Data protection

Data protection declaration

Thank you very much for your interest in our company.

We attach great importance to protecting your data and maintaining your privacy. In order to guarantee that you know the full scope of the collection and use of personal data on our websites and beyond, we are informing you below about what data in detail are processed by us and in what way these data are used. Moreover, this data protection declaration serves to inform data subjects about the rights to which they are entitled.

They can basically use our website without indicating any personal data whatsoever. Where a data subject would like to make use of our company's services via our Internet site, then it might become necessary to process personal data. If the processing of personal data is necessary and there is no statutory basis for such processing, then we always obtain the consent of the data subject.

Personal data (e.g. name, postal address, e‑mail address or telephone number of a data subject) are always processed in accordance with the General Data Protection Regulation (GDPR) and in compliance with the country-specific data protection provisions applicable to us.

As the processing controller, we have implemented a large number of technical and organisational measures in order to ensure the most complete possible protection of the personal data processed via our website. However, data transfers via the Internet may basically involve security holes. Thus, 100 % protection cannot be guaranteed. As an alternative, every data subject can, of course, therefore also communicate personal data to us, for example, by telephone.

1. Definitions

This data protection declaration is based on the definitions which were used by the European bodies dealing with directives and regulations when they issued GDPR (Article 4 of GDPR). This data protection declaration should be easy to both read and understand for every person. In order to ensure this, we would firstly like to explain the utilised concepts. Amongst others, these definitions are used in this data protection declaration:

  •  "Personal data": Any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • "Data subject": Any identified or identifiable natural person whose personal data are processed by the processing controller.
  • "Processing": Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • "Restriction of processing": The marking of stored personal data with the aim of limiting their processing in the future.
  • "Profiling": Any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements
  • "Controller": The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  • "Recipient": A natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients. The processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
  • "Third party": A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
  • "Consent" of the data subject: Any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Name and contact data of the processing controller

These data protection notices apply to the data processing by:

Controller: DVS Media GmbH, e‑mail: media‑datenschutz@dvs‑hg.de, telephone: +49 211 1591‑0, fax: +49 211 1591‑150

Furthermore, you can reach our in-house data protection officer at:

Bernhard Pickert-Goldenbogen
Bechtle GmbH
Piepersberg 42, 42653 Solingen
Germany

Telefon: +49 (0)212 3390-281
Telefax: +49 (0)212 3390-290

3. Collection and storage of personal data as well as type and purpose of their use

a) When visiting the website

You can basically use our website without disclosing your identity. When you go to our website, the browser utilised on your terminal automatically sends information to the server of our website. This information is stored temporarily in a so-called logfile. In this respect, the following information is recorded without any intervention on your part and is stored until the automated erasure:

  • IP address of the inquiring computer.
  • Date and time of the access.
  • Name and URL of the retrieved file.
  • Website from which the access is made (referrer URL).
  • Utilised browser and, if necessary, the operating system of your computer as well as the name of your access provider.

  The specified data are processed by us for the following purposes:

  • To guarantee that the connection to the website is established smoothly.
  • To guarantee the comfortable use of our website.
  • To evaluate the system security and stability.
  • For further administrative purposes.

The legal basis for the data processing is Article 6, Paragraph 1, Sentence 1, Point f of GDPR. Our legitimate interest follows from the data collection purposes listed above. On no account do we use the collected data for the purpose of drawing conclusions about your person.

Furthermore, we utilise cookies as well as analysis services when you visit our website. You can obtain more detailed explanations about this under Items 5 and 7 of this data protection declaration.

b) When ordering our newsletter service

When registering voluntarily for our newsletter, we store your name and address (optional) and your e-mail address for product information and advertising purposes. Use ends when you unsubscribe from the newsletter service, which can be done at any time via the dedicated link in the newsletter.

c) When placing orders via our website or by e‑mail, fax or telephone

On our website, you must register as a customer for orders in our shop. For you, registration has the advantage that, in the case of a future order, you can directly log into our shop with your e‑mail address and your password without having to enter your contact data again.

In this respect, your personal data are entered in an entry mask, transmitted to us and stored. If you place an order in writing via our website or by e‑mail, fax or telephone, then we collect and process the following data:

  • Form of address, first name and surname.
  • A valid e‑mail address.
  • Postal address.
  • Telephone number (landline and/or mobile).

These data are collected:

  • In order to be able to identify you as our customer.
  • In order to be able to handle, perform and process your order.
  • For correspondence with you.
  • For invoicing.
  • For processing any existing liability claims as well as for establishing any claims against you.
  • In order to ensure the technical administration of our website.
  • In order to manage our customer data.

 

In addition, your consent to the processing of these data is obtained in the framework of the online ordering process.

The data processing is carried out in response to your order and/or registration and, in accordance with Article 6, Paragraph 1, Sentence 1, Point b of GDPR, is, for the specified purposes, necessary for the adequate processing of your order and so that both parties can meet obligations from the purchase contract.

Furthermore, we use your data in the framework of the balancing of interests in accordance with Article 47 of GDPR unless there were any objections to the use of your data.

The personal data collected by us for the processing of your order are stored until the statutory retention period has expired and are erased thereafter unless we are, in accordance with Article 6, Paragraph 1, Sentence 1, Point c of GDPR on the basis of retention and documentation obligations resulting from fiscal and commercial law (from the Commercial Code, the Criminal Code or the Fiscal Code), obliged to store them for a longer period or you have consented to storage beyond that in accordance with Article 6, Paragraph 1, Sentence 1, Point a of GDPR.

4. Transfer of data

We transfer your personal data to third parties exclusively to the service partners involved in the framework of the contract processing, e.g. the logistics company commissioned with the delivery and the credit institution commissioned with payment matters. However, in the cases when your personal data are transferred to third parties, the scope of the transmitted data is restricted to the necessary minimum.

In the case of payment via PayPal, credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal, we transfer your payment details to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22‑24 Boulevard Royal, L‑2449 Luxembourg (hereinafter "PayPal") in the framework of the payment processing. PayPal reserves the right to obtain creditworthiness information for the following payment types: credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal. PayPal uses the result of the credit check in relation to the statistical payment default probability for the purpose of taking a decision about making available the payment type in question. The creditworthiness information may include probability values (so-called score values). Where score values are incorporated into the result of the creditworthiness information, these are based on a scientifically recognised mathematical-statistical procedure. Amongst other factors, address data are incorporated into the calculation of the score values. You can obtain further information relating to data protection law from PayPal's data protection principles: https://www.paypal.com/de/webapps/mpp/ua/privacy‑full.

In the case of a credit risk, we transmit your data (name, postal address, mail address, indications about the company and, if necessary, contract and claim data) to IHD Gesellschaft für Kredit und Forderungsmanagement mbH, Augustinusstr. 11 B, 50226 Frechen and, if necessary, to further cooperating credit reporting agencies for the purpose of the credit check as well as for the checking of the deliverability to the specified address and for the purpose of the collection processing. The legal basis of this transmission results from Article 6, Paragraph 1, Sentence 1, Point b of GDPR and Article 6, Paragraph 1, Sentence 1, Point f of GDPR. Transmissions on the basis of Article 6, Paragraph 1, Sentence 1, Point f of GDPR may only be carried out where this is necessary in order to safeguard legitimate interests of our company and the data subject's interests or fundamental rights and freedoms which require protection of personal data are not overriding.

For the purpose of taking a decision about establishing, executing or terminating the contractual relationship, IHD also collects or uses probability values which are elaborated in an automated process and into whose calculation, amongst other factors, address data may be incorporated. You can find detailed information about our contracting partner, IHD, in the terms of Article 14 of GDPR, i.e. the business purpose, the purpose of the data storage there, the legal basis, the data recipients at IHD, the self-disclosure right and the right to erasure and rectification as well as the profiling, at: www.ihd.de/datenschutz/Artikel14.hmtl. You can find the information about its contracting partners in the credit reporting agency field at: www.ihd.de/datenschutz#vertragspartner.

Your personal data is not transmitted to third parties for any purposes other than those specified above.

Moreover, we only transfer your personal data to third parties when:

  • You have given your express consent to this in accordance with Article 6, Paragraph 1, Sentence 1, Point a of GDPR.
  • The transfer is necessary for the establishment, exercise or defence of legal claims in accordance with Article 6, Paragraph 1, Sentence 1, Point f of GDPR and there is no reason to assume that you have an overriding worthy-of-protection interest in not transferring your data.
  • If there is a statutory obligation for the transfer in accordance with Article 6, Paragraph 1, Sentence 1, Point c of GDPR.
  • This is statutorily permissible and, in accordance with Article 6, Paragraph 1, Sentence 1, Point b of GDPR, necessary for the processing of contractual relationships with you.


In the framework of the ordering process, your consent is obtained in order to transfer your data to third parties.

 5. Utilisation of cookies

We utilise cookies on our site. These are small files which are automatically created by your browser and are stored on your terminal (laptop, tablet, smartphone or similar device) when you visit our website. Cookies do not cause any damage to your terminal and do not contain any viruses, trojans or miscellaneous malware.

Information which, in each case, results from the connection with the specifically utilised terminal is stored in the cookie. However, this does not mean that we become directly aware of your identity in this way.

On the one hand, the utilisation of cookies serves to design the use of our range on offer more pleasantly for you. For example, we utilise so-called session cookies in order to recognise that you have already visited individual pages of our website. These are erased automatically after you leave our site.

In order to optimise the user friendliness, we also utilise temporary cookies which are stored on your terminal for a certain stipulated period. If you visit our site again in order to make use of our services, then it is automatically recognised that you have already visited our website and what entries and settings you have made so that you do not have to enter these once more.

On the other hand, we utilise cookies in order to record the use of our website statistically and to evaluate it for the purpose of optimising our range on offer for you (see Item 7). These cookies make it possible for us, if you visit our site again, to automatically recognise that you have already been on our website. These cookies are automatically erased after a time defined in each case.

The data processed using cookies are necessary for the specified purposes in order to maintain our legitimate interests as well as those of the third parties in accordance with Article 6, Paragraph 1, Sentence 1, Point f of GDPR.

Most browsers accept cookies automatically. However, you can configure your browser in such a way that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.

6. Links to websites of third parties

We research and compile the links published on our website with the greatest possible care. However, we do not have any influence on the current or future designs or contents of the linked sites. We are not responsible for the contents of the linked sites and do not expressly claim that the contents of these sites are our own. Solely the provider of the website to which reference was made is liable for illegal, erroneous or incomplete contents as well as for damage caused by the use or non-use of the information. The liability of whoever merely draws attention to the publication using a link is excluded. We are only responsible for any third-party references when we have taken positive note of them, i.e. also of any possible unlawful or punishable contents, and it is not technically possible or reasonable for us to prevent their use.

7. Analysis and tracking tools

The tracking measures which are utilised by us and are listed below are taken on the basis of Article 6, Paragraph 1, Sentence 1, Point f of GDPR. With the utilised tracking measures, we would like to ensure that our website is designed in a way appropriate for the needs and is optimised continuously. On the other hand, we utilise the tracking measures in order to record the use of our website statistically and to evaluate it for the purpose of optimising our range on offer for you. These interests may be viewed as legitimate in the terms of the rule specified above.

The respective data processing purposes and data categories result from the corresponding tracking tools.

 a) Google Analytics

For the purpose of designing our sites in a way appropriate for the needs and optimising them continuously, we use Google Analytics, a web analysis service of Google Inc. (https://www.google.de/intl/de/about/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter "Google"). In this connection, pseudonymised use profiles are elaborated and cookies (see under Item 5) are used. The information which the cookie produces about your use of this website, such as:

  • Browser type/version.
  • Utilised operating system.
  • Referrer URL (the previously visited site).
  • Hostname of the accessing computer (IP address).
  • Time of the server inquiry.

 

Is transferred to a Google server in the USA and is stored there. The information is used in order to evaluate the use of the website, to compile reports on the website activities and to render further services connected with the website use and the Internet use for purposes of conducting market research and designing these Internet sites in a way appropriate for the needs. Moreover, this information is transferred to third parties if necessary where this is stipulated by law or where third parties process these data on our behalf. On no account does Google combine your IP address with other data. The IP addresses are anonymised so that they cannot be assigned (IP masking).

You can prevent the installation of the cookies by setting the browser software correspondingly. However, we would like to point out that, in this case, it may not be possible to use the full scope of all the functions of our website.

Furthermore, you can prevent Google from recording or processing the data which are generated by the cookie and relate to your use of the website (including your IP address) by downloading and installing a browser add-on: https://tools.google.com/dlpage/gaoptout?hl=de.

As an alternative to the browser add-on, particularly in the case of browsers on mobile terminals, you can also prevent the recording by Google Analytics by clicking on the link specified above. This serves to set an opt-out cookie which prevents the future recording of your data when you visit our website. The opt-out cookie applies only to this browser and only to our website and is stored on your device. If you erase the cookies in this browser, you must set the opt-out cookie once more.

You can find further information about the data protection in connection with Google Analytics at the following link in the Google Analytics help: https://support.google.com/analytics/answer/6004245?hl=de.

b) Google Adwords conversion tracking

Furthermore, we use Google Adwords conversion tracking in order to record the use of our website statistically and to evaluate it for the purpose of optimising our website for you. In this respect, Google Adwords sets a cookie (see Item 5) on your computer provided that you have reached our website via a Google advertisement.

These cookies lose their validity after 30 days and do not lead to personal identification. If the user visits certain pages of the website of the Adwords customer and the cookie has not yet expired, Google and the customer can recognise that the user has clicked on the advertisement and was directed to this page.

Every Adwords customer receives a different cookie. Cookies thus cannot be tracked via the websites of Adwords customers. The information obtained with the aid of the conversion cookies serves to elaborate conversion statistics for Adwords customers who have decided in favour of conversion tracking. The Adwords customers learn the total number of users who have clicked on their advertisements and were directed to a page provided with a conversion tracking tag. However, they do not receive any information which serves to identify users in person.

If you would like to not take part in the tracking procedure, you can also oppose the setting of a cookie necessary for this purpose - e.g. via a browser setting which deactivates the automatic setting of cookies in general. You can also deactivate cookies for conversion tracking by setting your browser in such a way that cookies are blocked by the "www.googleadservices.com" domain. You can find Google's data protection instructions with regard to conversion tracking at the following link: https://services.google.com/sitestats/de.html.

8. Data subject rights

You have the right,:

  • Pursuant to Article 15 of GDPR, to obtain information about your personal data processed by us. In particular, you can obtain information about the purposes of the processing, the category of the personal data, the categories of recipients to whom your data were or are disclosed, the envisaged storage period, the existence of rights to the rectification, erasure or restriction of the processing or to objection, the existence of a right to lodge a complaint, the source of your data where these were not collected by us as well as about the existence of automated decision-making, including profiling, and, if necessary, meaningful information about their details.
  • Pursuant to Article 16 of GDPR, to obtain without undue delay the rectification of your inaccurate personal data stored by us or their completion.
  • Pursuant to Article 17 of GDPR, to obtain the erasure of your personal data stored by us unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.
  • Pursuant to Article 18 of GDPR, to obtain the restriction of the processing of your personal data where the accuracy of the data is contested by you, the processing is unlawful but you oppose their erasure and we no longer need the data but you require these for the establishment, exercise or defence of legal claims or have objected to processing pursuant to Article 21 of GDPR.
  • Pursuant to Article 20 of GDPR, to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format or to obtain the transmission to another controller.
  • Pursuant to Article 7, Paragraph 3 of GDPR, to notify us at any time of the withdrawal of your once given consent. This means that, for the future, we will no longer be allowed to continue the data processing based on this consent.
  • Pursuant to Article 77 of GDPR, to lodge a complaint with a supervisory authority. As a rule, you can, for this purpose, get in touch with the supervisory authority of your habitual residence or place of work or of our registered office.

 

9. Right to object

Where your personal data are processed on the basis of legitimate interests pursuant to Article 6, Paragraph 1, Sentence 1, Point f of GDPR, you have the right, pursuant to Article 21 of GDPR, to object to the processing of your personal data where there are grounds for this which relate to your particular situation or the objection is directed against direct marketing. In the latter case, you have a general right to object which is implemented by us without any indication of a particular situation.

If you would like to make use of your right to withdraw or object, it is enough to send an e‑mail to: media‑datenschutz@dvs‑hg.de.

10. Data security

Within the website visit, we use the widespread SSL (Secure Sockets Layer) procedure in conjunction with the highest encryption level in each case which is supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we rely on 128-bit v3 technology instead of this. You can recognise whether an individual page of our Internet appearance is transferred in an encrypted form by the closed representation of the key or lock symbol in the bottom status bar of your browser.

Otherwise, we make use of suitable technical and organisational security measures in order to protect your data against accidental or deliberate manipulations, partial or complete loss, destruction or unauthorised access on the part of third parties. Our security measures are improved continuously corresponding to the technological development.

11. Updated status and amendment of this data protection declaration

This data protection declaration is valid at present and has the status of May 2018.

Due to the further development of our website and ranges on offer beyond it or as a result of amended statutory or official stipulations, it may become necessary to amend this data protection declaration. The latest data protection declaration in each case can be retrieved and printed out at any time from our website at the following link: www.dvs‑media.eu/de/datenschutz

 

                                                                                                                                                              

This data protection declaration is based on the specimen data protection declaration from the lawyer Andreas Gerstel (http://www.anwaltblog24.de).

 

 

 

 

 

 
   

 

 

 

Viewed