Lanolinfabrik Berlin
Privacy Policy

We take your privacy and the associated protection of your data very seriously. Personal data will always be processed in compliance with the General Data Protection Regulation (GDPR) and the other data protection regulations to which we are subject. Information about how your personal data will be handled when you visit our website is provided below. To provide the functions and services of our offer, we need to acquire personal data concerning you. What data concerning you we acquire, what they are necessary for and what rights you have with respect to your data is explained in the following.

Terms explained

Our Data Privacy Statement is based on the terms defined in Art. 4 of the GDPR. According to Art. 4 No. 1 GDPR, "personal data" means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data or an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Name and address of the controller

The controller responsible for the processing of personal data on this website is (cf. the legal notice):

SGI Immobilien Entwicklung und Verwaltung GmbH
Köpenicker Straße 125
10179 Berlin
Tel: +49 30 278 710 - 0
Fax: +49 30 278 710 – 31

Purposes of data processing and transmission to third parties

We process your personal data only for the purposes mentioned in this Data Privacy Statement. Your personal data will be transmitted to any third party exclusively for the purposes mentioned.

As a rule, your personal data will be transmitted to a third party only if you have given us your consent to do this or if this is permitted by law. This is the case, for example, where the third party is an external service provider that provides services to us and whom we have carefully selected and commissioned on the basis of a data processing agreement (Art. 28 GDPR) and who is bound to our instructions and controlled on a regular basis (e.g., a webhosting provider) or where such transmission this is necessary to fulfil a legal obligation that is incumbent upon us.

Hence, we will transmit your personal data to a third party only if

  • you have given your express consent in accordance with Art. 6 (1) Letter a) GDPR; or
  • transmission takes place in accordance with Art. 6 (1) Letter f. GDPR in conjunction with Art. 28 GDPR in the context of the provisions relating to the processing of personal data on behalf of the controller and we are authorised to commission third parties to process personal data on the basis of a so-called "data processing agreement"; in this case, the processing will take place exclusively on our instructions and only for the purposes defined in the respective data processing agreement;
  • transmission is necessary, pursuant to Art. 6 (1) Letter f) GDPR, to establish, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not having your data transmitted; or
  • there is a legal obligation, as specified in Art. 6 (1) Letter c) GDPR, to transmit data; and
  • this is legally permissible and, pursuant to Art. 6 (1) b) GDPR, necessary for the performance of a contract concluded with you.


The hosting services that we use serve to provide the following services: Infrastructure and platform services, computing capacity, memory space, database services, security services and technical maintenance services that we use to operate this internet offering.

When doing this, we, or our hosting provider, process existing data, contact details, content data, contract data, usage data, metadata and communication data of customers, prospective customers and visitors of this internet offering on the basis of our legitimate interests in the efficient and secure provision of this internet offering pursuant to Art. 6 (1) Letter f) GDRP in conj. w. Art. 28 DSGVO (conclusion of a data processing agreement).

We, or our hosting provider, acquire data about each access to the server on which this service is hosted (so-called server log files) on the basis of our legitimate interests within the meaning of Art. 6 (1) Letter f) GDPR. The access data include the name of the website accessed, the file, date and time of the retrieval, the amount of data transmitted, a notification of successful retrieval, the browser type and version and operating system used by the user, the referrer URL (page previously visited), the IP address and the requesting provider.

Log file information is stored for a maximum period of seven days for security reasons (e.g., clearance of misuse or fraud) and thereafter erased. Data that have to be retained as evidence are exempted from such erasure until final clearance of the incident in question.

To protect the privacy of your data during transmission, we use current state-of-the-art encryption methods (e.g., SSL) via HTTPS.

Please also note the data privacy statement of Host Europe GmbH, available at

Automatic acquisition of general data and information / use of our offering for information purposes

Whenever you access our website, it will acquire certain data and information that are necessary for technical reasons and transmitted to our server automatically (unless you transmit personal data to us otherwise, e.g., by using the contact form). Data and information that may be acquired include (1) the browser types and versions used; (2) the operating system used by the accessing system; (3) the website from which an accessing system accesses our website (so-called referrers); (4) the sub-websites that an accessing system accesses on our website; (5) the date and time of access to the website; (6) an internet protocol address (IP address); (7) the accessing system's internet service provider; and (8) other similar data and information that serve to defend against dangers in the event of an attack on our IT systems. This is technically necessary to enable us to display our website to you. We also use the data to guarantee the security and stability of our website. The legal basis for the acquisition is Art. 6 (1) Letter f) GDPR. Your personal data will not be combined with other data and not be provided to any third party.


We use cookies to facilitate and improve the use of our website. Cookies are text files that the web browser stores on a computer when a website is visited. This serves to recognise a session, so that you may remain logged on, for example. Our cookie will be deleted when the browser session ends. The legal basis for the acquisition is Art. 6 (1) Letter f) GDPR.

Most web browsers accept cookies automatically. You can at any time delete stored cookies in the settings of your web browser. You can also adjust the settings of your web browser to prevent the storage of cookies. If you do this, not all functions of our website may be available.

Possibility of contacting us via the website / entry of personal data by you

You can enter personal data on our website by using a contact form. When you use the contact form, we acquire and store the data that you enter into the input mask (e.g., surname, first name, e-mail address). These data will not be transmitted to any third party.

If you have given your consent, the legal basis for the processing is Art. 6 (1) Letter a) GDPR. If you contact us by e-mail, our legitimate interest in the data processing results from the reply to your request, so that Art. 6 (1) Letter f) GDRP is the legal basis.

We will use all these data exclusively for the purpose of handling and replying to your request.

Duration of storage

We will process and store your data only for the time period necessary to process them or to fulfil legal obligations. Your data will be blocked or erased once the purpose of their processing no longer applies. Where a legal obligation to retain your data beyond that time period applies, we will block or erase them when the legal retention period ends.

Integration of services and contents of third parties

Within our website, we use content or service offerings of third-party suppliers based on our legitimate interests (i.e., interest in the analysis, optimisation and economically-efficient operation of our website based on Art. 6 (1) Letter f) GDPR) to embed their contents or services, e.g., videos or font types (hereinafter collectively referred to as "Contents").

A prerequisite to this is always that the third-party suppliers of Contents know the user's IP address because without the IP address they would not be able to send the Contents to its browser. Hence, the IP address is necessary to show the Contents. We endeavour to only use Contents from suppliers that use the IP address solely to deliver the Contents. Third-party suppliers may, moreover, use so-called pixel tags (invisible graphics, also called web beacons) for statistical or marketing purposes. Pixel tags allow the evaluation of information such as visitor traffic on the pages of this website. Moreover, the pseudonymised information may be stored in cookies on the user's device and, among other things, contain technical information on the browser and the operating system, information regarding referring websites and times of visit and other information about the use of our internet offering and also be combined with such types of information from other sources.

Data protection regulations regarding Google Analytics

Wir verwenden Google Analytics, um die Nutzung unseres Angebots analysieren und verbessern zu können.

Google Analytics is a web analysis service provided by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). Google Analytics uses so-called cookies, i.e. text files which are stored on your computer and enable an analysis of your use of our website. The information generated by the cookie about your use of this website will usually be transmitted to and stored by Google on servers in the United States. However, if IP anonymisation is activated on this website, Google will – within the member states of the European Union and other contracting states of the Treaty on the European Economic Area – truncate your IP address prior to transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on the website activities and to provide additional services associated with the use of the website and the internet to the website operator.

The legal basis for the processing of data using Google Analytics is Art. 6 (1) Letter f) GDPR. The IP address transmitted by your browser in the context of Google Analytics will not be linked with other data held by Google.

You can prevent the storage of cookies by making appropriate settings in your browser. However, please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent acquisition by Google of the data generated by the cookie that relate to your use of the website (including your IP address) and the processing of these data by Google by downloading and installing the browser plugin provided at the following link:

We use Google Analytics with the extension "_anonymizeIp()". This will truncate the IP addresses (so-called IP masking). This rules out any reference to specific persons. Google is a party to the EU-US Privacy Shield agreement, Due to this, a suitable level of protection of personal data is provided also in those exceptional cases in which Google transmits personal data to the USA.

Information about Google: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001

More detailed information about Google's terms of use:

More detailed information about Google's data privacy statement:

Data protection regulations regarding Google Maps

We embed the maps provided by the service Google Maps of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The data processed may in particular include IP addresses and location data of the users which, however, will not be acquired without their consent (usually in the context of the settings of their mobile devices). The data may be processed in the USA.

We use the Google Maps API to visually represent geographic information. When they use Google Maps, Google will also acquire, process and use data concerning the use of the map functions by the visitors. Google is certified under the Privacy Shield agreement and due to this guarantees to comply with the European data protection laws. For more detailed information about the processing of data by Google see the Google data processing statement. You can also change your personal data protection settings there in Google's data protection centre.

More information and Google's data protection regulations in force can be found at

Data protection regulations regarding Google Fonts

Among others, we embed the fonts (Google Fonts) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google is certified under the Privacy Shield agreement and due to this guarantees to comply with the European data protection laws.

More information and Google's data protection regulations in force can be found at

Your rights

As regards the personal data concerning you, you have the following statutory rights vis-à-vis us:

  • a) Right of access (Art. 15 DSGVO)
    You have the right to obtain confirmation as to whether or not personal data concerning you are being processed. If this is the case, you have the right to access these personal data and to obtain further information, including the purposes of the processing, the recipients and the envisaged period of storage or the criteria used to determine that period.
  • b) Right to rectification and completion (Art. 16 DSGVO)
    You have the right to demand rectification of inaccurate data without undue delay. Taking into account the purposes of the processing, you have the right to have incomplete data completed.
  • c) Right to erasure ('right to be forgotten') (Art. 17 DSGVO)
    You have a right to erasure where processing is not necessary. This is the case, for example, if your data are no longer needed for the original purposes, you have withdrawn your consent under data protection law or the data have been processed unlawfully.
  • d) Right to restriction of processing (Art. 18 DSGVO)
    You have a right to restriction of processing, for example, if you believe the personal data are inaccurate.
  • e) Right to data portability (Art. 20 DSGVO)
    You have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format.
  • f) Right to object (Art. 21. DSGVO)
    You have the right to object, on grounds relating to your particular situation, at any time to the processing of certain personal data concerning you. In the case of direct marketing, you as the data subject have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
  • g) Right to withdraw your consent under data protection law (Art. 7 Abs. 3 DSGVO)
    You can at any time withdraw your consent to the processing of your personal data with future effect. However, this does not affect the lawfulness of processing based on consent before its withdrawal.
Moreover, you can at any time lodge a complaint with a data protection supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG [German Federal Data Protection Act]), for example, if you believe that the data processing is not in compliance with data protection law regulations.

Links to third-party websites

Our offering contains links to third-party websites. We are not responsible for the data protection measures on external websites that you can access via these links. Please inform yourself there about the data protection of these external websites.

Data security

We undertake to protect your privacy and to treat your personal data as confidential. To prevent manipulation, loss or misuse of your data that we store, we implement extensive technical and organisational safeguards which are checked and adjusted to the advance of technology on a regular basis. This includes the use of recognised encryption methods (SSL or TLS). However, we point out that due to the structure of the internet it is possible that other persons or institutions not within our sphere of responsibility do not observe the rules of data protection and the abovementioned protective measures. In particular, data disclosed without encryption, e.g., in e-mails, can be read by third parties. We have no technical possibility to influence this. It is the user's responsibility to protect the data provided by it against misuse by means of encryption or other means.

Current state of and changes to this Data Privacy Statement

This Data Privacy Statement is presently valid and its version is May 2018.

The development of our website or changed legal or official or other requirements may make it necessary to change or adjust this Data Privacy Statement. You can at any time access and print out the current version of this Data Privacy Statement on our website at the following link:

Questions regarding data protection

Should you have any questions regarding the acquisition, processing or use of your personal data, we will be happy to hear from you. We will also gladly try to implement your suggestions. Please send your questions or suggestions relating to data protection directly to