1. Data protection at a glance
The following notice provides a simple overview of what happens to your personal data when you visit our website, send us an e-mail or call us. In addition, we inform you about your rights and name the responsible contact persons.
Personal data is all data with which you can be personally identified, e.g. name, address, e-mail address, IP address, data on usage behaviour.
Who is responsible for the data collection on this website?
The data processing on our website lilianlabs.com, or the app “LILIAN Manager”, is carried out by us, Lilian Labs GmbH, Salzdahlumer Straße 126, 38126 Braunschweig, as the responsible party or “controller” within the meaning of Art. 4 No. 7 EU GDPR (hereinafter “us” or “we”). You can find our other contact details in the legal notice on our website.
What data do we collect?
If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass on this data without your consent.
Customer and contract data
For the processing of our contractual relationship and when using the online service for the evaluation of the measurement data as well as when using our app Lilian Manager, the following data are collected (as far as you have entered them in full):
- E-mail address
- Phone number
After logging in, your data will be linked to the measurement data and a date/time stamp. If you have stored personal comments on the measurement, these will also be saved.
Use of online services
When you use our online portal, the provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer – time of the server request
- IP address
How and for what purpose do we collect your data?
Processing of your personal data for the establishment, content-related design or amendment of the legal relationship, Art. 6 (1) (b) GDPR
When concluding a contract and using our online portal, we collect, process and use your data insofar as it is necessary for initiating the contract, concluding the contract or using our online services.
Processing of your personal data for informational use based on legitimate interests, Art. 6 (1) (f) GDPR
In the case of purely informational use of our website, i.e. if you do not register, log in or otherwise transmit additional information to us, we initially only collect and process the personal data that your browser and your internet access provider transmit to our server. This is data that is technically necessary to display the website to you and to be able to guarantee the stability and security of our offer.
Specifically, this is the shortened and thus anonymised IP address (due to the shortening, a personal reference is excluded), the website which you last visited (referrer), the websites which you have visited offered by Lilian Labs GmbH, the names of the retrieved files, the date and time of the retrieval, the operating system and browser version of your PC. We also store the aforementioned data in log files. This storage takes place in order to ensure the functionality of the website. We also use the data to optimise our website and ensure its security. However, the aforementioned data is not stored together with other personal data. Log files are stored for a maximum of 7 days.
To provide the website functions and to meet our own obligations, we pass on your data to our service providers on the one hand and on the other hand, we receive data from them. This also applies if you contact us via the specified channels (e-mails, forms) or use other offers on our website.
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
The purpose of reCAPTCHA is to verify whether data entry on our websites (e.g. in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run entirely in the background. Website visitors are not made aware that an analysis is taking place.
The data processing is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from SPAM.
How long do we store your data for and what criteria are used to determine the storage duration?
In the case of purely informational use, we store the aforementioned personal data for as long as this is necessary for the provision of the service or use. They are deleted after the respective purpose has been achieved.
The data stored in log files is deleted after 7 days at the latest. In addition, the personal data stored in log files is anonymised.
If there are legal or contractual retention periods (e.g. in the case of a usage or contractual relationship), we are obliged to store the data until the expiry of these periods. We delete the corresponding data when the corresponding obligations have expired or been discontinued. These obligations arise in particular in cases of legal storage obligations, in particular from commercial and tax law (cf. §§ 147 AO General Tax Code and 257 HGB German Commercial Code).
We store your data for advertising purposes until you object to its use, you revoke your consent or it is no longer legally permissible to use it. We only store your other data for as long as we need it to fulfil the specific purpose (e.g. to fulfil or process a contract) and delete it once the purpose no longer applies.
Who are the recipients of data and which data sources are used for this purpose?
To the extent permitted by law (as described above), we share personal data with external service providers and third parties in the following categories:
- IT service provider to maintain our IT infrastructure
- Public authorities in justified cases (e.g. social insurance institutions, financial authorities, police, public prosecutor’s office, supervisory authorities).
Cooperation with processors and third parties
If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transfer it to them or otherwise grant them access to the data, this will only be done on the basis of legal permission (e.g. if a transfer of the data to third parties, such as to payment service providers, is required pursuant to Art. 6 (1) (b) GDPR), or you have specifically consented to this, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called “order processing contract”, this is done on the basis of Art. 28 GDPR.
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if this is done in the context of using third-party services or disclosing or transferring data to third parties, this is only done if it is carried out to meet our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or allow the processing of data in a third country if the special requirements of Art. 44 ff. GDPR are met. This means that the processing is carried out, for example, on the basis of special guarantees, in particular the data importer ensures an adequate level of data protection in accordance with the EU standard contractual clauses for the transfer of personal data to data processors in third countries. A copy of the standard contractual clauses prescribed by the EU Commission can be found on the Internet at:
The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected.
What rights do you have regarding your data?
Lilian Labs GmbH is responsible for the processing of your data, unless otherwise stated. You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have a right to request the correction, blocking or deletion of this data. You can contact us at any time at the following address with regard to this and other questions on the subject of data protection: Lilian Labs GmbH, Salzdahlumer Straße 126, 38126 Braunschweig. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Analysis tools and tools of third-party providers
When visiting our website, your surfing behaviour can be statistically evaluated. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You will find detailed information on this in the following privacy notice.
You can object to this analysis. We will inform you about how to object in this privacy notice.
General notes and mandatory information
We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. It is not possible to completely protect data against access by third parties.
Note on the responsible body
The data controller for this website is:
Lilian Labs GmbH
Salzdahlumer Straße 196
Phone: +49 531 38727436
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses or similar).
Revocation of your consent to data processing
Many data processing operations are only possible with your explicit consent. You can revoke consent you have already given at any time. All you need to do is send us an informal message by e-mail. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the data subject has a right of appeal to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the State Data Protection Commissioner of the federal state in which our company is based. A list of the data protection officers and their contact details can be found in the following link:
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right at any time to receive free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if applicable, a right to correction, blocking or deletion of this data. You can contact us at any time at the address given in the legal notice for this purpose and if you have any other questions on the subject of personal data.
Objection to advertising e-mails
We hereby object to the use of contact data, published under our obligations to provide specific information in the legal notice, for the transmission of advertising and information material that we have not expressly requested. The operators of these pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example by spam e-mails.
2. LILIAN Manager
GDPR: Responsible Body
Germany: Lilian Labs GmbH, Salzdahlumer Str. 196, 38126 Braunschweig, Germany; Dr. Nüsken Chemie GmbH, Poststrasse 14, D-59174 Kamen, Germany; WTG Deutschland GmbH, Am Silberg 3, 59494 Soest, Germany
Swiss: Niederer Schneider AG, Breitenstrasse 16b, 8500 Frauenfeld, Swiss; Dr. Nüsken Chemie GmbH, Poststrasse 14, D-59174 Kamen, Germany
Austria: Dr. Nüsken Chemie GmbH, Poststrasse 14, D-59174 Kamen, Germany
Norway: EnviroProcess Sweden AB, Borgås gårdsväg 9, 434 39 Kungsbacka, Sweden
Sweden: EnviroProcess Sweden AB, Borgås gårdsväg 9, 434 39 Kungsbacka, Sweden
Danmark: EnviroProcess Sweden AB, Borgås gårdsväg 9, 434 39 Kungsbacka, Sweden
Finland: EnviroProcess Sweden AB, Borgås gårdsväg 9, 434 39 Kungsbacka, Sweden