Responsible person within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:
Marco Grießhaber
c/o Griesshaber Glasduschen GmbH
Spatenstrasse 15
88046 Friedrichshafen,
tel.
+49 7541 95329-0
info@griesshaber-glasduschen.de
Your rights as a data subject
You can exercise the following rights at any time using the contact details provided by our data protection officer:
• Information about your data stored by us and its processing (Art. 15 GDPR),
• Correction of incorrect personal data (Article 16 GDPR), deletion of your data stored by us (Article 17 GDPR),
• Restriction of data processing, provided that we are not yet allowed to delete your data due to legal obligations (Art. 18 GDPR),
• Objection to the processing of your data by us (Art. 21 GDPR) and
• Data portability, provided that you have consented to data processing or have concluded a contract with us (Art. 20 GDPR).
If you have given us consent, you can withdraw this consent at any time with effect for the future. You can contact a supervisory authority at any time with a complaint, e.g. the competent supervisory authority in the federal state of your residence or the authority responsible for us as the responsible body. A list of supervisory authorities (for the non-public sector) with addresses can be found at:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Provision of paid services
Type and purpose of processing:
In order to provide paid services, we ask for additional data, such as payment details, in order to be able to process your order.
legal basis:
The processing of data, which is necessary for the conclusion of the contract, is based on Art. 6 para. 1 lit. b GDPR.
Recipient:
Recipients of the data may be contract processors.
Storage period:
We store this data in our systems until the legal retention periods have expired. These are generally 6 or 10 years for reasons of proper accounting and tax requirements.
Provision required or required:
The provision of your personal data is voluntary. Without providing your personal data, we cannot grant you access to the content and services we offer.
newsletters
Type and purpose of processing:
Your data will only be used to send you the subscribed newsletter by email. Your name is provided in order to be able to address you personally in the newsletter and, if necessary, to identify you if you wish to exercise your rights as a data subject.
To receive the newsletter, it is sufficient to provide your e-mail address. When you register to receive our newsletter, the data you provide will only be used for this purpose. Subscribers can also be informed by e-mail about circumstances that are relevant to the service or registration (e.g. changes to the newsletter offer or technical conditions).
For effective registration, we need a valid email address. To verify that a registration is actually made by the owner of an e-mail address, we use the “double opt-in” procedure. For this purpose, we log the subscription to the newsletter, the sending of a confirmation email and the receipt of the response requested here. No further data is collected. The data is used exclusively for sending newsletters and is not passed on to third parties.
legal basis:
On the basis of your express consent (Art. 6 para. 1 lit. a GDPR), we will regularly send you our newsletter or comparable information by e-mail to the e-mail address you provided.
You can withdraw your consent to the storage of your personal data and its use for sending newsletters at any time with effect for the future. There is a corresponding link in every newsletter. In addition, you can also unsubscribe directly from this website at any time or notify us of your withdrawal using the contact option provided at the end of this data protection policy.
Recipient:
Recipients of the data may be contract processors.
Storage period:
In this context, the data will only be processed as long as the appropriate consent has been obtained. They are then deleted.
Provision required or required:
The provision of your personal data is voluntary, based solely on your consent. Unfortunately, we cannot send you our newsletter without your existing consent.
contact form
Type and purpose of processing:
The data you enter is stored for the purpose of individual communication with you. This requires you to provide a valid email address and your name. This is used to assign the request and then answer it. The provision of further data is optional.
legal basis:
The data entered in the contact form is processed on the basis of a legitimate interest (Art. 6 para. 1 lit. f DSGVO).
By providing the contact form, we would like to make it easy for you to contact us. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions.
If you contact us to request an offer, the data entered in the contact form will be processed to carry out pre-contractual measures (Art. 6 para. 1 lit. b GDPR).
Recipient:
Recipients of the data may be contract processors.
Storage period:
Data will be deleted no later than 6 months after the request has been processed.
If there is a contractual relationship, we are subject to the statutory retention periods in accordance with the German Commercial Code and delete your data after these periods have expired.
Provision required or required:
The provision of your personal data is voluntary. However, we can only process your request if you provide us with your name, email address and the reason for the request.
Facebook pixels
If you have agreed to the use, we use “Facebook Pixel” on our website, a service provided by Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA (hereinafter referred to as “Facebook”). Facebook pixel allows Facebook to display our ads on Facebook only to Facebook users who have been visitors to our website, in particular those who have shown interest in our online offering or in specific topics or products. Facebook pixel makes it possible to check whether a user was redirected to our website by clicking on our Facebook ads. Facebook Pixel uses cookies for this purpose, i.e. small text files that are stored locally in the cache of your web browser on your device. If you are logged in to Facebook with your user account, your visit to our online offer will be recorded in your user account.
The data collected about you is anonymous to us and therefore does not provide us with any conclusions about the identity of the users. However, this data can be linked by Facebook to your local user account. We have no influence on the scope and further use of data collected by Facebook through the use of Facebook pixels. To the best of our knowledge, Facebook receives the information that you have accessed the corresponding part of our website or clicked on an ad from us. If you have a user account with Facebook and are registered, Facebook can associate the visit with your user account. Even if you are not registered with Facebook or have not logged in, it is possible that Facebook will find out and store your IP address and any other identifying features.
We use Facebook pixels for marketing and optimization purposes, in particular to show you relevant and interesting ads on Facebook and thus improve our offering, make it more interesting for you as a user and to avoid annoying ads. This is also our legitimate interest in the processing of the above data by the third party provider.
The legal basis is Art. 6 (1) (f) GDPR.
You can object to the collection by Facebook pixels described above and the use of your data to display Facebook ads. You can make settings as to which types of ads are shown to you within Facebook on the following Facebook website:
https://www.facebook.com/settings?tab=ads.
Please note that this setting will be deleted when you delete your cookies. In addition, you can deactivate cookies, which are used for audience measurement and advertising purposes, via the following websites:
http://optout.networkadvertising.org/
http://www.aboutads.info/choices
http://www.youronlinechoices.com/uk/your-ad-choices/
Please note that this setting will also be deleted if you delete your cookies.
Facebook has also submitted to the Privacy Shield Agreement concluded between the European Union and the USA and has certified itself. As a result, Facebook is committed to complying with the standards and regulations of European data protection law. For more information, see the following linked entry:
https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
Using Google Analytics
Type and purpose of processing:
This website uses Google Analytics, a web analysis service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (hereinafter: “Google”).
Google Analytics uses so-called “cookies,” i.e. text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, due to the activation of IP anonymization on these websites, Google will abbreviate your IP address beforehand within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and Internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google.
The purposes of data processing are to evaluate the use of the website and to compile reports on activities on the website. Based on the use of the website and the Internet, further related services will then be provided.
legal basis:
The processing of data is based on the user's consent (Art. 6 para. 1 lit. a GDPR).
Recipient:
The recipient of the data is Google as a contract processor. For this purpose, we have concluded the corresponding order processing contract with Google.
Storage period:
The data is deleted as soon as it is no longer required for our recording purposes.
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield
https://www.privacyshield.gov/EU-US-Framework.
Provision required or required:
The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this may result in functional restrictions on the website.
Withdrawal of consent:
You can prevent cookies from being saved by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link:
Browser add on to disable Google Analytics.
In addition to or as an alternative to the browser add-on, you can prevent tracking by Google Analytics on our sites by
click on this link. This will install an opt-out cookie on your device. This will prevent Google Analytics from collecting data for this website and for this browser in the future as long as the cookie remains installed in your browser.
Profiling:
With the help of the Google Analytics tracking tool, the behavior of visitors to the website can be evaluated and interests analyzed. For this purpose, we create a pseudonymous user profile.
Use of script libraries (Google web fonts)
Type and purpose of processing:
In order to display our content correctly and graphically appealing across browsers, we use “Google Web Fonts” from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”) to display fonts.
The privacy policy of library operator Google can be found here:
https://www.google.com/policies/privacy/
legal basis:
The legal basis for the integration of Google web fonts and the associated data transfer to Google is your consent (Art. 6 para. 1 lit. a GDPR).
Recipient:
Calling script libraries or font libraries automatically triggers a connection to the library operator. It is theoretically possible — but currently also unclear whether and, if so, for what purposes — that the operator collects Google data in this case.
Storage period:
We do not collect any personal data by integrating Google web fonts.
You can find more information about Google Web Fonts at
https://developers.google.com/fonts/faq and in Google's privacy policy:
https://www.google.com/policies/privacy/.
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield
https://www.privacyshield.gov/EU-US-Framework.
Provision required or required:
The provision of personal data is neither required by law nor by contract. However, it may not be possible to correctly display the content using standard fonts.
Withdrawal of consent:
The JavaScript programming language is regularly used to display the content. You can therefore object to data processing by deactivating the execution of JavaScript in your browser or installing a JavaScript blocker. Please note that this may result in functional restrictions on the website.
Using Google Maps
Type and purpose of processing:
On this website, we use the services offered by Google Maps. Google Maps is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter “Google”). This allows us to display interactive maps directly on the website and enables you to conveniently use the map function.
For more information about data processing by Google, you can
Google's privacy policy remove. There, you can also change your personal data protection settings in the data protection center.
Detailed instructions on how to manage your own data in connection with Google products
can be found here.
legal basis:
The legal basis for the integration of Google Maps and the associated data transfer to Google is your consent (Art. 6 para. 1 lit. a GDPR).
Recipient:
By visiting the website, Google receives information that you have accessed the corresponding subpage of our website. This is done regardless of whether Google provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data is directly associated with your account.
If you do not want your profile to be assigned to Google, you must log out of Google before activating the button. Google stores your data as user profiles and uses them for advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, although you must contact Google to exercise this right.
Storage period:
We do not collect any personal data through the integration of Google Maps.
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield
https://www.privacyshield.gov/EU-US-Framework.
Withdrawal of consent:
If you do not want Google to collect, process or use data about you via our website, you can deactivate JavaScript in your browser settings. In this case, however, you will not be able to use our website or will only be able to use it to a limited extent.
Provision required or required:
The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this may result in functional restrictions on the website.
Embedded YouTube videos
Type and purpose of processing:
We embed YouTube videos on some of our websites. The operator of the corresponding plug-ins is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (hereinafter “YouTube”). When you visit a page with the YouTube plugin, a connection to YouTube servers is established. This tells YouTube which pages you visit. If you are logged into your YouTube account, YouTube can personally associate your surfing behavior with you. You can prevent this by logging out of your YouTube account beforehand.
When a YouTube video is started, the provider uses cookies that collect information about user behavior.
For more information on the purpose and scope of data collection and processing by YouTube, please see the provider's privacy policies. There you will also find further information about your rights in this regard and settings options to protect your privacy (
https://policies.google.com/privacy).
Google processes your data in the USA and has submitted to the EU-US Privacy Shield https://www.privacyshield.gov/EU-US-Framework
Legal basis: The legal basis for the integration of YouTube and the associated data transfer to Google is your consent (Art. 6 para. 1 lit. a GDPR).
Recipient:
Calling YouTube automatically triggers a connection to Google.
Storage period and withdrawal of consent:
Anyone who has deactivated the storage of cookies for the Google ad program will not have to reckon with such cookies even when watching YouTube videos. However, YouTube also stores non-personal usage information in other cookies. If you want to prevent this, you must block cookies from being saved in the browser. Further information on data protection at “YouTube” can be found in the provider's privacy policy at:
https://www.google.de/intl/de/policies/privacy/
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield
https://www.privacyshield.gov/EU-US-Framework.
Provision required or required:
The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this may result in functional restrictions on the website.
SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption methods (such as SSL) via HTTPS.
Amendment to our privacy policy
We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy, e.g. when introducing new services. The new privacy policy will then apply to your next visit.
Questions to the data protection officer
If you have any questions about data protection, please send us an email or contact the person responsible for data protection in our organization directly:
info@griesshaber-glasduschen.de
The privacy policy was created with the help of activeMind AG, the expert for external data protection officer (version #2019 -04-10).