Thank you very much for your interest in our company. Data protection has a particularly high value for the IDC -Int. Desgin + Collection GmbH (“us“, “IDC“, “we“).
The processing of personal data, such as the name, address, e-mail address or telephone number of a person concerned, is always carried out in accordance with the Basic Data Protection Ordinance. By means of this data protection declaration, we would like to inform visitors to our website about the type, scope and purpose of the personal data collected, used and processed by us.
As the data controller, IDC has implemented numerous technical and organizational measures to ensure that the personal data processed via this website is protected as completely as possible.
The person responsible within the meaning of the Basic Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions of a data protection nature is the Data Protection Commissioner:
IDC Int. Design + Collections GmbH
Geschäftsführer: Gerd Kullmann
We are not legally obliged to appoint a data protection officer. If you have any questions regarding data protection, please do not hesitate to contact our managing director.
Depending on the specific processing situation, we collect and process various personal data from you. Below you will find a list of these data, each related to the specific processing situation.
For technical reasons, we collect a series of general data and information each time a data subject accesses the website. This includes the following information:
This information is needed (i) to correctly deliver the content of our website, (ii) to optimize the content of our website, (iii) to ensure the long-term functionality of our information technology systems and the technology of our website, and (iv) to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack. The legal basis for data processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest lies in the customized presentation of our website and tracking of cyber attacks.
Depending on your request, you can contact us via our website using the contact form, by e-mail, telephone or in writing. If you contact us by e-mail, telephone or mail, we will regularly store and process only your e-mail address, telephone number, address and the information you have provided us with in the context of contacting us. When you contact us via our contact form, we store and process your name, your e-mail address, information relating to your inquiry and other comments you have entered in the contact form.
As a rule, the legal basis for data processing here is the fulfilment of our contractual or quasi-contractual obligations or the establishment of a contract in accordance with Art. 6 Para. 1 lit. b DS-GVO. If your contacting is not linked to a standing contract between you and IDC, we will process your data based on our legitimate interest in accordance with Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest lies in replying to and handling your inquiry. Insofar as we are subject to a legal obligation which requires the processing of your personal data to comply with, we process your personal data on the basis of Art. 6 para. 1 lit. c DS-GVO.
We only collect personal data directly from you, for example when you visit our website or use the services offered, such as the opportunity to contact us by e-mail.
There is neither a contractual nor a legal obligation to provide us with your personal data for the use of our website. However, if you wish to contact us, it is necessary to provide your data so that we can contact you.
We are partly using external service providers to process your data. They have been carefully chosen and assigned by us, are bound to our instructions and will be controlled regularly.
Insofar as we are obliged to do so by law, by court order or due to an enforceable order, we will transfer your personal data to bodies entitled to receive information.
Furthermore, we will only pass on data to third parties if you have given us a separate declaration of consent for the transfer of data.
Every transfer of data to countries outside the European economic area is based on the standard contractual clauses of the European commission (available here) and on our additionally taken measures to protect your forwarded databasedon an adequacy decision or your consent.
We process and store your personal data only for the period necessary to achieve the mandatorypurpose or to the extent required by law.
Data collected and stored within the scope of the use and provision of our website will be deleted at any time and independently within a few days upon request, unless we have a special interest in the continued storage in individual cases, such as in the case of cyber attacks.
If a longer storage period is required due to legal storage and documentation obligations or in order to protect our legitimate interests, e.g. in the event of possible legal disputes, we will also store your personal data after the expiry of the period specified above. Once the contract or the quasi-contractual relationship has been fully processed, we will, as far as possible, immediately block your personal data from further processing.
In the context of a contact request we store your data in principle only for the duration, which is necessary, in order to answer your contact inquiry.
A final deletion takes place after expiration of the periods of time resulting from the legal storage and documentation periods, which amount to between two and ten years and result among other things from the tax code or the commercial code.
Pursuant to Art. 15 DS-GVO, you have a right to information according to which you can obtain confirmation as to whether we process your personal data.
Pursuant to Art. 16 DS-GVO, you may request that incorrect data concerning you be corrected without delay.
Pursuant to Art. 17 DS-GVO, you have the right to request the deletion of your personal data if it is either (i) no longer required for the purposes for which it was collected, (ii) you have revoked your consent to data processing, (iii) you have provided us with your personal data in accordance with Art. 21 para. 1 of the German Data Protection Act (data protection act). 1 DS-GVO and there are no overriding legitimate reasons for processing, (iv) your personal data have been unlawfully processed, (v) the deletion of the personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which IDC is subject, or (vi) the personal data have been collected in relation to Information Society services provided pursuant to Article 8(1) DS-GVO.
Pursuant to Art. 18 DS-GVO, you have the right to demand the restriction of processing under the following conditions. Such a right exists if (i) you have contested the accuracy of your personal data, (ii) the processing is unlawful and you refuse to delete the personal data and instead demand the restriction of use, (iii) the data is no longer required for the purposes of the processing but you need it for the assertion, exercise or defence of legal claims, or (iv) you have lodged an objection against the processing in accordance with Art. 21 para. 1 DS-GVO until it is established whether we have legitimate reasons for the processing which outweigh your reasons.
Pursuant to Art. 19 DS-GVO, you have the right to obtain information about the recipients of data to whom a correction or deletion of your personal data or a restriction on processing has been notified.
Pursuant to Art. 20 DS-GVO, you have the right to receive personal data concerning you from us in a structured, common and machine-readable format and to forward this data to another person responsible. As far as technically possible, you can also request that we transfer this data directly to the person responsible.
As long as we base the processing of your personal data on our legitimate interest, you can enter an objection.
You have the right at any time with effect for the future to revoke a data protection consent given to us.
You can assert these rights by contacting the contact address given in point 2.
You also have the right to appeal to a data protection supervisory authority against the processing of your data or any decision taken by IDC regarding any of your rights. Responsible for the IDC is the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, Kavalleriestr. 2-4, 40213 Düsseldorf.
Status April 2022