Privacy policy
Below we explain what data we collect about you and what we do with this data. We also inform you about your data protection rights and explain who you can contact with questions about the protection of your data.
Who we are
Controller responsible for the processing of your data:
AMEVIDA SE
Kurt-Schumacher-Str.
100
D-45881 Gelsenkirchen
Tel.: 0209 / 7070-0
dialog@amevida.de
Management Board: Dr. Matthias Eickhoff
If you have any questions about this privacy policy, the processing of your data, your rights or other concerns in the area of data protection, our data protection officer will be happy to help you.
Contact details of the data protection officer:
The data protection officer
AMEVIDA SE
Kurt-Schumacher-Str.
100
D-45881 Gelsenkirchen
datenschutz@amevida.de
Scope of application
This privacy policy applies to the domain www.facebook.com/amevida.deutschland/ and is intended for visitors to this website. It does not apply to other domains of Meta Platforms Ireland Limited, in particular facebook.com, or to domains of an affiliated company of Meta Platforms Ireland Limited (hereinafter referred to as Facebook) and data processing by Facebook. For information on data processing by Facebook, please refer to Facebook's privacy policy and terms of use.
Our website contains links to the websites of other operators to which this privacy policy does not apply.
The responsibility for the insertion of advertising banners, text advertising or advertising films before or during embedded videos lies with the respective operator.
Do I have to enter my data?
We offer you the opportunity to make a personal request. It is up to you to decide whether you make use of this option and provide your data. To process your request, we process the personal data that you have sent by e-mail or the network, posted on the bulletin board or communicated in the chat. The data you post on the bulletin board/your comments are publicly visible. Your data and details will be passed on to third parties if this is necessary for processing.
Please note that if you provide information about other persons, you must have obtained their prior consent and informed them of the purposes of the disclosure as set out in this Privacy Policy.
We also ask you to pass this information on to the people you involve in the use of our services, such as family members or authorized representatives.
What data is processed?
1. processed data and processing purposes:
Below we explain the purposes for which your data is processed if you have a request.
- Processing of inquiries: We process the data that you give us when you have a question or request. This also includes the data you enter in the contact form or send by e-mail or fax.
- Competitions: We process your data when you take part in our competitions in order to draw winners. Participation through posts, likes or other reactions is not anonymous. You will be informed of a win by linking to your profile in the winner notification on our website. Your contact details (e-mail address, telephone number) and your address will be collected in the event of a non-cash prize in order to be able to send it and process the delivery. Your date of birth will be processed in order to verify your age.
Data | Processing of inquiries | Competitions |
Salutation | X | |
First name and last name or user name | X | X |
E-mail address | X | X |
Topic | X | |
Message or contribution | X | X |
Profile picture | X | |
Public profile | X | X |
"Like" or other reaction | X | X |
Address | X | |
Phone number | X | |
Date of birth | X | |
Type of profit | X |
2. information about automated individual decisions
No automated individual decisions are made.
3. legal basis for the use of your data
The processing of your data for the purpose of "processing inquiries" is based on our legitimate interest in answering your questions and concerns (Art. 6 para. 1 lit. f) GDPR).
The processing of your data when participating in a competition takes place as part of the fulfillment of the contract with you (Art. 6 para. 1 lit. b) GDPR).
In addition, the above-mentioned data is used for the following purposes in the context of balancing interests (Art. 6 para. 1 lit. f) GDPR). The interests are listed below:
- Should a security incident occur in our company in which your data is affected, we are obliged to report the case to the data protection supervisory authority responsible for us (Art. 33 GDPR). As it is in our legitimate interest to comply with this statutory reporting obligation as quickly as possible, it is possible that your personal data may be processed as part of the investigation of the relevant security incident. The reports of these security incidents to data protection supervisory authorities do not contain any of your personal data.
- As it is in our interest to ensure the security of our systems, we regularly carry out security and effectiveness tests in the course of which your above-mentioned data may be processed.
- As it is in our interest to resolve legal disputes, we process your data for a specific purpose in such a case. It is also in our interest to retain evidence in the event of legal disputes until all relevant statutory limitation periods pursuant to Sections 195 et seq. BGB have expired. For this purpose, we retain the relevant data about you in accordance with these limitation periods. The deletion periods cannot be predicted as a general rule, as they depend on the respective subject matter of the dispute and the corresponding statutory limitation period, which can be up to 30 years. The regular limitation period is 3 years.
- In addition, it is in our interest to investigate suspicious cases and to pass on relevant information to law enforcement authorities in the event of concrete criminal suspicion.
- We carry out audits, internal audits and other control measures (e.g. monitoring by the data protection officer), as it is in our legitimate interest to comply with legal regulations, to create transparency about our business processes, to constantly optimize these processes and to prevent and identify actions that are detrimental to our business. This may involve processing documents or files that contain your personal data.
4. deletion periods (or storage period)
- The data relating to the processing of inquiries will be deleted after processing has been completed.
- The comments and likes published by you on our page (including as part of participation in a competition) are publicly visible for as long as the page exists. Public comments and likes can be deleted from our page by the user at any time.
- Addresses and contact details collected for the sending of a non-cash prize will be deleted after the successful sending.
- In order to preserve evidence, we retain data within the framework of the statutory statute of limitations pursuant to Sections 195 et seq. BGB (German Civil Code). The storage period for your data may extend beyond the period specified above. The statutory limitation periods can be up to 30 years. The regular limitation period is 3 years.
5. origin of the data
No data is collected from third parties.
Which bodies receive your data?
The following list shows which bodies receive your data and in which cases. You can read about the specific data involved in the relevant sections of this declaration. Your data is sometimes passed on due to legal reporting obligations. In other cases, we use selected vicarious agents and service providers who work for us as processors (in accordance with Art. 28 GDPR) and may be granted access to your data to the extent necessary. Processors are subject to numerous contractual obligations and, in particular, may only process your personal data on our instructions and exclusively for the fulfillment of the orders received from us.
- Auditors
- Operator of the social network or professional network
- Data Protection Officer
- Service provider for the destruction of data carriers
- Shipping service provider (e.g. for written communication)
- E-mail provider of the recipient (for communication by e-mail)
- IT service provider
- Lawyers, law enforcement authorities, public prosecutor's office, courts, opposing lawyers, state or federal criminal investigation office (in the event of legal disputes and concrete criminal suspicion)
- Telecommunications service provider (if we communicate by telephone)
Data recipients in non-EU countries
Our IT service providers have affiliated companies or subcontractors outside the EU who can access your data. The EU Commission determines which non-EU/EEA countries (third countries) have an adequate level of data protection. The standard EU contracts in accordance with Commission Decisions No. 2010/87/EU and (EU) 2021/914 are used for the transfer, samples of which can be found on the website of the EU Commissioner for Justice and in the Official Journal of the EU.
Your rights
You have the right to:
- Information about the personal data stored about you (Art. 15 GDPR)
- Data portability (Art. 20 GDPR)
- Correction and completion of your data available to us (Art. 16 GDPR)
- Erasure (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Revocation of consents granted (Art. 7 GDPR) with effect for the future. The lawfulness of the data processing carried out up to the time of withdrawal remains unaffected.
- You also have the right to express your point of view and to challenge a decision based on automated processing (Art. 22 GDPR).
You have the right to object to the processing of your data to protect our legitimate interests or the legitimate interests of third parties (Art. 21 GDPR) - You have the right to object to such processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions within the meaning of Art. 4 para. 4 GDPR.
Objection to direct marketing - You have the right to object to the processing of your data for the purpose of direct marketing at any time and without giving reasons.
To exercise these rights, you can contact us in particular by e-mail at datenschutz@amevida.de.
You also have the right to lodge a complaint with a data protection supervisory authority.