The use of our site is possible without indication of personal data. Different regulations may apply to the use of specific services on our site, which in this case will be explained separately below. Your personal data (e. g. name, address, e-mail, telephone number, etc.) will be handeled by us according to the regulations of the German data protection law. Data is personal when it can be clearly assigned to a specific natural person. The legal basis of data protection can be found in the General Data Protection Regulation (GDPR). The following regulations inform you insofar about the type, scope and purpose of the elicitation, as well as the usage and processing of personal data by the provider.
1. Basic information on data processing and legal bases
1.1. This privacy statement explains the nature, extent and purpose of the processing of personal data within our online offering and the related websites, features and content (collectively referred to as "online offer" or "website"). The privacy statement applies independently of the domains, systems, platforms, and devices (such as desktop or mobile phones) on which the online offering is being run.
1.2. The terminology and technical terms used, such as "personal data" or their "processing", are based on the definitions in Section 4 of the General Data Protection Regulation (GDPR).
1.3. The personal data of the users processed in the context of this online offer includes inventory data (such as names and addresses of customers), contract data (e. g., services used, names of clerks, payment information), usage data (e. g., the visited websites of our online offer, interest in our products) and content data (for instance input in the contact form).
1.4. The term "user" covers all categories of persons affected by data processing. These include our business partners, customers, interested parties and other visitors of our online offer. The terms used, such as "users" are to be understood gender-neutral.
1.5. We process personal data of users only in compliance with the relevant data protection laws. This means that users' data will only be processed if there is a legal permit. That is, especially if the data processing for the performance of our contractual services (e. g. processing of orders) as well as online services is required or required by law, the consent of the user exists, as well as our legitimate interests (i. e. interest in the analysis, optimization and efficiant operation and security of our online offer within the meaning of Section 6 (1) f GDPR, in particular in the range measurement, creation of profiles for advertising and marketing purposes as well as collection of access data and use of third-party services.
1.6. Please note that the legal basis of the consents Section 6 (1) a and Section 7 GDPR, the legal basis for the processing for the performance of our services and the performance of contractual measures Section 6 (1) b GDPR, the legal basis for processing in order to fulfill our legal obligations Section 6 (1) c GDPR, and the legal basis for processing in order to safeguard our legitimate interests is Section 6 (1) f GDPR.
2. Safety precautions
2.1. We take organizational, contractual and technical security precautions in accordance with the state of the art to ensure that the provisions of data protection laws are adhered to and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.
2.2. One of the safety precautions is the encrypted transmission of data between your browser and our server.
Our website uses SSL encryption when it comes to the transmission of confidential or personal content of our users. This encryption is activated, for example, in the processing of payments and requests placed through our website. Please make sure that the SSL encryption is activated from your side during activities. The use of encryption is easy to recognize: The display in your browser line changes from "http: //" to "https: //". SSL encrypted data is not readable by third parties. Transmit your confidential information only with activated SSL encryption and contact us in case of doubt.
3. Disclosure of data to third parties and third party suppliers
3.1. Your data will only be used within CMC Klebetechnik GmbH and its affiliates in the CMC Group. We only pass on your data to third parties in the cases described hereafter.
3.2. A transfer of data to third parties shall only occur within the scope of legal regulations. We will only pass users' data on to third parties if this is required on the basis of Section 6 (1) b GDPR for contract purposes or based on legitimate interests in accordance with Section 6 (1) f GDPR on the economical and effective running of our business.
3.3. If we use subcontractors to provide our services, we will take appropriate legal precautions and appropriate technical and organizational measures to protect personal data in accordance with applicable law.
3.4 If, within the framework of this privacy statement, content, tools or other means are used by other providers (collectively referred to as "third party providers") and their registered office is located in a third country, it is to be assumed that data will be transferred to the countries of residence of the third party providers. Third countries are countries in which the GDPR is not a directly applicable law, meaning basically countries outside the EU or the European Economic Area. The transfer of data to third countries occurs either when there is an adequate level of data protection, user consent or other legal authorization.
4. Provision of contractual services
4.1. We process inventory data (for example names and addresses as well as contact information of users), contract data (for instance services used, names of contacts, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Section 6 (1) b GDPR.
4.2. If you wish to use the payable services and services offered on our website, we may need to collect further data for billing purposes and security reasons from you. This is usually your name, a valid e-mail address and, if necessary, your address and telephone number as well as more information depending on the individual case. It may also involve contents that allows us to verify the information provided, such as your ownership of the email address. We must ensure, for legal reasons, that you really want to receive the services offered and that we can properly charge you for the service. To secure your data we work with the encryption standard SSL in payment transactions, recognizable by the browser line "https: //".
4.3. Users can optionally create a user account, to be able to view their orders. As part of the registration, the necessary mandatory information will be communicated to the users. The user accounts are not public and can not be indexed by search engines. If users have terminated their user account, their data will be deleted with regard to the user account, if the storage isn’t necessary for commercial or tax law reasons according to Section 6 (1) c GDPR. In case of cancellation it is the responsibility of the users to secure their data before the end of the contract. We are entitled to irretrievably delete all user data stored during the term of the contract.
4.4. As part of the registration and renewed registration as well as the use of our online services, the IP address and the time of the respective user action will be saved. The storage is based on our legitimate interests, as well as the user's protection against misuse and other unauthorized use. A transfer of these data to third parties does not take place, unless it is necessary for the prosecution of our claims or there is a legal obligation in accordance with Section 6 (1) c GDPR.
4.5. We process usage data (e. g. the visited web sites of our online offering, interest in our products) and content data (e. g., inputs in the contact form or user profile) for advertising purposes in a user profile to inform the user for example about product instructions based on their previously used services.
5.1. When contacting us (via contact form or e-mail), the information provided by the user to process the contact request and its execution is handeled in accordance with Section 6 (1) b GDPR.
5.2. User information can be stored in our customer relationship management system ("CRM System") or similar set-up.
6. Collection of access data and logfiles
6.1. Based on our legitimate interests according to Section 6 (1) f GDPR we collect data upon every access to the server on which this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.
6.2. Logfile information is stored for security purposes (for example, to investigate abusive or fraudulent activities) for a maximum of seven days and then deleted. Data whose further storage is required for evidential purposes shall be exempted from the deletion until final clarification of the incident.
7. Cookies & reach measurement
7.1. Cookies are information transmitted from our web server or third-party web servers to users' web browsers and stored there for later retrieval. Cookies can be small files or other types of information storage.
7.2. We use "session cookies" that are only stored for the duration of the current visit to our online presence (for example, to enable the storage of your login status or the shopping cart function and thus the use of our online offer in the first place). In a session cookie, a randomly generated unique identification number is stored, a so-called session ID. In addition, a cookie contains information about its origin and the storage period. These cookies can not save any other data. Session cookies will be deleted if you finish using our online offer and you for example log out or close the browser.
7.4. If users do not want cookies stored on their computer, they will be asked to deacivate the option in their browser's system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional limitations of this online offer.
8. Integration of services and content of third parties
8.1. Based on our legitimate interests (that is interest in the analysis, optimization and economic operation of our online offer within the meaning of Section 6 (1) GDPR, we make use of content or service offerings by third-party providers in order to integrate their content and services, such as incorporate videos or fonts (collectively referred to as "content"). This always presupposes that the third-party providers of this content perceive the IP address of the users, since they could not send the content to their browser without the IP address. The IP address is therefore required for the presentation of this content. We endeavor to use only content whose respective providers use the IP address merely for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may include technical information about the browser and operating system, referring web sites, visiting time, and other information regarding the use of our online offer.
8.2. The following lists provide an overview of third-party providers as well as their contents, along with links to their privacy statements, which contain further information on the processing of data and, as partially already mentioned here, opt-out options.
9. Google Analytics with anonymization service
9.2 Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
9.3. Google will use this information on our account to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services related to the use of this online offer and the internet usage. As a result, pseudonymous usage profiles of the users can be created from the processed data.
9.4. We use Google Analytics to show advertisements displayed within Google and its partners advertising services, only to those users who have shown an interest in our online offering or who have certain characteristics (e. g. interests in specific topics or products defined by the visited web pages) that we submit to Google (so-called "remarketing" or "Google Analytics audiences"). With the help of remarketing audiences, we also want to make sure that our ads are in line with the potential interest of users and not perceived to be annoying.
9.5. We only use Google Analytics with activated IP anonymisation. This means that the IP address of the users will be shortened by Google within member states of the European Union or in other contracting member states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
9.6. 9.6. The IP address submitted by the user's browser will not be merged with other data provided by Google. Users can prevent the storage of cookies by setting their browser software accordingly; Users may also prevent the collection of the data generated by the cookie and related to its use of the online offer and the processing of such data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
9.7. For more information about Google's data usage, configuration and opt-out options, please visit Google's websites: https://www.google.com/intl/de/policies/privacy/partners („Google's use of your data when you use websites or apps of our partners“), http://www.google.com/policies/technologies/ads („Use of data for advertising purposes“), http://www.google.de/settings/ads („Managing information that Google uses to show you advertising“).
10. Google AdWords
10.1. We also use the Google advertising tool "Google Adwords" to promote our website. In this context we use the "Conversion Tracking" analysis tool from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, mentioned as"Google", on our website. If you have reached our website via a Google ad, a cookie will be stored on your computer. Cookies are small text files that your Internet browser stores and saves on your computer. These so-called "conversion cookies" lose their validity after 30 days and are not used for your personal identification. If you visit certain pages on our website and the cookie has not expired yet, we and Google may recognize that you, as a user, clicked on one of our Google-placed ads and are redirected to our site.
10.2. The information collected withe the help of "conversion cookies" is used by Google to create visitor statistics for our website. These statistics tell us the total number of users who clicked on our ad, and which pages on our site were subsequently accessed by the particular user. However, we or other advertisers who use "Google Adwords" do not receive any information that personally identifies users.
10.3. You can prevent the installation of the "conversion cookies" by setting your browser accordingly, for example by setting a browser that generally deactivates the automatic setting of cookies or specifically blocks only cookies from the domain "googleadservices.com".
11.1. On the basis of our legitimate interests (i. e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Section 6 (1) GDPR) we use the marketing and remarketing services ("Google Marketing Services") of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google").
11.2. Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with european data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
11.3 Google Marketing Services allows us to specifically display advertisements for and on our website so that we only present ads to users that potentially match their interests. If a user for example is shown ads for products he's been interested in on other websites, this is called remarketing. For these purposes, when our website and other websites with active Google Marketing Services are directly accessed, a code will be immediately executed by Google and so-called (re) marketing tags (invisible graphics or code, also called "Web Beacons ") will be incorporated into the website. With their help, the user is provided with an individual cookie, that is a small file is saved (instead of cookies, comparable technologies can also be used). The cookies can be set by different domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. In this file is noted which web pages the user visited, which contents he is interested in and what offers he clicked on, as well as technical information about the browser and operating system, referring web sites, visit time and other information on the use of the online offer. The IP address of the users is also gathered, whereby we announce in the context of Google Analytics that the IP address is shortened within member states of the European Union or other contractual states of the Agreement on the European Economic Area and only in exceptional cases transmitted completely to a Google server in the US and shortened there. The IP address will not be merged with data of the user within other offers from Google. The information mentioned above may also be linked with such information from other sources by Google. If the user visits other websites afterwards, advertisements can be displayed according to his interests.
11.4. The data of the users are pseudonymously processed within the scope of Google marketing services. In other words Google stores and processes for instance not the name or e-mail address of the users, but processes the relevant data cookie-related within pseudonymous user profiles. This means from the perspective of Google, the ads are not managed and displayed to a specifically identified person, but to the cookie owner, regardless of who that cookie owner is. This does not apply if a user has explicitly allowed Google to process the data without this pseudonymisation. The information collected about users through Google marketing services is transmitted to Google and stored on Google's servers in the United States.
11.5. In addition, we may use the "Google Tag Manager" to integrate and manage the Google analysis and marketing services on our website.
11.6. For more information about Google's data usage for marketing, see the overview page: https://www.google.com/policies/technologies/ads, Google's privacy statement is located at https://www.google.com/policies/privacy .
11.7. If you wish to opt-out of interest-based advertising through Google marketing services, you can use Google's configuration and opt-out options: http://www.google.com/ads/preferences.
12. Use of PayPal as payment method
If you decide for a payment with the online payment service PayPal during your order process, your contact details will be sent to PayPal. PayPal is an offer from PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. PayPal takes over the role of an online payment service provider as well as a trustee and offers buyer protection services.
The personal data transmitted to PayPal are usually first name, last name, address, telephone number, IP address, e-mail address, or other data required for order processing, as well as data related to the order such as number of articles, article number, invoice amount and taxes in percent, billing information, and so on.
This transmission is necessary to process your order using the payment method you have selected, in particular to confirm your identity, for administration of your payment and the customer relationship.
Please note, however, that personal data may also be passed on by PayPal to service providers, subcontractors or other affiliated companies, insofar as this is necessary to fulfill the contractual obligations arising from your order or if the personal data are to be processed on order.
Depending on the payment method selected via PayPal, e. g. invoice or direct debit, the personal data transmitted to PayPal are transmitted to credit reference agencies by PayPal. This transfer is used to verify the identity and credit check of the order you have placed. For details of which credit agencies are used and what kind of data is collected, processed, stored and shared by PayPal, please refer to PayPal's privacy statement at https://www.paypal.com/de/webapps/mpp/ua/privacy-full
13. Use of Google-Maps
We use the "Google Maps" module by the company Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, listed below as "Google", on our site.
Each time Google Maps is called, Google sets a cookie to process user settings and data when viewing the page that has integrated the Google Maps component. This cookie is usually not deleted by closing the browser, but will expire after a certain amount of time unless it is manually deleted by you.
If you disagree with the processing of your data, you may disable the "Google Maps" service and prevent the transmission of data to Google by doing so. For this, you must deactivate the Java Script feature in your browser. However, please note that in this case you will not be able to use "Google Maps" or only to a limited extent.
http://www.google.de/intl/de/policies/terms/regional.html and the additional terms and conditions for "Google Maps"
14. Use of reCAPTCHA
To protect input forms on our site, we use the service "reCAPTCHA" by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereafter named "Google". Through the use of this service, it can be distinguished whether the input is of human origin or abusively used by automated processing.
To our knowledge, the referrer URL, the IP address, the behavior of the website visitors, information about the operating system, browser and duration, cookies, presentation instructions and scripts, the input behavior of the user and mouse movements in the "reCAPTCHA" checkbox will be transferred to "Google".
Among other things, Google uses this information to digitise books and other printed products, as well as to optimize services such as Google Street View and Google Maps (e. g. house number and street name identification).
The IP address submitted as part of "reCAPTCHA" will not be merged with any other data provided by Google unless you are logged in to your Google account at the time you use the "reCAPTCHA" plug-in. If you want to prevent this transmission and storage of data about you and your behavior on our website by "Google", you must log out of "Google" before you visit our site or use the reCAPTCHA plug-in.
15. Use of YouTube components with enhanced data protection mode
We use components (videos) from the company YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, a company of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA, on our website.
While doing so we use the option "- extended privacy mode -" provided by YouTube.
When you visit a page with an embedded video, a connection to the YouTube servers will be made and in the process the content will be displayed by instructing your browser on the website.
According to information provided by YouTube, in the "extended data protection mode" only data, in particular which of our web pages you have visited when watching the video, is transmitted to the YouTube server. If you are logged in to YouTube at the same time, this information will be associated with your member account on YouTube. You can prevent this by logging out of your member account before visiting our website.
Additional information about YouTube's data protection is provided by Google under the following link:
16. Use of Twitter
Functions of the service Twitter can be integrated in our online offer. These functions are available through Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the "Re-Tweet" function, the websites you visit are linked to your Twitter account and shared with other users. This data is also transmitted to Twitter. We point out that we as the provider of the pages are not aware of the content of the transmitted data and their use by Twitter. Privacy statement by Twitter at https://twitter.com/privacy. You can change your privacy settings on Twitter in the account settings at https://twitter.com/settings/account .
18.1. With the following information we will inform you about the contents of our newsletter as well as the registration, shipping and statistical evaluation procedures as well as your right of objection. By subscribing to our newsletter, you agree to the receipt and the procedures described.
18.2. Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter "newsletter") only with the consent of the recipient or a legal permission. Insofar as the contents of a newsletter are specifically described, they are relevant for the consent of the users. Apart from that, our newsletters contain information about our products, offers, iniciatives and our company.
18.3. Double opt-in and logging: The registration for our newsletter is done in a so-called double-opt-in procedure. That means after registration you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that nobody can register with third-party e-mail addresses. The registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login- and confirmation time, as well as the IP address. Changes to your data stored with the shipping service provider will be logged das well.
18.4. Shipping Service Provider: The newsletter is sent by CleverReach GmbH & Co. KG, Mühlenstraße 43, 26180 Rastede, hereinafter referred to as "shipping service provider". The data protection regulations of the shipping service provider can be viewed here: https://www.cleverreach.com/de/datenschutz/.
18.5. Furthermore, the shipping service provider may, according to its own information, transmit these data in pseudonymous form, that is without assignment to a user, to optimize or improve their own services, for example for the technical optimisation of the dispatch and the presentation of the newsletters or for statistical purposes, to identify from which countries the recipients come. However, the shipping service provider won‘t use the data of our newsletter recipients to write to them or to pass the data on to third parties.
18.6. Login details: To subscribe to the newsletter, it is sufficient to provide your e-mail address. Optionally, we ask you to give a name in the newsletter for personal address.
18.7. Statistical Survey and Analysis - The newsletters contain a so-called "web-beacon", that is a pixel-sized file that is retrieved from the shipping service provider's server when the newsletter is opened. This access will initially collect technical information, such as information about the browser and your system, as well as your IP address and time of access. This information is used to improve the technical performance of services based on their specifications or audience and their reading habits, with their locations (which can be determined through the IP address) or access times. Statistical surveys also include determining if the newsletters were opened, when they were opened and which links were clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our desire nor that of the shipping service provider to observe individual users. The evaluations serve to recognize the reading habits of our users and to adapt our contents to them or to send different contents according to the interests of our users.
18.8. The use of the shipping service provider, the implementation of statistical surveys and analyzes as well as logging of the registration procedure, are based on our legitimate interests in accordance with Section 6 (1) f GDPR. We are interested in having a user-friendly and secure newsletter system that serves both, our business interests and the expectations of our users.
18.9. Termination / Revocation - You may terminate the receipt of our newsletter at any time, i. e. revoke your consent. At the same time your consent for shipping by the shipping service provider and the statistical analyzes expire. A separate revocation of the shipment by the shipping service provider or the statistical evaluation is unfortunately not possible. A link to cancel the newsletter can be found at the end of each newsletter. If the users have only subscribed to the newsletter and terminated this registration, their personal data will be deleted.
19. Rights of users
19.1. Users have the right, upon request, to receive information free of charge about the personal data that we have stored about them.
19.2. In addition, users have the right of correction of incorrect data, limitation of the processing and deletion of their personal data, if applicable, assert their rights to data portability and, in the event of unlawful processing, file a complaint at the competent supervisory authority.
19.3. Likewise, users can revoke consent, generally with implications for the future.
20. Deletion of data
20.1. The data stored with us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any duty to preserve records. Unless the users' data are deleted because they are required for other and legally permitted purposes, their processing will be restricted. That means the data is blocked and not processed for other purposes. This applies, for example for data of users who must be kept for commercial or tax reasons.
20.2. According to legal requirements, storage takes place for 6 years in accordance with Section 257 (1) commercial code (records, inventories, opening balance sheets, annual financial statements, commercial papers, vouchers and so on) and for 10 years in accordance to Section 147 (1) tax code (books, records, management reports, vouchers, commercial and business correspondence, documents relevant for taxation, etc.).
21. Right of objection
Users may object to the processing of their personal data in accordance with legal requirements at any time. The objection may in particular be made against processing for direct advertising.
22. Changes to the privacy statement
22.1. We reserve the right to change the privacy statement in order to adapt it to changed legal situations, or to changes in the service and data processing. However, this only applies to declarations of data processing. If users' consent is required or elements of the privacy statement contains provisions of the contractual relationship with the users, the changes will only be made with the consent of the users.
22.2. Users are requested to inform themselves regularly about the content of the privacy statement..