Privacy Policy.
Privacy Policy Translation
Introduction
With this privacy policy, we aim to inform you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”). Personal data includes all data that relates to you personally, such as your name, address, email address, or user behavior. This privacy policy applies to all data processing operations carried out by us, both as part of our core activities and for the online media we provide.
Data Controller
The entity responsible for data processing is:
Haase & Hoff GmbH
Johannes Hoff & Tobias Haase
Auffeld 33
47918 Tönisvorst
Germany
+49 2158 952222
info@haasehoff.de
Processing Your Data in the Context of Our Craft Services
If you are our customer or business partner or are interested in our craft services, the nature, scope, and purpose of the processing of your data depend on the contractual or pre-contractual relationships between us. In this context, the data we process includes all the data we request from you or that you provide to us to answer your inquiries, create an offer, or process your order. Unless otherwise stated in the additional notes of this privacy policy, the processing of your data and its transfer to third parties is limited to the data necessary and appropriate to answer your inquiries, fulfill the contract between you and us, protect our rights, and comply with legal obligations. We will inform you about the necessary data before or during the data collection process. If we use third-party providers to provide our services, their data protection notices apply.
Affected Data:
– Inventory data (e.g., names, addresses)
– Payment data (e.g., bank details, invoices)
– Contact data (e.g., email address, phone number, postal address)
– Contract data (e.g., contract subject, contract duration)
Affected Persons:
– Interested parties, business, and contract partners
Purpose of Processing:
– Fulfillment of contractual services, communication, and response to contact inquiries, office, and organizational procedures
Legal Basis:
– Contract performance and pre-contractual inquiries, Art. 6(1)(b) GDPR
– Legal obligation, Art. 6(1)(c) GDPR
– Legitimate interest, Art. 6(1)(f) GDPR
Your Rights Under the GDPR
Under the GDPR, you have the following rights, which you can assert at any time with the responsible party mentioned in Section 1 of this privacy policy:
– Right to Information: You have the right to request information about whether and which data we process about you.
– Right to Rectification: You have the right to request the correction of incorrect or incomplete data.
– Right to Deletion: You have the right to request the deletion of your data.
– Right to Restriction: In certain cases, you have the right to request that we only process your data in a limited manner.
– Right to Data Portability: You have the right to request that we transfer your data to you or another controller in a structured, commonly used, and machine-readable format.
– Right to Complain: You have the right to complain to a supervisory authority. The supervisory authority responsible is the one at your usual place of residence, your workplace, or our company’s location.
Right to Withdraw Consent
You have the right to withdraw your consent to data processing at any time.
Right to Object
You have the right to object to the processing of your data, which we process based on our legitimate interest pursuant to Art. 6(1)(f) GDPR, at any time. If you exercise your right to object, please explain the reasons. We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests and rights.
Regardless of the above, you have the right to object to the processing of your personal data for advertising and data analysis purposes at any time.
Please address your objection to the contact details of the responsible party mentioned above.
When Do We Delete Your Data?
We delete your data when we no longer need it or when you instruct us to do so. This means that unless otherwise stated in the individual data protection notices of this privacy policy, we delete your data:
– When the purpose of data processing no longer applies, and the respective legal basis mentioned in the individual data protection notices no longer exists, e.g., after the termination of the contractual or membership relationships between us (Art. 6(1)(a) GDPR), or
– When our legitimate interest in further processing or storing your data ceases to exist (Art. 6(1)(f) GDPR),
– When you exercise your right to withdraw consent, and no other legal basis for processing within the meaning of Art. 6(1)(b-f) GDPR applies,
– When you exercise your right to object, and there are no compelling legitimate grounds for not deleting your data.
However, if we still need to retain (certain parts of) your data for other purposes, such as complying with tax retention periods (usually 6 years for business correspondence or 10 years for booking records) or asserting, exercising, or defending legal claims from contractual relationships (up to four years), or protecting the rights of another natural or legal person, we will delete (the part of) your data after these periods have expired. Until the expiration of these periods, we will restrict the processing of this data to these purposes (fulfillment of retention obligations).
Cookies
Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters that are stored on your device. Cookies primarily serve to exchange information between your device and our website. This includes language settings on a website, login status, or where a video was watched.
When visiting our websites, two types of cookies are used:
– Temporary Cookies (Session Cookies): These store a so-called session ID, which allows various requests from your browser to be assigned to the shared session. The session cookies are deleted when you log out or close your browser.
– Permanent Cookies: Permanent cookies remain stored even after closing the browser. This allows our website to recognize your computer when you return. These cookies store information such as language settings or login information. In addition, these cookies can be used to record and store your surfing behavior. These data can be used for statistical, marketing, and personalization purposes.
Besides the above classification, cookies can also be differentiated based on their purpose:
– Necessary Cookies: These are cookies that are essential for the operation of our website, such as storing logins or shopping carts for the duration of your session or setting cookies for security reasons.
– Statistics, Marketing, and Personalization Cookies: These are cookies used for analysis or reach measurement purposes. “Tracking” cookies can store information such as search terms entered or the frequency of page views. Additionally, a user’s surfing behavior (e.g., viewing certain content, using functions, etc.) can be stored in a user profile. Such profiles are used to display content to users that match their potential interests.
Affected Data:
– Usage data (e.g., access times, clicked websites)
– Communication data (e.g., information about the used device, IP address)
Affected Persons:
– Users of our online offerings
Purpose of Processing:
– Displaying our websites, ensuring the operation of our websites, improving our online offering, communication, and marketing
Legal Basis:
– Legitimate interest, Art. 6(1)(f) GDPR
– If we do not obtain your consent to set cookies, we base the processing of your data on our legitimate interest in improving the quality and user-friendliness of our website, particularly the content and functions. You can object to the use of the cookies set by us within the scope of our legitimate interest via your browser’s security settings. There you have the option to specify whether you generally do not accept cookies or only accept them upon request, or that cookies are deleted after each browser session. If cookies are disabled for our website, some functions of the website may no longer be fully usable.
– Consent, Art. 6(1)(a) GDPR
– If we ask you for permission to set certain cookies on your device before you visit our website and you consent, your consent is the legal basis. We inform you within the scope of consent which cookies we set specifically. If you do not consent, only the so-called technically necessary cookies will be set, which are required for the proper operation of our websites and their display in your browser. If you have consented to the setting of cookies, you have the right to withdraw your consent at any time.
Web Hosting
To provide our websites, we use a provider whose servers host our websites and make them available on the internet (hosting). In this process, all data transmitted by your browser and generated while using our websites can be processed by the provider. This includes, in particular, your IP address, which the provider needs to deliver our online offer to your browser, as well as all your entries made via our website. The provider can also collect:
– The date and time of access to our website
– Time zone difference to Greenwich Mean Time (GMT)
– Access status (HTTP status)
– The amount of data transferred
– The internet service provider of the accessing system
– The browser type and version used
– The operating system used
– The website from which you may have accessed our website
– The pages or subpages you visit on our website.
These data are stored as log files on the provider’s servers. This is necessary to ensure the stability and security of the operation of our website.
Affected Data:
– Content data (e.g., posts, photos, videos)
– Usage data (e.g., access times, clicked websites)
– Communication data (e.g., information about the used device, IP address)
Affected Persons: Users of our online presence
Purpose of Processing: Displaying our websites, ensuring the operation of our websites
Legal Basis: Legitimate Interest, Art. 6(1)(f) GDPR
Web Hosting Provider Commissioned by Us:
Security Measures
We take technical and organizational security measures according to the state of the art to comply with data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties.
Current Status and Changes to This Privacy Policy
This privacy policy is currently valid as of July 2023. Due to changing legal or regulatory requirements, it may become necessary to adapt this privacy policy.
This privacy policy was created with the help of the Privacy Policy Generator from SOS Recht. SOS Recht is a service offered by Mueller.legal Rechtsanwälte Partnerschaft based in Berlin.
Translation generated with ChatGPT