Data Privacy Statement

This website, www.grunenthal-foundation.com, (hereinafter “website”) is provided by SCHLEICHER & Dr. jur. ROBERTZ GmbH & Co. KG (hereinafter “we”, “our” or “us”). We respect your privacy and are committed to protecting your information. The privacy policy below discloses our practices regarding information collection and usage solely for the website located at www.grunenthal-stiftung.com. If you are looking for further information on the provider of this website, please refer to our imprint.

Handling of personal data

At Grünenthal, we believe transparency is the foundation of trustful collaboration. Below we will provide you with information on how we handle your personal data when you use our website. We handle your personal data because this is necessary to make certain functionalities of our website available and give you the best possible experience. Unless otherwise indicated, the legal basis for the handling of your personal data results from our legitimate interest to make available the functionalities of the website requested by you and to promote our business interests, according to (Art. 6(1)(f) General Data Protection Regulation).

Using our Website

1.1.1 Accessing our Website

When you call up our website, your browser will transfer certain data to our web server. This is done for technical reasons so that we can make the information you request available. In particular, the following data are collected, briefly stored and used:

  • IP address
  • Date and time of access
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of request (specific site)
  • Status of access/HTTP status code
  • Transferred volume of data
  • Website requesting access
  • Browser, language settings, version of browser software operating system and surface

We will also store such data for a limited period of time so that we are able to initiate a tracking of personal data in the event of actual or attempted unauthorised access to our servers (Art. 6(1)(f) General Data Protection Regulation).

1.1.2 Use of cookies

What are cookies?
Our website uses so-called “cookies”. Cookies are small text files stored in your terminal's memory via your browser. They store certain information (for example your preferred language or site settings). Your browser may retransmit these to us when you revisit our website, depending on the lifespan of the cookie.

What cookies do we use?
We differentiate between two categories of cookies: (1) functional cookies which are necessary for the functionality of our website and (2) optional cookies. These are used for website analysis and marketing purposes. You can find a detailed list of the cookies that we use in the cookie banner that pops up when you access our website or by clicking on the “privacy settings” symbol.

Subject to your consent
We only use optional cookies if we have obtained your prior consent (Art. 6(1) a) GDPR). When you visit our website for the first time, a banner will appear asking you to give us your consent to the setting of optional cookies. If you consent, we will place a cookie on your computer and the banner will not appear again as long as the cookie is active. After expiration of the cookie’s lifespan, or if you actively delete the cookie, the banner will reappear the next time you visit our website and will again ask you for your consent.

How to prevent the placing of cookies
Of course you may use our website without any cookies being set. In your browser, you can configure or completely deactivate the use of cookies at any time. Check out the Help menu of your browser to get assistance:

Internet Explorer™:
http://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies

Safari™:
https://support.apple.com/en-gb/guide/safari/sfri11471

Chrome™:
http://support.google.com/chrome/bin/answer.py?hl=de&;hlrm=en&answer=95647

Firefox™:
https://support.mozilla.org/en-US/products/firefox/protect-your-privacy/cookies

This may, however, lead to a restriction of the functions or have adverse effects on our website's user-friendliness. You may object to the setting of optional cookies at any time by using the respective objection option as indicated above.

1.1.3 Website Analysis

Matomo

We use the open source software tool Matomo (formerly PIWIK) from InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand on our website to analyze the surfing behavior of our users. Matomo is an open source tool for web analysis.

Matomo Tag Manager is a tag management system for managing JavaScript and HTML tags used to implement tracking, analytics and marketing tools.

Matomo uses cookies. These text files are stored on your computer and make it possible for us to analyze the use of the website. For this purpose, the usage information obtained by the cookie is transmitted to us and stored so that the usage behavior can be evaluated. Your IP address is immediately anonymized; thus you remain anonymous as a user. The information generated by the cookie about your use of this website will not be disclosed to third parties.

We understand this analysis as part of our Internet services. We would like to use it to further improve the website and adapt it even more to the needs of the users.

These processing operations are only carried out if explicit consent is given in accordance with Art. 6 (1) a) GDPR.

If individual pages of our website are called up, the following data is stored:

  1. Bytes of the IP address of the calling system of the user are anonymized.
  2. The website from which the user accessed the called website (referrer).
  3. The subpages accessed from the accessed website
  4. The time spent on the website
  5. The frequency of accessing the web page

In this regard, the software runs exclusively on the servers within our control and within the Matomo Cloud. We have concluded a data processing agreement with InnoCraft Ltd. about data processing on our behalf. Storage of the users' personal data only takes place there. The data is not passed on to third parties.

We store this data for a period of at least two years, unless you revoke your consent beforehand.

You can view the data protection provisions of Matomo at: https://matomo.org/privacy/

Matomo Tag Manager

On our website we use Matomo Tag Manager. Matomo Tag Manager is an extension of the open source Matomo web analytics solution. The Tag Manager is used to integrate tracking events (marketing cookies) and control the integration of third-party code. The legal basis for the data processing is Art. 6 (1) f) GDPR. The legitimate interest is the error-free functioning of the website. The deletion of the data takes place as soon as the purpose of the collection has been fulfilled.

1.1.4 Use of contact forms

You can contact us directly by using the contact forms available on our website. In particular, you may provide us with the following information:

  • Name, surname and title
  • Address (street, postal code, city)
  • Country
  • Contact data (e.g. e-mail address, phone number)
  • Message

We collect, process and use the information you provide via the contact forms exclusively for the processing of your specific request. We will store the information you provide to us in contact forms for as long as we are legally obliged to or we can claim a legitimate interest. The same applies to data you send to us when using one of the designated email addresses indicated on our website.

1.1.5 External services or content on our website

We include third-party services and/or content on our website. When you use such third-party services or when third-party content is displayed, communication data are exchanged between you and the respective provider for technical reasons. The respective provider of the services or content may also process your data for own additional purposes. To the best of our knowledge, we have configured the services and content of providers known to process data for own purposes in such a way that either any communication for other purposes than to present their services or content on our website is blocked, or communication only takes place once you have actively opted to use the respective service. However, since we have no control over data collected and processed by third parties, we are not in a position to provide binding information regarding the scope and purpose of such processing of your data.

For further information regarding the scope and purpose of such collection and processing of your data, please consult the privacy statements of the providers whose services and/or content we include and who are responsible for the protection of your data in this context:

For the purpose of an interactive design of our website third-party content from Youtube and Vimeo is integrated into this website. This serves to safeguard our predominant legitimate interests in a multimedia presentation of our services and our activities in accordance with Art. 6(1)(f) GDPR.

YouTube (videos)

This website uses plug-ins from the American company Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google") which Youtube is operated by.

As a consequence, log information may be transmitted from our website to Google. Google’s server in the United States thus automatically stores information (“log data”), such as the information that your browser sends to a website when you visit, or the information that your mobile app sends when you use it. This log data may contain your IP address, the address of the website you visited that uses Google features, the browser type and settings, the date and time of your request, information about your use of Google, and cookies.

You can find out more information about data collection, how you data is evaluated and processed by Youtube and your rights relating to this in Youtube’s / Google’s Privacy Policy: https://www.google.com/intl/en/policies/privacy/

Vimeo (videos)

This website uses plug-ins from the American company Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA.

As a consequence, log information may be transmitted from our website to Vimeo. Vimeo’s server in the United States thus automatically stores information (“log data”), such as the information that your browser sends to a website when you visit, or the information that your mobile app sends when you use it. This log data may contain your IP address, the address of the website you visited that uses Vimeo features, the browser type and settings, the date and time of your request, information about your use of Vimeo, and cookies.
You can find out more information about data collection, how you data is evaluated and processed by Vimeo, and your rights relating to this in Vimeo’s Privacy Policy: http://vimeo.com/privacy.

Eye-Able

Eye-Able® is a software of Web Inclusion GmbH to ensure barrier-reduced access to information on the Internet for all people.

The necessary files such as JavaScript, stylesheets and images are loaded from an external server. Eye-Able uses the local storage of the browser to save the settings when functions are activated. All settings are only stored locally and are not transferred further. In order to fend off attacks and provide our service in near real time, Eye-Able® uses the Content Delivery Network (CDN) of BunnyWay d.o.o. (Cesta komandanta Staneta 4A, 1215 Medvode, Slovenia). This is used for the purpose of fulfilling contracts with our customers (Art. 6 para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO). All transmitting data and servers remain in the EU at all times to enable data protection-compliant processing in accordance with DSGVO. Web Inclusion GmbH does not collect or analyze personal user behavior or other personal data at any time. In order to ensure data protection-compliant processing, Web Inclusion GmbH has concluded commissioned processing contracts with our hosters IONOS and BunnyWay. For more information, please see the privacy statements:
https://eye-able.com/en/privacy-policy/
https://bunny.net/privacy

1.2 Transfer of data for commissioned processing

We will use specialised service contractors for the processing of your data to a certain extent. We carefully select and regularly monitor such service contractors. They will only process personal data upon our instruction and strictly in accordance with our directives, based on respective data processor agreements.

1.3 Processing of data outside the EU/the EEA

Your data will partly be processed in countries outside the European Union (“EU”) or the European Economic Area (“EEA”). The respective countries may have a lower data protection level than European countries. In such cases, we will ensure that a sufficient level of protection is provided for your data, e.g. by concluding specific agreements with our contractual partners. Alternatively, we will ask for your explicit consent to such processing.

2. Information regarding your rights

You have the following rights according to applicable data privacy laws:

  • right of information about your personal data stored by us;
  • right to request the correction, deletion (provided that we are not legally obliged to keep the data) or restricted processing of your personal data;
  • right to object to a processing for reasons of our own legitimate interest, public interest or profiling, unless we are able to prove that compelling, warranted reasons overruling your interests, rights and freedom exist, or that such processing is done for purposes of the assertion, exercise or defense of legal claims;
  • right to data portability;
  • right to file a complaint with a data protection authority.
  • right to revoke your consent to the collection, processing and use of your personal data at any time with future effect. For further information please refer to the chapters above describing the processing of data based on your consent.

3. Contact

If you, as a data subject, do not agree with the way in which the Grünenthal Foundation or persons working at the Grünenthal Foundation process your data and you wish to contact the data protection officer directly, please contact him at: rgoetz@datenschutzservice.nrw. You can only reach our data protection officer at this address. The data protection officer is obliged to treat your identity confidentially. Should he come to the conclusion that your identity could be inferred in the course of processing a complaint, the Data Protection Officer will draw your attention to this fact in advance and, if necessary, ask you to release him from his duty of confidentiality.

Data protection supervisory authority

You can also submit your questions and complaints to the competent data protection supervisory authority:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Telephone: 0211-38424-0
Fax: 0211/38424-10
Email: poststelle@ldi.nrw.de

4. Amendment of Privacy Statement

We may update our Data Privacy Statement from time to time and we will publish these updates on our website. They become effective upon publication. So we recommend you regularly visit the site to keep yourself informed on possible amendments.

This Data Privacy Statement was last updated in Nov. 2024.