Privacy Policy ViMREX

This privacy policy explains the processing of your personal data on or in connection with the use of the website www.vimrex.com (“Website”).

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

ViMREX GmbH
Im Neuenheimer Feld 224, 69120 Heidelberg, Germany
E-Mail-Adresse: vimrex@vimrex.com

You can contact our Data Protection Officer with the following contact information:

Dr. Marina Mangold
Esculape GmbH
Zum Spritzenplatz 6
35075 Gladenbach
Germany
Tel: (+49) 6462-916 7290
E-Mail-Adresse: datenschutz.vimrex@esculape.de

1. Purposes of Processing and Legal Basis

1.1. Usage Data

When using the Website, certain technical information (e.g., IP addresses, types of cookies, previously visited website, time and date, displayed content, amount of data transferred, language, version of the browser software used, operating system) is temporarily stored. If you use a mobile device to access our Website, information such as the unique device identifier and configuration information like screen resolution are also processed.

We use this usage data to display our Website to you, to ensure its proper functioning and use, and, if necessary, to investigate and enforce violations in the event of damage or breaches of legal regulations, our terms of use, or the rights of third parties. The legal basis for this is our legitimate interest  (Art. 6 (1) sentence 1 lit. f GDPR), which lies in displaying and ensuring the functionality of our Website as well as the investigation of violations.

1.2. Processing of Personal Data when Contacting Us

When you contact us, we process the personal data you provide in order to respond to your inquiry. The legal basis for processing general inquiries is our legitimate interest (Art. 6 (1) lit. f GDPR) to answer your request. If your contact aims at concluding a contract, the legal basis is Art. 6 (1) lit. b GDPR.

1.3. Cookies

Our Website uses cookies. Cookies are small encrypted text files stored in the users‘ browser directories. Cookies collect information and technical details about the users’ navigation (e.g., IP address, visited pages, menu selections, specific information entered into forms).

We use cookies that are technically necessary to provide our Website or certain content, or when we are legally required to do so. The legal basis for the use of necessary cookies is Section 25 (2) No. 2 Telecommunications-Digital Services Data Protection Act (TDDDG).

Unless otherwise stated in this privacy policy, cookies remain stored for as long as is necessary to fulfill the respective processing purposes.

1.4. Other Purposes for Which We Process Your Personal Data

We also process your personal data:

  • for the performance of contracts and within the framework of existing or new business relationships. We store the personal data required for this purpose (such as names and contact details) at least for the duration of our business relationship. Some data may be obtained from public sources and websites. The legal basis for this is Art. 6 (1) sentence 1 lit. b GDPR.
  • potentially for the conclusion of corporate transactions (e.g., restructuring, asset deals, mergers) or to protect our rights or property, enforce our terms of use and legal notices, as well as establish, exercise, and defend legal claims. The legal basis for this is Art. 6 (1) sentence 1 lit. f) GDPR, i.e., our legitimate interest in the aforementioned processing operations.
  • to comply with our legal obligations, court orders, or other binding decisions. The legal basis is Art. 6 (1) sentence 1 lit. c) GDPR.
  • with your consent (Art. 6 (1) sentence 1 lit. a) GDPR) for other purposes, such as subscribing to a newsletter.

2. Recipients of Personal Data

We may engage companies that process personal data on our behalf, for example, for hosting, technical support of our Website, sending newsletters, or for analysis and advertising purposes. These service providers process the data only on our behalf and in accordance with our instructions as processors (Art. 28 GDPR). For example, we use Ionos SE as a hosting service provider for our Website.

The cookies used by the Website may send data to their respective providers. Additionally, we transfer personal data to third parties if required by law, if necessary for the establishment and defense of legal claims, or if third parties provide specific services to us (e.g., lawyers, tax advisors).

Insofar as we transfer personal data to third countries outside the EU, we ensure an adequate level of data protection through appropriate safeguards. If you would like to receive a copy of these safeguards, please contact our Data Protection Officer.

3. Retention of Personal Data

Unless a specific period of data storage is specified in this privacy policy, we only process your data for as long as is necessary for the respective purposes or as long as statutory retention periods exist. After the respective processing purpose ceases to apply and the retention obligations end, your data will be routinely deleted, unless further storage is required due to special reasons (for example, the establishment, exercise, or defense of legal claims).

4. Your Rights

You have the right to:

  • request information about your personal data processed by us;
  • request deletion, correction, or restriction of the processing of your personal data;
  • receive personal data provided by you, which we process using automated procedures on the basis of your consent or for contract performance, in a commonly used and machine-readable format for yourself or a third party, or to have it transmitted directly from us to another controller, insofar as this is technically feasible;
  • withdraw your consent to the processing of personal data at any time, without affecting the lawfulness of the processing based on consent before its withdrawal;
  • object to the processing of your personal data based on our legitimate interests at any time for reasons arising from your particular situation, or without giving reasons in the case of data processing for direct marketing purposes;
  • lodge a complaint with a competent supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement.

To exercise these rights, please contact our Data Protection Officer.

5. Tracking

Tracking and logging (hereinafter: “WebAnalytics”) are enabled by default on this Website.

By which technologies does the Website operator determine the data?
The data is determined either by a pixel or by a log file. To protect personal data, WebAnalytics does not use cookies. The visitor’s IP address is transmitted when a page request is submitted, anonymized immediately after transmission, and processed without personal reference.

What data does the Website operator store about me?
The Website operator does not store any personal data of Website visitors so that no conclusions can be drawn about individual visitors. The following data is collected:

  • referrer (previously visited website)
  • requested website or file
  • browser type and browser version
  • operating system used
  • device type used
  • time of access
  • IP address in anonymized form (used only to determine the location of access)

For what purpose is the data collected?
In WebAnalytics, data is collected exclusively for statistical evaluation and the technical optimization of the Website content.