Privacy Policy

I. General information

As a subsidiary of one of the leading telecommunications companies, we take the protection and security of personal data very seriously. At this point we inform you about the data processing during your visit of our website next.telefonica.de. However, it does not apply to websites of other companies, even if they included a link to this or another website of our company. These instructions have no regulatory nature, they are for your information only.

Which personal data we use, e.g. within an existing contractual relationship with you, is detailed in our data protection leaflet (see below).

1. Contact details of the controller

Telefónica Germany NEXT GmbH, Georg-Brauchle-Ring 50, 80992 München, encrypted contact form: https://next.telefonica.de/kontakt

2. Contact details of the data protection officer

Telefónica Germany NEXT GmbH, Datenschutzbeauftragter, Georg-Brauchle-Ring 50, 80992 München, encrypted contact form: https://www.telefonica.de/datenschutz-kontakt

3. Your rights

In Accordance with theGDPR, data subjects (see below) generally have the following rights:

  • You have the right to obtain access to and information about your processed data (Art. 15GDPR).
  • You have the right to have inaccurate personal data rectified or to have incomplete data completed (Art. 16 GDPR).
  • Under certain legal conditions, you have the right of erasure of your personal data (Art. 17 GDPR).
  • Under certain legal conditions, you have the right to restrict processing (Art. 18 GDPR).
  • Under certain legal conditions, you have a right to receive or transfer your personal data (Art. 20 GDPR).
  • You have the right to complain to a supervisory authority (Art. 77 GDPR). For this purpose you can for example directly contact the data protection supervisory authority.
  • Withdrawal of consent: You have the right to withdraw your consent at any time with future effect. The lawfulness of processing based on consent before its withdrawal is not affected by this. When asking for your consent we will inform you about how you can explain your withdrawal. In any case you can contact our data protection officer to explain your withdrawal.
  • You have a right to object under certain legal conditions. We inform you about this at the end of this privacy policy.

To assert your rights, you can contact our data protection officer at any time using the contact details mentioned above.

4. Place of data processing

We generally process your personal data in Germany and in the European Union only. Service providers who process personal data on our behalf outside the European Union (so-called third countries) are only employed if there is an "adequacy decision" by the European Commission (Art. 45 GDPR) or "appropriate safeguards" (Art. 46 GDPR) or "binding corporate rules" (article 47 GDPR) exist within the recipient’s company. General information on the adequacy decisions can be found at: https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_de , for the appropriate safeguards are available at https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_de , as well as https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/eu-us-privacy-shield_de and about the binding corporate rules at https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/binding-corporate-rules_de For more information you can contact our data protection officer. Besides that your personal data will be processed in third countries insofar as it is necessary for the fulfillment of the contract, if you have given your consent or if there is a legal obligation.

Employees of our company and service providers who assist us with data processing in the course of order processing (service providers for IT operation, website operation and contact processing) have access to your personal data to the extent necessary for the fulfillment of the purposes mentioned below. Possibly existing deviations are explicitly designated below. By law, we are required to provide personal data to authorities (for example, requests for information from investigative authorities) or natural / legal persons (for example, to assert claims) on a case by case basis.

5. Secure communication

For the transmission of confidential information, we recommend that you contact us by phone, mail or encrypted contact form. Should you, for example, use e-mail, social media, messenger services (such as WhatsApp) or other means of contacting us, full data security cannot be guaranteed.

6. Changes to the Privacy Policy

This Privacy Policy may be accessed and printed at any time under the "Privacy Policy“ link. As changes in legislation or changes in our internal processes may require an amendment to this Privacy Policy, which remain reserved to us, we request that you regularly review this Privacy Policy.

II. Visit of our website

We would like to inform you below which personal data we process during your visit to our website.

You have the option of providing your personal data in various places on our website (for example in the contact form). We have marked the respective mandatory fields as such. Without them we cannot provide you with the requested service.

1. Logfiles

When you visit our website, the following data is stored in a log file: The requested website URL and the website from which the file was requested, the visitor's stored cookies for the domain being called, the status of access (file transfer, file not found , etc.), date and time of retrieval, amount of data transmitted in the context of the connection, type and version of the browser used, language used, name of the Internet service provider and your IP address. Without the provision of this data we cannot make our website available to you. We process this data for the purpose of detecting and eliminating malfunctions (Article 6 (1) sentence 1 f) of the GDPR). The log files are deleted as soon as they are no longer required for the detection and elimination of possible malfunctions.

2. Newsletter

You will receive a newsletter if you register for this service on our website (Art. 6 para. 1 p. 1 b) GDPR). Following your registration, we will send you an e-mail to the e-mail address you have provided, asking you to confirm your registration. Only after the confirmation link contained in this e-mail has been clicked, you will receive our newsletter. Your data will only be processed to provide the newsletter. In this context, the data provided by you when registering for the newsletter will be deleted from the newsletter 14 days after you have opted out of receiving the newsletter. To unsubscribe from the newsletter simply click on the unsubscription link which is available in each of our newsletters. Afterwards you will not receive any further newsletters of the booked newsletter service from us.

3. Contact form

You can also contact us via contact forms. We process your data to answer your request and for internal purposes, e.g. control and improvement of our business processes, business analysis, improvement of services and products (Art. 6 (1), sentence 1 f) of the GDPR). If you use a contact form to request information on a product or service that is the responsibility of another group company, we may forward your request to other group companies for the purpose of processing it (Art. 6 (1) sentence 1 b) GDPR ). Your contact request will be deleted immediately after processing your request.

4. Cookies, pixel and similar technologies

Under certain circumstances, we and our partners may store small text files called "cookies" on your computer to recognize users, to help us make our website more user-friendly and customized. You may, for example, adjust your browser settings to be informed in advance about the setting of cookies, or you may completely refuse to accept cookies. In certain cases, the refusal of cookies may limit the functionality of our website.

Targeting cookies are generally used to show you advertising based on your interest. If you visit another website, your browser's cookie will be recognized and you will be shown selected advertising based on the information stored in this cookie.

With tracking cookies, the reach of our website can be measured. Due to the set cookie we can e.g. track which website was visited before our website was accessed and how our website was used. We use this data e.g. to evaluate our campaigns or to optimize our website.

Technically-required cookies are necessary for the smooth functioning of our website (for example, to apply security settings for the website).

 

Name of cookie Duration Provider with address Collected data Purpose of data processing Opt-out options Category of data processing Data protection information by provider Legal basis of data processing
__cfduid 1 year Cloudflare, Inc.
101 Townsend St.
San Francisco, CA 94107
no personal data being processed Identifies single clients behind a shared IP and applies security settings to block malicious accesses - Technically required https://support.cloudflare.com/hc/en-us/articles/200170156-What-does-the-Cloudflare-cfduid-cookie-do- Art. 6 para. 1 sentence 1 b) GDPR
__hssc 30 minutes HubSpot Inc.,
One Dockland Central
Dublin 1, Ireland
Domain,number of hits, session-timestamp Logging of sessions Privacy button on website Tracking https://legal.hubspot.com/privacy-policy Art. 6 para. 1 sentence 1 a) GDPR
__hssrc Session cookie HubSpot Inc.,
One Dockland Central
Dublin 1, Ireland
Change of session cookie Logging of browser restarts to identify new sessions Privacy button on website Tracking https://legal.hubspot.com/privacy-policy Art. 6 para. 1 sentence 1 a) GDPR
__hstc 2 years HubSpot Inc.,
One Dockland Central
Dublin 1, Ireland
Domain, user token, first, last and current timestamp, number of sessions Recognition of users Privacy button on website Targeting https://legal.hubspot.com/privacy-policy Art. 6 para. 1 sentence 1 a) GDPR
hubspotutk 10 years HubSpot Inc.,
One Dockland Central
Dublin 1, Ireland
User token Logging user identity when sending in forms and deduplicating contacts Privacy button on website Targeting https://legal.hubspot.com/privacy-policy Art. 6 para. 1 sentence 1 a) GDPR
_ga 2 years Google Inc.
1600 Amphitheatre Parkway
Mountain View
CA94043
USA
Verweilzeit, Klicks auf Links, IP anonymisiert, Standort, Browser, OS, Screengröße, Flash/Java, Referring Site Distinction of users Privacy button on website Targeting http://www.google.com/policies Art. 6 para. 1 sentence 1 a) GDPR
_gid 24 hours Google Inc.
1600 Amphitheatre Parkway
Mountain View
CA94043
USA
Verweilzeit, Klicks auf Links, IP anonymisiert, Standort, Browser, OS, Screengröße, Flash/Java, Referring Site Distinction of users Privacy button on website Targeting http://www.google.com/policies Art. 6 para. 1 sentence 1 a) GDPR
_gat 1 minute Google Inc.
1600 Amphitheatre Parkway
Mountain View
CA94043
USA
Verweilzeit, Klicks auf Links, IP anonymisiert, Standort, Browser, OS, Screengröße, Flash/Java, Referring Site Restriction of query numbers Privacy button on website Targeting http://www.google.com/policies Art. 6 para. 1 sentence 1 a) GDPR
__cfduid 24 hours Cloudflare, Inc.
101 Townsend St.
San Francisco, CA 94107
no personal data being processed Content delivery - Technically required https://support.cloudflare.com/hc/en-us/articles/200170156-What-does-the-Cloudflare-cfduid-cookie-do- Art. 6 para. 1 sentence 1 c) GDPR
Usercentrics Consent Management Platform Cookie 60 days, consent data 6 years (legally required documentation period) Usercentrics GmbH
 Sonnenstrasse 23
 80331 München
 Deutschland
logfiles, IP anonymized, device information, browser information, consent data (Annahme oder Ablehnung von Cookies) providing user opt-in and opt-out from cookies and documentation thereof De-activing Javascript in browser Technically required https://usercentrics.com/de/datenschutzerklarung/ Art. 6 para. 1 sentence 1 c) GDPR

 

5. Social Plug-ins

This website uses so called "social plugins" provided by the social networks Facebook (Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA), LinkedIn (LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA). , Twitter (Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA) and Xing (XING SE, Dammtorstrasse 30, 20354 Hamburg, Germany). With the buttons for sharing content on Facebook, LinkedIn, Twitter and Xing, you can easily recommend our pages to your friends and contacts in the social media platforms you use. When you visit our website, no data is automatically transmitted to the aforementioned social networks. Only when you have clicked on a social media button, your browser establishes a direct connection to the server of the social network. Even if you are not a member of one of the social networks, there is the possibility that they can use the social plugin to track and possibly save your IP address. We have no control over the amount of data collected by social network operators in this way. If you are simultaneously logged in to one of the social networks, the operator can assign the corresponding actions to your account in the respective social network. In addition, if you interact with the social plugins, for example by clicking the "Like Button" or "Share" button, the respective social network processes the corresponding information. Xing claims to not collect personal information from users of our website and does not evaluate their usage behavior by using cookies. For details on the purpose and extent of data processing, collection and use by Facebook, LinkedIn, Twitter and Xing and your respective rights and options, please refer to the respective privacy policy:
www.facebook.com/policy.php
www.linkedin.com/legal/privacy-policy
www.twitter.com/privacy
www.xing.com/app/share?op=data_protection

Unless you want social networks to collect data about you through our website, do not click the buttons. You can also block social plug-ins using add-ons for your browser.

6. Hyperlinks to websites of other providers

We have placed links on our website to websites of other providers. We are not responsible for the data processing on these websites. Please consult the privacy policy of the respective provider to learn how they handle data processing.

III. Your right to object

You have the right at any time, for reasons arising from your particular situation, to object to the processing of your personal data, which is based on Article 6 (1) (e) of the GDPR or Article 6 (1) (f) of the GDPR; this also applies to profiling based on these provisions. We will then no longer process such personal information for these purposes unless we can demonstrate compelling legitimate grounds for processing which override your interests, rights and freedoms, or the processing is for the purpose of establishing, exercising or defending legal claims. Such objections can be asserted against the controller.

If personal data is processed for direct advertising, you have the right to object at any time to the processing of such personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. You can declare your objection to direct advertising to our data protection officer.

IV. Statistical analysis

Telefónica Germany uses anonymized and aggregated information for statistical analysis for the benefit of economy and society. This allows no conclusions regarding your personal information. Background information regarding the use of anonymized data for analysis and concrete use cases you can find here.

As a customer of Telefónica Germany you shall always have control over the usage of your data. You can check here the current status for the data supply for anonymization and use for statistical analysis and can change it when necessary. Additionally hereto some brick and mortar stores may partly collect data for statistical evaluations based upon WiFi-Signals that are acquired through the Telefónica affiliate MINODES GmbH. Here you can find additional information and you can object to the use of these anonymized data: www.minodes.com/optout

V. Data Protection

Data Protection Leaflet (PDF for download)