Privacy Policy |
We take the protection of your personal data very seriously. We would like you to know when we collect what information and how we use it. We process your data exclusively based on legal regulations (GDPR/ General Data Protection Regulation/ Privacy Policy Amendment Act TKG 2003). We would like to inform you about the most important aspects of data processing in this privacy policy. The further development of our website and the implementation of new technologies also brought about changes in our privacy policy. Thus, we recommend you to read this privacy policy from time to time. 1. The name and address of the data controller: The data controllers within the meaning of the General Data Protection Regulation and the Member States of the European Union as well as other data protection provisions are: 2. Cookies Cookies are text files placed on the user’s computer system by a browser and stored there. Each time a user visits a website, a cookie may be saved in the user’s operating system. This cookie contains a characteristic string that identifies the browser the next time the user visits this website. Cookies help us to determine the frequency of use and the number of users of our websites, as well as to make our services to our users as convenient and efficient as possible. On the one hand, our website uses session cookies, which are cached exclusively for the duration of your use of our website, and on the other hand permanent cookies, in order to record information about visitors who repeatedly access our website. The purpose of using cookies is to be able to offer you optimal user guidance as well as to "recognize" you and thus be able to present (as much as possible) diversified internet pages and new contents during repeated use. The content of a permanent cookie is limited to an identification number. Names, IP-addresses, etc. will not be saved. We do not create an individual profile of your online activities. Using our web site without cookies is also possible. You can disable cookies in your browser, restrict them to certain websites, or set your web browser (Chrome, IE, Firefox ...) to notify you when a cookie is sent. You can also delete cookies from your PC's hard drive any time. Please note, however, that in this case you will have to expect a limited display of the page and limited user guidance. 3. SSL/TLS encryption For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as a site operator, this site uses an SSL or TLS encryption. You can check if you have a secure and encrypted connection with SSL by looking for the padlock symbol in the status bar on your browser, the URL address will also change from http:// to https://. If SSL or TLS encryption is enabled, the data you submit to us can not be read by a third party. 4. Contact via the website Personal data that you transmit electronically on this website, such as name, e-mail address, address or other personal information, will only be used by us for specific purposes, kept safe and will not be disclosed to a third party. The provider who is authorized with the hosting of the website collects and stores information on the web server such as browser, operating system, link page, IP address, time of access, etc. These data can not be assigned to any specific person without checking other data sources and we do not evaluate these data any further as long as there is no illegal use of our website. We use a large number of technical and organizational tools in order to assure the protection of your personal data against unauthorized access or communication. Nevertheless, Internet-based data transmissions can generally have security flaws, thus, an absolute protection can not be guaranteed. For this reason, every data subject is free to submit personal data to us in alternative ways, for example by telephone. 5. The comment function When website visitors leave comments or form entries, the data entered and their IP addresses are saved. This is for security reasons, if someone authorizes illegal content (insults, left or right-wing extremist propaganda, hate posts, etc.). In this case we are interested in the identity of the author. 6. Use of Google Fonts We use Google Fonts from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) on our website. Google Fonts are used without authentication and no cookies are sent to the Google Fonts API. Should you have a Google account, none of your Google Account information will be transmitted to Google while using Google Fonts. Google only records the use of CSS and the font used, and stores this data securely. More information about these and other questions can be found at https://developers.google.com/fonts/faq. The data Google collects and how Google uses this information can be found at https://www.google.com/intl/en/policies/privacy/. 7. Google Analytics This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called cookies; text files that are stored on your computer allowing us to analyze the use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will be shortened by Google beforehand within the member states of the European Union or other parties subject to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics will not be combined with other Google data. You can prevent the storage of cookies by a corresponding setting of your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you can prevent Google’s data collection generated by the cookie and related to your use of the website (including your IP address), and Google’s data processing by using the link below (https://tools.google.com/dlpage/gaoptout?hl=en) to download and install the available browser plugin. Additional information and Google's privacy policy can be found at https://www.google.com/intl/en/policies/privacy/ and http://www.google.com/analytics/terms/en.html . Google Analytics is explained in more detail at https://www.google.com/intl/de_de/analytics/. 8. Google Adwords Conversion Tracking 9. Facebook Links Our website also contains links to the external social network Facebook. This website is operated exclusively by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (Facebook). The reference link is clearly indicated by the Facebook logo. If you click on this link, Facebook plugins will be activated and your browser will connect you directly to the Facebook server. If you continue using the Facebook link while visiting our website and have logged in to Facebook via your personal user account, the information that you have visited on our website will be forwarded to Facebook. Facebook will be able to allocate the visiting of the website to your account. 10. Facebook Remarketing/Retargeting/Pixel Our pages include remarketing tags from the Facebook social network, 1601 South California Ave., Palo Alto, CA 94304, USA. When you visit our website, the remarketing tags make a direct connection between your browser and the Facebook server. In this way, Facebook receives the information that you have visited our website with your IP address. As a result, Facebook can allocate the visiting of our website to your user account. We can use this information for the display of Facebook ads. Please note that we as the website provider are not aware of the content of the data transmitted and their use by Facebook. For further information please visit Facebook's privacy policy at https://www.facebook.com/about/privacy/. If you do not want to take part in the data collection via Custom Audience, you can deactivate Custom Audiences here. 11. Newsletter You have the opportunity to subscribe to our newsletter on our website. For this, we’ll need your e-mail address and your declaration that you agree with the subscription to the newsletter. As soon as you have subscribed to the newsletter, we will send you a confirmation e-mail with a link to confirm the registration. The personal data collected during the newsletter registration will be used exclusively to send out our newsletter. Newsletter subscribers may also be notified by e-mail if this is necessary for the operation of the newsletter service or registration, as might be the case in the event of changes in the newsletter or any technical changes. The personal data collected as part of the newsletter service will not be passed to a third party. The subscription to our newsletter may be terminated by the data subject any time. The consent to the storage of personal data for sending out the newsletters can be revoked any time. There is a corresponding link in each newsletter for revoking the consent. 12. Newsletter-tracking For sending and analyzing the email correspondences (for example newsletter or customer information) we use the software "Eyepin". The newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails that are sent in HTML format to allow log-file recording and log-file analysis. This allows a statistical evaluation of the success or failure of our online marketing campaigns. The embedded pixel lets us know if and when an email was opened by a data subject. Furthermore, the newsletter tracking will also detect which links in the e-mail were accessed by the data subject. Such personal data collected by the tracking pixels will be stored and evaluated by us in order to optimize the newsletter distribution and to better adapt the content of our future newsletters to the interests of the data subjects. This personal data will not be disclosed to a third party. Subscribers will be able to unsubscribe from receiving newsletters any time by using the double opt-in procedure. After this, no further data will be collected and the address will be placed on a blacklist that documents the deregistration and prevents further submissions. Find out more about Eyepin at https://support.eyepin.com/hc. 13. The use of YouTube This website includes YouTube references. YouTube is an internet video portal that allows video publishers to upload videos free of charge and other users to view, rate and comment on these videos. YouTube allows the publication of all types of videos, entire films and television broadcasts, as well as music videos, trailers or user-made videos. YouTube's operating company is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA. 14. Order Procedure through the online shop All data that a costumer enters during an order are stored. This includes
Information which is absolutely necessary for the delivery or your order processing will be passed on to third-party service providers. Your data will be deleted as soon as their storage is no longer required by the publisher or by law. 15. Payment by PayPal in the online shop Our website includes PayPal references. PayPal is an online payment service provider. Payments are made through so-called PayPal accounts, which are private or business online accounts. In addition, PayPal has the ability to process online payments through credit cards even if a user does not have a PayPal account. A PayPal account is managed via an email address, that’s why there is no classic bank account number. PayPal makes it possible to initiate online payments to third parties or to receive payments. PayPal also has a special fiduciary function and offers buyer protection services. The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg. If you select "PayPal" as a payment option during your order in our online shop, your personal data will be automatically transmitted to PayPal. By selecting this payment option, you automatically agree to the transmission of your personal data required for payment processing. The personal information sent to PayPal are usually as follows: first name, last name, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing. For processing the sales contract, such personal data will also be required that are necessary for the relevant order. The purpose of the transmission of your personal data is only for the payment transaction and fraud prevention. The person in charge of the transaction will transmit personal information to PayPal only if there’s a legitimate interest in the transmission of such data. The personal information exchanged between PayPal and the person responsible for the data processing may be transferred to credit reporting agencies by PayPal. Its purpose is the identity and credit assessment. PayPal may disclose personal information to affiliated companies, service providers or subcontractors if this information is necessary to fulfill its contractual obligations or to process the data. You have the right to object to the transmission of your personal data by PayPal any time. Your revocation has no effect on the personal information that must be processed, used or transmitted for (contractual) payment processing. PayPal's current privacy policy is available at https://www.paypal.com/webapps/mpp/ua/privacy-full. 16. Legal basis of processing Art. 6 I lit. GDPR serves as the legal basis for processing operations where we obtain consent for a particular processing purpose. If the processing of your personal data is necessary to fulfill the contract you signed with us, as is the case, for example, in the processing operations necessary for the supply of goods or the provision of any other services or considerations, processing shall be based on Art. 6 I lit. (b) GDPR. The same applies to processing operations that are necessary to carry out pre-contractual measures, for example in cases of inquiries regarding our products or services. If our company is subject to a legal obligation which requires the processing of your personal data, such as the fulfillment of tax obligations, the processing is based on Art. 6 I lit. (c) GDPR. In rare cases, the processing of the personal data may be required to protect the vital interests of the person involved or any another individual person. This would be the case, for example, if a person visiting our company was injured and his or her name, age, health insurance or other vital information would have to be passed on to a doctor, hospital or other third party. Then the procedure would be based on Art. 6 I lit. (d) GDPR. Finally, processing operations could be based on Art. 6 I lit. (f) GDPR. On this legal basis, processing operations that are not covered by any of the above legal bases are required if processing is necessary to safeguard the legitimate interests of our company or a third party, unless the interests, fundamental rights and fundamental freedoms of the person involved prevail. Such processing operations are particularly allowed to us because they have been specifically mentioned by the European legislator. In this regard, the European legislator takes the view that a legitimate interest could be assumed if the data subject is a customer of the company in charge (recital 47, second sentence, GDPR). 17. Legitimate interests in the processing Is the processing of personal data based on Article 6 I lit. (f) GDPR, it is our legitimate interest in conducting our business for the benefit of all of our employees and our shareholders. 18. Duration of personal data retention The duration of personal data retention is the period stipulated by law. The relevant data will be automatically deleted as soon as this period expires, if these data are no longer required to fulfill the contract or to initiate a contract. 19. Legal or contractual regulations for the provision of personal data; the necessity for the conclusion of the contract; obligations of the data subject providing personal data; the possible consequences of not providing personal data We would like to inform you that the provision of personal information is in part required by law (such as tax regulations) or may result from contractual arrangements (such as information of the contractor). Sometimes it is necessary for a contract conclusion that the data subject provides us personal data that will subsequently be processed by us. For example, the data subject is required to provide us personal information when our company enters into a contract with the data subject. Failure in providing the personal data would mean that the contract with the person could not be concluded. Prior to any data provision, the data subject has to contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of the personal data is required by law or is necessary for the contract conclusion, and will also explain the consequences of not providing the required personal data. 20. Automated decision-making As a company conscious of its responsibilities, we refrain from automatic decision-making or profiling. 21. Your rights (rights of the data subject) a.) The right to obtain confirmation b.) The right of information
If the data subject wishes to exercise this right to information, the person may contact an employee of the data controller any time. c.) The right to rectification d.) The right to erasure (the right to be forgotten)
If the personal data have been made public by Novum publishing and if our company is responsible for deleting personal data as per Art. 17 para. 1 GDPR, Novum publishing takes appropriate measures, taking into account the available technology and the implementation costs also. Novum publishing will also inform other data controllers processing the personal data that the data subject has asked for the erasure of all links to his personal data and this personal information or copies or replications need to be deleted unless required for the processing. The employee of Novum publishing will arrange the necessary steps in individual cases. e.) The right to restrict processing
f.) The right to data portability g.) The right to objection h.) Automated decisions in individual cases including profiling i.) The right to revoke data protection consent If you believe that the processing of your data violates data protection law or if your data protection claims have otherwise been violated in any way, you can contact the supervisory authority. The United Kingdom of Great Britain and Northern Ireland: In case of a legal dispute, the original German text serves as the legal basis. |