Privacy Policy • ensphere

Privacy Policy

This Privacy Policy informs the users of the website ensphere.de about the type, scope, and purposes of the collection and use of personal data in accordance with Art 13 GDPR by this website.

Controller

ensphere GmbH
Große Elbstraße 38
22767 Hamburg
Germany
Tel +49 (40) 30 23 979-61
dimitra.theochari@ensphere.de

Data Protection Officer

Dipl.-Ing. (FH) Anton Greil
Reachable at datenschutz@atp.ag

Processing 1: Display and Secure Operation of the Website

Purpose
To display the web pages of ensphere.de on the user's device and to ensure secure, stable operation, personal data is processed.

Affected Individuals
Website visitors such as interested parties, customers, employees

Data Categories
General information such as timestamp of the request.
Technical information such as IP address, requested page, HTTP status code, transmitted data volume, referrer URL, browser (language, version, operating system)

Legal Basis
Art 6(1)(f) GDPR (legitimate interests: secure operation, user information)

Recipients
Internal departments responsible for processing (ATP architects engineers, DBA Communications, ensphere)
Processors according to Art 28 GDPR
Hosting "ensphere.de": Jweiland Hosting
Consent Management Tool "clickskeks", "kirby": ATP architects engineers, dba communications, ensphere.de
Legally mandated recipients (e.g., supervisory and control authorities)
Courts, legal representatives for the enforcement of rights or defense against claims or in the context of official proceedings
Law enforcement authorities within the framework of cooperation obligations

Third Country Transfers
As a rule, no personal data is transferred to third countries.
Exception: Participants are located in third countries

Storage Duration
Log data (e.g., time, duration, participants):
Hoster: 80 days

Provision
If not provided, processing cannot be used.

Processing 2: Google Tag Manager and Google Analytics

Purpose

Google Analytics is used to analyse the use of the website https://www.ensphere.de
To centrally use and manage code sections from various tracking tools used on ensphere.de, the Google Tag Manager is used. Google Analytics is used to evaluate user behavior and improve our web offering.

Affected Individuals
Website visitors such as interested parties, customers, employees

Data Categories Google Analytics
Usage data such as page views, dwell time, bounce rate, interactions, scrolling behavior, behavior (recurring visits, distinction between first-time visitors and returning visitors).

Technical data such as shortened IP address (anonymized before analysis), device information, browser type/version, screen resolution, location (geolocation, derived from the IP address), language (browser settings), referrer URL (source through which the user accessed the page), entered URL (exit page).

Data Categories Google Tag Manager

No personal data

Legal Basis
Art 6(1)(a) GDPR (consent)

Recipients
Internal departments responsible for processing (ATP architects engineers, DBA Communications, ensphere)
Processors according to Art 28 GDPR
Google Tag Manager, Google Analytics:
Google LLC
Google Ireland Limited
Gordon House, Barrow Street
Dublin 4. Ireland
Google LLC has committed to the Data Privacy Framework and thus ensures an adequate level of data protection (https://www.dataprivacyframework.gov/list).

Legally mandated recipients (e.g., supervisory and control authorities)
Courts, legal representatives for the enforcement of rights or defense against claims or in the context of official proceedings
Law enforcement authorities within the framework of cooperation obligations

Third Country Transfers
Collected data may be transferred to servers of Google LLC in the USA.
Google LLC has committed to the Data Privacy Framework and thus ensures an adequate level of data protection (https://www.dataprivacyframework.gov/list).

Storage Duration
Analysis data: 2 years
Log data (e.g., time, duration, participants): 60 days

Provision
Non-provision does not affect the usability of the website.

Rights
You have the following rights:
Information, correction, deletion, restriction of processing, objection, data portability (Art 13(2)(b) GDPR)

Right to Complain
If you believe that the processing of your data violates applicable data protection law or infringes your data protection rights in any other way, you have the right to lodge a complaint with a supervisory authority for data protection. (Art 77 GDPR)

Automated Decision-Making, Profiling
No automated decision-making
No profiling

Status: 14.09.2024