1. Privacy: An Overview
Data collection on our website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website owner. You can find their contact details on the Legal Information page of this website.
How do we collect your data?
One way your data is collected is when you share data with us. For example, data you enter on a contact form.
Other data is automatically collected by our IT systems when you visit the website. This is mainly technical data (e.g. internet browser, operating system or time of page view). This data is automatically collected as soon as you access our website.
For what purpose do we use your data?
Some of the data is collected to guarantee the proper functioning of the website. Other data may be used to analyse your user behaviour.
What are your rights relating to your data?
You have the right to receive information about the origin, recipients and purpose of the personal data stored about you at any time and without charge. You also have the right to have your data rectified, erased, or to restrict its processing. You can contact us at any time at the address listed on the Legal Information page for more information on this or if you have questions about other data privacy topics. Furthermore, you have the right to lodge a complaint with the relevant supervisory authority.
2. General Information and Required Information
Please note that there are inherent security risks to data communication on the internet (e.g. in email communication). It is not possible to guarantee complete protection to prevent the data from being accessed by third parties.
Note on the data controller
The body responsible for data processing on this website is:
DeuFa Fallen Produktions- und Vertriebs GmbH
Alte Landstraße 1–5
Telephone: +49 85 07 5 15
The data controller/responsible body is the natural person or legal entity who, alone or together with others, decides on the purpose and means of processing personal data (e.g. names, email addresses, etc.).
Withdrawing your consent to data processing
A number of data processing operations can only be carried out with your express consent. You can withdraw previously given consent at any time. To do so, an informal email message to us suffices. The withdrawal of consent does not affect the lawfulness of data processing carried out up to the time of withdrawal.
Right to object to the data processing in special cases and the right to object to direct marketing (Art. 21 GDPR)
Where your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing; which includes profiling to the extent that it is related to such direct marketing. If you object, your personal data shall subsequently no longer be used for direct marketing purposes (objection pursuant to Art. 21 Par. 2 GDPR).
Right to lodge a complaint with the relevant supervisory authority
Where GDPR is breached, the party concerned has the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work or the place of the alleged infringement. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedy.
Right to data portability
You have the right to receive data that we automatically process on the basis of your consent or for the performance of a contract either yourself or have it sent to a third-party in a commonly used, machine-readable format. Where you request the direct transmission of data to another data controller, that will only be carried out if it is technically feasible.
SSL or TLS encryption
This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential information, e.g. orders or queries you submit to us as the website owner. You can tell a connection is encrypted when the browser address line changes from “http://” to “https://” and when the lock symbol appears in your browser line.
When the SSL or TLS encryption is activated, the data you send us cannot be intercepted by third parties.
Information, restricting processing, erasure and rectification
Within the framework of the applicable statutory provisions, you have the right at any time to receive, free of charge, information about the personal data relating to you, its origin and recipients and the purpose of the data processing, and if applicable, a right to have the data rectified, erased or to limit its processing. You can contact us at any time at the address listed on the Legal Information page for more information on this or if you have questions about other topics related to personal data.
Right to restrict processing
You have the right to restrict the processing of your personal data. To do so, please contact us at any time at the address listed on the Legal Information page. You have the right to restrict processing in the following cases:
- If you contest the accuracy of the personal data we store relating to you, we will usually need time to verify this. For the duration of the time it takes to verify the data’s accuracy, you can demand that we restrict the processing of your personal data.
- If your personal data is being/has been processed unlawfully, you can request a restriction on the processing of the data, rather than for that data to be erased.
- If we no longer need your personal data, but you need it to exercise, defend or establish legal claims, you have the right, instead of having the data erased, to restrict the processing of your personal data.
- If you have exercised your right to object in accordance with Art. 21 Par. 1 GDPR, a judgement must be made between your interests and ours. Until it is established whose interests take precedence, you have the right to restrict the processing of your personal data.
If you have restricted the processing of your personal data, this data may – apart from its storage – only be processed with your consent or for the establishment, exercise or defence of legal claims or to protect the rights of another natural or legal person, or for reasons relating to an important public interest of the European Union or a member state.
3. Data collection on our website
Server log files
The website provider automatically collects and stores information in server log files, which your browser automatically transmits to us. This information includes:
- Browser type and browser version
- Operating system
- Referrer URL
- Host name of the computer
- Time of the server request
- IP address
This data is not brought together with other data sources.
This data is collected on the basis of Art. 6 Par. 1 f GDPR. The website operator has a legitimate interest in ensuring the (technically) problem-free presentation and optimisation of their website – the server log files must be collected for this purpose.
If you submit a query to us via the contact form, your data from the query form, including the contact details you provided on it, will be stored by us for the purpose of processing the query and in case there are any follow-up questions. We do not pass this data on to anyone else without your permission.
The processing of the data entered in the contact form is thereby carried out exclusively on the basis of your consent (Art. 6 Par. 1 a GDPR). You can withdraw this consent at any time. To do so, an informal email message to us suffices. The withdrawal of consent does not affect the lawfulness of data processing operations carried out up to the time of withdrawal.
The data you entered in the contact form will remain with us until you ask us to erase it, until you withdraw your consent for its storage or until the reason for the storage of the data no longer applies (e.g. after your query has been dealt with). Mandatory legal provisions – in particular retention periods – remain unaffected.
Processing data (customer and contract data)
We collect, process and use personal data only where it is required to establish, define or change the legal relationship (inventory data). This is done on the basis of Art. 6 Par. 1 b GDPR, which allows the processing of data for the performance of a contract or precontractual measures. We only collect, process and use personal data about the use of our webpages (usage data) where this is required to allow the user to use the service or to pay for it.
The customer data collected is erased after the completion of the contract or the end of the business relationship. Mandatory legal retention periods remain unaffected.
4. Analysis Tools and Advertising
This website uses its own service for web analysis. This service does not use any personal data. No data is read or stored on the end device of the website visitor. The IP address of the website visitor is anonymized. It is not possible to recognize the website visitor beyond the website. Cookies are not set, any existing cookies are transmitted technically necessary, but also not used.
The web analysis enables the website operator to record and analyze the use of this website by the website visitors. Here, the website operator receives various usage data, such as time of use, page views, dwell time, operating systems used or screen resolution used. It is also possible to record whether website visitors perform certain actions such as clicks, purchases.
Objection to data collection
You can prevent the collection of your analytics data by clicking on the following link: Datenerfassung deaktivieren. An opt-out cookie will be set that will prevent the collection of your data during future visits to this website in your current browser.