PRIVACY POLICY

STRÖHER welcomes you to our website and appreciates your interest in our company. We take the protection and security of the personal data that you entrust us with very seriously and want you to feel safe and comfortable when visiting our website and using our services. It is important to us that you know which personal data are collected when using our website and services and how we subsequently use the data.

Purpose of the data processing

If STRÖHER processes your personal data, this is done for the purposes stated in this privacy policy.

Processing of personal data

On our website

We collect and store the IP address assigned to your computer in order to transfer the content of our website accessed by you to your computer (e.g. text, images and files made available for download, etc.) (see Art. 6 (1) point (b) GDPR). We also process these data for the purpose of detecting and tracking misuse. In this context, the legal basis is Art. 6 (1) (f) of the GDPR. Our legitimate interest in data processing is to ensure the proper functioning of our website and its associated transactions. To the extent that we process your data, as described above, for the purposes of providing the functionality on our website, you are contractually obliged to provide us with these data.

Other purposes

Personal data are also processed if you voluntarily provide them to us, for example, in the context of a request or a booking or the ordering of information material or a newsletter. In this context, the legal basis is Art. 6 (1) (b) of the GDPR. In this respect, the data processed by us includes customer data, employee data and data from suppliers, to the extent required for the purposes stated in the context of this privacy policy.

To the extent that we process your data, as described above, for the purposes of receiving and processing your enquiries, bookings or (newsletter) orders, you are contractually obliged to provide us with these data. Without these data, we will not be able to carry out the relevant processing. If you have consented to the processing of personal data (see Article 6 (1) (a) of the GDPR), you can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until its withdrawal.

Sending of newsletters

With our newsletter, we inform you about our current offers, news and products. If you wish to receive the newsletter, we need you to give us a valid email address. The data entered in the input screen during registration are collected. In order to be able to address you personally, we ask you to please state your title and name. You can, of course, also use a pseudonym here. These data are only used for sending the newsletter. In addition to these data, we also save the date of the registration. This documenting serves solely as proof in the event that a third party misuses your email address and orders the newsletter without your knowledge, using your email address.

To ensure agreement regarding the sending of newsletters, we use a double opt-in procedure. In the course of this, the potential recipient is added to a distribution list. The user then receives an email, via which he/she can provide legally valid confirmation of the registration. Only when the confirmation is made is the address actively included in the distribution list. We use these data exclusively for sending the requested information and offers.

Sendinblue is used as the newsletter software. For this, your data are sent to Sendinblue GmbH. Sendinblue is not permitted to sell your data or to use them for purposes other than sending newsletters to you. Sendinblue is a German, certified provider, which was selected based on the requirements of the General Data Protection Regulation and the Federal Data Protection Act, and which we have contractually obligated as a data processor.

Further information is available here: de.sendinblue.com/informationen-newsletter-empfaenger/

Termination/revocation: The consent to the storage of your personal data and their use for sending newsletters can be revoked at any time. Every newsletter includes a link providing the option to unsubscribe.

Disclosure to third parties

Information may therefore also be processed by other companies, but only to the extent necessary for the purposes stated in this privacy policy or if the other company acts as a service provider / data processor bound by instructions.

For this, in some instances, we use (German-based) service providers to process data on our behalf (for example, providing assistance with processing customer enquiries). In the cases described here, the information is passed on to these third parties for further processing. External service providers are carefully selected and regularly reviewed by us to ensure that your privacy is preserved.

The service providers are service providers / data processors bound by instructions and accordingly obligated by us to, among other things, process your data exclusively in accordance with our instructions and the applicable data protection laws. In particular, they are required to process your data in strict confidence, and they are also prohibited from processing the data for any purpose other than that agreed.

The transferring of data to data processors is performed in accordance with Art. 28 (1) of the GDPR.

We also do not sell your data to third parties, nor do we market them in any other way.

In addition, your personal data will be forwarded to law enforcement agencies and, if applicable, to affected third parties without your explicit consent, if this is necessary in order to investigate the unlawful use of our services or for the purposes of prosecution. However, this is only done if there are concrete indications of unlawful behaviour or misuse. Disclosure may also take place if this is required to enforce terms of use or other arrangements. We are also required by law to provide information to certain public authorities upon request. These include law enforcement agencies, authorities that implement fines and the tax authorities.

Disclosure of these data is based on our legitimate interest in combating misuse, prosecuting criminal offences and protecting, applying and enforcing claims, unless your rights and interests in the protection of your personal data take precedence, Art. 6 (1) point (f) of the GDPR.

Planned transfer of data to third countries

No transfer to third countries is currently planned, otherwise the appropriate legal conditions will be established. In particular, you will be informed about the respective recipients or categories of recipients, in accordance with the legal requirements.

Security

STRÖHER uses technical and organisational security measures to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorised persons. This also applies if external services are purchased. The effectiveness of our security measures will be reviewed and measures will be continuously improved in line with technological developments. When personal data are entered, these are always transmitted in encrypted form.

Cookies

In order to make our website user-friendly and ensure that it optimally matches your needs, we use cookies in some areas. A cookie is a small file that is stored locally on your computer when you visit a website. If you visit the website again using the same device, the cookie shows, for example, that it is a repeat visit. In addition, cookies enable us to analyse the use of our website. Cookies do not contain any personal information, and are not suitable for identifying you on the websites of third parties, including the websites of the analytics providers.

We use the following types of cookies:

• Basic/necessary cookies

These cookies are fundamental to the functioning of our website. They are necessary, for example, for the assignment of anonymous session IDs for bundling multiple queries to a web server or for the error-free functioning of registrations and orders.

• Functionality cookies

These cookies help us store settings that you choose or support other features as you navigate our website. This makes it possible for us to remember your favourite settings for your next visit or to save your login details for certain sections of our website.

• Performance/statistics cookies

These cookies collect information about how you use our website (for example, browser software used, number of visits, pages viewed or time spent on the website). These cookies do not store any information that allows personal identification of the visitor. The information collected using these cookies is aggregated and therefore anonymous.

You can choose to permit or reject cookies – including for web tracking – by using the settings in your web browser. You can configure your browser to block cookies altogether or to notify you in advance whenever a cookie is saved. In this case, however, the functionality of the website may be impaired (for example, for the creation of orders). Your browser also offers a feature to delete cookies (for example, via Delete Browsing History). Further information is available in the operating instructions or, usually, under Settings in your internet browser.

Anonymised website tracking

In order to better adapt this website to the needs of our customers, we analyse visits to our website. We use your IP address, which we anonymise before analysis (and possibly similar numbers that are exchanged between computers during normal internet usage), with the aim of being able to analyse data, including the pages visited, your browser and your computer. Cookies are used for this. Our cookie only contains a unique number for recognising you on our websites, but not on third-party websites. The stored data are evaluated exclusively for statistical purposes; in particular, the IP address is not associated with a specific person. No transfer of the data to third parties takes place.

Website tracking

Our website uses Google Analytics, a web analysis service provided by Google Inc, (1600 Amphitheatre Parkway Mountain View, CA 94043, USA; "Google"). The usage equates to the Universal Analytics mode of operation. This makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID, and thus analyse the activities of a user on various devices.

Google Analytics uses cookies, which are text files that are saved to your computer and allow analysis of the website usage. The information about your website usage generated by the cookie is usually transmitted to and stored by Google on servers in the USA. However, in the event of the activation of IP anonymisation on this website, your IP address will first be truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and truncated there.  The IP address provided by your browser with regard to Google Analytics will not be merged with any other Google data. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, in order to compile reports about website activity and provide other services related to website and internet usage to the website operator. These purposes are among our legitimate interests with regard to data processing. The legal basis for the use of Google Analytics is Art. 15 (3) of the German Telemedia Act and Art. 6 (1) point (f) of the GDPR. The data sent by us and linked to cookies, user IDs or advertising IDs will be automatically deleted after 6 months. Data for which the retention period has expired are deleted automatically once a month. More information about terms of use and data privacy is available at "https://www.google.com/analytics/terms/de.html" and "https://policies.google.com/?hl=de" 

You can prevent the saving of cookies by choosing the relevant setting in your browser software; however, please note that in this case some of the website functions may not work. In addition, you can prevent the collection by Google of the data generated by the cookie and relating to your use of the website (including your IP address) as well as the processing of these data by Google, by downloading a tool from "https://tools.google.com/dlpage/gaoptout?hl=de" and installing it. Opt-out cookies prevent the future collection of your data when visiting this website. To prevent Universal Analytics tracking usage across devices, you have to opt out on all the systems you use.The opt-out cookie is set if you click here.

The web analysis remains deactivated for as long as the Google Analytics cookie is not deactivated or deleted by you. Please therefore do not delete the cookie if the related web analysis is not desired. 

With modern browsers, you can also use the browser settings or install browser applications that prevent website tracking. 

Standard periods for the retention of data 

The legislature has defined various retention periods and retention obligations. After the expiry of these periods, the corresponding data will be routinely deleted. If data are not affected by this, they will be deleted or anonymised once the purposes defined in this Privacy Policy cease to apply. Unless otherwise stated in this Privacy Policy, the information we collect is stored by us for as long as is necessary for the purposes for which it was collected. 

Other data uses and data deletion 

Further processing or use of your personal data is generally only carried out if a legal provision allows this or if you have consented to the processing or use of the data. In the event of further processing for purposes other than the one for which the data were originally collected, we will inform you of these other purposes prior to further processing and provide you with further relevant information. 

Identification and monitoring of misuse 

Information used for the identification and monitoring of possible misuse, especially your IP address, is held by us for a maximum of 7 days.  In this context, the legal basis is Art. 6 (1) point (f) of the GDPR. Our legitimate interest in retaining data for 7 days is to ensure the proper functioning of our website and its associated transactions, and to defend against cyber-attacks and the like. If necessary, we use anonymous usage information to customise our website.   

Rights concerning the processing of personal data

Right to information

You have the right to obtain information at any time, on request, about your personal data that is processed by us, within the scope of Art. 15 GDPR. For this, you can submit an application by post or email to the addresses below. 

Right to rectification of incorrect data 

You have the right to demand immediate rectification of personal data concerning you if they are incorrect (Art. 16 GDPR). Please use the contact addresses stated below in such cases. 

Right to erasure 

You have the right to immediate erasure ("Right to be forgotten") of your personal data in the event of the legal grounds defined in Art. 17 GDPR being applicable. This is the case, for example, if the personal data are no longer required for the purposes for which they were originally processed, or if you have revoked your consent and there is no other legal basis for the processing; the data subject objects to the processing (and there are no overriding reasons for processing – this does not apply to objections to direct mailings). Please use the contact addresses stated below to exercise your rights in this regard. 

Right to restriction of the processing 

You have the right to restrict the processing if the relevant conditions are met and in accordance with Art. 18 GDPR. Based on this, restriction of processing may in particular be demanded if the processing is unlawful and the data subject refuses erasure of the personal data and instead requests restriction of the use of the personal data, or the data subject has objected to the processing in accordance with Article 21 (1) GDPR, and it is not yet certain whether our legitimate reasons outweigh the data subject's legitimate reasons. Please use the contact addresses stated below to exercise your rights in this regard. 

Right to data portability

You have a right to data portability pursuant to Art. 20 GDPR. You have the right in this regard to receive the data that you have provided to us in a standard, structured and machine-readable format and to transfer these data to another controller, such as another service provider. A prerequisite for this is that the processing is based on a consent or a contract and is done using automated procedures. Please use the contact addresses stated below to exercise your rights in this regard.   

Right to object

Pursuant to Art. 21 GDPR, you have the right at any time to object, for reasons arising from your particular situation, to processing of personal data relating to you that is based on, for example, Art. 6 (1) point e or f GDPR. We will stop the processing of your personal information, unless we can establish compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or unless the processing is for the purpose of enforcing, pursuing or defending legal claims. Please use the contact addresses stated below to exercise your rights in this regard.   

Right to submit complaints to a supervisory authority 

If you believe that the processing by us of personal data concerning you is not permitted, you have the right to complain to the supervisory authority responsible for us, which can be contacted as follows: 

The Data Protection Officer in the State of Hessen

Postfach 31 63 

65021 Wiesbaden 

Tel.: +49 (0) 611/1408-0 

Email: poststelle@datenschutz.hessen.de 

Data Protection Officer 

If you have any other questions regarding the processing of your personal data, you can contact our Data Protection Officer directly. This also applies in the case of requests for information, applications or complaints: 

STRÖHER GmbH Data Protection Officer 

Ströherstraße 2-10 

35683 Dillenburg 

Tel.: +49 (0) 27 71/3 91-0 

Email: info@stroeher.de 

Contact details for the controller: 

STRÖHER GmbH 

Ströherstraße 2-10 

35683 Dillenburg 

Tel.: +49 (0) 27 71/3 91-0 

Email: info@stroeher.de 

Changes to this Privacy 

Policy The further development of the internet and our website may also affect our privacy policy.  We reserve the right to change this privacy policy in the future. If we use your personal data in any way other than as stated here at the time of the collection of the data, we will try to notify you of this by email using the most recently received details. If such notification is not possible, we will not use your personal information in a new way. In any case, a notice in this regard will be prominently displayed on our website. 

Issued: June 2020