Status: February 2023
We take the protection of your personal data very seriously. Your privacy is an important concern for us. The following provisions serve to inform you about the processing of personal data in accordance with the requirements of the General Data Protection Regulation (GDPR). In particular, taking into account the information obligations according to Art. 12 to 14 DSGVO, as well as to inform you about the existing data subject rights according to Art. 15 to 22 and Art. 34 DSGVO.
Notes on the responsible
Responsible for the processing of your personal data is:
Moayedi Investments GmbH
Lietzenburger Str. 51
Managing Director: Sascha Moayedi
We process your personal data in accordance with the applicable legal data protection requirements.
What data is processed?
We process personal data of visitors to our websites and our social media channels, of persons who purchase or are interested in a property and of persons who have registered to receive information from Moayedi Investments GmbH.
What rules apply to the processing of personal data?
When processing personal data in Germany, we are bound by the Basic Data Protection Regulation, the Federal Data Protection Act, the Telemedia Act and the Telecommunications Act.
We only process personal data if we meet one or more of the following conditions:
- We have your consent.
- We fulfil a contract with you.
- We have a legitimate interest.
- We are fulfilling a legal obligation.
Use of service providers
Some of the aforementioned processes or services are carried out by carefully selected and contracted service providers. We transmit or receive personal data from these service providers solely on the basis of a processing contract. If the registered office of a service provider is outside the European Union or the European Economic Area, a third country transfer takes place. Data protection agreements in accordance with the legal requirements are contractually stipulated with these service providers in order to establish an appropriate level of data protection and corresponding guarantees are agreed.
Information on your rights
You have the right:
- request confirmation from us as to whether personal data relating to you are being processed by us; if this is the case, you have a right of access to this personal data and to the information listed in detail in Art. 15 of the GDPR
- Request the handover of the data concerning you in the restrictions of Art. 20 DSGVO in a common electronic, machine-readable data format; this also includes the handover (as far as possible) to another controller directly designated by you.
- require us to correct your data if it is inaccurate, inaccurate and/or incomplete; corrections shall also include completion by way of explanation or communication
- demand that we delete personal data relating to you without delay if one of the reasons listed in detail in Art. 17 of the GDPR applies
- Unfortunately, we are not allowed to delete data that is subject to a statutory retention period.
- If you would like us to stop contacting you by newsletter or other means, we will store your contact details in this regard on a blacklist.
- revoke any consent you have given with effect for the future without any disadvantage to you
- demand that we restrict processing if one of the conditions listed in Art. 18 DSGVO applies
- object at any time to the processing of personal data concerning you on grounds relating to your particular situation
- We will then no longer process the personal data unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims (Art. 21 DSGVO).
- without prejudice to any other administrative or judicial remedy, if you consider that the processing of personal data relating to you is in breach of the GDPR, complain to: email@example.com or by post (see imprint) or to a supervisory authority in the Member State of your residence, workplace or the place of the alleged infringement
Deletion of your data
Unless otherwise regulated in the more detailed data protection declarations, we delete your personal data when the contractual relationship with you is terminated, you have exercised your right to deletion, all mutual claims have been fulfilled and there are no other legal retention obligations or legal justification bases for storage. Retention periods under commercial law for financially relevant data are generally up to 10 years. We may also retain data for as long as is necessary to protect us from claims that could be made against us. These periods can be up to 30 years.
For the purposes of this general information for employees, the
- Personal data – any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Examples are contact data, communication data, billing data.
- Controller – the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be
provided for under Union or Member State law.
- Processor – a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
- Recipient – a natural or legal person, public authority, agency or other body to whom personal data is disclosed, whether or not a third party.
- Employed persons – employees, including temporary workers in relation to the hirer, persons employed for their vocational training, participants in services for participation in working life and in clarifications of occupational aptitude or work testing (rehabilitants), persons employed in recognised workshops for disabled persons, volunteers performing a service under the Youth Volunteer Service Act or the Federal Volunteer Service Act, persons who, because of their economic independence, are to be regarded as persons similar to employees. These also include persons employed in homeworking and those treated as such, federal civil servants, federal judges, soldiers and persons performing civilian service. They also include applicants for employment and persons whose employment relationship has ended.
- Third party – a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.
- Profiling – any automated processing of personal data which consists in using such personal data to evaluate certain personal aspects relating to a natural person. In particular, to analyse or predict aspects relating to the work performance, economic situation, health, personal preferences, interests, reliability, behaviour, location or change of location of that natural person.
- Restriction of processing – the marking of stored personal data with the aim of restricting your future processing.