Find parking space Find an apartment
Suche starten

Privacy Policy

1. General information

This data protection notice informs you about the processing of your personal data in connection with the use of the website https://zimmerei.apartments/ (the ‘Website’).

The controller within the meaning of the EU General Data Protection Regulation (‘GDPR’) with regard to the processing of personal data in connection with the Website is

aam2core Holding AG (hereinafter also referred to as ‘AAM2CORE’, ‘we’, ‘us’)
Eschersheimer Landstr. 14, 60322 Frankfurt a.M., Germany.
E-mail: datenschutz@zimmerei.apartments
Telephone: +49 30 9940578 0

If you have any questions, suggestions or complaints about data protection at AAM2CORE, you can also contact our data protection officer directly at any time. You can reach him at:

Data Protection Officer aam2core Holding AG
Eschersheimer Landstr. 14, 60322 Frankfurt a.M.
E-mail: office@aam2core.com

2. Processing of personal data; purposes of processing

a) Informational use of the website

If you use the website for informational purposes only, i.e. if you do not actively transmit information to us, we do not collect any personal data, with the exception of the data that your browser automatically transmits to enable you to visit the website. This includes, for example
– IP adress;
– Date and time of access;
– the amount of data transmitted in each case.
– Time of the enquiry
– browser data
– Information on the operating system of the end device used
– Referrer query (from which website the page was accessed)

We do not assign this data to specific persons. The aforementioned processing of data is basically only carried out for the purpose of enabling the use of the website (connection establishment; technical session control). Insofar as the processing of the aforementioned data involves personal data, the corresponding processing of this data is based on Art. 6 para. 1 sentence 1 lit. f GDPR (legitimate interest; the legitimate interest follows from the aforementioned purpose – enabling the offering and retrieval of the website) in conjunction with. § Section 25 para. 2 no. 2 TTDSG.

b) Making contact

If you contact us (e.g. by e-mail or using a contact form on the website), the data you provide in this context will be used to process your enquiry. If you contact us by email, for example, the following data in particular will be processed

– Name
– e-mail address
– Content of the message

The aforementioned data will be used exclusively for the purpose of processing the corresponding contact enquiry.

The legal basis for the processing of the aforementioned personal data is, depending on the individual case, either Art. 6 para. 1 sentence 1 lit. b. GDPR (contract or pre-contractual measures) or Art. 6 para. 1 sentence 1 lit. f GDPR (legitimate interests; the legitimate interest arises from the fact that the action requested by the user (e.g. answering enquiries) can only be carried out by processing the data accordingly) or Art. 6 para. 1 sentence 1 lit. a GDPR (consent).

c) Conclusion, initiation and performance of contracts

Your personal data will be processed if you conclude a contract (e.g. rental contract) on or in connection with the website or if such a contract is initiated in connection with the website. Processing within the meaning of section 2.c) also includes any processing relating to contractual relationships that arise in connection with (i) the user’s registration on the website, or (ii) in connection with the use of services (e.g. software) (see also below on Reos services). The purpose of data processing is the initiation, conclusion, performance and fulfilment of contracts with you. The legal basis for the processing of the aforementioned personal data is Art. 6 para. 1 sentence 1 lit. b. GDPR (contract or pre-contractual measures). In this context, we also process information provided by you regarding your official identification documents (e.g. identity card, passport, registration certificate) according to a strict need-to-know principle in order to verify certain information about you (name, date and place of birth, address). The purpose of this data processing relates to the secure identification of your person, fraud prevention and compliance requirements.The legal basis for the processing of the aforementioned personal data concerning your official identification documents is Art. 6 para. 1 sentence 1 lit. b. GDPR (contract or pre-contractual measures), Art. 6 para. 1 sentence 1 lit. c. GDPR (contract or pre-contractual measures), Art. 6 para. 1 sentence 1 lit. c. GDPR (legal obligation) and Art. 6 para. 1 sentence 1 lit. f. GDPR (legitimate interest, whereby the interests arise from the aforementioned purposes, secure identification, fraud prevention and compliance requirements). If, for example, you register on the website and/or in connection with the rental properties offered on the website for the use of Reos services, we process personal data for the purpose of contract fulfilment (Art. 6 para. 1 sentence 1 lit. b GDPR; contract or pre-contractual measures) (i) in relation to the terms of use agreed with you regarding Reos services, respectively (ii) in relation to other related contracts (we may also process personal data in this context if we or a contractual partner of the user (e.g. landlord) has a legitimate interest (Art. 6 para. 1 sentence 1 lit. f. GDPR) in relation to the relevant data processing).
Without processing the aforementioned data, it may not be possible to conclude a rental agreement, for example.

d) Newsletter

 If a user consents to receiving newsletters or similar advertising information, we use the data to which the corresponding consent relates (e.g. the email address when sending newsletters) on the basis of Art. 6 para. 1 sentence 1 lit. a GDPR (consent) in order to be able to provide the user with the corresponding information. If a user requests a newsletter on the website, they will receive a confirmation or authorisation email from us in which they are asked to click on the link contained in this email to confirm that they actually wish to receive the newsletter. Only after this confirmation will we send the user the corresponding newsletter (so-called double opt-in procedure). The user can unsubscribe from the newsletter at any time by clicking on the (unsubscribe) link provided for this purpose, which is included in every newsletter.

e) Cookies and other (analysis) tools

aa) Cookies

We use cookies on the website. Cookies are small text files that are stored in the browser’s memory. When individual pages of the website are called up, we may use so-called technically necessary cookies to move around the website, use basic functions and ensure the security of the website; these cookies do not collect information about you for marketing purposes, nor do they store which websites you have visited. The legal basis for the use of these technically necessary cookies is Art. 6 para. 1 sentence 1 lit. f GDPR (legitimate interest; the legitimate interest follows from the above-mentioned purposes, in particular session control, optimisation of website use and ensuring the security of the website) in conjunction with Art. 25 para. 2 no. 2 GDPR. § Section 25 para. 2 no. 2 TTDSG.

If and to the extent that we also use other, non-technically necessary cookies in relation to your visit to the website, we will always obtain your consent to such cookies in advance (via a consent management tool) on the website. If you do not give your consent, such cookies will not be used in relation to your visit to the website. The legal basis for the processing of personal data associated with such cookies is Art. 6 para. 1 sentence 1 lit. a GDPR (consent) (in conjunction with § 25 para. 1 sentence 1 TTDSG).

You can usually configure the usual browsers so that no cookies are stored. However, deactivating cookies may mean that you cannot use all the functions of our website (in full or without disruption).

bb) Matomo

We use the open source program Matomo, a web analysis tool, as part of our legitimate interest in a technically flawless online offer and its economically efficient design and optimisation in accordance with Art. 6 para. 1 lit. f GDPR.

i) Matomo with tracking cookies

Matomo uses cookies to optimise the website. Cookies are text files that are stored on your computer and that transmit information about the use of the site, including the shortened IP address of the user, to the provider. However, the user’s IP address is immediately anonymised by the corresponding setting so that the user cannot be identified by the provider. The data collected in this way will not be passed on to third parties by the operator of this website.

As is generally the case, you can prevent the use of cookies by selecting the appropriate settings in your browser. Instructions in German can be found at: http://www.akademie.de/wissen/do-not-track-datenschutz.

In this case, however, the use of this and other websites may be impaired.

If you do not agree to the storage and analysis of your data, you have the option below to object to the analysis by Matomo.

Opt-out completed; your visits to this website will not be recorded by the web analysis tool. Please note that the Matomo deactivation cookie on this website will also be deleted if you remove the cookies stored in your browser. In addition, if you use a different computer or a different web browser, you will have to complete the deactivation procedure again.

Your visit to this website is not currently recorded by Matomo web analytics. Activate this checkbox for opt-in.

 

cc. Tools from Google

i) Google Analytics for Firebase (app analysis)

Based on your consent, we use Google Analytics for Firebase technology from Google for analysis purposes in relation to the mobile app, which is offered in connection with the website or in connection with services provided by us. This tool enables us to analyse the use of the app. Information about the use of the app (e.g. what is clicked on within the app) and the user’s end device is recorded, transmitted to Google and processed there. In this context, Google uses the advertising ID of the corresponding end device. The information generated may also be transferred to Google servers in the USA and processed there. Google will use this information to analyse the use of the aforementioned app for us.

You can restrict the use of your device’s advertising ID in the device settings of your mobile device. You can also deactivate the use of the tool again in the settings of our Consent Management Tool (see Cookie Settings) after initially giving your consent.

You can find more information about Google Analytics for Firebase here: https://support.google.com/firebase/answer/6318039.

ii) Further information

The service provider of the aforementioned Google tools is Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).

The legal basis for the aforementioned processing of your personal data with regard to Google Analytics for Firebase is Art. 6 para. 1 sentence 1 lit. a GDPR (consent).

In connection with the data processing described above regarding Google Analytics for Firebase, Google may also process data in the USA. An adequacy decision of the EU Commission of 10 July 2023 exists for the USA.

You can find further information here: http://www.google.de/intl/de/policies/privacy

dd. Facebook tools (pixel / custom audiences)

Furthermore, the website uses certain Facebook advertising measures of Meta Platforms Ireland Ltd (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; ‘Meta’). By integrating the so-called ‘Facebook Pixel’ on our website, we can display our advertising measures (‘Facebook Ads’) to users of our website and the social network Facebook and measure and evaluate their success (‘Conversion Tracking’). This connection between Facebook and our website takes place technically via the ‘Facebook Pixel’. The legal basis for the processing of your personal data is Art. 6 para. 1 sentence 1 lit. a GDPR, i.e. the integration in relation to your visit to the website always takes place only after your consent.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Facebook server when you visit our website. By integrating the Facebook pixel, Meta receives the information that you have visited our website or clicked on one of our adverts. If you are registered with a Facebook service, Meta can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, it is possible for Meta to find out your IP address and other identifying features and use them to create a profile.

In connection with the data processing described above, data may also be processed by Meta in the USA. An adequacy decision of the EU Commission of 10 July 2023 exists for the USA.

You can withdraw your consent to the relevant tools at any time without this affecting the lawfulness of processing up to the point of withdrawal. You can stop using the relevant tool in our Consent Management Tool:
Cookie Settings

Cookie settings
In addition, users who are logged in to Facebook can also make the appropriate settings in their Facebook account.

Based on your consent (see above), we also use the remarketing function ‘Custom Audiences’, which also uses the Facebook pixel and displays interest-based adverts when you visit our website or other websites that have also integrated the Facebook pixel. This allows us to show you adverts that are of interest to you in order to make our website more interesting for you and to market our services.

You can find more information here:

– https://de-de.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0
– https://developers.facebook.com/docs/meta-pixel

ee) Amazon Web Services

For our data processing, we use the cloud solution Amazon Webservices, an offer from Amazon Web Services Inc. 410 Terry Avenue North, Seattle WA 98109, United States.

The legal bases for this data processing are
– our contractual or pre-contractual legal relationships with you pursuant to Art. 6 para. 1 lit. b GDPR and
– our legitimate interest in a technically flawless online offer and its economically efficient design and optimisation in accordance with Art. 6 para. 1 lit. f GDPR.

As we use this provider as a cloud solution, it is possible for this cloud provider to take note of our data. This includes data that can identify a person with reasonable effort (‘personal data’). This personal data is basically all data that you share with us when using the website and in connection with our general communication and which we then process or enter using this cloud provider.

This may include contact data (e.g. email address or telephone number), billing data (name, billing address, payment method and bank details), data relating to related third-party accounts (such as the email address or username for a related PayPal, Google or Facebook account), scanned identification documents provided to us (e.g. ID card, driving licence, passport or official company registration documents), and any other personal data (if you have provided us with such data). However, our cloud provider will not analyse or use this data.

We have concluded an order processing contract with this provider, according to which this provider processes your data only on our behalf within the framework of the GDPR and in accordance with our instructions.

When using this provider, your data may be transferred to the USA. However, we have ensured that your data will only be transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the ECJ, this is a legal basis for the transfer of data to the USA. This provider is also certified in accordance with the EU-US Data Privacy Framework. This means that data can be transferred to the USA in a legally secure manner on the basis of the adequacy decision concluded on 10 July 2023.

Further information on data processing by this provider can be found in their privacy policy at https://aws.amazon.com/de/privacy/?nc1=f_pr.

3. Disclosure of personal data

The personal data collected in the course of using the website will – subject to other cases expressly described in this data protection notice – not be passed on to third parties or transmitted in any other way without your consent.

We may pass on your personal data to third parties if we are legally obliged to do so (e.g. at the request of a court or law enforcement agency). The legal basis for such data processing is Art. 6 para. 1 sentence 1 lit. c GDPR (legal obligation).

We may also use technical service providers who process personal data on our behalf (e.g. IT service providers). These service providers process the corresponding personal data exclusively in accordance with our instructions (processor; Art. 28 GDPR).

We may transmit data to landlords of the flats offered on the website who differ from us, e.g. to initiate a tenancy agreement if you initiate such a process on the website. The legal basis for such data processing is generally Art. 6 para. 1 sentence 1 lit. b GDPR (contract or pre-contractual measures).

4. Duration of storage of personal data.

Insofar as no other storage period results from the other provisions of this data protection notice, your personal data will generally only be stored for as long as is necessary to process your enquiries to us or to achieve the respective processing purpose, and thereafter only to the extent and insofar as we are obliged to do so due to mandatory statutory storage obligations. If we no longer need your data for the purposes described above, it will only be stored for the respective statutory retention period and will not be processed for other purposes. In particular, we delete the data processed by us (photocopies) of your official identification documents after comparing them with the information provided by you; this takes place no later than 24 hours after data collection.

5. Your rights

You have the right to request information from us about the personal data we have stored about you. Insofar as the legal requirements are met, you also have the right to rectification, erasure or restriction of processing of the relevant personal data, the right to object to the processing of your personal data by us and the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format (you can transmit this data or have it transmitted to other bodies).

If you have given your consent to the use of personal data, you can revoke this consent at any time for the future.

If you are of the opinion that the processing of your personal data by us violates the applicable data protection law, you can complain to the (competent) supervisory authority for data protection.

6. Contact

You can contact us using the contact details provided in section 1. For all questions on the subject of data protection (including the assertion of rights in accordance with section 5), you can also contact our data protection officer named in section 1 directly.

7. Data security

AAM2CORE maintains up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge of it. These measures are adapted to the current state of the art.