Privacy Policy
The VERTICAL Development Privacy Policy
Data protection is of great importance to the operators of this website. In general, the use of this website is possible without providing any personal data.
If a data subject wishes to use special services through our website, the processing of personal data may become necessary. If processing personal data is required and there is no legal basis for such processing, we generally obtain the consent of the data subject. The processing of personal data, such as the name, address, email address, or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection regulations applicable to the operators of this website.
Through this privacy policy, we aim to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process. In addition, this privacy policy explains the rights of data subjects. The operators of this website have implemented numerous technical and organizational measures to ensure the most comprehensive protection of personal data processed through this website. However, internet-based data transmissions may have security gaps, so absolute protection cannot be guaranteed. For this reason, every data subject is free to provide personal data to us through alternative means, such as by telephone or post.
Definitions of Terms
This privacy policy is based on the terminology used by the European Directive and Regulation when enacting the General Data Protection Regulation (GDPR). Our aim is to ensure that this privacy policy is easy to read and understand for the general public, as well as for our customers and business partners. To guarantee this, we would like to explain the terminology used in advance.
We use, among other terms, the following definitions in this privacy policy:
Personal Data
Personal data refers to any information relating to an identified or identifiable natural person (hereinafter "data subject"). A natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more specific factors related to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Data Subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller responsible for processing.
Processing
Processing refers to any operation or set of operations performed on personal data, whether or not by automated means, such as collecting, recording, organizing, structuring, storing, adapting, or altering, retrieving, consulting, using, disclosing by transmission, dissemination, or otherwise making available, aligning, combining, restricting, erasing, or destroying data.
Restriction of Processing
Restriction of processing is the marking of stored personal data with the aim of limiting its processing in the future.
Profiling
Profiling is any form of automated processing of personal data to evaluate certain personal aspects related to a natural person, particularly to analyze or predict aspects regarding that natural person’s work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
Pseudonymization
Pseudonymization is the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
Controller or Controller Responsible for the Processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency, or other body that alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
Processor
Processor is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
Recipient
Recipient refers to a natural or legal person, public authority, agency, or another body to which personal data is disclosed, whether or not it is a third party. However, public authorities that may receive personal data in the context of a specific inquiry in accordance with Union or Member State law shall not be regarded as recipients.
Third Party
Third party refers to a natural or legal person, public authority, agency, or other body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
Consent
Consent refers to any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
Name and Address of the Controller Responsible for Processing
The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union, and other provisions related to data protection is:
VERTICAL Development GmbH Schinkestr. 9 12047 Berlin Germany Sebastian Baier Email: sebastian@vertical-development.de
Rights of the Data Subject
Right to Confirmation: Every data subject has the right granted by the European Directive and Regulation to obtain confirmation from the controller as to whether personal data concerning them is being processed. If a data subject wishes to exercise this right, they can contact our data protection officer or any other employee of the controller.
Right to Access: Every data subject affected by the processing of personal data has the right to obtain from the controller, free of charge, information about their stored personal data and a copy of this information. Furthermore, the European Directive and Regulation grant the data subject access to information on the following:
The purposes of the processing, the categories of personal data being processed, the recipients or categories of recipients to whom the data has been or will be disclosed, particularly in third countries or international organizations, the planned period for which the data will be stored or the criteria used to determine that period, the existence of the right to request rectification or erasure of personal data or restriction of processing, or to object to processing, the right to lodge a complaint with a supervisory authority, if the data was not collected from the data subject, any available information on its source, and the existence of automated decision-making, including profiling, and meaningful information about the logic involved and the significance and potential consequences of such processing for the data subject.
The data subject also has the right to know whether their personal data has been transferred to a third country or an international organization. If this is the case, they are entitled to be informed about the appropriate safeguards relating to the transfer.
If a data subject wishes to exercise this right, they can contact our data protection officer, the controller, or any other employee.
Additional rights include the right to rectification, erasure ("right to be forgotten"), restriction of processing, data portability, and objection to processing, along with rights related to automated decision-making and profiling. Data subjects also have the right to withdraw consent for the processing of their data at any time.
