Data Protection Declaration
1. Name and address of the party responsible
Responsible office and service provider is Deuter Sport GmbH, Daimlerstrasse 23, 86368 Gersthofen (hereinafter referred to as "Deuter").
2. Name and address of the Data Protection Officer
Our data protection officer is: Sebastian Meyer, Schwanweg 1, 90562 Heroldsberg. You may also contact our data protection officer at any time with any questions relating to data protection. This is best by e-mail to: Datenschutz@schwan-stabilo.com.
3. General data processing
We collect and use personal data of our users basically only as far as this is necessary to provide a functional website and our contents and services.
3.1. Personal data
Personal data are information that can be attributed to you individually. This includes, for example, your name, e-mail address, home address, gender, date of birth, the telephone number or even age. Non-personal data are information such as the number of users of a website.
3.2. Processing of personal data
Processing is any operation carried out with or without the aid of automated processes or any such set of operations in connection with personal data, such as the collection, recording, organization, structuring, storage, adaptation or change, reading, retrieval, use, disclosure by transmission, distribution or other form of provision, comparison or combination, restriction, erasure or destruction. Personal data are collected via this website when you make them available to us, e.g., in connection with registration, by filling out forms, sending e-mails or in particular by ordering products. We use these data for the respectively specified purposes or for the purposes arising from the enquiry; for example, we use your mailing address to send you the goods to this address. We transmit personal data to third parties only if the law explicitly permits us to do so or if you have consented to the transmission within the framework of your registration or in the course of an active business relationship. In addition, you can use the general information at https://www.deuter.com without disclosing your personal data. In particular, personal data is processed as follows:
3.2.1. Contact form
If you use the option of sending enquiries to us via our contact form, we ask for your first and last name and your e-mail address. You can also voluntarily provide your address and enter your individual message to us in the message field. You are completely free to decide whether you communicate these data to us. However, without this information, we cannot fulfil your contact request. The information regarding your e-mail address is used in this case to assign your enquiry and to be able to respond to you. When we use the contact form, we do not forward your personal data to third parties. As soon as your enquiry is completed and the issue concerned is conclusively settled, your personal data processed via the contact form will be erased. Further storage can take place in individual cases if required by law. The data processing described above is done for contact purposes in accordance with Art. 6 para. 1 lit. b, and Art. 6 para. 1 lit. f of the GDPR.
3.2.2. Google reCAPTCHA
3.2.3. Applicant management
If you are interested in any of our jobs listed on the website, you can at any time send us an e-mail to firstname.lastname@example.org or send us your application documents to the following address: Deuter Sport GmbH, Daimlerstrasse 23, 86368 Gersthofen. We assure you that we will only process the personal data you provided for the purposes of carrying out the application process. We keep your data for six months after the end of the application process (acceptance or rejection). The legal basis for processing your personal data from your application documents is Art. 6 para. 1 lit. b of the GDPR.
In order to be able to subscribe to our e-mail newsletter, we need your e-mail address where the newsletter is to be sent. You are completely free to decide whether you communicate these data to us. However, without this information, we might not be able to send our newsletter to you. If you subscribe to the newsletter, your e-mail address will be used for our own advertising purposes until you unsubscribe from the newsletter. In order to unsubscribe, you can carry out a cancellation via the link on our website. Your data are stored as long as you subscribe to the newsletter. After unsubscribing from the newsletter, your data are erased. Further storage can take place in individual cases if required by law. The legal basis for processing the data after subscription to the newsletter by the user upon consent of the user is Art. 6 para. 1 lit. a of the GDPR.
3.3. Legal basis for the processing of personal data
The collection and use of personal data of our users is only done on a regular basis with the user's consent. Insofar as we obtain consent of the person concerned for personal data processing operations, Art. 6 para. 1 lit. a of the GDPR serves as legal basis for the processing of personal data. An exception applies in cases in which it is not possible to obtain prior consent for factual reasons and the processing of the data is permitted by statutory provisions. For the processing of personal data that is necessary for the fulfilment of a contract whose contractual party is the person concerned, Art. 6 para. 1 lit. b of the GDPR serves as a legal basis. This also applies to processing operations that are required to carry out pre-contractual measures. If personal data processing is required to meet a legal obligation to which we are subject, Art. 6 para. 1 lit. c of the GDPR provides the legal basis. If the processing is required to protect a legitimate interest of our company or a third party and if the interests, basic rights and fundamental freedoms of the data subject outweigh the first-mentioned interest, Art. 6 para. 1 lit. f of the GDPR serves as legal basis for the processing.
A cookie is a small text file that is stored in your browser’s cache and allows analysis of your use of our website. For example, this enables us to welcome you personally at your next visit or to display information specifically tailored to your interests. Furthermore, cookies are set by our contractual partners for the purpose of analysing the usage behaviour for advertising optimization (referred to as social targeting). A session is a single session that is stored for a short period of time on our server. Log files are created by the server and stored by us. They contain automatically recorded logs of all or specific actions of processes on a computer system.
In the cookies, sessions and log files, no security-relevant or personal data, with the exception of your IP address, are stored. In addition, these files cannot transmit viruses, spy on data on your computer or secretly send e-mails. In addition, each web server can only read cookies that the server has itself set. The following data are automatically recorded by means of cookies by our computer system when our web pages are called up:
·your Internet (IP) address / host name
·agent/browser type and version
·website from which you visit us (referrer URL)
·operating system used
·website from which you are redirected to other websites
·page views on our website
·date and time of your access
These data are stored separately from the data you specified for us within the framework of a customer account. There is no link between these data. The data recorded in accordance with paragraph 3 are analysed for statistical purposes in order to optimize our web pages and our offers.
4.3. Social plug-ins (Facebook, Instagram, Twitter and YouTube)
Social plug-ins of the social networks "Facebook" (Facebook Inc., 1601 S. California Ave, Palo Alto, California 94304, USA), "Google+" (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland), "Twitter" (Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA) and YouTube (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) are contained in our website. These services are offered by the respective companies ("providers"). Within the framework of our online presence, the social plug-ins are identified by the respective buttons associated with the service. Based on the data transmitted via the social plug-ins to the respective service, the service might be able to associate you with your account with them. In order to increase the protection of your data on our website, the social plug-ins are integrated into our website by means of the "2-click solution". This ensures that when a page of our web presence containing such social plug-ins is viewed, an automatic connection with the servers of the respective providers is not yet established. The activation of the function of the respective social plug-in takes place in two steps. In order to enable a social plug-in, you must first click on the link on our website. As a result, the social plug-in is initially activated and your browser connects to the servers of the respective provider. With a second click, you can now interact with the social plug-in and, for example, transmit your recommendation. If you are already logged into one of the providers’ social networks, the providers can directly associate the visit to this website with your profile. If you click onto the social plug-ins, the corresponding information is also transmitted directly to one of the providers’ servers and stored there. The information may also be published in the social network and displayed there amongst your contacts. If you would like to prevent such an immediate association of your data collected via our website with your profile, you must log out of your account with the respective provider before visiting our website. For the scope and purpose of data collection by the respective service as well as the further processing and use of your data there, please refer directly to the data protection information on the website of the service. There, you can also find additional information about your relevant data protection rights and possible settings for protecting your privacy.
a) Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA
b) Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland
c) Twitter Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA
d) YouTube,1600 Amphitheater Parkway, Mountain View, California 94043, USA
On this website, data for marketing and optimization purposes are collected and stored using technologies of etracker GmbH (etracker GmbH, Erste Brunnenstrasse 1, 20459 Hamburg). Pseudonymised user profiles can be created from these data. Cookies can be used for this purpose. Unless the consent of the person concerned is granted separately, the data collected using etracker technologies are not used to personally identify the visitor to this website and are not combined with personal data about the person behind the pseudonym. Data collection and storage can be objected to at any time with effect for the future (http://www.etracker.de/privacy?et=7l3dHm).
4.5. Facebook pixel
4.6. Google Analytics
Google Analytics, a web analysis service of Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") is used on this website. Google Analytics uses "cookies", text files that are stored on your computer and enable analysis of the use of the website by you.
The information generated by these cookies, for example, about the time, location and frequency of your use of this website, is usually transmitted to a Google server in the USA and stored there. When using Google Analytics, it cannot be excluded that the cookies set by Google Analytics can also collect other personal data in addition to the IP address. We would like to point out that Google might transmit this information to third parties if required by law or if third parties process these data on behalf of Google.
The information generated by cookies is used by Google on behalf of the operator of this website to analyse your use of the website in order to compile reports on website activities and to provide additional services connected with website and Internet use to the website operator. According to Google’s own information, the IP address transmitted by your browser by Google Analytics is not combined by Google with other data from Google.
You can generally prevent cookies from being stored by correspondingly configuring your browser software. However, we would like to point out that in this case, you might not be able to use all functions of this website in full.
There is a possibility that the cookies set by Google Analytics can also collect other personal data in addition to the IP address. In order to prevent information about your use of the website from being collected by Google Analytics and transmitted to Google Analytics, you can download and install a plug-in for your browser via the following link:http://tools.google.com/dlpage/gaoptout?hl=en.
This plug-in prevents information about your visit to the website from being transmitted to Google Analytics. Any other analysis is not prevented by this plug-in.
Please note that you cannot use the browser plug-in described above in a visit to our website via the browser of a mobile end device (smartphone or tablet). When using a mobile end device, you can prevent Google Analytics collecting your usage data by clicking on the following link: Deactivate Google Analytics.
By clicking this link, what is referred to as an opt-out cookie is set in your browser. This prevents information about your visit to the website from being transmitted to Google Analytics. Please note that the opt-out cookie is valid only for this browser and only for this domain. If you delete the cookies in this browser, the opt-out cookie is also deleted. In order to continue to prevent data collection by Google Analytics, you must click the link again. Using the opt-out cookie is also possible as an alternative to the above plug-in when using the browser on your computer.
In order to ensure the best possible protection of your personal data, Google Analytics was extended on this website by the code "anonymizeIp". This code causes the last 8 bits of the IP addresses to be deleted and your IP address is thus collected anonymously (referred to as IP masking). In principle, your IP address is already shortened and thus anonymised by Google before transmission within member states of the European Union or in other contracting states of the Treaty on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
4.7. Commerce Connector Sales Pixel
The conversion tracking program of Commerce Connector GmbH, Eberhardstr. 69-71, 70173 Stuttgart ("Commerce Connector") is used on this website. Commerce Connector provides a "Buy Now" button so that links to dealers who distribute our products are provided. When you click on the link, our partner - Commerce Connector GmbH - stores a cookie on your end device for a limited period of time. If you make a purchase from the dealer within this period of time or if you get to the dealer's order confirmation page, Commerce Connector can access the cookie in order to obtain information about your purchase from the dealer. This cookie normally loses its validity after seven days,. We would point out that Commerce Connector does not receive personal information that can be used to identify you - just a singular cookie number. Commerce Connector uses the acquired purchase information to create anonymised sales statistics of our products that were purchased via the link and then provides us with these statistics.
You can view further information about your relevant data protection rights and possible settings for protecting your privacy at https://www.commerce-connector.com/web/en/policy-cco/.
You can deactivate Commerce Connector by clicking an opt-out button via the link above.
4.8. Preventing the storage of cookies
4.9. Legal basis Our legitimate interest lies in the aforementioned data processing operations and in the purposes pursued thereby. Art. 6 para. 1 lit. f of the GDPR forms the legal basis in this respect.
4.10. Fan pages on Facebook, Instagram, YouTube, Google, LinkedIn, Xing and Twitter
We operate fan pages on the social networks Facebook, Instagram, YouTube, LinkedIn, XING and Twitter. As operators of these fan pages, we, together with the operators of these networks, are the responsible parties within the meaning of Art. 4 no. 7 of the GDPR. If you visit one of our fan pages, personal data are processed by the responsible parties. As the responsible party for the fan pages, we have concluded agreements with the social networks, which regulate the conditions for using these pages, among other things. We have integrated this Data Protection Declaration into the corresponding fan pages; you can find additional information there or at deuter.com:
5. Security measures for protecting the data stored with us, SSL technology
We have set up organisational and technical security precautions to protect your data, in particular against loss, manipulation or unauthorised access. We regularly adapt our security measures to ongoing technical developments. Intensive information and training of our employees and their obligation to data secrecy ensure that your data are treated confidentially. Personal data is basically transmitted between your computer or mobile end device and our server in an encrypted manner (SSL process, secure socket layer).
6. Use of service providers for processing personal data / processing data in countries outside the European Economic Area
We use service providers to provide services and process your data in relation to our services and products. The service providers process the data exclusively in accordance with our instructions and are required to comply with the applicable data protection provisions. All processors are carefully selected and only receive access to your data within the scope and time period required for the provision of the services, or within the scope in which you consented to data processing and data use. Service providers in countries such as the USA or in countries outside the European Economic Area are subject to data protection that generally does not protect personal data to the same degree as is the case in the member states of the European Union. If your data is processed in a country which does not have the same recognised high level of data protection as the European Union, we will ensure that your personal data is adequately protected by means of contractual regulations or other recognised instruments.
Certain processing activities for internal administrative purposes or to optimise and control processing operations are undertaken centrally by a company within the Schwan-STABILO Group. Personal data may be transferred within the group for such purposes. These group companies will only receive access to your personal data to the extent required for the purpose specified.
Within our company, only the people who are responsible for the management of prospects, customers, supply management and financial accounting will have access to your data.
7. Storage duration We only store your personal data as long as permissible by law. The erasure of stored personal data takes place if the user revokes his consent regarding storage or if knowledge of these data is no longer necessary for the purpose of fulfilling the purpose intended with the storage, especially if the user account is deleted or if their storage is impermissible for other statutory reasons. The relevant statutory retention periods specified in the Commercial Code or the Tax Code remain unaffected thereby. During the statutory retention period, your personal data are blocked and not supplied for any other data processing.
8. Data subject rights
8.1. Right to information You have the right to demand information from us at any time about the data concerning you that is stored with us as well as information about their origin, recipients, or categories of recipients to whom these data are forwarded and the purpose of storing your data.
8.2. Right of withdrawal
If you have granted consent to use data, you can revoke this consent at any time with future effect without giving reasons. To this end, an e-mail to: email@example.com or a written notification to: Deuter Sport GmbH, Daimlerstrasse 23, 86368 Gersthofen is sufficient (Art. 15 of the GDPR).
8.3. Right of rectification
If your data stored with us is inaccurate, you can have them rectified by us at any time (Art. 16 of the GDPR).
8.4. Right of Erasure and blocking
You have the right to block and erase the personal data concerning you stored with us (Art. 17 of the GDPR). The erasure of your personal data is usually done within two working days after the assertion of this data subject right. If the erasure is contrary to statutory, contractual or tax law-related or commercial law-related retention obligations or other legally anchored reasons, your data can only be blocked instead of erased. After erasure of your data, information can no longer be provided.
8.5. Right to data portability
If you request your personal data provided to us, we shall transmit the data in a structured, customary and machine-readable format to you or another responsible party if you wish (Art. 20 of the GDPR). However, the latter only applies if this is technically feasible.
8.6. Right of objection
You have the right to object to data processing at any time without giving reasons (Art. 7 para. 3 of the GDPR). However, after exercising the right of objection, we might no longer be able to offer our services in full since certain services necessarily require the processing of specific personal data.
8.7. Contact to assert data subject rights
When contacting us by e-mail at firstname.lastname@example.org or by mail to Deuter Sport GmbH, Daimlerstrasse 23, 86368 Gersthofen, the data you communicate (your e-mail address, and where applicable your name and your telephone number) are stored by us in order to answer your questions and/or to meet your concerns. We erase the data in this context once storage is no longer required or restrict processing if there are statutory retention obligations
9. Right to lodge a complaint with the supervisory authority
You have the right to lodge a complaint with the competent supervisory authority against the processing of your personal data if you feel your rights have been infringed according to the GDPR (Art. 77 of the GDPR).