Data Privacy

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is the:

dcpc – Deutsche Care Property Consulting GmbH

Managing Directors: Walter Schröder

Mergenthalerallee 73-75
65760 Eschborn

Tel. +49 69 2475 6794

Mail: walter.schroeder@dc-pc.de

Website: www.dc-pc.de

Name and address of the data protection coordinator:

dcpc – Deutsche Care Property Consulting GmbH
Data protection coordinator: Walter Schröder
Westendcarrée
Gervinusstr. 17
60322 Frankfurt am Main

Tel. +49 69 2475 6794

Mail: walter.schroeder@dc-pc.de

Website: www.dc-pc.de

General information on data processing

Personal data

Personal data is any information relating to an identified or identifiable natural person. In this context, a natural person is considered to be identifiable if he or she can be identified directly or indirectly, in particular by means of an association with an identifier, such as a name, an identification number, location data, an online identifier or one or more special characteristics that are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person. Thus, this information includes, for example, your name, your address, your e-mail address, but also your telephone number, your license plate number or your identity card number.

Collection, processing and use of personal data

Personal data is collected or processed when you provide this information in our input masks.

Your data will be used solely to answer your inquiries, to process concluded contracts (fulfillment of the services described) and for technical administration. Your data will not be passed on to third parties. The transmission to state institutions and authorities entitled to receive information will only take place within the framework of the legal obligations to provide information.

In order for dcpc – Deutsche Care Property Consulting to provide its services, it is necessary to collect personal data that the customer provides, among other things, as part of the registration process, or as part of the registration for newsletters or the request for information, or as part of the creation of an account or the like. (e.g. at Careatlas) to collect, process and use.

All customer data is not visible to other customers on the website.

Each time the dcpc – Deutsche Care Property Consulting services are accessed, dcpc – Deutsche Care Property Consulting (or its web space provider) collects data (so-called server log files). This access data includes:
The IP address, the user ID on the dcpc – Deutsche Care Property Consulting platform, the name, date and time of the page accessed, the referrer URL (originating URL) from which the user accessed the page accessed, the volume of data transferred, the notification of successful retrieval and the session identification number.

dcpc – Deutsche Care Property Consulting uses the access data only for statistical evaluations for the purpose of operation, security and optimization of the offer. dcpc – Deutsche Care Property Consulting reserves the right, however, to check the access data subsequently if there is a justified suspicion of illegal use based on concrete evidence.

With each login to the network, or to the account or form requests, the following data is stored in so-called login records: Date and time of login, user ID on the dcpc – Deutsche Care Property Consulting platform, IP address (Internet protocol address), session cookie number, session identification number.

If the customer deletes his dcpc – Deutsche Care Property Consulting account (if any), his stored data will also be deleted. Otherwise, the personal data of the person concerned will be deleted or blocked as soon as the purpose of the storage ceases to apply. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other regulations to which the responsible party is subject. Data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.

We retain your data, which has been anonymized following the deletion of the account, for an indefinite period of time after we have completed our activities for you for statistical purposes in order to improve our offer and adapt it to the needs of our users.

You will receive information about your data stored by us at any time and without giving reasons. You can have it blocked, corrected or deleted at any time or revoke any consent given to us at any time without giving reasons to our address given in the imprint.

Use of personal data for mailing purposes

Part of the service offered by dcpc – Deutsche Care Property Consulting is the sending of emails (mailing) for the purpose of providing information on topics relating to the healthcare market.

This includes articles, newsletters, blog articles, and information about new products and services as well as promotions. In addition, a mailing may include recommendations of third party content.
Our primary concern is to make only relevant content and information available in order to provide customers with the best possible information on the healthcare market.

The emails are sent either directly by dcpc – Deutsche Care Property Consulting, or Careatlas itself, or via a third-party newsletter distribution platform.

The e-mail addresses of our recipients, as well as their other data described in this notice, are stored either on our servers or on servers of the third-party provider, who stores this information for the purpose of sending and evaluating the newsletter on our behalf, but not to write to our customers or newsletter recipients themselves or to pass it on to third parties. We will ensure that the third-party provider is obliged to protect our users’ data, to process it on our behalf in accordance with its data protection regulations and, in particular, not to pass it on to third parties and to publish its own data protection regulations.

Our mailings or newsletters may contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server or the server of the third-party provider when the newsletter is opened. In the course of this retrieval, technical information such as information about the browser and your system, as well as your IP address and the time of the retrieval are collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times.

The statistical surveys also include the determination of whether the newsletters are opened, when they are opened and when, if applicable, which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is not our intention to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

You can cancel the receipt of our mailing or newsletter at any time, i.e. revoke your consent. At the same time, your consent to the sending of the newsletter via the third-party provider and the statistical analyses will expire.

You will find a link to cancel the newsletter at the end of each newsletter.

This does not affect system emails that are necessary for the maintenance of the dcpc – Deutsche Care Property Consulting account, such as password reset emails.

External links

Our website may contain links to external websites. We would like to point out that these websites have their own privacy policies and that we do not accept any liability or responsibility in this regard.

Cookies

Our website uses cookies. These are small text files that your web browser accepts and stores on your computer when you visit our website. Cookies are used to store statistical information. We collect this data exclusively for statistical purposes in order to constantly improve our website and to make our offer even more attractive. We do not use cookies to store personal information or to pass on information to third parties. You can deactivate the storage of cookies via your browser settings or set your browser to notify you when cookies are sent.
Social Plugins

We may use social plug-ins (“plug-ins”) from social networks such as Facebook and Twitter on our website.

Facebook

Plug-ins of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”), may be used on our website. The Facebook plug-in is recognizable by an “f” or a “thumbs up” sign. When you call up the website of our Internet presence that uses such a plug-in, your browser establishes a direct connection with the Facebook servers. The content of the plug-in is transmitted by Facebook directly to your browser, which then integrates it into the website. By integrating the plug-in, Facebook receives the information that you have accessed the corresponding page of our website. If you are logged in to Facebook, Facebook can assign the visit to your Facebook account. If you click the “Like” button or post a comment, the corresponding information is transmitted directly from your browser to Facebook and stored there. If you are not a Facebook member, there is still the possibility that Facebook learns your IP address and stores it. For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights in this regard and setting options for protecting your privacy, please refer to the corresponding privacy notices of Facebook. If you do not want Facebook to collect data about you via our website and link it to your membership data stored on Facebook, you must log out of Facebook before visiting our website.

Twitter

Our website may contain functions of Twitter Inc., 1355 Market St., Suite 900, San Francisco, CA 94103, USA. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. In this way, a data transmission to Twitter also takes place. We, as the provider of the website, have no knowledge of the content of the transmitted data or its use by Twitter. You can find more information about this under the link http://twitter.com/privacy. You can change your privacy settings on Twitter in your account settings there at http://twitter.com/account/settings.

Use of analysis programs Google Analytics

Our website uses Google Analytics, a web analytics service provided by Google, Inc (“Google”). Google uses so-called “cookies”. These are text files that are stored on your computer and allow the analysis of your use of our website. The information generated by this text file about the use of our website is transmitted to a Google server and stored there. Google uses this information to evaluate your use of our website, compile reports on website activity for website operators and provide other services relating to website activity and internet usage. In the context of IP anonymization, your IP address will be shortened beforehand by Google within a member state of the EU or another state party to the Agreement on the European Economic Area. Comprehensive information about Google’s privacy policy can be found at https://www.google.com/analytics/terms/de.html. The IP address transmitted by your browser in the context of Google will not be merged with other data from Google. You can prevent the storage of cookies by changing the settings of your browser software accordingly. The deactivation of cookies may lead to functional restrictions. You also have the option to object to the collection by Google. With the browser add-on to disable the Google Analytics JavaScript, visitors to a website can prevent their data from being collected and used by Google.

Facebook-Tracking Pixel

With your consent, we use the “visitor action pixel” of Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) within our website. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to track the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook, about which we inform you according to our level of knowledge. Facebook may link this data to your Facebook account and also use it for its own advertising purposes, in accordance with Facebook’s Data Use Policy https://www.facebook.com/about/privacy/. You may allow Facebook and its partners to serve ads on and off Facebook. It may further store a cookie on your computer for these purposes. This consent may only be given by users who are over 13 years old. If you have not yet reached the age of thirteen, consent may only be given by or with the consent of your legal guardian.

Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:
Right of access
You may request confirmation from the controller as to whether personal data concerning you are being processed by us.
If such processing is taking place, you may request information from the controller about the following:
(1) the purposes for which the personal data are processed;
(2) the categories of personal data which are processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the planned duration of the storage of the personal data concerning you or, if concrete information on this is not possible, criteria for determining the storage period;
(5) the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
(6) the existence of a right of appeal to a supervisory authority;
(7) any available information on the origin of the data, if the personal data are not collected from the data subject.
You have the right to request information on whether the personal data concerning you is transferred to a third country or to an international organization. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer.

Right to Rectification

You have a right to correction and/or completion to the person responsible if the processed personal data concerning you is incorrect or incomplete. The person responsible must make the correction immediately.

Right to restriction of processing

You may request the restriction of the processing of personal data concerning you under the following conditions:
(1) if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
(2) if the processing is unlawful and you object to the erasure of the personal data and request instead the restriction of the use of the personal data;
(3) if the controller no longer needs the personal data for the purposes of the processing but you need it for the establishment, exercise or defense of legal claims; or
(4) if you have objected to the processing pursuant to Article 21(1) of the GDPR and it is not yet clear whether the controller’s legitimate grounds override your grounds.
If the processing of personal data concerning you has been restricted, such data may – apart from being stored – only be processed with your consent or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.
If the restriction of processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

Right to deletion

a) Obligation to delete
You may request the controller to erase the personal data concerning you without undue delay, and the controller is obliged to erase such data without undue delay, if one of the following reasons applies:
(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent on which the processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) DSGVO and there is no other legal basis for the processing.
(3) You object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) DSGVO.
(4) The personal data concerning you have been processed unlawfully.
(5) The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.

b) Information to third parties
If the controller has made the personal data concerning you public and is obliged to erase it pursuant to Article 17(1) of the GDPR, it shall take reasonable steps, including technical measures, having regard to the available technology and the cost of implementation, to inform data controllers that process the personal data that you, as the data subject, have requested them to erase all links to or copies or replications of such personal data.

c) Exceptions
The right to erasure does not exist to the extent that the processing is necessary
(1) for the exercise of the right to freedom of expression and information;
(2) for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
(3) for reasons of public interest in the area of public health pursuant to Article 9(2)(h) and (i) and Article 9(3) of the GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) DSGVO, insofar as the right referred to in section a) is likely to render impossible or seriously prejudice the achievement of the purposes of such processing; or
(5) for the assertion, exercise or defense of legal claims.

Right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right against the controller to be informed about these recipients.

Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used and machine-readable format. You also have the right to transfer this data to another controller without hindrance from the controller to whom the personal data was provided, provided that.
(1) the processing is based on consent pursuant to Art. 6(1)(a) DSGVO or Art. 9(2)(a) DSGVO or on a contract pursuant to Art. 6(1)(b) DSGVO and
(2) the processing is carried out with the help of automated procedures.
In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.
The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Right of objection

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO.
The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.
If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing. If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.
You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by means of automated procedures using technical specifications.

Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.