Data Protection Statement

Home|Data Protection Statement

Information by the Contipark Group of Companies, Germany on the processing of personal data (Privacy Statement)

The following information is to provide you with an overview regarding the processing of your personal data by the organizations of the Contipark group of companies in Germany listed below, and your respective rights in this regard:

Contipark Parkgaragengesellschaft mit beschränkter Haftung

Rankestraße 13
10789 Berlin
Phone: +49 30 31 98 71 555

You can reach our data protection officer at the above postal address or by e-mail sent to:

Contipark International Parking GmbH

Rankestraße 13
10789 Berlin
Phone: +49 30 31 98 71 555

You can reach our data protection officer at the above postal address or by e-mail sent to:

Servipark Deutschland GmbH

Möllendorffstraße 47
10367 Berlin
Phone: +49 30 31 98 71 555

You can reach our data protection officer at the above postal address or by e-mail sent to:

A) General information applicable to processing

We process your personal data in accordance with the provisions laid down in the European General Data Protection Regulation (GDPR) and all other relevant laws, such as the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG). Where required, we will seek to obtain your prior consent.

‘Personal data’ refers to any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

‘Processing’ means any operation or set of operations which is performed on personal data or on sets of personal data with or without the assistance of automated means. The term is broadly defined and practically encompasses any form of handling data.

‘Controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

For more information on these and other related definitions, please refer to the Definitions under Article 4 of the General Data Protection Regulation (GDPR).

Within the whole group of companies those bodies will have access to your data which require such data to fulfil our contractual performance and legal obligations. Insofar as your data are forwarded within the group or to enlist third-party services (for example, billing services, IT services, consultation, sales and marketing, data destruction, logistics, telecommunications), they will be forwarded on the basis of a legal permission only, for example if the data must be transmitted to third parties such as payment services providers, in accordance with Art. 6 (1) lit. b GDPR for the purpose of complying with the contract, if you consented to this pursuant Art. 6 (1) lit. a) GDPR, if a legal obligation provides for this according to Art. 6 (1) lit. c) GDPR or on the basis of our legitimate interests pursuant to Art. 6 (1) lit. f) GDPR.

If we contract third parties to process data on the basis of a so-called data processing contract, this is governed by Art. 28 GDPR.

In principle, we do not transfer personal data to bodies in third countries (outside of the EU or EEA) or international organizations.

Provided that, in the exceptional case, we process personal data in a third country (meaning outside of the European Union (EU) or the European Economic Area (EEA)) or this occurs in the framework of contracting third-party services or the disclosure or transfer of data to third parties, this is performed for the purpose of meeting the above intentions only. Subject to statutory or contractual permissions, we would process or have a third party process the data in a third country only if special requirements apply in accordance with Art. 44 et seq. GDPR. This means that in those cases data will be processed, for example, subject to special safeguards, such as the officially-recognized EU-compliant level of protection of personal data (e.g. the Privacy Shield as applied in USA) or the consideration of officially-recognized, special contractual obligations (so-called ‘standard contractual clauses’). You may request information about the safeguards which we have implemented to comply with an appropriate level of protection of personal data from the contact addresses stated.

You have the right to request a confirmation stating whether the data concerning the data subject are being processed; to access these data; and to receive further information and a copy of the data in accordance with Art. 15 GDPR.

According to Art. 16 GDPR, you have the right to request that the data concerning you as the data subject be completed, or that any incorrect data on you be rectified.

In accordance with Art. 17 GDPR, you have the right to request that the data concerning you as the data subject be immediately erased or in the alternative and in accordance with Art. 18 GDPR, the processing of the data be restricted.

You have the right to request that you receive the data that concern you as the data subject which you provided to us in accordance with Art. 20 GDPR and that they be transferred to other controllers.

Moreover, in accordance with Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority, such as:

Berlin Commissioner for Data Protection and Freedom of Information
(Berliner Beauftragte für Datenschutz und Informationsfreiheit)
Friedrichstraße 219
10969 Berlin

According to Art. 7 (3) GDPR, you have the right to withdraw any consent you may have issued anytime without stating reasons and effective for the future. You may do so by simple notification sent to the above contact addresses.

You may object to the future processing of data that concern you in accordance with Art. 21 GDPR anytime. The objection may be issued especially against processing for the purposes of direct marketing.

The data which we process will be erased in accordance with Art. 17 and 18 GDPR, or their processing will be restricted. Unless expressly specified otherwise within the framework of this privacy statement, data which we store will be erased as soon as they are no longer required for their intended purpose and if there are no statutory retention obligations that oppose their erasure. Provided that the data will not be erased because they are required for other purposes which are legally permissible, their processing will be restricted. This means the data will be blocked and not processed for other purposes. This applies, for example, to data which need to be saved for commercial law-related or tax law-related reasons.

According to legal stipulations in Germany, the retention period is six years especially for commercial letters and similar correspondence; and ten years for trading books and similar documentation, accounting documents and documents that are relevant for taxation purposes. Moreover, data are retained insofar as is necessary to preserve evidence within the framework of statutory periods of limitation. According to Sections 195 et seq. of the German Civil Code (Bürgerliches Gesetzbuch, BGB), these periods of limitation may be up to 30 years whereby the routine period of limitation is three years.

B) Processing in detail