PRIVACY POLICY

General information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Below we inform you about the type, scope and purpose of the collection, processing and use of personal data.

1. types of data that we process
Inventory data (name, address, etc.), contact data (telephone number, e-mail, fax, etc.), communication data (IP address, etc.),

2. purposes of processing in accordance with Art. 13 para. 1 c) GDPR
Optimizing the website technically and economically, enabling easy access to the website, fulfilling legal retention obligations, optimizing and statistically evaluating our services, improving the user experience, making the website user-friendly, handling contact requests, providing websites with functions and content, uninterrupted, secure operation of our website.

3. categories of data subjects pursuant to Art. 13 para. 1 e) GDPR Visitors/users of the website, customers, interested parties

The data subjects are collectively referred to as “users.” Legal basis for the processing of personal data
Below we inform you about the legal basis for the processing of personal data:
If we have obtained your consent for the processing of personal data, Art. 6 para. 1 p. 1 lit. a) GDPR Legal basis.
If processing is necessary for the performance of a contract or in order to take steps at your request prior to entering into a contract, Art. 6 para. 1 p. 1 lit. b) GDPR Legal basis.
If the processing is necessary for compliance with a legal obligation to which we are subject (e.g. statutory retention obligations), Art. 6 para. 1 p. 1 lit. c) GDPR Legal basis.
If processing is necessary in order to protect the vital interests of the data subject or of another natural person, Art. 6 para. 1 p. 1 lit. d) GDPR Legal basis.
If processing is necessary to protect our legitimate interests or the legitimate interests of a third party and your interests or fundamental rights and freedoms do not override these interests, Art. 6 para. 1 p. 1 lit. f) GDPR Legal basis.

Disclosure of personal data to third parties and processors
We do not pass on any data to third parties without your consent. Should this nevertheless be the case, the data will be passed on on the basis of the aforementioned legal bases, e.g. when passing on data to online payment providers to fulfill the contract or due to a court order or due to a legal obligation to hand over the data for the purpose of criminal prosecution, to avert danger or to enforce intellectual property rights.
We also use processors (external service providers, e.g. for web hosting of our websites and databases) to process your data. If data is passed on to processors as part of an agreement on order processing, this is always done in accordance with Art. 28 GDPR. We select our processors carefully, check them regularly and have been granted the right to issue instructions regarding the data. In addition, the processors must have taken appropriate technical and organizational measures and comply with the data protection regulations in accordance with GDPR. Comply with BDSG new version and GDPR

The adoption of the European General Data Protection Regulation (GDPR) has created a uniform basis for data protection in Europe. Your data is therefore mainly processed by companies to which the GDPR applies. However, if the processing is carried out by third parties outside the European Union or the European Economic Area, they must fulfill the special requirements of Art. 44 et seq. GDPR must be met. This means that processing takes place on the basis of special guarantees, such as the EU Commission’s officially recognized determination of a level of data protection corresponding to the EU or compliance with officially recognized special contractual obligations, the so-called “standard contractual clauses”. In the case of US companies, submission to the so-called “Privacy Shield”, the data protection agreement between the EU and the USA, fulfills these requirements.

Unless expressly stated in this privacy policy, your personal data will be deleted or blocked as soon as the purpose for which it was stored no longer applies, unless its continued storage is necessary for evidence purposes or if there are statutory retention obligations to the contrary. This includes, for example, commercial law obligations to retain business letters in accordance with Section 257 para. 1 HGB (6 years) as well as retention obligations under tax law pursuant to § 147 para. 1 AO of vouchers (10 years). If the prescribed retention period expires, your data will be blocked or deleted, unless the storage is still required for the conclusion or fulfillment of a contract.

Existence of automated decision-making
We do not use automated decision-making or profiling.

Provision of our website and creation of log files
If you only use our website for information purposes (i.e. no registration and no other transmission of information), we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data: – IP address;
– Internet service provider of the user;
– Date and time of retrieval;
– Browser type;
– Language and browser version;
– Content of the retrieval;
– Time zone;
– Access status/HTTP status code;
– Amount of data;
– Websites from which the request comes;
– Operating system.
This data is not stored together with your other personal data.

This data serves the purpose of user-friendly, functional and secure delivery of our website to you with functions and content as well as their optimization and statistical evaluation. The legal basis for this is our legitimate interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) GDPR. For security reasons, we store this data in server log files for a storage period of 365 days. After this period has expired, they are automatically deleted, unless we need to retain them for evidence purposes in the event of attacks on the server infrastructure or other legal violations.

We use so-called cookies when you visit our website. Cookies are small text files that your Internet browser places and stores on your computer. When you visit our website again, these cookies provide information to automatically recognize you. The information obtained in this way serves the purpose of optimizing our web offers technically and economically and to provide you with easier and more secure access to our website. When you visit our website, we inform you about the use of cookies for the aforementioned purposes and how you can object to this or prevent their storage (“opt-out”) by means of a reference to our privacy policy. Our website uses session cookies, persistent cookies and third-party cookies:

– Session cookies: We use so-called cookies to recognize multiple use of an offer by the same user (e.g. if you have logged in to determine your login status). When you visit our site again, these cookies provide information to automatically recognize you. The information obtained in this way is used to optimize our offers and make it easier for you to access our website. When you close the browser or log out, the session cookies are deleted.

– Persistent cookies: These are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.

– Cookies from third-party providers (third-party cookies): You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. However, we would like to point out that you may then not be able to use all the functions of this website. Read more about these cookies in the respective privacy policies of the third-party providers.

The legal basis for this processing is Art. 6 para. 1 S. lit. b) GDPR, if the cookies are set to initiate a contract, e.g. for orders, and otherwise we have a legitimate interest in the effective functionality of the website, so that in this case Art. 6 para. 1 p. 1 lit. f) GDPR is the legal basis.

Objection and “opt-out”: You can generally prevent cookies from being stored on your hard disk by selecting “Do not accept cookies” in your browser settings. However, this may result in a functional restriction of our services. You can object to the use of cookies from third-party providers for advertising purposes via a so-called “opt-out” via this American website(https://optout.aboutads.info) or this European website(http://www.youronlinechoices.com/de/praferenzmanagement/).

Contact via contact form / e-mail / fax / post
When contacting us by contact form, fax, post or e-mail, your data will be processed for the purpose of handling the contact request.

If you have given your consent, the legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. a) GDPR. The legal basis for the processing of data transmitted in the course of a contact request or e-mail, letter or fax is Art. 6 para. 1 p. 1 lit. f) GDPR. The controller has a legitimate interest in the processing and storage of the data in order to be able to respond to user inquiries, to preserve evidence for liability reasons and, if necessary, to be able to comply with its statutory retention obligations for business letters. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 lit. b) GDPR.

We may store your details and contact request in our Customer Relationship Management System (“CRM System”) or a comparable system.

The data will be deleted as soon as it is no longer required for the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with you has ended. The conversation ends when it can be inferred from the circumstances that the matter in question has been conclusively clarified. We store inquiries from users who have an account or contract with us until two years after the end of the contract. In the case of statutory archiving obligations, the deletion takes place after their expiry: end of commercial law (6 years) and tax law (10 years) retention obligation.

You have the option at any time to withdraw your consent in accordance with Art. 6 para. 1 p. 1 lit. a) GDPR for the processing of personal data. If you contact us by e-mail, you can object to the storage of your personal data at any time.

Contact by telephone
When you contact us by telephone, your telephone number will be processed and temporarily stored or displayed in the RAM / cache of the telephone device / display in order to process the contact request and its handling. The data is stored for liability and security reasons in order to be able to provide evidence of the call and for economic reasons to enable a callback. In the event of unauthorized advertising calls, we block the telephone numbers. The legal basis for the processing of the telephone number is Art. 6 para. 1 p. 1 lit. f) GDPR. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b) GDPR. The device cache stores the calls for 365 days and successively overwrites or deletes old data; when the device is disposed of, all data is deleted and the memory may be destroyed. Blocked telephone numbers are checked annually for the necessity of blocking.

You can prevent the telephone number from being displayed by calling with the telephone number suppressed.

We use the “Real Cookie Banner” consent tool to manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents. Details on how “Real Cookie Banner” works can be found at https://devowl.io/de/rcb/datenverarbeitung/.

The legal basis for the processing of personal data in this context is Art. 6 para. 1 lit. c GDPR and Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.

The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

Individual deactivation of tracking/cookies

We have integrated maps from “Google Maps” (Google Ireland Limited, Register No.: 368047, Gordon House, Barrow Street, Dublin 4, Ireland) on our website. This allows us to display the location of addresses and directions directly on our website in interactive maps and enables you to use this tool.

When you access our website, where Google Maps is integrated, a connection to Google’s servers in the USA is established. Your IP and location may be transmitted to Google. Google also receives the information that you have accessed the corresponding page. This is also done without a Google user account. If you are logged into your Google account, Google can assign the above data to your account. If you do not wish to do this, you must log out of your Google account. Google creates user profiles from such data and uses this data for the purposes of advertising, market research or optimization of its websites.

The legal basis for this is our legitimate interest in data processing in accordance with Art. 6 Para. 1 S.1 lit. f) GDPR.

You have the right to object to the creation of user profiles by Google. Therefore, please contact Google directly via the privacy policy below. You can opt out of advertising cookies here in your Google account:
https://adssettings.google.com/authenticated.

You can find more information on the use of Google cookies and their advertising technologies, storage duration, anonymization, location data, how they work and your rights in the Google Maps terms of use at https://www.google.com/intl/de_de/help/terms_maps.html and in Google’s privacy policy for advertising at https://policies.google.com/technologies/ads. Google’s general privacy policy: https://policies.google.com/privacy.

Google is certified in accordance with the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework) and is therefore obliged to comply with European data protection law.

We maintain profiles and fan pages on social media in order to communicate with the users connected and registered there and to provide information about our products, offers and services. The US providers are certified according to the so-called Privacy Shield and are therefore obliged to comply with European data protection. When you use and access our profile in the respective network, the respective data protection notices and terms of use of the respective network apply.

We process your data that you send us via these networks in order to communicate with you and to answer your messages there.

The legal basis for the processing of personal data is our legitimate interest in communicating with users and our external presentation for the purpose of advertising in accordance with Art. 6 para. 1 p. 1 lit. f) GDPR. If you have given the controller of the social network your consent to the processing of your personal data, the legal basis is Art. 6 para. 1 p. 1 lit. a) and Art. 7 GDPR.

The data protection notices, information options and opt-out options of the respective networks can be found here:

– Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

– Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy/ Opt-Out: http://instagram.com/about/legal/privacy/.

– XING (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) – Privacy Policy/ Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.

– LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://www.linkedin.com/legal/privacy-policy, Cookie Policy and Opt-Out: https://www.linkedin.com/legal/cookie-policy, Privacy Shield of the US company LinkedIn Inc.: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

Social media plug-ins

We use social media plug-ins from social networks on our website. We use the so-called “two-click solution” Shariff from c’t or heise.de. When you visit our website, no personal data is transmitted to the providers of the plug-ins. Next to the logo or brand of the social network you will find a slider with which you can activate the plug-in with a click. After activation, the provider of the social network receives the information that you have accessed our website and your personal data is transmitted to the provider of the plug-in and stored there. These are so-called third party cookies. According to some providers such as Facebook and XING, your IP is anonymized immediately after collection.

The plug-in provider stores the data collected about the user as usage profiles. These are used for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to display needs-based advertising and to inform other users of the social network about the user’s activities on our website. The user has the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right.

The legal basis for the use of the plug-ins is our legitimate interest in improving and optimizing our website by increasing our visibility through social networks and the possibility of interaction with you and the users among each other via social networks in accordance with Art. 6 para. 1 lit. a GDPR. 1 S.1 lit. f) GDPR.

We have no influence on the data collected and data processing procedures. We also have no knowledge of the scope of data collection, the purpose of processing or the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.

With regard to the purpose and scope of data collection and processing, we refer to the respective data protection declarations of the social networks. You will also find information on your rights and settings options for protecting your personal data.

Facebook

We have integrated plug-ins from the social network Facebook.com (registered office in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on our website as part of the so-called “two-click solution” from Shariff, which you can recognize by the Facebook logo “f” or the addition “Like”, “Like” or “Share”.

As soon as you voluntarily activate the Facebook plug-in, a connection is established from your browser to the Facebook servers. Facebook receives the information, including your IP address, that you have accessed our website and transmits this information to Facebook servers in the USA, where this information is stored. If you are logged into your Facebook account, Facebook can assign this information to your account. When using the functions of the plug-in, e.g. pressing the “Like” button, this information is also transferred from your browser to the Facebook servers in the USA and stored there and displayed in your Facebook profile and, if applicable, with your friends.

The purpose and scope of the data collection and its further processing and use by Facebook, as well as your rights in this regard and setting options for protecting your privacy, can be found in Facebook’s data protection information: https://www.facebook.com/about/privacy/. Data collection with the “Like” button: https://www.facebook.com/help/186325668085084. You can manage and object to the use of your profile data for advertising purposes on Facebook here: https://www.facebook.com/ads/preferences/.

If you log out of Facebook before visiting our website and delete your cookies, no data about your visit to our website will be assigned to your profile on Facebook when the plug-in is activated.

You can also prevent the Facebook plug-in from loading by using so-called “Facebook blockers”, which you can install as an add-on for your browser: Facebook Blocker for Firefox, Chrome and Opera or 1blocker for Safari, iPad and iPhone.

Facebook has submitted to the Privacy Shield and thus ensures that European data protection law is complied with: https://www.privacyshield.gov/EU-US-Framework.

Instagram

We have integrated plug-ins from the social network Instagram (Instagram LLC., 1601 Willow Road, Menlo Park, CA, 94025, USA) on our website as part of the so-called “two-click solution” from Shariff. You can recognize these by the Instagram logo in the shape of a square camera.

If you voluntarily activate the plug-in, a connection is established from your browser to the Instagram servers. Instagram receives the information, including your IP address, that you have visited our site and transmits the information to Instagram servers in the USA, where this information is stored. If you are logged into your Instagram account, Instagram can assign this information to your account and you can click on the Instagram button to share and save the content of our pages on your Instagram account and, if necessary, show it to your friends there. We have no knowledge of the exact content of the transmitted data, its use and storage duration by Instagram.

If you log out of Instagram before visiting our website and delete your cookies, no data about your visit to our website will be assigned to your profile on Instagram when the plug-in is activated.

You can find more information in Instagram’s privacy policy at https://help.instagram.com/519522125107875 and on privacy settings here: https://help.instagram.com/196883487377501.