie Consent's privacy statement contains more information on the handling of the transferred data: [https://silktide.com/privacy-policy/. You can prevent collection and processing of your data by Cookie Consent by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • Fonts.net / Fonts.com

    A web service of the company Monotype GmbH, Werner-Reimers-Straße 2-4, 61352 Bad Homburg (hereinafter: Fonts.net / Fonts.com) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to Fonts.net / Fonts.com. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. The data will be deleted once the purpose of its collection has been fulfilled. Fonts.net / Fonts.com's privacy statement contains more information on the handling of the transferred data: http://www.monotype.com/legal/privacy-policy. You can prevent collection and processing of your data by Fonts.net / Fonts.com by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • Google APIs

    A web service of the company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View (hereinafter: Google APIs) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to Google APIs. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. Google APIs has been certified within the scope of the EU-US Privacy Shield Agreement (see https://www.privacyshield.gov/list). The data will be deleted once the purpose of its collection has been fulfilled. Google APIs' privacy statement contains more information on the handling of the transferred data: https://www.google.com/intl/de/policies/privacy/. You can prevent collection and processing of your data by Google APIs by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • gstatic

    A web service of the company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View (hereinafter: gstatic) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to gstatic. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. gstatic has been certified within the scope of the EU-US Privacy Shield Agreement (see https://www.privacyshield.gov/list). The data will be deleted once the purpose of its collection has been fulfilled. gstatic's privacy statement contains more information on the handling of the transferred data: https://www.google.com/intl/de/policies/privacy/. You can prevent collection and processing of your data by gstatic by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • Yahoo APIs

    A web service of the company Oath (EMEA), Ltd., 5-7 Point Square, North Wall Quay, Dublin 1 (hereinafter: Yahoo APIs) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to Yahoo APIs. The legal basis for data processing is Article 6, paragraph 1f of the GDPR. The legitimate interest is the proper functioning of the website. The data will be deleted once the purpose of its collection has been fulfilled. Yahoo APIs' privacy statement contains more information on the handling of the transferred data: https://policies.yahoo.com/ie/de/yahoo/privacy/index.htm. You can prevent collection and processing of your data by Yahoo APIs by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

  • website-check.de

    A web service of the company Website-Check GmbH, Beethovenstraße 24 in 66111 Saarbrücken, Germany (hereinafter: website-check.de) is loaded on our website. We use these data to ensure the full functionality of our website. In this context, your browser may pass on personal data to website-check.de. The legal basis for data processing is Article 6, paragraph 1f of the GDPR (legitimate interest). The legitimate interest is the proper functioning of the website. The data will be deleted once the purpose of its collection has been fulfilled. website-check.de's privacy statement contains more information on the handling of the transferred data: https://www.website-check.de/datenschutzerklaerung/. You can prevent collection and processing of your data by website-check.de by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).

5. Information on the use of cookies

  • Scope of personal data processing

    We use cookies on various pages to enable the use of certain functions of our website. So-called cookies are small text files that your browser can place on your computer. These text files contain a characteristic string that enable the browser to be uniquely identified when you return to our website. The process of placing a cookie file is also known as 'placing a cookie'.

  • Legal basis for the processing of personal data

    Article 6, paragraph 1f of the GDPR (legitimate interest). Our legitimate interest is to maintain the full functionality of our website, increasing its usability and allowing a more individual approach to customers. We can only identify individual website visitors with the help of cookie technology if the website visitor has previously provided us with corresponding personal data on the basis of separately given consent.

  • Purpose of data processing

    The cookies are placed by our website in order to maintain the full functionality of our website and to improve usability. In addition, cookie technology enables us to recognise individual visitors by pseudonyms, e.g. an individual, arbitrary ID, allowing us to offer better customised services.

  • Retention period

    Our cookies are stored in your browser until they are deleted or, in the case of a session cookie, until the session has expired.

  • Option to object and erase data

    You can adjust your browser settings according to your wishes so that placing cookies is generally prevented. You can then decide on the acceptance of cookies on a case-by-case basis or always accept cookies. Cookies can be used for various purposes, e.g. to recognise that your PC has already accessed our website (permanent cookies) or to save recently viewed offers (session cookies). We use cookies to increase user convenience. To use our convenience features, we recommend you accept the cookies for our website. The options of objection and erasure are also based on the general regulations on the right of objection and the right to erasure under data protection legislation described below in this privacy statement.

6. Data security and data protection, communication by email

Your personal data are protected by technical and organisational measures during collection, storage and processing in such a manner that they are not accessible to third parties. In the case of unencrypted communication by email, we cannot guarantee complete data security on the transmission route to our IT systems, so that we recommend encrypted communication or communication by post for data with a high need for confidentiality.

7. Automatic email archiving

  • Scope of personal data processing

    We expressly draw your attention to the fact that our email system has an automated archiving procedure. As a result, all incoming and outgoing emails are digitally archived in a revision-proof manner.

  • Legal basis for the processing of personal data

    Article 6, paragraph 1f of the GDPR (legitimate interest). Our legitimate interest is compliance with tax and commercial law provisions (e.g. §§ 146, 147 AO [German Tax Code]).

  • Purpose of data processing

    The purpose of archiving is compliance with tax and commercial law provisions (e.g. §§ 146, 147 AO [German Tax Code]).

  • Retention period

    Storage of our email communication takes place until expiry of fiscal and commercial retention obligations. The maximum retention period may be 10 years.

  • Option to object and erase data

    We would also like to point out that we only consider application documents in PDF format. Zipped (WinZip, WinRAR, 7Zip, etc.) files are filtered out by our security systems and are not delivered. Applications in Word file format and other file formats will not be considered and will be deleted unread. Please note that application documents sent unencrypted by email may be opened by third parties before they arrive in our IT systems. We assume that we are allowed to answer unencrypted application emails without encryption. If you do not wish this to happen, please indicate this in your application email.

8. Revocation of Consents - Data Access and Change Requests - Deletion & Blocking of Data

At appropriate intervals you have the right to free-of-charge information about your stored data, as well as the right to correction, blocking or deletion of your data at any time. Your data will be deleted by us upon first request if this is not contrary to legal regulations. You may revoke any consent granted to us to use your personal data at any time. You can send requests for access to, deletion and correction of your data and suggestions at any time to the following address:

Rheinwert Immobilienconsulting GmbH
Steinstrasse 16-18
40212 Düsseldorf

Email: info@rheinwert.com
Tel.: +49 (0) 211 176007 0
Fax: +49 (0) 211 176007 49

9. Right to data transferability

You have the right to request us to provide you with the personal data that you have transmitted to us in a structured, common and machine-readable format. You may also request that we transfer these data to a third party immediately on your first instruction, provided that the processing is based on consent pursuant to Article 6, paragraph 1 of the GDPR or Article 9, paragraph 2 of the GDPR or on a contract pursuant to Article 6, paragraph 1b of the GDPR and the processing is carried out by us within the scope of automated data processing.
When exercising this right of data transferability, you also have the right to have the relevant personal data transferred directly by one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.
The right to data transferability shall not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

10. Right of appeal to the supervisory authority pursuant to Article 77, paragraph 1 of the GDPR.

You may bring about a judicial clarification of the problem at any time, if you suspect that your data is being illegally processed on our site. Irrespective of this, you have the option of contacting a supervisory authority. You have the right to appeal in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you may choose to apply to the supervisory authority in any of the above locations. The supervisory authority to which the complaint was submitted shall subsequently inform you of the status and results of your complaint, including the possibility of legal redress under Article 78 of the GDPR.

Drawn up by:
© IT-Recht-Kanzlei DURY – www.dury.de
© Website-Check GmbH – www.website-check.de

DÜSSELDORF