Privacy Policy

Controller (name and address)

Stratum Global GmbH
Duisburger Straße 19
40477 Düsseldorf, Germany
Phone: +49 172 6587622
Email: privacy@stratum-global.com
Website: https://stratum-global.com

is the controller within the meaning of the EU General Data Protection Regulation (GDPR) and other national data protection laws.

Data protection officer (name and address)

The controller’s data protection officer is:

AGOR AG
Niddastraße 74
60329 Frankfurt am Main, Germany
Phone: +49 (0) 69 - 9494 32 410
Email: info@agor-ag.com
Website: www.agor-ag.com

General information on data processing

Scope of processing of personal data

As a rule, we collect and use personal data of users of our website only to the extent necessary to provide a functional website and to deliver our content and services.

In principle, the collection and use of our users’ personal data takes place only with the user’s consent. An exception applies in cases where processing is permitted by statutory provisions or where obtaining prior consent is not possible for factual reasons.

Legal basis for processing personal data

The legal bases for processing personal data generally arise from:

• Art. 6(1) sentence 1 lit. a GDPR (DSGVO) where the data subject’s consent is obtained.
• Art. 6(1) sentence 1 lit. b GDPR (DSGVO) for processing necessary for the performance of a contract to which the data subject is party. This also includes processing operations required to carry out pre-contractual measures.
• Art. 6(1) sentence 1 lit. c GDPR (DSGVO) for processing necessary to comply with a legal obligation.
• Art. 6(1) sentence 1 lit. d GDPR (DSGVO) where vital interests of the data subject or another natural person require processing of personal data.
• Art. 6(1) sentence 1 lit. f GDPR (DSGVO) where processing is necessary to protect legitimate interests of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not override those interests. To rely on legitimate interests as a legal basis, we coordinate with the data protection officer and perform an assessment for each relevant process. The following three conditions must be met:
  • The controller or a third party has a legitimate interest in the data processing.
  • The processing is necessary to safeguard the legitimate interest.
  • The interests or fundamental rights and freedoms of the data subject, which require protection of personal data, do not override the legitimate interest.

Data deletion and storage period

Users’ personal data will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage beyond this may take place if this is provided for by European or national legislators in EU regulations, laws or other provisions to which the controller is subject. Data will also be blocked or deleted when a statutory retention period expires, unless continued storage is necessary for contract conclusion or performance.

Use of our website – general information

Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the accessing device. The following information may be collected:

• Information about the browser type and version used
• The user’s operating system
• The user’s internet service provider
• The user’s IP address
• Date and time of access
• Websites from which the user’s system accesses our website (referrers)
• Websites accessed by the user’s system via our website

This data is stored in our system’s log files. This data is not stored together with other personal data of the user.

Purpose and legal basis for data processing

Temporary storage of the IP address by our system is necessary to deliver the website to the user’s device. For this purpose, the user’s IP address must remain stored for the duration of the session.

Storage in log files is carried out to ensure the functionality of the website. In addition, the data helps us optimize the website and ensure the security of our IT systems. No evaluation of the data for marketing purposes takes place in this context.

The legal basis for the temporary storage of data and log files is Art. 6(1) sentence 1 lit. f GDPR (DSGVO).

The collection of personal data to provide our website and the storage of data in log files is mandatory for operating the website. Therefore, the user has no right to object.

Duration of storage

Your data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. Where data is collected to provide the website, it is deleted when the respective session ends.

Where data is stored in log files, it is deleted after no more than seven days. Further storage is possible; in that case, users’ IP addresses are deleted or anonymized so that the accessing client can no longer be assigned.

General information on the use of cookies

We currently do not use cookies on our website. Cookies are text files that are stored in the internet browser or by the internet browser on the user’s device. When a website is accessed, a cookie may be stored on the operating system. It contains a characteristic string that enables unique identification of the browser when the website is accessed again.

Cookies are generally used to make a website more user-friendly.

TDDDG

The legal basis for storing cookies, device identifiers and similar tracking technologies, or for storing information on and accessing information from the end user’s terminal equipment, is the European ePrivacy Directive in conjunction with the German Telecommunications-Digital Services Data Protection Act (Telekommunikation-Digitale-Dienste- Datenschutz-Gesetz, “TDDDG”).

Please note that the legal bases for processing personal data collected in this context then arise from the GDPR (Art. 6(1) sentence 1 GDPR/DSGVO). The legal basis applicable in the specific case can be found below for the relevant cookie or processing activity.

The primary legal basis for storing information on the end user’s device (in particular, storing cookies) is your consent under Section 25(1) sentence 1 TDDDG. Where cookies are used, consent is given when visiting the website (and does not have to be given) and can be revoked at any time in the cookie settings.

Pursuant to Section 25(2) No. 2 TDDDG, consent is not required if the storage of information on the end user’s device or access to information already stored on the device is strictly necessary in order to provide a telemedia service expressly requested by the user. Cookie settings specify which cookies are classified as strictly necessary (often referred to as “technically necessary cookies”) and therefore fall under the exception in Section 25(2) TDDDG and do not require consent.

GDPR (DSGVO)

Where data is stored and transmitted when using cookies, the following applies:

The legal basis for processing personal data using cookies is Art. 6(1) sentence 1 lit. f GDPR (DSGVO). The purpose of technically necessary cookies is to simplify the use of the website.

We do not use user data collected via technically necessary cookies to create user profiles.

Where cookies are used, they are stored on the user’s device and transmitted from the device to our site. As a user, you therefore have control over the use of cookies. You can restrict or deactivate the transmission of cookies by changing your browser settings. Stored cookies can also be deleted there. Please note that if you deactivate cookies, you may not be able to use all functions of our website.

The legal basis for processing personal data using cookies for analytics and advertising purposes is Art. 6(1) sentence 1 lit. a GDPR (DSGVO), where the user has given consent.

Your rights (data subject rights)

Right of access

You have the right to obtain from us, as the controller, information on whether and which personal data concerning you is processed, as well as further information in accordance with the statutory provisions under Arts. 13 and 14 GDPR (DSGVO).

You can assert your right of access at: privacy@stratum-global.com

Right to rectification

If personal data concerning you that we process is inaccurate or incomplete, you have the right to rectification and/or completion. The rectification will be carried out without undue delay.

Right to restriction of processing

You have the right to restriction of processing of personal data concerning you in accordance with the statutory provisions (Art. 18 GDPR / DSGVO).

Right to erasure

If the grounds set out in Art. 17 GDPR (DSGVO) apply, you may request that personal data concerning you be erased without undue delay.

Please note that the right to erasure does not apply insofar as processing is necessary for one of the exceptions listed in Art. 17(3) GDPR (DSGVO).

Right to be informed

If you have asserted the right to rectification, erasure or restriction of processing, we are obliged to inform all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves disproportionate effort. You also have the right to be informed about these recipients.

Right to data portability

Under the GDPR (DSGVO), you also have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, or to request that it be transmitted to another controller.

Right to withdraw consent under data protection law

You have the right to withdraw your declaration of consent under data protection law at any time. Please note that withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Right to object

You also have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you that is carried out on the basis of Art. 6(1) sentence 1 lit. e or f GDPR (DSGVO).

Automated individual decision-making, including profiling

Under the GDPR (DSGVO), you also have the right not to be subject to a decision based solely on automated processing – including profiling – that produces legal effects concerning you or similarly significantly affects you.

Right to lodge a complaint with a supervisory authority

If you believe that the processing of personal data concerning you violates the GDPR (DSGVO), you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement.

Data transfers outside the EU

The GDPR ensures a uniformly high level of data protection within the European Union. When selecting service providers, we therefore use European partners where possible when your personal data is to be processed. Only in exceptional cases will we have data processed outside the European Union in the context of using third-party services. We only permit processing of your data in a third country if the special requirements of Arts. 44 et seq. GDPR (DSGVO) are met. This means that the processing may only take place on the basis of specific safeguards, such as an adequacy decision recognized by the EU Commission or compliance with officially recognized contractual obligations (so-called “standard contractual clauses”).

EU–US Trans-Atlantic Data Privacy Framework

Under the so-called “Data Privacy Framework” (DPF), the EU Commission has also recognized the level of data protection for certain US companies as adequate under the adequacy decision of 10 July 2023. The list of certified companies and further information on the DPF can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/s/participant-search.

Data processing under Swiss data protection law (Swiss DSG)

In general, use of our website is subject to the GDPR (DSGVO). If you also visit our website from Switzerland and the related data processing affects you as a Swiss citizen, these data protection provisions apply to you analogously to the GDPR under the Swiss Federal Act on Data Protection (“Swiss DSG” as amended on 1 September 2023).

Swiss DSG generally does not require stating a legal basis. Accordingly, we process your data from Switzerland only if the processing is lawful, carried out in good faith and proportionate pursuant to Art. 6(1) and (2) Swiss DSG. Furthermore, we collect your data only for specific purposes recognizable to the data subject and process it only in a way that is compatible with those purposes pursuant to Art. 6(3) Swiss DSG.

Please note in this context that certain terms used under the GDPR (DSGVO) may be phrased differently under Swiss DSG but have the same legal meaning. For example, the GDPR terms “processing” of “personal data” as well as “legitimate interest” and “special categories of data” correspond to the Swiss DSG terms “processing” of “personal data”, “overriding interest” and “particularly sensitive personal data”.

The data subject rights described here under Arts. 12 et seq. GDPR (DSGVO) can also be asserted by data subjects in Switzerland analogously under Arts. 25 et seq. Swiss DSG.

Minors under 16 years of age

Minors under 16 years of age are expressly not the target audience of our website and our offers on this website. We point out that parents or legal guardians should accompany the online activities of their children. Minors under 16 years of age should not transmit any personal data to us without the consent of their parents or legal guardians. We do not explicitly request personal data from minors under 16 years of age, do not knowingly collect it, and do not pass it on to third parties.

Electronic contact

You can contact us via the email address provided. In this case, the personal data transmitted with the email will be stored.

Your data will not be passed on to third parties in this context; it will be used exclusively to process the communication.

The legal basis for processing the contact inquiry and handling it is generally Art. 6(1) sentence 1 lit. b GDPR (DSGVO).

Your data will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is deemed ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

Social media

Social media platforms

LinkedIn
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Privacy policy: https://www.linkedin.com/legal/privacy-policy
Opt-out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Social media presence

We operate fan pages within various social networks and platforms in order to communicate with customers, interested parties and users active there and to inform them about our services.

Please note that your personal data may be processed outside the European Union, which may entail risks for you (e.g., when enforcing your rights under European/German law).

User data is typically processed for market research and advertising purposes. For example, usage behavior and resulting interests may be used to create usage profiles. These profiles can in turn be used to place advertising within and outside the platforms that presumably matches users’ interests. For these purposes, cookies are generally stored on users’ devices in which usage behavior and user interests are stored. In addition, data may also be stored in the usage profiles independently of the devices used by the users (especially if users are members of the respective platforms and are logged in).

Processing of users’ personal data is based on our legitimate interests in effectively informing and communicating with users pursuant to Art. 6(1) sentence 1 lit. f GDPR (DSGVO). If users are asked by the respective providers to consent to data processing (i.e., they declare their consent, for example by ticking a checkbox or confirming a button), the legal basis is Art. 6(1) sentence 1 lit. a GDPR (DSGVO).

Further information on the processing of your personal data and your options to object can be found at the links provided above for the respective provider. Data subject rights (access and others) can also be asserted vis-à-vis the providers, as only they have direct access to user data and the corresponding information. Of course, we are available to answer questions and will support you if you need assistance.

The legal basis for processing personal data using cookies is Art. 6(1) sentence 1 lit. f GDPR (DSGVO). The purpose of technically necessary cookies is to simplify the use of our website.

Please note that certain functions of our website may only be offered with the use of cookies.