Deutsch English
Contact
UROMED Hotline +49 40 71 30 07-0
×
+49 40 71 30 07-0
UROMED Kurt Drews KG
Kurt Drews
Meessen 7/11
D-22113 Oststeinbek
Save contact

Privacy policy
UROMED Kurt Drews KG

1. Data protection at a glance

General notes

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data are any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our data privacy statement listed below this text.

Data collection on this website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find the contact details of the same in the section “Information on the Data Controller” in the present data privacy statement.

How do we collect your data?

Your data are collected on the one hand by your disclosure of your data to us. Data thus provided comprise e.g. information that you enter in a contact form.

Other data are collected by our IT systems automatically or with and after your consent when you visit the website. These are mainly technical data (e.g. internet browser, operating system or time of page view). These data are collected automatically as soon as you enter this website.

What do we use your data for?

Some of the data are collected to ensure error-free provision of the website. Other data may be used to analyse your user behaviour.

What are your rights regarding your data?

You have the right at any time to receive information, free of charge, about the origin, recipients and purpose of your stored personal data. You also have a right to request correction or deletion of these data. If you have given your consent to data processing, you can revoke this consent at any time with effect for the future. You also have the right to request restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority (right of appeal).

You can contact us at any time with regard to this and other questions on the subject of data protection.

Analysis tools and third-party tools

When you visit this website, your surfing behaviour may be statistically analysed. This is done mainly with so-called analysis programmes.

Detailed information on these analysis programmes can be found in the following data privacy statement.

2. Hosting

External Hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website are stored on the hoster’s servers. These data may include, without being limited to, IP addresses, contact requests, metadata and communication data, contractual data, contact details, names, website accesses and other data generated via a website.

The hoster is used for the purpose of contract fulfilment towards our existing and potential customers (Art. 6 (1) lit. b of the GDPR) and in the interest of reliable, fast and efficient provision of our online offer by a professional provider (Art. 6 (1) lit. f of the GDPR). If and insofar as a relevant consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG, if and insofar as the consent covers storage of cookies or access to information on the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Our hoster will process your data only to the extent that this is necessary for the fulfilment of its performance obligations, and will follow our instructions with regard to these data.

We use the following hoster:

domainfactory GmbH
Oskar-Messter-Str. 33
85737 Ismaning
Germany

Commissioned processing

We have concluded a Commissioned Processing Agreement (CPA) with the above provider. This is a contract required by data protection law, which ensures that this company processes the personal data of our website visitors exclusively in accordance with our instructions and in compliance with the GDPR.

3. General notes and mandatory information

Data protection

The operators of these web pages take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection reg-ulations and the present data privacy statement.

When you use this website, various personal data are collected. Personal data are any data by which you can be personally identified. The present data privacy statement explains what data we collect and what we use them for. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the internet (e.g. communication by email) may have security flaws. Complete protection of the data against access by third parties is not possible.

Information on the Data Controller

The data controller responsible for the data processing on this website is:

UROMED Kurt Drews KG
Meessen 7/11
22113 Oststeinbek

Telefon: 040 71 30 07-0
E-Mail: service@uromed.de

The data controller is the individual or entity that alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

Retention period

Unless a more specific retention period is stated within this data privacy statement, your personal data will remain with us until the purpose of the data processing ceases to apply. If you assert a justified request for deletion or revoke consent to the data processing, your data will be deleted unless we have other legally permissible reasons for retaining your personal data (e.g. retention periods under fiscal or commercial law); in the latter case, the data will be deleted once these reasons cease to apply.

General information on the legal bases for data processing on this website

If and insofar as you have consented to data processing, we process your personal data on the basis of Art. 6 (1) lit. a of the GDPR, or of Art. 9 (2) lit. a of the GDPR if and insofar as special categories of data are processed in accordance with Art. 9 (1) of the GDPR, respectively. If and insofar as you have consented to the storage of cookies or to the access to information in your local device (e.g. via device fingerprinting), the data processing is also carried out on the basis of § 25 (1) of the TTDSG. The consent can be revoked at any time. If your data are required for contract fulfilment or for implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1) lit. b of the GDPR. Furthermore, we process your data if and insofar as this is necessary for the fulfilment of a legal obligation on the basis of Art. 6 (1) lit. c of the GDPR. The data processing may also be based on our legitimate interest pursuant to Art. 6 (1) lit. f of the GDPR. Information on the legal bases relevant in each individual case is provided in the following paragraphs of the present data privacy statement.

Data Protection Officer

We have appointed a data protection officer for our company.

Compliant Digital GmbH & Co. KG
Jamie Crookes
Telefon: 05254 9478022
E-Mail: info@compliant-digital.de

Note on data transfer to the USA and other third countries

Among other things, we use tools by companies based in the USA or other third countries that are not secure under data protection law. When these tools are active, your personal data may be transferred to and processed in these third countries. We would like to point out that a level of data protection comparable to that in the EU cannot be guaranteed in these countries. For exam-ple, US companies are obliged to hand over personal data to security authorities without you as the data subject being able to take legal action against this. Hence it cannot be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for surveillance purposes. We have no influence on these processing activities.

Revocation of your consent to data processing

Many data processing operations are possible only with your explicit consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to object to the collection of data in specific cases, and to direct advertising (Art. 21 of the GDPR)

IF THE DATA ARE PROCESSED ON THE BASIS OF ART. 6 (1) LIT. E OR F OF THE GDPR, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE TERMS AND PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THE PRESENT DATA PRIVACY STATEMENT. IF YOU LODGE AN OBJECTION, WE WILL NO LONGER PROCESS YOUR RELEVANT PERSONAL DATA UNLESS WE CAN PROVE COMPELLING LEGITIMATE REA-SONS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES PURPOSES OF ASSERTING OR EN-FORCING OR DEFENDING AGAINST LEGAL CLAIMS (OBJECTION ON THE BASIS OF ART. 21 (1) OF THE GDPR).

IF YOUR PERSONAL DATA ARE PROCESSED FOR THE PURPOSE OF DIRECT AD-VERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PRO-CESSING OF PERSONAL DATA PERTAINING TO YOU FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING IF AND INSOFAR AS IT IS ASSOCIATED WITH THIS KIND OF DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION PURSUANT TO ART. 21 (2) OF THE GDPR).

Right of appeal to the competent supervisory authority

In the event of violations of the GDPR, data subjects have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, workplace or place of the alleged breach. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request direct transfer of the data to another controller, this will be done only if and insofar as it is technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption, respectively, for security reasons and to protect the transmission of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the change in your browser’s address line from “http://” to “https://”, with a padlock icon displayed in your browser’s address bar.

If SSL or TLS encryption is activated, respectively, the data you transfer to us cannot be read by third parties.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right at any time to otain, free of charge, information about your stored personal data, their origin and recipient and the purpose of the data processing and, where applicable, a right to rectification (correction) or deletion of these data. You can contact us at any time about this and any other questions you may have on the subject of personal data.

Right to restrict processing

You have the right to request restriction of the processing of your personal data. You can contact us at any time for this purpose. The right to restrict processing exists in each of the following cases:

  • If you dispute the correctness of your personal data held by us, we will usually need time to review this. For the duration of the review, you have the right to request re-striction of the processing of your personal data.
  • If processing of your personal data has happened/is happening unlawfully, you can re-quest restriction of the data processing instead of erasure.
  • If we no longer need your personal data, but you need them to assert or enforce, or to defend against, legal claims, you have the right to request restriction of the processing of your personal data instead of deletion of the same.
  • If you have lodged an objection pursuant to Art. 21 (1) of the GDPR, a balancing of your and our interests must be carried out. As long as it has not yet been established whose interests prevail, you have the right to demand restriction of the processing of your personal data.

If you have restricted the processing of your personal data, such data may – apart from being stored – be processed only with your consent, or in order to assert or enforce, or to defend against, legal claims, or for protection of the rights of another individual or entity, or for reasons of important public interest of the European Union or a Member State.

4. Data collection on this website

Cookies

Our internet pages use so-called cookies. Cookies are small text files and do not cause any damage to your local device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your local device. Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your local device until you delete them explicitly or they are automatically deleted by your web browser.

In some cases, cookies by third-party companies may also be stored on your local device when you call up our web page (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behaviour or display advertising.

Necessary cookies, i.e. cookies that are required in order to carry out the electronic communica-tion process, to provide certain functions that you have requested (e.g. for the shopping cart function), or to optimise the website (e.g. cookies to measure the web audience), are stored on the basis of Art. 6 (1) lit. f of the GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically flawless and optimised provision of its services. If and insofar as consent to the storage of cookies and comparable recognition technologies has been obtained, processing is carried out exclusively on the basis of this consent (Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG); such consent can be revoked at any time.

You can select your browser’s options so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

If and insofar as cookies are used by third-party companies or for analysis purposes, we will inform you about this separately in the context of the present data privacy statement and, should the situation arise, request your consent.

You can revise your respective decisions at any time, for example by activating or deactivating individual cookie categories.

Here you can change the cookie settings in the cookie banner.

Server log files

The provider of the pages automatically collects and stores information which your browser automatically transmits to us in so-called server log files. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

These data are not merged with other data sources.

The collection of these data is based on Art. 6 (1) lit. f of the GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website – for this purpose, the server log files must be stored.

Contact form

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provided there, will be stored in order to process the request and for use in case of follow-up questions. We will not disclose this information without your consent.

The processing of these data is based on Art. 6 (1) lit. b of the GDPR, if and insofar as your request is related to the fulfilment of a contract or necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Art. 6 (1) lit. f of the GDPR) or on your consent (Art. 6 (1) lit. a of the GDPR), if and insofar as this has been obtained.

The data you enter in the contact form will remain with us until you ask us to delete them or revoke your consent to their storage, or the purpose of the data storage ceases to apply (e.g. after we have completed processing your enquiry). Mandatory statutory provisions – especially retention periods – remain unaffected thereby.

Request by email, telephone or fax

If you contact us by email, telephone or fax, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We will not disclose this information without your consent.

The processing of these data is based on Art. 6 (1) lit. b of the GDPR, if and insofar as your request is related to the fulfilment of a contract or necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of the enquiries addressed to us (Art. 6 (1) lit. f of the GDPR) or on your consent (Art. 6 (1) lit. a of the GDPR), if and insofar as this has been obtained.

The data you send to us via contact requests will remain with us until you ask us to delete them or revoke your consent to their storage, or the purpose of the data storage ceases to apply (e.g. after we have completed processing your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected thereby.

5. Analysis tools and advertising

Matomo

This website uses the open-source web analytics service Matomo. Matomo uses technologies that enable recognition of the user across sites for analysis of user behaviour (e.g. cookies or device fingerprinting). The information collected by Matomo about the use of this website is stored on our server. The IP address is anonymised before storage.

Matomo enables us to collect and analyse data about the use of our website by its visitors. This enables us to find out, among other things, when which page views were made and from which region the requests came. We also collect various log files (e.g. IP address, referrer, browsers and operating systems used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6 (1) lit. f of the GDPR. The website operator has a legitimate interest in the anonymised analysis of user behaviour in order to optimise both its website and its advertising. If and insofar as a relevant consent has been received, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG, if and insofar as the consent includes storage of cookies or access to information in the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

You can implement your revocation at any time by » changing and adapting the cookie settings.

IP anonymistion

We use IP anonymisation for the analyses with Matomo. Here, your IP address is truncated before analysis so that it can no longer be unambiguously assigned to you.

Hosting

We host Matomo exclusively on our own servers so that all analysis data remains with us and are not disclosed.

6. Plugins and tools

YouTube with enhanced data protection

This website embeds videos from YouTube. The operator of the pages is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. By contrast, disclosure of data to YouTube partners is not necessarily excluded by the extended data protection mode. Thus, YouTube – regardless of whether you watch a video – will establish a connection to the Google DoubleClick network.

As soon as you start a YouTube video on this website, a connection to YouTube’s servers is established. It informs the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.

Furthermore, after starting a video YouTube may store various cookies on your local device, or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve the user experience, and prevent fraud attempts.

After the start of a YouTube video, further data processing operations over which we have no control may be triggered.

The use of YouTube is in the interest of attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 (1) lit. f of the GDPR. If and insofar as a relevant consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG, if and insofar as the consent includes storage of cookies or access to information in the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

For more information about data protection at YouTube, please see their data privacy statement at https://policies.google.com/privacy?hl=de

Google Web Fonts

This site uses so-called web fonts provided by Google for the uniform display of typefaces. When you call up a web page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

For this purpose, the browser you use must connect to Google’s servers. This enables Google to know that this website has been accessed via your IP address. The use of Google WebFonts is based on Art. 6 (1) lit. f of the GDPR. The website operator has a legitimate interest in the uni-form presentation of the typeface on its website. If and insofar as a relevant consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG, if and insofar as the consent includes storage of cookies or access to information in the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

If your browser does not support web fonts, a standard font will be used by your computer.

For further information on Google Web Fonts please see https://developers.google.com/fonts/faq and Google’s data privacy statement: https://policies.google.com/privacy?hl=de.

Google Maps

This site uses the map service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this website cannot influence this data transfer. If Google Maps is activated, Google may use Google Web Fonts for the purpose of uniform display of the typefaces. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

Google Maps is used in the interest of attractive presentation of our online offers and easy loca-tion of the places indicated by us on the website. This constitutes a legitimate interest within the meaning of Art. 6 (1) lit. f of the GDPR. If and insofar as a relevant consent has been obtained, the processing is carried out exclusively on the basis of Art. 6 (1) lit. a of the GDPR and § 25 (1) of the TTDSG, if and insofar as the consent includes storage of cookies or access to information in the user’s local device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

More information on the handling of user data can be found in Google’s data privacy state-ment: https://policies.google.com/privacy?hl=de.

7. eCommerce and payment providers

Processing of data (customer and contract data)

We collect, process and use personal data only if and insofar as they are necessary for the establishment, content or amendment of the legal relationship (inventory data). This is done on the basis of Art. 6 (1) lit. b of the GDPR, which permits processing of data for the fulfilment of a contract or precontractual measures. We collect, process and use personal data about the use of this website (usage data) only if and insofar as this is necessary to enable the user to use the service, or to bill the user for it.

The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected thereby.

Data transmission upon conclusion of a contract for online shops, traders and shipment of goods

Whenever you order goods from us, we will disclose your personal data to the transport company entrusted with the delivery, and to the payment service provider entrusted with the payment processing. Only such data are disclosed that the respective service provider requires to fulfil its task. The legal basis for this is Art. 6 (1) lit. b of the GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. If and insofar as you have given your consent in accordance with Art. 6 (1) lit. a of the GDPR, we will disclose your email ad-dress to the transport company entrusted with the delivery so that they can inform you by email about the shipping status of your order; you can revoke your consent at any time.

8. Own services

Online application

At https://www.uromed.de/onlinebewerbung.php you can submit your application online to us. For information on the handling of your data in the context of an online application please see here.

9. Our social media presence

Data processing by social networks

We maintain publicly accessible profiles on social networks. You can find the social networks we use in detail below.

Social networks such as Facebook, Twitter etc. can generally analyse your user behaviour comprehensively when you visit their website or a website with integrated social media content (e.g. “Like” buttons or advertising banners). Visiting our social media sites triggers numerous processing operations relevant to data protection. In particular:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may be collected even if you are not logged in or do not have an account with the respective social media portal. In this case, such data collection takes place, for example, via cookies that are stored on your local device, or by recording your IP address.

With the help of the data collected in this way, operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, the interest-based advertising may be dis-played on all devices on which you are or were logged in.

Please also note that we are not able to track all processing on the social media portals. Depend-ing on the provider, further processing operations may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provi-sions of the respective social media portals.

Legal basis

Our social media presences are designed to ensure the broadest possible presence on the internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f of the GDPR. The analysis processes initiated by the social networks may be based on deviating legal bases, which must be stated by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a of the GDPR).

Responsible Data Controller and assertion of rights

If you visit one of our social media presentations (e.g. on Facebook), we share responsibility with the operator of the social media platform for the data processing operations triggered during this visit. You can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) as a matter of principle both towards us and towards the operator of the respective social media portal (e.g. towards Facebook).

Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Retention period

The data collected directly by us via the social media presence will be deleted from our systems as soon as you ask us to delete them or revoke your consent to their storage, or the purpose of the data storage ceases to apply. Stored cookies remain on your local device until you delete them. Mandatory statutory provisions – in particular retention periods – remain unaffected

We have no influence on the storage period of your data, which are stored by the operators of the social networks for their own purposes. For details, please refer to the operators of the social networks directly (e.g. their data privacy statement, see below).

Social networks in detail

XING / Kununu

We have a profile on XING. The provider is New Work SE, Dammtorstraße 30, D-20354 Hamburg, Germany. For details on how they handle your personal data, please refer to XING’s data privacy statement: https://privacy.xing.com/de/datenschutzerklaerung.

YouTube

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For details on how they handle your personal data, please refer to YouTube’s data privacy statement: https://policies.google.com/privacy?hl=de.

LinkedIn

We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies

If you would like to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Data transfer to the USA is based on the standard contractual conditions of the EU Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.

Details on how your personal data will be handled can be found in LinkedIn's data protection declaration: https://www.linkedin.com/legal/privacy-policy .