MOOG stands for confidentiality. Of course, we treat your personal data in accordance with the statutory data protection regulations. The following information provides you with a simple overview of what happens to your personal data when you visit our website.
1. General information
Personal data is any data relating to an identified or identifiable natural person. Processing is any operation or set of operations relating to personal data, in particular the collection, organisation, storage and destruction of data. Details can be found in Art. 4 No. 1 and 2 of the GDPR.
Your data is collected on our website when you provide it to us. This can be, for example, data that you enter in a contact form.
Other data is collected automatically by our IT systems when you visit our website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website. Some data are collected to ensure error-free provision of the website and some data may be used to analyse your user habits.
For detailed information on data protection, please refer to the individual explanations in the text below.
2. Website encryption and internet security
Our website uses SSL or TLS encryption for security reasons and in order to protect the transmission of confidential content, such as orders or enquiries that you send to us in our function as website operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
We would like to stress that data transmission on the Internet (e.g. communication by e-mail) can nevertheless have security gaps. Complete protection of data against access by third parties is not possible.
Many obligations under data protection law apply to the so-called "controller". This refers to the natural or legal person who alone or together with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses or the like). The controller of data processing on this website is:
MOOG Partnerschaftsgesellschaft mbB
Steuerberater, Rechtsanwälte, Wirtschaftsprüfer, vereidigte Buchprüfer
(Tax Advisers, Lawyers, Public Auditors, Sworn Auditors)
Phone: 06151 - 99360
4. Name and address of the data protection officer
We have appointed as data protection officer:
Marc Oliver Giel
5. Web hosting
Our website is hosted by domainfactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning in Germany. All data collected and stored by us when you visit our website is therefore stored on domainfactory's servers. Our data is stored on their servers in Cologne, Germany. Domainfactory handles the user data that accumulates there strictly according to the instructions of MOOG as controller of the data.
Description and scope of data processing
- Information about the use of this website within the framework of Google Analytics (cookie names: _ga, expiry time 2 years, as well as _gid, expiry time 24 hours).
- Information that the visitor has agreed to the setting of Google Analytics cookies by clicking the OK button (cookie name: moog_ga, expiry time 14 days).
- Information that the user, has agreed to our website saving the cookie settings by clicking the OK button (cookie name: moog_privacy, expiry time 14 days).
Information as to whether the user is logged into the CRM (cookie name: wires, expires after the end of the session).
The user data collected in this way is anonymised by technical precautions. Therefore, it is not possible for us to connect the data to the respective user. The data is not stored together with other personal data of the user.
Legal basis for processing
The legal basis for the processing of personal data by setting the cookies "_ga", "_gid", "moog_ga" and "moog_privacy" is Art. 6 para. 1 sentence 1 lit. a) GDPR. According to this, personal data can be processed with the consent of the data subject. The aforementioned cookies are not set if consent is not given. In this case, the website remains usable, but the cookie banner is displayed again when changing pages.
The legal basis for the cookie "wired" is Art. 6 para. 1 sentence 1 lit. f) GDPR. According to this, data processing is permissible if it is necessary to protect the legitimate interests of the controller or a third party and the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, do not override, in particular if the data subject is a child.
Purpose of the data processing
The cookies "_ga", "_gid", "moog_ga" are used for analysis purposes and to improve the quality and content of the website. Through these analysing cookies, we learn how users use our website. With these insights we can optimise the website offer.
The cookie "moog_privacy" is set so that the consent to the setting of analysis cookies does not reappear each time you change pages.
The cookie "wired" is necessary so that access rights can be clarified. This is our legitimate interest in processing the "wired" cookie.
Duration of storage, possibility of objection and removal
7. Acquisition of data in the system and creation of log files
Acquisition of data in the system and log files
When our website is accessed, our system automatically records information about the computer system that your browser transmits to us and stores it temporarily. This is the connection data of the respective requesting computer (IP address) and the individual pages of our website that are called up by the respective computer. In addition, the date, time and duration of the visit are stored as well as the browser used by the visitor to access the Internet. This data is evaluated for statistical purposes. The respective users are not traced. Likewise, this data is not merged with other data sources.
No log files are generated on the server. Statistics are only kept on the number of page views without recording IP addresses.
Legal basis for processing
The legal basis for the temporary storage of the data is Art. 6 para. 1 sentence 1 lit. f) GDPR.
Purpose of processing
We pursue the following objectives by processing user data:
The temporary storage of the aforementioned information by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.
These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 sentence 1 lit. f) GDPR.
Storage period of the data in the system
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected.
In case of data collection for the provision of the website, this is the case when the respective session has ended.
The data may also remain stored temporarily for as long as it is necessary to preserve MOOG's legal rights.
Possibility of objection and removal
The collection of data is absolutely necessary for the provision and operation of the website. So there is no possibility for the user to object.
8. Contacting us by e-mail
You may also contact us via the provided e-mail address.
Scope of data collection
In this case, the user's personal data transmitted with the e-mail will be stored. In this context, the data will not be passed on to third parties and is used exclusively for processing the conversation.
Legal basis for data processing
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 sentence 1 lit. f) GDPR. If the e-mail contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b) GDPR.
Purpose of data processing
We process the personal data contained in the e-mail solely for processing the contacting. This also constitutes the required legitimate interest in processing the data you have sent by e-mail.
The contact request you send by e-mail will be deleted as soon as we have recognised your note or have finally answered your request and the conversation has ended. The conversation has ended when the circumstances indicate that the matter in question has been conclusively clarified. However, the data may remain stored temporarily for as long as necessary for the assertion, exercise and defence of legal claims or if there are statutory storage obligations.
Possibility of objection and removal
If you contact us by e-mail, you can object to the storage of your personal data at any time. In such a case, however, the conversation cannot be continued. Please contact us by e-mail if you wish to object. All personal data stored in the course of contacting us will be deleted in this case. However, the data may remain stored temporarily as long as this is necessary for the assertion, exercise and defence of legal claims or if there are statutory storage obligations.
9. Use of Google AdWords Conversion
Use of Google AdWords
MOOG uses Google AdWords to advertise our offers on external websites with the help of advertising media (so-called Google AdWords). By using Google AdWords Conversion in relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. This is done so that we can show users advertising that is of interest to them, make our website more interesting to users and achieve a fair calculation of advertising costs.
The advertising material is delivered by Google via so-called "Ad Servers". For this purpose, we use ad server cookies, which can be used to measure certain parameters for measuring success, such as the display of ads or clicks by users. If a user accesses our website via a Google ad, Google Adwords stores a cookie in the user's system. These cookies usually lose their validity after 30 days. They are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.
Evaluation for the assessment of advertising measures
These cookies enable Google to recognise a user's internet browser. If a user visits certain pages of an Adwords customer's website and the cookie stored on their computer has not yet expired, Google and the customer can recognise that the user has clicked on the ad and been redirected to that page. A different cookie is assigned to each Adwords customer. Cookies can therefore not be tracked via the websites of Adwords customers. MOOG itself does not collect and process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. These evaluations enable us to recognise which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising media; in particular, we cannot identify users on the basis of this information.
Connection of your browser to Google
Due to the used marketing tools, your browser automatically establishes a direct connection with the Google server. MOOG has no influence on the scope and further use of the data collected by Google with this tool and therefore informs you according to MOOG’s own level of knowledge: Through the integration of AdWords Conversion, Google receives the information that you have called up a certain part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is still possible for the provider to obtain and store your IP address.
Settings and removal options
You can prevent participation in this tracking procedure in various ways:
by adjusting your browser software accordingly and, in particular, by suppression of third-party cookies you will not receive ads from third-party providers;
by disabling conversion tracking cookies by setting your browser to block cookies from the domain www.googleadservices.com and by appropriate configuration under https://www.google.de/settings/ads, whereby these configurations are deleted when you delete your cookies;
by disabling interest-based ads from the providers that are part of the self-regulatory campaign "About Ads", via the link http://www.aboutads.info/choices, whereby this setting is deleted when you delete your cookies;
by permanently deactivating them in your Firefox, Internetexplorer or Google Chrome browsers at the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of our online services to their full extent.
Legal basis for processing
The legal basis for the processing of your data is your consent in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR and our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f) GDPR. Our legitimate interest is based on the fact that we want to offer interesting web content for users and to check the benefits of expenditure on advertising.
Further information on data protection at Google
Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and here: https://services.google.com/sitestats/de.html.
Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org.
Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
10. Google Analytics
This website uses functions of the web analysis service Google Analytics, a web analysis service of Google Inc. ("Google"). Google Analytics is used in accordance with the conditions agreed with Google by the German data protection authorities.
Google Analytics uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
Regularly: IP anonymisation
We have activated the IP anonymisation function on our website. This means that your IP address is shortened by Google within member states of the European Union or in other contracting member states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
No combination with other Google data
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
Configuration of your browser, browser plugins, objection to data collection
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address), and the processing of this data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de
To prevent the collection of your data by Google Analytics you can also click on the following link. An opt-out cookie will be set, which will prevent the collection of your data during future visits to this website: Deactivate Google Analytics.
The website uses Google Analytics with the extension "anonymizeIp()". This means that IP addresses are processed in abbreviated form, thus excluding the possibility of personal references. If the data collected about you is personally identifiable, this is immediately excluded and the personal data is deleted immediately.
Purpose of processing
We use Google Analytics to analyse and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Legal basis for processing
The legal basis for the use of Google Analytics is your consent in connection with Art. 6 para. 1 sentence 1 lit. a) GDPR.
Processing on behalf of the controller and information about the third-party provider
We have concluded a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Information of the third party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
Overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html
11. What rights do you have with regard to your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. In particular, you also have the right to request the correction, blocking or deletion as well as the restriction of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. In detail, you have the following rights:
Right to information
You can request from MOOG information on whether personal data concerning you is being processed by MOOG. If this is the case, you can request information from MOOG about the following:
the purposes of processing;
the categories of personal data being processed;
the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
the planned duration of the storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage period;
the existence of a right to rectification or erasure of personal data concerning you, a right to obtain the restriction of processing by the controller or a right to object to such processing;
the existence of a right of appeal to a supervisory authority;
any available information on the origin of the data if the personal data is not collected from the data subject;
the existence of automated decision-making, including profiling, pursuant to Art. 22 para. 1 and 4 of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.
You have the right to request information on whether your personal data are transferred to a third country or to an international organisation. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer.
Right to rectification
You have a right of rectification against the controller if the personal data processed concerning you is inaccurate. If it is incomplete, you have a right to have it completed. The controller must make the rectification without delay.
Right to restriction of processing
The GDPR also provides for a right to restriction of personal data. Where the processing of personal data relating to you has been restricted, such data may only be processed - apart from being stored - with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the European Union or a Member State.
If the restriction of processing has been carried out in accordance with the following conditions, you will be informed by the controller before the restriction is lifted.
You may request us to restrict processing under the following conditions:
if you contest the accuracy of the personal data relating to you for a period of time which enables us as the controller to verify the accuracy of the personal data;
if the processing is unlawful and you refuse to erase the personal data and instead request us to restrict the use of the personal data;
if we, as the controller, no longer need the personal data for the purposes of the processing but you need it for the assertion, exercise or defence of legal claims; or
if you have objected to the processing pursuant to Art. 21 para. 1 GDPR, but it has not yet been determined whether the legitimate grounds of the controller outweigh your reasons.
Right to erasure
You may request that we, as controller, delete the personal data concerning you, and we are obliged to delete this data without delay if one of the following reasons applies:
The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.
You withdraw your consent on which the processing was based pursuant to Art. 6 para. 1 sentence 1 lit. a) or Art. 9 para. 2 lit. a) GDPR and there is no other legal basis for the processing.
You object to the processing pursuant to Art. 21 para. 1 GDPR and there are no overriding legitimate reasons for the processing, or you object to the processing pursuant to Art. 21 para. 2 GDPR.
The personal data concerning you have been processed unlawfully.
The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
The personal data concerning you has been collected in relation to information society services offered pursuant to Art. 8 para. 1 of the GDPR.
Information to third parties
If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Art. 17 para. 1 GDPR, he shall take reasonable steps, including technical measures regarding to the available technology and the cost of implementation, to inform data controllers that process the personal data that you, as the data subject, have requested them to erase all links to, or copies or replications of, that personal data.
The right to erasure does not apply if the processing is necessary
for the exercise of the right to freedom of expression and information;
for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of the controller’s official authority;
for reasons of public interest in the area of public health pursuant to Art. 9 para. 2 lit. h) and i) and Art. 9 para. 3 GDPR;
for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Art. 89 para. 1 GDPR, where erasure is likely to render impossible or seriously prejudice the achievement of the purposes of such processing; or
for the assertion, exercise or defence of legal claims.
Right to information
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about these recipients by the controller.
Right to data portability
You have the right to receive the personal data concerning you that you have provided to the controller in a structured, common and machine-readable format. You also have the right to transfer this data to another controller without hindrance from the controller to whom the personal data has been provided if
the processing is based on consent pursuant to Art. 6 para. 1 sentence 1 lit. a) GDPR or Art. 9 para. 2 lit. a) GDPR or on a contract pursuant to Art. 6 para. 1 sentence 1 lit. b) GDPR and
the processing is carried out with the help of automated procedures.
In exercising this right, you also have the right to have your personal data transferred directly from one controller to another controller, insofar as this is technically feasible. This must not affect the freedoms and rights of other persons.
The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of the controller’s official authority.
Right to object
You have the right to object at any time, on reasons relating to your particular situation, to the processing of your personal data which is carried out on the basis of Art. 6 para. 1 lit. e) or f) GDPR; this also applies to profiling based on these provisions. The controller shall no longer process your personal data unless he can demonstrate compelling legitimate reasons for the processing that override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.
If your personal data is processed for the purposes of direct marketing, you have the right to object at any time to the processing of your personal data for the purposes of such marketing; this also applies to profiling insofar as it is related to such direct marketing.
If you object to the processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by means of automated procedures using technical specifications.
Right to revoke your consent under data protection law
You have the right to revoke your declaration of consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
Automated decision in individual cases including profiling
You have the right not to be subject to a decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision
is necessary for the conclusion or performance of a contract between you and the controller,
is permitted under Union or Member State legislation to which the controller is subject and that legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests or
is done with your explicit consent.
However, these decisions must not be based on special categories of personal data pursuant to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 lit. a) or g) GDPR applies and appropriate measures have been taken to protect the rights and freedoms and your legitimate interests.
With regard to the cases 1. and 3., the controller shall take reasonable steps to safeguard the rights and freedoms as well as your legitimate interests, including at least the right to obtain the intervention of a person on the part of the controller, to express your point of view and to contest the decision.
Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant about the status and outcome of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
The competent supervisory authority in matters of data protection law is the State Data Protection Commissioner of the federal state in which our company has its registered office. A list of data protection officers and their contact details can be found here: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.