We take the protection of your personal data very seriously and adhere strictly to the regulations of data protection laws. Personal data is collected on this website only to the extent technically necessary. Under no circumstances will the collected data be sold or unlawfully disclosed to third parties.
With the following statement, we aim to provide you with an overview of what data we collect, for what purpose, and how we ensure the protection of your data.
This privacy policy in accordance with the GDPR (General Data Protection Regulation) outlines the type, scope, and purpose of processing personal data within our organization and its associated online services, such as social media profiles. The terms used below are defined in Art. 4 of the General Data Protection Regulation (GDPR): https://dsgvo-gesetz.de/art-4-dsgvo
I. Name and Address of the Controllers
The jointly responsible controllers within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations are:
Chamber of Industry and Commerce (IHK) Cottbus
Goethestraße 1
03046 Cottbus, Germany
Email: ihkcb@cottbus.ihk.de
Economic Development Agency of the State of Brandenburg (WFBB)
Babelsberger Straße 21
14473 Potsdam, Germany
Email: info@wfbb.de
II. Name and Address of the Data Protection Officers
Official Data Protection Officer for the IHK:
Jan Wildemann
IBP IHK-Beratungs- und Projektgesellschaft mbH
Berliner Allee 12
40212 Düsseldorf, Germany
Phone: +49 211 36702-51
Email: jan.wildemann@ibp-ihk.de
Data Protection Officer for the WFBB:
The data protection officer of WFBB can be contacted via email at: datenschutzbeauftragter@wfbb.de
or by post with the note "Datenschutzbeauftragter" (Data Protection Officer) to the address listed under I. above.
III. General Information on Data Processing
1. Scope of the Processing of Personal Data
We collect and use personal data of our users only to the extent necessary to provide a functional website and our content and services or to process a contract initiated by the customer.
The collection and use of personal data of our users is generally carried out only with the user's consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of the data is permitted by legal regulations.
The personal data processed within this online offer includes inventory data (e.g. names and addresses of customers), contract data (e.g. services used, names of contact persons, payment information), usage data (e.g. pages visited on our website, interest in our products), and content data (e.g. entries in the contact form).
In this privacy policy, the term "user" refers to all categories of persons affected by data processing. This includes our business partners, customers, prospects, and other visitors of our online offering. The terms used (e.g., "user") are to be understood as gender-neutral.
2. Security Measures
We take organizational, contractual, and technical security measures in accordance with the state of the art to ensure compliance with data protection laws and to protect the data we process against accidental or intentional manipulation, loss, destruction, or access by unauthorized persons.
One of these security measures is the encrypted transmission of data between your browser and our server.
2.1 SSL Encryption
For security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator, this site uses SSL encryption.
You can recognize an encrypted connection by the change in the browser's address line from "http://" to "https://" and by the lock icon in your browser line.
When SSL encryption is activated, the data you transmit to us cannot be read by third parties.
3. Legal Basis for the Processing of Personal Data
Where we obtain the consent of the data subject for processing operations of personal data, Art. 6(1)(a) GDPR serves as the legal basis.
For the processing of personal data necessary for the performance of a contract to which the data subject is party, Art. 6(1)(b) GDPR is the legal basis. This also applies to processing operations necessary to take steps prior to entering into a contract.
Where processing of personal data is necessary for compliance with a legal obligation to which our organization is subject, Art. 6(1)(c) GDPR serves as the legal basis.
If processing is necessary to protect the vital interests of the data subject or another natural person, Art. 6(1)(d) GDPR serves as the legal basis.
If processing is necessary for the purposes of the legitimate interests pursued by our organization or by a third party, and such interests are not overridden by the interests or fundamental rights and freedoms of the data subject, Art. 6(1)(f) GDPR serves as the legal basis.
4. Data Deletion and Storage Duration
Personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply.
Storage may be continued if this is provided for by the European or national legislator in Union regulations, laws, or other provisions to which the controllers are subject.
Data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a need to retain the data for the conclusion or fulfillment of a contract.
5. Data Processing by Third Parties
In some cases, we use external service providers to process your data. These providers are carefully selected, bound by our instructions, and are regularly monitored.
IV. Provision of the Website and Creation of Log Files
1. Description and Scope of Data Processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device.
The following data is collected:
• Information about the browser type and version used
• The user's operating system
• The user's Internet service provider
• The user's IP address
• Date and time of access
• Websites from which the user's system accessed our website
• Websites that are accessed by the user's system via our website
This data is also stored in the log files of our system. It is not stored together with other personal data of the user.
2. Legal Basis for Data Processing
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.
3. Purpose of Data Processing
Temporary storage of the IP address by the system is necessary to deliver the website to the user's computer. For this, the user's IP address must be stored for the duration of the session. Storage in log files is carried out to ensure the functionality of the website. Additionally, the data helps us optimize the website and ensure the security of our IT systems. No evaluation of the data for marketing purposes takes place in this context. These purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR. Without the processing of the data mentioned above, the service cannot be used.
4. Duration of Storage
Data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of data collection for website provision, this is the case when the respective session ends. For data stored in log files, this is the case after no more than seven days. Storage beyond this period is possible. In such cases, the users' IP addresses are deleted or anonymized so that identification of the accessing client is no longer possible.
5. Right to Object
The collection of data for the provision of the website and the storage of data in log files are absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.
V. Use of Cookies
Description and Scope of Data Processing
Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. When a user accesses a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified upon returning to the website.
We use cookies to make our website more user-friendly. Some elements of our website require the requesting browser to be identified even after a page change.
Technically Necessary Cookies
These cookies are required for the functionality of this website. Without them, the website would not function properly.
Legal Basis
The legal basis for setting technically necessary cookies is Section 25 para. 2 no. 2 of the TTDSG (German Telecommunications-Telemedia Data Protection Act), as they are absolutely necessary for the operation of this website. If personal data is subsequently processed, the legal basis is the legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.
| Name | Description | Storage Duration |
|---|
| ASP.NET_SessionId |
Contains an ID to associate the user with the web server |
Until the browser is closed |
Processing Company
Jegasoft SHI GmbH | Jens Galkow · Kraftwerkstraße 16a · 03226 Vetschau/Spreewald · Germany.
Privacy Policy: www.jegasoft.de/datenschutz
Recipient of the Collected Data
Jegasoft SHI GmbH | Jens Galkow · Kraftwerkstraße 16a · 03226 Vetschau/Spreewald · Germany.
Privacy Policy: www.jegasoft.de/datenschutz
VI. Registration
1. Description and Scope of Data Processing
Our website may offer users the opportunity to register by providing personal data. The data is entered into an input form, transmitted to us, and stored. The data will not be passed on to third parties. Mandatory fields will be indicated during registration. The data collected during registration is used and stored for the purpose of providing the respective service.
At the time of registration, the following data is also stored:
• The user’s IP address
• Date and time of registration
As part of the registration process, the user's consent to the processing of this data is obtained.
2. Legal Basis for Data Processing
The legal basis for processing the data is Art. 6 para. 1 lit. a GDPR if the user has given consent. If registration serves the performance of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis is Art. 6 para. 1 lit. b GDPR.
3. Purpose of Data Processing
User registration is required to provide certain content and services on our website.
4. Duration of Storage
The data is deleted as soon as it is no longer needed to achieve the purpose of its collection. For data collected during the registration process, this is the case when the registration is cancelled or modified on our website.
5. Right to Object and Deletion
As a user, you have the option at any time to cancel your registration. You can have your stored personal data amended or deleted at any time.
VII. Contacting Us (e.g. via contact form, email, phone or social media)
1. Description and Scope of Data Processing
Our website includes a contact form that can be used for electronic communication. If a user chooses this option, the data entered in the input form is transmitted to us and stored. During the completion process, users are informed of the required mandatory fields. Without providing this mandatory information, you cannot contact us via the contact form. At the time the message is sent, the following data is also stored:
• The user's IP address
• Date and time of submission
As part of the submission process, your consent for data processing is obtained and this privacy policy is referenced.
Alternatively, you can contact us via the email address, telephone number, or linked social media channels provided. In this case, the personal data transmitted with the inquiry will be stored. The data will not be passed on to third parties. It will be used exclusively for processing the conversation.
2. Legal Basis for Data Processing
The legal basis for processing the data is Article 6(1)(a) GDPR if the user has given consent. The legal basis for processing data transmitted via email is Article 6(1)(f) GDPR. If the contact aims to conclude a contract, the additional legal basis is Article 6(1)(b) GDPR.
3. Purpose of Data Processing
The processing of personal data from the contact form or email is solely for the purpose of handling the contact request. In the case of contact via email, this also constitutes the necessary legitimate interest in processing the data. Other personal data processed during the submission process helps prevent misuse of the contact form and ensure the security of our IT systems.
4. Storage Duration
Data will be deleted once it is no longer necessary for the purpose for which it was collected. For personal data from the contact form or emails, this is the case when the respective conversation with the user has ended. A conversation is considered ended when the circumstances indicate that the matter has been conclusively resolved. Any additional personal data collected during the submission process will be deleted after a maximum of seven days.
5. Right to Object and Removal Option
Users may revoke their consent to the processing of personal data at any time. If a user contacts us by email, they may object to the storage of their personal data at any time. In such a case, the conversation cannot be continued. The revocation of consent can be made by email or mail. All personal data stored in the course of contacting us will be deleted in this case.
VIII. Rights of the Data Subject
If your personal data is processed, you are considered a data subject under the GDPR and you have the following rights vis-à-vis the controller(s):
1. Right of Access
You may request confirmation as to whether personal data concerning you is being processed. If this is the case, you can request information on:
1. the purposes of processing;
2. the categories of personal data concerned;
3. the recipients or categories of recipients to whom the personal data has been or will be disclosed;
4. the planned duration of storage, or criteria used to determine that duration;
5. the existence of the right to rectification or erasure of personal data, restriction of processing, or the right to object;
6. the right to lodge a complaint with a supervisory authority;
7. any available information about the source of the data if not collected from the data subject;
8. the existence of automated decision-making including profiling (Art. 22(1) and (4) GDPR) and – at least in these cases – meaningful information about the logic involved and the consequences of such processing for the data subject.
You have the right to be informed whether your personal data is transferred to a third country or international organization and to be informed about appropriate safeguards pursuant to Art. 46 GDPR.
2. Right to Rectification
You have the right to request correction or completion of inaccurate or incomplete personal data. The controller must correct the data without undue delay.
3. Right to Restriction of Processing
You may request the restriction of processing if:
1. you contest the accuracy of the personal data;
2. processing is unlawful and you oppose erasure;
3. the controller no longer needs the data, but you require it for legal claims;
4. you object to processing under Art. 21(1) GDPR and it is not yet clear whether the legitimate grounds of the controller override yours.
If processing is restricted, such data shall – apart from storage – only be processed with your consent or for legal claims or to protect the rights of others or for important public interest. You will be informed before the restriction is lifted.
4. Right to Erasure ("Right to be Forgotten")
a) Obligation to Erase
You may request the immediate deletion of your personal data, and we are obligated to delete it if:
1. the data is no longer necessary for the purpose collected;
2. you withdraw consent and there is no other legal basis;
3. you object under Art. 21(1) GDPR and there are no overriding legitimate grounds, or you object under Art. 21(2);
4. the data has been unlawfully processed;
5. deletion is necessary to comply with a legal obligation;
6. the data was collected for information society services under Art. 8 (1) GDPR.
b) Notification of Third Parties
If the data has been made public and must be erased under Art. 17(1) GDPR, reasonable steps must be taken to inform others processing the data of your request to delete all copies and links.
c) Exceptions
The right to erasure does not apply if processing is necessary
1. for freedom of expression and information;
2. to comply with legal obligations or public interest tasks;
3. for public health (Art. 9(2)(h), (i), Art. 9(3));
4. for archiving or scientific/historical research/statistics (Art. 89(1)), if erasure would impair the objectives;
5. for legal claims.
5. Right to Notification
If you assert your right to rectification, erasure, or restriction, we are obligated to notify all recipients unless impossible or disproportionate. You have the right to be informed of these recipients.
6. Right to Data Portability
You have the right to receive the personal data you provided in a structured, commonly used, and machine-readable format and to transmit that data to another controller, where:
• the processing is based on consent (Art. 6(1)(a) or Art. 9(2)(a)) or contract (Art. 6(1)(b)) and
• processing is carried out by automated means.
You also have the right to request direct transmission from one controller to another, where technically feasible. The rights of others must not be adversely affected.
This right does not apply to processing necessary for public tasks or authority duties.
7. Right to Object
You have the right to object at any time to processing based on Art. 6(1)(e) or (f) GDPR, including profiling.
We will no longer process your data unless compelling legitimate grounds outweigh your interests, or for legal claims. If your data is used for direct marketing, you have the right to object at any time, including related profiling. Once you object, your data will no longer be used for marketing. You may exercise your objection using automated means in connection with information society services, notwithstanding Directive 2002/58/EC.
8. Right to Withdraw Consent
You may withdraw your consent to data processing at any time. This does not affect the lawfulness of processing carried out before withdrawal.
9. Automated Individual Decision-Making, Including Profiling
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal effects or significantly affect you. This does not apply if the decision:
• is necessary for a contract;
• is authorized by Union or Member State law with suitable safeguards;
• is based on your explicit consent.
Such decisions must not be based on special categories of personal data unless Art. 9(2)(a) or (g) applies with suitable safeguards.
In cases (1) and (3), appropriate measures include at least the right to human intervention, expression of your point of view, and contesting the decision.
10. Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a supervisory authority, particularly in your place of residence, work, or the place of the alleged infringement, if you believe that the processing of your personal data violates the GDPR.
Last updated: May 26, 2025
We reserve the right to amend this privacy policy at any time with effect for the future. The current version is always available on our website.