Privacy Policy

The protection and security of the personal data which is processed by us is very important to us. We therefore adhere strictly to the requirements of the statutory provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other legal provisions. We take all the available technical and organisational measures for the secure processing of personal data.

Responsible party

The collection and processing of personal data on this website is carried out by:

OHST Medizintechnik AG
Grünauer Fenn 3
14712 Rathenow

represented by its managing directors Stephan Dunke and Sebastian Sturm.

Phone:            +49 (0)3385 / 54 20 - 0
Fax:                 +49 (0)3385 / 54 20 - 99
Email:                     info@ohst.de

Data protection officer

Our data protection officer Ms Sylvana Schreiber can be contacted by email or contact form as follows:

Datenschutz- und Sicherheitsberatung
Sylvana Schreiber
Data protection officer – DSB-TÜV
Data protection auditor - TÜV

19348 Perleberg
Hopfenstraße 25

Contact: https://www.externedatenschutzbeauftragte.de/kontakt-datenschutzbeauftragter/
Email: dsb@isc-computer.de

Purpose of the data processing

In this section we inform you what data is collected and for what purpose.

  1. Automated data processing / data transmission

    When you visit our website, data is processed automatically for technical reasons, but this does not allow any conclusions to be drawn about the person concerned - your person. This data is stored on the server in log files and processed purely for anonymous statistical purposes. This data contains, among other things, information about the time of access, the browser used, the referrer URL (previously visited website) and other purely technical information about your hardware, operating system and browser information. This data will not be passed on to third parties.

    Anonymisation of the IP address (PRIVACY FIRST)

    The protection of your privacy is very important to us. Therefore we use a module on our web server to mask the IP address. As a result, any conclusions relating to the client PC and/or the person or company accessing the website are not possible.


  2. Collection of personal data

    The processing of personal data and information is carried out exclusively for the fulfilment of order-related processes and for the handling of contractually required procedures.

    The processing of personal data only takes place in the course of enquiries or contractual transactions which the data subject himself/herself or a third party commissioned by the data subject has sent to us, e.g. for purposes of preparing an offer.

    If you have provided us with your personal data, we assure you that no data will be passed on to third parties, unless this is necessary for the fulfilment of an order or required by law.


Security information relating to online data transmission

Despite all technical and organisational measures, no guarantee can be given for 100% security in the processing of your personal data via our website.  We therefore recommend that you pass on particularly sensitive personal data required for the fulfilment of an order to us by post or in the course of a telephone call.

Legal basis for the processing of personal data

The processing of personal data is primarily carried out on the basis of § 6 Section 1 b GDPR for the fulfilment of a contract or the fulfilment of pre-contractual measures. Alternatively, in the case of a non-contractual situation, with the express consent of the data subject pursuant to § 6 Section 1 a GDPR.

Duration of data storage

Personal data is stored by us in connection with contractual processing in accordance with the statutory retention periods. In the case of exclusively pre-contractual processing, the personal data will be deleted within a period of 4 weeks from the last transaction-related correspondence. An exception to this is a request for deletion on the part of the data subject, which will immediately be complied with, insofar as this is not contrary to any legal regulation or a state authority has made a request for information.


Disclosure of personal data - categories of recipients

Personal data will only be disclosed to third parties if this is absolutely necessary to fulfil our contractual obligations towards the data subject. For example, it may be necessary to use one or more subcontractors, such as transport companies, to fulfil contractual obligations, such as the delivery of goods to the person concerned, which makes it necessary to pass on the relevant name and address.

Your rights as a data subject 

In the following sections we inform you about your rights as a data subject according to the data protection regulations of the GDPR as well as the BDSG.

We wish to fulfil your legal claim in any case and request you, in the event of a request for information about, deletion or correction of your data, to note that your request may take some time - but we will endeavour to process it within the legally permissible time frame of 4 weeks.

As a data subject, you have the right at any time and free of charge to obtain information about any data we have stored about you. In the course of this information, we will inform you of the purpose of the data storage, the type and scope of all personal data as well as the possible recipients and the reason for the data being passed on.

Furthermore, as the data subject, you can request us to correct or delete your personal data, which we will of course comply with, insofar as this is legally justifiable.

You can object to the processing of your personal data for the future or revoke any consent already provided. The possibilities of objection or revocation result from the regulations of the GDPR.

In the event that you wish to receive your data stored with us in accordance with the right to data transferability, we will make it available to you in a CSV file, as there is no standardised format for this.

We do without automatic decision-making or profiling.

Identification to protect the person concerned

In order to avoid misuse of personal data by unauthorised third parties, we use a suitable method to determine the identity of the requesting person in the course of a request for information, a deletion or correction request, and the transfer of personal data.

Right of appeal to the supervisory authority

If you believe that, despite all due care, we have not acted correctly and/or processed your personal data inappropriately or without authorisation, we request you to send a corresponding note with the facts or a complaint to our data protection officer, Sylvana Schreiber, whose contact details can be found in the introductory part of this privacy policy.

Regardless of this, you as the data subject have the right of appeal to the data protection supervisory authority responsible for us.