Data Protection Policy

Information on the processing of personal data when visiting the website “www.loft-berlin.com” in accordance with Art. 13 of the EU General Data Protection Regulation (status 21.12.2020)

We, Covivio Office Holding GmbH (hereinafter referred to as “COHG”, further information about our company can be found in the imprint on our website: https://www.loft-berlin.com/impressum/), are pleased that you are visiting our website (www.loft-berlin.com).

This Data Protection Policy informs you about the processing of your personal data when using our website about the LOFT office project in Berlin Alt-Moabit and your rights in this respect according to the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

Should you have any questions regarding the content of the Data Protection Policy, you can contact us at any time at the following address:

datenschutz@covivio.immo

As changes in the law or changes in our internal company processes may require us to amend this Data Protection Policy, this Data Protection Policy may change over time. You can access and print out the current Data Protection Policy at https://www.loft-berlin.com/datenschutz.

§1 Scope of application

This Data Protection Policy applies to the processing of your personal data within the scope of your visit and your use of the Internet offer of “COHG” (as the person responsible; cf. § 10) under the domain www.loft-berlin.com as well as the various sub-domains and individual pages (hereinafter collectively referred to as “website”).

§2 Definitions

The “recipient” is a natural or legal person, public authority, agency or other body to whom personal data is disclosed, whether or not a third party. However, authorities which may receive personal data in the course of a specific investigation, in accordance with EU or national law are not considered as recipients. The processing of such data by those authorities shall be carried out in accordance with the applicable data protection legislation, in accordance with the purposes of the processing.

“Personal data” means any information relating to an identified or identifiable natural person. A person is considered to be identifiable, if it can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

The “responsible person” is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by EU law or by the law of the Member States, such EU or national law may determine, or provide for the criteria for determining, who is to be considered as responsible person.

“Processing” is any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, filing, storage, adaptation or modification, reading out, querying, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

§3 Guarantee of data security

We take technical and operational security precautions on our website to protect the personal data stored with us from access by third parties, loss or misuse and to enable secure data transfer. We must point out that, due to the structure of the Internet, unwanted access to data by third parties may occur. It is therefore also in your area of responsibility and interest to protect your data against misuse by encrypting or in any other way. Without appropriate protective measures, in particular data transmitted in without encryption, even if transmitted by e-mail, can be read by third parties.

§4 Data protection of minors

The protection of minors on the Internet is a matter of course and particularly desirable for the “COHG”. For this reason, “COHG” advises all parents and guardians to train minors to handle personal data on the Internet responsibly. Minors, especially children, should not transmit any personal data to “COHG” or via the Internet without the consent of their parents or guardians.

§5 Data protection (including the purposes and legal basis of data processing; duration of storage) on the website www.loft-berlin.com

In the following, we list the purposes of processing your personal data and the necessary legal basis. Your personal data will not be used for any other purposes than those specified in this Data Protection Policy. A transfer of your personal data to third parties without your consent will also not take place, except in the cases described in this Data Protection Policy, unless we are legally obliged to hand over this data.

In detail, we store the following data:

1. visit to the website

Please note that you are not obliged to provide us with your personal data via our website. The provision of your data via our website is neither legally nor contractually required nor necessary for the conclusion of a contract. However, failure to provide the data may mean that you cannot use certain functions/services on our website.

Every time you access website and every time you retrieve a file, data about this process is automatically stored in a log file (“log files”). These are:

  • the information which pages were visited, the time spent on the individual pages, the exit page (i.e. the point at which the website was left),
  • the search terms and the search engine that directed you to https://loft-berlin.com,
  • the screen resolution,
  • the browser,
  • the operating system,
  • the country from which access was made,
  • the information whether and when (date and time) downloads were made
  • the date and time of the retrieval.

The storage serves exclusively internal system-related purposes to ensure data security and the smooth operation of the IT systems used for this purpose. The storage of the data and information is carried out under the control of “COHG” on the server of our external IT service provider/web hosting provider in Germany on the basis of legitimate interests in accordance with Art. 6 para. 1 p. 1 lit. f) GDPR. The data of the log files of the previous day are archived daily and deleted within 14 days, as far as their processing is no longer necessary for these purposes.

2. contact form

When using our contact form, the following data is requested, whereby the information marked with * is mandatory:

  • First name
  • Last name
  • E-mail address*
  • Telephone number
  • Company
  • Message (as free text)

We use the data to process your personal request and to contact you.

This data is processed on the basis of Art. 6 para. 1 p. 1 lit. b) and lit. f) GDPR for the duration of the response to the enquiry, for a maximum of three months and insofar as it is necessary for the fulfilment of statutory retention obligations (e.g. § 257 HGB or § 147 AO).

3. Use of cookies/ integration of external service offers

We use functional/essential cookies at best. Essential cookies enable basic functions and are necessary for the proper functioning of the website. Cookies are small text files that are sent to your browser by our web server when you visit our website and are stored on your end device for later retrieval. We only use so-called session cookies (also referred to as temporary cookies) on the basis of our legitimate interests pursuant to Art. 6 Para. 1 Sentence 1 lit. f GDPR to improve user-friendliness, which are temporarily stored exclusively for the duration of use on our website. With current common browsers, this cookie is deleted again after the session has ended.

Polylang

We use the Polylang programme for the multilingualism of our website. Cookies from Polylang are set exclusively to recognise and record the language used or selected by the user. These cookies remain stored for one year and are then deleted.

Further information on data protection compliance can be found here: https://polylang.pro/doc/is-polylang-compatible-with-the-eu-cookie-law/.

Integration of Google Maps

On this website we use the offer of Google Maps, a service provided by the company Google Ireland Limited. This serves the purpose of displaying interactive maps directly on the website, making it easy for you to find the places we have indicated on the website and to enabling you to use the map function conveniently.

This application is accessed directly from Google’s servers so that the company receives the IP address currently assigned to you. By visiting the website, Google receives the information that you have called up the corresponding sub-page of our website. Whether and to what extent or for how long the IP address is stored and used internally by Google is beyond our knowledge. The legal basis for the integration of this service is Art. 6 para. 1 p. 1 lit. f GDPR.

We only use cookies for Google Maps if you consent to this. You give your consent when you click on “On” in the cookie settings under the heading external media. The cookie NID is then activated and unlocks the content of Google Maps. The duration of the cookie is 6 months. The legal basis of the processing is Art. 6 para. 1 sentence 1 lit. a) GDPR (consent).

This website uses Google Maps to display interactive maps and to create directions. Google Maps is a mapping service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. By using Google Maps, information about the use of this website, including your IP address and the (start) address entered as part of the route planner function, may be transmitted to Google in the USA. When you call up a web page on our website that contains Google Maps, your browser establishes a direct connection with Google’s servers. The map content is transmitted by Google directly to your browser, which then integrates it into the website. We therefore have no influence on the scope of the data collected by Google in this way. According to our knowledge, this is at least the following data:

  • Date and time of the visit to the website in question,
  • Internet address or URL of the website accessed,
  • IP address, (start) address entered as part of route planning.

We have no influence on the further processing and use of the data by Google and can therefore accept no responsibility for this. If you do not wish Google to collect, process or use data about you via our website and have therefore not given your consent to the use of Google Maps, you will not be able to use the map display. For the purpose and scope of the data collection and the further processing and use of the data by Google, as well as your rights in this respect and setting options for protecting your privacy, please refer to Google’s data protection information (https://policies.google.com/privacy?hl=de).

WP Google Maps

This website uses WP Google Maps Pro Plugin (cookie: wpgmza-api-consent-given) for customised map display. This cookie stores the cookie consent. WP Google Maps allows markers (places/addresses) to be added to a map generated by Google Maps. The use of the WP Google Maps plugin does not require the collection of any personal data from website visitors.

For more information on privacy, please visit: Privacy: https://www.wpgmaps.com/privacy-policy/

Borlabs cookies

Our website uses Borlabs Cookie Consent technology to obtain your consent to store certain cookies in your browser and to document this consent in a privacy-compliant manner. The provider of this technology is Borlabs – Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg (hereinafter referred to as Borlabs).

When you enter our website, a Borlabs cookie is stored in your browser, in which the consents you have given or the revocation of these consents are stored. This data is not shared with the Borlabs cookie provider.

The collected data will be stored until you request us to delete it or until you delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected. Details on the data processing of Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.

Borlabs Cookie Consent Technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 p. 1 lit. c GDPR.

§6 Data protection (including purposes and legal basis of data processing; duration of storage) when contacting us

In the event that you contact us by telephone, post or e-mail, we will process the data you provide via these communication channels to process and answer your request. We store this information for up to three months for verification purposes. Depending on the subject of the enquiry, it may occur in individual cases that the data is stored for the time during which claims can be asserted against our company (statutory limitation period of three or up to thirty years), or that we are obliged to store the data for a longer period due to statutory retention periods. The legal basis for data processing is Art. 6 para. 1 p. 1 lit. f) GDPR.

§7 Transfer of data to third parties

In principle, a data transfer to third parties does not take place. Within the framework of the offers on our website, we sometimes use external service providers who process personal data on our behalf (e.g. IT services). These service providers have been commissioned by us in writing and carefully selected. They are bound by our instructions and are regularly checked by us with regard to compliance with data protection requirements. All systems in which your personal data is stored and to which external service providers have access are password-protected and accessible only to those persons who need your data to process the purposes authorised by you. Within the framework of the legal provisions, we ensure that the data is processed, used and transmitted to the relevant external service providers as agreed herein. Beyond this, your data will not be passed on to third parties. Data will only be passed on if this is required and permitted by law.

§8 Consent and revocation of your consent

If you have given us permission to process your personal data, you can revoke this permission at any time. The revocation of your consent is effective for the future. The legality of the processing of your personal data up to the time of the revocation remains unaffected. Please send your revocation to: datenschutzverantwortlicher@covivio.immo

If you revoke your consent, we will process your personal data collected in this context to answer your inquiry. The processing of your personal data is carried out in order to fulfil a legal obligation on the basis of Art. 6 para. 1 p. 1 lit. c) GDPR.

§9 What rights do you have?

You have the possibility to exercise various rights.

For example, you have the right to

  • get information about which personal data we have stored about your person. If, despite our efforts to ensure correct and up-to-date data, we have stored incorrect data, we will correct it.
  • Furthermore, you have the right to request the deletion of your data; we will comply with this deletion request, unless in exceptional cases, there is a case that entitles us to further processing.
  • In addition, if there is a justified reason for doing so, you can demand the restriction of processing.
  • Furthermore, you have the right to object to data processing and the right to request a copy of the data.

If you have given us consent to process your data or if you have voluntarily provided us with your personal data in non-mandatory fields in the online forms on our website, you can revoke the processing of this data at any time with effect for the future.

§10 Person responsible and contact details

The person responsible for data processing in the cases described herein is:

Covivio Office Holding GmbH
Knesebeckstraße 3, 10623 Berlin, Phone: 0049(0)30 221821-120 E-mail:
datenschutzverantwortlicher@covivio.immo

Further information about our company, details of the persons authorised to represent us and also further contact details can be found in our imprint on our website: https://www.loft-berlin.com/impressum/.

If you have any questions about the processing of your personal data or about data protection in general, the easiest way to contact us and our data protection officer is to write to datenschutz@covivio.immo.

§11 Right of complain

You have the right to complain to a data protection supervisory authority. In Berlin, Germany, this is the following supervisory authority:

Berliner Beauftragter für Datenschutz und Informationsfreiheit
(Berlin Commissioner for Data Protection and Freedom of Information)

Friedrichstr. 219
10969 Berlin Tel.: 030/13889-0
FAX: 030/215-5050
E-mail: mailbox@datenschutz-berlin.de
Internet: http://www.datenschutz-berlin.de

§12 Change of the Data Protection Policy

The provisions of this Data Protection Policy apply in the version valid at the time. The content of this Data Protection Policy can be supplemented or changed. The updated Data Protection Policy applies from the time it is published on our website.