We are very pleased about your interest in our company. Data protection is of particularly high importance to the management of Kampmann-Capital.com®. The use of the Kampmann-Capital.com® website is generally possible without providing any personal data. However, if a data subject wishes to use special services of our company via our website, the processing of personal data may become necessary. If the processing of personal data is required and there is no legal basis for such processing, we generally obtain the consent of the data subject.

The processing of personal data, such as the name, address, email address, or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection regulations applicable to Kampmann-Capital.com®. By means of this privacy policy, our company would like to inform the public about the type, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights by means of this privacy policy.

As the controller responsible for processing, Kampmann-Capital.com® has implemented numerous technical and organizational measures to ensure the most complete protection possible of personal data processed through this website. However, internet-based data transmissions may generally have security gaps, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us via alternative means, for example by telephone.

1. Definitions

The privacy policy of Kampmann-Capital.com® is based on the terminology used by the European legislator when adopting the General Data Protection Regulation (GDPR). Our privacy policy should be easy to read and understand for the public, as well as for our customers and business partners. To ensure this, we would like to explain the terminology used in advance.

In this privacy policy, we use, among others, the following terms:

a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

b) Data subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller.

c) Processing
Processing means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting its future processing.

e) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

f) Pseudonymization
Pseudonymization is the processing of personal data in such a manner that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and subject to technical and organizational measures.

g) Controller
The controller is the natural or legal person, public authority, agency, or other body which determines the purposes and means of the processing of personal data.

h) Processor
A processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.

i) Recipient
A recipient is a natural or legal person, public authority, agency, or another body to which personal data are disclosed, whether a third party or not.

j) Third party
A third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons authorized to process the data.

k) Consent
Consent means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they signify agreement to the processing of personal data.

2. Name and Address of the Controller

Controller within the meaning of the GDPR and other applicable data protection laws is:

Kampmann-Capital.com®
Dammweg 5
33758 Schloss Holte-Stukenbrock
Germany

Phone: +49 5207 9584091
Email: info@kampmann-capital.com
Website: https://kampmann-capital.com/

3. Cookies

The Kampmann-Capital.com® website uses cookies. Cookies are text files that are stored on a computer system via an internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie, allowing websites and servers to distinguish the individual browser of the data subject from others.

Through the use of cookies, Kampmann-Capital.com® can provide more user-friendly services that would not be possible without cookie setting.

Cookies allow us to optimize information and offers for the user. They enable us to recognize users of our website, making usage easier—for example, users do not have to re-enter login data each time.

The data subject may prevent the setting of cookies at any time through browser settings and may delete existing cookies. However, disabling cookies may limit website functionality.

4. Collection of General Data and Information

The website collects general data and information with each access. These are stored in server log files and may include:

• Browser types and versions

• Operating system

• Referrer website

• Subpages accessed

• Date and time of access

• IP address

• Internet service provider

• Other security-related data

These data are not used to identify individuals but are required to:

• Deliver website content correctly

• Optimize content and advertising

• Ensure system functionality

• Provide information to authorities in case of cyberattacks

5. Contact via the Website

The website contains information enabling quick electronic contact (e.g., email). If a data subject contacts us, the transmitted personal data are stored automatically for processing purposes and are not shared with third parties.

6. Routine Erasure and Blocking of Personal Data

Personal data are stored only as long as necessary or as required by law. After expiration, data are routinely deleted or blocked.

7. Rights of the Data Subject

Data subjects have the following rights:

• Right to confirmation

• Right of access

• Right to rectification

• Right to erasure (“right to be forgotten”)

• Right to restriction of processing

• Right to data portability

• Right to object

• Rights related to automated decision-making

• Right to withdraw consent

8. Legal Basis for Processing

Processing is based on:

• Consent (Art. 6(1)(a) GDPR)

• Contract performance (Art. 6(1)(b))

• Legal obligation (Art. 6(1)(c))

• Vital interests (Art. 6(1)(d))

• Legitimate interests (Art. 6(1)(f))

9. Legitimate Interests

Our legitimate interest lies in conducting business operations for the benefit of employees and shareholders.

10. Data Retention Period

Personal data are stored according to statutory retention periods and deleted afterward unless still required.

11. Provision of Personal Data

Providing personal data may be legally or contractually required. Failure to provide data may prevent contract conclusion.

12. Automated Decision-Making

We do not use automated decision-making or profiling.