Data protection information
As part of your use of this website, we will process your personal data as the data controller responsible for the processing of data and store it for the duration required to fulfil the defined purposes and statutory obligations. Below we inform you as to which data is concerned, how it is processed and what rights you are entitled to in this regard.
Personal data are, in accordance with art. 4 (1) General Data Protection Regulation (GDPR), all information which refers to an identified or identifiable natural person (hereinafter “Person Concerned or User”).
1. Name and contact information of the data controller
This data protection information applies to the data processing on the website www.cameolight.com by the data controller:
Adam Hall GmbH
represented by the managing directors David Kirby, Markus Jahnel, Alexander Pietschmann
(hereinafter “Adam Hall”)
Phone: +49 6081 9419-0
Email: [email protected]
Adam Hall has engaged an external data protection officer for all matters regarding data protection who can be contacted as follows:
Email: [email protected]
2. Processing of personal data and purposes of processing
a) Web hosting
To ensure that this website functions, we use the web hosting service of SysEleven GmbH, Ohlauer Str. 43 Aufgang C, 10999 Berlin, Germany (hereinafter “SysEleven”) as well as the service provider dasistweb GmbH, Bergfeldstraße 11, D-83607 Holzkirchen, Germany (hereinafter “dasistweb”). Dasistweb takes care of the applications used in cooperation with SysEleven.
The provision of a website requires the engagement of a web hosting service. The use of SysEleven complies with art. 6 (1) sentence 1 f) GDPR on the basis of our legitimate economic interest to make our offering available on this website.
In connection with the hosting, SysEleven and dasistweb process personal data on our behalf arising during the following actions by the User:- When visiting the website
- When subscribing to the newsletter
- When using the contact form
We have a concluded an order processing contract with SysEleven and dasistweb. Through this contract, the service providers ensure that they process the data in accordance with the GDPR and protect the rights of the Persons Concerned.
b) Visiting the website
You can view the website www.cameolight.com without having to disclose any information about your identity. The browser used on your device sends information automatically to our website’s server only (e.g. your computer’s operating system and the browser you are using, the name of your internet access provider, the name and URL of the file requested, the date and time of access, the website from which the access is carried out).
This also includes the IP address of your device making the request. This is saved temporarily in a log file and is generally deleted automatically after 30 days:
The IP address is processed for technical and administrative purposes in order to establish a stable connection, to ensure the security and functionality of our website and to be able to track any illegal attacks if necessary.
The legal basis for the processing IP addresses is art. 6 (1) sentence 1 f) GDPR. Our legitimate interest flows from the aforementioned interest in maintaining security and the need to ensure that our website functions smoothly.
We cannot deduce your identity directly based on the processing of the IP address and other information in the log file.
c) Using the contact form
We offer you the possibility of contacting us via a contact form available on the website. This requires that you specify the following information:- name
- email address
- the subject and
- your message
We need your data to determine who has submitted the request and to be able to respond to and process this request.
You can also provide the name of your company, industry and address voluntarily in order to improve the processing of any queries.
Data is processed in response to your request and is based on our legitimate interest in accordance with art. 6 (1) sentence 1 f) GDPR in connection with the response to a request submitted via the contact form. The personal data that we collect for the use of the contact form is deleted automatically after your request has been dealt with.
We use the customer relationship management system of Freshworks Inc., 1250 Bayhill Drive, Suite 315, San Bruno, CA 94066, USA (hereinafter “Freshworks”) based on our legitimate interest in accordance with art. 6 (1) f) GDPR for the purpose of processing your request submitted via the contact form.
The personal data that you submit is sent to Freshworks on our account and stored on its servers in the USA. Freshworks follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce.
For requests from customers in the USA and Canada, requests of Adam Hall North America Inc, 1 S. Corporate Dr., Riverdale, NJ 07457 are managed in connection with the task management application Smartsheet of Smartsheet Inc., Attn.: Legal Department, 10500 NE 8th Street, Suite 1300, Bellevue WA 98004 (hereinafter “Smartsheet”).
The personal data that you submit is sent to Smartsheet on the account of Adam Hall North America and stored on its servers in the USA. Smartsheet follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce.
d) Subscribing to our newsletter
If you have given your express consent in accordance with art. 6 (1) sentence 1 a) GDPR, we will use your email address to send you our newsletter regularly, which may be personalised, to inform you about offers, promotions, events and our brand. You must specify a valid email address to receive the newsletter.
You will then receive a subscription message by email which you must confirm to receive the newsletter (double opt-in). This serves as proof for us that the subscription was actually initiated by you.
We send the newsletter, in personalised form if applicable, via the provider Inxmail of Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany (hereinafter “Inxmail”).
With Inxmail, we are able to measure and analyse the behaviour of the recipients of our newsletter. This includes the opening, click, bounce, delivery, unsubscribe and conversion rates. This analysis is also carried out by web beacons. A web beacon is a graphic image the size of one pixel which is placed in the email. Web beacons collect information such as IP address, browser type/version, email client and the time of the request. Web beacons can also be used to track who opens the email and clicks on the links contained therein. However, it is not our aim, nor Inxmail’s aim, to observe individual users. User behaviour is analysed in order to identify reading habits and to target content accordingly, to measure the success of email campaigns and to improve our offering and the offering of Inxmail.
It is possible to unsubscribe at any time, e.g. via a link at the bottom of every newsletter. Alternatively, you can also inform us of your wish to unsubscribe by sending an email to the following address: [email protected]
We will delete your email address immediately after you withdraw your consent, provided there is no other justification for storage.
3. Sharing of personal data with third parties
If this is legally permissible and required under art. 6 (1) sentence 1 b) GDPR to manage contractual relations with you or is required in accordance with art. 6 (1) f) to protect our interests or the interests of third parties, your personal data will be shared with third parties. The shared data may be used by the third parties for the aforementioned purposes only.
Your personal data may also be shared where- you have given your express consent to this effect in accordance with art. 6 (1) sentence 1 a) GDPR, and
- disclosure is a legal obligation in accordance with art. 6 (1) sentence 1 c) GDPR.
The sharing of personal data with a third country or an international organisation is excluded.
Information is stored in the cookie which is generated in connection with the specific device used. However, this does not mean that we then receive direct knowledge of your identity.
In addition, we also use temporary cookies to optimise the user experience, which are saved on your device for a certain fixed period of time. If you visit our website again to use our services, you will be recognised automatically as a repeat visitor and the information you submitted and the settings you selected will be remembered so that you do not need to enter these again.
The data processed by cookies is required for the aforementioned purposes in order to protect our legitimate interests and the legitimate interests of third parties in accordance with art. 6 (1) sentence 1 f) GDPR.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are saved on your computer or so that a message always appears before a new cookie is installed. However, completely disabling cookies may mean that you are unable to use all the features of our website.
We use Pingdom, a web analysis service of SolarWinds Worldwide, LLC 7171 Southwest Parkway, Bldg 400, Austin, Texas 78735 (hereinafter: “Pingdom”) on our website on the basis of our legitimate economic interest in accordance with art. 6 (1) sentence 1 f) GDPR. With Pingdom, we are able to monitor the performance of our website and to ensure that it remains available and easy to use.
This involves the use of measurements of the duration of use, page speed and user information in order to ensure that our web pages are available and that the access and loading times in the different regions of the world, including in connection with different browser versions, enable our users to have a satisfactory user experience. When a page is requested, data such as the following is processed:- Browser type/version
- The operating system used
- Attributes that generate information regarding the context in which the page is viewed and how the page loads and the asynchronous reload of page components behave
- The host name of the accessing computer (IP address)
- The time of the server request.
Pingdom follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce. In the event of complaints against Pingdom which concern this agreement, you can take part in a dispute resolution procedure in this case.
You can find more information about data protection in connection with Pingdom here.
6. Web analysis: Google Analytics
We use the tool Google Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”) on our website. In this regard, pseudonymised user profiles are created and cookies (see section 4. Cookies) used. The information generated by the cookie about your use of this website such as- browser type/version,
- the operating system used,
- referrer URL (of the previous site visited),
- host name of the accessing computer (IP address),
- the time of the server request,
is sent to a Google server in the USA and saved there. Google follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce.
The information is used to analyse the use of the website, to compile reports about website activities and to provide further services associated with the use of the website and the internet for the purposes of market research and to tailor this website to meet its users’ needs.
This information may also be shared with third parties if this is legally required or if third parties process this data on our behalf. Under no circumstances is your IP address merged with other data from Google. IP addresses are anonymised so that they cannot be attributed to any individual (IP masking).
You can prevent the installation of cookies by adjusting your browser’s settings accordingly. However, please note that in this case you may not be able to use all the features of this website.
You can also prevent the data generated by the cookie regarding your use of the website (including your IP address) from being collected, as well as the processing of this data by Google, by downloading and installing a browser add-on.
Alternatively to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on this link. An opt-out cookie will be installed that prevents the future collection of your data whenever you visit this website. The opt-out cookie applies in this browser only and for our website only and is installed in your device. If you delete the cookies in this browser, you must reset the opt-out cookie.
You can find more information about data protection in connection with Google Analytics at Google Analytics Help.
The tracking actions of Google Analytics are carried out on the basis of art. 6 (1) sentence 1 f) GDPR. In this way, we want to ensure that our website is designed to meet its users’ needs and is constantly improved. We also use Google Analytics to generate statistics about the use of our website. In addition, we use the data to optimise the display of advertising content. These interests are to be considered legitimate within the meaning of the aforementioned provision.
7. Google Tag Manager
We use the tool Google Tag Manager of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”) on our website. With Google Tag Manager we manage the tools about which we inform you in this data protection statement. You can therefore find details regarding these tools from the information on the specific tool.
The Tool Tag Manager itself (which implements the tags) is a cookieless domain. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been made at the domain or cookie level, it will remain in effect for all tracking tags implemented with Google Tag Manager.
You can find more information about Google Tag Manager in the user guidelines for this product.
8. YouTube player
We use components (videos) of the company YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA (hereinafter: “YouTube”), a company of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”), on our website on the basis of consent in accordance with art. 6 (1) sentence 1 a) GDPR.
In this regard, we use the “extended data protection mode” option provided by YouTube.
If you request a page which contains an embedded video, a connection will be established with YouTube’s servers, thereby enabling the content to be displayed on the website by notifying your browser.
According to information from YouTube, in “extended data protection mode” your data - especially which of our web pages you have visited and device-specific information, including the IP address - is only sent to the YouTube server in the USA if you watch the video. By clicking on the video, you consent to this transmission of data.
If you are simultaneously logged into YouTube, this information will be attributed to your account by YouTube. You can prevent this by logging out of your user account before you visit our website.
Google follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce.
9. Google Maps
We use the offering of Google Maps of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”) on our website to display an interactive map based on your consent in accordance with art. 6 (1) a) GDPR. Through the implementation, Google collects device-related information, log data including the IP address, and location-related information.
The personal data collected by Google is sent to a Google server in the USA and saved there. Google follows the data protection provisions of the US Privacy Shield and is registered with the US Privacy Shield programme of the US Department of Commerce.
Google uses the personal data to analyse the use of the website, to compile reports about website activities and to provide further services associated with the use of the website and the internet for the purposes of market research and to tailor this website to meet its users’ needs. This information may also be shared by Google with third parties if this is legally required or if third parties are engaged to process this data.
10. Rights of those concerned
You have the right:- in accordance with art. 7 (3) GDPR to withdraw, at any time, the consent you have previously given us. This means that we will no longer be able to process data in the future on the basis of this consent;
- in accordance with art. 15 GDPR to request information about your personal data that we process. In particular, you can request information regarding the purpose of processing, the category of the personal data, the categories of recipients to whom your data has been or will be disclosed, the intended duration of storage, the existence of a right to correction, deletion, restriction of processing or to object, the existence of a right to appeal, the origin of your data if this was not collected by us, and the existence of any automated decision-making process, including profiling and, if applicable, meaningful information about the details of any such process.
- in accordance with art. 16 GDPR to request that your personal data stored by us be corrected, if it contains an inaccuracy, or completed immediately;
- in accordance with art. 17 GDPR to request the deletion of our personal data stored by us, provided the processing is not required to exercise the right to freedom of speech and information, to meet a legal obligation, for reasons in the public interest or to assert, exercise or protect legal rights;
- in accordance with art. 18 GDPR to request the restricted processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, you refuse deletion even though we no longer need the data but you need the data to assert, exercise or protect legal rights or you have filed an objection against processing in accordance with art. 21 GDPR;
- in accordance with art. 20 GDPR to request to receive your personal data, which you submitted to us, in a structured, practicable and machine-readable format or that it be sent to a different data controller, and
- in accordance with art. 77 GDPR to file a complaint with a supervisory authority. Generally, you can contact the supervisory authority of your usual place of residence or place of work or of the place of our company’s registered office.
11. Information about your right to object under art. 21 GDPR
You have the right, for reasons arising from your special situation, to file an objection at any time against the processing of personal data concerning you which is based on art. 6 (1) e) GDPR (data processing in the public interest) and art. 6 (1) f) GDPR (data processing on the basis of a weighing of interests); this also applies to any profiling based on this provision in art. 4 (4) GDPR.
If you file an objection, we will no longer process your personal data unless we are able to prove that there are compelling reasons, worthy of protection, for the processing which outweigh your interests, rights and freedoms, or the processing is for the purpose of asserting, exercising or protecting legal rights.
If your objection is against the processing of data which is for the purpose of direct advertising, we will stop the data processing immediately. In this case, it is not necessary to specify a special situation. This also applies to profiling if it is connected with direct advertising.
If you would like to exercise your right to object, simply send an email to [email protected]
12. Data security
All the personal data that you submit is transmitted in encrypted form using the generally customary and secure standard TLS (Transport Layer Security). TLS is a secure and proven standard which is also used in online banking, for example. You can recognise a secure TLS connection by the s at the end of the http (i.e. https://..) in the address bar of your browser or by the lock symbol at the bottom of your browser.
We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorised access by third parties. Our security measures are continuously improved to keep up with the latest technological developments.
13. Latest version and changes to this data protection statement
This data protection statement is currently valid as at June 2018.
It may be necessary to amend this data protection statement due to the further development of our website and offers or because of changes in legal and administrative rules. You can view and print out the latest version of the data protection statement on the website at https://www.adamhall.com/private-policy.