I. Name and address of the responsible person
Responsible according to Art. 4 (7) of the DSGVO is:
EOC Operations+ Consulting GmbH Authorized representative and managing director: Winfried Seuwen
40212 Düsseldorf Germany
Tel: +49 (0)211 540 57020
Fax: +49 (0)211 540 57001
Düsseldorf district court · Commercial register number: HRB 75955
Sales tax ID: DE301936009
Data protection officer
Our external data protection officer, RA/WP/StB, Dipl.-Kfm. Jochen König, can be contacted
Moore Stephens Rhein-Emscher GmbH
Kuhlenwall 20 47051 Duisburg
Tel.: +49 (0)203 2950 670
II. Personal data and their use
When you visit our website www.operationsplus.com, the browser on your device automatically sends information to the server on our website. This information is temporarily stored in a log file. The following information is recorded without your intervention and stored until it is automatically deleted:
- IP address of the requesting computer,
- date and time of access,
- name and URL of the retrieved file,
- website from which access is made (referrer URL)
The mentioned data will be processed by us for the following purposes:
- ensuring a problem-free connection of the website,
- ensuring convenient use of our website,
- evaluation of system security and stability as well as
- for other administrative purposes.
The legal basis for data processing is Art. 6 para. 1 s. 1 (f) DSGVO. Our legitimate interest follows from the purposes listed above for data collection. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.
III. Disclosure of data
Your personal data will not be transmitted to third parties for purposes other than those listed below. We will only pass on your personal data to third parties if:
- you have given your express consent pursuant to Art. 6 para. 1 s. 1 (a) DSGVO,
- the disclosure pursuant to Art. 6 para. 1 S. 1 f DSGVO is necessary to assert, exercise or defend our legal claims or those of a third party and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
- in the event that a legal obligation exists for the transfer pursuant to Art. 6 para. 1 s. 1 (c) DSGVO, and
- this is legally permissible and necessary for the processing of contractual relationships with you pursuant to Art. 6 para. 1 s. 1 (b) DSGVO.
In addition, we also use temporary cookies that are stored on your end device for a specified period of time to optimize user-friendliness. If you visit our site again to use our services, it will automatically recognize that you have already been with us and what entries and settings you have made so that you do not have to enter them again.
The data processed by cookies is required for the aforementioned purposes in order to protect our legitimate interests and those of third parties pursuant to Art. 6 para. 1 s. 1 (f) DSGVO.
Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies can mean that you cannot use all the functions of our website.
V. Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.
For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our website. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.
If your browser does not support web fonts, a standard font is used by your computer.
Our website uses functions of the network LinkedIn. The provider of LinkedIn is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Every time you access one of our websites which contains LinkedIn functions, a connection to the servers of LinkedIn is established. LinkedIn will be informed that you have visited our websites with your IP address. If you click the LinkedIn recommend button while logged in to your LinkedIn account, LinkedIn can associate your visit to our websites with your user account. We would like to point out that we, as providers of these websites, do not obtain knowledge about the content of transmitted data as well as their use by LinkedIn.
Our website uses features provided by the XING network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time one of our pages containing XING features is accessed, your browser establishes a direct connection to the XING servers. To the best of our knowledge, no personal data is stored in the process. In particular, no IP addresses are stored nor is usage behaviour evaluated.
VIII. SSL encryption
This site uses SSL encryption for security purposes and to protect the transmission of sensitive content, such as the requests you send to us as the site operator. You can recognize an encrypted connection because the address line of the browser changes from “http://” to “https://” and the lock symbol is in your browser line. If SSL encryption is enabled, the data you transfer to us cannot be read by third parties.
IX. Data security
1. We take appropriate technical and organizational security measures according to the requirements of Art. 32 DSGVO to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
2. We use the popular SSL (Secure Socket Layer) method for visits to our website, in conjunction with the highest level of encryption supported by your browser. In general, this is 256-bit encryption. The actual strength of encryption depends on the browser. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. Whether an individual page of our website is encrypted is shown by the closed representation of the key or lock icon in the lower status bar of your browser.
X. Rights of the data subject
When your personal data is processed, you are the data subject as defined by the DSGVO and you have the following rights in relation to us (“the data controller”):
1. Right to information
You may demand from the data controller confirmation as to whether personal data relating to you is processed by us. If there is such processing, you may demand the following information from the data controller:
(1) The purposes for which personal data is processed;
(2) The categories of personal data processed;
(3) The recipients or categories of recipients to whom personal data relating to you has been or will be disclosed;
(4) The planned duration of storage of your personal data or, if it is not possible to provide any concrete information about this, criteria for determining the duration of storage;
(5) The existence of a right to correction or deletion of your personal data, of a right to restriction of processing by the data controller or a right to object to this processing;
(6) The existence of the right to lodge a complaint with a regulatory authority;
(7) All available information about the origin of the data if personal data is not obtained from the data subject;
(8) The existence of automated decision-making including profiling in accordance with Art. 22 (1) and (4) DSGVO and – at least in these cases – conclusive information about the logic involved as well as the implications and the intended effects of such processing for the data subject.
You have the right to demand information concerning whether personal data relating to you is transferred to a third country or an international organization. In this connection you may demand to be informed about suitable guarantees in accordance with Art. 46 DSGVO in connection with the transfer.
2. Right to correction
You have the right in relation to the data controller to correction and/or completion insofar as personal data relating to you is incorrect or incomplete. The data controller must make the correction immediately.
3. Right to restriction of processing Under the following conditions you can demand restriction of processing of personal data relating to you:
(1) If you dispute the correctness of the personal data relating to you for a duration that allows the data controller to check the correctness of the personal data.
(2) The processing is illegal and you reject deletion of the personal data and instead demand restriction of use of the personal data.
(3) The data controller no longer needs the personal data for the purposes of processing but you nevertheless require it for assertion, exercise or defence of legal claims.
(4) If you have lodged an objection against processing in accordance with Art. 21 (1) DSGVO and it is not yet established whether the data controller’s justified interests outweigh your reasons.
If processing of the personal data relating to you has been restricted, this data may – apart from storage – be processed only with your consent or for assertion, exercise or defence of legal claims or for the protection of rights of another natural person or legal entity or for reasons of an important public interest of the European Union or of a Member State.
If processing has been restricted in accordance with the above conditions, you will be informed by the data controller before the restrictions are lifted.
4. Right to deletion
a) Obligation to delete
You may demand from the data controller that personal data relating to you be deleted immediately, whereupon the data controller is required to delete this data immediately insofar as one of the following reasons applies:
(1) The personal data relating to you is no longer needed for the purposes for which it was obtained or otherwise processed.
(2) You revoke your consent on which the processing was based in accordance with Art. 6 (1) a DSGVO or Art. 9 (2) a DSGVO, and there is no other legal basis for the processing.
(3) You lodge an objection in accordance with Art. 21 (1) DSGVO against the processing and there are no overriding justified grounds for the processing, or you lodge an objection against the processing in accordance with Art. 21 (2) DSGVO.
(4) The personal data relating to you has been processed illegally.
(5) Deletion of the personal data relating to you is required for fulfilment of a legal obligation in accordance with EU law or the law of Member States to which the data controller is subject.
(6) Information to third parties If the data controller has disclosed personal data relating to you and the data controller is required to delete it in accordance with Art. 17 (1) DSGVO, he must take reasonable measures, including measures of a technical nature, taking into account the available technology and implementation costs, to inform the parties responsible for the data processing that you as the data subject have demanded from them deletion of all links to this personal data or copies or replications of this personal data.
The right to deletion does not exist insofar as the processing is necessary
(1) To exercise the right to freedom of expression and information;
(2) To fulfil a legal obligation that requires the processing under the law of the EU or of the Member States to which the data controller is subject or to carry out a task that is in the public interest or that is carried out in the exercise of official authority that has been transferred to the data controller;
(3) For reasons of public interest in the sphere of public health in accordance with Art. 9 (2) h and i as well as Art. 9 (3) DSGVO;
(4) For archiving purposes in the public interest, scientific or historic research purposes or for statistical purposes in accordance with Art. 89 (1) DSGVO insofar as the right stated in (1) is expected to make realization of these objectives impossible or seriously impede them; or
(5) For the assertion, exercise or defence of legal claims.
5. Right to be informed If you have asserted the right to correction, deletion or restriction of processing in relation to the data controller, the latter is required to notify all recipients to whom the personal data relating to you has been disclosed about this correction or deletion of data or restriction of processing unless it proves to be impossible or entails inordinate expenditure. You have the right in relation to the data controller to be informed about these recipients.
6. Right to data portability You have the right to receive the personal data relating to you, which you have provided to the data controller, in a structured, common, machine-readable format. You also have the right to transfer this data to another data controller, without obstruction by the data controller to whom you have provided the personal data, insofar as
(1) The processing is based on consent in accordance with Art. 6 (1) a DSGVO or Art. 9 (2) a DSGVO or on a contract in accordance with Art. 6 (1) b DSGVO and
(2) Processing is carried out by an automated process.
When exercising this right you also have the right to arrange to receive the personal data relating to you directly from another data controller insofar as this is technically feasible. Rights and freedoms of other persons must not be affected by this.
The right to data portability does not apply to processing of personal data required to carry out a task in the public interest or which is carried out in the exercise of official authority that has been transferred to the data controller.
7. Right of objection You have the right, for reasons arising from your particular situation, to lodge an objection at any time to processing of personal data relating to you which takes place on the basis of Art. 6
(1) e or f DSGVO; this also applies to profiling based on these provisions.
After an objection the data controller will no longer process the personal data relating to you unless he can prove compelling reasons for the processing that warrant protection that outweigh your interests, rights and freedoms or the processing serves the purpose of asserting, exercising or defending legal claims.
If the personal data relating to you is processed for the purpose of direct advertising, you have the right at any time to lodge an objection against the processing of the personal data relating to you for the purpose of such advertising; this also applies to profiling insofar as it is directly connected with such direct advertising.
If you object to processing for the purposes of direct advertising, the personal data relating to you will no longer be used for these purposes.
You have the option in connection with the use of services of the information society – notwithstanding Directive 2002/58/EC – to exercise your right of objection by means of automated processes in which technical specifications are used.
8. Right to revoke the declaration of consent under data protection law You have the right to revoke your declaration of consent under data protection law at any time. Revocation of consent does not affect the legality of processing carried out on the basis of consent up to the time of revocation.
9. Automated decision-making in the individual case including profiling You have the right to refuse to be subject to a decision based exclusively on automated processing – including profiling – that has a legal effect for you or which affects you substantially in a similar way. This does not apply if the decision:
(1) Is necessary for conclusion or fulfilment of a contract between you and the data controller;
(2) Is permissible on the basis of legal regulations of the European Union or Member States to which the data controller is subject and these legal regulations include appropriate measures to safeguard your rights and freedoms as well as your justified interests;
(3) Is taken with your express consent.
However, these decisions must not be based on specific categories of personal data in accordance with Art 9 (1) DSGVO insofar as Art 9 (2) a or g does not apply and appropriate measures have been taken for the protection of rights and freedoms as well as your justified interests.
With regard to the cases stated in (1) and (3) the data controller must take suitable measures to safeguard rights and freedoms as well as your justified interests, which includes as a minimum the right to obtain human intervention on the part of the data controller, to express your point of view and to contest the decision.
10. Right to lodge a complaint with a regulatory authority Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a regulatory authority, in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement if you consider that the processing of personal data relating to you infringes the DSGVO.
The regulatory authority with which the complaint has been lodged will inform the complainant about the progress and the outcome of the complaint including the possibility of a judicial remedy in accordance with Art. 78 DSGVO.