Data protection
Thank you for visiting our website www.mauthe-drehteile.de and for your interest in our company.
The protection of your personal data, such as date of birth, name, telephone number, address, etc., is an important concern for us.
The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practices comply with the statutory provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.
The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.
With regard to our website, the controller is:
A & W Mauthe GmbH & Co. KG
Riegertsbühlstraße 32
78601 Mahlstetten
Germany
E-mail: info@mauthe-drehteile.de
Phone: +49 7429940210
Fax: +49 74299402121
Each time our website is accessed, our system automatically collects data and information from the accessing device (e.g. computer, cell phone, tablet, etc.).
What personal data is collected and to what extent is it processed?
(1) Information about the browser type and version used;
(2) The operating system of the accessing device;
(3) Host name of the accessing computer;
(4) The IP address of the accessing device;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) that were accessed on our website;
(7) Websites from which the user's system came to our website (referrer tracking);
(8) Message as to whether the access was successful;
(9) Amount of data transferred
This data is stored in the log files of our system. This data is not stored together with the personal data of a specific user, so that individual site visitors cannot be identified.
Legal basis for the processing of personal data
Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.
Purpose of data processing
The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable the website to be delivered. Personal data is also stored and processed to maintain the compatibility of our website for as many visitors as possible and to combat misuse and troubleshooting. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimize the website and to generally ensure the security of our IT systems.
Duration of storage
The aforementioned technical data is deleted as soon as it is no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.
Objection and deletion option
You can object to the processing at any time in accordance with Art. 21 GDPR and request the erasure of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how to assert them at the bottom of this privacy policy.
If you wish to conclude a contract with us, we reserve the right to carry out exclusively automated processing of your personal data in order to check your creditworthiness. We are also entitled to make such an automated decision in accordance with Art. 22 para. 2 a GDPR. Whether or not the contract can be concluded depends on the result of the automated credit check. In a credit check, statistical probabilities of a payment default are calculated. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical methods. A large number of characteristics, such as income, address data, occupation, marital status and previous payment history, are used to determine the customer's future risk of non-payment. The result is expressed in the form of a payment value (so-called score). The information obtained in this way forms the basis of our decision on the establishment, execution or termination of a contractual relationship. If you believe that you have been wrongly excluded from concluding a contract due to the credit check, you are welcome to explain your point of view to us by email. We will then review the automated decision on a case-by-case basis in accordance with Art. 22 para. 3 GDPR. In order to be able to carry out the credit check, we may store and process your personal data in accordance with Art. 6 para. 1 lit. b GDPR.
We transmit your data to the following provider(s) on the basis of the contract in the cases listed below:
Our company regularly checks your creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also for existing customers. For this purpose, we work together with Creditreform Reutlingen Degner KG, Auwiesenstraße 30, 72770 Reutlingen, Germany(https://www.creditreform.de/reutlingen/), from whom we receive the necessary data. On behalf of Creditreform Reutlingen Degner KG, we are providing you with the following information in advance in accordance with Art. 14 EU GDPR:
Creditreform Reutlingen Degner KG is a consumer credit agency. It operates a database in which creditworthiness information about private individuals is stored.
On this basis, Creditreform Reutlingen Degner KG issues credit reports to its customers. Customers include, for example, credit institutions, leasing companies, insurance companies, telecommunications companies, receivables management companies, mail order, wholesale and retail companies and other companies that supply goods or services. In accordance with legal requirements, some of the data in the information database is also used to supply other company databases, including for address trading purposes.
In the Creditreform Reutlingen Degner KG database, information is stored in particular about the name, address, date of birth, e-mail address (if applicable), payment history and ownership structure of persons. The purpose of processing the stored data is to provide information about the creditworthiness of the person in question. The legal basis for the processing is Art. 6 para. 1f EU GDPR. Accordingly, information about this data may only be provided if a customer can credibly demonstrate a legitimate interest in knowing this information. If data is transferred to countries outside the EU, this is done on the basis of the so-called "standard contractual clauses", which you can find under the following link:
http://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32001D0497&from=DE
or have them sent to you from there.
The data is stored for as long as knowledge of it is necessary to fulfill the purpose for which it was stored. As a rule, knowledge is required for an initial storage period of three years. After expiry, it is checked whether storage is still necessary, otherwise the data is deleted to the day. If a matter is settled, the data is deleted to the day three years after settlement. Entries in the debtor register are deleted to the day in accordance with Section 882e ZPO after three years from the date of the entry order.
Legitimate interests within the meaning of Art. 6 para. 1f EU GDPR may be: credit decision, business initiation, shareholding relationships, claims, credit assessment, insurance contract, enforcement information. You have the right to obtain information from Creditreform Reutlingen Degner KG about the personal data stored about you. If the data stored about you is incorrect, you have the right to have it corrected or deleted. If it cannot be determined immediately whether the data is incorrect or correct, you have the right to block the respective data until clarification. If your data is incomplete, you can request that it be completed.
If you have given your consent to the processing of data stored by Creditreform Reutlingen Degner KG, you have the right to withdraw this consent at any time. The revocation does not affect the legality of the processing of your data carried out on the basis of your consent prior to any revocation.
If you have any objections, requests or complaints regarding data protection, you can contact the data protection officer of Creditreform Reutlingen Degner KG at any time. He will help you quickly and confidentially in all matters relating to data protection. You can also complain about the processing of data by Creditreform Reutlingen Degner KG to the state data protection officer responsible for your federal state.
The data that Creditreform Reutlingen Degner KG has stored about you comes from publicly accessible sources, from debt collection agencies and from their customers.
In order to describe your creditworthiness, Creditreform Reutlingen Degner KG calculates a score for your data. The score value includes data on age and gender, address data and, in some cases, payment experience data. This data is included in the score calculation with different weightings. Creditreform Reutlingen Degner KG customers use the score values as an aid when making their own credit decisions.
Right of objection:
The data stored by Creditreform Reutlingen Degner KG is processed for compelling legitimate grounds of creditor and credit protection which regularly outweigh your interests, rights and freedoms or for the establishment, exercise or defense of legal claims. You can only object to the processing of your data for reasons that arise from your particular situation and must be proven. If such special reasons can be proven, the data will no longer be processed. If you object to the processing of your data for advertising and marketing purposes, the data will no longer be processed for these purposes.
Creditreform Reutlingen Degner KG, Auwiesenstraße 30, 72770 Reutlingen, Germany(https://www.creditreform.de/reutlingen/) is responsible within the meaning of Art. 4 No. 7 EU GDPR. You can reach Creditreform Reutlingen Degner KG regarding all questions under the following contact details Tel.: +49 (0) 7121 9509-0, Fax: +49 (0) 7121 9509-30, E-Mail: info@reutlingen.creditreform.de
You can reach the responsible data protection officer at the following contact details: Creditreform Reutlingen Degner KG, Data Protection Officer, Auwiesenstraße 30, 72770 Reutlingen, Germany, https://www.creditreform.de/reutlingen/.
Statistical analysis of visits to this website - web tracker
We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was retrieved, name of the file, date and time of retrieval, amount of data transferred and notification of the success of the retrieval (so-called web log). We use this access data exclusively in non-personalized form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to analyze visits to this website:
We use the Gstatic service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Gstatic is a background service used by Google to retrieve static content in order to reduce bandwidth usage and load required catalog files in advance. In particular, the service loads background data for Google Fonts and Google Maps.
As part of order processing, personal data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can withdraw your consent at any time. You can find more information on withdrawing your consent either in the consent itself or at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
We use active content from external providers, so-called web services, on our website. By accessing our website, these external providers may receive personal information about your visit to our website. This may result in data being processed outside the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.
We use the following external web services:
We use the Google Cloud APIs service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
We use Google APIs to be able to load additional Google services on the website. Google Apis is a collection of interfaces for communication between the various Google services used on your website. The service is used in particular to display Google Fonts fonts and to provide the Google Maps map.
The service or we collect the following data for processing: IP address
If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Cloud, Google Maps, Google Ads and Google Fonts in accordance with the Google Privacy Policy under the data protection responsibility of Google. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can withdraw your consent at any time. You can find more information on withdrawing your consent either in the consent itself or at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
We use the Google Fonts service provided by Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, email: support-deutschland@google.com, website: https://www.google.com/ on our website. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
We use the Google Fonts service to integrate attractive fonts on our website in order to display our website to you in a visually improved version. The service may also be used on our website if other Google services are loaded on our website that require Google Fonts fonts to run. This is the case, for example, if our website uses Google services that require Google Fonts to run.
For the processing itself, the service or we collect the following data: Data on fonts, IP address of the site visitor, statistics on the use of fonts and other data from Google services related to our website.
If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Google Cloud and Google Ads in accordance with the Google Privacy Policy. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can withdraw your consent at any time. You can find more information on withdrawing your consent either in the consent itself or at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
We use the legal text snippet service and modules of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/ on our website. The transfer of personal data takes place exclusively to servers in the European Union.
The legal basis for the processing is Art. 6 para. 1 lit. c GDPR. The use of the service helps us to comply with our legal obligations.
With the help of the service, the contents of our legal texts are reloaded onto our website. The current legal texts are reloaded via the integration on our website. This integration may also be used to load additional technical modules with regard to the legal texts or legally required elements.
The rights to which you are entitled with regard to processing can be found at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.
We use the Website-Check Siegel service of the company Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/ on our website. Personal data is transmitted exclusively to servers in the European Union.
The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below.
The script of Website-Check GmbH is the technical integration of the Website-Check seal. With this seal, we want to show that we take the issue of data protection very seriously. Data is transmitted to Website-Check GmbH for the purpose of delivering and displaying the seal on our website.
With regard to the processing, you have the right to object listed in Art. 21. Further information can be found at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.website-check.de/datenschutzerklaerung/.
We use the Weglot service of the company Weglot, 7 cité Paradis, 75010 Paris , France, e-mail: privacy@weglot.com, website: https://weglot.com/de/. Personal data is transmitted exclusively to servers in the European Union.
The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
The service is a plugin that we need to make the website available in different languages.
You can withdraw your consent at any time. You can find more information on withdrawing your consent either in the consent itself or at the end of this privacy policy.
Further information on the handling of the transferred data can be found in the provider's privacy policy at https://weglot.com/de/privacy/.
Social plug-in - "Instagram"
- What personal data is collected and to what extent is it processed?
On our website, we have integrated a social plug-in of the social network "Instagram", which is operated by Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, website: https://www.instagram.com/ ("Instagram"). When you visit a page that contains such a plug-in, your browser automatically establishes a background connection to Instagram's servers. The content of the plug-in is transmitted by Instagram directly to your browser and only integrated into our site. Through this integration, Instagram receives the information that your browser has loaded a specific page of our website. This also applies if you do not have an Instagram profile or are not currently logged in to Instagram. This information (including your IP address) is transmitted directly from your browser to an Instagram server in Ireland and stored there. If you are logged in to Instagram, Instagram can directly associate your visit to our website with your Instagram profile. If you interact with the plug-ins, for example by clicking the "Like" button or leaving a comment, this information is also transmitted directly to an Instagram server and stored there. The information is also published on your Instagram profile and displayed to your Instagram contacts that you have activated for this purpose.
- Legal basis for the processing of personal data
Art. 6 para. 1 lit. a GDPR (if you have registered with "Instagram") and Art. 6 para. 1 lit. f GDPR (if you have not registered with Instagram). Insofar as processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the site operator is to enable users to interact with the site operator's content on Instagram.
- Purpose of data processing
- Duration of storage
Instagram will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.
- Objection and deletion option
If you do not want the Instagram social plug-in to run, you can also prevent it from running by installing a corresponding add-on or script blocker. If you do not want Instagram to assign the data collected via our website to your Instagram profile, you must log out of Instagram before visiting our website. The objection and removal options are otherwise based on the general regulations on the right to object and the right to erasure under data protection law described below in this privacy policy.
Information on the use of cookies
What personal data is collected and to what extent is it processed?
We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. Cookies are small text files that your browser can store on your access device. These text files contain a characteristic string of characters that uniquely identifies the browser when you return to our website. The process of saving a cookie file is also referred to as "setting a cookie". Cookies can be set both by the website itself and by external web services. The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.
Legal basis for the processing of personal data
Insofar as the cookies are processed on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR, this consent is also deemed to be consent within the meaning of Section 25 para. 1 TDDDG for the setting of the cookie on the user's terminal device. Insofar as another legal basis is stated under the GDPR (e.g. for the performance of a contract or to fulfill legal obligations), the storage or setting is based on an exception in accordance with Section 25 (2) TDDDG. This is the case "if the sole purpose of storing information in the end user's terminal equipment or the sole purpose of accessing information already stored in the end user's terminal equipment is to carry out the transmission of a communication over a public telecommunications network" or "if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is strictly necessary to enable the provider of a digital service to provide a digital service explicitly requested by the user". The relevant legal basis can be found in the cookie table listed later in this section.
Purpose of data processing
The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.
Duration of storage
Our cookies are stored until they are deleted in your browser or, if it is a session cookie, until the session has expired. Details are listed in the following table.
Possibility of objection and removal
You can set your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on a case-by-case basis whether to accept cookies or to accept cookies in general. Cookies can be used for various purposes, e.g. to recognize that your access device is already connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of your consent until you withdraw it.
Your personal data is protected by technical and organizational measures during collection, storage and processing in such a way that it is not accessible to third parties. In the case of unencrypted communication by e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so we recommend encrypted communication or the postal service for information requiring a high level of confidentiality.
Right to information
You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right of access to the information specified in Art. 15 para. 1 GDPR, provided that the rights and freedoms of other persons are not affected (cf. Art. 15 para. 4 GDPR). We will also be happy to provide you with a copy of the data.
Right of rectification
In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data stored by us (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.
Right to erasure
Pursuant to Art. 17 (1) GDPR, you have the right to demand that we erase the personal data collected about you if
- the data is either no longer required;
- the legal basis for processing no longer applies due to the withdrawal of your consent;
- you have objected to the processing and there are no legitimate grounds for the processing;
- your data is processed unlawfully;
- a legal obligation requires this or a collection pursuant to Art. 8 para. 1 GDPR has taken place.
Pursuant to Art. 17 (3) GDPR, the right does not exist if
- the processing is necessary for exercising the right of freedom of expression and information;
- your data has been collected on the basis of a legal obligation;
- the processing is necessary for reasons of public interest;
- the data is required for the establishment, exercise or defense of legal claims.
Right to restriction of processing
Pursuant to Art. 18 (1) GDPR, you have the right in individual cases to request the restriction of the processing of your personal data.
This is the case if
- the accuracy of the personal data is disputed by you;
- the processing is unlawful and you do not consent to erasure;
- the data are no longer required for the purpose of processing, but the data collected serve to assert, exercise or defend legal claims;
- an objection to the processing pursuant to Art. 21 (1) GDPR has been lodged and it is still unclear which interests prevail.
Right of revocation
If you have given us your express consent to the processing of your personal data (Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.
Right to object
In accordance with Art. 21 GDPR, you have the right to object at any time to the processing of personal data concerning you that has been collected on the basis of Art. 6 para. 1 lit. f (in the context of a legitimate interest). You only have this right if there are special circumstances that speak against the storage and processing.
How do you exercise your rights?
You can exercise your rights at any time by contacting us using the contact details below:
A & W Mauthe GmbH & Co. KG
Riegertsbühlstraße 32
78601 Mahlstetten
Germany
E-mail: info@mauthe-drehteile.de
Phone: +49 7429940210
Fax: +49 74299402121
In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you. We will provide the data in a structured, commonly used and machine-readable format. The data can be sent either to you yourself or to a controller named by you.
We will provide you with the following data upon request in accordance with Art. 20 para. 1 GDPR:
- Data collected on the basis of express consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR;
- Data that we have received from you in accordance with Art. 6 para. 1 lit. b GDPR in the context of existing contracts;
- Data that has been processed as part of an automated procedure.
We will transfer the personal data directly to a controller of your choice insofar as this is technically feasible. Please note that we may not transfer data that interfere with the freedoms and rights of other persons in accordance with Art. 20 para. 4 GDPR.
Right to lodge a complaint with the supervisory authority pursuant to Art. 77 (1) GDPR
© DURY LEGAL Attorneys at Law - www.dury.de
© Website-Check GmbH - www.website-check.de
