Legal notice

  1. Privacy Policy
    1. We would like to inform you about the collection and use of your Personal Data by visiting this website as described herein. If required by applicable law, we will seek your explicit consent to process Personal Data collected on this website or volunteered by you. Kindly note that any consent will be entirely voluntary. However, if you do not grant the requested consent to the processing of your Personal Data, the use of this website may not be possible in all its functionalities.
    2. All processing of Personal Data is performed in accordance with privacy rights and regulations following the Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27th 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, known as the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
    3. Responsible for the processing of your Personal Data on this website is:
      AdrenoMed AG
      Neuendorfstraße 15a
      16761 Hennigsdorf bei Berlin
      Phone: +49 3302 2077-80
  1. Definition: ‘Personal Data’
    ‘Personal Data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  1. Definition: ‘Processing’
    ‘Processing’ means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  1. Processing of Personal Data on our website
    You can visit our website without having to submit Personal Data.  We gather data about visits to the website, including numbers of visitors and visits, geo-location data, length of time spent on the site, pages clicked on or where visitors have come.
  1. Data processing on our website
    1. By visiting your browser will automatically transfer the following data to our webserver:
      • IP-address of your device;
      • Date and time of your visit;
      • Name and URL of the downloaded files;
      • URL of the website you were coming from (Referrer-URL);
      • Name of your browser, the operating system of your device and the name of your access provider;
      • Version of the Hypertext Transfer Protocol (HTTP), HTTP status code, size of the delivered file;
      • Request information such as language, type of content, coding of content, character sets;
      • Cookies of the accessed domain stored on the terminal device.
  1. Storage period
    1. In principle, we store personal data only as long as necessary to fulfil the purposes for which we collected the data. Thereafter, we delete the data immediately, unless we still need the data until the expiry of the statutory limitation period for evidence purposes for claims under civil law, due to statutory retention obligations or there is another legal basis under data protection law for the continued processing of your data in the specific individual case.
    2. For evidentiary purposes, we must retain contractual data in particular for three years from the end of the year in which the business relationship with you ends. Any claims become statute-barred at this point at the earliest in accordance with the standard statutory limitation period.
    3. In some cases, we still have to store your data after this date for accounting reasons. We are obliged to do so because of legal documentation obligations that may arise from the German Commercial Code, the German Fiscal Code, the German Banking Act, the German Money Laundering Act and the German Securities Trading Act. The periods specified there for the retention of documents are two to ten years.
    4. Our webserver will save the IP-address onto a temporary logfile and delete it after a period of 60 days. Any other data will not be stored on our webserver.
  1. Legal basis and purpose of data processing
    1. This data is being processed for the following purposes: to ensure a seamless connection to our website, to ensure a comfortable user experience, to analyse the system´s stability and security, for further administrative purposes.
    2. The legal basis for the processing of your Personal Data is Art. 6 section 1 sentence 1 lit. f GDPR due to our legitimate interest in enabling the website access and permanent functionality and security of our systems. Our legitimate interests result also from the abovementioned purposes of data processing. We do not use your Personal Data to draw conclusions about your identity.
    3. Whenever the data processing is not justified by legal provisions, we ask you to give your free and informed consent to specific and determined processing purposes, Art. 6 section 1 lit. a GDPR. You can withdraw your consent at any time.
  1. Disclosure of data
    1. We will not transfer any of your Personal Data to a third party, except for the following cases:
      • you have given consent;
      • processing is necessary for the purposes of the legitimate interests pursued by us or by a third party to establish, exercise or defend legal claims, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of Personal Data;
      • processing is necessary for compliance with a legal obligation to which we are subject to in accordance with the law; or
      • processing is necessary for the performance of a contract to which you are party or in order to take steps at your requests prior to entering into contract.
    2. We will reveal a user’s personal information without his prior permission only when we have reason to believe that the disclosure of this information is required to establish the identity of, to contact or to initiate legal proceedings against a person or persons who are suspected of infringing rights or property belonging to us or to others who could be harmed by the user’s activities or of persons who could (deliberately or otherwise) transgress upon these rights and property.
  1. E-Mail-safety
    1. If you have any questions, you can contact us via our contact form. It is necessary that you submit a valid e-mail-address to allow us to process your request. Further information can be submitted voluntarily. The processing of your Personal Data within the means of the processing of your request occurs on the basis of your given consent according to Art. 6 section 1 sentence 1 lit. a GDPR. Your data will be used solely for the purpose of responding to the communication request and any further purpose resulting from the communication as agreed with you. Following resolution of your request will delete the collected data relating to your request unless such data is required to fulfil our legal obligations, e.g. contractual or statutory.
    2. Please note, that the use of our website might contain security risks, absolute protection against unauthorized access to your Personal Data is technically not achievable.
  1. Data safety
    1. We use the common SSL (Secure Socket Layer) method in connection with the highest level of encryption supported by your browser, normally this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the status bar of your browser.
    2. We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
  1. Cookies
    1. This website uses cookies.
    2. Cookies are small text files that are stored on your computer when you visit our website and allow us to reassign your browser. Cookies store information such as your language setting, the duration of your visit to our website or the information you enter there.
    3. There are different types of cookies. Session cookies are temporary cookies that are stored in the user’s Internet browser until the browser window is closed and the session cookies are deleted. Permanent or persistent cookies are used for repeated visits and stored in the user’s browser for a predefined time. First-party cookies are set by the website the user visits. Only this website may read information from cookies. Third-party cookies are set by organizations that are not operators of the website that the user visits. These cookies are used by marketing companies, for example.
    4. You can delete cookies already stored on your end device at any time. If you wish to avoid the deployment of cookies, you can refuse to accept cookies in your browser. Check your browser manual to see how this works in detail.
  1. Analytics-Tools
    This website does not use any analytics-tools.
  1. Google Services
    1. The Google services are offered for persons from the European Economic Area and Switzerland by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland and for all other persons by Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (“Google”).
    2. For more information regarding the purpose and extent to which Google collects, processes and uses data as well as your rights in this regard and the settings available to protect your privacy, please see Google’s privacy policy. Data transmission to the United States is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:

Google Maps

    • This website uses the map service Google Maps, which allows the display of interactive maps and the use of the map feature directly on our website. The map services allow us to provide the accurate information on the location of our Company. The Google Maps service uses persistent cookies. When visiting the page on our website that uses Google Maps, Google will receive a notification that you have accessed the page. In addition, the information listed under Section 5.1 above, will be transmitted to Google. This takes place regardless of whether you are logged in to a Google user account. If you are logged in to Google, your data will be assigned to your user account. If you do not want the data to be assigned to your account, you will need to log out before accessing the map feature. Google stores your data as a user profile and utilizes it for advertising, market research and/or to provide personalized services on their website. More specifically, such analysis is carried out (even for users who are not logged in) to provide targeted advertising and to provide other social network users with information about your activities on this website. If you do not wish data to be processed by Google as part of this service, you can deactivate the use of JavaScript in your browser settings. Please note that you will not be able to use the interactive map function of Google Maps in that case. You also have the right to object to the creation of these user profiles. This right can be exercised directly with Google.

Google reCAPTCHA

    • reCAPTCHA is used on our website to prevent abusive automated spying, against spam as well as protecting you against such attacks. This is also the legitimate interest in data processing within the meaning of Art. 6 section 1 lit. f GDPR. reCAPTCHA analyses various information of the respective visitor (e.g. IP address, mouse movements of the user, length of stay on the website). By using reCAPTCHA, data is transferred to Google, which is used to determine whether the visitor is a human being or a (spam) bot.
    • Furthermore, Google uses cookies from other Google services such as Gmail, Search and Analytics. If you do not want this assignment to your Google account, it is necessary that you log out of Google before calling up a page where we have integrated Google reCAPTCHA. The aforementioned data is sent to Google in encrypted form. Google’s evaluation decides in which form the captcha is displayed on the page. The use of reCAPTCHA is evaluated statistically. According to Google, your data will not be used for personalized advertising.
    • In some cases, the data may also be processed on servers in the USA. In the event that personal data is transferred to the USA or other third countries, this is done on the basis of Art. 49 section 1 lit. b DSGVO to enable the fulfilment of a contract with you or the performance of pre-contractual measures.
  1. External Hosting
    1. This website is hosted by:
      united-domains AG
      Gautinger Straße 10
      82319 Starnberg
      Phone 08151 / 36867-0
      Fax 08151 / 36867-77
      (the “Host”)
    2. Hosting of this website by the Host means that personal data collected on this website (such as IP addresses, metadata, contact requests names and contact information and other data generated through your use of the website) are stored on the servers of the host. The hosting of the website and resulting storage of personal data are necessary in the interest of providing a secure, fast, and efficient online presence (Art. 6 section 1 lit. f GDPR).
    3. The services provided to AdrenoMed by the Host are subject to a data processing agreement and personal data will only be processed by the Host to the extent necessary to fulfil its obligations under the service agreement and the data processing agreement.
  1. Social Networks
    1. In order to communicate with interested parties and provide updates and information on the company, we also maintain a presence on the following social networks:
      • LinkedIn, LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland (“LinkedIn”).
      • Twitter, Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland (“Twitter”)
  1. Data transfer to third countries
    1. We use services whose providers are partly located in third countries (outside the European Union or the European Economic Area) or process personal data in these countries, i.e. countries whose level of data protection does not correspond to that of the European Union. If this is the case and the European Commission has not issued an adequacy decision (Art. 45 GDPR) for these countries, we have taken appropriate precautions to ensure an adequate level of data protection for any data transfers. These include, among others, the standard contractual clauses of the European Union or binding internal data protection regulations.
    2. Where this is not possible, the transfer of data is based on exceptions of Art. 49 DSGVO, in particular your explicit consent or the necessity of the transfer for the performance of the contract or for the implementation of pre-contractual measures.
    3. If a third country transfer is provided for and no adequacy decision or appropriate safeguards are in place, it is possible and there is a risk that authorities in the respective third country (e.g. intelligence services) may gain access to the transferred data in order to collect and analyse it, and that enforceability of your data subject rights cannot be guaranteed.
  1. Rights of the data subject
    1. You have the right to obtain confirmation as to whether or not Personal Data concerning you are being processed and, where that is the case, access to your Personal Data and the following information, Art. 15 GDPR: the purposes of the processing; the categories of Personal Data concerned; the recipients or categories of recipient to whom the Personal Data have been or will be disclosed, in particular recipients in third countries or international organizations; the existence of the right to request from the controller rectification or erasure of Personal Data or restriction of processing of Personal Data concerning the data subject or to object to such processing; the right to lodge a complaint with a supervisory authority; where the Personal Data are not collected from the data subject, any available information as to their source; the existence of automated decision-making, including profiling, referred to in Art. 22 sections 1 and 4 GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
    2. You have the right to obtain without undue delay the rectification of inaccurate Personal Data concerning you. Taking into account the purpose of the processing, you have the right to have incomplete Personal Data complete, including by means of providing a supplementary statement, Art. 16 GDPR.
    3. You have the right to obtain the erasure of Personal Data concerning you without undue delay, under the conditions laid out in Art. 17 GDPR. This does not apply to the extent that processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest and for the establishment, exercise or defence of legal claims.
    4. You have the right to obtain restriction of processing, Art. 18 GDPR, when one of the following applies: the accuracy of the Personal Data is contested by you; the processing is unlawful and you oppose the erasure of your Personal Data and request the restriction of their use instead; you have objected to processing pursuant to Art. 21 section 1 GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject. Such Personal Data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest.
    5. You have the right to receive the Personal Data concerning you, which you have provided, in a structured, commonly used and machine-readable format and to transmit those data to another controller, Art. 20 GDPR.
    6. If you consider that the processing of Personal Data relating to you infringes the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in your habitual residence, place of work or place of the alleged infringement, Art. 77 GDPR.
    7. Provided that your Personal Data is being processed on basis of Art. 6 section 1 sentence 1 lit. e or f GDPR, according to Art. 21 GDPR you have the right to object, on grounds relating to your particular situation, at any time to processing of Personal Data concerning you.
  1. Data protection officer
    1. We have a data protection officer who is responsible for matters relating to privacy and data protection. This data protection officer can be reached at the following address:
      ISiCO Datenschutz GmbH
      Am Hamburger Bahnhof 4
      10557 Berlin
      Phone: +49 (0)30 213 002 850

This privacy policy is current as of 15 December 2022.