Privacy Policy


Privacy Policy


1. Basic information on data processing and legal bases

1.1 This Privacy Policy explains the nature, scope and purpose of the processing of personal data within our websites, features and content (collectively referred to as "Website"). The Privacy Policy applies regardless of the domains, systems, platforms, and devices (for example, desktop or mobile) on which the website is running.

1.2 The used terms, such as "Personal data" or "processing", refer to the definitions in Article 4 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”).

1.3 Users’ personal data processed in the context of this Website includes stock data (e.g. names and addresses of customers), contract data (e.g. services used, names of clerks, payment information), usage data (e.g. the visited Websites, interest in our products) and content data (e.g. input on the contact form).

1.4 The term "User" covers all categories of persons affected by the data processing. This includes our business partners, customers, interested parties and other visitors to our Website.

1.4 We process Users’ personal data in compliance with the relevant data protection regulations, only. Users' data will be processed if we have a legal permit. That is, especially if the data are (i) processed for the provision of our contractual services (e.g. processing of orders), (ii) required to provide our online services, (iii) required by law, (iv) in case of the User’s consent, or (v) in the case of our legitimate interests (for example to analyze, optimize and to raise the security of our Website within the meaning of Art. 6 (1) lit. f GDPR, in particular in the range measurement, creation of profiles for advertising and marketing purposes as well as the collection of access data and the use of third-party services).

1.5 The legal basis (i) of the consent is Art. 6 (1) lit. a and Art. 7 GDPR, (ii) to perform our services is Art. 6 (1) lit. b GDPR, (iii) to fulfill our legal obligations is Art. 6 (1) lit. c GDPR, and (iv) in order to safeguard our legitimate interests is Art. 6 (1) lit. f GDPR.

2. Security measures

We take organizational, contractual and technical security measures in accordance with the state of the art to ensure the provisions of the data protection laws are adhered to and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

3. Disclosure of data to third parties and third party providers

3.1 We transfer the personal data to third parties within the scope of legal provisions, only. We transfer Users' data to third parties for example according to Art. 6 (1) lit. b GDPR for contractual purposes or based on our legitimate interests in accordance with Art. 6 (1) lit. f GDPR for economic and effective running of our business.

3.2 If we use subcontractors to provide our services, we will take appropriate legal precautions and appropriate technical and organizational measures to protect personal data in accordance with the applicable law.

3.3 Within the framework of this Privacy Policy, content, tools or other means are used by other providers (collectively referred to as "Third Party Providers") and their registered office is located in a Third Country, it may be assumed that data will be transferred to the countries of residence of the third party providers. “Third Countries” are countries in which the GDPR is not directly applicable, i.e. countries outside the European Union (EU) or the European Economic Area (EEA). The transfer of data to Third Countries occurs either if an adequate level of data protection is established, on the basis of a User’s consent, or any other legal authorization

4. Provision of contractual services

4.1We process inventory data (e.g. names and addresses as well as contact information of Users), contract data (e.g. services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations in accordance with Art. 6 (1) lit. b GDPR.

4.2 Users may create a user account, in particular to trace their purchases and sales. As part of the registration process, the required mandatory information will be communicated to the Users. The User account information are not publicly available and cannot be indexed by any search engine. If a User has terminated his user account, his data will be deleted with respect to the user account. Subject to the retention are commercial or tax laws according to Art. 6 (1) lit. c GDPR. It is the User’s responsibility to transfer his personal data upon termination before the contract ends. We are entitled to irretrievably delete all user data saved during the contract period.

4.3 As part of the registration and re-registration as well as use of our online services, the IP address and the time of the respective action will be saved. The storage is based on our legitimate interests and to prevent the User against misuse and other unauthorized use of our Website. A transfer of these data to third parties does not occur, unless it is necessary for the prosecution of our claims or the transfer is based on a legal obligation in accordance with Art. 6 (1) lit. c GDPR.

4.4 We process usage data (e.g. the visited pages of our Website or interest in our products) and content data (e.g. entries in the contact form or user profile) for advertising purposes in a user profile to inform the User e.g. to advertise products based on his previously used services.

5. Contact

5.1 When contacting us (via contact form or e-mail) the information provided by the User is processed to answer the contact request according to Art. 6 (1) lit. b GDPR.

5.2 This user information can be stored in our Customer Relationship Management System ("CRM System") or similar request organization.

6. Comments and posts

6.1 If the User leaves a comment or other contributions, his IP addresses will be stored for 7 days based on our legitimate interests within the meaning of Art. 6 (1) lit. f GDPR.

6.2 Such storage is required for our own safety so that we are able to identify the author in case that we ourselves get prosecuted for the respective comment or post.

7. Collection of access data and log files

    7.1 Based on our legitimate interests within the meaning of Art. 6 (1) lit. f GDPR we collect personal data on every access to our Website (so-called “Server Log Files”). The Server Log Files include the name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the User's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

    7.2 Server Log File information is stored for security purposes (for example, to investigate abusive or fraudulent activities) for a maximum of 7 days before we delete the Server Log Files. Data whose further retention is required for evidential purposes shall be exempted from the cancellation until the final clarification of the incident.

    8. Cookies & Range Measurement

    8.1 Cookies are information transferred from our web server or third-party web servers to Users' web browsers and stored there for later retrieval. Cookies are small text files.

    8.2 We use "Session Cookies" that are stored for the duration of the current visit to our Website (for example, to enable the storage of your login status or the shopping cart function and thus the use of our Website at all). A randomly generated unique identification number is stored in a Session Cookie, a so-called “Session ID”. In addition, a cookie contains information about its origin and the retention period. These Session Cookies cannot save any other data. Session cookies will be deleted if you have finished using our Website and you have e.g. logged out from our Website or closed the browser window which showed our Website.

    8.3 If a User does not want to get cookies stored on his device, he will be asked to disable the option in his browser's system settings. Cookies can be deleted in the system settings of your browser. The exclusion of cookies can lead to functional restrictions of our Website.

    8.4 You may opt out for the use of cookies for distance measurement and promotional purposes through the Network Advertising Initiative's opt-out page (http://optout.networkadvertising.org/) and the US Website (http://www.aboutads.info/choices) or the European Website (http://www.youronlinechoices.com/uk/your-ad-choices/).

    9. Google Analytics

      9.1 Based on our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our Website within the meaning of Art. 6 (1) lit. f GDPR), we use Google Analytics, a web analysis service provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, ("Google"). Google uses cookies. The information generated by the cookie about the use of the Website by the Users are usually transferred to Google’s server within the USA where these data are stored.

      9.2 Google is certified according to the US-EU Privacy Shield Agreement, which provides a guarantee to comply with European Privacy Legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

      9.3 Google will use this information on our behalf to evaluate the use of our Website, to compile reports on the activities within this Website and to provide us with further services related to the use of this Website and the internet usage of our Website. In this case, pseudonymous user profiles may be created.

      9.4 We use Google Analytics to display advertisements posted within Google and its affiliate advertising services, only to Users who have shown an interest in our Website or certain features (such as interests in specific topics or products that have been visited by them).

      9.5 We only use Google Analytics with activated IP anonymization. This means that the IP address of the Users will be shortened by Google within the member states of the European Union or in other contracting states of the EEA. Only in exceptional cases the unshortened IP address will be sent to a Google server in the USA and will be shortened there. 

      9.6 The IP address submitted by the User's browser will not be merged with other data provided by Google. Users can prevent the storage of cookies by setting their browser software accordingly. Users may also prevent of the data generated by the cookie and related to their use of the Website and the processing of such data by downloading and installing the browser plug-in available on the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

      9.7 For more information about Google's data usage, hiring and opt-out options, please visit Google's Websites: https://www.google.com/intl/en/policies/privacy/partners ("How Google uses data when you use our partners' sites or apps"), https://policies.google.com/technologies/ads?hl=en ("Use of data for promotional purposes"), https://adssettings.google.com/authenticated ("Managing information that Google uses, to show you advertising").

      10. Google Re-/Marketing Services

      10.1 Based on our legitimate interests within the meaning of Art. 6 (1) lit. f) GDPR we use marketing and Remarketing Services ("Google Marketing Services") of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, ("Google").

      10.2 Google is certified under the US-EU Privacy Shield Agreement, which provides a guarantee to comply with European Privacy Legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

      10.3 Google Marketing Services allows us to target advertisements for and on our Website so that we present ads to Users which potentially match with their interests. Showing ads for products a User who has been interested in on other Websites is called remarketing. For these purposes, a code will be executed by Google and a so-called (re)-marketing tag (invisible graphics or code, also called "Web Beacons") got implemented into the Website. With the help of the Web Beacons, the User is provided with an individual cookie, which means a small file is saved on his device (instead of cookies, comparable technologies can also be used). The cookies can be set by different domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file notes which websites the User visited, what content he is interested in and which offers he has clicked on, as well as technical information about the browser and operating system, referring Websites, visit time and other information on the use of the Website. Also, the IP address of the Users is recorded. This IP address will not be merged with data of the User within other offers from Google. The above information may also be linked with such information from other sources by Google. If a User visits other Websites, he can be provided with tailored ads according to his interests.

      10.4 The User’s data are processed pseudonymously in the context of the Google Marketing Services. That means Google stores and processes e.g. not the name or e-mail address of the Users but processes the relevant data cookie-related within pseudonymous User profiles. From Google’s perspective, the ads are not managed and displayed to a specifically identified person, but to the cookie owner, regardless of who that cookie owner is. This does not apply if a User has explicitly allowed Google to process the data without the pseudonymization. The information collected about Users through Google Marketing Services is transmitted to Google and stored on Google's servers in the United States.

      10.5 We use Google's Marketing Services, include Google Tag Manager to integrate and manage the Google Analytics and Marketing services on our Website.

      10.6 For more information about Google's data usage for marketing purposes see the following overview: https://www.google.com/policies/technologies/ads, Google's Privacy Policy available at https://www.google.com/policies/privacy.

      10.7 If you wish to opt-out of interest-based advertising through Google Marketing Services, you can take advantage of Google's recruitment and opt-out options: http://www.google.com/ads/preferences.

      11. Facebook social plugins

      11.1 On the basis of our legitimate interests within the meaning of Art. 6 (1) lit. f) GDPR we use social plugins ("Plugins") of the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland ("Facebook"). The plugins can represent interaction elements or content and can be recognized by one of the Facebook logos (white "f" on blue tile, the terms "Like", "Like" or a "thumbs up" sign) or are marked with the addition "Facebook Social Plugin". The list and appearance of Facebook Social Plugins is available here: https://developers.facebook.com/docs/plugins/.

      11.2 Facebook is certified according to the US-EU Privacy Shield Agreement, which provides a guarantee that Facebook complies with the European Privacy Legislation (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

      11.3 When a User invokes a feature of this Website that includes such a Plugin, his device will be connected to the Facebook servers directly. The content of the Plugin is transmitted by Facebook directly to the User’s device and incorporated into our Website. User profiles may be created out of the processed data. We have no influence on the amount of data that Facebook collects with the help of this Plugin. However, we inform the Users according to our knowledge.

      11.4 By integrating the Plugins, Facebook receives the information that a User has accessed the corresponding page of the Website. If the User is logged in to the Facebook platform, Facebook can assign the visit to his Facebook account. If Users interact with the Plugins, for example, press the Like button or leave a comment, the information is transmitted from Users’ device directly to Facebook and stored on Facebook’s server. If a User is not registered with Facebook, there is still the possibility that Facebook will find out and save his IP address. According to Facebook, only anonymous IP addresses are stored within in the EU.

      11.5 The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as the related rights and setting options for protecting the User’s privacy, can be found in Facebook's privacy policy: https://www.facebook.com/about/privacy/.

      11.6 If a User is registered with Facebook and does not want Facebook to collect data about him through this Website and associate it with his member data stored on Facebook server, he needs to log out of the Facebook platform and delete his cookies before using our Website. Other settings and inconsistencies regarding the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US-American site http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. The settings are adopted for all devices, such as desktop computers or mobile devices.

      12. Twitter Social Plugins

      12.1 Based on our legitimate interests within the meaning of Art. 6 (1) lit. f) GDPR we use social plugins ("Plugins") of the social network twitter.com, which is operated by Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA ("Twitter"). The Plugins may be interactive elements or content and identified by one of the Twitter logos (white bird).

      12.2 Twitter is certified according to the US-EU Privacy Shield Agreement, which provides a guarantee that Twitter complies with the European Privacy Legislation (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active).

      12.3 When a User invokes a feature of this Website that includes such a Plugin, his device establishes a direct connection to Twitter’s server. The content of the Plugin is transmitted by Twitter directly to the User’s device. User profiles may be created out of the processed data. We have no influence on the amount of data Twitter uses. However, we inform you according to our knowledge.

      12.4 By integrating the Plugins, Twitter receives the information that a User has accessed the corresponding page of the Website. If the User is logged in to Twitter network, Twitter can assign the visit to his Twitter account. When Users interact with the Plugins, the information is transmitted from the User’s device directly to Twitter and will be stored on Twitter’s server. If a User is not registered with Twitter, there is still the possibility that Twitter will find out and save his IP address.

      12.5 The purpose and scope of the data collection and the further processing and use of the data by Twitter as well as the related rights and setting options for protecting the User’s privacy can be found in Twitter’s privacy policy: https://twitter.com/privacy.

      12.6 If a User is registered at Twitter and does not want Twitter to collect data about him via this Website and link it to his member data stored on Twitter, he must log out of Twitter network and delete his cookies before using our Website. Other settings and inconsistencies regarding the use of data for promotional purposes are available on the US website http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. The settings are adopted for all devices, such as desktop computers or mobile devices.

      13. LinkedIn Social Plugins

      13.1 Based on our legitimate interests within the meaning of Art. 6 (1) lit. f) GDPR we use social plugins ("Plugins") of the social network LinkedIn Corporation, 1000 W. Maude Ave. Sunnyvale, California 94085, USA which is operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The Plugins may be interactive elements or content and identified by one of the LinkedIn logos.

      13.2 LinkedIn is certified according to the US-EU Privacy Shield Agreement, which provides a guarantee that LinkedIn complies with the European Privacy Legislation (https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active).

      13.3 When a User invokes a feature of this Website that includes such a Plugin, his device establishes a direct connection to the LinkedIn’s servers. The content of the Plugin is transmitted by LinkedIn directly to the User’s device. User profiles can be created out of the processed data. We have no influence on the data that LinkedIn processes with the help of this Plugin. However, we inform you according to our knowledge.

      13.4 By integrating the Plugins, LinkedIn receives the information that a User has accessed the corresponding page of the Website. If the User is logged in to LinkedIn, LinkedIn can assign the visit to his LinkedIn account. When a User interacts with the Plugins, the information is transmitted from his device directly to LinkedIn and will be stored there. If a User is not registered on LinkedIn, there is still the possibility that LinkedIn will find out and save his IP address.

      13.5 The purpose and scope of the data collection and the further processing and use of the data by LinkedIn as well as the related rights and setting options for protecting the User’s privacy can be found in the privacy policy of LinkedIn: https://www.linkedin.com/legal/privacy-policy.

      13.6 If a User is a LinkedIn member and does not want LinkedIn to collect data about him via this Website and link it to his member data, he must log out of LinkedIn platform and delete his cookies before using our Website. Other settings and inconsistencies regarding the use of data for promotional purposes are available on the US website http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/. The settings are platform independent. They are adopted for all devices, such as desktop computers or mobile devices.

      14. Goolge+ Social Plugins

      14.1 Based on our legitimate interests within the meaning of Art. 6 (1) lit. f) GDPR we use Google’s social plugins ("Plugins"). The Plugins may be interactive elements or content.

      14.2 When a User invokes a feature of this Website that includes such a Plugin, his device establishes a direct connection to the servers of Google. The content of the Plugin is transmitted by Google directly to the User’s device. User profiles can be created from the processed data. We have no influence on the data that Google processes by using this Plugin. However, we inform you according to our knowledge.

      14.3 By integrating the Plugins, Google receives the information that a User has accessed the corresponding page of the Website.

      14.4 The purpose and scope of the data collection and the further processing and use of the data by Google as well as the related rights and setting options for protecting the User’s privacy can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=en.

      15. Facebook, LinkedIn, Google and Twitter login

      15.1 Our Website uses Facebook, LinkedIn, Google and Twitter (“Service Provider”) login due to our legitimate interests in the analysis, optimization and economic operation of our online offer and for these purposes within the meaning of Art. 6 (1) lit. f) GDPR.

      15.2 If a User uses this feature, he may be able to access our service through his social media account.

      15.3 In addition to the name and the e-mail address, which are stored in the User’s Service Provider account the following information are transferred to the Service Provider: full name, profile photo, age, gender and the friends/contact list.

      15.4 The User cannot prevent the transfer of data when using this login function. The connect login dialog informs imperfectly which data are transferred.

      15.5 The transfer of personal data, however, is also reversed which means that we can post on the history/timeline of Facebook, LinkedIn, Google and Twitter on behalf of the User. The settings and inconsistencies regarding the use of data can be adjusted at the Service Provider privacy settings.

      16. Newsletter

      16.1 With the following information, we will inform you about the contents of our newsletter as well as the registration, delivery and statistical evaluation procedures and your right to object. By subscribing to our newsletter, you agree to the receipt and the procedures described.

      16.2 We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter "Newsletter") only with the consent of the User or based on a legal permission once a week. Incidentally, our Newsletters contain information about our products, offers, promotions and our company.

      16.3 Registration for our Newsletter is done with a so-called double-opt-in procedure. After registration, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary to preclude that anybody can register with external e-mail addresses. The registration for the Newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login and the confirmation time, as well as the IP address. Likewise, changes to your data stored with the delivery service provider will be logged.

      16.4 You may terminate the receipt of our Newsletter at any time, i.e. revoke your permission. A link to cancel the Newsletter can be found at the end of each newsletter. If you have only subscribed to the Newsletter and terminated your registration, your personal data will be deleted.

      17. Rights of Users

      17.1 Users have the right, upon request, to obtain free information about the personal data we have stored about them.

      17.2 In addition, any User shall have the right to correct inaccurate data, limit the processing and deletion of his personal data, if applicable, assert his rights to data portability and, in the event of the acceptance of unlawful data processing, file a complaint with the appropriate data protection regulation authority.

      17.3 Likewise, a User can revoke his consent, generally with implications for the future.

      18. Deletion of data

      18.1 The data stored with us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any statutory storage requirements. Unless the Users' data are deleted because they are required for other and legally permitted purposes, their processing will be restricted. The data are blocked and not processed for other purposes. This applies, for example for data of Users which must be kept for commercial or tax reasons.

      18.2 According to legal requirements, the storage takes place for 6 years in accordance with commercial legal provisions (trading books, inventories, opening balance sheets, annual accounts, trade letters, accounting documents, etc.) and for 10 years pursuant to tax reasons (books, records, management reports, accounting documents, commercial and business letters, documents relevant for taxation, etc.).

      19. Right of objection

      Users may object to the processing of their personal data in accordance with legal requirements at any time. The objection may in particular be made against processing for direct marketing purposes.



Register for free