We value our ability to provide you with information through our interactions with you, whether they are face to face interactions, via telephone, through our websites or one of the other ways you can choose to interact with us.
This Privacy Notice explains how HEUMANN collects, uses, and shares personal information that you provide to us, or that we may otherwise obtain or generate, which relates to you. Please take a moment to review this Privacy Notice and, if you have any questions, feel free to get in touch via one of the methods set out below.
Please note that the English version of this website is intended for English speaking visitors outside of Germany and the German version is intended for visitors from Germany. The German language version has additional features and offers services that are not available to the English version of the website. Those additional features and services and their implications on the data we process are described in the German Privacy Notice only.
This Privacy Notice defines the following:
I. Name and address of the responsible party
II. Name and address of the Data Protection Officer
III. General information on data processing
IV. Logfiles
V. Cookie Policy
VI. Contact form and email contact
VII. Data Subject Rights
All personal data is being processed according to German and European laws.
Heumann Pharma GmbH & Co. Generica KG
Südwestpark 50
90449 Nuremberg
Germany
Phone: +49 0911 4302-0
E-Mail: info@heumann.de
Website: www.heumann.de
The responsible party’s Data Protection Officer is:
TÜV Rheinland i-sec GmbH
E-Mail: datenschutz@heumann.de
or:
Heumann Pharma GmbH & Co. Generica KG
c/o Data Protection Officer
Südwestpark 50
90449 Nuremberg
Germany
Website: www.heumann.de
We only collect, process and use personal data about the use of our webpages (usage data) insofar as is necessary to enable the user to use or website or our services. Legal retention requirements remain unaffected.
Every time the pages of HEUMANN are accessed usage data are transmitted by the respective browser and saved in server log files. The data records saved in the process contain the following data:
1. product and version information for the browser
2. name of retrieved page
3. IP address
4. referrer URL (URL from which you arrived at the webpages)
5. date and time of retrieval
6. transferred data volume
These data are not merged with other data sources and cannot be attributed to individual persons.
These data are not merged with other data sources. Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in technically error-free display and optimization of the website. The server log files must be obtained for this purpose.
Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR.
The temporary collection of the IP address by the system is necessary to display the website technically error-free. Therefore, the website saves the IP address for the duration of the session. Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR.
a) Description and scope of the data processing
The webpages use so-called cookies in part. Cookies do not harm your computer and do not contain any viruses. Cookies serve to make our offering more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and saved by your browser.
Most of the cookies we use are ‘session cookies’. These cookies are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser the next time you visit. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, refuse cookies in specific cases or in general, or activate automatic deletion of cookies when you close the browser. If you disable cookies, you may not be able to use all the features of our website.
Google Analytics
This website uses features of the Google Analytics web analysis service. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland. Google Analytics uses so-called cookies. These are text files saved on your computer to enable analysis of your use of the website. The information on your use of this website generated by the cookie is usually transferred to and saved on a Google server in the US.
Saving of Google Analytics cookies and use of this analysis tool take place on the basis of Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize the website.
IP anonymization
We use Google Analytics solely with activated IP anonymization. This means that users’ IP addresses are truncated by Google within the Member States of the European Union or other contracting parties to the European Economic Area prior to being transmitted to the US. Through this, your IP address is truncated by Google within the Member States of the European Union or other contracting parties to the European Economic Area prior to being transmitted to the US. Only in exceptional cases is the complete IP address transmitted to a Google server in the US and truncated there. Google uses this information on behalf of the operator of this website to evaluate your use of the website in order to compile reports about the website activities and to provide additional services related to use of the website and the internet to the website operator. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other data by Google.
Browser Plugin
You can prevent the storage of cookies by making the appropriate setting in your browser; however, in this case, you may not be able to use the full functionality of this website. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) for Google as well as the processing of these data by Google by downloading and installing the browser plugin available under the following link:
tools.google.com/dlpage/gaoptout
Objection to data collection
You can prevent the collection of your data by Google Analytics by clicking on the following link which causes an opt-out cookie that prevents the collection of your data upon future visits to this website to be set:
Deactivate Google Analytics
More information on the handling of user data by Google Analytics can be found here: support.google.com/analytics/answer/6004245
Contract data processing
We have concluded a contract for data processing with Google and fully comply with the strict requirements of the German data protection authorities in the use of Google Analytics.
b) Legal basis for the data processing
Cookies necessary for carrying out the electronic communication process or for preparing certain functions desired by you (e.g. log-in-Information) are saved on the basis of Art. 6(1)(f) of the GDPR. Saving of Google Analytics cookies and use of this analysis tool take place on the basis of Art. 6(1)(f) of the GDPR.
c) Purpose of data processing
The website operator has a legitimate interest in saving cookies for technically error-free and optimized provision of services. The website operator also has a legitimate interest in analyzing user behavior to optimize the website.
You can use a contact form to contact us electronically. If you do so, your information from this contact form including the contact data provided by you there is saved by us. This data includes:
1. Gender
2. Title
3. First name
4. Last name
5. Email- Address
6. Message
Additionally, we save this information when sending the message:
1. IP-Address
2. Date and time
Before processing your data, we have referred to our privacy policy and obtained your consent.
Alternatively, you can contact us via the provided email addresses. In this case the personal data that is transferred along with the email is obtained and saved by us.
We do not pass on these data to third parties. All data is solely used to process the conversation.
Processing of the data entered in the contact form hence takes place solely on the basis of your consent (Art. 6(1)(a) of the GDPR).
Processing of the data sent along with an email takes place on the basis of your consent (Art. 6(1)(f) of the GDPR).
The purpose is to process your inquiry and to contact you for follow up questions. We may also use it, to prevent abusive behavior of the contact form.
We save your data for as long as it is required to fulfill the purpose or for as long as we are legally obliged to do so.
You can withdraw this consent at any time. To do so just send a formless message to datenschutz@heumann.de. The lawfulness of the data processing operations carried out up to the time of withdrawal remains unaffected by the withdrawal. The data entered in the contact form by you remain with us until you request us to delete them, you withdraw your consent to storage or the purpose for saving the data becomes invalid (e.g. after your enquiry has been processed). Mandatory legal provisions – in particular pertaining to retention periods – remain unaffected.
The right to be informed
You have the right to be informed what data is processed, why, and who else the data may be passed to.
The right of access
You have the right to see what data is held about you.
The right to rectification
You can ask for your data to be corrected or amended if what is held is incorrect in some way.
The right to restrict processing
You can ask for a temporary halt to processing of personal data, such as in the case where a dispute or legal case has to be concluded, or the data is being corrected.
The right to erasure
You can ask for your personal data to be deleted under certain circumstances. This would apply if the personal data is no longer required for the purposes it was collected for, or your consent for the processing of that data has been withdrawn, or the personal data has been unlawfully processed.
The right to data portability
You have the right to ask for any data supplied directly to HEUMANN by you, to be provided in a structured, commonly used, and machine-readable format.
The right to object
You have the right to object to further processing of your data which is inconsistent with the primary purpose for which it was collected, including profiling, automation, and direct marketing.
The right to object
You have the right to object to further processing of your data. By objecting your consent, the data processed before your objection is not affected.
Rights in relation to automated decision making and profiling
You have the right not to be subject to a decision based solely on automated processing, except if the decision is required for the conclusion of a contract.
Changes to the privacy policy
We reserve the right to change our security and data protection measures insofar as is necessary due to technical developments. In these cases, we will also adapt our privacy policy accordingly. Hence, please always observe the latest version of our privacy policy.
1. Scope of Processing Personal Data
On our website we use the open source software tool Matomo (formerly PIWIK) to analyze the surfing behavior of our users. The software places a cookie on the user's computer (see above for cookies). If individual pages of our website are accessed, the following data is stored:
(1) Two bytes of the IP address of the user's calling system
(2) The web page called up
(3) The website from which the user has accessed the website called up (referrer)
(4) The subpages that are accessed from the website called up
(5) The time spent on the website
(6) The frequency of visiting the website
Thereby, the software runs exclusively on the servers of our website. The personal data of users is only stored there. The data shall not be passed on to third parties.
The software is adjusted so that the IP addresses are not completely stored, but 2 bytes of the IP address are masked (e.g.: 192.168.xxx.xxx). In this way it is no longer possible to assign the shortened IP address to the calling computer.
2. Legal Basis for the Processing of Personal Data
The legal basis for processing users' personal data is Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in the analysis of surfing behavior and further development of the services provided (see 3.).
3. The Purpose of Data Processing
The processing of users' personal data enables us to analyze the surfing behavior of our users. We are in a position to compile information about the use of the individual components of our website by evaluating the data obtained. This helps us to continuously improve our website and its user-friendliness. For these purposes, it is also in our legitimate interest to process the data in accordance with Art. 6 para. 1 lit. f GDPR. By anonymizing the IP address, users' interest in protecting their personal data is sufficiently taken into account.
4. Duration of Storage
The anonymized data will be erased as soon as they are no longer needed for our recording purposes.
5. Possibility of Objection and Elimination
Cookies are stored on the user's computer and transmitted from there to our site. Therefore, you as a user have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be erased at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.
In this way, another cookie is placed on your system, which signals to our system not to store the user's data. If the user erases the corresponding cookie from his own system in the meantime, he must set the opt-out cookie again.More information about the privacy settings of the Matomo software can be found under the following link: matomo.org/docs/privacy/.