Contact details of the controller
CGFT – Credit Guarantee Fund Tajikistan GmbH
Controller: Silja Jackson
10623 Berlin, Germany
is the controller of these websites.
You can find further information about our company and its authorized representatives in the imprint of our website.
Which personal data do we process?
Legal basis for data processing
To show you our websites and related services, we process your personal data in accordance with the following legal basis:
– consent (Art. 6 Abs. 1 lit. a) GDPR)
– for the performance of a contract (Art. 6 Abs. 1 lit. b) GDPR
– for the purposes of the legitimate interests (Art. 6 Abs. 1 lit. f) GDPR)
– for compliance with a legal obligation (Art. 6 Abs. 1 lit. c) GDPR)
To help you understand the legal basis for each type of data processing, we will name the respective legal basis in each section of data processing further down this page.
If we process personal data based on your consent, you have the right to withdraw your consent at any time. Your withdrawal of consent shall not affect the lawfulness of processing before your withdrawal.
If our processing is based on legitimate interests, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR.
Data processing when visiting our websites
If you visit our websites we need to process your personal data to display the content of our websites on your device.
To display the websites with your browser we need to process the IP address of the device you are using.
The legal basis for this data processing is Art. 6 Abs. 1 lit. b) GDPR. Without processing your IP address, we cannot display the content of our websites.
We also process additional information about your device. We have a legal obligation to ensure the confidentiality and integrity of the IT systems we process personal information with. To comply with this, we have a legitimate interest to keep log files containing the following information:
– IP address of the accessing device (kept for a maximum of 7 days)
– operating system of the accessing device
– browser version of the accessing device
– Name of the retrieved file
– Date and time of access
– amount of data transferred
– Referrer URL
We will delete the IP address after 7 days from all our systems used in connection with the operation of this website at the latest. We can then no longer establish a personal reference from the remaining data.
The data is also used to identify and correct errors on the website.
The legal basis for processing this data is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest is ensuring the integrity, confidentiality and availability of the data processed on our website.
If you send us an email, we will save the data it contains. At the end of each year, we check whether further storage is required or whether there are retention requirements for emails. Storage obligations can arise in particular from the German tax code (AO) and commercial law (HGB).
Note: The transmission of emails is unencrypted.
The legal basis for data processing for the purpose of contacting us is Art. 6 Para. 1 lit. f GDPR. If contacting us is aimed at concluding a contract, Art. 6 Para. 1 lit. b GDPR is the additional legal basis for data processing.
Purposes of processing personal data
We process the aforementioned data for the operation of our website and for the fulfillment of contractual obligations towards our customers or to protect our legitimate interests.
For inquiries from you outside of an active customer relationship, we process the data for the purposes of sales and advertising. You can object to the use of your personal data for advertising purposes at any time.
If you are not an active customer of ours, we process your inquiries data for the purpose of sales and advertising. You can object to the use of your personal data for advertising purposes at any time.
If you voluntarily provide us with additional personal data in web forms, via email or in similar ways, which exceed the personal data we need to fulfill our contractual obligations, we assume that processing this information is in your interest.
Recipient / transfer of data
Data you provide us with will not get passed on to third parties. In particular, your data will not be passed on to third parties for advertising purposes.
However, we may use service providers for the operation of this websites or for other products or services we provide. These service providers might occasionally have access to your personal information. We select our service providers carefully – especially with regard to data protection and data security – and take all data protection measures required for permissible data processing.
Data processing outside the European Union
If we process personal data outside the European Union, you can see this in the previous explanations, especially in the section for data transfers.
Data protection officer
We have named a data protection officer who you can reach here:
CGFT – Credit Guarantee Fund Tajikistan GmbH
Data Protection Officer
Your rights as a data subject
You have the right to information about your personal data. You can contact us at any time for information. Please note that we may ask for proof that you are the person you claim to be, if your request for information is not made in writing.
You also have the right to correction, deletion or restriction of processing, insofar as you are legally entitled to do so.
Finally, you have a right to object to processing within the legal requirements.
There also exists a right to data portability within the legal requirements.
Deletion of data
We generally delete personal data when further storage is no longer required. A requirement may exist, in particular, if the data is still required for us to be able to perform contractual services, to be able to check and grant or reject warranty and possibly guarantee claims. In the case of statutory retention requirements, deletion is only considered after the respective retention obligation has expired.
Right to complain to a supervisory authority
You have the right to complain about the processing of personal data by us to a data protection supervisory authority.
As of May 25, 2020