Privacy Policy

We are very pleased about your interest in our company. Data protection is of particularly high importance for the management of our organization. The use of our website is generally possible without providing any personal data. However, if a data subject wishes to use special services of our company through our website, the processing of personal data may become necessary. If the processing of personal data is required and there is no legal basis for such processing, we generally obtain consent from the data subject.
The processing of personal data — for example, the name, address, email address, or telephone number of a data subject — is always carried out in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection regulations applicable to this website. With this privacy policy, our company aims to inform the public about the nature, scope, and purpose of the personal data we collect, use, and process. Furthermore, data subjects are informed of their rights through this privacy policy.
Southern Horizon Relocation, as the controller responsible for processing, has implemented numerous technical and organizational measures to ensure the most complete protection possible for personal data processed via this website. Nevertheless, internet-based data transmissions may generally have security vulnerabilities, so absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us via alternative means, for example by telephone.
1. Definitions
The privacy policy of Southern Horizon Relocation is based on the terminology used by the European legislator when issuing the General Data Protection Regulation (GDPR). Our privacy policy is intended to be easily readable and understandable for the public as well as our customers and business partners. To ensure this, we would like to explain the terms used in advance.
We use, among others, the following terms in this privacy policy:
a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified — directly or indirectly — in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
b) Data subject
A data subject is any identified or identifiable natural person whose personal data is processed by the controller responsible for the processing.
c) Processing
Processing means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
d) Restriction of processing
Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future.
e) Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person — in particular to analyze or predict aspects concerning job performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
f) Pseudonymization
Pseudonymization means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
g) Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
h) Processor
Processor means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
i) Recipient
Recipient means a natural or legal person, public authority, agency, or another body to which personal data is disclosed, whether or not it is a third party. However, public authorities that may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law are not regarded as recipients.
j) Third party
Third party means a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
k) Consent
Consent means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes — by a statement or by a clear affirmative action — by which the data subject signifies agreement to the processing of personal data relating to him or her.


2. Name and Address of the Controller Responsible for Processing
The controller within the meaning of the General Data Protection Regulation, other applicable data protection laws of the member states of the European Union, and other data protection provisions is:
Southern Horizon Relocation c/o Avionikzentrale GmbH, Terminalstrasse Mitte 18, 85356 München-Flughafen, Deutschland / Bayern;


3. Cookies

The website of Southern Horizon Relocation uses cookies. Cookies are text files that are stored on a computer system via an internet browser.

Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters that allows websites and servers to associate the cookie with the specific internet browser in which it was stored. This enables visited websites and servers to distinguish the individual browser of the data subject from other internet browsers containing different cookies. A specific internet browser can be recognized and identified via its unique cookie ID.

By using cookies, Southern Horizon Relocation can provide users of this website with more user-friendly services that would not be possible without the cookie setting.

Using cookies allows us to optimize the information and offers on our website for the user. As already mentioned, cookies enable us to recognize the users of our website. The purpose of this recognition is to make the use of our website easier for users. For example, the user of a website that uses cookies does not need to re-enter login data each time they visit the site, as this is handled by the website and the cookie stored on the user’s computer system. Another example is the cookie of a shopping cart in an online shop. The online shop remembers the items that a customer placed in the virtual shopping cart via a cookie.

The data subject can prevent the setting of cookies by our website at any time by adjusting the settings of the internet browser used, thus permanently objecting to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the internet browser used, not all functions of our website may be fully usable.
 
4. Collection of General Data and Information

The website of Southern Horizon Relocation collects a series of general data and information with each visit by a data subject or an automated system. These general data and information are stored in the server log files. The following may be collected:
(1) browser types and versions used,
(2) the operating system used by the accessing system,
(3) the website from which an accessing system reaches our website (referrer),
(4) the sub-pages accessed by the accessing system,
(5) the date and time of access to the website,
(6) an internet protocol address (IP address),
(7) the internet service provider of the accessing system, and
(8) other similar data and information that serve to defend our information technology systems against attacks.

When using these general data and information, Southern Horizon Relocation does not draw conclusions about the data subject. Instead, this information is needed to:
(1) deliver the contents of our website correctly,
(2) optimize the content of our website and its advertising,
(3) ensure the long-term functionality of our IT systems and website technology, and
(4) provide the necessary information for law enforcement in case of a cyberattack.

These anonymously collected data and information are therefore evaluated statistically by Southern Horizon Relocation and also with the aim of increasing data protection and data security in our organization, ultimately ensuring an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

5. Registration on Our Website

The data subject has the possibility to register on the website of the controller by providing personal data. The specific personal data transmitted to the controller depends on the input mask used during registration. The personal data entered by the data subject are collected and stored exclusively for internal use by the controller (Leonard Grabner) and for its own purposes. If partner companies require any type of data from our customer, the customer will be asked specifically. 

When registering on the controller’s website, the IP address assigned by the Internet Service Provider (ISP), as well as the date and time of registration, are also stored. The storage of this data is necessary to prevent misuse of our services and, if necessary, to enable criminal offenses to be clarified. In this respect, the storage of this data is required to secure the controller. This data is not passed on to third parties unless there is a legal obligation to do so or the transfer serves law enforcement purposes.

Registration by the data subject with voluntary provision of personal data enables the controller to offer the data subject content or services that can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have them completely deleted from the data stock of the controller.

The controller provides every data subject with information upon request as to what personal data is stored about them. Furthermore, the controller corrects or deletes personal data at the request or indication of the data subject, provided that no statutory retention obligations prevent this. All employees of the controller are available to the data subject in this context.

6. Subscription to Our Newsletter

On the website of Southern Horizon Relocation, users are given the opportunity to subscribe to the company’s newsletter. The personal data transmitted to the controller when ordering the newsletter is specified in the input mask used for this purpose.

Southern Horizon Relocation informs its customers and business partners regularly by means of a newsletter about offers of the company. The newsletter can only be received by the data subject if:
(1) the data subject has a valid email address, and
(2) the data subject registers for the newsletter.

For legal reasons, a confirmation email in the double opt-in procedure is sent to the email address first entered by a data subject for newsletter delivery. This confirmation email is used to verify whether the owner of the email address, as the data subject, has authorized the receipt of the newsletter.

During newsletter registration, the IP address assigned by the ISP and the date and time of registration are also stored. The collection of this data is necessary to trace (possible) misuse of the email address of a data subject at a later time and therefore serves the legal protection of the controller.

The personal data collected as part of a newsletter registration is used exclusively for sending our newsletter. Subscribers may also be informed by email if necessary for the operation of the newsletter service or registration—such as in case of changes to the newsletter offering or technical adjustments. No personal data collected as part of the newsletter service is passed on to third parties. Subscription to our newsletter can be canceled by the data subject at any time. Consent to the storage of personal data provided for newsletter distribution may also be withdrawn at any time. For this purpose, a corresponding link can be found in every newsletter. Additionally, the data subject may unsubscribe directly on the website of the controller or notify the controller via another communication method.

7. Newsletter Tracking

The newsletters of Southern Horizon Relocation contain so-called tracking pixels. A tracking pixel is a miniature graphic embedded in emails that are sent in HTML format to enable log file recording and log file analysis. This allows statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, Southern Horizon Relocation may see whether and when an email was opened by a data subject and which links contained in the email were accessed.

Such personal data collected via tracking pixels contained in newsletters is stored and evaluated by the controller in order to optimize newsletter delivery and to better adapt the content of future newsletters to the interests of the data subject. These personal data are not disclosed to third parties. Data subjects are entitled, at any time, to withdraw the separate declaration of consent issued through the double opt-in procedure. After a withdrawal, these personal data are deleted by the controller. A cancellation of the newsletter subscription is automatically interpreted as withdrawal of consent.

8. Contact Options via the Website

The website of Southern Horizon Relocation contains information enabling a quick electronic contact to our company, as well as direct communication with us, including a general address for so-called electronic mail (email address). When a data subject contacts the controller via email or a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data transmitted on a voluntary basis are stored for the purpose of processing the inquiry or contacting the data subject. No personal data will be transferred to third parties.

9. Routine Erasure and Blocking of Personal Data

The controller processes and stores personal data of the data subject only for the period necessary to achieve the purpose of storage or as long as required by European or national legislators in laws or regulations to which the controller is subject.

If the storage purpose ceases to apply or if a storage period prescribed by the European or national legislator expires, the personal data are routinely blocked or deleted in accordance with the legal requirements.

10. Rights of the Data Subject

Every data subject has the rights granted by the European legislator. These include:

a) Right of Confirmation

The data subject has the right to obtain confirmation from the controller as to whether personal data concerning them are being processed. If a data subject wishes to exercise this right, they may contact any employee of the controller at any time.

b) Right of Access

The data subject has the right to obtain information at any time about the personal data stored about them and a copy of that information from the controller.
This includes:

the purposes of the processing,

the categories of personal data concerned,

the recipients or categories of recipients to whom the data have been or will be disclosed,

the planned duration of storage,

the existence of the right to rectification, erasure, restriction of processing, or objection,

the existence of a right to lodge a complaint with a supervisory authority,

all available information about the origin of the data if not collected from the data subject, and

the existence of automated decision-making, including profiling.

The data subject also has the right to know whether personal data have been transferred to a third country or an international organization.

c) Right to Rectification

The data subject has the right to request the immediate correction of incorrect personal data concerning them. Additionally, they have the right to request the completion of incomplete data.

d) Right to Erasure (“Right to be Forgotten”)

The data subject has the right to demand that the controller erase personal data concerning them without undue delay if:

the data are no longer necessary for the purposes for which they were collected,

the data subject withdraws consent and there is no other legal basis for processing,

the data subject objects to the processing,

the processing is unlawful,

erasure is required by law,

or the personal data were collected in relation to the offer of information society services.

e) Right to Restriction of Processing

The data subject has the right to request restriction of processing if:

the accuracy of the data is contested,

the processing is unlawful and the data subject requests restriction instead of erasure,

the controller no longer needs the data but the data subject requires them for legal claims,

or the data subject has objected to processing pending verification.

f) Right to Data Portability

The data subject has the right to receive their personal data in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance.

g) Right to Object

The data subject has the right to object at any time to the processing of personal data on grounds relating to their particular situation. This applies especially to profiling based on such provisions.

h) Automated Individual Decision-Making, Including Profiling

The data subject has the right not to be subject to a decision based solely on automated processing — including profiling — that produces legal effects or similarly significantly affects them.

i) Right to Withdraw Consent

The data subject has the right to withdraw their consent to the processing of personal data at any time.

11. Data Protection for Applications and the Application Process

The controller collects and processes the personal data of applicants for the purpose of handling the application procedure. Processing may also occur electronically. This is particularly the case when an applicant submits corresponding application documents to the controller by electronic means, for example by email or via a web form on the website.

If the controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, provided that no other legitimate interests of the controller oppose deletion. Other legitimate interests may include, for example, the burden of proof in proceedings under the General Equal Treatment Act (AGG).

12. Data Protection Provisions on the Use and Application of Google Analytics

The controller has integrated Google Analytics on this website. Google Analytics is a web analytics service. Web analytics is the collection, gathering, and evaluation of data on the behavior of visitors to websites. A web analytics service collects, among other things, data on from which website a data subject has come to a website (“referrer”), which subpages were accessed, and how often and for what duration a subpage was viewed.

For web analytics via Google Analytics, the controller uses the “_ga” cookie. By setting the cookie, Google is enabled to analyze use of our website. With each page request, personal data, including the IP address of the internet connection used by the data subject, is transmitted to Google in the United States. Google may pass on this personal data collected via the technical process to third parties.

The data subject may prevent the setting of cookies at any time by adjusting their browser settings accordingly. Such a setting would also prevent Google from setting a cookie on the data subject’s IT system. In addition, a cookie already set by Google Analytics can be deleted at any time via the browser or other software programs.

Furthermore, the data subject may object to and prevent the collection of data generated by Google Analytics relating to the use of this website, as well as the processing of this data by Google. For this, the data subject must download and install a browser add-on from Google.

This browser add-on informs Google Analytics that data and information about website visits may not be transmitted to Google Analytics. However, installation of the browser add-on is considered an objection only by Google. If the data subject’s IT system is deleted, formatted, or reinstalled at a later date, the data subject must reinstall the browser add-on to disable Google Analytics again.

13. Data Protection Provisions on the Use and Application of Google Remarketing

The controller has integrated Google Remarketing services on this website. Google Remarketing is a function of Google Ads that allows a company to display advertisements to internet users who have previously visited the company’s website. The inclusion of Google Remarketing therefore allows a company to create user-related advertising and thus show interest-relevant advertisements to the respective internet user.

The operating company of Google Remarketing services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Remarketing works by placing a cookie on the data subject’s device, enabling Google to recognize the visitor when they subsequently call up websites that are also part of the Google advertising network. With each visit to such a website, the data subject’s browser automatically identifies itself to Google. As part of this technical procedure, Google obtains knowledge of personal data such as the IP address or browsing behavior of the user, which Google uses for interest-based advertising.

The setting of cookies by the data subject's browser can be prevented permanently by adjusting browser settings. Additionally, a cookie already set may be deleted at any time.

The data subject may also object to interest-based advertising by Google by accessing the advertisement settings provided by Google and configuring them accordingly.

14. Legal Basis for Processing
Art. 6(1)(a) GDPR serves as our company’s legal basis for processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, such as in processing operations required for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6(1)(b) GDPR. The same applies to processing operations necessary for pre-contractual measures, for example, in cases of inquiries regarding our products or services. If our company is subject to a legal obligation that requires the processing of personal data, such as to fulfill tax obligations, the processing is based on Art. 6(1)(c) GDPR. In rare cases, processing personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor in our company were injured and their name, age, health insurance data, or other vital information had to be provided to a doctor, hospital, or other third parties. In such cases, the processing would be based on Art. 6(1)(d) GDPR. Finally, processing operations may be based on Art. 6(1)(f) GDPR. This legal basis applies to processing operations not covered by any of the aforementioned legal bases, where processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, rights, and freedoms of the data subject do not override them. Such processing operations are permitted, particularly because they are explicitly mentioned by the European legislator, who considered that a legitimate interest may exist if the data subject is a customer of the controller (Recital 47, second sentence GDPR).

15. Legitimate Interests Pursued by the Controller or a Third Party
If the processing of personal data is based on Art. 6(1)(f) GDPR, our legitimate interest is the conduct of our business activities for the benefit of the well-being of all our employees and shareholders.

16. Duration for which Personal Data will be Stored
The criterion for the duration of the storage of personal data is the respective statutory retention period. After the expiration of this period, the corresponding data will be routinely deleted, provided it is no longer required for contract fulfillment or contract initiation.

17. Legal or Contractual Requirements for Providing Personal Data; Necessity for Contract Conclusion; Obligation of the Data Subject to Provide Personal Data; Possible Consequences of Non-Disclosure
We inform you that providing personal data may be partly legally required (e.g., tax regulations) or may also result from contractual agreements (e.g., information about the contractual partner). In some cases, the conclusion of a contract may require that a data subject provides us with personal data, which must then be processed by us. For example, the data subject is obliged to provide personal data if our company enters into a contract with them. Failure to provide personal data would result in the contract with the data subject not being concluded. Before providing personal data, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of personal data is legally or contractually required, whether it is necessary for the conclusion of a contract, whether there is an obligation to provide personal data, and what the consequences of not providing the personal data would be.

18. Existence of Automated Decision-Making
As a responsible company, we do not use automated decision-making or profiling.

This privacy policy was created using the privacy policy generator of DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as External Data Protection Officer, in cooperation with data protection lawyer Christian Solmecke.