Privacy Policy

1.1 Purposes and legal bases of data processing

The CUC processes your personal data on the basis of the following permissions and purposes:

• according to art. 6 par. 1 lit. a (consent) if you use the contact form on our website or send us an e-mail, we process your data to contact you,
• in accordance with Art. 6 para. 1 lit. b (execution of a contract) in order to be able to provide the services contractually agreed with you,
• according to art. 6 par. 1 lit. c (legal requirements) we transmit the personal data to other recipients such as authorities for the fulfilment of legal notification obligations (e.g. financial or criminal prosecution authorities, courts),
• according to Art. 6 Para. 1 lit. f (legitimate interest) we inform our customers about our products/services, if necessary, for the purpose of customer loyalty.

1.2 Recipients of personal data

Your personal data is entered into our central customer management system. Our parent company and all associated subsidiaries are recipients of this data. If necessary in the course of a certification procedure, we also transmit data to standard providers or authorities (e.g. QS, BLE or organic associations). For the processing of our accounting we transmit data to DATEV, a tax office and tax authorities. In addition, IT service providers who maintain our technical infrastructure may have access to personal data.

1.3 Third country transmission

We do not carry out third country transfers.

1.4 Data storage

We process your personal data as long as the customer relationship exists. The storage of data after termination of a customer relationship is reduced to the minimum duration of legal requirements, such as the proof and storage obligations (usually 6 - 10 years). The data is then deleted.

1.5 Rights of the persons concerned

According to the GDPR, regarding his stored personal data, the Customer has the right to:

• Be informed/access, Art. 15
• Rectification, Art. 16
• Erasure (“right to be forgotten”), Art. 17
• Restriction of processing, Art. 18
• Revocation of consent, Art. 7
• Objection of processing, Art. 21
• Data portability, Art. 20

1.6 Scoring

The CUC does not perform automatic decision making.

1.7 Categories of data

If we do not obtain information directly from you, but from our parent company, affiliates or government agencies, we may use the following categories of information:

• Name
• Contact details
• Function in the company

1.8 Separate information on your right of objection

You have the right to object to our direct advertising at any time. As soon as we have received a corresponding objection against the use of your data for direct marketing purposes, we will no longer make use of your data for this purpose.

You can address your objection to: Postal and e-mail address.

1.9 Right of appeal

Every customer has the right to contact us with a complaint or to use the contact form on the above-mentioned CUC website. In addition, a data protection supervisory authority may be contacted in the event of a complaint. The data protection supervisory authority responsible for the CUC is:

Berlin Commissioner for Data Protection and Freedom of Information

„Berliner Beauftragte für Datenschutz und Informationsfreiheit“

Friedrichstrasse 219

10969 Berlin, Germany