- Entity Responsible (Controller)
- Collection, Processing and Use of Personal Data
- Your Rights
- Disclosure to Third Parties
- Server Log Files
- Use of Google Analytics
- Integration of Google Maps
- Google Web-Fonts
- Links to Other Websites
Thank you for visiting our website and your interest in data protection. Please read the following information to learn when we collect which personal data and how we use such data.
1. Entity Responsible (Controller)
The entity responsible (controller) according to Art. 4 Abs. 7 EU General Data Protection Regulation (GDPR) is
PHT Partner für Hygiene und Technologie GmbH
83646 Bad Tölz
Our data protection officer can be reached by e-mail firstname.lastname@example.org , adding “data protection officer”, or by phone: +49 89 – 211 11 890 (FX Data UG (haftungsbeschränkt), Ottobrunner Str. 28, 82008 Unterhaching, Germany).
2. Collection, Processing and Use of Personal Data
The legal bases of the collection, storage and processing of personal data can be found in particular in the General Data Protection Regulation (GDPR), in the German Telemedia Act (TMG) and in the Federal Data Protection Act (BDSG).
Personal data is information relating to an identified or identifiable natural person (Art. 4 no. 1 GDPR). This includes in particular names, address data, telephone numbers or e-mail addresses. However, information on preferences, memberships or e.g. previously visited websites may also constitute personal data.
If you contact us (e.g. via e-mail or our contact form), the data transmitted by you will be stored for the purpose of processing your enquiry as well as for possible processing of subsequent questions. Legal basis for the processing is the necessity to perform pre-contractual measures according to Art. 6 para. 1 b) GDPR. We will delete the data accruing in this connection after storage is no longer necessary or we restrict the processing if there are statutory retention obligations.
4. Your Rights
You have the following rights vis-à-vis us with regard to the personal data that concerns you:
- right of access,
- right to rectification or erasure,
- right to restriction of processing,
- right of objection against processing,
- right to data portability
Moreover, you have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
5. Disclosure to Third Parties
We disclose your personal data to third parties insofar as this is required to fulfil contracts or to process payments. Legal basis for the disclosure is the necessity to fulfil a contract according to Art. 6 para. 1 b) GDPR. A disclosure of personal data to third parties for marketing or advertising purposes will not be made without your express consent.
Our newsletter regularly informs you about us and the latest news in the area of hygiene technology.
If you subscribe to our newsletter, we need a valid e-mail address. After entering your e-mail address and confirming the consent wording, you will receive an automated e-mail in which you once again confirm your consent by clicking a link (double opt-in). As proof of your consent, we store your e-mail address, the consent wording, the confirmation e-mail as well as the respective IP addresses, time and date of the registration and confirmation.
Legal basis for the processing is your consent according to Art. 6 para. 1 a) GDPR.
We use the CleverReach service to send out newsletters. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede. CleverReach is a service with which the newsletter dispatch can be organized and analyzed. The data you enter for newsletter subscription (e.g. e-mail address) is stored on CleverReach’s servers in Germany and Ireland.
Our newsletters sent with CleverReach enable us to analyse the behaviour of newsletter recipients. Among other things, it can be analyzed how many recipients have opened the newsletter message and how often which link was clicked in the newsletter. With the help of so-called conversion tracking, it can also be analysed whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. Further information on data analysis through the CleverReach newsletter can be found at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/.
You can revoke your consent to receive the newsletter at any time by clicking on the unsubscribe link in any e-mail or by using the contact details provided above. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
If you do not want an analysis by CleverReach, you must also unsubscribe from the newsletter.
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and deleted both from our servers and from CleverReach’s servers after you cancel the newsletter. This does not affect data stored by us for other purposes (e.g. e-mail addresses of our customers in the customer database).
7. Server Log Files
Each time when our website is opened by a user, our hosting provider, Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany, will store information in a log file. These log files contain information about retrieved data, status codes, time stamps and system information. The data is non-personal, it allows no conclusions to the specific person.
Apart from that, log files also store IP addresses. We cannot readily attribute these to a certain person.
If you would like to view our website, we collect the aforementioned data which is technically required for us in order to show you our website and to guarantee stability and safety. Legal basis for the processing is the necessity to safeguard our justified interests according to Art. 6 para. 1 f) GDPR.
8. Web Analysis with Google (Universal) Analytics
Our website uses Google (Universal) Analytics, a web analysis service of Google Inc. (www.google.de). Google (Universal) Analytics uses methods which enable an analysis of how you use the website, such as so-called “cookies”, text files that are stored on your computer. The information generated about your use of this website will as a rule be transferred to a server of Google in the USA and stored there. By activating the IP anonymisation on this website, the IP address will be shortened prior to the transmission within the Member States of the European Union or within other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a server of Google in the USA and shortened there. The anonymised IP address transmitted by your browser within the framework of Google Analytics will not be combined by Google with other data.
We use Google Analytics in order to analyse and be able to regularly improve the use of our website. Through the statistics gained we can improve our offer and make it more interesting for you as the user. For the exceptional cases in which personal data will be transferred to the USA, Google subjected itself to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
You can prevent the capture of the data generated by the cookie and relating to your use of the website (incl. your IP address) as well as the processing of such data by Google if you download and install the browser plug-in available from the following link: http://tools.google.com/dlpage/gaoptout?hl=de
As an alternative to the browser plug-in, you can click this link in order to prevent Google Analytics from collecting your data on this website in the future. When you do this, an opt-out cookie will be stored on your device. If you delete your cookies, you need to click the link again.
Legal basis for the processing is the necessity to safeguard our justified interests according to Art. 6 para. 1 f) GDPR, namely our interest in statistical analysis of the user behaviour of our website users as well as, if applicable, their consent according to Art. 6 para. 1 a) GDPR in connection with recital 32 sentence 2 (selection of technical settings).
9. Integration of Google Maps
On this website we are using the offer of Google Maps. This means that we can show you interactive maps directly on the website and enable you to comfortably use the map function. Legal basis is Art. 6 para. 1 f) GDPR.
When you visit the website, Google receives the information that you opened the corresponding page of our website. Moreover, additional data, such as your IP address, will be transmitted to Google. This is made independently of whether Google provides a user account where you are logged in or whether you do not have a user account. If you are logged in with Google, your data will be directly attributed to your account. If you do not wish to have your data attributed to your Google profile, you have to log out prior to activating the button. Google stores your data as user profiles and uses it for purposes of advertising, market research and/or needs-based design of its website. Such an analysis is made in particular (even for users not logged in) to render needs-based advertising and in order to inform other users of the social network about your activities on our website. You have a right to object against the creation of such user profiles. To exercise this right, you have to contact Google.
Additional information about purpose and extent of the data collection and its processing by Google can be found in the privacy policies of Google. There you can also receive additional information about your rights in this respect and configuration options to protect your privacy: http://www.google.de/intl/de/policies/privacy.
Google processes your personal data also in the USA and subjected itself to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.
10. Google Web-Fonts
This page uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This enables Google to know that your IP address has been used to access our website. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
If your browser does not support web fonts, a standard font will be used by your computer.
11. Links to Other Websites
Our online offer may contain links to other websites. We have no influence on the operators of those websites adhering to the data protection regulations.
as of: 20.03.2018
Our primary goal is to ensure that our website is protected and secure for you and for us in the best possible way. In order to guarantee this, we use Google reCAPTCHA from Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA). With reCAPTCHA, we can determine if you are a flesh and blood person and not a robot or other spam software. By spam we mean any unsolicited information that we receive electronically. With the classic CAPTCHAS, you usually had to solve text or image puzzles to check them. With reCAPTCHA from Google, we usually don’t have to bother you with such puzzles. In most cases it is enough to simply tick the box and confirm that you are not a bot. With the new Invisible reCAPTCHA version you don’t even have to set a checkmark anymore. You can find out exactly how this works and, above all, which data is used for it in the course of this data protection declaration.
What is reCAPTCHA?
Why do we use reCAPTCHA on our website?
We only want to welcome people of flesh and blood on our site. Bots or spam software of all kinds can stay at home. That’s why we do everything we can to protect ourselves and offer you the best possible usability. That’s why we use Google reCAPTCHA from Google. So we can be pretty sure that we will remain a “bot-free” website. By using reCAPTCHA, data is transmitted to Google, which uses Google to determine whether you are really a human being. reCAPTCHA therefore serves the security of our website and consequently also your security. For example, without reCAPTCHA it could happen that during registration a bot registers as many e-mail addresses as possible in order to subsequently “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.
Which data is stored by reCAPTCHA?
ReCAPTCHA collects personal data from users in order to determine whether the actions on our website actually originate from humans. The IP address and other data required by Google for the reCAPTCHA service can therefore be sent to Google. IP addresses are almost always truncated before they land on a server in the U.S. within the member states of the EU or other signatory states to the European Economic Area Agreement. The IP address will not be combined with any other data held by Google unless you are signed in to your Google Account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) have already been placed on your browser. Then reCAPTCHA places an additional cookie in your browser and captures a snapshot of your browser window.
The following list of collected browser and user data is not exhaustive. Rather, they are examples of data which, according to our knowledge, are processed by Google.
– Referrer URL (the address of the page from which the visitor comes)
– IP address (e.g. 2220.127.116.11)
– Information about the operating system (the software that allows you to run your computer). Known operating systems are Windows, Mac OS X or Linux.)
– Cookies (small text files that store data in your browser)
– Mouse and keyboard behavior (every action you perform with the mouse or keyboard is saved)
– Date and language settings (which language or which date you have preset on your PC is saved)
– Screen resolution (shows how many pixels the image consists of)
There’s no doubt that Google uses and analyzes this data before you click the “I’m not a robot” check mark. With the Invisible reCAPTCHA version even the ticking is omitted and the whole recognition process runs in the background. How much and which data Google stores exactly, you don’t get to know from Google in detail.
The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version of Google at https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google has set on the reCAPTCHA demo version:
Expiry time: after one year
Use: This cookie is used by the company DoubleClick (also owned by Google) to register and report a user’s actions on the website in connection with advertisements. In this way, the advertising effectiveness can be measured and appropriate optimisation measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Example value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-231567678125
Expiry time: after one month
Use: This cookie collects website usage statistics and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. The cookie can also be used to prevent a user from seeing the same ad more than once.
Example value: 2019-5-14-12
Expiry time: after 9 months
Example value: U7j1v3dZa2315676781250xgZFmiqWppRWKOr
Expiry time: after 19 years
Use: The cookie stores the status of a user’s consent.
Use: The cookie stores the status of a user’s consent to the use of different Google services. CONSENT also provides security to help verify users, prevent fraudulent logon information, and protect user information from unauthorized attacks.
Example value: YES+AT.de+20150628-20-0
Expiry time: after 6 months
Use: NID is used by Google to match ads to your Google search. The cookie helps Google “remember” your most frequently-entered searches or your past interaction with ads. You’ll always get customized ads. The cookie contains a unique ID that Google uses to collect the user’s personal preferences for advertising purposes.
Example value: 0WmuWqy231567678125zILzqV_nmt3sDXwPeM5Q
Expiration time: after 10 minutes
Use: Once you have checked the “I am not a robot” box, this cookie will be set.
The cookie is used by Google Analytics for personalized advertising. DV collects information in anonymous form and is also used to make user choices.
Example value: gEAABBCjJMXcI0dSAAAANbqc231567678125
Note: This enumeration cannot claim to be complete, as experience has shown that Google changes the selection of its cookies time and again.
How long and where is the data stored?
By inserting reCAPTCHA, data is transferred from you to the Google server. Where exactly this data is stored, Google, even after repeated requests, is not clear. Without having received confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings will be stored on the European or American Google servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google Account while using the reCAPTCHA plug-in, the data will be merged. This is subject to Google’s different data protection regulations.
How can I delete my data or prevent data storage?
If you do not want data about you and your behaviour to be transmitted to Google, you must completely log out of Google and delete all Google cookies before visiting our website or using the reCAPTCHA software. In principle, the data is automatically transmitted to Google as soon as you call up our site. In order to delete this data, you must contact Google support at https://support.google.com/?hl=de&tid=231567678125 .
So when you use our website, you consent to Google LLC and its agents automatically collecting, processing and using information.
Source: Created in cooperation with justmed.de with the data protection generator of firmenwebseiten.at.