Service & Payment

Privacy Policy

To the privacy policy Switzerland

Privacy policy according to the GDPR of ParkRaum-Management PRM GmbH

1 Name and address of the person responsible

Your contact within the meaning of the European General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is

ParkRaum-Management PRM GmbH
Wetterkreuz 15
91058 Erlangen
Phone: +49 9131 82603-10
Email: datenschutz@prm-parking.com
(hereinafter referred to as "we" or "our")

2 Name and address of the data protection officer

The protection of your personal data is very important to us. In order to express this importance, we have commissioned a consultancy firm specializing in data protection and data security to take on these central issues. We are advised by:

actago GmbH
Weidenstraße 66
94405 Landau a.d.Isar
Phone: +49 (0)9951 99990-20
Email: datenschutz@actago.de
Website: www.actago.de

3 General information on data processing

3.1 Scope of the processing of personal data

We only process your personal data to the extent necessary to provide our services. Your personal data is regularly processed only on the basis of your consent. An exception applies in cases where prior consent cannot be obtained for factual reasons or where the processing of your personal data is permitted by law.

3.2 Legal basis for the processing of personal data

Insofar as we obtain your consent for the processing of personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis.

When processing personal data that is required to fulfill a contract between you and us, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfill a legal obligation to which we are subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of you or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

If processing is necessary for the purposes of the legitimate interests pursued by us or by a third party and your interests, fundamental rights and freedoms do not override the former interest, Art. 6(1)(f) GDPR serves as the legal basis for processing.

3.3 Data erasure and storage duration

Your personal data will be deleted or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which we are subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

4 Provision of the website and creation of log files

4.1 Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected:

  • Information about the browser type and version used
  • The user's operating system
  • The IP address of the user
  • Date and time of access
  • Amount of data transferred in each case
  • Referrer URL

The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

4.2 Legal basis for data processing

The legal basis for the processing of your personal data in the context of the provision of the website and the creation of log files is Art. 6 para. 1 lit. f GDPR.

4.3 Purpose of data processing

The temporary storage of your personal data by us is necessary to enable delivery of the website to your computer. For this purpose, your personal data must be stored for the duration of the session.

Your personal data is stored in log files in order to ensure the functionality of the website. We also use your personal data to optimize the website and to ensure the security of our information technology systems. Your personal data is not analyzed for marketing purposes in this context.

These purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

4.4 Duration of storage

Your personal data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of your personal data for the provision of the website, this is the case as soon as the respective session has ended.

If your personal data is stored in log files, it will be deleted after seven days at the latest. Storage beyond this period is possible. In this case, your personal data will be deleted or anonymized so that it is no longer possible to identify the accessing client

4.5 Objection and removal options

The collection of your personal data for the provision of the website and the storage of your personal data in log files is absolutely necessary for the operation of the website. Consequently, you have no option to object.

5 Use of cookies

We use cookies to ensure the correct technical and functional provision of this information service. Cookies are small text files that are stored on the device you are using.

The legal basis for the storage of information and the processing of personal data by means of technically necessary cookies is § 25 para. 2 TTDSG and Art. 6 para. 1 lit. f GDPR

Technically necessary cookies are only valid for the current session and are automatically deleted as soon as you close your browser.

The use of functional cookies is voluntary. If these cookies are blocked, the provision of certain functions may not be fully possible.

The legal basis for the use of technically unnecessary cookies is the user's consent in accordance with Section 25 (1) TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR

When you access this website, we store cookies (small files) on your device. These have a validity of:

            Name:                                                                       

  • DoubleClick Ad
  • Expert Systems AG, Proven Expert
  • Google Analytics
  • Google Tag Services
  • Leadinfo B.V.
  • LinkedIn Insight Tag
  • Google Fonts
  • Google Maps
  • Google Tag Manager
  • HubSpot
  • LinkedIn plugin
  • Usercentrics Consent Management Platform
  • com

6 Contact form and contact by e-mail

6.1 Description and scope of data processing

There is a contact form on our website which can be used to contact us electronically. If you use this option, the data entered in the input mask will be transmitted to us and stored. These data are

  • First name*
  • Last name*
  • phone number
  • e-mail*
  • File number
  • License plate number*
  • Your message*
  • Request for payment*
  • Image for legal parking

*Plant field

We also offer a contact form for consultation. The following data is transmitted to us:

  • Name*
  • phone number
  • e-mail*

*Mandatory field

Your consent is obtained for the processing of the data as part of the sending process and reference is made to this privacy policy.

Alternatively, you can contact us via the e-mail address provided. In this case, your personal data transmitted with the e-mail will be stored. No data will be passed on to third parties in this context. The data will be used exclusively for processing the conversation.

6.2 Legal basis

The legal basis for the processing of your personal data that is transmitted when you contact us via the contact form or by email is Art. 6 para. 1 lit. f GDPR. If the contact via the contact form or by e-mail is aimed at concluding a contract, Art. 6 para. 1 lit. b GDPR is an additional legal basis for the processing.

6.3 Purpose of data processing

The processing of your personal data when you contact us via the contact form or by e-mail is solely for the purpose of processing the contact.

6.4 Duration of storage

Your personal data will be deleted as soon as it is no longer required for the purpose for which it was collected.

For personal data from the input screen of the contact form and data sent by email, this is the case when the conversation has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

6.5 Objection and removal options

You have the option at any time to object to the processing of your personal data in the context of contacting us via the contact form or by e-mail at any time for the future. In such a case, the conversation between you and us cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.

7 Web analysis through Google Analytics, Google AdWords

7.1 Scope of the processing of personal data

This website uses Google Analytics, the web analysis service of Google Inc. (hereinafter "Google"), 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

We use Google Analytics to analyze the surfing behavior of our users. Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site.

The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Since we have activated IP anonymization on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. By using the code "anonymizeIp", we enable the anonymized collection of IP addresses (so-called IP masking). The software runs exclusively on the servers of our website. Users' personal data is only stored there. The data is not passed on to third parties.

The software is set so that the IP addresses are not saved in full, but two bytes of the IP address are masked (e.g.: 192.168.xxx.xxx). In this way, it is no longer possible to assign the shortened IP address to the calling computer.

On behalf of the operator of this website, Google Analytics will use the information to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator. We would like to learn from these statistics how we can offer you an even better user experience, but we will not identify you ourselves.

The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the available browser plug-in.

You can find more information under Google Terms of Use and Google Privacy Policy.

7.2 Legal basis for the processing of personal data

The legal basis for the processing of your personal data is Art. 6 para. 1 lit. a GDPR.

7.3 Purpose of data processing

The processing of your personal data enables us to analyze your surfing behavior. By analyzing the data obtained, we are able to compile information about the use of the individual components of our website. This helps us to constantly improve our website and its user-friendliness. By anonymizing the IP address, your interest in the protection of personal data is adequately taken into account.

7.4 Duration of storage

Your personal data will be deleted as soon as it is no longer required for our recording purposes.

7.5 Objection and removal options

Cookies are stored on your computer and transmitted from it to our website. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

Users of this website who do not want their data to be collected by Google Analytics can install the browser add-on to deactivate Google Analytics. This add-on instructs the Google Analytics JavaScript (ga.js, analytics.js and dc.js) running on websites not to allow information to be sent to Google Analytics.

If you wish to deactivate Google Analytics, go to this page and install the add-on to deactivate Google Analytics for your browser. Detailed information on installing and uninstalling the add-on can be found in the relevant help resources for your browser.
Browser and operating system updates may result in the deactivation add-on no longer working as intended. You can find more information about managing add-ons for Chrome here:https://support.google.com/chrome_webstore/answer/2664769?hl=de. If you do not use Chrome, check directly with the manufacturer of your browser whether add-ons work properly in the browser version you are using.
The latest versions of Internet Explorer occasionally load the add-on to deactivate Google Analytics after data has been sent to Google Analytics. Therefore, if you are using Internet Explorer, the add-on will install cookies on your computer. These cookies ensure that any data collected is immediately deleted from the server that collected the data. Make sure that third-party cookies are not disabled for Internet Explorer. If you delete your cookies, these cookies will be reset within a short time by the add-on to ensure that your Google Analytics browser add-on continues to work without restriction.
The browser add-on for deactivating Google Analytics does not prevent data from being sent to the website or to other web analysis services.
You can find more information on terms of use and data protection at
https://marketingplatform.google.com/about/analytics/terms/de/ or at
https://policies.google.com/?hl=de.
IP anonymization is activated on this website.

8 Google Maps

This site uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the places we indicate on the website.

Google Maps is only used on the basis of consent in accordance with
Art. 6 para. 1 lit. a GDPR

You can find more information on the handling of user data in Google's privacy policy: https://www.google.de/intl/de/policies/privacy/

9 Google Web Fonts

This website may use Google Web Fonts for the uniform display of fonts. When using these fonts, your browser downloads the required fonts from our website system. These are then temporarily stored in the browser cache in order to display the fonts correctly. Your browser does not establish a connection to Google's servers. This ensures that Google does not gain any knowledge of your visit or your IP address.

10 Google Tag Manager

On our website, we use the Google Tag Manager of Google LLC. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google") on our website. If you have your habitual residence in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller responsible for your data. Google Ireland Limited is therefore the company affiliated with Google that is responsible for processing your data and complying with the applicable data protection laws.

This application is used to manage JavaScript tags and HTML tags that are used to implement tracking and analysis tools in particular. Data processing serves the purpose of designing and optimizing our website in line with requirements.

The Google Tag Manager itself neither stores cookies nor does it process personal data. However, it enables the triggering of other tags that can collect and process personal data.

Further information on terms of use and data protection can be found here(https://www.google.com/intl/de/tagmanager/use-policy.html).

11 Leadinfo

We use the lead generation service of Leadinfo B.V., Rotterdam, Netherlands. This recognizes visits from companies to our website based on IP addresses and shows us publicly available information, such as company names or addresses. In addition, Leadinfo sets two first-party cookies to evaluate user behavior on our website and processes domains from form entries (e.g. "leadinfo.com") in order to correlate IP addresses with companies and improve the services. Further information can be found atwww.leadinfo.com.

On this page:www.leadinfo.com/en/opt-outhabenyou will find an opt-out option.
If you opt out, your data will no longer be collected by Leadinfo.

12 Provenexpert

Our website uses plugins from the provenexpert.com website operated by Expert Systems AG. The operator of the site is Expert Systems AG, Quedlinburger Straße 1, 10589 Berlin.

When you visit one of our pages equipped with a ProvenExpert plugin, a connection is established to the servers of Expert Systems AG. The ProvenExpert server is informed which of our pages you have visited.

The use of ProvenExpert is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of
Art. 6 para. 1 lit. f GDPR.

Further information on the handling of user data can be found in the privacy policy of ProvenExpert AG at:
https://www.provenexpert.com/de-de/datenschutzbestimmungen/.

13 Onepage.io

We use the Onepage.io service from Onepage GmbH, based in Neue Rothofstr. 13 -19, 60313 Frankfurt am Main. This is a service for creating landing pages and lead generation, which we use to increase sales.

Your data will be transferred to the connected CRM system of Onepage.io to enable us to contact you. Onepage.io hosts the data exclusively in Germany.

In addition, further data is collected when the page is accessed, such as browser and device information, date and time of access, referrer URL and device information and your IP address. We use this log data without allocation to your person or other profiling for statistical evaluations for the purpose of operation, security and optimization of our website, but also for anonymous recording of the number of visitors to our website (traffic) and the extent and type of use of our website.

The legal basis for data processing for advertising purposes is your consent in accordance with
Art. 6 para. 1 lit. a GDPR. This consent can be revoked at any time with effect for the future.

The collection of log data for optimization purposes is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.

The specific storage period of the processed data cannot be influenced by us, but is determined by onepage.io. You can find more information on data protection at onepage.io here:
https://onepage.io/de/datenschutzerklarung

14 Presence on Facebook

We offer a Facebook page to expand our website. This is a service provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

We would like to point out that you use this Facebook page and its functions at your own risk. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating).

When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. This information is used to provide us, as the operator of the Facebook pages, with statistical information about the use of the Facebook page. Facebook provides more information on this under the following link: https://de-de.facebook.com/help/pages/insights.

The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. What information Facebook receives and how it is used is described by Facebook in general terms in its data usage guidelines. There you will also find information on how to contact Facebook and the settings options for advertisements. The data usage guidelines are available at the following link:

https://de-de.facebook.com/about/privacy

You can find Facebook's complete data policy here:

https://de-de.facebook.com/help/568137493302217

How Facebook uses the data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties is not conclusively and clearly stated by Facebook and is not known to us.

When you access a Facebook page, the IP address assigned to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses) and deleted after 90 days. Facebook also stores information about the end devices of its users (e.g. as part of the "login notification" function); Facebook may thus be able to assign IP addresses to individual users.

If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is stored on your device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Facebook buttons integrated into websites enable Facebook to record your visits to these websites and assign them to your Facebook profile. This data can be used to tailor content or advertising to you.

If you want to avoid this, you should log out of Facebook or deactivate the "stay logged in" function, delete the cookies on your device and close and restart your browser. This will delete Facebook information that can be used to identify you directly. This allows you to use our Facebook page without revealing your Facebook ID. If you access interactive functions on the page (like, comment, share, message, etc.), a Facebook login screen will appear. After logging in, you will once again be recognizable to Facebook as a specific user.

You can find information on how to manage or delete information about you on the following Facebook support pages: https://de-de.facebook.com/about/privacy#

As the provider of the information service, we also collect and process the following data from your use of our service: publicly viewable data from the user profile of the data subject. This includes, for example, the user name, the profile picture and the content of comments written on our posts.

Further information on Facebook and other social networks and how you can protect your data can also be found at www.youngdata.de

15 HubSpot

We use the HubSpot service for various purposes on this website. HubSpot is a software company from the USA with headquarters at 25 First Street, Cambridge, MA 02141 USA.

HubSpot is an integrated software solution that we use to cover various aspects of our online marketing. These include, among others:

  • E-mail marketing
  • Social Media Publishing & Reporting
  • Reporting
  • Contact management (e.g. user segmentation & CRM)
  • Landing pages
  • Contact forms

Our registration service allows visitors to our website to learn more about our company, download content and provide their contact information and other demographic information. Access from HubSpot is possible under strict conditions. The data may be used by us to contact visitors to our website and to determine which of our company's services are of interest to them. All information we collect is subject to this privacy policy. We use all information collected exclusively to optimize our marketing measures and to contact interested visitors to our website.

HubSpot tracks visitors with the help of browser cookies. Each time visitors land on your website, the HubSpot software checks whether a tracking cookie is present. If no cookie is present, a cookie is assigned to the user. This cookie logs all pages that the person continues to visit.

As part of the optimization of our marketing measures, the following data may be collected and processed via HubSpot:

  • Geographical position
  • Browser type
  • Navigation information
  • Reference URL
  • Performance data
  • Information on how often the application is used
  • Mobile apps data
  • Login information for the HubSpot subscription service
  • Files that are displayed on site
  • Domain names
  • Pages viewed
  • Aggregated use
  • Version of the operating system
  • Internet service provider
  • IP address
  • Device identification
  • Duration of the visit
  • Where the application was downloaded from
  • Operating system
  • Events that occur within the application
  • Access times
  • Clickstream data
  • Device model and version

The legal basis for processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR. If you do not want HubSpot to collect and process the aforementioned data, you can refuse your consent or withdraw it at any time with effect for the future.

The personal data is stored for as long as it is required to fulfill the purpose of processing. The data is deleted as soon as it is no longer required to achieve the purpose. As part of processing via HubSpot, data may be transferred to the USA.

The new data protection framework ("EU-U.S. Data Privacy Framework") promotes secure data traffic between the EU and the USA and thus eliminates the data protection concerns that have existed since the Schrems II ruling of the European Court of Justice. However, this only applies if the companies or entities to which personal data is transferred are certified in accordance with the new agreement. Through certification, US companies undertake to comply with certain data protection obligations that are based on the obligations under the European GDPR. HubSpot is a certified company under the new agreement. You can view this here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000TN8pAAG&status=Active

In addition, the security of the transfer is also ensured by so-called standard contractual clauses, which guarantee that the processing of personal data is subject to a level of security that corresponds to that of the GDPR. If the standard contractual clauses are not sufficient to establish an adequate level of security, your consent may serve as the legal basis for the transfer to third countries in accordance with Art. 49 para. 1 lit. a GDPR.

You can find more information about HubSpot at: https://legal.hubspot.com/de/privacy-policy

16 LinkedIn Insight Tag

We use the LinkedIn Insight tag on the website when registering for webinars.
The provider of this service is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

With the help of the LinkedIn Insight Tag, we receive information about the users of the website.
If a user is registered with LinkedIn, we can, among other things, analyze the key professional data
of our website visitors and thus better align our site to the respective target groups.

We can also use LinkedIn Insight Tags to measure whether visitors to our website make a purchase or take another action (conversion measurement). LinkedIn Insight Tag also offers a retargeting function that allows us to display targeted advertising to visitors to our website outside the website, whereby, according to LinkedIn, no identification of the advertising addressee takes place.

LinkedIn itself also collects so-called. The IP addresses are pseudonymized.

The direct identifiers of LinkedIn members are deleted by LinkedIn after seven days. The remaining pseudonymized data will then be deleted within 180 days.

The legal basis for the processing of personal data is based on consent pursuant to Art. 6 para. 1 lit. a GDPR

The data collected by LinkedIn cannot be assigned by us to any specific individual. LinkedIn stores the personal data collected from website visitors on its servers in the USA and uses it as part of its own advertising measures. Further information on how LinkedIn handles personal data can be found at

https://www.linkedin.com/legal/privacy-policy#choices-oblig

17 New Relic

We use the New Relic plugin on our website. The service is operated by New Relic Inc. (188 Spear Street, Suite 1200 San Francisco, CA 94105, USA) The tool enables us to record statistical evaluations of the speed of the website, to determine whether the website can be called up and how quickly the respective page is displayed when it is called up.

By integrating the plugin, New Relic receives the information that a user has accessed the corresponding page of the offer. If the user is logged in to New Relic, New Relic can assign the visit to their New Relic account. However, if a user is not a member of New Relic, New Relic stores their IP address.

The use of New Relic is based on consent pursuant to Art. 6 para. 1 lit. a GDPR.

If a user is a member of New Relic and does not want New Relic to collect data about him/her via this offer and link it to his/her membership data stored with New Relic, he/she must log out of New Relic before visiting the website.

Further information on how New Relic handles personal data can be found at: https://newrelic.com/termsandconditions/privacy

18 Direct marketing

18.1 Description and scope of data processing

Our company processes personal data such as address and name in order to send you advertising by post and thereby increase sales of goods or services.

18.2 Legal basis for data processing

The legal basis for the processing of your personal data in the context of direct marketing by post is Art. 6 para. 1 lit. f GDPR.

18.3 Purpose of data processing

The purpose of processing your personal data in the context of direct marketing by post is to promote the sale of goods or services. This purpose constitutes our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

18.4 Duration of storage

Your personal data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected; this is the case in particular upon receipt of the objection.

18.5 Objection and removal options

You can object to the processing of your personal data in the context of direct marketing by post at any time for the future.

19 Legal defense and enforcement

19.1 Description and scope of data processing

Our company aims to protect itself from unjustified claims through legal defense. We also enforce claims and rights to which we are entitled.
For this purpose, it is necessary to process personal data.
These consist of the legally relevant data of the data subjects.

19.2 Purpose of data processing

The purpose of processing your personal data in the context of legal defense and enforcement is the defense against unjustified claims and the legal enforcement of claims and rights. This purpose constitutes our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

19.3 Duration of storage

Your personal data will be deleted as soon as it is no longer required for the purpose for which it was collected.

19.4 Objection and removal options

The processing of your personal data in the context of legal defense and law enforcement is absolutely necessary for legal defense and law enforcement. Consequently, there is no possibility for you to object.

20 Categories of recipients

Within our company, those offices and departments receive personal data that need it to fulfill the aforementioned purposes. In addition, we sometimes use different service providers and transfer your personal data to other trustworthy recipients. These can be, for example

- Banks
- Credit agencies
- Scan service
- Print shops
- Lettershops
- IT service providers
- Lawyers and courts

21 Video surveillance

Due to our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to exercise our domiciliary rights, to collect evidence, to prosecute fraud and other offenses, our parking facilities are partially video-monitored. Video surveillance is also carried out to fulfill our contractual obligations towards you (Art. 6 para. 1 lit. b GDPR), as it may be necessary to contact our customer service and to rectify faults. If a parking facility is under video surveillance, this will be clearly indicated at all entrances.

The recorded data will be deleted no later than 7 days after recording, unless there is a specific reason for longer recording, i.e. in particular if the recordings are required to investigate specific criminal offenses. In these cases, we collect further contact data from the Federal Motor Transport Authority or the central call center of car insurers on the basis of our legitimate interest. If it is necessary to preserve evidence, the recorded data is passed on to third parties (lawyers, police, court).

22 License plate recognition

On the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to exercise our domiciliary rights, to prevent fraud and to enforce our contractual and parking conditions, as well as to fulfill our contractual obligations towards you (Art. 6 para. 1 lit. b GDPR), vehicle license plates are recorded at each of our parking facilities. The recording can be carried out in a targeted manner using portable devices or automated recording systems. If vehicle license plates are automatically recorded in a parking facility, this is clearly indicated at all entrances. Automatically recorded data will be deleted immediately after leaving the parking facility, unless there is a specific reason for longer storage, i.e. in particular if the records are required to investigate specific criminal offenses or to enforce our contractual rights and obligations. In these cases, we collect further data from the Federal Motor Transport Authority or the central call center of car insurers on the basis of our legitimate interest.

23 Processing of personal data for the provision of contractual services

We collect and process inventory data (e.g. vehicle license plates, names and addresses as well as contact data of users) and contract data (e.g. services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. 6 para. 1 lit b. GDPR. We only collect data that is necessary for the conclusion or performance of the contract and use it exclusively for these purposes. We also collect data required for the assertion of contractual claims or in relation to the settlement of claims within the scope of a contractual relationship from third parties, e.g. local district authorities.

If necessary, we will transfer your personal data to CRIF GmbH, Leopoldstraße 244, 80807 Munich, Germany, to determine your current postal address. The legal basis for this transfer is Art. 6 para. 1 lit. b and f of the GDPR. Further information on the activities of CRIF GmbH can be found in their information sheet or online at https://www.crif.de/datenschutz/eingesehen.

The deletion of the data takes place after the expiry of statutory warranty periods, the necessity of the retention of the data is regularly reviewed; in the case of statutory archiving obligations, the deletion takes place after their expiry, unless there is a specific reason for further retention. Information in any customer account remains until it is deleted.

24 Monitoring of parking areas under our management for compliance with the contractual usage rules, including enforcement of usage fees for parking violations (Art. 6 para. 1 lit. b GDPR)

  • Storage period: 10 years, beginning with the end of the year of the business transaction, 30 years for titles
  • Data recipients: Only service providers (processors)
  • Data types and source (in the case of data collection from third parties): Vehicle data and owner data from the local district authorities (surname, first name/company name, religious and artist name, address, type, manufacturer and type of vehicle, time of allocation or issue of the license plate to the owner, vehicle registration number)
  • Third country transfer (outside EU/EEA): No

25 Provision of contractual deliveries and services or the establishment of a pre-contractual relationship of trust in this context and the exercise and fulfillment of rights and obligations arising from these legal relationships (Art. 6 para. 1 lit. b GDPR).

  • Storage period: 10 years, starting at the end of the year of the last business transaction
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

26 Processing your inquiries via e.g. contact form and e-mail (Art. 6 para. 1 lit. f GDPR, in the context of contractual relationships Art. 6 para. 1 lit. b GDPR).

  • Storage period: 3 years, beginning with the end of the year of the request, unless further contact, transaction or breach of contract has occurred in the meantime or the information is part of a legal relationship with the data subject or their employer or longer storage is required in individual cases for reasons of legal enforcement
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

27 Sending information about our services that you have requested or are interested in, including personalization, tailored to your interests (Art. 6 I 1 f GDPR, with consent Art. 6 I 1 a GDPR).

  • Storage period: 3 years, starting from the end of the year of the request, unless further contact or transactions have been made in the meantime or the information is part of a legal relationship with the data subject or their employer
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

28 Sending newsletters (outside the membership relationship or a contractual relationship) (Art. 6 para. 1 lit. f GDPR, with consent Art. 6 para. 1 lit. a GDPR).

  • Storage period: Until revocation of consent to the newsletter or until objection (including implementation period of a maximum of 14 days)
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

29 Implementation of warranty and guarantee obligations (Art. 6 para. 1 lit. b GDPR).

  • Storage period: 10 years, beginning with the end of the year of the business transaction, unless further contact or transactions are made in the meantime or longer storage is required in individual cases for reasons of legal enforcement
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

30 Monitoring compliance with legal regulations and data security (Art. 6 para. 1 lit. f GDPR)

  • Storage period: 10 years, starting at the end of the year in which the processing operation took place
  • Data recipients: Only service providers (processors)
  • Data types and source (for data collection from third parties): None
  • Third country transfer (outside EU/EEA): No

31 Your rights

If we process your personal data, you have the following rights as a data subject:

  • You have the right to information about the personal data stored about you (Art. 15 GDPR).
  • If incorrect personal data is processed, you have the right to rectification (Art. 16 GDPR).
  • If the legal requirements are met, you can request the erasure or restriction of processing (Art. 17 and 18 GDPR).
  • If you have consented to the processing or a contract for data processing exists and the data processing is carried out using automated procedures, you may have a right to data portability (Art. 20 GDPR).
  • If you have consented to the processing and the processing is based on this consent, you can revoke your consent at any time for the future.
    This does not affect the lawfulness of the data processing carried out on the basis of the consent until revocation.

You have the right to object to the processing of your data at any time for reasons arising from your particular situation if the processing is carried out exclusively on the basis of Art. 6 para. 1 letter e or f GDPR (Art. 21 para. 1 sentence 1 GDPR).

32 Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right under Art. 77 GDPR to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
(Art. 77 GDPR)

The competent supervisory authority for us is

The Bavarian State Office for Data Protection Supervision (BayLDA):

www.lda.bayern.de, poststelle@lda.bayern.de

The supervisory authority with which you have lodged a complaint will inform you of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR. Our data protection officer will be happy to answer any questions you may have at any time.

33 Note on the privacy policy

Unless otherwise regulated, the use of all information we have about you is subject to this privacy policy.

The company reserves the right to continuously adapt this privacy policy to the necessary security measures in line with technological developments and will announce any changes here.

Status: August 2024

Downloads

Information sheet_GDPR_Parker.pdf