Privacy policy

We are pleased that you have visited our website, kade.de, and are interested in our company. Protecting your personal data – such as date of birth, name, telephone number, and address – is important to us. The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data privacy practices comply with the provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). This privacy policy serves to fulfil the information obligations arising under the GDPR, including Articles 13 and 14 et seq. GDPR.

Controller

Within the meaning of Article 4 (7) GDPR, the controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of personal data processing.

Regarding our website, the controller is:

DR. KADE Pharmazeutische Fabrik GmbH
Rigistraße 2
12277 Berlin
Germany
E-Mail: info@kade.de
Tel.: +49 (30) 7 20 82-0
Fax: +49 (30) 200 95-1200

Contact details of the data protection officer

We have appointed a data protection officer pursuant to Article 37 GDPR. You can reach our data protection officer using the following contact details:

MKM Datenschutz GmbH
Äußere Sulzbacher Str. 118
90491 Nürnberg
Germany
E-Mail: datenschutz@kade.de
Tel.: +49 911 990 860 0

Provision of the website and creation of log files

Each time our website is accessed, our system automatically collects data and information from the device used (e.g. computer, mobile phone, tablet, etc.).

What personal data is collected and to what extent is it processed?

(1) Information about the browser type and version used
(2) The operating system of the device used
(3) Host name of the accessing computer
(4) The IP address of the device used
(5) Date and time of access
(6) Websites and resources (images, files, additional page content) that were accessed on our website
(7) Websites from which the user’s system reached our website (referrer tracking)
(8) Message as to whether the retrieval was successful
(9) Volume of data transferred

This data will be stored in the log files of our system. This data will not be stored together with personal data of any specific user, which means that individual site visitors cannot be identified.

Legal basis for the processing of personal data

Article 6 (1) (f) GDPR (legitimate interests). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of data processing

The temporary (automated) storage of data is necessary during a website visit in order to enable delivery of the website. The storage and processing of personal data are also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems, and/or errors in the functionality of our website. Furthermore, the data is used to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The erasure of the aforementioned technical data takes place as soon as it is no longer required to ensure the compatibility of the website for all visitors, but no later than three months after access to our website.

Ability to object and erase

You may object to the processing at any time pursuant to Article 21 GDPR and request the erasure of data pursuant to Article 17 GDPR. You can find out what rights you have and how to exercise them at the end of this privacy policy.

Special functions of the website

Our site offers various functions, the use of which involves us collecting, processing, and storing personal data. We explain what happens with this data below:

Contact form(s)

  • What personal data is collected and to what extent is it processed?
    The data you enter into our contact forms is processed by us for the purpose stated below.
  • Legal basis for the processing of personal data
    Article 6 (1) (a) GDPR (consent through a clear affirmative act or behaviour)
  • Purpose of data processing
    We shall use the data collected via our contact form(s) only for processing the specific contact enquiry received through the contact form.
  • Duration of storage
    After processing your request, the collected data will be erased without undue delay, unless statutory retention periods apply.
  • Option to revoke and erase
    The options for withdrawal and erasure are governed by the general provisions, described below in this privacy policy, on the right of withdrawal and erasure under data protection law.
  • Need for disclosure of personal data
    The use of the contact forms is voluntary and neither contractually nor legally required. You are not obliged to contact us via the contact form but may also use the other contact options provided on our website. If you wish to use our contact form, you must complete the fields marked as mandatory information. If you do not provide the necessary information in the contact form, you will either not be able to submit the enquiry or we will not be able to process it.

Newsletter signup form

  • What personal data is collected and to what extent is it processed?
    By subscribing to the newsletter on our website, we will receive the email address you entered in the registration field and any additional contact details that you may have provided via the newsletter registration form.
  • Legal basis for the processing of personal data
    Article 6 (1) (a) GDPR (consent through a clear affirmative act or behaviour)
  • Purpose of data processing
    The data collected in the registration form for our newsletter shall be used exclusively for sending our newsletter in which we provide information about our services and news. After registration, we shall send you a confirmation email containing a link that you must click to complete the subscription to our newsletter (double opt-in).
  • Duration of storage
    You may unsubscribe from our newsletter at any time by clicking the unsubscribe link that is included in every newsletter. We will delete your data without undue delay after you unsubscribe. Likewise, we will delete your data without undue delay if your registration is not completed. We reserve the right to deletion without stating reasons and without prior or subsequent notification.
  • Withdrawal and removal option
    You may withdraw your consent at any time pursuant to Article 7 (3) GDPR. However, the processing carried out up to the time of withdrawal shall remain unaffected. Regarding further rights, we refer to the overview at the end of this privacy policy.
  • Need for disclosure of personal data
    If you wish to use our newsletter, you must complete the fields marked as mandatory and confirm your email address by clicking the double opt-in link. The information required for newsletter registration is neither necessary to enter into a contract with us nor required by statutory provisions. It is used exclusively for sending our newsletter. If you do not provide the necessary information, we will not be able to provide you with our newsletter service.

Statistical analysis of visits to this website – web trackers

When this website or individual files on the website are accessed, we collect, process, and store the following data: IP address, website from which the file was accessed, name of the file, date and time of access, volume of data transferred, and message on the status of the access request (“web log”). We use this access data exclusively in a non-personalised form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to analyse visits to this website:

Google

Our website uses the Google service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

We use Google in order to load additional Google services on the website. The service is used to provide further Google services, such as the necessary data processing for the provision of streams and fonts, and relevant content from Google Search. It is technically required in order to exchange the information about the site visitor already available to Google between the various Google services and to provide the visitor with personalised content tailored to their Google account.

For the processing itself, the service or we will collect the following data: background data stored in the visitor’s Google account or with other Google services; background data required for the provision of Google services such as streaming data or advertising data; data concerning the user’s interaction with Google Search; details of the device used, the user’s IP address and browser; and further data from Google services relating to the provision of Google services in connection with our website.

If the service is activated on our website, our website will establish a connection to Google Ireland Limited’s servers and transmit the required data. As part of commissioned data processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, information from other Google services may be transmitted and processed by Google to provide background services for the purpose of displaying the services provided by Google and processing data for these services. For this purpose, data may also be transferred to the Google services Google APIs, DoubleClick, Google Cloud, Google Ads, and Google Fonts in accordance with the Google Privacy Policy. You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy

The service provider also provides an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=en.

Google Ads

We use the Google Ads service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

Google Ads is an advertising system that allows us to place advertisements on external websites to inform our customers about our services. Google Ads displays advertisements customised for our customer base based on parameters we have set. These advertisements are placed on external websites and link to our website. If a site visitor clicks on the Google Ads advertisement, they will be directed to our website. In order to measure the success and remuneration of Google Ads advertisements, Google Ads will carry out a measurement of the effectiveness of the advertisement when our website is accessed. Our website will process the data provided by Google Ads in order to analyse and improve our advertising campaigns and to calculate any remuneration that may arise.

For the processing itself, the service or we will collect the following data: data on visitors’ advertising interests; interactions of visitors with advertising in relation to our website; data concerning visits to our website by users who have previously clicked on Google Ads and then accessed our site; details of the device used, the user’s IP address and browser; and further data from Google services relating to the provision and refinement of Google advertising in connection with our website.

If the service is activated on our website, our website will establish a connection to Google Ireland Limited’s servers and transmit the required data. As part of commissioned data processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When Google Ads is used on our website, information from other Google services may be transmitted and processed by Google in order to provide background services aimed at improving and customising Google Ads. Data may also be processed by other Google services such as Google APIs, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform, and Google Fonts in accordance with the Google Privacy Policy on Google’s own responsibility under data protection law. You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy

The service provider also provides an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=en

Google Analytics

Our website uses the Google Analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

Google Analytics is a web tracker that analyses the behaviour of site visitors and their interactions with our website and provides us with evaluations and forecasts regarding the content and products of our website and their popularity (“tracking”). We have integrated Google Analytics so that the service can compile an analysis of the browsing behaviour of site users. To do this, Google collects data on interactions between website visitors and our website and, where applicable, information obtained from reading cookies or other storage technologies and analyses it statistically for us. Google Analytics employs data processing technologies that enable the tracking of individual site visitors and their interactions with other Google services such as the Google Ads advertising network. Data from other Google services is also used to close data gaps using machine learning technologies, modelled statistics, and forecasting functions and to create extensive statistics on the contents of our website. If Google Analytics is activated on our website, the data collected by Google Analytics will be transferred to Google Ireland Limited’s servers. As part of commissioned data processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. We carry out the analysis using Google Analytics in order to continually optimise our online services and make them more accessible. This is known as reach measurement.

For the processing itself, the service or we will collect the following data: data on the interactions of site visitors with the content of the website; data on the use of the services presented on our website; data from external Google services if they interact with our website, such as advertising data or data on behaviour relating to advertising; data on general geographical origin, the browser used, and the operating system; and further information about the device used.

Google Analytics will store the data relevant for providing web tracking for as long as necessary to fulfil the booked web service. Data will be collected and stored anonymously. If individual interactions by site visitors make it possible to subsequently identify the person who performed specific actions, we will delete the collected data once the purpose has been achieved. The data will be deleted no later than when it is no longer subject to statutory retention obligations. As a rule, we will delete this data within no more than 12 months. You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy.

The provider also offers an opt-out option at https://tools.google.com/dlpage/gaoptout?hl=en.

Google Tag Manager

Our website uses the Google Tag Manager service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

Google Tag Manager provides a technical platform to execute and collectively manage other web tools and web tracking programs by means of tags. Google Tag Manager stores cookies on your computer in this context and analyses your browsing behaviour (“tracking”) wherever web tracking tools are executed via Google Tag Manager. The data generated by the tags will be consolidated, stored, and processed by Google Tag Manager within a unified user interface. All embedded tags will be listed separately again in this privacy policy. When tag integration is enabled via Google Tag Manager, data such as your IP address and user activities will be transmitted to Google’s servers whenever you use our website. The tracking tools used in Google Tag Manager ensure, through IP anonymisation in the source code, that the IP address is anonymised by Google Tag Manager before transmission. With Tag Manager, metrics from various service providers (Google and third-party providers) can be linked and analysed based on tag management. Google Tag Manager helps us compile reports on website activities and manage our website’s web tools.

For the processing itself, the service or we will collect the following data: cookies, web tracking data, outbound and inbound links, and information arising from the integration and activation of JavaScript code from Google Tag Manager and the web tools triggered by Google Tag Manager on the website.

You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy

The provider also offers an opt-out option at https://policies.google.com/privacy.

Gstatic

Our website uses the Gstatic service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

Gstatic is a background service used by Google to retrieve static content in order to reduce bandwidth usage and preload required catalogue files. The service specifically loads background data for Google Fonts and Google Maps.

As part of commissioned data processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy.

The service provider also provides an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=en.

External web services integration and data processing outside the EU

On our website, we use active content from external providers, i.e. web services. When our website is accessed, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may lead to functional restrictions on websites that you visit.

We use the following external web services:

Cookie Consent Manager CCM19

Our website uses the Cookie Consent Manager CCM19 service provided by Papoo Software & Media GmbH, Auguststr. 4, 53229 Bonn, Germany, email: info@ccm19.de, website: www.ccm19.de/en. Personal data is transferred exclusively to servers within the European Union.

The legal basis for the processing is Article 6 (1) (c) GDPR. The use of this service helps us comply with our legal obligations.

By integrating Cookie Consent Manager CCM19, we fulfil our legal obligation with regard to consent management for cookies.

Your rights in relation to processing are detailed at the end of this privacy policy.

You can find further information on the handling of transferred data in the provider’s privacy policy at https://www.ccm19.de/datenschutzerklaerung.html.

DocCheck

Our website uses the DocCheck service provided by DocCheck Community GmbH, Vogelsanger Straße 66, 50823 Cologne, Germany, email: info@doccheck.com, website: https://doccheck.com/. Personal data is transferred exclusively to servers within the European Union.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

This service is a plugin that we need to display all the content on our website for you. The plugin improves the website experience and its appeal for our visitors.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://more.doccheck.com/en/privacy.

Google Fonts

Our website uses the Google Fonts service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, email: support-deutschland@google.com, website: http://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

We use the Google Fonts service in order to integrate attractive fonts into our website and make it more visually appealing for you. The service may also be used on our website if other Google services are reloaded on our website that require Google Fonts to function. This is the case, for example, if our website uses Google services that necessarily require Google Fonts for execution.

For the processing itself, the service or we will collect the following data: data on fonts, the visitor’s IP address, statistics on the use of fonts, and other data from Google services relating to our website.

If the service is activated on our website, our website will establish a connection to Google Ireland Limited’s servers and transmit the required data. As part of commissioned data processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, information from other Google services may be transmitted and processed by Google to provide background services for the purpose of displaying the services provided by Google and processing data for these services. For this purpose, data may also be transferred to Google APIs, Google Cloud, and Google Ads in accordance with the Google Privacy Policy. You can access the certification under the EU-US Data Privacy Framework at  https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy

The service provider also provides an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=en.

Google reCaptcha

Our website uses the Google reCAPTCHA service operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (email: support-deutschland@google.com, website: http://www.google.com/). Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, the European Commission has issued an adequacy decision on the EU-US Data Privacy Framework pursuant to Article 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The provider of the service is certified under the DPF, so the usual level of protection under the GDPR applies to the transfer.

The legal basis for processing your personal data is your consent pursuant to Article 6 (1) (a) GDPR and, where applicable, Article 9 (2) (a) GDPR, which you have given on our website.

If Google reCAPTCHA is activated on our website, the data collected by Google reCAPTCHA will be transmitted to Google Ireland Limited’s servers. As part of commissioned data processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. Based on specific characteristics and an analysis of page behaviour, the service recognises whether the inputs are provided automatically by a program (known as a “bot”). The service has three different stages. Either the service automatically recognises that the input is not provided automatically by a bot, or it prompts the user to select a CAPTCHA checkbox. A third option is the display of small image, audio, or text tasks that must be solved by the website visitor. Google reCAPTCHA is a CAPTCHA service used on our website for security reasons to prevent bots (robot programs) from interacting with our website. Google reCAPTCHA makes sure that our website is only used by humans, and not by bots. This allows us to protect the special functions of our website (e.g. contact forms or other input options such as the login area) from misuse.

For the processing itself, the service or we will collect the following data: user behaviour (e.g. mouse gestures or input behaviour), IP address, browser data, and computer information.

If you wish to use website input options that are protected by Google reCAPTCHA, you must allow the use of Google reCAPTCHA and solve corresponding CAPTCHAs where necessary. If you do not complete the CAPTCHA or allow the use of Google reCAPTCHA, you will not be able to use the form protected by the CAPTCHA. Alternatively, you may contact us at any time using our other communication channels (e.g. postal mail or email). You can access the certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt000000001L5AAI&status=Active.

You can withdraw your consent at any time. Further information on withdrawing your consent can be found either with the consent itself or at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://policies.google.com/privacy

The service provider also provides an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=en.

Rechtstextsnippet and modules

Our website uses the Rechtstextsnippet service and modules provided by Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, email: support@website-check.de, website: https://www.website-check.de/. Personal data is transferred exclusively to servers within the European Union.

The legal basis for the processing is Article 6 (1) (c) GDPR. The use of this service helps us comply with our legal obligations.

The service is used to reload the content of our legal texts on our website. Integrating this service on our website reloads the latest applicable legal texts. Its integration also means that additional technical modules concerning legal texts or legally required elements may be reloaded if necessary as well.

Your rights in relation to processing are detailed at the end of this privacy policy.

Further information on the handling of the transferred data can be found in the provider’s privacy policy at https://www.website-check.de/datenschutzerklaerung/

Information on the use of cookies

  • What personal data is collected and to what extent is it processed?
    We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. “Cookies” are small text files that your browser can store on your device. These text files contain a unique string that enables the browser to be clearly identified when you return to our website. The process of storing a cookie file is also referred to as “placing a cookie”. Cookies may be placed both by the website itself and by external web services. The cookies are placed by our website or by external web services to maintain the full functionality of our website, to improve user-friendliness, or to pursue the purpose specified with your consent. Cookie technology also enables us to recognise individual visitors by pseudonyms, e.g. a unique or random ID, so that we can provide more personalised services. Details are set out in the cookie settings.
  • Legal basis for the processing of personal data
    Where cookies are processed since consent pursuant to Article 6 (1) (a) GDPR, such consent will also be deemed consent within the meaning of Section 25 (1) of the German Telecommunications and Telemedia Data Protection Act (Telekommunikation-Telemedien-Datenschutzgesetz – TDDDG) to placing the cookie on the user’s device. Where another legal basis under the GDPR is specified (e.g. for the performance of a contract or for compliance with legal obligations), storage or placement will take place based on an exemption pursuant to Section 25(2) TDDDG. This is the case where “the sole purpose of storing information in the end-user’s device, or the sole purpose of accessing information already stored in the end-user’s device, is to transmit a message over a public telecommunications network” or “where the storage of information in the end-user’s device, or access to information already stored in the end-user’s device, is strictly necessary for the provider of a digital service to make available a digital service expressly requested by the user”.
  • Purpose of data processing
    The cookies are placed by our website or by external web services to maintain the full functionality of our website, to improve user-friendliness, or to pursue the purpose specified with your consent. Cookie technology also allows us to recognise individual visitors by pseudonyms, e.g. a unique or random ID, so that we can offer more personalised services. Details are set out in the cookie settings.
  • Duration of storage
    Our cookies will be stored until they are deleted in your browser or, in the case of a session cookie, until the session has expired. Details are set out in the cookie settings.
  • Possibility of Objection and Removal
    You are free to configure your browser to generally prevent the placement of cookies. You can then decide whether to accept cookies on a case-by-case basis or to accept them in general. Cookies can be used for various purposes, e.g. to recognise that your access device has already been connected to our website (persistent cookies) or to store recently viewed resources (session cookies). If you have expressly given us permission to process your personal data, you can withdraw this consent at any time. Please note your withdrawal does not affect the lawfulness of any processing done with your consent up to the time of withdrawal.

Cookie settings

Data security and data protection, communication by email

Your personal data is protected by technical and organisational measures during collection, storage, and processing in such a way that it is not accessible to third parties. Unencrypted communication by email cannot guarantee complete security of the data as it is transmitted to our IT systems, so we recommend encrypted communication or postal delivery for highly confidential information.

Right of access and rectification requests – erasure and restriction of data – withdrawal of consent – right to object

Right of access

You have the right to request confirmation as to whether we process personal data about you. If so, you have the right to access the information specified in Article 15 (1) GDPR as long as this does not affect other persons’ rights and freedoms (cf. Article 15 (4) GDPR). We will also be happy to provide you with a copy of the data.

Right to rectification

Article 16 GDPR entitles you, at any time, to require the correction of any incorrect personal data (such as address, name, etc.) that is stored with us. You may also request the completion of the data stored with us at any time. The data will then be updated accordingly without undue delay.

Right to erasure

Article 17 (1) GDPR entitles you to require us to erase the personal data we have collected about you if

  • the data is no longer needed;
  • the withdrawal of your consent means that the legal basis for processing no longer exists;
  • you have objected to the processing and there are no legitimate grounds for the processing;
  • your data is being unlawfully processed;
  • a legal obligation requires this, or the data was collected pursuant to Article 8 (1) GDPR.

This right does not exist under Article 17 (3) GDPR if

  • the processing is necessary for exercising the right to freedom of expression and information;
  • your data was collected based on a legal obligation;
  • the processing is necessary for the public interest;
  • the data is necessary for the establishment, exercise, or defence of legal claims.

Right to restriction of processing

Article 18 (1) GDPR entitles you, in individual cases, to demand that we restrict the processing of your personal data.

This is the case if

  • you have contested the accuracy of the personal data;
  • the processing is unlawful, and you do not agree to erasure;
  • the data is no longer required for the purpose of processing but does serve the establishment, exercise, or defence of legal claims;
  • an objection to the processing has been lodged pursuant to Article 21 (1) GDPR and it is still unclear which interests prevail.

Right to withdraw consent

If you have expressly given us consent to process your personal data (Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR), you may withdraw your consent at any time. Please note that this withdrawal does not affect the lawfulness of the processing done with your consent up to the time of the withdrawal.

Right to object

Article 21 GDPR entitles you to object at any time to the processing of your personal data collected on the basis of Article 6 (1) (f) GDPR (for a legitimate interest). However, you only have this right applies if there are special circumstances opposing the storage and processing.

How can you exercise your rights?

You may exercise your rights at any time by contacting us using the contact details below:

DR. KADE Pharmazeutische Fabrik GmbH
Rigistraße 2
12277 Berlin
Germany
E-Mail: info@kade.de 
Tel.: +49 (30) 7 20 82-0
Fax: +49 (30) 200 95-1200

Right to data portability

Article 20 GDPR entitles you to transfer the personal data concerning you. We will provide the data in a structured, commonly used and machine-readable format. The data may be transmitted either to you or to a controller designated by you.

Upon request pursuant to Article 20 (1) GDPR, we will provide you with the following data:

  • data collected based on explicit consent pursuant to Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR;
  • data that we have received from you pursuant to Article 6 (1) (b) GDPR under existing contracts;
  • data that has been processed during an automated procedure.

We will transfer the personal data directly to a controller whom you have designated wherever this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of other persons pursuant to Article 20 (4) GDPR.

Right to lodge a complaint with the supervisory authority pursuant to Article 77 (1) GDPR

If you suspect that your data is being unlawfully processed on our website, you may have the courts adjudicate this issue at any time. All other legal remedies are available to you as well. Irrespective of this, you have the option pursuant to Article 77 (1) GDPR to contact a supervisory authority. The right to lodge a complaint pursuant to Article 77 GDPR applies in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement. This means that you may choose the supervisory authority you contact from any of the aforementioned places. The supervisory authority with which the complaint has been lodged will inform you about the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Article 78 GDPR.