Download the PDF version here.

Privacy Policy of curexus GmbH

Welcome to our website and thank you for your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with applicable personal data protection legislation, in particular the GDPR and our country-specific implementation laws, which provide comprehensive information about the processing of your personal data by curexus GmbH and your rights.
Personal data is any information that makes it possible to identify a natural person. This includes, in particular, your name, date of birth, address, telephone number, email address and IP address. Anonymous data is available if no personal reference to the individual/user can be made.

Responsible body and data protection officer

curexus GmbH
Nordostpark 3
90411 Nürnberg
Telefon: +49 911 99987-0
Telefax: +49 911 99987-100

www.curexus.com
info@curexus.com

contact info of the data protection officer:
datenschutz@curexus.com

Your rights as a data subject

We would first like to notify you of your rights as a data subject. These rights are set out in Articles 15 – 22 GDPR, and include:

  • The right of access (Art. 15 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to object to data processing (Art. 21 GDPR),
  • The right to erasure / right to be forgotten (Art. 17 GDPR),
  • The right to restriction of data processing (Art. 18 GDPR).

To exercise these rights, please contact: datenschutz@curexus.com. The same applies if you have any questions regarding data processing in our company or when you withdraw your consent. You also have a right of appeal to the relevant data protection supervisory authority.

Right to object

Please note the following with respect to your right to object:

When we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without providing the reasons for such objection. This also applies to profiling insofar as it is associated with direct marketing.

If you object to the processing for direct marketing, we will no longer process your personal data for such purposes. The objection is free of charge and can be made informally, where appropriate to: datenschutz@curexus.com

Should we process your data to protect legitimate interests, you may object to such processing at any time for reasons that arise from your specific situation; this also applies to profiling based on these provisions.

We will then cease to process your personal information unless we can demonstrate compelling legitimate grounds for processing such information that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

Purposes and legal bases of data processing

The processing of your personal data complies with the provisions of the GDPR and all other applicable data protection regulations. Legal bases for data processing arise in particular from Art. 6 GDPR.

We use your data to initiate business, to fulfil contractual and legal obligations, to conduct the contractual relationship, to offer products and services and to consolidate customer relationships, which may include marketing and direct marketing.

Your consent also constitutes a data protection regulation. In this respect, we will inform you of the purposes of data processing and the right to withdraw your consent. If the consent also relates to the processing of special categories of personal data, we will explicitly notify you in the consent process.

Processing of special categories of personal data within the meaning of Art. 9 (1) GDPR may only take place where necessary on the grounds of legal regulations and there is no reason to assume that your legitimate interests should prevail to the exclusion of processing such data.

Data transfers / Disclosure to third parties

We will only transmit your data to third parties within the scope of given statutory provisions or based on consent. In all other cases, information will not be transferred to third parties unless we are obliged to do so owing to mandatory legal regulations (disclosure to external bodies, including the supervisory authorities or law enforcement authorities).

Data recipients / categories of recipients

In our organisation, we ensure that only individuals who are required to process the relevant data to fulfil their contractual and legal obligations are authorised to handle personal data.

In many cases, service providers assist our specialist departments to fulfil their tasks. The necessary data protection contract has been concluded with all service providers.

Transfers of personal data to third countries 

A transfer of data to third countries (outside the European Union or the European Economic Area) shall only take place if required by law or if you have provided your consent for such a transfer.

We do not transfer your personal data to service providers or group companies outside the European Economic Area.

Period of data storage

We store your data for as long as such is required for the relevant processing purposes. Please note that numerous retention statutory periods require that data must be stored for a specific period of time. This relates in particular to retention obligations for commercial or fiscal purposes (e.g. commercial code, tax code, etc.). The data will be routinely deleted after use unless a further period of retention is required.

We may also retain data if you have given us your permission to do so, or in the event of any legal disputes and we use the evidence within the statutory limitation period, which may be up to 30 years; the standard limitation period is 3 years.

Secure transfer of data

We implement the appropriate technical and organisational security measures to ensure the optimal protection of the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The security levels are continuously reviewed in collaboration with security experts and adapted to new security standards.

The data exchange to and from our website is encrypted. We provide https as a transfer protocol for our website, and always use the current encryption protocols.

Obligation to provide data

A range of personal data is required to establish, implement and terminate the obligation and the fulfilment of the relevant contractual and legal obligations. The same applies to the use of our website and the various functions we provide.

We have summarised the relevant details in the above point. In some cases, legal regulations require data to be collected or made available. Please note that it will not be possible to process your request or execute the underlying contractual obligation without this information.

 Data categories, sources and origin of data

The data we process is defined by the relevant context: it depends on whether, for example, you place an order online, enter a request on our contact form or if you want to send us an application or submit a complaint.
Please note that we may also provide information at specific points for specific processing situations separately where appropriate, e.g. when uploading application documents or when making a contact request.

We collect and process the following data when you visit our website:

  • Name of the Internet service provider
  • Web browser and operating system used
  • Information on the website from which you visited us
  • The IP address by your allocated Internet service provider
  • Files accessed, volume of data transferred, downloads/file export
  • Information on websites accessed on our site, including date and time

For reasons of technical security (in particular to safeguard against attempts to attack of our web server), this data is stored in accordance with Article 6 (1) lit f GDPR. Anonymisation takes place no later than after seven days by abbreviating the IP address so that no reference is made to the user.

We collect and process the following data as part of a non-binding consulting request (Quick Checks):

  • Last name, first name (mandatory details),
  • Email address (mandatory detail),
  • Telephone number (if provided),
  • Company (if provided),
  • Headcount (if provided)
  • any information provided

We process the following data as part of the ordering process of a Whitepaper:

  • Last name, first name,
  • email address

Contact form / Contact via email (Article 6 (1) lit a, b GDPR)

A contact form is available on our website which can be used to contact us electronically. If you write to us using the contact form, we will process the data you submitted in the contact form to respond to your queries and requests.

In so doing, we respect the principle of data minimisation and data avoidance, such that you only have to provide the information we require to contact you, which is your last name, first name, email address and the message field itself. Your IP address will also be processed for technical reasons and for legal protection. All other data is voluntary, and additional fields are optional (e.g. to provide a more detailed response to your questions).
If you contact us by email, we will process the personal information provided in the email solely for the purpose of processing your request. If you do not contact us using the forms provided, no additional data will be collected.

Marketing purposes (Article 6 (1) lit f GDPR)

The curexus GmbH is keen to nurture the customer relationship with you and to send you information and offers about our product / services. We therefore process your data to send you the relevant information and offers via email. You may object to the use of your personal data for the purpose of direct marketing at any time; this also applies to profiling insofar as it is associated with direct marketing. If you object, we will cease processing your personal information for this purpose.
You can withdraw your consent at any time free of charge and informally without stating the reasons for such and should be addressed to 0049 911 999 87-0, sent via email to datenschutz@curexus.com or via surface mail to curexus GmbH, Nordostpark 3, 90411 Nürnberg.

Cookies (Article 6 (1) lit. f GDPR / Article. 6 Abs. 1 lit a GDPR in case of your consent)

Our website uses “cookies” at various locations, which serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and stored by your browser (locally on your hard disk).
Cookies enable us to analyse how users use our websites so we can design the website content in accordance with the visitor’s needs. Cookies also allow us to measure the effectiveness of a particular ad and, for example, to place it based on the user’s interests.
Most of the cookies we use are “session cookies”, which will be automatically deleted after your visit. Persistent cookies are automatically deleted from your computer when their validity period (generally six months) has expired or you delete them yourself prior to expiry.
Most web browsers automatically accept cookies. You can generally change your browser’s settings if you prefer not to send the information. You can still use the offers on our website without restrictions (exception: configurators).

We use cookies to make our offers more user-friendly, effective and secure. We also use cookies to analyse how users use our websites so we can design the website content in accordance with the visitor’s needs. Cookies also allow us to measure the effectiveness of a particular ad and, for example, to place it based on the user’s interests.
Cookies are stored on the user’s computer which then transmits them to us. As a user, you therefore exercise full control over the use of cookies. You can change the settings in your Internet browser to disable or restrict the sending of cookies. In addition, cookies that have already been saved on your computer can be deleted at any time via an Internet browser or other software programs. All this is possible in all the current Internet browsers.
Please note: If you deactivate the placing of cookies on your device, you may not be able to access all our website functions in certain circumstances.

Web tracking

Usage of Matomo

This website uses information collected by “Matomo”, an open-source tool that allows us to collect and store data for marketing and optimization purposes (please visit www.matomo.org for details). Matomo uses “cookies”, these are text files that are stored on your computer in order to help us analyze the usage of our homepage. The information cookies generate, including your IP-address, will remain on our own servers and will not be given to any third parties, unless we are legally obliged to do so. All information is collected anonymously and there will be no matching or adding of data on top of your IP-address. Please be advised that, whenever you address specific sites and services that require entry of data, we do not use encryption software, meaning that your entries might be read or falsified by others. You may object to data collection and storage for the future at any time.
If you do not agree with the storage and usage of your data, you can prevent the installation of cookies by adjusting your browser software. However, we would like to point out that in this case some website functions will not be able to be used to their full extent. In addition you are also able to deactivate the storage and usage by clicking on the link below. In this case an opt-out-cookie will be created in your browser that prevents Matomo user data from being saved. Please note that deleting your own cookies will result in the Matomo opt-out-cookie also being deleted. The opt-out has to be reactivated when revisiting out website.

Usage of Google Maps

On our website we use Google Maps (API) by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Maps is a web service for the display of interactive maps, in order to visually represent geographical information. The use of this service will display our location and provide access (arrival) information.
Already when you call up subpages into which the Google Maps map is integrated, information concerning your use of our website (e.g. your IP address) is transmitted to Google servers in the USA, where it is stored. This is regardless of whether Google provides a user account under which you are logged in, or even if no user account exists. If you are logged into Google, your data reconciled directly with your account. If you do not wish it to be reconciled with your profile at Google you must log out before activating the button. Google stores your data (even of users who are not logged in) as a user profile and evaluates it. This evaluation takes place in particular pursuant to Article 6 para. 1 lit. f GDPR on the basis of legitimate interests of Google in the insertion of personalized advertising, market research and/or appropriate design of its website. You have the right of objection to the creation of user profiles. The latter must be addressed to Google.
Google LLC, with headquarters in the USA, has been certified for the US-European Data Protection Convention “Privacy Shield” that ensures adherence to the level of data protection in the EU.
If you do not consent to the future transfer of your data to Google within the scope of use of Google Maps you also have the option of completely disabling the web service of Google Maps by switching off JavaScript in your browser. In this case, Google Maps cannot be used and no maps can be displayed on this website. Google’s Conditions of Use can be viewed at http://www.google.de/intl/de/policies/terms/regional.html, the additional Conditions of Use for Google Maps can be found at https://www.google.com/intl/de_US/help/terms_maps.html
Detailed information on data privacy in connection with the use of Google Maps can be found on the website of Google (“Google Privacy Policy”): http://www.google.de/intl/de/policies/privacy/

Online offers for children

Persons under the age of 16 may not submit personal data to us or give a declaration of consent without the authorisation of their legal guardian. We encourage parents and guardians to actively participate in the online activities and interests of their children.

Links to other providers

Our website also contains clearly identifiable links to the Internet sites of other companies. Although we provide links to websites of other providers, we have no influence on their content, and no guarantee or liability can therefore be assumed for such. The content of these pages is always the responsibility of the respective provider or operator of the pages.

The linked pages were checked at the time of linking for potential legal violations and identifiable infringements. No illegal content was identified at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete evidence of an infringement and, upon notification of a violation of rights, such links will be promptly removed.