Privacy Policy

We appreciate your visit to our website and your interest in our company.

We consider data protection a customer-oriented quality standard. The protection of your personal data and the safeguarding of your personal rights are important to us.

With this Privacy Policy, we aim to transparently inform all visitors to our website about the type, scope, and purpose of the personal data we collect, use, and process, and to clarify your rights as a data subject.

You can generally use our website without providing any personal data. However, if you wish to use services offered by our company via the website, the processing of your personal data may become necessary.

Any personal data collected automatically when visiting our website, or voluntarily provided when using services, will be processed in accordance with the applicable legal provisions for the protection of personal data.

The data you provide will remain with us until you request deletion, revoke your consent to storage, or the purpose for the data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

If the processing of your personal data is necessary and there is no legal basis for such processing, we will generally obtain your consent. As the controller responsible for processing, we have implemented technical and organizational measures to ensure the highest possible level of protection for your personal data. However, we point out that data transmission via the internet can have security vulnerabilities.

If you prefer not to submit data over the internet to use our services, you may also contact us by telephone.

Controller

The responsible party for data processing on this website is:

Lübbe Immo GmbH

Trostberger Straße 76

84503 Altötting, Germany

Phone: +49 160 726 1983

Email: jan.luebbe@luebbe-immo.de

Data Protection Officer

We have appointed a data protection officer for our company:

Siegfried Floßmann

Certified Data Protection Officer (DSB-TÜV-Süd)

Expert

Mühlbachstraße 48

84547 Emmerting, Germany

Phone: +49 151 22 33 13 96

Email: info@sf-datenschutz.eu

Website: www.sf-datenschutz.eu

Encrypted Data Transmission

On all pages of our website where you enter personal data – e.g. via contact forms – your data is transmitted in encrypted form. All privacy-relevant information (such as name and address) is stored securely.

Please note that data transmission over the internet (e.g., communication via email) may have security vulnerabilities. Complete protection of data against third-party access is not possible.

Scope of Processing Personal Data

We process personal data of our users only to the extent necessary to provide a functioning website and our content and services. Processing generally only occurs with the user’s consent. Exceptions apply when prior consent cannot be obtained for actual reasons and processing is permitted by law.

Data Deletion and Retention Period

Personal data will be deleted or blocked once the purpose of storage no longer applies. Data may be retained if required by European or national legislation under EU regulations, laws, or other legal provisions applicable to the controller. Data will also be deleted or blocked once a legally required retention period expires, unless further storage is necessary for the fulfillment or conclusion of a contract.

Website Access and Log Files

Each time our website is accessed, our system automatically collects data from the accessing device:

• Browser type and version

• Operating system

• Internet service provider

• IP address (stored in pseudonymized form)

• Date and time of access

• Referring and subsequent websites visited

This data is also stored in our system’s log files in pseudonymized form. No other personal data is stored alongside this information. IP addresses are stored in partially anonymized form and cannot be attributed to individuals.

Legal basis: Art. 6(1)(f) GDPR.

The temporary storage of IP addresses is necessary for the delivery of the website. Data is deleted once the purpose is fulfilled – typically when the session ends.

There is no option to object to this data processing, as it is necessary for the functioning of the website.

Web Analytics – Webalizer

This website uses Webalizer, a web analytics service that collects, compiles, and evaluates visitor behavior data (e.g., referrers, page views, duration of visits).

Purpose: Analysis and improvement of website usability and content.

Collected data is anonymized and cannot be traced to individual users. The service does not use cookies and only processes log file data. IP addresses are pseudonymized.

Legal basis: Art. 6(1)(f) GDPR.

Data retention: 190 days.

Use of Cookies

Our website uses cookies – text files stored in or by the web browser on the user’s device. Each cookie contains a unique string allowing recognition of the browser on repeat visits.

Cookies help improve the usability of our website. Some features require the browser to be identified across pages.

Legal basis: Art. 6(1)(f) GDPR.

Data collected through essential cookies is not used to create user profiles.

Contact Forms and Email Contact

You can use our contact form to reach out electronically. The data entered in the form will be transmitted to and stored by us. At the time of submission, the following data is also saved:

1. IP address of the user

2. Date and time of submission

You will be asked to consent to the processing before submission and referred to this Privacy Policy.

Alternatively, you can contact us via the provided email address. In this case, the user’s transmitted personal data will also be stored and used solely for the purpose of the conversation. There is no disclosure of this data to third parties.

Legal basis:

• With user consent: Art. 6(1)(a) GDPR

• Email inquiries: Art. 6(1)(f) GDPR

• For contract-related communication: Art. 6(1)(b) GDPR

Data from the form or emails will be deleted once the purpose is fulfilled and the conversation is clearly concluded.

Right to Information, Rectification, and Erasure

As a user, you may request free information about the personal data we have stored about you. Where legally permissible, you also have the right to correct inaccurate data or request the blocking or deletion of your personal data.

Communication & Collaboration

We use various services for internal and external communication, digital collaboration, and technical support. These tools enable us to communicate efficiently with clients, partners, and employees, and offer features for virtual meetings, file sharing, and remote maintenance.

The following services are used either for the performance of a contract in accordance with Art. 6 (1) lit. b GDPR or based on our legitimate interest in efficient business communication pursuant to Art. 6 (1) lit. f GDPR. If personal data is processed, this is done only with your consent in accordance with Art. 6 (1) lit. a GDPR.

Microsoft Teams

We use Microsoft Teams, a service provided by Microsoft Ireland Operations Ltd., for video conferences, online meetings, and webinars.

Function and Purpose

Microsoft Teams is used for internal and external communication as well as for conducting training and webinars. Specifically, we use Teams for:

• Video conferences and online meetings

• Chat and voice communication with clients and partners

• File sharing and collaborative editing of documents

• Hosting and recording webinars for internal training purposes and, if agreed, for publication on our website or YouTube channel

Recordings of webinars or meetings are only made with the prior consent of participants. These recordings may be used for internal training or—if explicitly agreed—for external publication.

Processed Data

When using Microsoft Teams, the following personal data may be processed:

• Name and email address (when invited to a meeting)

• Communication content (chat messages, file uploads)

• Connection data (IP address, device type)

• Video and audio recordings (only if recording is enabled and with consent)

Data Transfer to the USA

Microsoft primarily stores data in European data centers. If a transfer to the USA is necessary, it is carried out in accordance with the EU-U.S. Data Privacy Framework.

Data Retention

Chat messages and file attachments are stored according to company policies.

Meeting and webinar recordings are deleted after a defined period or, if intended for external use, published on the appropriate platforms.

For more information about data processing by Microsoft Teams, please refer to:

https://learn.microsoft.com/en-us/microsoftteams/teams-privacy

TeamViewer

For technical support and remote maintenance, we use TeamViewer, a software by TeamViewer Germany GmbH (Bahnhofsplatz 2, 73033 Göppingen, Germany).

Function and Purpose

TeamViewer enables us to:

• Provide remote maintenance and support for internal systems by our IT service provider

• Securely access devices in case of technical issues

• Share screens and exchange files during support sessions

The following data may be processed during the use of TeamViewer:

• IP address of the connected device

• Connection and session logs

• Screen view during the session (if shared)

• Inputs by the support staff

Legal Basis

Data processing is carried out in the context of contract performance pursuant to Art. 6 (1) lit. b GDPR or based on our legitimate interest in efficient IT support pursuant to Art. 6 (1) lit. f GDPR.

Data Retention

TeamViewer sessions are not recorded unless explicitly agreed. Session logs are stored for internal documentation purposes if necessary.

For more information on data processing by TeamViewer, see:

https://www.teamviewer.com/en/privacy-policy/

Social Media Presence

We maintain corporate profiles on social networks such as Facebook, Instagram, and YouTube to present our company, engage with customers and prospects, and share up-to-date information.

When you visit our social media profiles, personal data is processed. This section explains what data is collected, the purposes for which it is processed, and your rights regarding this data.

Data processing is carried out under joint responsibility with the respective platform operators pursuant to Art. 26 GDPR. However, we have only limited influence on how these platforms process your data. For more information, please refer to the privacy policies of the respective platform operators.

Processing of Personal Data on Our Social Media Profiles

Interactions and Communication

When you interact with our profiles on Facebook, Instagram, or YouTube (e.g., comment on, like, or share posts) or send us private messages, your personal data is processed by us and the respective platform operator.

The following types of data may be processed:

• Your public profile (name, profile picture, company affiliation if applicable)

• Interactions with our content (likes, comments, shares)

• Content of private messages you send us via the platform

• If you share our posts, your profile may be associated with our content

These data are processed for the following purposes:

• Engaging with our community and responding to inquiries

• Public relations and external presentation of our company

• Analyzing the reach and impact of our social media activities

The legal basis for processing this data is our legitimate interest in corporate communication and customer interaction under Art. 6 (1) lit. f GDPR. If communication occurs for the initiation or fulfillment of a contract, processing is based on Art. 6 (1) lit. b GDPR.

Data Processing by Platform Operators

Legal Basis of the Operators

When visiting our social media profiles, the respective platform operators also process your personal data—regardless of whether you are logged in.

Platform operators collect and analyze, among other things:

• Your behavior on the platform (e.g., pages visited, interactions)

• Technical usage data (e.g., IP address, device type, location data)

• Data used to personalize content and advertisements

We do not have full access to all data stored or processed by the platforms.

Based on the data collected by the platform operators, we receive aggregated statistics and insights (e.g., reach, post interactions, demographic information). This helps us improve our content but is not linked to individual users.

The legal basis for data processing by the platform operators is generally your consent pursuant to Art. 6 (1) lit. a GDPR, which you provide directly when using the respective platform. For more information, please refer to the operators’ privacy policies.

If you do not want these platforms to collect your personal data, you should log out before visiting our social media profiles, delete your cookies, or adjust your privacy settings on the platforms.

Your Rights Regarding Social Media

You have the following rights concerning your personal data:

• Right of access (Art. 15 GDPR)

• Right to rectification (Art. 16 GDPR)

• Right to erasure (Art. 17 GDPR)

• Right to restriction of processing (Art. 18 GDPR)

• Right to object (Art. 21 GDPR)

To exercise these rights in relation to data processed directly by platform operators, please contact the respective platforms.

If you have questions about how we process your personal data, feel free to contact us at:

jan.luebbe@luebbe-immo.de

Secure Communication via Social Media

Please note that communication via social networks is never completely secure.

Do not send sensitive or confidential information (e.g., job applications, bank details, medical information) via messaging services or public comments.

Instead, use the official communication channels listed in our legal notice (email, telephone, post) to submit sensitive inquiries securely.

We will never ask for sensitive data via social media. If you receive such a request, it is not an official communication from our company. Please report such incidents to us immediately.

If you have further questions about data protection when using our social media profiles, we are happy to assist you at any time.