The controller for the purposes of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions with content relevant to data protection is the following:
represented by Managing Director Jürgen May and Patrick Mueller
Telephone: +49 (0)2173 1064-0
Fax: +49 (0)2173 1064-50
- Data protection officer
If you have any questions about data protection, please write us an e-mail or contact our Data Protection Officer directly:
IT Südwestfalen AG
Kalver Straße 23
58515 Lüdenscheid, Germany
Tel. +49 (0)2351-67257300
- General information
- Definitions pursuant to Art. 4 GDPR
The terms we use in this Privacy Statement include the following:
‘Personal data’ refers to all information relating to an identified or identifiable natural person (hereinafter referred to as the ‘data subject’). A natural person is deemed identifiable if he or she can be identified, directly or indirectly, in particular through assignment of an identifier such as a name, an identification number, location data, an online identifier or one or more special characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of said natural person.
A data subject is any identified or identifiable person whose personal data are processed by the controller in charge of the processing.
‘Processing’ is taken to denote any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in future.
Controller or party responsible for processing
The controller or party responsible for processing means the natural or legal person, public authority, agency or any other body which, acting alone or jointly with others, determines the purposes and means of the processing of personal data; Where the purposes and means of such processing are laid down by the laws of the European Union or by the laws of Member States, the identity of the controller or the criteria governing the controller’s designation can be provided for pursuant to European Union law or the law of the Member States.
A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
The recipient is a natural or legal person, public authority, agency or other body to which personal data are disclosed, regardless of whether or not this is a third party. Authorities that may be entitled to receive personal data under European Union law or the law of the Member States within the framework of a particular investigation mandate are not, however, regarded as recipients.
A third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who are authorised to process personal data under the direct authority of the controller or processor.
- Basis in law for processing
Art. 6 (I) (a) GDPR provides our company with the basis in law for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case for example with processing operations necessary for the delivery of goods or the provision of other services or consideration, processing is performed on the authority of Art. 6 (I) (b) GDPR. The same applies to such processing operations as are necessary to carry out pre-contractual measures, such as in cases of enquiries about our products or services. If our company is subject to a legal obligation as a result of which processing of personal data is required, for example to fulfil tax obligations, the processing is based on Art. 6 (I) (c) GDPR. In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor to our company were to be injured and that person’s name, age, health insurance data or other vital information subsequently had to be passed along to a physician, a hospital or other third parties. The processing would then be based on Art. 6 (I) (d) GDPR. Finally, processing operations can be based on Art. 6 (I) (f) GDPR. Processing operations not covered by any of the aforementioned legal bases are rooted in this basis in law if processing is necessary to safeguard a legitimate interest of our company or of a third party, provided that the interests and the fundamental rights and freedoms of the data subject do not take precedence. We have express authority to carry out such processing operations as these have been specifically mentioned under European law. In this respect, the law represented the view that a legitimate interest can be assumed if the data subject is a customer of the controller (Recital 47, sentence 2, GDPR).
- Recording of general information
Information of a general nature is automatically recorded whenever you access our website. This information (server log files) includes, for instance, the type of browser used, the operating system used, the domain name of your internet service provider, and similar data. None of the information collected permits conclusions about your personal identity. This information is necessary for technical reasons in order to correctly display the website content you have requested; it is mandatorily transmitted whenever you use the Internet. We can perform statistical analysis of anonymous information of this type in order to improve our Internet presentation and the technology underlying it. The basis in law for the processing of these data is Art. 6 (1) (f) GDPR, which permits processing of data for the fulfilment of a contract or of pre-contractual measures.
These access data are evaluated exclusively in order to ensure trouble-free operation of the website and for the improvement our offer. These data are collected pursuant to Art. 6 (1) Sentence 1 (f) GDPR; their collection is in furtherance of our interest in a correct presentation of our offer. All access data are erased not later than seven days after the end of your visit to the website.
Within the context of processing carried out on our behalf, a third-party provider furnishes us with services for the hosting and presentation of the website. This is also in furtherance of our interest in a correct presentation of our offer. All of the data collected during use of this website or in forms provided for that purpose in the online shop, as described below, are processed on the third-party provider’s servers. Processing on other servers takes place only within the framework described here.
The aforementioned service provider (third party) has its main office in a country/state in the European Union or in the European Economic Area.
- Storage period
The criterion for the period of storage of personal data is the statutory retention period in question. After the deadline, the corresponding data are routinely erased if they are no longer required to fulfil or initiate a contract.
- Server log files
The website provider automatically collects and stores information that your browser automatically transmits to us in so-called server log files. This information comprises:
- Browser type and browser version
- The operating system used
- Referrer URL
- The host name of the accessing computer
- The time of the server request
- IP address
For technical reasons, and particularly to ensure a secure and stable Internet presentation, these data are transmitted to our webspace provider. The data thus collected are stored temporarily but not together with any other of your data.
The basis in law for this storage is provided by Art. 6 (1) (f) GDPR. Our legitimate interest lies in the improvement, stability, functionality and security of our Internet presentation.
The data are deleted again within seven days, unless continued storage is required for evidentiary purposes. Otherwise, data will be excluded from deletion until investigation of an incident has been finally resolved.
- Data collection and use for the processing of contracts and the opening of a customer account
We collect personal data if you voluntarily provide us with this data in connection with your order, when contacting us (e.g. via contact form or e-mail), or when opening a customer account. Mandatory fields are marked as such, as in these cases we require the data for contract processing, to process your contact, or to open your customer account, and you cannot complete the order and/or open the account, or cannot establish the contact without this information. Specifically, the following disclosures are mandatory:
- company name
- form of address
- first and last names
- e-mail address
as well as voluntarily provided telephone, fax and mobile phone numbers
We use the data you provide for contracting and processing your requests, pursuant to Art. 6 (1) Sentence 1 (b) GDPR. After completion of the contract or deletion of your customer account, your data will be restricted for further use and deleted after the mandatory storage periods defined in tax and commercial legislation, unless you have given your express consent for further use of your data, or unless we have reserved the right to a more extensive use of the data as permitted by law and about which we inform you below. Where not prohibited by provisions of tax or commercial law or other legal provisions, your account can be deleted at any time, either by sending a message to the contact address listed below or using the button provided for this purpose within your account.
In addition, the following information is processed:
- Contract data (e.g. subject matter of the contract, term, customer category).
- Payment data (e.g., bank details, payment history)
from our customers, prospects and business partners for the purpose of providing contractual services, service and customer care, marketing, advertising and market research.
- Data transfer
- Newsletter and postal advertising
If you sign up for our newsletter, we use the data necessary, or separately provided by you, to send you our e-mail newsletter regularly based on your consent given in accordance with Art. 6 (1) Sentence 1 (a) GDPR.
Postal advertising and your right to object
Furthermore, we reserve the right to use your first and last name as well as your postal address for our own advertising purposes, e.g. to send interesting offers and information about our products by post. This serves to protect our legitimate interests in an advertising approach to our customers in accordance with Art. 6 (1) Sentence 1 (f) GDPR.
- Contact form
The website contains disclosures that permit quick electronic contact with our company as well as direct communication with us. The last and first names, the telephone number and a general e-mail address are also recorded in this context. If a data subject contacts the controller responsible for processing by e-mail or via a contact form, any personal data transmitted by the data subject are automatically stored. Such personal data voluntarily transmitted by a data subject to the controller responsible for processing are stored for the purpose of processing or of contacting the data subject. These personal data will not be disclosed to third parties. Furthermore, the data are erased after the purpose for which they have been provided ceases to apply.
You can unsubscribe from the newsletter at any time, either by sending a message to the contact below or by using the link provided in the newsletter. After unsubscribing, we will delete your email address, unless you have explicitly consented to further use of your data or we reserve the right to use the data as permitted by law and about which we inform you in the following.
If you would like to stop receiving newsletters, advertising or information from us by mail you can either remove the green checkmark in your account which you will find under newsletter settings or let us know by sending a letter addressed to our business address above
a) Session cookies
Our Internet presentation makes use of what are known as ‘cookies’. Cookies are small text files or other storage technologies transmitted to and stored on your computer by the Internet browser you use. These cookies process certain specific information about you, such as your browser or location data or your IP address.
This processing makes our website more user-friendly, efficient, and secure, allowing us, for example, to display our website in different languages or to offer a shopping-cart function. The basis in law for this processing is Art. 6 (1) (b) GDPR, insofar as these cookies are processed to initiate or process contractual relationships.
If the processing does not serve to initiate or process a contract, our legitimate interest lies in improving the functionality of our Internet presentation. In this case, the basis in law is Art. 6 (1) (f) GDPR.
These session cookies are deleted when you close your browser.
b) Third-party-provider cookies
Please refer to the following information for details, specifically for the purposes and the bases in law of such third-party-provider cookies.
c) Option for removal
You can prevent or limit the installation of cookies by means of your browser settings. You can also always delete stored cookies at any time. However, the steps and measures required vary, depending on the browser you use. If you have any questions, please use the help function or consult the documentation for your browser or contact its manufacturer or support service. Browser settings cannot prevent so-called flash cookies from being set, however. Instead, you will need to change the setting on your Flash player. The steps and measures that this requires are also a function of the Flash player you are using. If you have any questions, please also use the help function or consult the documentation for your Flash player or contact its manufacturer or user support.
If you prevent or restrict the installation of cookies, not all of the functions on our site may be fully usable.
a) Google Analytics
For website analysis, this website uses Google (Universal) Analytics, a web-analysis service of Google LLC (www.google.de). This serves to protect our legitimate interests in an optimal presentation of our offer in accordance with Art. 6 (1) Sentence 1 (f) GDPR. Google (Universal) Analytics uses methods that enable analysis of use of the website, such as cookies. As a rule, the information collected about your use of this website is transmitted to a Google server in the USA and stored there. Activation of IP anonymisation on this website, though, will shorten your IP address within Member States of the European Union, or in other Signatory States to the Agreement on the European Economic Area, prior to transmission. Only in exceptional cases is the full IP address sent to a Google server in the USA and truncated there. As a matter of principle, Google will not merge the anonymised IP address transmitted by your browser with other data within the scope of Google Analytics. Once the purpose for collecting the data and its use by Google Analytics have come to an end, the data collected in this connection will be deleted.
Google LLC has its main office in the USA and is certified under the EU-US Privacy Shield. As a result of this agreement between the US and the European Commission, the latter has established that companies certified under the Privacy Shield have an adequate level of data protection.
You may prevent capture of the data generated by the cookie relative to your usage of the website (incl. your IP address) by Google, along with processing of these data by Google, by downloading and installing the browser plug-in available through the following link: http://tools.google.com/dlpage/gaoptout?hl=de
b) Google Ads Conversions
We use offers from Google Ads to call attention to our services and products by means of advertising material (so-called Google Ads) on external websites. This enables us to determine how successful the advertising efforts are relating to the data of the advertising campaigns. Our aim is to show you advertising that is of interest to you, to make our website more appealing and to achieve a fair calculation of advertising expenses.
These cookies allow Google to recognize your internet browser. If a user visits certain pages of an ads customer’s website and the cookie stored on their computer has not yet expired, Google and the customer can identify that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Ads customer. Accordingly, cookies cannot be tracked via the websites of Ads customers. We do not collect or process any personal data in the aforementioned advertising efforts. We only receive statistical evaluations from Google. Based on these evaluations, we can distinguish which of the employed advertising efforts are particularly effective. We do not receive any further data from the use of the advertising material and we cannot identify the users based on this information.
The marketing tools that are used allow the browser to automatically establish a direct connection to the Google server. We have no influence on the scope and further use of the data collected by Google and its use of this tool. Therefore, we are informing you according to our current state of information: by integrating Ads Conversion, Google receives the information that you have accessed the corresponding part of our website or clicked on one of our advertisements. If you are registered at a Google service, Google can assign the visit to your account. Even if you are not registered with Google or are not logged in, there is a possibility that the provider can determine and store your IP address.
The legal basis for the processing of your data is Art. 6 (1) (f) GDPR.
The use of Google ads conversions enables us to increase the relevance of the placed advertisements and to ensure a fair calculation of advertising expenses.
You can prevent or restrict participation in the tracking process in several ways:
• by setting your browser software accordingly, by disabling third-party cookies you will not receive any third-party advertisements,
• by deactivating cookies for conversion tracking, by setting your browser so that cookies from the www.googleadservices.com domain are blocked,
• by administration at www.google.de/settings/ads, although this setting will be deleted if you delete your cookies,
• by deactivating the interest-based ads of the providers that are part of the self-regulation campaign “About Ads” via the link www.aboutads.info/choices, although this setting will be deleted if you delete your cookies,
• by permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome via the link www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.
In addition to Ads Conversion, we use the Google Remarketing application. This is a system that enables us to contact you again if you have already interacted with our website. This application makes it possible for you to see our advertisements as you continue to use the internet after visiting our website. This occurs by means of cookies stored in your browser, via which your user behavior when visiting different websites is registered and evaluated by Google. This way Google can determine any previous visit to our website.
According to its own statements, Google does not combine the collected data as part of the remarketing with your personal data, which may have been saved by Google. According to Google, pseudonymization is used in remarketing in particular.
The legal basis for the processing of your data is Art. 6 (1) (f) GDPR.
The use of Google Remarketing enables us to show you advertisements that are of interest to you and to make our website more appealing to you.
We only receive statistical evaluations from Google. Based on these evaluations, we can determine which of the employed advertising efforts are particularly effective. We do not receive any further data from the use of the advertising material and cannot identify the users based on this information.
The marketing tools that are used allow the browser to automatically establish a direct connection to the Google server. We have no influence on the scope and further use of the data collected by Google and its use of this tool.
By integrating Ads Conversion, Google receives the information that you have accessed a certain part of our website or clicked on one of our advertisements. If you are registered at a Google service, Google can assign the visit to your account. Even if you are not registered with Google or are not logged in, there is a possibility that the provider can determine and store your IP address.
We use the web analysis service Google Signals. Google uses Signals to provide website operators with reports on cross-device user numbers and on various groups of users based on the different combinations of devices used. In order to do this, Google uses so-called “cross device tracking”. This allows website visits of an individual using different devices to be assigned to this one visitor, provided that the user has logged into a Google service during the sessions and has activated the “personalized advertising” option in the Google account settings. Google Signals is only used with an activated IP pseudonymization. This means that the IP address of users within the member states of the EU or in other contracting states of the Agreement on the European Economic Area is shortened. This shortening removes the personal connection to your IP address. Consequently, no conclusions can be drawn about the identity of an individual user.
The legal basis for the processing of your data is Art. 6 (1) (f) GDPR.
We use Google Signals to better understand the customer journey of the respective website user and, accordingly, to be able to deliver compliant and relevant content for the user.
The acquisition of data by Google signals can be objected to at any time by deactivating “personalized advertising” in the Google account at the following link: https://support.google.com/ads/answer/2662922?hl=de
f) Tag Manager
Google Tag Manager is a solution with which we can manage so-called website tags via an interface (thereby integrating services such as Google Analytics and other Google marketing services in our online offer). The Tag Manager itself (which implements the tags) does not process any of the users’ personal data. With regard to the processing of users’ personal data, the following information about Google services can be referenced. AUP: https://www.google.com/intl/de/tagmanager/use-policy.html.
The legal basis for using this tool is Art. 6 (1) (f) GDPR.
Tag Manager is a technical solution in order to prompt other tags with which user data can be collected if necessary.
You can find more information on data collection and processing by Google in Google's data privacy statement, which you can access at http://www.google.com/policies/privacy.
The legal basis is Art. 6 (1) (f) GDPR.
We use this service to increase the appeal, content and functionality of our website by presenting new functions and content to a percentage of our users and statistically evaluating any change of use.
You can prevent the storage of cookies by setting your internet browser accordingly. In addition, you can prevent Google from collecting the data generated by the cookie based on your use of our website (including your IP address) and from processing this data by downloading and installing the browser plug-in which is available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
- YouTube video plug-in
This website incorporates third-party content. This content is provided by Google LLC (‘Provider’).
YouTube is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (‘Google’).
The advanced privacy setting has been enabled for videos from YouTube that are included on our website. This means that no user information is collected and stored by YouTube unless they play a video. The inclusion of videos serves to protect our legitimate interests in optimal marketing of our offer in accordance with Art. 6 (1) Sentence 1 (f) GDPR.
a) Google Fonts
Our website uses Google Fonts to display external fonts. This is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 (hereinafter referred to as ‘Google’). Through certification under the EU-US Privacy Shield (‘EU-US Privacy Shield’)
Google guarantees that it will follow the EU’s privacy regulations when processing data in the USA. To enable the display of certain fonts on our website, a connection to the Google server in the USA is established whenever our website is accessed.
The basis in law for this is Art. 6 (1) (f) GDPR. Our legitimate interest lies in the optimisation and efficient operation of our website.
Accessing our website establishes a connection to Google from which Google can identify the website from which your request has been sent and the IP address to which the fonts are to be transmitted for display.
At https://adssettings.google.com/authenticated and https://policies.google.com/privacy, Google offers further information, particularly with regard to the options available for preventing data usage.
b) Adobe Typekit
In order to ensure the uniform depiction of certain fonts, our website uses fonts called Adobe Typekit Web Fonts provided by Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe).
When you access pages of our website, your browser will automatically load the required fonts directly from the Adobe site to be able to display them correctly on your device. As a result, your browser will establish a connection with Adobe’s servers in the United States. Hence, Adobe learns that your IP address was used to access our website. According to the information provided by Adobe, no cookies will be stored in conjunction with the provision of the fonts.
Adobe is in possession of a certification in accordance with the EU-US Privacy Shield. The Privacy Shield is a compact ratified between the United States of America and the European Union, aiming to warrant compliance with European Data Protection Standards. For more information, please follow this link: https://www.adobe.com/de/privacy/eudatatransfers.html.
The use of Adobe Typekit Web Fonts is necessary to ensure the uniform presentation of fonts on our website. This constitutes a legitimate interest as defined in Art. 6 Sect. 1 lit. f GDPR.
For more information about Adobe Typekit Web Fonts, please read the policies under: https://www.adobe.com/de/privacy/policies/typekit.html.
Adobe’s Data Privacy Declaration may be reviewed under: https://www.adobe.com/de/privacy/policy.html.
4. Microsoft Bing Ads
We can use technologies from Bing Ads (bingads.microsoft.com) on this page, which are provided and operated by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (“Microsoft”). Microsoft places a cookie on your device if you have connected to this website via a Microsoft Bing ad. This way, we can recognize that a user clicked on an ad, was redirected to our website and arrived at a previously determined target page (“target URL”).
Microsoft only informs us about the total number of users who clicked on an ad placed by Bing and who were redirected to the target page. Microsoft uses the cookie to collect, process and use information from which user profiles are created using pseudonyms. These user profiles are used to analyze visitor behavior and to display advertisements. No personal information about the identity of the user is processed.
The legal basis for the processing of your data is Art. 6 (1) (f) GDPR.
We use Microsoft Bing Ads to call attention to our products when there is a search for relevant keywords related to our products on Bing and its partner networks.
If you would not like information about your user behavior to be processed by Microsoft as explained above, you can object to the necessary setting of a cookie – for example via a browser setting that generally deactivates the automatic setting of cookies.
You can also prevent the collection of data generated by the cookie and related to your use of the website and the processing of this data by Microsoft by objecting to the processing via the following link http://choice.microsoft.com/de-DE/opt-out.
Further information on data protection and cookies used by Microsoft and Bing Ads can be found on the Microsoft website https://privacy.microsoft.com/de-de/privacystatement.
a) Remarketing (Custom Audiences)
This website uses the remarketing function “Custom Audiences” by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (hereinafter “Facebook”). This tag establishes a direct connection to the Facebook server when you visit the website. The information is transmitted to the Facebook server that you have visited this website and Facebook assigns this information to your personal Facebook user account.
The legal basis for the processing of your data is Art. 6 (1) (f) GDPR.
The remarketing function serves the purpose to offer visitors of this website interest-based advertisements (“Facebook ads”) when visiting the social network Facebook. For this purpose, the remarketing tag by Facebook was implemented on this website.
You can deactivate the remarketing function “Custom Audiences” at https://www.facebook.com/settings/?tab=ads#_=_
In order to do this, you must be logged in to Facebook. You can find detailed information on the collection and use of your data by Facebook and about your corresponding rights and options in Facebook’s data privacy statement at https://www.facebook.com/about/privacy/.
On our website we use so-called “Facebook Pixels” by Facebook Inc. (hereinafter “Facebook”). In this way, the behavior of users can be tracked after they have seen or clicked on a Facebook advertisement. This procedure is used to evaluate the efficacy of Facebook advertisements for statistical and market research purposes.
The legal basis for the use of this tool is Art. 6 (1) (f) GDPR.
We use Pixels to optimize our advertising efforts.
When you visit our website, a connection is established between your browser and the Facebook server via the Facebook pixel and a cookie is set. The data obtained is saved and processed by Facebook, so that a connection to the respective user profile is possible and Facebook is able to use the data for advertising purposes in accordance with Facebook’s guidelines on data usage – provided you have not objected to this in the data protection settings of your Facebook profile.
The data collected is anonymous so we are not able to trace your identity in any way. A transfer of personal data in accordance with the Facebook service “Custom Audiences via your customer list” or a comparison of data via the so-called “extended comparison via the Facebook pixel” does not occur. You can object to the collection or evaluation of your data by deselecting the corresponding tracking by clicking on the following link: Opt-Out-Link.
We use social plugins from the social media network LinkedIn by the company LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA on our website. The social plugins can be feeds, content sharing or a link to our LinkedIn page. The social plug-ins are clearly marked with the established LinkedIn logo and allow interesting content to be shared directly via our website. For the European Economic Area and Switzerland, LinkedIn Ireland Unlimited Company Wilton Place in Dublin is responsible for data processing.
By embedding these plug-ins, data can be sent to LinkedIn and stored and processed there. In this data privacy statement we would like to inform you about the kind of data, how the network uses this data and how you can manage or prevent data storage.
The legal basis for the use of LinkedIn's social plug-ins is Art. 6 (1) (f) GDPR.
LinkedIn social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com; Data privacy statement: https://www.linkedin.com/legal/privacy-policy; Privacy Shield (guarantee of data protection level when processing data in USA): https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active; Objection options (opt-out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
LinkedIn plugins and control – e.g. contents such as images, videos or texts and buttons with which users can share content of the online offer within LinkedIn. Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland;
Data privacy statement: https://www.linkedin.com/legal/privacy-policy; Privacy Shield (guarantee of data protection level when processing data in USA): https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active; Objection options (opt-out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
7. Social media plugins
You can share content that you like on our website on the social networks Facebook, Twitter, XING and the instant messaging service Whatsapp. In order to do this, plugins by the providers of the respective service are used. If you click the plugin in order to share one of our posts via the networks, a connection to the respective service will be established. This post will then appear in your user account in accordance with your privacy settings – e.g. only for a certain group of people in the network or as a public post.
Usually, the plug-ins immediately transmit user data to the server of the social network when the website is viewed, regardless of whether you click or tap the plug-in or are registered as a user in the social network at all. This enables providers to track your surfing behavior and evaluate it for their own marketing purposes (user tracking).
The legal basis for the use of social media plugins is Art. 6 (1) (f) GDPR.
The use of plugins for advertising purposes represents our legitimate interest in accordance with the GDPR. By sharing and recommending content on our website or in our catalog on social networks, our company can increase its visibility.
- Rights of data subjects
Where the personal data stored about you are concerned, you have the following rights vis-à-vis the operator:
- Information (Art. 15 EU GDPR)
- Rectification (Art. 16 EU GDPR)
- Erasure or restriction of processing (Art. 17 and 18 EU GDPR)
- Objection to processing (Art. 21 EU GDPR)
- Data portability (Art. 20 EU GDPR)
- Right to lodge a complaint with a supervisory authority (Art. 77 EU GDPR) You have the right at any time to be provided with information about personal data we have stored about you. You also have the right to request correction, blocking, or, to the extent allowed by statutory requirements for data storage of business transactions, deletion of your personal data. Please contact our Data Protection Officer for this purpose.
In order for your data to be blocked at all times, it must, for monitoring purposes, be stored in a locked file. You may also request that data be deleted, unless there is a statutory requirement for it to be archived. If such a requirement exists, we will block your data upon request.
Changes to, or revocation of, your consent with future effect can be made by sending us a written notification to this effect.
- Changes to our privacy provisions