Privacy Policy

We want you to know when and how we collect data during your visit to our website and how we use it. We have implemented technical and organizational measures to ensure that data protection regulations are complied with by us and any service providers involved.
This privacy policy informs you about the type, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) within our website and its associated web pages, functions, and content, as well as our external online presences, such as our social media profiles (hereinafter referred to as “online offering”).
Controller
The controller responsible for the collection, processing, and use of your personal data within the meaning of Art. 4 No. 7 of the General Data Protection Regulation (GDPR) is:

Gesellschaft für Enzymtechnologie mbH

Pinkertweg 50
D-22113 Hamburg
Fon: +49 (0)40 – 73 20 131
E-Mail:  info@biozym.de

Name and address of the data protection officer
The data protection officer of the responsible party is:
Any data subject can contact our data protection officer directly at any time with all questions and suggestions concerning data protection.
Types of processed data
Inventory data (e.g., your name, address)
Contact details (e.g., your email address, phone number)
Content data (e.g., your text entries on our site, photographs, videos you send us via email)
Usage data (e.g., the subpages you visit, access times)
Meta/communication data (e.g., device information, IP addresses)

Categories of data subjects
Visitors and users of the online offering (hereinafter “users”), customers, interested parties, business partners.
Purpose of processing
Provision of the online offering, its functions, and content
Responding to contact inquiries and communication with users
Security measures
Reach measurement/marketing

Used terminology
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., cookie), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person (Art. 4 No. 1 GDPR).
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction (Art. 4 No. 2 GDPR).
“Profiling” means any automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements (Art. 4 No. 4 GDPR).
“Pseudonymization” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person (Art. 4 No. 5 GDPR).
“Controller” means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data (Art. 4 No. 7 GDPR).
“Processor” means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller (Art. 4 No. 8 GDPR).

Relevant legal bases
Article 13 GDPR stipulates that we inform you about the legal basis for our data processing. Unless the legal basis is explicitly mentioned in this privacy policy, the following applies:
The legal basis for obtaining consent is Art. 6 (1) lit. a and Art. 7 GDPR.
The legal basis for the processing for the performance of our services and the execution of contractual measures as well as the response to inquiries is Art. 6 (1) lit. b GDPR.
The legal basis for the processing to fulfill our legal obligations is Art. 6 (1) lit. c GDPR.
The legal basis for the processing to protect our legitimate interests is Art. 6 (1) lit. f GDPR.
The legal basis for processing personal data for vital interests of the data subject or another natural person is Art. 6 (1) lit. d GDPR.

Security measures
To protect your data, we have implemented technical and organizational security measures in accordance with Art. 32 GDPR, which we continuously adapt to the state of the art.
These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data.
We have established procedures to ensure that data subjects