• Select your language
  • EN
  • DE
  • Specialist information

Privacy Policy

Privacy Policy

Responsible for the processing of data is:
Medicos Kosmetik GmbH & Co. KG
Hafengrenzweg 3
48155 Münster
Germany
E-Mail: datenschutz@dermasence.de

Thank you for visiting our website. Protection of your privacy is very important to us. Below you will find extensive information about how we handle your data.

1. Access data and hosting

You may visit our website without revealing any personal information. With every visit on the website, the web server stores automatically only a so-called server log file which contains e.g. the name of the requested file, your IP address, the date and time of the request, the volume of data transferred and the requesting provider (access data), and documents the request. These access data are analysed exclusively for the purpose of ensuring the smooth operation of the website and improving our online appearance. This serves according to Art. 6 (1) 1 lit. f GDPR the protection of our legitimate interests in the proper presentation of our online appearance that are overriding in the process of balancing of interests.

 Hosting

The services for hosting and displaying the website are partly provided by our service providers on the basis of processing on our behalf. Unless otherwise stated in this privacy policy, all access data and all data collected in forms provided for this purpose on this website are processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

2. Data processing for the purposes of establishing contact and customer communication

2.1 User account

We collect personal data that you voluntarily submit to us when you contact us (e.g. via contact form or by email) or open a user account with us. Mandatory fields are marked as such because we absolutely need those data to process your contact request or open your user account, and you would otherwise not be able to create your user account or send the contact request. It is evident in each input form what data are collected.
​​​​​​​We use the data that you disclose to us to process your enquiries according to Art. 6 (1) (b) GDPR. Upon deletion of your customer account, any further processing of your data will be restricted, and your data will be deleted upon expiry of the retention period applicable under relevant regulations, unless you expressly consent to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by law, of which we inform you in this notice. Your user account can be deleted at any time. For this purpose you can either send a message to the contact option specified below or use the relevant function available in the user account.

2.2 Establishing contact

We collect personal data if you voluntarily provide it when contacting us (e.g. via contact form or e-mail). Mandatory fields are marked as such because in these cases we necessarily need the data to process your contact and you cannot send the contact without providing it. Which data is collected can be seen from the respective input forms. We use the data you provide to process your enquiries in accordance with Art. 6 (1) (b) GDPR.

After complete processing of your enquiry, your data will be restricted for further processing and deleted after expiry of the retention periods under tax and commercial law in accordance with Art. 6 (1) (c) GDPR, unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this privacy policy.

3. Marketing via e-mail, mail, telephone

3.1 Email newsletter with subscription, newsletter tracking with separate consent

If you subscribe to our newsletter, we will regularly send you our email newsletter based on your consent according to Art. 6 (1) (a) GDPR, using the data required or disclosed by you separately for this purpose.

You can unsubscribe from the newsletter at any time. This can either be done by sending a message to the contact option described in this privacy policy or via a link provided for this purpose in the newsletter. After unsubscribing, we will delete your e-mail address from the list of recipients, unless you have expressly consented to the further use of your data or we have reserved the right to use your data for other purposes that are permitted by law and about which we inform you in this privacy policy.

If you have additionally given us your consent in accordance with Art. 6 (1) 1 a GDPR to analyse our newsletter, we will also analyse your interaction with our newsletter by measuring, storing and evaluating opening rates and click-through rates for the purpose of designing future newsletter campaigns ("newsletter tracking").

For this evaluation, the emails sent contain single-pixel technologies (e.g. so-called web beacons, tracking pixels) that are stored on our website. For the evaluations, we link the following "newsletter data" in particular

  • the page from which the page was requested (so-called referrer URL),
  • the date and time of the request,
  • the description of the type of web browser used,
  • the IP address of the requesting computer,
  • the e-mail address,
  • the date and time of registration and confirmation

and the single-pixel technologies with your e-mail address or your IP address and, if applicable, an individual ID. Links contained in the newsletter may also contain this ID.

Unsubscribing from newsletter tracking is possible at any time and can be done either by sending a message to the contact option described or via a link provided for this purpose in the newsletter.

The information is stored for as long as you are subscribed to the newsletter.

3.2 Newsletter mailing

The newsletter and the newsletter tracking shown above may also be sent by our service providers as part of processing on our behalf. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

3.3 Sending newsletters to existing customers

If you have provided us with your e-mail address when purchasing goods or services, we would like to contact you regularly by e-mail with offers for similar products or services from our range. In accordance with Section 7 (3) UWG, we are permitted to do this without your separate consent. Your data is processed exclusively on the basis of our legitimate interest in personalised direct advertising in accordance with Art. 6 para. 1 lit. f) GDPR. If you have initially objected to the use of your e-mail address for this purpose, we will of course respect this and no e-mails will be sent. You have the option to object to the use of your email address for advertising purposes at any time, with effect for the future. You can do this simply by sending an e-mail to the aforementioned controller at datenschutz/at/dermasence/dot/de. The transmission costs incurred are limited to the basic tariffs. Once we have received your objection, we will immediately stop using your e-mail address for advertising purposes.

3.4 Postal advertising and your right to opt out

Furthermore, we reserve the right to use your first and last name and your postal address for our advertising purposes, e.g. for sending interesting offers and information about our products by post. This serves to safeguard our legitimate interests in promoting and advertising our products to customers according to Art. 6 (1) (f) GDPR that are overriding in the process of balancing of interests. You can opt out of the storage and use of your data for these purposes at any time by sending a message to the contact option specified below.

The advertisements are sent to you by our service provider who processes data on our behalf and to whom we disclose your data for this purpose.

3.5 Phone advertising

If you have given your consent in accordance with Art. 6 (1) (a) GDPR, we will use the data required for this purpose or provided separately by you for our own advertising purposes, e.g. to inform you about interesting offers and our products. You can withdraw your consent at any time, either by sending a message to the contact option described in this privacy policy or by verbal notification within each call. After withdrawal, we will delete your telephone number unless you have expressly consented to the further use of your data or we have reserved the right to use your data for other purposes that are permitted by law and about which we inform you in this privacy policy.

4. Information on third country transfer (data transfer to third countries)

We use technologies from service providers on our website whose server locations may be located in third countries outside the EU or the EEA. This also includes the USA. For the USA there is an adequacy decision by the EU Commission, the ‘EU-US Data Privacy Framework’ (DPF). The DPF obliges US companies to comply with the European level of data protection. A data transfer to the USA is therefore permissible if the recipient is DPF-certified or has suitable additional additional guarantees.

Suitable guarantees in the form of contractually agreed standard contractual clauses of the EU Commission or binding internal data protection regulations (Binding Corporate Rules) are possible in principle, but require prior review by the contracting parties as to whether an adequate level of protection can be guaranteed. According to the judgement of the ECJ, it may be necessary to take additional protective measures. We have generally agreed the standard data protection clauses issued by the EU Commission, which remain valid, with the third-party technologies we use that process personal data in a third country such as the USA. Where possible, we also agree additional guarantees to ensure that adequate data protection is guaranteed in the USA or other third countries.

Notwithstanding this, it may happen that, despite all contractual and technical measures, the level of data protection in the third country does not correspond to that of the EU. In such cases, we will ask you, if necessary, for your consent to transfer your personal data to a third country in accordance with Art. 49 para. 1 lit. a GDPR as part of the cookie consent process. This relates in particular to the transfer of data to the USA.

In particular, there is a risk that US authorities may receive access rights to your personal data that are not sufficiently restricted from an EU perspective without us as the data exporter or you as the data subject being aware of this and you may not have any legal remedies available to you to prevent this or to take action against such access.

5. Cookies and further technologies

 General information

In order to make visiting our website attractive and to enable the use of certain functions, to display suitable products or for market research, we use technologies on various pages, including so-called cookies. Cookies are small text files that are automatically stored on your end device. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on your end device and enable us to recognise your browser during your next visit (persistent cookies).

Protection of privacy for terminal devices
When you use our online services, we use technologies that are absolutely necessary in order to provide the telemedia service you have expressly requested. The storage of information in your terminal device or access to information that is already stored in your terminal device does not require consent in this respect.

For functions that are not absolutely necessary, the storage of information in your terminal device or access to information that is already stored in your terminal device requires your consent. Please note that if you do not give your consent, parts of the website may not be available for unrestricted use. Any consent you may have given will remain valid until you adjust or reset the respective settings in your terminal device.

Any downstream data processing through cookies and other technologies

In addition, we use technologies to fulfil the legal obligations, which we are subject to (e.g. to be able to prove consent to the processing of your personal data) as well as for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.

You can find the cookies settings for your browser by clicking on the following links: Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

If you have consented to the use of the technologies in accordance with Art. 6 (1) (a) GDPR, you can withdraw your consent at any time by sending a message to the contact option described in the privacy policy or

How can I configure the cookie settings of my browser?

Each browser is different in the way it manages cookie settings. This is described in the help menu of each browser, which explains how to change your cookie settings. You can find these for each browser under the following links:
Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

What types of cookies are being used?

Targeting cookies: These cookies record information about your visit to the website, previously viewed pages and links you clicked. We use this information to tailor our website and displayed ads to your interests.

Marketing Cookies: ​​​​​​​These cookies record information about your visit to the website, previously viewed pages and links you clicked. We use this information to tailor our website and displayed ads to your interests.

Essential cookies: These cookies are necessary to enable you to use our website. This includes e.g. cookies that enable you to log into the customer area or add items to your shopping cart.

Analytical / performance cookies: These cookies enable collecting anonymised data about user behaviour on our website. We analyse them e.g. to improve the functionality of our website and recommend you products that will be interesting to you.

Functional cookies: These cookies are used for certain features of our website, e.g. to improve the website’s navigation, or deliver to you customised and relevant information (e.g. ads that match your interests).

Cookies consent with CCM19 Cookie Consent Management 

Our website uses the cookie consent management tool ‘CCM19’ to obtain your consent for necessary cookies and cookie-based applications and to document them in accordance with the GDPR. The provider of this technology is Papoo Software & Media GmbH - Dr Carsten Euwens, Auguststr. 4, 53229 Bonn, Germany (hereinafter referred to as CCM19).

When you visit our website, a banner appears that allows you to give your consent for certain cookies and cookie-based applications. As long as no consent is given, the cookie consent tool blocks the placement of necessary cookies. The tool collects certain user information when visiting our website, including the IP address, in order to assign page views to individual users and to log the consent settings made and save them during the session. This data is not forwarded to CCM19.

The data collected will be stored until you ask us to delete it. CCM19 will then delete the data manually or as soon as the purpose for storing the data no longer applies. Statutory retention periods remain unaffected by this.

The use of CCM19 cookie consent technology serves to obtain the legally required consents for the use of necessary cookies and cookie-based applications. The legal basis for this is Art. 6 para. 1 sentence 1 lit. c GDPR.

We have concluded an order processing contract with CCM19, which obliges the service provider to protect your data and not to pass it on to third parties.

You can find more information here: https://www.ccm19.de/cookie-banner.html

 

Cookie settings

Revoke consent to load third-party content:

6. Use of cookies and other technologies

We use the following cookies and other third-party technologies on our website. Unless otherwise specified for the individual technologies, this is done on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. The data collected in this context will be deleted after the relevant purpose has been fulfilled and we have ended the use of the respective technology. You can withdraw your consent at any time with effect for the future. Further information on your withdrawal options can be found in the section "cookies and further technologies". Further information, including the basis of our cooperation with the service providers can be found within the respective technologies. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

6.1 Use of Google services

We use the following technologies of Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google technologies about your use of our website is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. Unless otherwise specified for the specific technologies, data processing is based on an agreement concluded for the respective technology between jointly responsible parties in accordance with Art. 26 GDPR. Further information about data processing by Google can be found in Google's privacy policy.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has established by decision an adequate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. For these countries there is no adequacy decision by the European Commission. Our cooperation is based on standard data protection clauses adopted by the European Commission.

 Google Analytics

For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which usage profiles are created using pseudonyms. Cookies may be used for this purpose. If you visit our website from the EU, your IP address will be stored on a server located in the EU to derive location data and then deleted immediately before the traffic is forwarded to further Google servers for processing. The data processing is carried out on the basis of an order processing agreement by Google.

For web analytics purposes, the extension function of Google Analytics Google Signals enables so-called "cross-device tracking". If your internet-enabled devices are linked to your Google Account and you have activated the "personalised advertising" setting in your Google Account, Google can generate reports on your usage behaviour (in particular cross-device user numbers), even if you change your device. We do not process personal data in this respect; we only receive statistics based on Google Signals.

For web analytics and advertising purposes, the extension function of Google Analytics enables the so-called DoubleClick cookie to recognize your browser when visiting other websites. Google will use this information to compile reports about your website activities and to provide other services related to the use of the website.

Demographic characteristics in Google Analytics 

This website uses the ‘demographic characteristics’ function of Google Analytics. This allows reports to be created that contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google and from visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account.

 Google Tag Manager

By means of the Google Tag Manager, we can manage various codes and services on our website. When implementing the individual tags, Google may also process personal data (e.g. IP address, online identifiers (including cookies)). The data processing is carried out on the basis of an order processing agreement by Google.

By using the Google Tag Manager, a simplified integration of various services/technologies can be achieved.

If you do not wish to use individual tracking services and have therefore deactivated them, the deactivation remains in place for all affected tracking tags that are integrated by the Google Tag Manager.

 YouTube Video Plugin

In order to integrate third party content, data (IP address, time of visit, device and browser information) are collected via the YouTube Video Plugin in the expanded data protection mode used by us, transmitted to Google and then processed by Google only when you play a video.

6.2 Other providers of web analytics - and online-marketing-services

 Use of Matomo as a software solution for web analytics

For the purpose of web analytics, the software Matomo of InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which user profiles are created using pseudonyms. Cookies may be used for this purpose. The pseudonymised user profiles will not be merged with personal data about the bearer of the pseudonym without explicit consent of the user, which must be given separately. The data processing by Matomo takes place on our servers.

 Use of Hotjar for web analytics

For the purpose of web analytics, technologies of Hotjar Ltd, Dragonara Business Centre 5th Floor, Dragonara Road, Paceville St Julian's STJ 3141, Malta (hereinafter "Hotjar") are used to automatically collect and store data (IP address, time of visit, device and browser information as well as information on your use of our website), from which user profiles are created using pseudonyms. 

Hotjar is a tool for analysing your user behaviour on our website. Hotjar enables us to record your mouse and scroll movements and clicks, among other things. Hotjar can also determine how long you remain with the mouse pointer in a certain position. Hotjar uses this information to create so-called heat maps, which can be used to determine which website areas are favoured by website visitors.

We can also determine how long you stayed on a page and when you left it. We can also determine at which point you cancelled your entries in a contact form (so-called conversion funnels).

Hotjar can also be used to obtain direct feedback from website visitors. This function serves to improve the website operator's web offerings.

Hotjar uses cookies. Cookies are small text files that are stored on your computer and saved by your browser. They are used to make our website more user-friendly, effective and secure. In particular, these cookies can be used to determine whether our website has been visited with a specific end device or whether the Hotjar functions have been deactivated for the browser in question. Hotjar cookies remain on your device until you delete them. 

The use of Hotjar and the storage of Hotjar cookies is based on Art. 6 para. 1 lit. a GDPR. 

Deactivating Hotjar

If you wish to deactivate data collection by Hotjar, click on the following link and follow the instructions there: https://www.hotjar.com/opt-out

Please note that Hotjar must be deactivated separately for each browser or end device.

For more information about Hotjar and the data collected, please refer to Hotjar's privacy policy at the following link: https://www.hotjar.com/privacy

Contract for order processing

We have concluded an order processing contract with Hotjar in order to implement the strict European data protection regulations.

 Use of Vimeo video plugin for integration of third-party content

For the purpose of integrating third-party content, data (IP address, time of visit, device and browser information) is collected via the video plugin by Vimeo Inc., 330 West 34th Street, 5th Floor, New York 10011, USA (hereafter "Vimeo"), transmitted to, and then processed by Vimeo.  The data processing is carried out on the basis of an agreement between jointly responsible parties in accordance with Art. 26 GDPR. Google Analytics is automatically integrated into the Vimeo video plugin. For the purpose of web analytics, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information, as well as information on your use of our website), from which usage profiles are created using pseudonyms. Cookies can be used for this purpose. Google Analytics is an offer from Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our website is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. If you visit our website from the EU, your IP address will be stored on a server located in the EU to derive location data and then deleted immediately before the traffic is forwarded to further Google servers for processing. We have no influence and access to the data processing by Vimeo, including the settings and results of Google Analytics.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has established by decision an adequate level of data protection.

Our service providers are located and/or use servers in countries outside the EU and the EEA. For these countries there is no adequacy decision by the European Commission. Our cooperation is based on standard data protection clauses adopted by the European Commission.

.

7. Contact options and your rights

7.1 Your rights

Being the data subject, you have the following rights according to:

  • art. 15 GDPR, the right to obtain information about your personal data which we process, within the scope described therein;
  • art. 16 GDPR, the right to immediately demand rectification of incorrect or completion of your personal data stored by us;
  • art. 17 GDPR, the right to request erasure of your personal data stored with us, unless further processing is required
    • to exercise the right of freedom of expression and information;
    • for compliance with a legal obligation;
    • for reasons of public interest or
    • for establishing, exercising or defending legal claims;
  • art. 18 GDPR, the right to request restriction of processing of your personal data, insofar as
    • the accuracy of the data is contested by you;
    • the processing is unlawful, but you refuse their erasure;
    • we no longer need the data, but you need it to establish, exercise or defend legal claims, or
    • you have lodged an objection to the processing in accordance with art. 21 GDPR;
  • art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request its transmission to another controller;
  • art. 77 GDPR, the right to complain to a supervisory authority . As a rule, you can contact the supervisory authority at your habitual place of residence or workplace or at our company headquarters.
     

Right to object
If we process personal data as described above to protect our legitimate interests that are overriding in the process of balancing of interests, you may object to such data processing with future effect. If your data are processed for direct marketing purposes, you may exercise this right at any time as described above. If your data are processed for other purposes, you have the right to object only on grounds relating to your particular situation.

After you have exercised your right to object, we will no longer process your personal data for such purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

This does not apply to the processing of personal data for direct marketing purposes. In such a case we will no longer process your personal data for such purposes.

 

7.2 Contact options

Data protection Officer:
Herr Said-Elham Sadat / DSB Münster GmbH
Martin-Luther-King-Weg 42 - 44
48155 Münster
Germany+49 (0) 251 718 79 - 110
ssadat@dsb-ms.de

If you have any questions about how we collect, process or use your personal data, want to enquire about, correct, restrict or delete your data, or withdraw any consents you have given, or opt-out of any particular data use, please contact us directly using the contact data provided in our supplier identification.

Datenschutzerklärung erstellt mit dem Trusted Shops Rechtstexter

Follow us on social media!