Privacy Policy
Art. 13 GDPR Information for the Service Portal
You are welcome to visit our service portal. Below we would like to inform you about the handling of your data in accordance with Article 13 of the EU General Data Protection Regulation (GDPR):
1. Responsible
Responsible for the data processing shown in the context of the operation of the website is the
Baumüller Nürnberg GmbH
Ostendstraße 80-90
90482 Nürnberg
Germany
Phone: +49 (0)911 / 5432-0
Fax: +49 (09)11 / 5432-130
Email:
Responsible for the data processing shown in the context of contacting via the contact details listed under "Contact" is the
Baumüller Reparaturwerk GmbH & Co. KG
Andernacher Straße 19
90411 Nürnberg
Germany
Phone: +49 (0)911 / 9552-0
Fax: +49 (0)911 / 5432-999
Email:
2. General data processing when operating our service portal
2.1. Usage data
Purposes and scope of data processing / legal basis:
When you visit our website, so-called usage data is temporarily processed on our web server in order to technically enable you to access our website.
This data set consists of
§ the name and address of the requested content,
§ the date and time of the query,
§ the amount of data transferred,
§ the access status (content transmitted, content not found),
§ the description of the web browser and operating system used, including information on the language used,
§ the referrer address, which indicates from which page you have reached ours,
§ the IP address of the requesting device.
Your usage data is stored and evaluated in a log for statistical purposes and to improve the quality of our website as well as to detect, prevent and track attacks.
Insofar as we use technically necessary cookies and similar techniques as part of the integration of the service, this is done in accordance with § 25 para. 2 TTDSG. Subsequent data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR in our legitimate interests in being able to provide you with an appealing and functional website and to ensure the security and freedom from interference of our websites and the data processing that takes place via them.
Recipients / Categories of recipients:
We transfer your data to processors who support us in the operation and administration of our website and the associated data processing within the framework of order processing in accordance with Art. 28 GDPR and who are strictly bound by our instructions and contractually obliged to do so:
§ Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4-6, 32339 Espelkamp, Germany
§ Baumüller Corporate Services GmbH & Co. KG, Ostendstraße 80-90, 90482 Nuremberg, Germany
§ COOLCAT creations, Obere Herrngasse 9, 74523 Schwäbisch Hall, Germany
§ Gridfactor, Allersberger Str. 90, 90461 Nuremberg, Germany
Saving time / criteria for determining the saving time:
After this period has expired, we anonymize your IP address by shortening it, so that a personal reference can no longer be established with regard to all usage data.
2.2. Consent Management with Cookie First Consent Management Platform
Purposes and scope of data processing / legal basis:
On our websites we use the consent management platform "Cookie First" of Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH Amsterdam, The Netherlands, with the help of which we manage your consents to the use of cookies and similar technologies.
Insofar as we use optional cookies and similar technologies as part of the integration of the service or insofar as data is stored on or read from your end device by the service, this is done in accordance with § 25 para. 2 TTDSG. Subsequent data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. The purpose and our legitimate interest lie in being able to use cookies and similar technologies on our websites in compliance with data protection regulations and to enable you to easily revoke your declarations of consent.
§ the IP address of the requesting computer,
§ the description of the web browser and operating system used,
§ the address of the website from which your consent was sent
§ the date and time of consent,
§ a pseudonymous and encrypted consent key (consent ID).
§ your consent status, which serves as proof of your consent.
This data is logged on the servers of Digital Data Solutions BV. Your IP address is anonymized so that a personal reference can no longer be established.
In this way, our websites are able to check your consent status on all subsequent and future page views and, depending on your decision to use cookies and other technologies, activate or deactivate them when you visit the site again.
The check is carried out by comparing the consent key and the consent status from the cookies "cookiefirst-id", "cookiefirst-consent" and, if applicable, from the cookie "cf-bulk-consent" with the values transmitted to Digital Data Solutions BV when you gave your consent, in order to ensure that the status of your original consent has not changed. Further information on the handling of personal data by Digital Data Solutions BV can be found at https://cookiefirst.com/legal/privacy-policy/.
Recipients / Categories of recipients:
We transmit your data within the scope of order processing in accordance with Art. 28 GDPR to Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH Amsterdam, Netherlands, which is strictly bound by our instructions and contractually obliged to support us in the operation of "Cookie First" and the associated processes.
Saving duration / criteria for determining the saving duration:
Your consent ID and consent status are also stored in the browser of your end device in the cookies "cookiefirst-id", "cookiefirst-consent" and, in the case of cross-website consent, also in the cookie "cf-bulk-consent" as well as on the servers of Digital Data Solutions BV for a period of 3 months.
2.3. Use of cookies and similar technologies
Following you will find our notes and explanations on the use of cookies and similar technologies on our websites.
The content is automatically displayed as a script via our consent management platform "Cookie First". For proper display and function, your browser must be set so that script content can be loaded.
Cookies are small text files that can be stored and read on your device.
A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session for a certain period of time.
2.4. Google Tag Manager
Purposes and scope of data processing / legal basis:
On our websites we integrate the service "Google Tag Manager" of Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA.
In the European Union (EU) and the European Economic Area (EEA), Google Tag Manager is provided as a service by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
"Google Tag Manager" is a tag management system (TMS), which allows us to integrate and manage additional website content in Java Script or HTML code.
In particular, so-called tags can be integrated and managed in our website. Tags are small code fragments or markers (web beacons, tracking pixels or similar markers) that allow website analysis or user tracking services to distinguish or identify users.
The analysis of website visits or user tracking is not carried out by the website operator. user tracking is not carried out by the "Google Tag Manager", but by the services used for these purposes, such as "Google Analytics" or other third-party solutions. Rather, the "Google Tag Manager" is only used to integrate and manage the tags required for analysis or tracking on our websites.
Since the "Google Tag Manager" is provided by Google and reloaded by its servers when the page is called up, the usage data technically required for the page call is also transmitted. In this respect, Google also receives your IP address, which is technically required to retrieve the content.
Insofar as we use optional cookies and similar technologies as part of the integration of the service or insofar as data is stored on or read from your end device by the service, this is done in accordance with § 25 para. 2 TTDSG. Subsequent data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. The purpose and our legitimate interest lie in the efficient management of our website content.
Data processing in third countries:
When using the "Google Tag Manager", your data may also be processed outside the European Union (EU) and the European Economic Area (EEA) in third countries (here USA). However, Google LLC. is certified under the Data Privacy Framework and thus indicates that your rights as a data subject can be guaranteed.
Recipients / Categories of recipients:
We transmit your data to the following recipients when using the "Google Tag Manager":
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland,
- Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA.
We have no influence on any further data processing by the third-party provider.
For more information on how Google handles personal data, please visit https://policies. google.com/privacy?hl=en.
Saving time / criteria for determining the saving time:
Through the integration of the "Google Tag Manager" on our websites, data is transmitted to the above-mentioned recipients and stored there for as long as this is necessary to achieve the aforementioned purpose.
We do not store the collected data separately.
2.5. Google Analytics
Purposes and scope of data processing / legal basis:
On our websites we integrate the service "Google Analytics" of Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA, if you have given your consent.
In the European Union (EU) and the European Economic Area (EEA), "Google Analytics" is offered as a service by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, which supports us as a processor in accordance with Art. 28 GDPR.
"Google Analytics" uses cookies and creates usage profiles based on pseudonyms (recognition features from cookie and device ID and other data on the end device used or the so-called browser fingerprint) and usage data. browser fingerprint) and usage data (e.g. name and address of the website content requested by your browser, referral links, description of the web browser and operating system used and the IP address of the requesting device) about your use of the website. This information is transferred to a Google server in the USA and stored there.
Demographic data such as age, gender and interests of users, interactions such as button clicks, scroll depth and the use of filters and search functions are also recorded, analyzed and merged with existing pseudonymous data.
For this purpose, cookies and similar technologies, in particular JavaScript, are used to store and read data on your end device.
In this way, we are able to recognize returning visitors, count them as such and assign them to specific demographic target groups or customer segments. We then use these findings to place target group-oriented online advertising measures and marketing campaigns in advertising networks, in particular in Google advertising services.
With regard to the processing of your IP address, "Google Analytics" has been configured by us so that it is anonymized before being transmitted to the Google servers in the USA by the function "_anonymizeIp()" is shortened within the EU.
Insofar as we use optional cookies and similar technologies as part of the integration of the service or insofar as data is stored on or read from your end device by the service, this is done in accordance with Section 25 (1) TTDSG. Subsequent data processing takes place on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, provided you have given your consent via our consent management platform "Cookie First".
Your consent is voluntary and can be freely revoked at any time with effect for the future in accordance with Art. 7 para. 3 sentence 1 GDPR by accessing the cookie settings on this page https://serviceportal.baumueller.com/de/cookie-policy and changing your selection there . The lawfulness of the processing carried out on the basis of the consent until revocation remains unaffected by this.
Data processing in third countries:
When using "Google Analytics", your data may also be processed outside the European Union (EU) and the European Economic Area (EEA) in third countries (here USA). However, Google LLC. is certified under the Data Privacy Framework and thus indicates that your rights as a data subject can be guaranteed.
Recipients / Categories of recipients:
We transmit your data in the context of the use of "Google Analytics" to the following recipients:
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
- Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA
- Alphabet Inc, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA
We have no influence on any further data processing by the third-party provider.
For more information on how Google handles personal data, please visit https://policies. google.com/privacy?hl=en.
Saving time / criteria for determining the saving time:
The data used by us and linked to the cookies will be deleted after 2 months.
Through the integration of "Google Analytics" on our websites, data is transmitted to the above-mentioned recipients and stored there for a period of 26 months.
2.6. Joomla Session Cookie
Purposes and scope of data processing / legal basis:
We integrate the Joomla session cookie on our websites.
"Joomla" is a technically necessary session cookie, which is essential for the basic functionality of the website. It is primarily used to identify the user session, to ensure that user requests from the same client are processed correctly during a session and to improve user-friendliness by maintaining session states.
This cookie stores data in your end device or reads it out. This is done in accordance with § 25 para. 2 TTDSG. Subsequent data processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. The purpose and our legitimate interest are to ensure the functionality and security of our website.
Data processing in third countries:
Your data may also be processed outside the European Union (EU) and the European Economic Area (EEA) in third countries (in this case the USA).
Saving time / criteria for determining the saving time:
The cookie is only stored for the duration of the user session and is automatically deleted when the browser is closed.
3. Inquiries and contact by mail, phone, fax and e-mail
Purposes and scope of data processing / legal basis:
If you contact us by post, telephone, fax and e-mail using the contact details provided on the service portal under "Contact", we process personal data that you provide to us as well as data associated with the use of your means of communication (e.g. name, address, e-mail address or e-mail address). e.g. name, address, email address or fax or telephone number) in order to respond to your request.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR or Art. 6 para. 1 sentence 1 lit. b GDPR, if it is necessary for the performance of a contract or if it concerns pre-contractual measures.
Our and your concurrent (legitimate) interest in this data processing arises from the aim of answering your inquiries, possibly solving existing problems, responding to inquiries and providing you with information. solve existing problems, pass on requested information, etc. and thus maintain and promote your satisfaction as a (potential) customer.
You can decide for yourself which further voluntary information you provide or whether you also provide us with special personal data.
The legal basis for data processing is your consent Art. 6 para. 1 sentence 1 lit. a GDPR.
Your consent is voluntary and can be revoked at any time with effect for the future. To do so, please send an email to
Recipients/categories of recipients:
If you have a request that concerns another company in our Baumüller Group, we will forward the request to the relevant company so that your request can be answered. The relevant company will then contact you using the data provided.
Saving duration/criteria for determining the saving duration:
We store your data as long as this is necessary to achieve the aforementioned purpose. We will then delete your data unless data processing, possibly also in other systems, is still permitted on the basis of another legal basis or is mandatory for us (e.g. in the case of the existence of statutory retention obligations).
4. Voluntary nature of the provision of your data
The provision of your personal data is neither required by law nor by contract.
However, it is required in certain cases so that we can answer your request or you can make use of the services and benefits we offer.
The non-provision of personal data may mean that we cannot answer your request or that you cannot use the services and benefits offered.
Exceptions to this are, of course, data processing that is based exclusively on your consent. These are always voluntary. You can revoke any consent you have given at any time with effect for the future.
5. Your rights
When processing your personal data, the GDPR grants you certain rights:
5.1. right to information (Art. 15 GDPR)
You have the right to obtain confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and the information specified in Article 15 GDPR.
5.2 Right to rectification (Art. 16 GDPR)
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, where applicable, to have incomplete personal data completed.
5.3. Right to erasure (Art. 17 GDPR)
You also have the right to request that personal data concerning you be deleted immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer required for the purposes pursued.
5.4. Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you have objected to processing pursuant to Art. 21 GDPR or for the duration of any examination as to whether our legitimate interests override your interests as the data subject.
5.5. Right to data portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format or to request the transmission of this data to a third party.
5.6. Right to object (Art. 21 GDPR)
Where data is collected on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR (data processing to safeguard legitimate interests), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.
5.7. Right of withdrawal (Art. 7 para. 3 sentence 1 GDPR)
If your personal data is processed on the basis of consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR, you have the right to withdraw your consent in accordance with Art. 7 para. 3 sentence 1 GDPR. You can withdraw your consent at any time with effect for the future.
5.8. Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
You have the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of data relating to you infringes data protection regulations. The right to lodge a complaint may be exercised in particular with a supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.
The supervisory authority responsible for us is the Bavarian State Office for Data Protection Supervision, Postfach 1349, 91504 Ansbach.
6. Contact details of the data protection officer
Our company data protection officer will be happy to provide you with information or suggestions on the subject of data protection. For this purpose, please contact:
Email:
datenschutz süd GmbH
Keyword: "Baumüller Nürnberg GmbH" regarding the operation of the website resp. Keyword: "Baumüller Reparaturwerk GmbH & Co. KG" regarding contact via the service portal
Wörthstraße 15
97082 Würzburg
Germany