Datenschutz | arrive | Primus Immobilien AG

General information

The following information provides a simple overview of how personal data is processed when you visit our website. Personal data is any data that can be used to identify you personally. Detailed information on the subject of data protection can be found in the data protection information below.

It goes without saying that the protection of your personal data and fair and transparent data processing are important to us. Below we provide you with the information in accordance with Art. 13 and 14 GDPR that you need to check and exercise your data protection rights. As the website operator, we are the controller within the meaning of Art. 4 No. 7 of the General Data Protection Regulation (GDPR) for this website and the associated data processing. Comprehensive information about our organization can be found in the imprint.

The following data protection information is divided into the following sections:

I. Information on the controller

II. data processing on our website

III. data processing in the context of our business services

IV. Rights of data subjects

I. Details of the controller

Responsible for data collection:

PRIMUS Immobilien AG
Lietzenburger Straße 76
10719 Berlin

E-Mail: info@primusimmobilien.de
Telephone: +49 (0) 30 887 08300 0

Data protection officer:

André Weinert c/o TÜV SÜD Akademie
Westendstr. 160
80339 München

E-Mail: andre.weinert@partner.tuvsud.com

II Data processing on our website

Data security on our website

We use a valid, state-of-the-art SSL certificate to ensure the security of our website. A website encrypted with SSL transmits personal data to the server in encrypted form so that it is impossible for third parties to intercept or read it. A certificate verifies our identity. Depending on your browser, you can recognize that a secure connection exists by the display of a lock symbol. You can view our online proof of identity by clicking on the lock symbol. By encrypting the transmission, you can be sure that the data you enter is adequately protected against unauthorized access during transmission in accordance with the state of the art.

Protection of minors

Our services are generally aimed at adults. Persons under the age of 18 may not transmit any personal data to us without the consent of their parents or legal guardians.

Hosting

The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purpose of operating this online offering.

In doing so, we, or our hosting service provider on our behalf, process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offer on the basis of our legitimate interests in an efficient and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f GDPR. The data processing of our hosting service provider takes place within the framework of an order processing contract in accordance with Art. 28 GDPR.

The input of personal data is not necessary for the purely informational use of our website, i.e. if you do not transmit information to us in any other way.

Nevertheless, every time our website is accessed, personal data is automatically collected by the system of the accessing computer or the user's terminal device, which your browser transmits to our server. The following data, which is technically necessary for us to display our website to you, is collected by us:

Information about the browser type and version used
The IP address of the user
The operating system of the user's device
Date and time of access
Time zone difference to Greenwich Mean Time (GMT)
Content of the request (specific page)
Access status/HTTP status code
Amount of data transferred in each case
The previous website from which the user accessed our website
Operating system and its interface
Language and version of the browser software

The legal basis for the temporary storage of this data in so-called log files is our legitimate interests as the responsible website operator pursuant to Art. 6 para. 1 lit. f. GDPR. GDPR, to ensure the technical presentation, stability and security of the website.

The temporary storage of the user's IP address by our system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must necessarily remain stored for the duration of the session. The above-mentioned data is stored in the log files in order to ensure the functionality of our website. We also use this data to optimize the website and to ensure the security of our information technology systems (e.g. attack detection). The data is not analyzed for marketing purposes in this context. The above-mentioned data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. If the data is stored in log files, this is the case after 14 days at the latest. Storage beyond this period is possible if there are indications of an illegal attack on our systems.

Cookies

Cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk and assigned to the browser you are using and through which certain information flows to the place that sets the cookie. Cookies cannot execute programs or transfer viruses to your computer. They are used to make the website more user-friendly and effective overall. The legal basis for the use of cookies is our legitimate interest in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR to design and optimize our website in a user-friendly manner.

This website uses the following types of cookies, the scope and function of which are explained below:

Transient cookies

These cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognized when you return to our website. These cookies are technically necessary for the optimization and presentation of the website. The session cookies are deleted when you log out or close the browser.

Persistent cookies

These cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time. To save the language setting, we use cookies that are technically necessary on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR to optimize the user-friendliness of our website. The cookie expires automatically after one year.

Flash cookies

The Flash cookies used are not recorded by your browser, but by your Flash plug-in. We also use HTML5 storage objects, which are stored on your end device. These objects store the required data independently of the browser you use and do not have an automatic expiration date. If you do not want Flash cookies to be processed, you must install an appropriate add-on, e.g. “Better Privacy” for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/ ) or the Adobe Flash Killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by setting your browser to private mode. We also recommend that you regularly delete your cookies and browser history manually.

Third-party cookies

For the further development and improvement of our online offer (reach measurement, website analysis, website optimization, marketing), we use third-party services that also use cookies on the legal basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR. Further information on the third-party services we use on our website is listed separately below as part of our privacy policy. If user consent is obtained, the processing is carried out on the legal basis of Art. 6 para. 1 lit. a GDPR.

Prevention of cookies

You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. We would like to point out that you may then not be able to use all the functions of this website.

Borlabs Cookie

This website uses the consent management tool Borlabs Cookie, a service of Borlabs, Rübenkamp 32, 22305 Hamburg, Germany, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consents on the basis of legitimate interests in obtaining and managing consents in accordance with Art. 6 para. 1 lit. f GDPR.

The borlabs cookie stores the consent you gave when you entered the website. If you wish to revoke this consent, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked for your cookie consent again.

Website analysis

We use various services for the purpose of analyzing and optimizing our websites, which are described below. For example, we can analyze how many users visit our site, which information is most in demand or how users find the offer. Among other things, we collect data about the website from which a data subject came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. This helps us to design and improve our services in a user-friendly way. The data collected is not used to personally identify individual users. Only pseudonymous data is collected. The legal basis for this is Art. 6 para. 1 f GDPR. We understand the optimization of our website as a legitimate interest, your fundamental rights and freedoms do not outweigh our interest, as we inform you comprehensively about the data collection in our privacy policy and you have the option of opting out at any time (via link or browser settings). In addition, we only use pseudonymous tracking.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc, (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) The use includes the Universal Analytics operating mode. This makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID and thus to analyze the activities of a user across devices.

Google Analytics uses cookies to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. Our legitimate interest in data processing also lies in these purposes. The legal basis for the use of Google Analytics is Art. 6 para. 1 f GDPR. The data sent by us and linked to cookies, user identifiers (e.g. user ID) or advertising IDs are automatically deleted after 14 months. Data that has reached the end of its retention period is automatically deleted once a month. You can find more information on terms of use and data protection at www.google.com/analytics/terms/de.html or at policies.google.com

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the tools.google.com/dlpage/gaoptout. Opt-out cookies prevent the future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt out on all systems used.

For Google services within the EEA and Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland has been the provider of the service and the responsible “Data Controller” under data protection law since January 22, 2019. In order to provide the service, it may be necessary for the information generated by the cookie about the use of this website to be transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA in the USA and stored there. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection by EU standards. In particular, there is a risk that your data may be processed by US authorities for monitoring and surveillance purposes, possibly without the possibility of legal recourse.

Data protection and data security in Google Analytics

If the Google Analytics service is only activated with the consent of the user, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transfer to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection by EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse. Any consent given can be revoked at any time with effect for the future by making the appropriate cookie settings.

In addition, Google Analytics and Google Analytics 360 have been certified in accordance with the independent security standard ISO 27001. ISO 27001 is one of the most widely recognized standards in the world. The certification applies to the systems provided by Google Analytics and Google Analytics 360.

IP anonymization

We have activated the IP anonymization function on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will process this information on behalf of the operator of this website for the purpose of evaluating your use of the website statistically, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. The controller uses the addition “_gat._anonymizeIp” for web analysis via Google Analytics. By means of this addition, the IP address of the Internet connection of the person concerned is shortened and anonymized by Google if access to our Internet pages is from a member state of the European Union or from another state party to the Agreement on the European Economic Area.

Browser add-on

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser add-on available at the following link to deactivate Google Analytics: https://tools.google.com/dlpage/gaoptout

Objection to data collection

If you do not want your website activities to be available to Google Analytics, you can install the browser add-on to deactivate Google Analytics via the following link https://tools.google.com/dlpage/gaoptout. An opt-out cookie will be set which prevents the collection of your data on future visits to this website by the Java Script (gtag.js, ga.js, analytics.js and dc.js) executed on websites from sharing activity data with Google Analytics. You can also prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent.

You can find more information on how Google Analytics handles user data in Google's privacy policy: https://support.google.com/analytics/answer/6004245

Google Ads

We use “Google Ads” (formerly Google Adwords) on our website if you have consented to activation via the content banner.

Google Ads uses cookies to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). If you reach our website via a Google ad, Google will place a cookie on your device. This cookie is used by Google to create visit statistics for our website. This cookie loses its validity after thirty days and is not used to identify the user. As a website operator, we can evaluate this data quantitatively by analyzing, for example, which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks.

The following data is processed:

Usage behavior
IP address
Opt-out information (marker that the user no longer wishes to be contacted)

The legal basis for this is your consent, which you may have given us via our consent banner. (Art. 6 para. 1 lit. a GDPR) This consent can be revoked at any time by adjusting the cookie settings.

Provider:

Google Ads is an online advertising program of Google Ireland Limited (“Google”)

Gordon House,

Barrow Street,

Dublin 4,

Ireland

Google processes data on servers in the USA.

Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/.

You can deactivate interest-based ads at http://optout.aboutads.info. However, this setting will be deleted if you delete your cookies.

You can deactivate the setting of cookies in the settings of your web browser and thus generally prevent their use by services and plugins.

Microsoft Ads

We use “Microsoft Ads” from Microsoft on our website if you have consented to activation via the content banner.

Microsoft Ads uses tracking pixels and cookies to analyze the usage behavior of our website.

When you click on an ad placed by Microsoft Ads, a cookie is stored on your device. This cookie has a limited validity. If you access certain content on our website and the cookie has not yet expired, it can be traced whether our website was accessed via a corresponding ad.

The use of cookies and tracking pixels on our website also enables Microsoft to display personalized advertising content. This advertising content is determined on the basis of previously read content.

This process is also used for statistical analysis of the effectiveness of Microsoft Ads advertisements and is intended to help optimize future advertising measures. It is not possible for us to identify users on the basis of this data.

The following data is processed:

Usage behavior
IP address
Information about the device
Information about the browser used
Referrer URL (website from which our website was accessed)

The legal basis for this is your consent, which you may have given us via our consent banner. (Art. 6 para. 1 lit. a GDPR) This consent can be revoked at any time by adjusting the cookie settings.

Provider:

Microsoft Corporation

One Microsoft Way

Redmond

WA 98052-6399, USA

Microsoft processes data on servers in the USA.

Further information and the applicable data protection provisions of Microsoft can be found at https://privacy.microsoft.com/de-de/privacystatement

You can prevent the collection of data generated by the cookie and related to your use of the website and the processing of this data by Microsoft by clicking on the following link: http://choice.microsoft.com/de-DE/opt-out to declare your objection.

You can deactivate the setting of cookies in the settings of your web browser and thus generally prevent their use by services and plugins.

Optinmonster

We use the technology of the provider Optinmonster on our website, provided you have consented to activation via the consent banner.

Optinmonster uses cookies to provide overlays (pop-ups) with additional offers (such as newsletter registration). The information collected via the Optimonster plugin is not stored by Optinmonster on its own servers, but is forwarded directly to us. Personal data is only collected through an active action. (e.g. registration for the newsletter via the pop-up)

The following data is processed

IP address
E-mail address (when registering for the newsletter

The legal basis for this is your consent, which you may have given us via our consent banner. (Art. 6 para. 1 lit. a GDPR) This consent can be revoked at any time by adjusting the cookie settings.

Provider:

Retyp LLC (Optinmonster)

3701 Savoy Ln

West Palm Beach, FL 33417, USA

Optinmonster processes data on servers in the USA.

Further information and the applicable data protection provisions of Optinmonster can be found at https://optinmonster.com/privacy/.

Contract data processing

Furthermore, we have concluded a so-called contract data processing agreement with Optinmonster. This is a contract in which Optinmonster undertakes to protect the data of our users, to process it on our behalf in accordance with their data protection regulations and, in particular, not to pass it on to third parties.

You can deactivate the setting of cookies in the settings of your web browser and thus generally prevent their use by services and plugins.

Outbrain

We use the technology of the provider Outbrain on our website, provided you have consented to activation via the consent banner.

Outbrain uses tracking pixels and cookies to analyze the usage behavior of our website.

When you click on an advertisement placed by Outbrain, a cookie is stored on your device. This cookie has a limited validity. If you access certain content on our website and the cookie has not yet expired, it can be traced whether our website was accessed via a corresponding advertisement.

The use of cookies and tracking pixels on our website also enables Outbrain to display personalized advertising content. This advertising content is determined on the basis of previously read content.

This process is also used for statistical analysis of the effectiveness of Outbrain advertisements and is intended to help optimize future advertising measures. It is not possible for us to identify users on the basis of this data.

The following data is processed:

Technical information or information required for navigation
Browser type
Time spent interacting with Outbrain
Pages visited
IP address
Unique ID

The legal basis for this is your consent, which you may have given us via our consent banner. (Art. 6 para. 1 lit. a GDPR) This consent can be revoked at any time by adjusting the cookie settings.

Provider

Outbrain Inc.

39 West 13th Street

New York

NY 1001, USA

Outbrain processes data on servers in the USA.

Further information and the applicable data protection provisions of Outbrain can be found at https://www.outbrain.com/de/legal/privacy

You can deactivate the setting of cookies in the settings of your web browser and thus generally prevent their use by services and plugins.

Taboola

We use the technology of the provider Taboola on our website, provided you have consented to activation via the consent banner.

Taboola uses cookies to analyze the usage behavior of our website.

When you click on an ad placed by Taboola, a cookie is stored on your device. This cookie has a limited validity. If you access certain content on our website and the cookie has not yet expired, it can be traced whether our website was accessed via a corresponding advertisement.

The use of cookies on our website also makes it possible to display personalized advertising content. This advertising content is determined on the basis of previously read content.

This process is also used for statistical analysis of the effectiveness of the advertisements and is intended to help optimize future advertising measures. Usage profiles are created using pseudonyms; they are not merged with the data about the bearer of the pseudonym and do not allow any conclusions to be drawn about personal data.

The following data is processed:

Information about the operating system
Websites accessed
Previous website from which you came to our website
Data and contain times of website or platform accesses from our site
IP address
Unique ID

The legal basis for this is your consent, which you may have given us via our consent banner. (Art. 6 para. 1 lit. a GDPR) This consent can be revoked at any time by adjusting the cookie settings.

Provider:

Taboola Germany GmbH

Alt-Moabit 2

10557 Berlin

Taboola processes data on servers in the USA.

Further information and the applicable data protection provisions of Taboola can be found at https://www.taboola.com/privacy-policy.

You can deactivate the setting of cookies in the settings of your web browser and thus generally prevent their use by services and plugins.

Cookies for marketing purposes

We use cookies for marketing purposes in order to target our users with interest-based advertising. In addition, we use cookies to limit the likelihood of an advertisement being displayed and to measure the effectiveness of our advertising measures. This information may also be shared with third parties, such as ad networks. The legal basis for this is Art. 6 para. 1 f GDPR. There is a legitimate interest in direct marketing for the purposes pursued with the data processing. You have the right to object at any time to the processing of your data for the purpose of such advertising. For this purpose, we provide you with opt-out options for the respective services below. Alternatively, you can prevent the setting of cookies in your browser settings. If these services are only activated with the consent of the user, the processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR. Consent given can be revoked at any time with effect for the future by making the appropriate cookie settings.

Double Click

We also use Double Click, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, “Google”) or Google Ireland Limited. Double Click uses cookies to place user-based advertisements to protect our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR. The cookies recognize which ad has already been placed in your browser and whether you have accessed a website via a placed ad. The cookies do not collect any personal information and cannot be associated with such information. If the Double Click service is only activated with the consent of the user, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transmission to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR. Consent given can be revoked at any time with effect for the future by making the appropriate cookie settings.

For Google services within the EEA and Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland has been the provider of the service and the responsible “Data Controller” under data protection law since January 22, 2019. In order to provide the service, it may be necessary for the information generated by the cookie about the use of this website to be transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA in the USA and stored there. The EU standard contractual clauses have been agreed with Google for the transfer of data to third countries. The EU standard contractual clauses constitute a guarantee of an adequate level of EU data protection in accordance with Art. 46 GDPR. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse.

If you do not want this, you can prevent the cookies required for these technologies from being saved, for example via your browser settings. In this case, your visit will not be included in the user statistics. You also have the option of selecting the types of Google ads or deactivating interest-based ads on Google via the ad settings. Alternatively, you can deactivate the use of cookies by third-party providers by calling up the deactivation help of the network advertising initiative. However, we and Google will continue to receive statistical information about how many users have visited this site and when. If you do not wish to be included in these statistics either, you can prevent this with the help of additional programs for your browser (e.g. with the Ghostery add-on).

Facebook Custom Audiences

As part of usage-based online advertising, the Custom Audiences product from Facebook (Facebook Custom Audiences1601 S. California Avenue, Palo Alto, CA, 94304, USA) is also used on the website. In principle, a non-reversible and non-personal checksum (hash value) is generated from your usage data, which can be transmitted to Facebook for analysis and marketing purposes. A Facebook cookie is set in the process. Information about your activities on the website (e.g. surfing behavior, subpages visited, etc.) is recorded. Your IP address is stored and used for the geographical targeting of advertising.

Within our online offer, the so-called “Facebook pixel” of the social network Facebook, which is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are resident in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”), is used on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in the analysis, optimization and economic operation of our online offer and for these purposes. If this service is only activated by the user's consent, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transmission to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR.

The EU standard contractual clauses have been agreed with Facebook for the transfer of data to third countries. The EU standard contractual clauses constitute a guarantee of an adequate level of EU data protection in accordance with Art. 46 GDPR. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse.

With the help of the Facebook pixel, it is possible for Facebook to determine the visitors of our online offer as a target group for the display of ads (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called “custom audiences”). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of users and are not annoying. With the help of the Facebook pixel, we can also track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).

Further information about the purpose and scope of data collection and the further processing and use of the data, as well as the privacy settings, can be found in Facebook's privacy policy at https://www.facebook.com/policy.php. Specific information and details about the Facebook pixel and how it works can be found in the Facebook help section: https://www.facebook.com/business/help/651294705016616.

You can object to the collection by the Facebook pixel and use of your data to display Facebook ads. To set which types of ads are displayed to you within Facebook, you can go to the page set up by Facebook and follow the instructions on the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads. The settings are platform-independent, i.e. they are adopted for all devices, such as desktop computers or mobile devices.

You can also object to the use of cookies for reach measurement and advertising purposes via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/) and also the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

Facebook Connect

We offer you the option of registering for our service with Facebook Connect. To register, you will be redirected to the Facebook page where you can log in with your user data. This links your Facebook profile and our service. Through this link, we automatically receive information from Facebook Inc. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. We offer this registration option on the basis of our legitimate interests in a user-friendly registration option in accordance with Art. 6 para. 1 lit. f GDPR.

If you decide to register with Facebook Connect and click on the “Login with Facebook” / “Connect with Facebook” button, you will be automatically redirected to the Facebook platform. There you can log in with your user data. This will link your Facebook profile with our website or our services. This link gives us access to your data stored on Facebook. These are above all

Facebook name
Facebook profile and cover picture
Facebook cover picture
E-mail address stored on Facebook
Facebook ID
Facebook friend lists
Facebook Likes (“Like” information)
Birthday
Gender
Country
Language
This data is used to set up, provide and personalize your account.

To do this, Facebook uses cookies to validate your account and to determine when you are logged in so that we can make it easier for you to access Facebook products and provide you with the right experience and features. For more information, please refer to the Facebook Terms of Use and the Facebook Privacy Policy. These can be found at: https://de-de.facebook.com/about/privacy/ and https://www.facebook.com/legal/terms

If the Facebook connect service is only activated with the consent of the user, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transmission to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR. Consent given can be revoked at any time with effect for the future by making the appropriate cookie settings.

LinkedIn Analytics and LinkedIn Ads

We use the conversion tracking technology and the retargeting function of LinkedIn Corporation Inc, Sunnyvale, California, USA on our website on the basis of our legitimate interests in displaying personalized advertisements in accordance with Art. 6 para. 1 lit. f GDPR. If the service is activated by the user's consent, the processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR. Consent given can be revoked with effect for the future by making the appropriate cookie settings.

For the provision of the service in the EEA, the data controller is LinkedIn Ireland Unlimited Company. Nevertheless, data is transferred to the USA for the provision of the service. The EU standard contractual clauses, which constitute a guarantee of an adequate level of EU data protection in accordance with Art. 46 GDPR, have been contractually agreed for this purpose. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse.

If this Linkedin service is only activated by the user's consent, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transfer to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR. Consent given can be revoked at any time with effect for the future by making the appropriate cookie settings

LinkedIn relies on standard contractual clauses approved by the European Commission as a legal instrument for data transfers from the European Union. As explained in the FAQ document on EU data protection rules, these clauses are contractual obligations that require companies to protect privacy and data security when transferring personal data (e.g. between LinkedIn Ireland Unlimited Company or its customers and LinkedIn Corporation). The LinkedIn companies follow standard contractual clauses to ensure that the data flows required to provide, maintain and develop our services are legally secure.

With the help of this technology, visitors to this website can be shown personalized advertisements on LinkedIn. Furthermore, it is possible to create anonymous reports on the performance of the advertisements and information on website interaction. For this purpose, the LinkedIn Insight tag is integrated on this website, which establishes a connection to the LinkedIn server if you visit this website and are logged into your LinkedIn account at the same time.

In LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy you will find further information on data collection and data use as well as the options and rights to protect your privacy. If you are logged in to LinkedIn, you can deactivate data collection at any time by clicking on the following link: https://www.linkedin.com/psettings/enhanced-advertising.

Map material Google Maps

To make it easier for you to find the location of our organization, we have integrated map material from the Google Maps service of Google LLC into our website via an API for the visual display of geographical information in interactive maps on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. In order to display the content in your browser, Google must receive your IP address, otherwise Google would not be able to display this integrated content to you. Google receives this via an interface (API) and/or via cookies that are set by Google. In addition, to the best of our knowledge, the use of Google Maps results in the following additional data being transmitted to Google LLC. Transmitted:

Date and time of the visit to the website in question,
Internet address or URL of the website accessed,
IP address

For Google services within the EEA and Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland has been the responsible “data controller” since January 22, 2019. The data is therefore processed on servers within the EEA. Nevertheless, it may be necessary for the provision of the service that data is transmitted to the parent company “Google LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA”.

The EU standard contractual clauses have been agreed with Google for the transfer of data to third countries. The EU standard contractual clauses constitute a guarantee of an adequate level of EU data protection in accordance with Art. 46 GDPR. The USA is considered by the European Court of Justice to be a country with an inadequate level of data protection according to EU standards. In particular, there is a risk that your data may be processed by US authorities for control and monitoring purposes, possibly without the possibility of legal recourse.

If the Google Maps service is only activated with the consent of the user, the processing is carried out in accordance with the consent given pursuant to Art. 6 para. 1 lit. a GDPR and for data transmission to the USA pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR. Consent given can be revoked at any time with effect for the future by making the appropriate cookie settings.

When you visit the website, Google receives the information that you have accessed the corresponding sub-page of our website. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish your data to be associated with your Google profile, you must log out of your Google account before activating Google Maps. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. If you do not want Google to collect, process or use data about you via our website, you can deactivate JavaScript in your browser settings. In this case, however, you will not be able to use the map display.

The purpose and scope of the data collection and the further processing and use of the data by Google as well as your rights in this regard and setting options to protect your privacy can be found in Google's data protection information at https://accounts.google.com/ and https://policies.google.com/privacy?hl=de

Vimeo Video Platform

On our website, videos are embedded from Vimeo, which is operated by Vimeo LLC, 555 West 18th Street, New York, NY 10011 (“Vimeo”).

The content of the plugin is transmitted directly from Vimeo to your browser and integrated into the website. Through this integration, Vimeo receives information that your browser has accessed the corresponding page of our website, even if you do not have a Vimeo profile or are not logged into Vimeo at the time. This means that the use of Vimeo’s video service on our website is carried out to protect our legitimate interests in public relations, in accordance with Art. 6(1) lit. f GDPR. If this service is activated based on your consent, the processing is carried out in accordance with Art. 6(1) lit. a GDPR. You can revoke your consent at any time with future effect through the appropriate cookie settings.

This information (including your IP address) is transmitted directly from your browser to a Vimeo server in the USA and stored there. If you are logged into Vimeo, Vimeo can directly associate your visit to our website with your Vimeo account. When interacting with the plugins, such as clicking the “Vimeo” button, this information is also transmitted directly to a Vimeo server and stored there.

For data transfers to third countries, EU standard contractual clauses are agreed upon. These clauses provide a guarantee for an adequate level of data protection in the EU according to Art. 46 GDPR. The USA is regarded by the European Court of Justice as a country with an insufficient level of data protection under EU standards. There is a particular risk that your data could be processed by US authorities for control and surveillance purposes, possibly without legal remedies.

The information is also published on your Vimeo account and displayed to your contacts. If you don’t want Vimeo to directly associate the data collected through our website with your Vimeo account, you must log out of Vimeo before visiting our website. For more information, please refer to [Vimeo's Privacy Policy](https://vimeo.com/privacy).

Google reCAPTCHA

Google reCAPTCHA is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, which allows website operators to verify whether a user on their site is a human or a bot. Its purpose is to ensure that no bots interact with the website automatically.

On our website, we use Invisible reCAPTCHA V3, where the user does not need to perform any additional action. Google tests in the background whether the user is a human or a bot. To do this, Google processes cursor movements and the user’s IP address. Google reCAPTCHA also collects information about:

The page embedding reCAPTCHA,
The user’s IP address,
Browser language settings,
Screen and window resolution,
Time zone, and
Browser plugins installed.

reCAPTCHA is used to verify whether data entry on our website (e.g., in a contact form) is performed by a human or an automated program. It analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the visitor enters the website. reCAPTCHA evaluates different information (such as IP address, duration of the visit, and mouse movements made by the user). The data collected during the analysis is transmitted to Google.

The reCAPTCHA analysis runs entirely in the background. Website visitors are informed about this process within the privacy notices.

Data processing is based on Art. 6(1) lit. f GDPR.

As website operators, we have a legitimate interest in protecting our online offerings from misuse, automated data scraping, and spam. The security tool Google reCAPTCHA serves as a technical measure to ensure the security of processing in accordance with Art. 32 GDPR.

Further information about Google reCAPTCHA and Google’s privacy policy can be found at the following links: https://www.google.com/policies/privacy and https://www.google.com/recaptcha/intro/android.html.

For Google services within the EEA and Switzerland, since January 22, 2019, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, is the responsible data controller. The processing and provision of the service are generally carried out by Google Ireland Limited as the data controller and within the EEA.

To ensure the service, there may be instances where data is transmitted to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To ensure an adequate level of data protection for data transfers to Google LLC in the USA, the EU standard contractual clauses are contractually agreed. Furthermore, the transfer is necessary to fulfill a contract in the interest of the user and the data controller as the website operator, for protection against misuse, automated data scraping, and spam, based on a contract with Google for providing this service in accordance with Art. 49(1)(c) GDPR.

If you do not want Google to collect, process, or use data about you through our website, you can delete or block cookies in your browser settings.

Social Media Buttons

On our website, so-called Social Bookmarks (e.g., from Facebook, Twitter, and Xing) are integrated. Social Bookmarks are internet bookmarks that allow users of such services to collect links and news messages. These are embedded on our website only as links to the respective services. After clicking on the embedded icon, you will be redirected to the respective provider’s page, and only then will user information be transmitted to the provider.

For details on how your personal data is handled when using these websites, please refer to the respective privacy policies of the providers.

This processing is based on our legitimate interests in accordance with Art. 6(1) lit. f GDPR, within the scope of public relations, to share content with other users. Data transfers to third countries are carried out based on the contractually agreed EU standard contractual clauses, which, in accordance with Art. 46 GDPR, guarantee an adequate level of data protection in the EU.

If you activate these buttons, you will be redirected to the providers’ pages, and corresponding user information will be transmitted. The responsibility for processing personal data lies with the provider of the service as the data controller in accordance with Art. 4 No. 7 GDPR.

If you are logged into one of these social networks and wish to share our content, the information will be linked to your respective account. We, as the operator, have no influence on the data transmitted to relevant servers through plug-ins. Typically, the IP address is also transmitted.

For more information on how your data is handled, please refer to the privacy policies of the respective providers:

Facebook: https://de-de.facebook.com/full_data_use_policy

Instagram: https://de-de.facebook.com/help/instagram/519522125107875

YouTube: https://policies.google.com/privacy?hl=de

LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

Contact with PRIMUS (inquiries, property offers)

You can send us questions and messages via the contact form, our email address, or by phone. In these cases, the personal data provided by you in the inquiry, i.e., the data of the sender (the user), will be stored. We would like to point out that transmitting data via unencrypted email bears certain security risks, as eavesdropping or unauthorized access cannot be ruled out.

The processing of this data, transmitted when submitting an inquiry, is based on Art. 6(1) lit. f GDPR, our legitimate interest in responding to your request satisfactorily. If the inquiry aims at fulfilling an existing contract or concluding a new one, an additional legal basis for processing is Art. 6(1) lit. b GDPR, which pertains to initiating and fulfilling a contract. If you give consent, the processing is carried out in accordance with Art. 6(1) lit. a GDPR.

The processing of your personal data is solely for handling your contact request. Your data will be deleted once it is no longer necessary to achieve the purpose of collection. For data sent via email, this is the case when the respective inquiry has been answered and the conversation with the user is concluded. The conversation is considered closed when it can be inferred from the circumstances that the matter has been definitively clarified and no contract has been concluded. Inquiries related to the contractual relationship are stored for the duration of the existing contract.

All personal data stored during the contact process will be deleted once no longer necessary, provided there are no legal retention obligations to the contrary.

Newsletter dispatch

You can subscribe to our newsletter to receive information about current offers, product news, and more. This may also include offers from the PRIMUS group.

We will only send promotional information to your email address as part of our newsletter if you have given your consent to use your email address. Of course, you can revoke your consent to receive newsletters at any time by clicking the unsubscribe link in the newsletter or by notifying us of your wish to unsubscribe via info@primusimmobilien.de.

For our newsletter registration, we use the so-called double opt-in process. This means that after your registration, we send you an email to the provided address asking for confirmation that you wish to receive the newsletter. Additionally, we store the IP addresses you used and the timestamps of your registration and confirmation. This allows us to verify your registration and, if necessary, clarify possible misuse of your personal data by third parties.

Sending service provider

The dispatch of the newsletter is carried out via the mailing service provider "MailChimp," a newsletter distribution platform operated by the US-based Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. You can view the privacy policy of the provider here: mailchimp.com/legal/privacy/.

The service provider is engaged based on our legitimate interests pursuant to Art. 6(1) lit. f GDPR and under a commissioned processing agreement in accordance with Art. 28(3) sentence 1 GDPR. For data transfers to third countries, EU standard contractual clauses are agreed upon, which, according to Art. 46 GDPR, guarantee an adequate level of data protection. We inform you that, according to the ruling of the European Court of Justice, the USA is currently not considered a secure third country within the meaning of EU data protection law. Due to US surveillance laws, US service providers may be obliged to disclose personal data to security authorities without affected individuals having legal recourse. Therefore, it cannot be excluded that US authorities, such as intelligence agencies, process, evaluate, and permanently store your data on servers operated by US providers for surveillance purposes. We have no influence over these processing activities.

The service provider may also use recipient data in pseudonymous form—that is, without direct identification—to optimize or improve its own services, e.g., for technical optimization of delivery and presentation of newsletters or for statistical purposes. However, the service provider does not use the data of our newsletter recipients to contact them directly or to pass on the data to third parties.

Newsletter tracking

To better understand how our newsletter is used, we evaluate your user behavior when the newsletter is sent, based on our legitimate interest in optimizing the newsletter in accordance with Art. 6(1) lit. f GDPR. By subscribing to the newsletter, you consent to the sending of the newsletter and its evaluation in accordance with Art. 6(1) lit. a GDPR.

This evaluation includes the use of so-called web beacons or tracking pixels in the sent emails. These are 1-pixel image files linked to our website that allow us to analyze your user behavior. This is done by using web beacons that are associated with your email address and linked to a unique ID. Links within the newsletter also contain these tracking mechanisms.

The data is collected solely in pseudonymized form — the IDs are not linked to your other personal data, and direct identification of individuals is excluded.

You can object to this tracking at any time by clicking the unsubscribe link provided in each email. Please note that by doing so, you will no longer receive the newsletter. The data is stored as long as you are subscribed to the newsletter. After unsubscribing, we store the data purely for statistical and anonymized purposes.

Such tracking is also not possible if you have disabled the display of images by default in your email program. In that case, the newsletter will not be fully displayed, and you may be unable to use all functions. If you manually load the images, the above-mentioned tracking will occur.

Data processing at trade fairs

When you provide us with your contact details at a trade fair, for example by handing over your business card, participating in a sweepstakes, or subscribing to our newsletter, we record this data in our CRM system. We use your data to contact you as desired, establish a business relationship, and send you informational materials (Art. 6(1) lit. a, b, and f GDPR).

Careers

You can apply to one of our companies electronically, especially via email at bewerbung@primusimmobilien.de. Your information will be used solely to process your application.

Please note that unencrypted emails are not transmitted with protection against access.

If you apply for a specific position and it has already been filled or we consider you suitable for another position, possibly even a better fit, we may forward your application within the company. Please inform us if you do not agree to such forwarding.

Your personal data will be deleted immediately after the application process is completed or after a maximum of six months, unless you have explicitly consented to longer storage or if a contract has been concluded. The legal bases are Art. 6(1) lit. a, b, and f GDPR and § 26 BDSG.

Recipients of the data or categories of recipients

Within our organization, only those departments will have access to your data that need it to fulfill contractual and legal obligations.

External service providers (processors)

Your data may be shared with our IT and software service providers to assist with maintenance and support, enabling us to provide our services.

Any processing of your personal data by commissioned service providers takes place within the framework of order processing in accordance with Art. 28 GDPR.

Transfers to third countries

If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or such processing occurs when using third-party services or disclosing/transferring data to third parties, it only happens if it is necessary to fulfill our (pre)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests, or if another legal basis permits this.

Subject to legal or contractual permissions, we process or transfer data to a third country only under specific conditions outlined in Arts. 44 ff. GDPR. This means that the processing occurs, for example, based on special guarantees, such as an officially recognized determination of an EU-adequate level of data protection (EU adequacy decision), or compliance with officially recognized particular contractual obligations (so-called “standard contractual clauses”).

Data transfer to the USA

Our website incorporates services from companies based in the United States. When these services are active, your personal data may be transferred to the US servers of these companies.

We inform you that, according to the jurisprudence of the European Court of Justice, the USA is currently not considered a secure third country within the meaning of EU data protection law. Due to US surveillance laws, US service providers may be obliged to disclose personal data to security authorities without affected individuals having any legal remedy.

Therefore, it cannot be excluded that US authorities, such as intelligence agencies, process, evaluate, and permanently store your data stored on the servers of US providers for surveillance purposes. We have no influence over these processing activities.

III. Data processing within the scope of our business services

Contractual services with business partners

We process the data of our contractual partners, interested parties, clients, suppliers, service providers, and customers in accordance with Art. 6(1) lit. b GDPR to provide our contractual or pre-contractual services. The type, scope, purpose, and necessity of the data processing are determined by the underlying contractual relationship.

The data processed includes basic details of our contractual partners (e.g., names and addresses), contact information (e.g., email addresses and phone numbers), contract data (e.g., services used, contract content, contractual communication, names of contact persons), and payment data (e.g., bank details, payment history). We generally do not process special categories of personal data unless they are part of a commissioned or contractual processing.

We process data necessary for establishing and fulfilling the contractual services and indicate the necessity of providing such data if it is not obviously evident to the contractual partners. Disclosure to external persons or companies occurs only if required within a contract. When processing data entrusted to us within the scope of a contract, we act according to the instructions of the clients and legal requirements.

In the context of using our online services, we may store the IP address and the time of each user action. This storage is based on our legitimate interests to protect users against misuse and other unauthorized use. In principle, this data is not passed on to third parties unless it is necessary for asserting our claims in accordance with Art. 6(1) lit. f GDPR or if there is a legal obligation to do so under Art. 6(1) lit. c GDPR.

Data is deleted when it is no longer necessary for fulfilling contractual or legal obligations, including handling warranty and similar obligations. Otherwise, applicable statutory retention periods apply.

Direct marketing

If, as part of a contractual agreement, we receive your email address and postal address, we may process this data to inform you about our own similar products and services by email and postal mail. If you no longer wish to receive promotional information via email or postal mail, you can object to the use of your contact data for advertising purposes at any time with effect for the future. Such objection does not incur any costs other than the basic rates for transmission.

You may send your objection by post or email to the following contact addresses:

PRIMUS Immobilien AG
Lietzenburger Str. 76
10719 Berlin

Email: info@primusimmobilien.de

Recipients of the data or categories of recipients

Within our organization, only those departments will have access to your data that require it to fulfill contractual and legal obligations.

External service providers (processors)

Your data may be shared with service partners, such as IT and software providers, for maintenance and support to assist us in delivering our services.

Any processing of your personal data by commissioned service providers takes place within the scope of order processing in accordance with Art. 28 GDPR.

Other service providers, partners, and third parties

We may collaborate with additional partners when necessary to fulfill our service offerings or if we are legally obligated to disclose data. These may include the following partners or third parties:

Banks and payment service providers
Credit bureaus
Call centers for support services
Disclosure to public authorities (e.g., tax offices, agencies) or upon court order
Advertising agencies
Document destruction companies, logistics providers
Consulting and advisory firms, auditors
Insurance companies
Utility providers, cable network operators
(Heat) metering services
Law firms and relevant courts
Notaries’ offices
Property management companies
Intermediaries and operators of commercial/residential property for leasing and brokerage purposes
Craft businesses, architecture offices, service companies

We value processing your data within the EU. However, it may occur that we engage service providers operating outside the EU. In such cases, we ensure that an adequate level of data protection is established before transmitting your personal data. This means that data transfer is safeguarded through EU standard contractual clauses or an EU adequacy decision, ensuring a level of data protection comparable to EU standards.

Origin of personal data

We process personal data that we receive within the scope of our business relationship. Additionally, to provide our services and to fulfill contracts, we process personal data that we lawfully obtain from other companies within our corporate group or from other third parties (e.g., credit bureaus). This data is received, for example, to execute orders, to fulfill contractual obligations, or based on your consent.

We also process personal data that we have lawfully obtained from publicly accessible sources (e.g., trade registers, associations, press, media).

Categories of personal data

We process the following categories of personal data about you:

Personal master data (name, address, other contact details, date of birth), possibly order and contract data (e.g., delivery order), payment data, data from the fulfillment of our contractual obligations, marketing and sales data, documentation data (data from consulting and service discussions), as well as comparable data.

Storage of data

As far as necessary, we process and store personal data for the duration of the business relationship. This also includes the initiation and execution of a contract. The necessary personal data are stored for the duration of warranty and guarantee claims. Additionally, we store personal data to the extent required by law. Corresponding proof and retention obligations arise from the Commercial Code (HGB) and the Tax Code (AO). The periods for retention or documentation according to these regulations are six years (§ 257 HGB) and up to ten years (§ 147 AO). We delete personal data of the affected individual once the purpose of storage is no longer met and no legal retention periods oppose deletion.

IV. Data subjects' rights

Rights of data subjects

When personal data of a user is processed, that user is considered a “data subject” under the GDPR. They have the following rights against us as the data controller:

* Right to access

* Right to rectification

* Right to restriction of processing

* Right to erasure (deletion)

* Right to information

* Right to data portability

* Right to object

* Right to withdraw consent under data protection law

* Right to lodge a complaint with a data protection supervisory authority

Access, blocking, deletion, and correction

Within the scope of applicable legal provisions, you have the right to freely obtain information about your stored personal data, its origin, the recipient, and the purpose of processing at any time. If the legal requirements are met, you also have the right to request correction, blocking, or deletion of this data.

Right to restriction of processing

You have the right to request the restriction of processing your personal data. You can contact us at any time at the address provided in the imprint. The right to restrict processing applies in the following cases:

If you dispute the accuracy of your personal data stored with us, we typically need time to verify this. During the review period, you have the right to request the restriction of processing your personal data.
If the processing of your personal data was / is unlawful, you can request restriction instead of deletion.
If we no longer need your personal data, but you require it to assert, defend, or enforce legal claims, you have the right to request restriction instead of deletion.
If you have filed an objection according to Art. 21(1) GDPR, a balance of interests must be made between your interests and ours. Until it is clear whose interests prevail, you have the right to request the restriction of processing your personal data.

Once you have restricted the processing of your personal data, these data—apart from storage—may only be processed with your consent or for the assertion, exercise, or enforcement of legal claims, to protect the rights of another natural or legal person, or for reasons of an important public interest of the European Union or a member state.

Right to data portability

You have the right to receive the personal data that we process based on your consent or in performance of a contract, in a common, machine-readable format, or to have such data transferred directly to another data controller, provided this is technically feasible.

Revoking your consent to data processing

Many data processing activities are only possible with your explicit consent. You can revoke any consent you have given at any time. This can be done through an informal notice via email to us. The lawfulness of data processing carried out before the revocation remains unaffected by the revocation.

Right to object to data collection in specific cases and to direct marketing (Art. 21 GDPR)

If the data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right at any time to object to the processing of your personal data for reasons arising from your particular situation; this also applies to profiling based on these provisions. You can find the specific legal basis for processing in this privacy policy.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms or if the processing is for the assertion, exercise, or defense of legal claims (objection under Art. 21(1) GDPR).

If your personal data is processed for direct marketing, you have the right at any time to object to the processing of your data for such marketing purposes, including profiling to the extent it is related to such direct marketing. If you object, your data will no longer be used for direct marketing purposes (objection under Art. 21(2) GDPR).

Right to lodge a complaint with a supervisory authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the Member State of their habitual residence, employment, or the location of the alleged infringement. This right is without prejudice to other administrative or judicial remedies.

Rights regarding data processing based on legitimate interests

In accordance with Art. 21(1) GDPR, you have the right to object at any time to the processing of your personal data, which is based on Art. 6(1)(e) GDPR (processing in the public interest) or Art. 6(1)(f) GDPR (processing to protect legitimate interests), for reasons arising from your particular situation. This also applies to profiling based on these provisions. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is for asserting, exercising, or defending legal claims.

Rights regarding direct marketing

If we process your personal data for direct marketing purposes, you have the right under Art. 21(2) GDPR to object at any time to the processing of your data for such purposes, including profiling related to such direct marketing. Upon your objection, we will no longer process your personal data for these purposes. The objection can be made informally and should ideally be addressed to:

PRIMUS Immobilien AG

Lietzenburger Str. 76

10719 Berlin

Email: info@primusimmobilien.de

Legal or contractual requirements for providing personal data; necessity for contract formation; obligation of the data subject to provide personal data; possible consequences of non-disclosure

We inform you that the provision of personal data is partly mandated by law (e.g., tax regulations) or arises from contractual agreements (e.g., details about the contractual partner). For the conclusion of a contract, it is necessary that you provide us with personal data. Without this data, we will generally have to refuse to conclude the contract or, if already concluded, may need to terminate or not perform the contract.

If there is a legal obligation to provide the data, you are obliged to supply the personal data. Before providing personal data, the data subject can contact our data protection officer. Our data protection officer will inform the data subject on a case-by-case basis whether the provision of personal data is legally or contractually required, whether there is an obligation to provide data, and what the consequences of not providing the data would be.

Automated decision-making and profiling

We do not generally use exclusively automated decision-making, including profiling within the meaning of Art. 22 GDPR, to establish and conduct a business relationship.

Objection to marketing emails

We expressly object to the use of contact details published as part of our legal notice to send unsolicited advertising and informational materials. We explicitly reserve the right to take legal action in case of unsolicited sending of advertising materials, such as spam emails.

Changes to this privacy policy

This privacy statement is continually updated in line with the ongoing development of the internet and our offerings. We will inform you of any changes in a timely manner on this page. To stay informed about the current status of our data use policies, you should visit this page regularly. (Current version: January 2025)