Privacy Policy

I. Name and address of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States as well as other data protection regulations is:

LAMBRECHT meteo GmbH
Friedländer Weg 65
37085 Göttingen
Germany

Tel.: +49 551 4958 – 0
Email: info-lambrecht(at)aem.eco
Website: www.lambrecht.net

II. Name and address of the data protection officer

The data protection officer of the controller is:

Daniel Simao
Friedländer Weg 65
37085 Göttingen
Germany

Tel.: +49 551 4958 – 325
Email: daniel.simao@aem.eco

III. General information on data processing

1. Scope of processing personal data

We only process our users' personal data to the extent necessary to provide a functional website and our content and services. The processing of our users' personal data is carried out regularly only with the user's consent. An exception applies in cases where prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is party, Article 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.

If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights, and freedoms of the data subject do not override the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing.

3. Data deletion and storage period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place if this has been provided for by European or national legislators in EU regulations, laws, or other provisions to which the controller is subject. The data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

IV.Data processingwithin the scope of our customer relationship management ("CRM") system and our enterprise resource planning ("ERP") system

Description and scope of data processing (PDF 162 KB)

V. Provision of the website and creation of log files

1. Description and scope of data processing

Every time you visit our website, our system automatically collects data and information from the computer system of the visiting computer.

The following data is collected:

• Browser type and browser version
• operating system used
• Referrer URL
• Host name of the accessing computer
• Time of server request

This data cannot be attributed to specific individuals. This data is not combined with other data sources. We reserve the right to review this data retrospectively if we become aware of specific indications of illegal use.

2. Legal basis for data processing

The legal basis for the temporary storage of data and log files is Article 6(1)(f) of the GDPR.

3. Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session. These purposes also constitute our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR.

4. Duration of storage

The data will be deleted as soon as it is no longer required for the purpose for which it was collected. In the case of data collected for the provision of the website, this is the case when the respective session has ended.

In the case of data storage in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of users are deleted or anonymized so that it is no longer possible to assign them to the calling client.

5. Right to object and right to erasure

The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. Consequently, there is no possibility for the user to object.

VI. Use of cookies

We use cookies on our website. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. When you visit a website, a cookie may be stored on your operating system. This contains a characteristic string of characters that enables the browser to be uniquely identified when the website is visited again.

We use cookies to make our website more user-friendly. Some elements of our website require that the browser can be identified even after a page change.

The legal basis for the storage of cookies, device identifiers, and similar tracking technologies, as well as for the storage of information on the end user's terminal equipment and access to this information, is the European ePrivacy Directive in conjunction with the Telecommunications Digital Services Data Protection Act (TDDDG).

Please note that the legal basis for the processing of personal data collected in this context is then derived from the GDPR (Art. 6 (1) sentence 1 GDPR). The legal basis for the processing of personal data relevant in each specific case can be found in the respective cookie or in the respective processing itself.

The primary legal basis for storing information on the end user's terminal equipment—and thus, in particular, for storing cookies—is your consent, Section 25 (1) sentence 1 TDDDG. Consent is given when you visit our website—although, of course, you are not obliged to do so—and can be revoked at any time in the cookie settings.

According to Section 25 (2) No. 2 TDDDG, consent is not required if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is absolutely necessary for the provider of a telemedia service to be able to provide a telemedia service expressly requested by the user. The cookie settings indicate which cookies are classified as strictly necessary (often referred to as "technically necessary cookies") and therefore fall under the exemption of Section 25 (2) TDDDG and do not require consent.

You can manage online advertising cookies via the following links: for the US, for Europe.

Most browsers automatically accept cookies. You can prevent cookies from being stored on your device by selecting "do not accept cookies" in your browser settings. You can delete cookies that have already been set on your device at any time. For the most common browsers, you can find the procedure under the following links:

• Mozilla Firefox
• GOOGLE CHROME
• MICROSOFT INTERNET EXPLORER
• Apple Safari

Please refer to the instructions provided by your browser or device manufacturer to find out how to delete cookies on your device.

VII. Contact form and email contact

1. Description and scope of data processing

Our website features a contact form that can be used to contact us electronically. If a user chooses to do so, the data entered in the input mask will be transmitted to us and stored. This data includes:

• Name
• Company (optional)
• Phone (optional)
• email address
• Preferred date (optional)
• Preferred time (optional)
• Product (optional)

When the message is sent, the date and time of registration are also stored. Your consent is obtained for the processing of the data as part of the sending process, and reference is made to this privacy policy.

Alternatively, you can contact us via the email address provided. In this case, the user's personal data transmitted with the email will be stored. In this context, the data will not be passed on to third parties. The data will be used exclusively for processing the conversation.

2. Legal basis for data processing

The legal basis for processing the data is Art. 6 (1) (a) GDPR if the user has given their consent. The legal basis for processing data transmitted in the course of sending an email, including the reCaptcha service, is Art. 6 (1) lit. f GDPR. If the email contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) lit. b GDPR.

3. Purpose of data processing

The processing of personal data from the input mask serves us solely for the purpose of processing the contact request. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the data. The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems.

4. Duration of storage

The data will be deleted as soon as it is no longer required for the purpose for which it was collected. For personal data from the input mask of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. Right to object and right to erasure

The user may revoke their consent to the processing of personal data at any time. If the user contacts us by email, they may object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.

To revoke your consent, simply send an email without comment to unsubscribe(at)lambrecht.net. In this case, all personal data stored in the course of contacting us will be deleted.

VIII. Google Analytics

If you have given your consent, Google Analytics 4, a web analytics service provided by Google LLC, is used on this website. The responsible body for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

Scope of processing

Google Analytics uses cookies that enable an analysis of your use of our websites. The information collected by the cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

With Google Analytics 4, IP address anonymization is enabled by default. Due to IP anonymization, your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. According to Google, the IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. During your visit to the website, your user behavior is recorded in the form of "events." Events can be:

• page views
• First visit to the website
• Start of the session
• Your "click path," interaction with the website
• Scrolls (whenever a user scrolls to the bottom of the page (90%))
• Clicks on external links
• internal search queries
• Interaction with videos
• File downloads
• Viewed/clicked ads
• language setting

The following is also recorded:

• Your approximate location (region)
• Your IP address (in abbreviated form)
• Technical information about your browser and the devices you use (e.g., language settings, screen resolution)
• Your Internet service provider
• the referrer URL (which website/advertising medium you used to access this website)

Purposes of processing

On behalf of the operator of this website, Google will use this information to evaluate your pseudonymous use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyze the performance of our website.

Recipient

The recipients of the data are/may be:

• Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor pursuant to Art. 28 GDPR)
• Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
• Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

It cannot be ruled out that US authorities may access data stored by Google.

Third-country transfer

If data is processed outside the EU/EEA and there is no level of data protection that meets European standards, we have concluded EU standard contractual clauses with the service provider in order to ensure an adequate level of data protection. with the service provider . The parent company of Google Ireland, Google LLC, is based in California, USA. The transfer of data to the USA and access by US authorities to data stored by Google cannot be ruled out. From a data protection perspective, the USA is currently considered a third country. You do not have the same rights there as you do within the EU/EEA. You may have no legal recourse against access by authorities.

Storage period

The data we send and link to cookies is automatically deleted after 14 months. Data that has reached its retention period is automatically deleted once a month.

Legal basis

The legal basis for this data processing is your consent pursuant to Art. 6 (1) (a) GDPR.

Revocation

You can revoke your consent at any time with future effect by accessing the cookie settings and changing your selection there. The legality of the processing carried out on the basis of the consent until revocation remains unaffected.

You can also prevent cookies from being stored in the first place by adjusting your browser software settings accordingly. However, if you configure your browser to reject all cookies, this may restrict the functionality of this and other websites. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by not giving your consent to the setting of the cookie or by downloading and installing the browser add-on to deactivate Google Analytics here.

For more information on Google Analytics' terms of use and Google's privacy policy , please visit https://marketingplatform.google.com/about/analytics/terms/de/ and https://policies.google.com/?hl=de.

IX. Google Tag Manager

This website uses Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies into our website. Google Tag Manager itself does not create user profiles, store cookies, or perform independent analyses. It is used solely to manage and display the tools integrated through it. However, Google Tag Manager does collect your IP address, which is transmitted to Google.

However, Google Tag Manager will only collect data if you have consented to the transfer of data by Google Analytics. You can revoke this consent at any time via this link.

X. Facebook plugins

Plugins from the social network Facebook, provider Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are integrated into our pages. You can recognize the Facebook plugin by the Facebook symbol on our page. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/.

When you visit our website, the plugin establishes a direct connection between your browser and the Facebook server. Facebook receives the information that you have visited our site with your IP address. If you click the Facebook "Like" button while you are logged into your Facebook account, you can link the content of our pages to your Facebook profile. This allows Facebook to associate your visit to our pages with your user account. We would like to point out that, as the provider of the website, we have no knowledge of the content of the data transmitted or how it is used by Facebook. For more information, please see Facebook's privacy policy at https://de-de.facebook.com/policy.php.

If you do not want Facebook to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account.

XI. Twitter

Our website incorporates features of the Twitter service. These features are provided by Twitter International Unlimited Company, 1 Cumberland Place, Fenian Street, Dublin 2, Ireland. By using Twitter and the "Re-Tweet" feature, the websites you visit are linked to your Twitter account and disclosed to other users. Data is also transferred to Twitter in the process. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by Twitter. For more information, please see Twitter's privacy policy at https://twitter.com/privacy.

You can change your privacy settings on Twitter in your account settings at:

https://twitter.com/account/settings ändern.

XII. LinkedIn

Our website uses features of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. Each time you visit one of our pages that contains LinkedIn features, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the LinkedIn "Recommend" button and are logged into your LinkedIn account, LinkedIn can associate your visit to our website with you and your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by LinkedIn.

For more information, please refer to LinkedIn's privacy policy at:

https://www.linkedin.com/legal/privacy-policy

XIII. XING

Our website uses functions of the XING network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time one of our pages containing XING functions is accessed, a connection to XING servers is established. To our knowledge, no personal data is stored in the process. In particular, no IP addresses are stored and no usage behavior is evaluated.

Further information on data protection and the XING Share button can be found in the

XING privacy policy at: https://www.xing.com/app/share?op=data_protection

XIV. YouTube

Our website uses plugins from the Google-operated site YouTube, provided you have consented to the transfer of data to YouTube. The operator of the site is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your surfing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

Further information on the handling of user data can be found in the privacy policy at

YouTube at: https://www.google.de/intl/de/policies/privacy

The transfer of data to YouTube is based on Art. 6 para. 1 lit. a GDPR and only takes place with your consent. You can revoke your consent at any time via.

XV. DATA PROTECTION IN THE APPLICATION PROCESS

The controller collects and processes applicants' personal data for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents to the controller electronically, for example by email. If the controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests of the controller prevent deletion. Other legitimate interests in this sense include, for example, the burden of proof in proceedings under the General Equal Treatment Act (AGG).

XVI. SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

When SSL encryption is enabled, the data you transmit to us cannot be read by third parties.

XVII. Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

1. Right to information

You may request confirmation from the controller as to whether personal data concerning you is being processed by us.

If such processing takes place, you may request the following information from the controller:

1. the purposes for which the personal data are processed;
2. the categories of personal data that are processed;
3. the recipients or categories of recipients to whom your personal data has been or will be disclosed;
4. the planned duration of storage of the personal data concerning you or, if specific information on this is not possible, criteria for determining the storage period;
5. the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller, or a right to object to such processing;
6. the existence of a right of appeal to a supervisory authority;
7. all available information on the origin of the data, if the personal data is not collected from the data subject;
8. the existence of automated decision-making, including profiling, pursuant to Article 22(1) and (4) of the GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

You have the right to request information about whether personal data concerning you is being transferred to a third country or to an international organization. In this context, you may request to be informed about the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer.

2. Right to rectification

You have the right to request the controller to correct and/or complete your personal data if it is inaccurate or incomplete. The controller must make the correction without delay.

3. Right to restriction of processing

You may request the restriction of the processing of personal data concerning you under the following conditions:

1. if you dispute the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
2. the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
3. the controller no longer needs the personal data for the purposes of processing, but you need it to assert, exercise, or defend legal claims, or
4. if you have lodged an objection to the processing pursuant to Article 21(1) GDPR and it is not yet clear whether the legitimate grounds of the controller override your grounds.

If the processing of personal data concerning you has been restricted, such data may—apart from its storage—only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If the processing has been restricted in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.

4. Right to erasure

a) Obligation to delete

You may request that the controller delete your personal data without delay, and the controller is obliged to delete this data without delay if one of the following reasons applies:

1. The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.
2. You revoke your consent on which the processing was based in accordance with Art. 6 (1) (a) or Art. 9 (2) (a) GDPR, and there is no other legal basis for the processing.
3. You object to the processing pursuant to Art. 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) GDPR.
4. The personal data concerning you has been processed unlawfully.
5. The erasure of personal data concerning you is necessary to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject.

b) Information to third parties

If the controller has made the personal data concerning you public and is obliged to erase it in accordance with Article 17(1) of the GDPR, it shall take reasonable steps, including technical measures, taking into account the available technology and implementation costs, to inform other controllers processing the personal data that you, as the data subject, have requested them to delete all links to this personal data or copies or replications of this personal data.

c) Exceptions

The right to erasure does not apply if processing is necessary

1. to exercise the right to freedom of expression and information;
2. for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
3. for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) GDPR;
4. for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Art. 89 (1) GDPR, insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of this processing, or
5. to assert, exercise, or defend legal claims.

5. Right to information

If you have asserted your right to rectification, erasure, or restriction of processing against the controller, the controller is obliged to notify all recipients to whom your personal data has been disclosed of this rectification, erasure, or restriction of processing, unless this proves impossible or involves disproportionate effort.

You have the right to be informed by the controller about these recipients.

6. Right to data portability

You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, provided that

1. the processing is based on consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract pursuant to Art. 6 para. 1 lit. b GDPR and
2. processing is carried out using automated procedures.

In exercising this right, you also have the right to have the personal data concerning you transferred directly from one controller to another, where technically feasible. This must not adversely affect the freedoms and rights of other persons.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

7. Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Article 6(1)(e) or (f) of the GDPR; this also applies to profiling based on these provisions. The controller will no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims. If the personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing purposes; this also applies to profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You have the option, in connection with the use of information society services, to exercise your right to object by means of automated procedures using technical specifications, notwithstanding Directive 2002/58/EC.

8. Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. Revoking your consent does not affect the legality of the processing carried out on the basis of your consent prior to revocation.

9. Automated decision-making in individual cases, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision

1. is necessary for the conclusion or performance of a contract between you and the controller,
2. is authorized by Union or Member State law to which the controller is subject and that law provides for appropriate measures to safeguard your rights and freedoms and legitimate interests; or
3. with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Article 9(1) GDPR, unless Article 9(2)(a) or (g) GDPR applies and appropriate measures have been taken to protect your rights and freedoms and legitimate interests.

With regard to the cases referred to in (1) and (3), the controller shall take appropriate measures to safeguard your rights and freedoms and legitimate interests, including at least the right to obtain human intervention on the part of the controller, to express your point of view, and to contest the decision.

10. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.

The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.

XVIII. CHANGES TO THE DATA PROTECTION PROVISIONS

Our privacy policy may be amended at irregular intervals to comply with current legal requirements or to implement changes to our services. The new privacy policy will then automatically apply to your next visit.

XIX. Objection to advertising emails

We hereby object to the use of contact data published within the scope of the legal notice obligation for sending unsolicited advertising and information materials. The operators of the website expressly reserve the right to take legal action in the event of unsolicited advertising information being sent, for example via spam emails.