Effective date: Feb 12, 2019
3DQR is committed to protecting the privacy and security of your Personal Information. The information you share with 3DQR allows us to provide you with the best experience with our products and services. We have a dedicated Global Privacy Program that protects all the Personal Information we collect and helps ensure that Personal Information is handled properly worldwide. Please read below to learn how we collect, use and disclose Personal Information. This Privacy Notice explains the privacy practices of 3DQR GmbH and those Affiliates whose websites, platforms or services link to it.
This website is owned and operated by
Tel. +49 391 556 848 – 80
Data protection officer:
Pulpit Spirit Legal LLP
Managing Director with the authority to represent:
Daniel Anderson (CEO)
Founding members and shareholders:
Daniel Anderson, Thomas Strelow, dr. Volker Bauer
Registered at the registry court: District Court Stendal / Register Court
Registration number: HRB 23434
Sales tax identification number according to § 27 a sales tax law: DE306963516
Responsible for content according to § 55 Abs. 2 RStV: Peter Hense
E-mail address of the provider: firstname.lastname@example.org
On this page, and the pages which it links to, we have used some words and phrases, and these are explained below.
“Personal data” means any information which relates to a living, identifiable person. It can include names, addresses, telephone numbers, email addresses etc but it is wider than that and includes any other information relating to that person or a combination of information which, if put together, means that the person can be identified.
“Processing” covers all activities relating to the use of personal data by an organization, from its collection through to its storage and disposal and everything in between.
“Data subject” means the person whose personal data is being processed.
“Data controller” means the organization which is responsible for processing data and ensuring that personal data is processed in accordance with data protection law.
“Consent” of the Data Subject means any freely given, specific, informed and unambiguous indication of the Data Subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
“Third party” means a natural or legal person, public authority, agency or body other than the Data Subject, Controller, processor and persons who, under the direct authority of the Controller or processor, are authorized to process personal data.
“GDPR” stands for General Data Protection Regulation Act.
Principles for processing personal data
Our principles for processing personal data are:
- Fairness, lawfulness and transparency. When we process personal data, the individual rights of the Data Subjects must be protected. All personal data must be collected and processed in a legal and fair manner. The Data Subject must be informed of how his/her data is being collected, processed and used.
- Purpose limitation. The personal data of Data Subject must be processed only for specific purposes.
- Data minimization: don’t process any more data than you need.
- Accuracy: make sure that any personal data you hold is adequate and accurate.
- Storage limitation: don’t store personal data for longer than you need to.
- Integrity and confidentiality: always process personal data securely.
Types of data collected
Personal data that this website processes independently or by third parties include:
- Identity information: such as your name, company name, organization type and job title.
- Contact data: such as your address, email address, telephone number and social media handles.
- Technical data: such as your internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access the Website.
- Usage data: which includes information about how you use the Website and our services, and any communications we may receive from you.
- Marketing and communications data: including your preferences in receiving marketing and other communications from 3DQR.
- Google Analytics: collects information anonymously and reports website trends without identifying individual visitors. Analytics uses its own cookie to track visitor interactions.
We do not collect ‘special categories’ of personal data through the Website. (‘Special categories’ of data include details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, or health information). We also do not collect information about criminal convictions and offenses.
How we use personal data
- Verifying your identity (for example when you return to the website and have already logged in.
- Improving the design and style of the website
- Informing you about products, services or promotional offers that you might find interesting if you have chosen to receive these type of communications.
- Sending you service messages about your subscription or account registration, for example, if you have clicked a password reset link. This could be by email, overlay on the website or push notification.
- Dealing with, and responding to you about, a comment you have submitted for or on our message boards, blogs and other such user generated content facilities
- Enabling you to share our content with others using social media or email
- Communicating (and personalizing such communication) with you through our newsletters, but only those you have consented to receive.
- Compiling customer reviews
- Conducting market research
- Granting you access to a subscription
- We also log and use information about any service errors or interruptions that you have experienced in order to help us create fixes and to make technical improvements to our website
The provider may only process personal data of users if one of the following applies:
- Users have given their consent for one or more specific purposes. Note: In some jurisdictions, the owner may be allowed to process personal information until the user opposes such processing (“opt-out”) without relying on the consent or any of the following legal basis. However, this does not apply if the processing of personal data is subject to European data protection law.
- the collection of data is necessary for the fulfillment of a contract with the user and/or for pre-contractual measures.
- the processing is necessary for the fulfillment of a legal obligation to which the owner is subject
- processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Owner.
- the processing is necessary to protect the legitimate interests of the owner or a third party.
In any case, the owner will be pleased to provide information on the specific legal basis on which the processing is based, in particular on whether the provision of personal data is a legal or contractual obligation, or a requirement necessary to enter into a contract.
You have the right to withdraw consent any time by emailing us at email@example.com or by clicking unsubscribe.
The Data is processed at the Owner’s operating offices and in any other places where the parties involved in the processing are located.
Depending on the User’s location, data transfers may involve transferring the User’s Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data.
Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data. If any such transfer takes place, Users can find out more by checking the relevant sections of this document or inquire with the Owner using the information provided in the contact section.
Retention of Personal Data
We will retain Personal Data for as long as your 3DQR account is considered to be active, or otherwise for as long as is necessary for the purposes for which it is being processed, including for ongoing product and service improvement purposes. See below for your rights in relation to the erasure of Personal Data we keep about you.
Under the General Data Protection Regulation, individuals have the right to request access to and rectification or erasure of your Personal Data, data portability, restriction of processing of your Personal Data. You also have the right to object to the processing of your Personal Data.
By emailing firstname.lastname@example.org, you can have all account data deleted – if you do this a red flag goes on the database and, while 3DQR cannot use the personal information, it stays on the system for a period for administration purposes before being deleted automatically.
With who we Share your Personal Data
- Analytics: The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.
- Google Analytics (Google Inc.): Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of this Website, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network. This integration of Google Analytics anonymizes your IP address. It works by shortening Users’ IP addresses within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the complete IP address be sent to a Google server and shortened within the US.
- providers of email management and distribution tools – for example, if you sign up to receive First Table newsletters or other marketing messages we will manage the delivery of these to you using a third party email distribution tool;
- providers of software platforms that assist us in communicating or providing customer support services to you – for example, we manage and respond to any messages you send to us via our help centre using a third party communications management too
- payment processors engaged by us to securely store or handle payments information, such as credit or debit card details, required for facilitating bookings with restaurants – for example, when you provide us with your credit or debit card details we store these in a PCI-compliant data vault provided by an industry-leading third-party payment processor
Data transferred outside the EU
If you are located in the EEA, we will only transfer your personal data if:
- the country to which the personal data will be transferred has been granted a European Commission adequacy decision;
- the recipient of the personal data is located in the US and has certified to the US-EU Privacy Shield Framework; or
- we have put in place appropriate safeguards in respect of the transfer, for example, we have entered into EU standard contractual clauses with the recipient, or the recipient is a party to binding corporate rules.
You may request more information about the safeguards that we have put in place in respect of transfers of personal data by contacting us.
Your Legal Rights
Under certain circumstances, by law, you have the right to:
- Request access to your personal data (commonly known as a “subject access request”). This enables you to receive a copy of your data and to check that we are lawfully processing it.
- Request correction of your data. This enables you to ask us to correct any incomplete or inaccurate information we hold about you.
- Request erasure of your data. This enables you to ask us to delete or remove your data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your data where you have exercised your right to object to processing (see below).
Object to the processing of your data where we are processing it to meet our public interest tasks or legitimate interests (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your data for direct marketing purposes.
- Request the restriction of processing of your data. This enables you to ask us to suspend the processing of your data, for example, if you want us to establish its accuracy or the reason for processing it.
- Request the transfer of your data to another party.
If you want to exercise any of the rights described above or are dissatisfied with the way we have used your information, please contact our Data Protection Officer. If you remain dissatisfied, you have the right to lodge a complaint with a Data Protection Authority.
We reserve the right to update this privacy notice at any time. Any changes to this privacy notice will be posted to this page. The latest effective date will be highlighted at the top of the policy information.