1. Basic information on data processing and legal bases
1.2. The terms used, such as “Personal data” or their “processing”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
The personal data of users processed in the context of this online offer includes inventory data (e.g., names, company names, addresses, telephone numbers and e-mail addresses), usage data (e.g., the visited web pages of our online offering) and content data (e.g., entries in the contact form).
1.3. The term “user” covers all categories of persons affected by data processing. These include our business partners, customers, interested parties and other visitors to our online offer. The terms used such as “Users” are to be understood gender-neutral.
1.4. We process personal data of users only in compliance with the relevant data protection regulations. This means that users’ data will only be processed if there is a legal permit. That is, especially if the data processing for the provision of our contractual services (e.g. processing of orders) as well as online services required or required by law, the consent of the user exists, as well as our legitimate interests i.e. interest in the analysis, optimization and economic operation and security of our online offer within the meaning of Art. 6 (1) lit. GDPR, in particular in the range measurement, creation of profiles for advertising and marketing purposes as well as collection of access data and use of third-party services.
1.5. Please note that the legal basis of the consents Art. 6 para. 1 lit. a. and Art. 7 GDPR, the legal basis for the processing for the performance of our services and the performance of contractual measures Art. 6 para. 1 lit. b. GDPR, the legal basis for processing in order to fulfill our legal obligations Art. 6 para. 1 lit.c. GDPR, and the legal basis for processing in order to safeguard our legitimate interests Art. 6 para. 1 lit. f. GDPR is.
2. Safety measures
2.1. We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of data protection laws are adhered to and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. One of the security measures is the encrypted transfer of data between your browser and our server.
3. Disclosure of data to third parties and third party providers
3.1. A transfer of data to third parties is only within the scope of legal requirements. We only pass on the data of the users to third parties if, for example, based on Art. 6 para. 1 lit. b) GDPR is required for contract purposes or based on legitimate interests in accordance with Art. Art. 6 para. 1 lit. f. GDPR on the economical and effective operation of our business operations.
3.2. If we use subcontractors to provide our services, we will take appropriate legal precautions and appropriate technical and organizational measures to protect personal data in accordance with applicable law.
4.1. When contacting us (via contact form or e-mail), the information provided by the user to process the contact request and its processing acc. Art. 6 para. 1 lit. b) GDPR processed.
5. Comments and posts
5.1. If users leave comments or other contributions, their IP addresses are based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR stored for 7 days.
5.2. This is for our own safety, if someone leaves illegal content in comments and contributions (insults, prohibited political propaganda, etc.). In this case, we ourselves can be prosecuted for the comment or post and are therefore interested in the identity of the author.
6. Collection of access data and log files
6.1. Based on our legitimate interests within the meaning of Art. 6 para. 1 lit. f. GDPR Data on every access to the server on which this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
6.2. Logfile information is stored for security purposes (for example, to investigate abusive or fraudulent activities) for a maximum of seven days and then deleted. Data whose further retention is required for evidential purposes shall be exempted from the cancellation until final clarification of the incident.