FASS-FRISCH GmbH

Werkstrasse 6-8
D-75031 Eppingen-Mühlbach
Germany

Telefon: +49 (0) 7262 / 603-0
Fax: +49 (0) 7262 / 603-42
E-Mail: info@fass-frisch.com

Internet:
www.fass-frisch.com

Geschäftsführer:

Dagmar Schäfer

USt IdNr.:

DE 813667045

Handelsregister:

Amtsgericht Stuttgart

HRB 740004

Gerichtsstand

Heilbronn

Privacy Policy

DATA PROTECTION DECLARATION, date May 2018

  1. Name and contact data of the controller responsible for processing and of the company data protection coordinator

This data protection information applies to data processing by:

Controller: Fass-Frisch GmbH, Werkstr. 6-8, D-75031 Eppingen-Mühlbach, Managing Director: Dagmar Schäfer, E-mail: info@fass-frisch.com, Tel.: +49 (0) 7262 / 603-0, Fax: +49 (0) 7262 / 603-42.
Company data protection coordinator: Michael Diefenbacher, to be reached under the above address or under Michael.Diefenbacher@fass-frisch.com

 

  1. Collection and storage of personal data and nature and purpose of their use

 

a) When visiting the website

When you access our website www.fass-frisch.com, information is automatically transmitted to our website’s server by the browser used on your terminal device. This information is temporarily stored in a so-called log-file. The following information is automatically recorded in this context:

  • IP address of the inquiring computer,
  • date and time of the access,
  • name and URL of the inquired file,
  • website from which the access takes place (“referrer URL”) and
  • browser used and if applicable your computer’s operating system and the name of your access provider

and stored until automatic erasure.

The aforementioned data are processed by us for the following purposes:

  • guaranteeing an unproblematic connection setup and comfortable use of the website,
  • evaluation of system security and stability and
  • for further administrative purposes.

The legal basis for this data processing is formed by Art. 6 subparagraph 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the purposes of data collection stated above. Under no circumstances do we process the data collected for the purpose of conclusions about who you are.

In addition, we use cookies and analysis services when you visit our website (cf. Sections 4 and 5 below).

 

b) When you use our contact form

For questions of all kinds, we offer you the possibility of contacting us via a form provided on the website. Statement of a valid e-mail address is necessary so that we can reply to you and know who has sent the inquiries. Further statements can be made by you voluntarily.

Data processing for the purpose of contact with us is done according to Art. 6 subparagraph 1 sentence 1 lit. a GDPR on the basis of the consent voluntarily granted by you.

The personal data collected by us for the use of the contact form are automatically erased after attending to the inquiry made by you.

 

c) In the use of our web shop

We use your personal data for processing of your online purchases in our web shop, if need be also for notifications in the event of problems in supplying the ordered articles. In addition, we use your personal data for the processing of your payments, if need be also for the processing of complaints and warranty claims.

We process the following categories of personal data to the extent that you inform us:

  • contact data such as name, address, e-mail address and telephone number
  • payment information and payment history and
  • order information.

 

If you have opened an online customer account with us, we also process your personal data which you have transmitted to us for

 

  • your account settings and
  • the order history.

 

Forwarding of personal data to third parties exclusively serves provision of the aforementioned services, in particular to payment service providers for your payments. In addition, our external IT service provider has access to our server.

 

Amongst other things, processing of the order handling entails dispatch of orders, handling of your payment, dispatch of electronic order confirmations and invoices. The legal basis for this is Art. 6 subparagraph 1 sentence 1 lit. b GDPR, i.e. you provide your data on the basis of the contractual relationship between you and us.

 

We archive your data (including notes on telephone conversations in contact by phone, e-mails and postal correspondence) as long as you are an active customer with us, mutual claims from the business relationship have not been barred and as long as storage has been prescribed by law.

 

You have the right to withdraw your consent for the processing of your personal data and to object to the processing of your personal data at any time. In such cases, however, your account with us expires and we can no longer supply any goods to you. After this, we no longer process your personal data, unless we can prove reasons worthy of protection for the processing which override your interests and rights or for the defence of legal claims.

 

  1. Forwarding of data

Your personal data are forwarded or transmitted by us to third parties exclusively for the following purposes:

  • if you have granted us your express consent for this according to Art. 6 subparagraph 1 sentence 1 lit. a GDPR,
  • if forwarding is necessary according to Art. 6 subparagraph 1 sentence 1 lit. f GDPR to establish, to exercise or to defend legal claims and no reason exists to assume that you have an overriding interest worthy of protection in non-forwarding of your data,
  • if a statutory obligation exists for the forwarding according to Art. 6 subparagraph 1 sentence 1 lit. c GDPR, and
  • if admissible by law – this is necessary according to Art. 6 subparagraph 1 sentence 1 lit. b GDPR for the handling of contractual relationships with you.

 

  1. Cookies

Our website partly uses so-called cookies. Cookies do not cause any damage on your computer and do not contain any viruses, Trojans or other malware. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files which are placed on your computer (or laptop, tablet, Smartphone etc.) and which your browser saves. Most of the cookies used by us are so-called “session cookies”. They are automatically erased after the end of your visit. Other (temporary) cookies remain stored on your terminal device until you erase them. These cookies make it possible for us to recognise your browser again at your next visit so that we can see the inputs and settings which you have made and you do not have to enter them once again. However, this does not mean that we directly obtain knowledge of your identity. You can set your browser such that you are informed that cookies are being set and only permit cookies in individual cases, rule out acceptance of cookies for specific cases or in general and also activate automatic erasure of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.

The data processed by cookies are necessary for the aforementioned purposes to safeguard our and third parties’ legitimate interests according to Art. 6 subparagraph 1 sentence 1 lit. f GDPR.

Most browsers automatically accept cookies. However, you can configure your browser such that no cookies are stored on your computer or a warning always appears before a new cookie is created. However, complete deactivation of cookies may mean that you cannot make use of all the functions of our website.

 

  1. Analysis tools/tracking tools

The “Google Analytics” tracking tool described in more detail below and used by us is used on the basis of Art. 6 subparagraph 1 sentence 1 lit. f GDPR. With the use of this tracking measure, we intend to ensure design of our website according to requirements and continuous optimisation. In addition, we use the tracing measures for statistical recording of the use of our website and to evaluate it for the purpose of optimisation of our offer for you. These interests are to be regarded as legitimate within the meaning of the GDPR.

Google Analytics

For the purpose of design of our sites according to requirements and continuous optimisation of our sites, we use Google Analytics, a web analysis service of Google Inc.: https://www.google.de/intl/de/about/ (address: 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter: “Google”). Here, pseudonymised user profiles are produced and cookies used (cf. Section 4). The information generated by the cookie about your use of this website, in particular

  • the browser type and the browser version,
  • referrer URL (the site visited beforehand)
  • host name of the accessing computer (IP address),
  • the operating system used,
  • the date and the time of the server inquiry,

are transmitted to a Google server in the USA and stored there. This information is used to evaluate the use of the website, to generate reports about the website activities and to render other services connected with the use of the website and the internet for the design of our sites according to requirements and also for market research purposes. This information is transmitted to third parties, if applicable, to the extent prescribed by law or to the extent that third parties process these data by commission.

Your IP address is not put together with other data by Google, but the IP addresses are anonymised, with a result that allocation is not possible.

You can prevent the installation of the cookies by a matching setting of the browser software; but then, possibly not all the functions of our website can be used optimally.

In addition, you can prevent recording of the data generated by the cookie and relative to your use of the website (incl. your IP address) and the processing of these data by Google by downloading and installing a browser add-on: https://tools.google.com/dlpage/gaoptout?hl=de. With the help of this browser add-on for deactivation of Google Analytics JavaScript (ga.js, analytics.js, dc.js), visitors to the website can prevent Google Analytics from using their data. Further information on data protection in connection with Google Analytics can be found, for example, in the Google Analytics help under https://support.google.com/analytics/answer/6004245?hl=de

 

  1. Social media plug-ins

On the basis of Art. 6 subparagraph 1 sentence 1 lit. f GDPR, we use social plug-ins of the Facebook, YouTube und Google Plus social networks on your websites, in order to make our company better known via them. The advertising purposes behind this are to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for operating conforming with data protection is to be guaranteed by the provider in question. The integration of these plug-ins by us is done by means of the so-called two-click method in order to protect visitors to our website as well as possible.

 

a) Facebook

Our internet appearance uses social plug-ins (“plug-ins”) of the facebook.com social network, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. (“Facebook”). The plug-ins can be recognised by one of the Facebook logos (currently white “f” on blue tile or a “thumbs up” sign) or have been marked with the addition “Facebook social plug-in”. The list and the appearance of the Facebook plug-ins can be seen here: http://developers.facebook.com/plugins.

On our website, social media plug-ins from Facebook are used in order to make its use more personal. For this, we use the “LIKE” or “SHARE” button. This is an offer from Facebook.

When you access our sites with Facebook plug-ins, a connection is built up between your browser and the Facebook servers. Data are already transmitted to Facebook in this. Interactions, in particular the use of a comment function or clicking on a “like” or “share” button, are also transmitted to Facebook and stored there.

By integration of the plug-ins, Facebook is given the information that your browser has accessed the site of our web appearance in question, even if you do not have a Facebook account or are currently not logged in at Facebook. This information (including your IP address) is transmitted directly by your browser to a Facebook server in the USA and stored there.

If you have logged in to Facebook, Facebook can assign the visit to our website directly to your Facebook account. If you interact with the plug-ins, for example use the “LIKE” or “SHARE” button, the matching information is also transmitted directly to a Facebook server and stored there. The information is additionally published on Facebook and shown to your Facebook friends.

Facebook can use this information for purposes of advertising, market research and design of the Facebook sites according to requirements. For this, Facebook produces use, interest and relationship profiles, e.g. in order to evaluate your use of our website with a view to the adverts offered to you by Facebook, to inform other Facebook users about your activities on our website and to render further services connected with the use of Facebook.

If you have a Facebook account, these data can be connected with it. If you do not want any allocation of these data to your Facebook account and do not want Facebook to collect data about you via our internet appearance, you must log out from Facebook before you visit our website.

 

The purpose and scope of collection of data and the further processing and use of the data by Facebook and your rights and possibilities of settings in this regard to protect your private sphere can be seen from the data protection information of Facebook

https://de-de.facebook.com/privacy/explanation

 

b) YouTube

Our internet appearance also uses plug-ins of the youtube.com social network, which is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, represented by: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The plug-in can be recognised by the YouTube-Logo (black/white writing on a red/white background).

If you access a site of our internet appearance which contains such a plug-in from YouTube, your browser sets up a direct connection with the YouTube servers. In this way, the YouTube server is told which site of our website has been visited by you. If you are logged into your YouTube account at the same time, you even make it possible for YouTube to assign your visit conduct directly to your personal profile. To prevent this, you must log out from your account beforehand.

We have no influence on the scope of the data which YouTube collects with the help of such a plug-in.

Further information on the conditions and use and data protection directives of YouTube can be found directly on the websites of these companies under the following link:

data protection at YouTube – https://www.google.de/intl/de/policies/privacy/

 

c) Google Plus

In addition, our internet appearance uses plug-ins of the Google Plus social network. Google Plus is provided and operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The plug-in can be recognised by the Google Plus logo (white writing “G+” on red background).

If you access a site of our internet appearance which contains such a plug-in from Google Plus, your browser sets up a direct connection with the Google servers. The content of the plug-in which has been set is transmitted directly to your browser by Google and integrated into the website by the latter. We therefore have no influence on the scope of the data which Google collects with the help of such a plug-in.

Via Google Plus, the user has the possibility of publishing contents in the internet in a personalised way, in which context Google stores the information about the contents which the user has clicked on with Google Plus. Google also stores the information during the visit to the website which the user has looked at. It is technically possible that your Google Plus clicks are used in your Google Plus profile and the further Google services (e.g. in the Google search engine) in the internet or in internet adverts. As a rule, you must assume that such a use takes place.

So that you can use the Google Plus button, you must create a public profile including profile name with Google Plus. Google Plus and all other services from Google will use your profile name. Your identity behind the profile can be disclosed to all users who have knowledge of your e-mail address or other suitable information with which identification of your person is possible.

Further information on the conditions and use and data protection directives of Google Plus can be found directly on the websites of these companies under the following link:

data protection at Google Plus – https://www.google.com/intl/de/policies/terms/

Google uses the information transmitted by you, according to its own statements complying with data protection directives. In particular, Google produces statistics of the activities with Google Plus. It cannot be ruled out that they are published and forwarded to third parties.

 

  1. Data subjects’ rights

The following rights accrue to you according to the GDPR:

  1. according to 7 subparagraph 3 GDPR, you can withdraw your consent previously granted to us at any time. This means that we will no longer be allowed to continue the data processing based on this consent any more in the future;
  2. according to 15 GDPR, you can demand information about your personal data which are processed by us. In particular you can demand information about the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or are being disclosed, the planned duration of storage, the existence of a right to rectification, erasure, restriction of the processing or objection, the existence of a right of complaint, the origin of your data if they have not been collected by us and also the existence of an automated decision-making including profiling and, if applicable, information about their details;
  3. according to 16 GDPR, you can demand rectification of incorrect and completion of your personal data stored with us without delay;
  4. according to 17 GDPR, you can claim erasure of your personal data stored by us to the extent that the processing is not necessary to exercise the right of free opinion and information, to fulfil a legal obligation, for reasons of public interest or in order to establish, to exercise or to defend legal claims;
  5. according to 18 GDPR, you can demand restriction of the processing of your personal data if the correctness of the data is disputed by you, the processing is unlawful, but you reject their erasure and we no longer need the data, but you need them to establish, to exercise or to defend legal claims or you have made an objection against the processing according to Art. 21 GDPR;
  6. according to 20 GDPR, you can demand that you receive your personal data which you have provided to us in a structured, commonly used and machine-readable format or claim transmission to another controller and
  7. according to 77 GDPR, you can complain about us to a supervisory authority if you are of the opinion that processing of the personal data concerned with you breaches the GDPR. As a rule, you can contact the supervisory authority of your customary place of residence or workplace or of our registered office.
  8. Security of your data

Within the visit to our website, we use the most popular SSL method (Secure Socket Layer), this being in conjunction with the highest encryption level supported by your browser. As a rule, this is a 256 bit encryption. If your browser does not support a 256 bit encryption, we have recourse to 128 bit V3 technology instead. You can see whether an individual site of our internet appearance is transmitted encrypted by the closed portrayal of the key or the lock symbol in the lower status bar of your browser.

In addition, we make use of suitable technical and organisational safety measures in order to protect your data against chance or deliberate manipulations, partial or complete loss, destruction or against unauthorised access by third parties. Our safety measures are continuously improved in accordance with technological development.

 

  1. Right of objection

To the extent that your personal data are processed on the basis of legitimate interests according to Art. 6 subparagraph 1 sentence 1 lit. f GDPR, you have the right to make an objection to the processing of your personal data at any time according to Art. 21 GDPR to the extent that reasons resulting from your specific situation exist.

The same applies if we make direct advertising with your personal data. In the latter case, you have a general right of objection which is implemented by us even without the statement of a specific situation by you.

If you would like to make use of your right of withdrawal or objection, an e-mail to Michael.Diefenbacher@fass-frisch.com is sufficient.