Information on the processing of personal data when visiting the website “www.city-gate.eu” in accordance with art. 13 of the EU General Data Protection Regulation (as of August 2023)

We, Covivio Office Holding GmbH (hereinafter referred to as “COHG”, further information about our company can be found in the imprint on our website: https://www.covivio.immo/impressum/), are pleased that you are visiting our website (www.city-gate.eu).

This data protection policy informs you about the processing of your personal data when using our website and your rights in this regard under the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

If you have any questions about the content of the data protection policy, you can contact us at any time at the following address:

datenschutz@covivio.immo

As changes to the law or changes to our internal company processes may require an adjustment to this data protection policy, changes may be made to this data protection policy over time. You can access and print out the current data protection policy at https://www.city-gate.eu/datenschutz.

§ 1 Scope of application

This data protection policy applies to the processing of your personal data in the context of your visit to and use of the website of “COHG” (as controller; see Section 10) under the domain www.city-gate.eu as well as the various subdomains and individual pages (hereinafter collectively referred to as the “website”).

§ 2 Definitions

Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular enquiry in accordance with Union or Member State law shall not be regarded as recipients. The processing of this data by the aforementioned authorities is carried out in accordance with the applicable data protection regulations in accordance with the purposes of the processing.

Personal data is any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

The controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

§ 3 Ensuring data security

We take technical and operational security precautions on our website to protect the personal data stored by us from access by third parties, loss or misuse and to enable secure data transfer. We must point out that, due to the structure of the Internet, unwanted access to data by third parties can occur. It is therefore also in your area of responsibility and interest to protect your data against misuse through encryption or in some other way. Without appropriate protective measures, data transmitted unencrypted, even by e-mail, can be read by third parties.

§ 4 Data protection of minors

The protection of minors on the Internet is a matter of course and particularly desirable for the “COHG”. For this reason, “COHG” advises all parents and guardians to encourage minors to handle personal data on the Internet responsibly. Minors, especially children, should not transmit any personal data to “COHG” or via the Internet without the consent of their parents or guardians.

§ 5 Data protection (including purposes and legal bases of data processing; duration of storage) on the website www.gity-gate.eu

In the following, we list the purposes of processing your personal data and the necessary legal bases. Your personal data will not be used for purposes other than those specified in this data protection policy. Your personal data will also not be transferred to third parties without your consent, except in the cases described in this data protection policy, unless we are legally obliged to disclose this data.

Specifically, we store the following data:

1. Visit the website

We would like to point out that you are not obliged to provide us with your personal data via our website. The provision of your data via our website is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. However, failure to provide the data may mean that you are unable to use certain functions/services on our website.

Every time our website is accessed and every time a file is retrieved, data about this process is automatically stored in a log file. These are:

  • information on which pages were accessed, the time spent on the individual pages, the exit page (i.e. the point at which the website was left),
  • the search terms and the search engine that redirected you to https://www.city-gate.eu
  • the screen resolution,
  • the browser,
  • the operating system,
  • the country from which the access was made,
  • information on whether and when (date and time) downloads were made,
  • the date and time of access.

The storage serves exclusively internal system-related purposes to ensure data security and the smooth operation of the IT systems used for this purpose. The data and information are stored under the data sovereignty of “COHG” on the server of our external IT service provider/web hosting provider in Germany on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR. The data of the log files from the previous day are archived daily and deleted within 14 days if their processing is no longer required for these purposes.

2. Integration of third-party services

Integration of OpenStreetMaps

We use the open source map service “OpenStreetMaps” (also known as “OSM”) from the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, United Kingdom. OSM is used to provide an interactive map on our website that shows you how to find and reach us. This service enables us to display our website in an appealing way by loading map material from an external server. The following data is transmitted to the OSM server during the display: The pages of our website that you have visited and the IP address of your device. The legal basis for the processing of your data in relation to the “OSM” service is Art. 6 para. 1 sentence 1 letter f) GDPR (legitimate interest in data processing). The legitimate interest arises from our need for an appealing presentation of our online offer and the easy findability of the places indicated on our homepage. You can prevent any data transfer to the OpenStreetMap servers by deactivating JavaScript in your browser. In this case, however, you will not be able to use the map display.

You can find more information on the handling of user data in OSM’s data protection policy: https://wiki.osmfoundation.org/wiki/Privacy_Policy

Use of Google Web Fonts

We use Google Fonts from Google Inc. on our website. Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for the European region. We have integrated the Google fonts locally, i.e. on our web server – not on Google’s servers. This means that there is no connection to Google servers and therefore no data transfer or storage.

3. Use of cookies

We use functional/essential cookies at most. Essential cookies enable basic functions and are necessary for the proper functioning of the website. Cookies are small text files that are sent to your browser by our web server when you visit our website and are stored on your end device for later retrieval. We only use so-called session cookies (also known as temporary cookies) on the basis of our legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR to improve user-friendliness, which are only stored temporarily for the duration of use on our website. With current common browsers, this cookie is deleted again after the session duration.

§ 6 Data protection (including purposes and legal bases of data processing; duration of storage) when contacting us

In the event that you contact us by telephone, post or e-mail, we will process the data you provide via these communication channels in order to process and respond to your enquiry. We store this data for up to three months for verification purposes. Depending on the subject of the enquiry, the data may be stored in individual cases for the period during which claims can be asserted against our company (statutory limitation period of three or up to thirty years), or we may be obliged to store the data for a longer period due to statutory retention periods. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit.f) GDPR.

§ 7 Disclosure of data to third parties

Data is not transferred to third parties. As part of the services offered on our website, we sometimes use external service providers who process personal data on our behalf (e.g. IT services). These service providers have been commissioned by us in writing and carefully selected. They are bound by our instructions and are regularly monitored by us with regard to compliance with data protection requirements. All systems in which your personal data is stored and to which external service providers have access are password-protected and only accessible to those persons who need your data to process the purposes you have authorised. Within the framework of the statutory provisions, we ensure that the data is processed, used and transmitted to the relevant external service providers in the manner agreed here. Beyond this, we will not pass on your data to third parties. Data will only be passed on if this is required and authorised by law.

§ 8 Consent and revocation of your consent

If you have given us your consent to process your personal data, you can withdraw this at any time. The revocation of your consent is effective for the future. The lawfulness of the processing of your personal data up to the time of revocation remains unaffected. Please send your cancellation to: datenschutzverantwortlicher@covivio.immo

If you withdraw your consent, we will process your personal data collected in this context to respond to your enquiry. The processing of your personal data is carried out to fulfil a legal obligation on the basis of Art. 6 para. 1 sentence 1 lit. c) GDPR.

§ 9 What rights do you have?

You have the option of exercising various rights.

For example, you have the right to

  • Information about which personal data we have stored about you. If, despite our endeavours to store correct and up-to-date data, we have stored incorrect data, we will correct
  • You also have the right to request the erasure of your data; we will comply with this request for erasure unless there is an exceptional case that justifies further processing.
  • In addition, you may request the restriction of processing if there is a legitimate reason for doing so.
  • Furthermore, you have the right to object to the data processing and the right to request a copy of the data.
  • If you have given us your consent to process your data or if you have voluntarily provided us with your personal data in non-mandatory fields in the online forms on our website, you can revoke the processing of this data at any time with effect for the future.

§ 10 Responsible person and contact details

In all of the above cases, the controller is responsible for data processing:

Covivio Office Holding GmbH

Knesebeckstraße 3, 10623 Berlin, Phone: 0049(0)30 221821-120
E-Mail: datenschutz@covivio.immo

Further information about our company, details of the authorised representatives and other contact options in our legal notice can be found on our website: https://www.city-gate.eu/impressum/

If you have any questions about the processing of your personal data or about data protection in general, the easiest way to contact us and our data protection officer is at datenschutz@covivio.immo

§ 11 Right to complain

You have the right to lodge a complaint with a data protection supervisory authority. In Berlin, this is the following supervisory authority:

Berliner Beauftragter für Datenschutz und Informationsfreiheit
Friedrichstr. 219
10969 Berlin
Phone: 030/13889-0
FAX: 030/215-5050
E-Mail: mailbox@datenschutz-berlin.de
Internet: http://www.datenschutz-berlin.de

§ 12 Changes to the data protection policy

The provisions of this data protection policy apply in the version valid at the time. The content of this data protection policy may be supplemented or amended. The updated data protection information applies from the time it is published on our website.