Privacy statement

 

General Information

We appreciate your interest in our website and our offerings. circle institute GmbH takes the protection of your personal data very seriously. In this privacy policy, we inform you about the data we collect when you visit our websites, explain the purpose of data collection and processing, as well as their legal basis. Additionally, we inform you about your rights regarding data collection and processing. Our data protection practices comply with the legal regulations of the European Union's General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR, such as those outlined in Articles 13 and 14 GDPR.

Controller

The controller within the meaning of Article 4(7) GDPR is the entity that alone or jointly with others determines the purposes and means of processing personal data. With regard to our website, the controller is:

circle institute GmbH
Robert Rössle Str. 10 Hs. D 85
D-13125 Berlin

Phone: +49 (0)30 9489 2250
Email: info@circle-institute.com

Data Collection and Use

a) Access via the Internet and use of this website

When you visit one of our websites, our web server creates a temporary entry for each access and stores it in a log file. The following data is collected and stored:

(1) Information about the browser type and version;

(2) The operating system of the accessing device;

(3) Hostname of the accessing computer;

(4) The IP address of the accessing device;

(5) Date and time of access;

(6) Websites and resources (images, files, other page content) accessed on our website;

(7) Websites from which the user's system accessed our website (referrer tracking);

(8) Message indicating whether the access was successful;

(9) Transferred data volume.

The purpose of temporary (automated) storage and data collection is to enable you to access the website, ensure the security of the website, enable the technical administration of the network structure, and optimize our internet service. For this purpose, it is necessary to log the technical data of the accessing computer to be able to respond as early as possible to display errors, attacks on our IT systems, and/or malfunctions of our website's functionality. The IP address is only evaluated in the event of a justified suspicion of illegal use based on specific indications.

Data processing is carried out legally pursuant to Article 6(1)(f) GDPR and in our interest to present our website to you as reliably and smoothly as possible. The aforementioned technical data will be deleted as soon as it is no longer needed and the purpose of its collection ceases. For further rights you are entitled to and how to exercise them, please refer to the bottom of this privacy policy.

b) Online training registration form (server-based training); Observations and presence-based training courses

If you decide to register for one of our online training courses, we will collect the following data via our registration form:

  • Your academic titles (optional)
  • Your first name
  • Your last name
  • Your street, house number, postal code, city, and country (address)
  • Your email address
  • Your phone number (optional)
  • Your medical training number (optional)
  • Your VAT number (optional)
  • Your company and street, house number, postal code, city, country (company address) (optional)
  • Your medical specialization/field of expertise (optional)
  • The date of your course participation
  • Your profession (optional)

We will process the data you enter into our registration/inquiry form to fulfill the following purpose. The information in the registration/inquiry form is neither contractually nor legally required, but necessary to process your booking request properly. If you do not complete or complete the mandatory fields, we cannot process your booking request.

Pre-contractual information exchange is necessary to check your booking, confirm your registration, and contact you for clarification purposes for a possible later conclusion of a contract. In the case of a contractually effective registration, we will use your data additionally to create your user in the training system, to create the associated invoices, login forms, and certificates, as well as for communication during the training/course.

If you have provided us with your medical training number, we will report your training points to the responsible medical association (Federal Medical Association, EIV) once you have successfully completed your training. Your name, the number of cases processed, the date of course attendance, and the course title will be listed on the certificate.

The processing of your personal data is carried out legally pursuant to Article 6(1)(b) GDPR (performance of pre-contractual measures and to fulfill a contract), as participation in one of our training courses is based on a contractual relationship. We will store the information collected for registration for 5 years due to the archiving regulation of the medical association, unless you instruct us to delete it. For further rights you are entitled to and how to exercise them, please refer to the bottom of this privacy policy.

c) Inquiries via contact form, email, telephone, or fax:

On the internet pages of circle institute GmbH, there is a contact form available that can be used for electronic contact. Alternatively, contact can be made via the provided email address, telephone, or fax.

If the data subject contacts the data controller via one of these channels, the personal data transmitted by the data subject, e.g., the information from the inquiry form, will be automatically stored. The storage serves solely for the purpose of processing your request or contacting you to process follow-up questions regarding the data subject's inquiry. Data will not be disclosed to third parties. The legal basis for data processing, if consent is obtained from the user, is Art. 6 para. 1 lit. a) GDPR. The legal basis for processing data transmitted in the course of sending an email is Art. 6 para. 1 lit. f) GDPR. If the email contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 lit. b) GDPR. The data will be deleted as soon as you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after processing your request is completed). Mandatory statutory provisions, especially retention periods, remain unaffected.

For personal data entered into the contact form and those sent by email, this is the case when the respective conversation with the user has ended. A conversation is deemed to have ended when it can be inferred from the circumstances that the matter in question has been finally clarified.

For security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the website operator, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

We would like to point out that data transmission over the internet (e.g., communication by email) may have security vulnerabilities. Complete protection of data from access by third parties is not possible. Further information about your rights and how to exercise them can be found in the lower section of this privacy policy.

d) Newsletter registration

If you would like to receive the newsletter offered on the website, we require an email address from you. We will send you a confirmation email after registration, in which a link is included that you must click on to complete the registration for our newsletter (double opt-in). Unfortunately, if you do not provide the necessary information, we cannot provide you with our newsletter service. No further data will be collected or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.

The processing of the data entered into the newsletter registration form is based exclusively on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your consent to the storage of data, email address, and its use for sending the newsletter at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our newsletter distribution list after you unsubscribe from the newsletter or the purpose for which it was stored no longer applies. Our newsletter can be unsubscribed from at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after you unsubscribe. Likewise, your data will be deleted immediately by us in the event of an incomplete registration. We reserve the right to delete or block email addresses from our newsletter distribution list at our discretion within the scope of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR without stating reasons and without prior or subsequent information. Data stored for other purposes by us remains unaffected by this.

Further information about your rights and how to exercise them can be found in the lower section of this privacy policy.

e) Cookies on this website

The internet pages of circle institute GmbH use cookies to recognize you as a user when you use multiple pages in succession, to adapt the content of our websites to your needs, and to provide you with the options of social media. We share information about your use of our sites with social media, advertising operators, and our analysis partners, who may combine this data with other information you have provided to them or that they have collected through your use of their services.

Cookies are data stored by the internet browser on the user's computer system. The cookies can be transmitted to a page when it is accessed, thus enabling the user to be assigned. Cookies help to simplify the use of internet pages for users and to make the user experience more efficient. By law, we are allowed to store cookies on your device if they are strictly necessary for the operation of the website. For all other types of cookies, we need your consent. You can prevent the use of cookies by changing the corresponding setting in your browser. Set cookies can be deleted. If you do not accept cookies, there may be restrictions on the use of our websites.

The data of users collected in this way is pseudonymized by technical precautions. Therefore, it is no longer possible to assign the data to the calling user. The data is not stored together with other personal data of the users. When our website is accessed, users are informed via an info banner about the use of cookies for analytical purposes and referred to this privacy policy. The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f) GDPR. The legal basis for the processing of personal data using cookies for analytical purposes or similar recognition technologies is the user's consent pursuant to Art. 6 para. 1 lit. a) GDPR and § 25 para. 1 TTDSG); the consent can be revoked at any time. Further information about your rights and how to exercise them can be found in the lower section of this privacy policy.

f) Hosting of the website

We host the content of our website with IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter referred to as IONOS). When you visit our website, IONOS collects various log files including your IP addresses. Details can be found in IONOS' privacy policy: https://www.ionos.de/terms-gtc/terms-privacy.

The use of IONOS is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in presenting our website as reliably as possible. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's end device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. Further information about your rights and how to exercise them can be found in the lower section of this privacy policy.

Data Processing Agreement

We have entered into a Data Processing Agreement (DPA) with the above-mentioned provider. This is a legally required contract that ensures that they process the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

Web Analytics This website uses the analytics services of IONOS WebAnalytics. As part of the analysis with IONOS, visitor numbers and behavior (e.g., number of page views, duration of website visits, bounce rates), visitor sources (i.e., from which page the visitor comes), visitor locations, and technical data (browser and operating system versions) can be analyzed. For this purpose, IONOS stores the following data in particular: • Referrer (previously visited website) • Requested website or file • Browser type and browser version • Operating system used • Device type used • Time of access • IP address in anonymized form (only used to determine the location of access) According to IONOS, data collection is completely anonymized, so it cannot be traced back to individual persons. Cookies are not stored by IONOS

WebAnalytics

The storage and analysis of data are based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in analyzing user behavior statistically in order to optimize both its web offering and its advertising. If consent has been requested, processing is carried out exclusively based on Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided that the consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. Further rights you are entitled to and how to exercise them can be found in the lower section of this privacy policy. For further information on data collection and processing by IONOS WebAnalytics, please refer to IONOS's privacy policy at the following link: https://www.ionos.de/terms-gtc/index.php?id=6

g) LinkedIn

Our website uses features of the LinkedIn network, including the LinkedIn Analytics function. Each time one of our pages containing LinkedIn features is accessed, a connection to LinkedIn's servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the "Recommend/Like" button from LinkedIn and are logged into your LinkedIn account, LinkedIn can associate your visit to our website with you and your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by LinkedIn. LinkedIn Analytics uses "cookies" which are stored on your computer and enable an analysis of your use of the website. LinkedIn uses this information to evaluate your use of the website, to compile reports on website activity for website operators, and to provide other services related to website activity and internet usage. Please note that we cannot trace LinkedIn's processing processes and we have no influence on LinkedIn's data processing operations. Our options are largely based on the corporate policies of the respective provider. The legal basis for the processing of your personal data is Art. 6(1)(a) GDPR. The recipient of your personal data is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. The data will be deleted as soon as they are no longer necessary to achieve the purpose of their collection. In addition, the data will be deleted if you exercise your right to deletion pursuant to Art. 17(1) GDPR. Further rights you are entitled to and how to exercise them can be found in the lower section of this privacy policy. For further information on the processing of your personal data by LinkedIn, please see here: https://www.linkedin.com/legal/privacy-policy

2. Links to Third-Party Websites and Data Transfer to Third Countries

Our websites may contain links to the pages of other providers (e.g., SCMR, CVI). We would like to emphasize at this point that this privacy policy only applies to websites operated by circle institute GmbH.

There is therefore a risk that a third country receiving your personal data may not have an equivalent level of protection compared to the protection of personal data in the European Union. This may be the case, for example, if the European Commission has not issued an adequacy decision for the respective third country or if certain agreements between the European Union and the respective third country are declared invalid. Specifically, there are risks in some third countries regarding the effective protection of EU fundamental rights through the use of surveillance laws (for example, USA).

Further rights you are entitled to and how to exercise them can be found in the lower section of this privacy policy.

3. Plugins and Tools

This site uses Font Awesome for the uniform display of fonts and symbols. The provider is Fonticons, Inc., 6 Porter Road Apartment 3R, Cambridge, Massachusetts, USA.

When a page is called up, your browser loads the required fonts into its browser cache to display texts, fonts, and symbols correctly. For this purpose, the browser you are using must establish a connection to the servers of Font Awesome. Font Awesome thereby becomes aware that this website has been accessed via your IP address. The use of Font Awesome is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the uniform presentation of the typeface on our website. If consent has been requested, processing is carried out exclusively based on Art. 6(1)(a) GDPR and § 25(1) TTDSG, provided that the consent includes the storage of cookies or access to information on the user's device (e.g., Device-Fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. Further rights you are entitled to and how to exercise them can be found in the lower section of this privacy policy.

If your browser does not support Font Awesome, a standard font from your computer will be used.

Further information on Font Awesome can be found in the Font Awesome Privacy Policy at: https://fontawesome.com/privacy.

You have the following rights regarding your data:

4. Right to Information

You have the right to know whether your data is being processed and, if so, to access and receive information about your data (Art. 15 GDPR).

  • Right to Rectification: You have the right to request correction of incorrect personal data and completion of incomplete personal data (Art. 16 GDPR).
  • Right to Erasure: You have the right to request deletion of your personal data pursuant to Art. 17(1) GDPR if:
  • the data is no longer needed;
  • the legal basis for processing has ceased to exist due to the revocation of your consent;
  • you have objected to the processing and there are no legitimate grounds for processing;
  • your data is being processed unlawfully;
  • there is a legal obligation to delete the data or an Art. 8(1) GDPR collection has occurred.
  • No Right to Erasure: There is no right to erasure of your personal data under Art. 17(3) GDPR if:
  • processing is necessary for exercising the right to freedom of expression and information;
  • your data was collected on the basis of a legal obligation;
  • processing is necessary for reasons of public interest;
  • the data is required for the establishment, exercise, or defense of legal claims.
  • Right to Withdraw Consent: You have the right to withdraw your consent to the processing of your personal data (Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR). Please note that the lawfulness of processing based on consent prior to its withdrawal remains unaffected.
  • Right to Restriction of Processing: You have the right to restrict the processing of your personal data (Art. 18 GDPR) if:
  • the accuracy of your personal data is contested;
  • processing is unlawful and you oppose erasure;
  • the data is no longer needed for processing but is required for legal claims;
  • you have objected to processing under Art. 21(1) GDPR and the balancing of interests is pending.
  • Right to Notification: You have the right to be informed (Art. 19 GDPR) if you have asserted your rights to rectification, erasure, or restriction of processing to the controller. The controller is then obligated to inform all recipients to whom the personal data concerning you has been disclosed about this correction or deletion of data or restriction of processing, unless this proves impossible or involves disproportionate effort. You have the right to be informed about these recipients from the controller.
  • Right to Data Portability: You have the right to receive your data in a structured, commonly used, and machine-readable format (Art. 20 GDPR). The data can be transmitted to yourself or to a responsible party nominated by you. Upon request pursuant to Art. 20(1) GDPR, we will provide you with the following data:
  • Data collected based on explicit consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR;
  • Data we have received from you in the context of existing contracts pursuant to Art. 6(1)(b) GDPR;
  • Data processed through automated procedures. We will transfer the personal data directly to a responsible party designated by you, provided this is technically feasible. Please note that we are not permitted to transfer data that interferes with the freedoms and rights of others under Art. 20(4) GDPR.
  • Right to Object to Processing: You have the right to object to the processing of your data at any time (Art. 21 GDPR) if there are special circumstances against storage and processing.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe that your personal data has been endangered or processed unlawfully under the GDPR (Art. 77 GDPR). To exercise your rights, please contact us via the responsible party mentioned above.

5. Data Security

Circle Institute GmbH has implemented technical and organizational measures to protect stored personal data against accidental and intentional manipulation, loss, or destruction, and against unauthorized access.

Our security measures are continuously improved in line with technological progress.