Data protection information Our data protection information is structured as follows:
Content For reasons of better readability, the simultaneous use of masculine and feminine forms of speech is dispensed with. All designations apply to all genders.
A. General Information
1. responsible person Responsible for the processing of personal data is:
Wiggert & Co. GmbH
Phone: +49 721 94346-0
Fax: +49 721 94346-99
Mail: info [at] wiggert [dot] com
A. General Information
1 1. responsible person
1 2. data protection officer
2 3. transfer of data to third parties
2 4. contacting
2 5. advertising measures
2 6. storage period
3 7. your rights
3 B. Supplementary information on data processing on our website
4 I. Absolutely necessary data processing for the provision of the website
4 1. call of our web pages and server log files
4 2. consent management tool
5 3. cookies for the provision of the website
5 II. Additional data processing on the website after consent
6 1. google services
7 2. third country transfer
2. transfer of data to third parties Your personal data will only be transferred to third parties if data protection law permits such transfer, in particular if you have consented to the transfer (Art. 6 (1) p. 1 lit. a DSGVO) or if the transfer is necessary for the purpose of processing the contract (Art. 6 (1) p. 1 lit. b DSGVO). Categories of recipients of personal data not bound by instructions are: Video service providers. Categories of service providers bound by instructions and obligated in accordance with the data protection regulations, who may not use the data for any other purpose, are: Providers for the support and hosting of the website.
We collect personal data that you transmit to us in the course of contacting us. The processing of this data is based on Art. 6 para. 1 p. 1 lit. b DSGVO, insofar as this is necessary for the implementation of a measure requested by you. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6 para. 1 p. 1 lit. f DSGVO).
4. advertising measures We have a legitimate interest in the use of your data for direct advertising purposes within the meaning of Art. 6 (1) p. 1 lit. f DSGVO. You can generally object to the processing of your personal data for advertising purposes with effect for the future in writing, by fax, by e-mail or by telephone. For the objection, only the transmission costs according to the prime rates are incurred. The lawfulness of the data processing operations already carried out remains unaffected by this.
6. storage period Personal data processed by us will be stored by us for as long as necessary for the respective purpose – in particular the processing of requests and orders. Thereafter, personal data will be deleted. Storage beyond this period is possible if you have consented to this in accordance with Art. 6 Para. 1 Sentence 1 lit. a DSGVO or if we are legally obliged to retain the data (e.g. in accordance with the German Commercial Code and the German Fiscal Code, ten years for tax-relevant documents and six years for other business letters) (Art. 6 Para. 1 Sentence 1 lit. c DSGVO).
7. your rights
7.1 Deactivating and deleting cookies Cookies may be stored on your terminal device when you visit our website. You can deactivate the storage of cookies on your end device in your browser settings. In addition, you can delete cookies stored in your browser settings at any time. However, in this case you may not be able to use all functions of our website to their full extent.
7.2 Right of revocation Some of the processing procedures described in this data protection information are based on your consent. You may revoke your consent to the performance of these processing operations at any time with effect for the future. You can exercise your revocation to data processing through services on our website via the Consent Management Tool (“CMT”). In this way, you can also consent again to individual data processing operations. You can open the CMT at any time by clicking on the “Cookie Compliance” link in the footer of the website. In all other cases, you can revoke your consent by sending a message to the contact details listed above.
7.3 Right of objection You can object to the use of personal data for direct marketing purposes at any time; you can also object to the use of personal data on the basis of Art. 6 (1) p. 1 lit. e or f DSGVO at any time with effect for the future for reasons arising from your particular situation. For the objection, only the transmission costs according to the prime rates are incurred.
7.4 Right to information, correction, deletion or restriction and portability Under the conditions of Articles 15 to 20 of the GDPR, you have the right to obtain information free of charge about the data we have stored about you, to have incorrect data corrected and to request the deletion or restriction of processing and portability of your personal data. In some cases, however, we are not allowed to delete user data completely due to legal retention obligations.
7.5 Right to complain to a supervisory authority You have the right to complain to a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of an alleged infringement, if you believe that the processing of personal data concerning you violates data protection law.
B. Supplementary information on data processing on our website In addition to our General Information (read A), we provide information here on how personal data is collected on our website and for what purposes it is processed and on what legal basis.
4 I. Data processing absolutely necessary to provide the website In some cases, the processing of data is absolutely necessary in order to be able to provide our service as far as possible without technical or functional restrictions and in accordance with legal requirements. In these cases, data processing also takes place if you have refused any additional data processing via the Consent Management Tool (“CMT”).
In order to call up the contents of our web pages and display them correctly on your end device, your browser automatically sends data requests to our servers. Each data request of your browser contains, among other things, this information: (dynamic) IP address, browser type and version, operating system and version, called domain, previously visited website and date and time of access. The data requests of your browser are automatically stored in so-called “server log files”. The data processing described is absolutely necessary in order to ensure the retrievability and correct display of our web pages on your end device. In addition, the log files can be used to identify cyber attacks and to ensure the accessibility of our websites (Art. 6 para. 1 p. 1 lit. b DSGVO).
II. Additional data processing on the website after consent We have integrated the services listed below into our website for various purposes. Data processing by these services only takes place if you have consented via the Consent Management Tool (“CMT”).
You can use the CMT to revoke your consent at any time, see also section A.7.2.
6 1. Google services Services offered by Google Ireland Limited, Google Building Gordon House, 4 Barrow Street, Dublin, D04 E5W5, Ireland (“Google”) are integrated on our website.
1.2 Google Ads and Google Ads Remarketing The Google Ads and Google Ads Remarketing services are integrated into our website in order to draw attention to our offers in Google search results and on third-party websites. We only want to place ads that are attractive to you. For this purpose, Google analyzes in particular device information, your location and your surfing behavior on our website. If you click on an ad placed for us by Google in the Google search results or on the website of a third party, cookies are stored on your terminal device for so-called conversion tracking (visit action evaluation). These cookies have a limited validity period. If you subsequently visit certain pages of our website and the cookies have not yet expired, Google can recognize that you clicked on our ad and were redirected to our website. In this way, Google can provide us with a statistical evaluation of the effectiveness of our advertising measures. For the functions listed, the service stores cookies, i.e. small text files, on your terminal device: – WE DO NOT HAVE GOOGLE ADS ON THE WEBSITE Google assumes joint responsibility for the data processing presented and has therefore provided us with a corresponding contract in accordance with Art. 26 DSGVO as part of the ordering process, which we have agreed with Google. You can activate or deactivate personalized advertising from Google via the advertising settings under this link: https://adssettings.google.com/ anonymous?sig=ACi0TCjoT_RnPbIUe8IGa85dyA_5J4bol6TV5SM7jVOJycoeZaG P6BA8RWwSWmRUP0XRoURUu0XBV15kNZzQKE4cntIuJx15vg& hl=en. These settings are stored (if you are logged in) in your Google account or (if you are not logged in) in the browser. Alternatively, you have the option of installing a plug-in for your browser under this link to disable personalized advertising: https://support.google.com/ads/answer/7395996? hl=en. For more information on the functioning of and data processing by Google Ads, please visit: – https://ads.google.com – https://ads.google.com/intl/de_de/home/faq/gdpr
Our website includes services from providers based in the USA or with relations to the USA. If you consent to data processing by one of these providers, it cannot be ruled out that US authorities will have unrestricted access to the data processed about you. You also have no legal recourse against this. Specifically, this concerns these providers: It cannot be ruled out that the companies or the respective parent companies and/or U.S. authorities may access personal data that is processed to provide the services. Currently, standard data protection clauses pursuant to Art. 46 (2) lit. c DSGVO (“SCC”) are regularly agreed as the legal basis for the transfer of personal data to the USA. However, a third country transfer on the basis of SCC is only permissible if the agreements can actually be complied with by the providers in the third country. This would require in particular that unrestricted access to the data by U.S. authorities can be ruled out, which is not the case according to current knowledge. Page of 10 9 Although we conclude the standard data protection clauses with the companies, we therefore only use the aforementioned services with your prior express consent (Art. 49 (1) p. 1 lit. a DSGVO) and expressly point out the following regarding the risks of transferring data to one of the above-mentioned service providers: Due to the powers of the U.S. intelligence services and the legal situation in the U.S., the state surveillance measures of the U.S. are disproportionate and, in the view of the EU, there is no adequate state level of data protection for personal data. In particular, Sec. 702 of the U.S. Foreign Intelligence Surveillance Act (FISA) provides no restrictions on the surveillance measures of the intelligence services and no guarantees for non-U.S. citizens. Moreover, Presi-dential Policy Directive 28 (PPD-28) does not provide data subjects with effective remedies against measures taken by U.S. authorities and does not provide for barriers to ensuring proportionate measures. In addition, U.S. authorities can demand that a U.S. company hand over all stored data on the basis of the U.S. Cloud Act, even if this data is located on servers within the EU.
Wachhausstr. 3b | 76227 Karlsruhe, Germany | Tel.: +49 721 94346-0 | Fax: +49 721 94346 99 | E-Mail: info [at] wiggert [dot] com