Imprint | Agency Koller

Data protection information

By means of this data protection declaration, we would like to inform you about our handling of personal data that may be collected when you visit our website.

Contact details of the data processing controller:

Agentur Koller UG (haftungsbeschränkt)
Lindenstraße 31a
20099 Hamburg

Phone: +49 40 524 70 18 00
E-mail: ed.rutnegarellok@eciffo

Purposes and scope of data processing

Server Log
When you visit our website, each access is saved in a log file, known as the server log. Each record contains information about:

The page accessed within our web presence
The date and time of the access
The browser used and its version
The user's operating system
The user's IP address
The amount of data transferred
Temporary storage of the data is necessary for the operation of a website visit to enable delivery of the website. Further storage in log files takes place in order to ensure the functionality of the website and the security of the information technology systems. Our legitimate interest in data processing also lies in these purposes.
The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. They are stored for 7 days exclusively for the administrators, are then backed up for 7 days and are then automatically deleted The data will be deleted as soon as they are no longer necessary for achieving the purpose of their collection. They are retained exclusively for administrators for 7 days, then kept in backup for another 7 days, and are automatically deleted thereafter.

SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons. You can recognise an encrypted connection by the fact that the address line of the browser changes from ‘http://’ to ‘https://’ and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Recipients of Data
For the operation of this website, we use service providers whom we have carefully selected and with whom we have entered into data processing agreements in accordance with GDPR and BDSG regulations. Furthermore, we do not share your data with third parties, either for a fee or for free, without your permission.
Enquiry by e-mail, telephone
When you contact us (by e-mail or telephone), we store and process your personal data (name, enquiry) in order to process your request. We will not pass on this data without your consent.
Your data will remain stored by us until you request its deletion, revoke your consent or there is no longer a need to store it. Statutory retention periods remain unaffected by this.
Newsletter
For sending out newsletters, we use the service provider Brevo (Sendinblue GmbH, Germany).
To receive our newsletter, we need your email address and a confirmation that you are the owner of this address and wish to receive the newsletter.
Brevo enables us to analyze reactions to our newsletters, such as opening messages and clicking on links. This helps us tailor the content better to your interests. If you do not want an analysis by Brevo, you can unsubscribe from the newsletter at any time. An unsubscribe link is included in every newsletter.
Your data will be stored until you unsubscribe and then deleted, unless they are still required for legal reasons. If necessary, your email address will be added to a blacklist to prevent further mailings.
The data processing is based on your consent, which can be revoked at any time.
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service, which ensures that your data is processed exclusively according to our specifications and in compliance with GDPR.
For more information on data protection at Brevo, please visit: https://www.brevo.com/legal/privacypolicy/
Spotify
This website uses features from Spotify, a music service by Spotify AB in Stockholm, Sweden. When you visit this page, a connection can be made between your browser and Spotify via a plugin. If you see the Spotify logo on the page and are logged into your Spotify account at the same time, you can link content from the website directly to your Spotify profile. This informs Spotify that you have visited the page.
Please note that Spotify uses Google Analytics cookies for data analysis, which can also transmit your usage data to Google. For more information on privacy at Spotify, visit: https://www.spotify.com/de-en/legal/privacy-policy/
If you do not want Spotify to associate your visit to the website with your account, you should log out of your Spotify account.
Cookies
Our website uses a cookie notice to obtain your consent for storing certain cookies on your device or for using specific technologies, and to document this in compliance with data protection regulations.
The cookie notice is installed locally on our servers, so no connection is made to third-party servers. The cookie notice stores a cookie in your browser to assign the consents you have given or their revocation. The cookie remains active for 1 month. Otherwise, your data is stored until you request deletion, you delete the consent cookie yourself, or the purpose for storing the data no longer exists. Mandatory legal retention obligations remain unaffected.
Your rights as a data subject
You have the following rights:

the right to information
the right to rectification
the right to erasure
the right to restriction of processing
the right to object
the right to data portability
To exercise your rights, you can contact us using the contact details provided above.

Right to Object
You have the right to object to the processing of your personal data, which is based on our legitimate interests. The data controller will no longer process the personal data unless he can demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject, or for the establishment, exercise, or defense of legal claims. The collection of data for the provision of the website and the storage of the log files are strictly necessary for the operation of the website.
Right to Lodge a Complaint
If you believe that data processing activities on our website are in violation of data protection laws, you can also contact the data protection authority responsible for you. You can find the appropriate supervisory authority on the website of the Federal Commissioner for Data Protection and Freedom of Information at the following link: https://www.bfdi.bund.de/EN/Service/Anschriften/Laender/Laender-node.html

Last updated on 10.06.24

Data protection information for our social media profiles

This privacy policy applies to our profiles on Facebook and Instagram.
Facebook page https://www.facebook.com/kolleragentur
Instagram-Account https://www.instagram.com/agentur_koller/

Data processing by social networks

We maintain public social media profiles. These networks can analyse your user behaviour extensively, for example through cookies or IP address recording. The operators can use this to create user profiles and show you targeted advertising. If you visit our profiles, the operators can assign the visit to your account. We have no complete influence on data processing by the network operators.

Legal basis

Our presence on social media serves our legitimate interest in reaching a broad public on the internet.

Responsibility

If you visit one of our social media sites (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. You can assert your data protection rights against both us and the platform operator.

Storage period

Your data that is collected directly via our social media profiles will be stored until your request is deleted or until it is no longer required. Statutory retention periods remain unaffected.

Your rights

You have the right to information, rectification, erasure, restriction of processing, data portability and to lodge a complaint with a supervisory authority. You can adjust settings for advertising and data processing directly in your social media accounts.

Data transfer

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy/?section_id=9-HowDoWeTransfer and https://de-de.facebook.com/help/566994660333381.
The company is certified in accordance with the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnywAAC&status=Active

Further information

Details on data transfer and data protection can be found in the privacy policies of the respective networks:
Facebook privacy policy: https://www.facebook.com/about/privacy/
Instagram privacy policy: https://privacycenter.instagram.com/policy/

Legal notice

Programming