Privacy Notice

Act Now! takes data privacy very seriously. We process the personal data collected when visiting our websites in full compliance with the applicable data privacy regulations. These include, in particular, the EU General Data Protection Regulation (GDPR). In the following, we wish to inform you about the nature, scope and purpose of the collection and use of personal data.

 

Legally responsible

The person legally responsible for data collection according to the following declaration is named in the imprint.

Data collection and processing when accessing from the Internet

When you visit our website, our web servers automatically save each access in a log file. This data is stored separately from other data that you enter when using the website. It is not possible for us to assign this data to a specific person. The storage in log files serves to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our IT systems. This data is used only in anonymized form for the statistical evaluation of our website. The legal basis for the temporary storage of data and log files is Article 6 section (1) item (f) GDPR.

The following data is recorded:

  • The IP address of the requesting computer, which is anonymized by shortening
  • Date and time of access
  • Access method/function desired by the requesting computer
  • Name and URL of the file retrieved
  • Amount of data transmitted
  • Access status of the web server (file transfer, file not found, command not executed, etc.)
  • The URL from which access is acquired

 

Data security

Our technical-organizational security measures, with which we protect all data from the access of unauthorized persons, are always kept up-to-date. Your data is protected by technical and organizational measures against loss, destruction, access, modification or distribution by unauthorized persons. Personal information is always transmitted in encrypted form. This site uses SSL encryption for security reasons and to protect the transmission of sensitive content, such as the requests you send to us as the site operator. You can recognize an encrypted connection when the address line of the browser changes from „http://“ to „https://“ and the lock symbol appears in your browser line.

 

Cookies

Our website uses cookies in several places. They serve to make our offer more user-friendly and effective. Cookies are small text files that are stored by the browser on your computer. Most of the cookies we use are so-called session cookies (legal basis, Article 6 section 1 item f GDPR), which are deleted when you end your browser session. Permanent cookies may contain information which allows recognition of your device in case of a returning visit of the website.

In your browser settings, you can advise your browser to inform you about cookie usage or specify whether cookies may be set or not.

 

Web analysis by Matomo

Our website uses Matomo, which is a web analysis service. We have set up Matomo to record only anonymized (shortened) IP addresses and not to store any cookies on your device. Furthermore, no pseudonyms are applied. Hence, visitor counting is based on anonymized data only.

 

Newsletter

With your consent we can send you a newsletter, which regularly informs you about the development of the project.

For being able to send you the newsletter we need an email address from you. No other personal details are required. To ensure that you have entered your email address into the subscription form by yourself, we apply the so-called double opt-in procedure. For this purpose we will send you an email after registration asking for your consent to receive the newsletter. If you do not agree in subscription within 24 hours, your email address will not be considered for distribution of the newsletter and will automatically be deleted after one month. Furthermore, the IP address of the device used for subscription and access to the newsletter and a timestamp will be saved. The aim of this procedure is to be able to prove your registration and possible abuse of your personal data if necessary.

You may revoke your consent to the storage of your email address and its use for sending the newsletter at any time, for example via the „unsubscribe“ link in the newsletter.

Legal basis for the processing of the data after registration for the newsletter is in the case of the user’s consent Article 6 section (1) item a GDPR.

For newsletter distribution we make use of the services offered by a third-party provider. We have concluded a data processing agreement with this provider to ensure protection of your personal data. Currently, our newsletter service provider is:

CleverReach GmbH & Co. KG
Mühlenstr. 43
26180 Rastede
Tel.: +49 (0) 4402 97390-00
Email: info@cleverreach.com

The following data is transmitted to CleverReach GmbH & Co. KG:

  • Email address
  • IP address

 

Contact form

If you send us inquiries via the contact form, your details entered into the form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. In order to answer your questions, provision of your name and your email address is mandatory.

The legal basis is Article 6 (1) item a GDPR.

The granted consent to the storage of the email address can be revoked at any time. In order to do so, you can contact the address provided in the imprint.

 

Your user rights

Insofar as we process the personal data you provide, you, as the person affected, are entitled in accordance with GDPR to the following rights:

1. Right to information (Article 15 GDPR)

You may request confirmation as to whether personal information concerning you is being processed by us. If such processing is undertaken, you have a right to information about this personal information and to other information as stated in article 15 GDPR.

2. Right to rectification and cancellation (Article 16 and 17 GDPR)

You have a right to rectification and/or completion vis-à-vis the controller if the personal data processed is incorrect or incomplete.

You may require the controller to delete your personal information without delay. The controller is then obliged to delete this data immediately, if one of the reasons stated in article 17 GDPR apply, e.g. the personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.

3. Right to limit processing (Article 18 GDPR)

You may request the restriction of the processing of your personal data according to article 18 GDPR, e.g. if you have objected to the processing pursuant to Article 21 section 1 GDPR and it is not yet certain whether the legitimate reasons of the person responsible outweigh your reasons.

4. Right to data portability (Article 20 GDPR)

In certain cases specified in article 20 GDPR you have the right to receive personally identifiable information about you provided to the controller in a structured, commonly used machine-readable format. Moreover, you have the right to demand transfer of this data to another person without hindrance on the part of the controller.

5. Right to object (Article 21 GDPR)

You shall have the right at any time, for reasons arising from your particular situation, to protest against the processing of your personal data based on Article 6 section (1) item (e) or (f) GDPR; this also applies to profiling based on these provisions.

The controller shall no longer process the personal data concerning you unless he/she can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of establishing, exercising and defending legal claims.

 

Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State where you have your residence, place of work or place of alleged infringement, if you believe that the processing of the personal data concerning you constitutes a breach of GDPR. The supervisory authority to which the complaint is submitted shall inform the complainant of the ongoing status and outcome of the complaint.