General data protection information

 

Thank you for visiting www.firstclimate.com and for your interest in our information, product and service offerings relating to global climate action.

​

This privacy statement applies to the use of the web pages at www.firstclimate.com and to the use of the my.FirstClimate service.

​

This statement describes how and for what purpose your data is collected and used and what choices you have in connection with personal data.

​

Our privacy policy does not apply to other services and offers that you can access via links from our website, such as social networks. Please inform yourself directly on these sites about the data protection provisions that apply to them.

​

You can save and print this data privacy policy at any time.

​

1. Guarantors

The responsible party for the collection, processing, and use of your personal data, in accordance with Art. 4 Nr. 7 GDPR is:

First Climate AG  
Friedberger Str. 173
61118 Bad Vilbel
Telefon: + 49 (0) 6101 55658-0
Telefax: + 49 (0) 6101 55658-77
E-Mail: info(at)firstclimate.com

Register Court: District Court of Frankfurt am Main
Registration Number: HR B 80273
Tax ID Number (§ 27a UStG): DE 236577232

Authorized representative of the Executive Board: Olaf Bachert
Chairman of the Supervisory Board: Jochen Knoesel

Editorial content:
Party responsible according to § 55 para.2 RStV (Interstate Broadcasting Treaty)
Benjamin Seitz

You can reach our data protection officer at: 
Ms. Sabrina Obst
First Climate AG
Friedberger Str. 173
61118 Bad Vilbel
Telephone: +49 (0) 6101 55658-50
E-Mail: datenschutz@firstclimate.com

​

 

2. Data Security

First Climate places great value on the protection of your personal data. To ensure the confidentiality of your data, we therefore collect, use and store data exclusively on the basis of existing laws and in accordance with the data protection principles stated here. 

Our website uses the SSL (Secure Socket Layer) coding system. The personal data that you enter on our site is transmitted in encrypted form. Please note that data transfer over the internet (e.g. email communication) can have security vulnerabilities. 

To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, that we continually adapt to state-of-the-art technology. 

We do not guarantee that our offer is permanently available; disturbances, interruptions or failures cannot be ruled out.  

3. What data we use and why

 
We use personal data only to the extent necessary, for the operation and optimization of our website and to provide offered services.

When you visit our website, the following data may be gathered: 

3.1  General Access Data 
When you visit our site www.firstclimate.com, data regarding your usage and interaction with us is automatically transmitted, and the technical information of the used computer or mobile device is registered. This data includes for example: 

•    Name and URL of the retreived data
•    Date and time of retrieval
•    Volume of transmitted data
•    Report on successful retrieval (HTTP response code) 
•    Type and version of browser
•    Operating system 
•    Referer URL (i.e. the page visited before)
•    Websites accessed via our website by the user’s system
•    User’s internet service provider
•    IP address and the requesting provider

We use this log data, without assigning it to you personally or otherwise profiling you, for statistical evaluations regarding the operation, security and optimization of our online offer, but also to anonymously record the number of visitors to our website and the extent and type of use of our offers. Based on this information, we can analyze data traffic, search for and correct errors to improve our offer. 
This is also our legitimate interest in accordance with Art. 6 para. 1 p. 1 f) GDPR. 

3.2 Contact data (communication)
When you contact us (e.g. via a contact form or email) we save your details in order to process the request, as well as in the event of follow-up questions. 

This is also our legitimate interest in accordance with Art. 6 para. 1 p. 1 f) GDPR
Any further personal data is saved and used only with your consent or if otherwise permittable by law without special consent. 

3.3 Contact data (Delivery of News and Newsletter)
To register for the free First Climate Newsletter, the registration process requires the requested data. The registration for the newsletter is logged. After registration, you receive a message at the provided email address in which you are asked to confirm your registration (“Double Opt-in”). This is necessary to prevent third parties from registering with your email address. We save your subscription data for as long as it is necessary to deliver the Newsletter. You can revoke your consent to receive the newsletter at any time, thereby unsubscribing from the newsletter. We store the logged registration and recipient address for as long as an interest in proof of the originally given consent exists, as a rule within the statute of limitation period for civil claims, or a maximum of three years. 

The legal basis for sending a newsletter is your consent pursuant to Art. 6 para. 1 p. 1 a) in conjunction with Art. 7 GDPR in conjunction with the § 7 para. 2 no. 3 Act Against Unfair Competition (UWG). The legal basis for logging registration is our legitimate interest to prove that the delivery was made with your consent. 
Independent of the newsletter, we may send you selected news, invitations to potentially interesting events, etc. at irregular intervals for information purposes. 

You can withdraw your newsletter subscription and consent to the sending of the aforementioned information at any time. You will find an unsubscribe link for this purpose on our website, and in each news item and newsletter sent to you. 

3.4 Use of the my.FirstClimate Service 
If you choose to use the services at my.FirstClimate,  the following personal data will be collected and processed: 

•    Last name, first name, title
•    Email address
•    Date and time of access
•    Amount of data transferred
•    Message of successful retrieval (HTTP response code)
•    Browser type and version
•    Operating system
•    Referer URL (i.e. page visited before)
•    Websites called by system user via our website
•    User’s internet service provider 
•    IP adress and the requesting provider

The legal basis for the processing of your data is your consent pursuant to Art. 6 para. 1 p. 1 a). The legal basis for logging the registration is our legitimate interest in accordance with Art. 6 para. 1 p.1 f). 
You can revoke your consent at any time. To do so, send an e-mail to datenschutz@firstclimate.com


4. Disclosure of data to third parties

In principle, we only use your personal data within our company. 
If and to the extent that we involve third parties in the performance of contracts, they will only receive personal data to the extent that the transfer is necessary for the corresponding service. 
In the event that we outsource certain parts of data processions (“commissioned processing”), we contractually oblige commissioned processors to use personal data only in accordance with data protection law requirements and to ensure the protection of the rights of the person concerned. 

The hosting services we use are for the provision of the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for our website’s operation. In doing so, we, or our hosting provider, process the inventory data, contact data, content data, contract data, usage data, meta data and communication data of our customers, interested parties and visitors to this website on the basis of our legitimate interest to efficiently and securely provide our website pursuant to Art. 6 para. 1 p. 1 f) GDPR in conjunction with Art. 28 GDPR. 

4.1 Embedded content from other websites
Posts on this website may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves just as if the visitor had visited the other website. 
These websites may collect data about you, use cookies, embed additional third-party tracking services, and record your interaction with this embedded content, including your interaction with the embedded content if you have an account and are logged into this website.  


5. Storage period

Unless specifically stated, we store personal data for only as long as necessary to fulfill the intended purposes. 

In some cases, legislature stipulates the retention of personal data, such as in tax or commercial law. In these cases, data will be stored for these statutory purposes, but will not be otherwise processed and will be deleted after the statutory retention period has expired. 


6. Cookies

We use what are known as “session cookies” to optimize our online services. A session cookie is a small text file which is sent by a visited website’s servers and temporarily stored on your hard drive. This file as such contains what is known as a session ID, with which various requests of your browser can be assigned to the common session. This allows your computer to be recognized if you return to our website. With this, we can present our services in a more user-friendly, effective, and secure way. These cookies are deleted after you close your browser. 

To a lesser extent, we also use persistent cookies (also small text files stored on your terminal device), which remain on your terminal device and enable us to to recognize your browser on the next visit. These cookies are stored on your hard drive and delete themselves after a specified time. Their lifespan is one month. Our legitimate interest in the use of cookies pursuant to Art. 6 para. 1 p. 1 f) GDPR is to make our website more user-friendly, effective and  secure. 

The cookies store the following data and information: 
•    Login information
•    Language settings
•    Entered search terms
•    Information on the number of visits to our wbsite and the use of individual features of our website 

When the cookie is activated, it is assigned an identification number and an assignment of your personal data to this identification number is not made. Your name, your IP address or similar data that would allow the cookie to be assigned to you are not created. Based on the cookie technology, we only receive pseudonymized information, for example, about which pages of our website were visited.

You can set your browser so that you are informed in advance about the setting of cookies and can decide on a case-by-case basis whether you want to exclude the acceptance of cookies for certain cases or in general, or whether they are disabled entirely. This may limit the functionality of the website. 

​

We use Hotjar to better understand our user’s needs and to optimize the offer and experience on this website. Using Hotjar’s technology, we get a better understanding of our users’ experiences (e.g. how much time users spend and on which pages, which links they click, what they like and dislike, etc.) and this helps us to adjust our offer according to user feedback. Hotjar works with cookies and other technologies to collect data about our users’ behaviors and about their devices, in particular IP address of the device (collected and stored in anonymized form during your website use), screen size, device type (Unique Device Identifiers), information about the browser used, location (country only), language preferred to view our website. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually prohibited from selling the data collected on our behalf.

7. Google Analytics

This website uses the “Google Analytics” service offered by Google Inc. (1600 Ampitheatre Parkway Mountain View, CA 94043, USA) to analyze website usage by users. Google Ireland Limited is responsible for all Google services in the European region. The service uses text files that are saved on your terminal device, known as “cookies”. The information collected by these cookies is usually sent to a Google server in the USA and stored there. 

IP anonymization is used on this website. The IP address of the user is shortened within the member states of the EU and the European Economic area. This shortening eliminates the personal reference of your IP address. As part of the agreement on the order data agreement that website operators have concluded with Google Inc., the latter uses the collected information to create an evaluation of the website use and activity and provides services associated with internet use. 

You have the option to prevent cookies from being stored on your device by selecting the appropriate settings in your browser. It is not guaranteed that you can access all functions of this website without restrictions if your browser does not allow cookies. 

Furthermore, you can use a browser plugin to prevent the information collected by cookies (including your IP address) from being sent to and used by Google Inc. The following link will take you to the corresponding plugin. Plugin: https://tools.google.com/dlpage/gaoptout?hl=en
Here you can find further information about data use by Google Inc.: https://support.google.com/analytics/answer/6004245?hl=en

8. Google Tag Manager
 
This website uses the “Google Tag Manager” service offered by Google Inc. (1600 Ampitheatre Parkway Mountain View, CA 94043, USA). Google Ireland Limited is responsible for all Google services in the European region. Code snippets from various tracking tools can be used and incorporated with Google Tag Manager. 
The Google Tag Manager is an auxiliary service and processes personal data itself only for technically necessary purposes. 

Use of the Google Tag Manager requires your consent which we have obtained with our cookie popup. This consent is the legal basis for the processing of personal data according to Art. 6 para 1. p.1 a) GDPR. 
In addition to consent, there is a legitimate interest in analyzing the behavior of website visitors and thus improving the offer technically and economically. The legal basis for this is Art. 6. Para. 1 p. 1 f) GDPR. 

9. Your rights as a person affected by data processing. 

Als von der Datenverarbeitung betroffene Person stehen Ihnen gemäß der DSGVO und anderer gesetzlicher Bestimmungen verschiedene Rechte zu, die Sie uns gegenüber geltend machen können.
As someone affected by data processing, you are entitled to various rights in accordance with the GDPR and other legal provisions, which you can assert against us. 

If you would like to exercise one of these rights, all you need to do is send a message to the following email address: datenschutz@firstclimate.com
Or by (PC) fax (+49 6101 55658 7950)
Below you will find an overview of your rights. 

9.1 Right of access (Art. 15 GDPR)
You have the right to obtain confirmation from us at any time as to whether your personal data is being processed. If this is the case, you have the right to request free information from us about the personal data stored about you, together with a copy of this data. This includes information on the purposes for which the data was collected, where the data originated, if it was not collected directly from you, and if applicable, to which recipients the personal data has been, or will be, disclosed.
 
9.2 Right to Rectification (Art. 16 GDPR)
You have the right to demand from us without undue delay, the correction of any of your inaccurate personal data. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data including by means of a supplementary declaration.

9.3 Right to Erasure, „right to be forgotten“ (Art. 17 GDPR) 
According to Article 17 (1) GDPR you have the right to demand that personal data concerning you be deleted without undue delay, and we are obligated to delete your personal data without undue delay for any of the following grounds: 

1.    The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
2.    You withdraw consent on which the processing is based according to point (a) of Article 6 (1) or point (a) of Article 9 (2), and where there is no legal ground for the processing;
3.    You object to the processing pursuant to Article 21 (1) and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21 (2);
4.    The personal data have been lawfully unprocessed;
5.    The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
6.    The personal data have been collected in relation to the offer of information society services referred to in Article 8 (1);
If we have made personal data public, we are obliged, pursuant to Art. 17 (1) GDPR to erase the personal data, taking into account available technology and implementation costs, and to take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of, those personal data. 

9.4 Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the following conditions is met: 
1.    The accuracy of the personal data is contested by you for a period enabling us to verify the accuracy of the personal data.
2.    The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead
3.    The personal data is no longer needed for the purpose of processing, but you require them for the establishment, exercise of defense of legal claims.
4.    You have objected to the processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of our company override yours.

9.5 Right to data portability (Art. 20 GDPR)
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us to which the data have been provided, where: 
1.    the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) or on a contract pursuant to point (b) of Article 6(1) and 
2.    the processing is carried out by automated means
In exercising your right to data portability pursuant to paragraph 1, you have the right to have the personal data transmitted directly from us to another controller, where technically feasible. 

9.6 Right to Object (Art. 21 GDPR)
You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data, which is based on point (e) or (f) of Article 6(1). 
We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims. 

If we process the personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data concerning you for the purpose of such marketing, this also applies to profiling insofar as it is associated with direct marketing.

9.7 Right of complaint to a supervisory authority
You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace, or the place of the alleged infringement, if you consider that the processing of your personal data is unlawful.


10. Changes to this data protection notice 

We reserve the right to change this data protection notice at any time to ensure that it complies with current legal requirements. 

​

​

​

​

​