Direkt zum Inhalt

Privacy Policy Online Services

Last update: November 2024

We - Bionorica SE - are not only committed to protecting your health, but also to protecting your data and thus your privacy. With this data protection declaration we inform you about

  • which personal data we collect, store, process, block and erase from you when you visit the website and use our online services (collectively referred to as ‘processing’),
  • what we use these data for,
  • how you can object to the use or withdraw your consent and
  • what rights you have as a data subject, e.g. how you revoke declared consent and how you can exercise other rights to information, correction, complaint and deletion of your data.

 

1. Who is responsible for data processing and who can I contact?
 

The responsible body for data processing in the sense given in the GDPR is:

Bionorica SE
Kerschensteinerstr. 11–15
92318 Neumarkt, Germany
Phone: +49 (0) 9181 231-90
Fax: +49 (0) 9181 231-265
Email: info@bionorica.de

Our company data protection officer can be reached via email at datenschutz@bionorica.de or by post at the above address (please include the line ‘ATTENTION: Data Protection Officer’).
 

2. Scope

This data protection declaration applies to your visit to the websites available under the following domains:

  • agnucaston.de
  • bionorica.de
  • bionorica.com
  • bionorica-fortbildungen.de
  • blase-gesundheit.de
  • bronchipret.de
  • canephron.de
  • digestopret.de
  • fachkreise.bionorica.de
  • frau-gesundheit.de
  • imupret.de
  • intranet.phytothek.de
  • phytothek.de
  • sinupret-extract.de
  • sinupret-saft.de

Since the services/functionalities described below do not run on all of the domains mentioned, we will name the concerned domain(s) for each individual service.
 

3. Definition of the data categories

In the context of this data protection declaration, the following definitions apply to data types:

Type 1: web usage data

  • IP address;
  • Date and time of the request;
  • Time zone difference to Greenwich Mean Time (GMT);
  • Content of the request (specific page);
  • Access status / HTTP status code;
  • Amount of data transferred in each case;
  • Website from which the request comes;
  • Browser used including language and version;
  • Operating system of the device used and its interface.

Type 2: personal details and contact details

  • Name;
  • Address;
  • Date of birth;
  • Marital status;
  • Occupation/occupational position;
  • Nationality;
  • Phone number(s);
  • E-mail address;
  • Other communicated contact details including accounts for social media (e.g. Facebook, Twitter).

Type 3: Electronic communication data (especially email)

  • Contents of electronic communication that you address to us or that we carry with us;
  • Metadata, e.g. e-mail addresses involved, time and date of e-mail correspondence, details on your opening and clicking behavior in our PhytothekNews (e-mail newsletter).

4. General website visit

Applies to: All websites mentioned

(1) If you use the website for informational purposes only, i.e. if you do not register or otherwise convey any information to us, we will only collect the personal data your browser transmits to our server. If you would like to view our website, we collect the type 1 data which are technically necessary for us to display our website to you and ensure the stability and security (legal basis is Art. 6(1) (f) GDPR).

(2) In addition to the data mentioned above, the following transient and persistent cookies are saved on your computer when you visit our website:

a) Transient cookies: these cookies are automatically deleted when you close the browser. They particularly include session cookies. A session cookie saves a so-called session ID with which various requests from your browser can be assigned to a given session. This allows your computer to be recognized when you return to our website. Session cookies are deleted when you close your browser.

b) Persistent cookies: these cookies are automatically deleted after the expiration time has been reached. Depending on the cookie, the expiration time may differ. You can delete the cookies at any time via the system settings in your browser.

c) You can configure your browser settings as you wish and, e.g., refuse to accept third-party cookies or all cookies. Please be aware that if you disable cookies, you may not be able to use all the features of this website.

5. Your contact with us

Applies to: All mentioned websites with the exception of www.bionorica-fortbildung.de

When contacting us (for example via a contact form or an e-mail), your details are voluntary unless we need them to process your request and answer. This information is stored and processed by us to process the request and potential follow-up questions.

Depending on your details, data of types 1, 2 and 3 will be collected and processed when you contact us. The legal basis for the use of this service depends on the nature of your request from Art. 6 Para. 1 lit. a or b GDPR.

6. Health insurance reimbursement for over-the-counter medication (“The Green Prescription”)

Applies to: sinupret-extract.de, bronchipret.de, agnucaston.de

At https://www.sinupret-extract.de/service/erstattung/ you can search for statutory health insurance companies that will reimburse you for expenses for certain over-the-counter medications (also called “OTC medicines”). You can fill out a corresponding reimbursement form directly on the website and either download it or have it sent to a specific e-mail address. The latter option is of course voluntary. If you would like to receive it, we need your email address, which we will only use for this delivery and then delete it from our systems immediately.

The legal basis for this data use is Art. 6 Para. 1 lit. a GDPR.

7. Google

 7.1. Google Analytics

Applies to: All websites mentioned

(1) The website uses Google Analytics, a web analysis service of Google Inc. (‘Google’). Google Analytics collects data of type 1 and uses cookies for this. To be able to assign your website visit, we anonymise your IP address upon collection and hence we cannot link it to you personally. We also do not merge your IP address with other data from Google.

(2) The information on your use of this website generated by the cookies mentioned above is usually transferred to and saved on a Google server in the US. Google uses this information on our behalf to analyse your use of the website, to compile reports on website activity and to provide additional services associated with the website and internet use to us.

(3) You can prevent cookies being saved by making the appropriate setting in your browser. However, in this case you may not be able to use all the features of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) for Google and the processing of these data by Google by downloading and installing the browser plug-in available at http://tools.google.com/dlpage/gaoptout?hl=de.

(4) The legal basis for the use of this service is yielded from Art. 6 Para. 1 lit. f GDPR.

(5) Further information on the use of data by Google for advertising purposes as well as on setting and objection possibilities can be found at: https://support.google.com/analytics/answer/6004245?hl=de.

 

7.2. Google Maps: pharmacy or event search

Applies to: canephron.de, bronchipret.de, bionorica-dermaline.de, digestopret.de, sinupret-extract.de, imupret.de, bionorica.de, phytothek.de, sinupret-saft.de, agnucaston.de, blase-gesundheit.de

(1) The websites mentioned above integrate maps from Google Maps, a service of Google Inc, 1600 Amphitheater Parkway, Mountainview, California 94043, USA; EU branch: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. This enables us to perform two types of searches, on the one hand, the search for pharmacies and, on the other hand, events in the vicinity of your location.

(2) When a website with Google map material is accessed on the respective website, a connection to the Google servers in the USA is established. Your IP address and your location can be transmitted to Google, and Google registers that you have accessed the corresponding page, regardless of whether you have a user account with Google and whether you are logged in at the time. If you are logged into your Google account, Google can assign the above data to your account. If you do not want this, you must log out of your Google account. Google creates user profiles from such data and uses this data for the purpose of advertising, market research or optimization of its websites.

(3) The legal basis for this is our legitimate interest in data processing according to Art. 6 para. 1 lit. f GDPR.

(4) You have a right of objection to Google against the creation of user profiles. Therefore, please contact Google directly via the data protection declaration below. An opt-out objection regarding advertising cookies can be made here in your Google Account: https://adssettings.google.com/authenticated. Please refer to the Google Maps Terms of Use at https://www.google.com/intl/de_de/help/terms_maps.html and Google's Advertising Privacy Policy at https://policies.google.com/technologies/ads for more information on the use of Google cookies and their advertising technologies, retention period, anonymization, location data, functionality and your rights. Google's general privacy policy: https://policies.google.com/privacy.

7.3. Google Consent Mode V2

Applies to: all websites mentioned

(1) On our websites mentioned above, we use Google Consent Mode V2 to ensure that your data protection preferences are implemented. Google Consent Mode V2 enables us to adapt the use of Google services such as Google Analytics and Google Ads to your consent. This means that these services will only be activated if you have expressly given your consent.

(2) Google Consent Mode V2 is an extension that makes it possible to adjust the behaviour of Google tags based on the consent status of users. This mode takes into account the user's consent to the use of cookies and tracking technologies and ensures that only the data for which consent has been given is collected and processed. Consent Mode V2 sends signals to the Google tags, which are adjusted depending on the user's consent status in order to fulfil the data protection requirements.

(3) The legal basis for the processing is your voluntary consent (in the cookie banner) in accordance with Art. 6 para. 1 sentence 1 a) GDPR.

(4) By using Google Consent Mode V2, we can control the collection and processing of your data in a way that complies with legal data protection requirements. If you give your voluntary consent, data such as IP address, usage behaviour and other relevant information will be forwarded to Google. This data will not be collected or processed without your consent.

(5) You have the option to revoke or adjust your consent at any time. To do this, you can make the appropriate settings in our cookie banner or in the data protection settings on our website. You can find more information about how Google processes your data in Google's privacy policy (https://policies.google.com/privacy?hl=de) and further information about Google Consent Mode V2 on the associated Google page (https://statics.teams.cdn.office.net/evergreen-assets/safelinks/1/atp-safelinks.html).

8. YouTube videos

Applies to: sinupret-extract.de, bionorica.com, digestopret.de, bronchipret.de

(1) To illustrate our products, we embed YouTube videos on the website mentioned, which are managed by YouTube LLC, a subsidiary of Google in the USA. We have embedded the videos in the so-called extended data protection mode (information on this can be found here:  https://support.google.com/youtube/answer/171780?hl=de). In this mode, in contrast to the usual mode, cookies are only placed on your end device and personal data is collected from you if you actively click on the video. In addition, the videos are embedded with a so-called 2-click solution, in which no data is collected from you before you click on the video.

(2) If you click on a YouTube video embedded on the website after the first click, Google stores a large amount of data in the cookie (including device-related information, log data, location-related information, application numbers, visits to websites that use Google advertising services). Google processes and uses the data mentioned, among other things, to provide and maintain the services, to develop new services and to provide customized content (advertising, search results). The data determined with the help of cookies is usually transferred to a Google server in the USA and stored there. 

(3) Google transmits data to third parties if permission has been granted, if this is necessary for legal reasons or if third parties process this data on behalf of Google.

(4) You can prevent the storage of Google cookies by making the appropriate setting in your browser. This may limit the functionality of the YouTube videos and Google services. Further information can be found in the Google data protection declaration.

(5) The use of the YouTube video function is voluntary. The legal basis for data processing is Art. 6 Para. 1 lit. a GDPR.
 

9. Wistia videos

Applies to: bronchipret.de, fachkreise.bionorica.de, bionorica.de, intranet.phytothek.de

The website uses Wistia (https://wistia.com/) from Wistia, Inc., based in Cambridge, Massachusetts, USA, to embed videos in our websites and to promote and measure the interaction behavior of website visitors with the videos. Wistia collects the following categories of personal data on our behalf:

  • Anonymized IP address including provider;
  • Access time to viewed videos;
  • Details of viewed video sections;
  • URL of the videos;
  • Type of device (stationary, mobile), operating system and browser used.

No cookies or similar technologies are used for flash or video. All information on the transfer and use of data by Wistia can be found here:  https://wistia.com/privacy
 

10. Mouse tracking with Mouseflow

Applies to: fachkreise.bionorica.de

On the websites mentioned above, we use a tool called “Mouseflow” from mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark (https://mouseflow.de/). With this tool, we measure web surfing behavior to improve our online offer. We specifically process the following data categories:

Anonymized IP address;

  • Access time to websites and their URLs;
  • Clicks;
  • Mouse and scroll movements;
  • Form submission;
  • Type of device (stationary, mobile), operating system and browser used.

This data is processed within the EU. The legal basis for processing is Art. 6 Para. 1 lit. f GDPR. You can deactivate the functions of Mouseflow by clicking on the “Deactivate” button on the following website:  https://mouseflow.de/opt-out/

All information on how Mouseflow handles personal data can be found here:  https://mouseflow.de/gdpr/

11. Website tracking with Bloomreach

Applies to: canephron.de, sinupret-extract.de, imupret.de, bronchipret.de, bionorica-dermaline.de, digestopret.de,  agnucaston.de, blase-gesundheit.de, frau-gesundheit.de

(1) On the website mentioned, Bloomreach B.V., based at Oosteinde 7, 1017 WT, Amsterdam, Kingdom of the Netherlands (“Bloomreach”) will evaluate your visit to our website on our behalf and report on your website activities with the aim of marketing in line with your interests (e.g. we can see which pages or content are particularly popular).

(2) When you use our website, data, such as your IP address and your user activities, are transmitted to Bloomreach servers located in Belgium. In this context, Bloomreach stores cookies on your computer and analyzes your surfing behavior. This data is brought together, stored and processed by Bloomreach under a uniform user interface. Processing generally takes place within the European Economic Area. Data will only be transferred to locations in countries outside the European Union (so-called third countries) if, in addition to the general requirements for data transfer, there is also an adequacy decision (Article 45 GDPR) or suitable guarantees (Article 46 GDPR) and, if necessary, additional ones Measures exist.

(3) The legal basis for the processing of your data is your voluntary consent in accordance with Article 6 Paragraph 1 Letter a) GDPR. You can revoke this at any time with future effect via our cookie banner.

 

12. Email newsletter/ Patient information

Applies to: fachkreise.bionorica.de, phytothek.de, intranet.phytothek.de

We offer an email newsletter called “PhytothekNews” or „PhytoNews“ on the website mentioned to provide information about our products, services and events. You can register for this newsletter by entering an email address; Information that goes beyond the email address is voluntary. We use the data collected for the purpose of registering for the newsletter, to send the corresponding newsletter and to evaluate your click behavior in the emails (openings, clicks) in order to improve our newsletter offer.

The legal basis for processing your data for the purpose of sending the newsletter is Art. 6 Para. 1 lit. a GDPR, for the purpose of evaluating click behavior Art. 6 para. 1 lit. f GDPR. You can withdraw your consent to the sending of the newsletter at any time by clicking on the “Unsubscribe” link that you will find in every newsletter issue.

Applies to: bionorica-dermaline.de

We offer an e-mail newsletter for customers on the website mentioned, which provides information about our current information and interesting service offers. You can register for this newsletter by entering an email address; We use the data collected for the purpose of registering for the newsletter only for sending the corresponding newsletter.

The legal basis for processing your data for the purpose of sending the newsletter is Art. 6 Para. 1 lit. a GDPR. You can withdraw your consent to the sending of the newsletter at any time by clicking on the corresponding link that you will find in every newsletter issue.

Applies to: canephron.de, bionorica.de

(1) We offer a comprehensive range of information for patients on the website mentioned, with which we want to inform you specifically about our products. You can register for this offer by providing an email address; We use the data collected for the purpose of registration to send tailored emails , information offers and links to feedback requests. If you give us your feedback via the email link, only your IP address will be processed as part of the use of the website (consent including the possibility of revocation via the cookie banner), but your answers will be anonymous and cannot be linked to you or your IP address.

(2) As part of the processing, we create a profile (“profiling”) that contains your email address as well as data for segmentation, such as indication(s), product(s), usage behavior of the above-mentioned websites and calculated scores.

(3) Legal basis for processing your data for the purpose of sending the

newsletter is your voluntary consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent to receive the newsletter at any time with effect for the future by clicking on the corresponding link that you will find in every newsletter issue.

Applies to: registration for the end user newsletter via meta advertising banner

(1) We offer a wide range of information for patients on the website mentioned, with which we want to provide you with targeted information about our products. You can register for this offer by providing an e-mail address; we use the data collected for the purpose of registration to send customised e-mails, information offers and links for feedback requests. If you provide us with your feedback via the email link, only your IP address will be processed in the context of website usage (consent, including the option to withdraw consent, is given via the cookie banner). However, your answers will be anonymous and cannot be linked to you or your IP address.

(2) As part of the processing, we create a profile (‘profiling’) that contains your email address and data for segmentation, for example indication(s), product(s), usage behaviour of the above-mentioned websites and calculated scores.

(3) The legal basis for the processing of your data for the purpose of sending you the

newsletter is your voluntary consent in accordance with Art. 6 (1) point a GDPR. You can revoke your consent to the sending of the newsletter at any time with effect for the future by clicking on the corresponding link, which you will find in every newsletter issue.

Applies to: bionorica.de/karriere/ihre-bewerbung

We offer an e-mail newsletter on the website mentioned, which provides information about our current vacancies. You can register for this newsletter by entering an email address; We use the data collected for the purpose of registering for the newsletter only for sending the corresponding newsletter.

The legal basis for processing your data for the purpose of sending the newsletter is Art. 6 Para. 1 lit. a GDPR. You can withdraw your consent to the sending of the newsletter at any time by clicking on the corresponding link that you will find in every newsletter issue.

 

13. Sending information about research activities

Applies to: canephron.de, bionorica.de

(1) We would like to send patients information about specific research programs, such as opinion surveys and invitations to participate in them, and, as needed, links to online questionnaires or further information about future planned research activities by email.

(2) As part of the processing, we create a profile (“profiling”) that contains your email address as well as data for segmentation, such as indication(s), product(s), usage behavior of the above-mentioned websites and calculated scores.

(3) The legal basis for processing your data for the purpose for the above-mentioned information is your voluntary consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent to the sending of invitation links at any time by clicking on the corresponding unsubscribe link in every email with invitation links or by contacting info@bionorica.de or the contact details of the data protection officer mentioned above, stating the study.

14. Chatbot Loyjoy

Applies to: canephron.de, agnucaston.de, bionorica.de

(1) This website uses the chatbot platform Loyjoy from LoyJoy GmbH, Kapuzinerstr. 20, 48149 Münster.

(2) When you use our website, data, such as your IP address in particular, is processed and stored. When using the chatbot, health data will also be processed when answering the questions. However, your answers (including any health data) are not linked to you personally and are only stored in an anonymized form for statistical purposes. Personal data is deleted immediately after use of the chatbot. Processing generally takes place within the European Economic Area. Data will only be transferred to locations in countries outside the European Union (so-called third countries) if, in addition to the general requirements for data transfer, there is also an adequacy decision (Article 45 GDPR) or suitable guarantees (Article 46 GDPR) and, if necessary, additional ones Measures exist.

(3) Further information such as your email address or consent to further communication will be forwarded by the chatbot software to our newsletter tool and stored in accordance with the “Patient information” section.

(4) The legal basis for the processing of your data is your voluntary consent in accordance with Article 6 Paragraph 1 Letter a) GDPR. You can revoke this at any time with future effect via our cookie banner.

 

15. User management

Applies to: fachkreise.bionorica.de, phytothek.de, intranet.phytothek.de

On the websites mentioned, we offer members of medical circles the opportunity to create and manage a user account. However, since certain content may only be made available to members of a specialist group according to the German Drug Advertisement Act (HWG), we must make the specialist group property a prerequisite for creating such an account. We use this account to collect and process the data you provide about online training, event participation, etc. The information you provide is voluntary.

The legal basis for processing your data for user administration is Art. 6 Para. 1 lit. a GDPR. You can delete your user account and the data in it at any time by logging in and selecting the deletion in the menu item “My account”.

 

16. DocCheck login

Applies to: fachkreise.bionorica.de

Likewise only on the website for HCPs, we offer the possibility of logging in via DocCheck (http://www.doccheck.com/), a portal for the proof of the medical specialist group property of DocCheck Medical Services GmbH, Vogelsanger Strasse 66, 50823 Cologne. DocCheck processes data that is entered via the corresponding login portal. We receive the following data from DocCheck for the purpose of verifying your professional group status:

  • Job title
  • Section
  • Postal address
  • E-mail address

The use of the portal is voluntary. The legal basis for using the DocCheck login is Art. 6 Para. 1 lit. a GDPR.

 

17. Health Care Professionals: Enrichment of the data of the pharmacy  

Applies to: fachkreise.bionorica.de, intranet.phytothek.de

If you attend our training courses as a Health Care Professional, we also store the following data, if available, under the data record of the pharmacy for which you work:

  • Your master data: your first and last name, date of birth, e-mail address, job title and pharmacy name and address;
  • Training courses you attended: date, e-mail address you provided for this (possibly different from the master data), title and content of the training course, type of event (online or offline), any additional information such as participation in any supporting program.

We process this data for market research purposes and in order to be able to provide the pharmacy with more targeted support from our sales force. The legal basis for this is your consent (Art. 6 Para. 1 S. 1 lit. a GDPR). We store the data mentioned here until you ask us to delete it. If you delete your user account, your data will be anonymized.
 

18. Hotjar

Applies to: bionorica.de, bionorica.com

Our website uses the Hotjar web analysis service from Hotjar Ltd .. Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Center, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe, Tel: +1 (855) 464-6788).

This tool can be used to create heat maps, click maps, conversion funnels, visitor recordings, incoming feedback, feedback polls and surveys (more information is available at https://www.hotjar.com/).

Above all, Hotjar's services can improve the functionality of the Hotjar-based website by making them more user-friendly, more valuable and easier to use for end users.

We pay particular attention to the protection of your personal data when using this tool. So we can only understand which buttons are clicked, the course of the mouse, how far is scrolled, the screen size of the device, device type and browser information, geographical location (only the country) and the preferred language to display our website. Areas of the websites in which personal data from you or third parties are displayed are automatically hidden by Hotjar and are therefore never traceable. In order to exclude direct personal reference, IP addresses are only stored anonymously and processed further. However, Hotjar uses various third-party services such as Google Analytics and Optimizely. It may therefore be the case that these services collect data that is transmitted by your browser as part of web page requests. This would be, for example, cookies or your IP address. In these exceptional cases, this processing takes place in accordance with Art. 6 Paragraph 1 lit.

Your data will be erased after 1 year at the latest. The legal basis is Art. 6 para. 1 cl. 1 lit. a GDPR.

Hotjar offers every user the option of preventing the use of the Hotjar tool with the help of a “Do Not Track” function so that no data is recorded about the visit to the respective website. This is a setting that all common browsers support in current versions. To do this, your browser sends a request to Hotjar to deactivate the tracking of the respective user. If you use our websites with different browsers / computers, you must set up the “Do Not Track” function for each of these browsers / computers separately.

You can prevent Hotjar from collecting your data at any time by going to the opt-out page https://www.hotjar.com/legal/compliance/opt-out/ and clicking Deactivate Hotjar. Please note, however, that you have to click the link again if you delete the cookies stored on your device.

More information about Hotjar Ltd. and via the Hotjar tool can be found at: https://www.hotjar.com

The data protection declaration of Hotjar Ltd. can be found at: https://www.hotjar.com/privacy/

 

19. Friendly Captcha

Applies to: agnucaston.de, bronchipret.de, canephron.de, imupret.de, phytothek.de, sinupret-extract.de, sinupret-saft.de, frau-gesundheit.de

(1) The Friendly Captcha tool is integrated on the websites mentioned. This tool checks whether the entries on the contact form are actually made by a human user or by automated programs (so-called "bots"). For this purpose, Friendly Captcha GmbH (Am Anger 3-5, 82237 Wörthsee) processes your IP address, technical details (such as the web browser used and, if applicable, the operating system), any entries that Friendly Captcha asks you to make (i.e. solving the puzzle ) and website visit data (such as date and time). A number combination (so-called “Hashwert”) is formed from the IP address using one-way encryption, which does not allow any conclusions to be drawn about your person. The IP address is then immediately anonymized, only the “Hashwert” is stored on the Friendly Captcha server for a maximum of 30 days and then deleted. Friendly Captcha does not have access to the content you have entered in the contact form.

(2) When using this tool, we pay particular attention to the protection of your personal data, which is why we use the EU endpoint from Friendly Captcha, through which the data is processed exclusively within the European Union. In addition, we -Bionorica- do not have access to the data processed by Friendly Captcha.

(3) Friendly Captcha is used to ensure the security of our websites, in particular to protect us against improper access by bots (i.e. spam protection or protection against attacks (e.g. mass inquiries)). The legal basis for data processing is Art. 6 (1) (f) GDPR. Our legitimate interest is to ensure the security of our contact form and to prevent misuse for automated spam spying.

(4) The processing is carried out by Friendly Captcha as our processor, a corresponding data processing agreement in accordance with Art. 28 GDPR has been signed.

(5) Further information on how Friendly Captcha handles your data can be found on the website and in the data protection declaration of the provider, which can be accessed via the following links: https://friendlycaptcha.com/de/ and

https://friendlycaptcha.com/de/legal/privacy-end-users/.


20. Adition

Applies to: phytothek.de

On the websites mentioned, we use the ad server Adition from the provider ADITION technologies AG, Oststraße 55, D-40211 Düsseldorf, to place advertising. Adition collects the following categories of personal data on our behalf:

  • Usage data (e.g. websites visited, interest in content, access times) and
  • Meta/communication data (e.g. device information, IP addresses).

Processing takes place exclusively within the EU. The legal basis for processing is your consent in accordance with Art. 6 (1) (a) GDPR. We store the data mentioned until the purpose for the collection no longer applies (no later than three months after collection) or as soon as you withdraw your consent. A withdrawal can be made at any time, free of charge and informally, via the following link: https://www.adition.com/datenschutz-opted-out/. The revocation does not affect the lawfulness of the processing up to the withdrawal.

Further information from the provider can be found in their data protection declaration at https://www.adition.com/datenschutz.
 

21. Facebook Pixel / Facebook Ads

Applies to: sinupret-extract.de, bronchipret.de, imupret.de, canephron.de, bionorica-dermaline.de, digestopret.de

The websites mentioned use the so-called Facebook pixel to measure visitor conversions. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected will also be transferred to the USA and other third countries (based on standard contractual clauses or the EU-US adequacy decision). This allows the behavior of site visitors to be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of Facebook advertisements to be evaluated for statistical and market research purposes and future advertising measures to be optimized.

The data collected is anonymous for us as operators of these websites; we cannot draw any conclusions about the identity of the users. However, we receive statistics about visitor activities on our websites generated from this data via the so-called Business Manager from Facebook Analytics, the analysis of which serves to optimally display and market the respective pages. The data processing takes place on the basis of an agreement on order processing by Facebook. The data is stored and processed by Facebook itself so that it can be linked to the respective user profile and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage guidelines. This allows Facebook to enable the placement of advertisements on Facebook pages as well as outside of Facebook. This use of data cannot be influenced by us as the site operator and is Facebook's own data protection responsibility.

We also use Facebook Ads to advertise the websites mentioned on Facebook and other platforms. We determine the parameters of the respective advertising campaign. Facebook is responsible for the precise implementation, in particular the decision on the placement of the ads to individual users (data processing based on an agreement between jointly responsible parties in accordance with Art. 26 GDPR, limited to the collection of data and its transmission to Facebook Ireland). The subsequent data processing by Facebook Ireland is not covered by this and is carried out under Facebook's own data protection responsibility.

Based on the statistics about visitor activities on our website created via Facebook Pixel, we operate group-based advertising on Facebook via Facebook Custom Audience by determining the characteristics of the respective target group. Based on the pseudonymous cookie ID set by the Facebook Pixel and the data collected about your usage behavior on our website, we operate personalized advertising via Facebook Pixel Remarketing. Using Facebook Pixel Conversions, we measure your subsequent usage behavior for web analysis and event tracking when you reach our website via an advertisement from Facebook Ads. The data processing takes place on the basis of an agreement on order processing by Facebook.

The use of Facebook pixels and Facebook Ads is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in effective advertising measures, including social media. If appropriate consent has been requested (e.g. consent to the storage of cookies), processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR; consent can be revoked at any time.

You can find further information on protecting your privacy in Facebook's data protection information: https://de-de.facebook.com/about/privacy/.

You can also deactivate the “Custom Audiences” remarketing function in the ad settings area at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this you must be logged in to Facebook. If you do not have a Facebook account, you can deactivate Facebook usage-based advertising on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/de/praferenzmanagement/.

 

22. Spotify Pixel / Spotify Ads

Applies to: imupret.de

(1) The aforementioned website uses the so-called pixel of Spotify to measure the conversion of visitors. The provider of this service is Spotify AB Regeringsgatan 19 SE-111 53 Stockholm, Sweden. According to Spotify, the data collected is also transferred to the USA (Spotify Ad Analytics, 4 World Trade Center, 150 Greenwich Street, New York, on the basis of so-called standard contractual clauses or the EU-US adequacy decision). By setting the Spotify pixel, the behaviour of site visitors can be tracked, but only if and after visitors have accepted the pixel in the cookies.

(2) The use of the Spotify pixel is based exclusively on your voluntary consent (cookie banner) in accordance with Art. 6 (1) point a GDPR; this consent can be withdrawn at any time.

(3) The collected data is anonymous for us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, we receive statistics generated by Spotify from this data about visitor activity on our websites, the analysis of which serves to optimise the presentation and marketing of the respective site. This allows the effectiveness of Spotify ads to be evaluated for statistical and market research purposes and future advertising efforts to be optimised. We, as the site operator, have no influence over how Spotify uses the data and Spotify is responsible for its own data protection practices.

(4) We also advertise the aforementioned website on Spotify. We determine the parameters of the respective advertising campaign. Spotify is solely responsible for the exact implementation, in particular the decision on the placement of the ads for individual users and any processing of personal data in this context. Here, too, we only receive anonymous key figures without personal reference.

(5) You can find more information about how Spotify protects your privacy in the Spotify privacy policy:
www.spotify.com/de/legal/privacy-policy/.

 


23. Server logs

(1) The web server(s) delivering the website write protocols in which the following data is listed:

  • Name of the website accessed;
  • File, date and time of access;
  • Amount of data transferred;
  • Notification of successful retrieval;
  • Browser type and version;
  • Operating system used by the user;
  • URL of the previously visited website (referrer URL);
  • IP address of the user;
  • Inquiring telecommunications provider.

(2) We use the log data only for statistical evaluations for the purpose of operation, security and optimization of the website and our offer. However, we reserve the right to check the log data retrospectively if there is concrete reason to suspect that the website has been or is being used illegally.

(3) The legal basis for maintaining the server logs is Art. 6 Para. 1 lit. f GDPR. As a rule, we delete the server logs after 14 days, or later if the reason for this is given in paragraph 2.

 

24. Your rights

(1) If you have any questions about the protection of your data, you can contact our data protection officer by sending an email to datenschutz@bionorica.de, or at our postal address with the addition "the data protection officer".

(2) You determine what happens to us with your personal data and we will help you with this. You can receive information about the data we have stored about you, you can request the correction of incorrect data and the restriction of the processing and deletion of your personal data from us. Please write an email to the address datenschutz@bionorica.de.

(3) You also have the right to data portability.

(4) You can withdraw your consent given to us at any time, whereby the route recommended by us will be specified depending on the medium (you can register for the newsletter, for example, simply by clicking on "Unsubscribe", which you can find in every newsletter Find output). You can also use the web form mentioned above for this. The way via the web form is not automated and therefore takes longer than the fully automatic way recommended by us in case of doubt.

(5) You also have the right to complain to the competent data protection supervisory authority.