Data privacy statement
Welcome to MÄURER & WIRTZ GmbH & Co. KG. Thank you for visiting our website. We appreciate your interest in our company. Under the following link, you will find data protection information for applicants:
Part 1: Information on data protection regarding our processing under Articles 13, 14 and 21 General Data Protection Regulation (GDPR)
We take data protection seriously and hereby inform you on how we process your data and what claims and rights you are entitled to under data protection rules. Applicable as of 25 May 2018.
1. Office responsible for data processing and contact data
responsible office within the meaning of data protection law:
DALLI-WERKE GmbH & Co. KG
or MÄURER & WIRTZ GmbH & Co. KG
(responsible office in each case is the company whose website you are
visiting according to the imprint or who you addressed with your request)
Zweifaller Str. 120
Telephone: +492402 89-0
Contact data of our data protection officer:
DALLI-WERKE GmbH & Co. KG
or MÄURER & WIRTZ
GmbH & Co. KG
Data protection officer
Zweifaller Str. 120
2. Purposes and legal basis on which we process your data
We process personal data in accordance with the stipulations of the General Data Protection Regulation (GDPR) and national data protection laws as well as other applicable data protection provisions (details are provided in the following). The details of which data are processed and how they are used mostly depend on the services requested or agreed in each case. Further details or additions for the purposes of data processing can be found in the respective contract documents, forms, a declaration of consent and/or other information provided to you (e. g. in the context of the use of our website or our terms and conditions). In addition, this data protection information may be updated from time to time, as you may find out from our websites www.dalli-group.com/ www.dalli-group.de/ www.mydalli.de/ www.m-w.de.
2.1 Purposes to perform a contract or precontractual measures (Art. 6 para. 1 sentence 1 lit. b GDPR)
The processing of personal data is carried out in order to perform our contracts with you and to execute your orders as well as to carry out measures and activities in the framework of precontractual relations, e. g. with interested parties. In particular, the processing thus serves to provide services according to your orders and wishes and includes the necessary services, measures and activities. This essentially includes contractrelated communication with you, the verifiability of transactions, orders and other agreements as well as quality control by means of corresponding documentation, goodwill procedures, measures to control and optimize business processes as well as the fulfilment of general duties of care, control and supervision by affiliated companies (e. g. parent company), statistical evaluations for corporate management, cost recording and controlling, reporting, internal and external communication, emergency management, accounting and tax assessment of operational services, risk management, assertion of legal claims and defense in the event of legal disputes, ensuring IT security (inter alia system and plausibility tests) and general security, including building and plant security, securing and exercising domestic authority (e. g. by means of access controls), guaranteeing the integrity, authenticity and availability of data, prevention and investigation of criminal offences, control by supervisory bodies or supervisory authorities (e. g. auditing).
2.2 Purposes within the framework of a legitimate interest on our part or of third parties (Art. 6 para. 1 sentence 1 lit. f GDPR)
In addition to the purpose to fulfil the (pre-)contract, we might process your data when necessary to protect legitimate interests of our own or of third parties, in particular for the following purposes:
- advertising or market and opinion research, as far as you have not objected to the use of your data;
- obtaining information from and exchanging data with operators/ agencies where this goes beyond our economic risk;
- the examination and optimization of processes for needs analysis;
- the further development of services and products as well as of existing systems and processes
- the disclosure of personal data in the framework of due diligence in the course of company sale negotiations;
- for comparison with European and international anti-terrorist lists, insofar as this goes beyond the legal obligations;
- the enrichment of our data, e. g. by using or researching publicly accessible data;
- statistical evaluations or market analysis;
- the assertion of legal claims and defense in legal disputes which are not directly attributable to the contractual relationship;
- the limited storage of data, if a deletion is not possible or only possible with disproportionate efforts due to the special type of storage;
- the development of scoring systems or automated decision-making processes;
- the prevention and investigation of criminal offences, if this is not exclusively to fulfil legal requirements;
- building and plant security (e. g. by means of access control and video surveillance), insofar as this goes beyond the general duties of care;
- internal and external investigations, safety reviews;
- any monitoring or recording of telephone conversations for quality control and training purposes;
- preservation and maintenance of certifications of privatelaw or official nature;
- the securing and exercise of our domestic authority by means of appropriate measures as well as by video surveillance for the protection of our customers and employees as well as for securing evidence in the framework of criminal offences and their prevention.
2.3 Purposes within the framework of your consent (Art. 6 para. 1 sentence 1 lit. a GDPR)
Your personal data can also be processed for certain purposes (e.g. use of your e-mail-address for marketing purposes) on the basis of your consent. As a rule, you can revoke this consent at any time. This also applies to the revocation of consent that was given to us before the GDPR came into effect, i.e. prior to 25 May 2018. You shall be separately informed about the purposes and about the consequences of revocation or refusal to give consent in the respective text of the consent.
Generally, revocation of consent only has effect for the future. Processing that has taken place prior to revocation is not affected by such and remains lawful.
2.4 Purposes relating to compliance with a legal obligation (Art. 6 para. 1 sentence 1 lit. c GDPR) or in the public interest
(Art. 6 para. 1 sentence 1 lit. e GDPR)
Just like anyone who takes part in business life, we are subject to a large number of legal obligations. These are primarily statutory requirements (e.g. commercial and tax laws), but possibly also supervisory law or other official requirements. The purposes of processing may include identity and age checks, prevention of fraud and money laundering, the prevention, combating and education regarding terrorism financing and crime with a risk for property, comparisons with European and international anti-terror lists, compliance with control and notification obligations under tax law as well as the archiving of data for the purposes of data protection and data security and of audits by tax/fiscal and other authorities. In addition, it may be necessary to disclose personal data in the framework of official government/court measures for the purposes of collecting evidence, law enforcement and criminal prosecution or the enforcement of civil law claims.
3. The categories of data that we process insofar as we do not receive data directly from you, and its origin
If necessary for the performance of our services, we may process data that we have lawfully received from other companies or other third parties (e.g. information offices). In addition, we process personal data that we have lawfully collected, received or acquired from publicly accessible sources (e.g. telephone registers, commercial and association registers, civil registers, the press, the internet and other media) and that we are allowed to process.
Relevant personal data categories may in particular be:
- personal data (name, date of birth, place of birth, nationality, marital status, occupation/trade and comparable data)
- contact data (address, e-mail address, telephone number and similar data)
- Address data (population register data and comparable data)
- payment confirmation/confirmation of cover for bank and credit cards
- information about your financial situation (credit-worthiness data including scoring, i.e. data for assessing the economic risk)
- customer history
- data about your use of the telemedia offered by us (e. g. time of access to our websites, apps or newsletters, clicked pages/links or entries and comparable data)
- Video data.
4. Recipients or categories of recipients of your data
Within our company, your data is received by those internal offices or organizational units that need such to fulfil our contractual and statutory obligations or to process and implementing our legitimate interests. Your data is disclosed/passed on to external offices and persons exclusively
• in connection with the execution of the contract;
• to fulfil legal obligations that require us to provide information, give notice or forward data or where the forwarding of data is in the public interest (see section 2.4);
• to the extent that external service-providers process data on behalf of us as contract processors or providers of certain functions (e.g. external data centers, support and maintenance of DP/IT applications, archiving, document processing, call center services, compliance services, controlling, data screening for anti-money laundering purposes, data validation and plausibility check, data destruction, purchasing/procurement, customer administration, lettershops, marketing, media technology, research, risk controlling, billing, telephony, website management, auditing services, credit institutions, printing companies or companies for data disposal, courier services, logistics);
• on the basis of our legitimate interest or the legitimate interest of the third party within the purposes cited in section 2.2 (e.g. to authorities, credit agencies, collection agencies, attorneys, courts of law, appraisers, companies affiliated to company groups as well as bodies and control instances);
• if you have given us consent to transmit data to third parties.
Beyond this, we shall refrain from transmitting your data to third parties. Insofar as we commission service providers within the framework of processing an order, your data will be subject to the same security standards that we have stipulated. In all other cases, recipients may only use the data for purposes for which the data has been sent to them.
5. Period of time your data is stored for
We process and store your data for the duration of our business relationship. This also includes the initiation of a contract (precontractual legal relationship) and the phaseout.
In addition, we are subject to various retention and documentation obligations that emanate inter alia from commercial and tax laws. The periods and deadlines for retention and/or documentation stipulated therein range between six, seven and ten years from the end of the contractual relationship or the precontractual relationship, and in exceptional cases even 50 years – depending on the applicable national law.
Further, special statutory provisions may require longer retention such as for example the preservation of evidence in connection with statutory time-barring provisions.
If the data is no longer required to meet contractual or statutory obligations and rights, it is regularly deleted unless its further processing - for a limited period - is necessary to fulfil the purposes listed in section 2.2 due to an overriding legitimate interest. Such overriding legitimate interest is deemed to exist, for example, if it is not possible, or only possible with a disproportionate effort, to delete the data as a result of the special type of storage and provided that the processing for other purposes is excluded by appro-priate technical and organizational measures.
6. Processing of your data in a third country or by an international organization
Data is transmitted to offices in countries outside the European Union (EU) or the European Economic Area (EEA) (so-called third countries) if necessary to fulfil your order or the contract with you, if required by law (e.g. notification obligations under tax law), if it is in the legitimate interest of us or of a third party or if you have given us your respective consent.
For that matter, your data may be processed in a third country, possibly also with the involvement of service providers in the framework of processing of the order. Insofar as no decision has been issued by the EU Commission regarding the existence of a reasonable level of data protection for the respective country, we warrant that your rights and freedoms will be reasonably protected and guarantied in accordance with EU data protection requirements through contractual agreements to this effect. We will provide you with detailed information upon request.
You can request information on the suitable or reasonable guarantees and the possibility to receive a copy of these from the company data protection officer.
7. Your data protection rights – you can assert your data protection rights against us under certain conditions and under consideration of possible specific national rules
• You have the right pursuant to Art. 15 GDPR to receive information from us on the data concerning your person that we store.
• If you so request, we shall correct stored data on you in accordance with Art. 16 GDPR if such data is incorrect or flawed.
• If you so desire, we shall delete your data in accordance with the principles of Art. 17 GDPR if such is not prevented by other statutory provisions or an overriding interest on our part (e.g. to defend our rights and claims).
• Under the conditions laid down in Art. 18 GDPR, you can demand that we restrict the processing of your data.
• Further, you can file an objection to the processing of your data in accordance with Art. 21 GDPR, as a result of which we have to stop processing your data. This right of objection only applies, however, in the event of extraordinary circumstances in your personal situation, whereas the rights of our company may run counter to your right of objection.
• You also have the right to receive your data in accordance with the conditions of Art. 20 GDPR in a structured, commonplace and machine-readable format or transmit such data to a third party.
• You further have the right to revoke your consent to process personal data that has been issued to us at any time with effect for the future (see section 2.3).
• In addition you are entitled to file a complaint with a data protection supervisory authority (Art. 77 GDPR). We recommend, however, to always send a complaint to our data protection officer before.
If possible, your applications concerning the exercise of your rights should be sent in writing to the address stated above or be addressed directly to our data protection officer.
8. Scope of your obligations to provide us your data
You only need to provide data that is necessary for the commencement and performance of the business relationship or for a precontractual relationship with us or the collection of which we are required by law. Without this data, we will regularly not be able to conclude or fulfil the agreement. This may also relate to data required at a later stage within the business relation. If we request data from you above and beyond this, you shall be informed about the voluntary nature of the information separately
9. Presence of an automated decision-making in individual cases (including profiling)
We do not use any purely automated decision-making procedures as set out in Article 22 GDPR. However, should we institute such a procedure in individual cases in the future, we shall inform you pursuant hereto separately if this is required by law.
Under certain circumstances, we may process your data partly with the aim of evaluating certain personal aspects (profiling).
In order to provide you with targeted information and advice on products, we may use evaluation tools. These enable a needs-oriented product design, communication and advertising including market and opinion research.
Such procedures can also be used to assess your solvency and credit-worthiness as well as to combat money laundering and fraud. "Score values" can be used to assess your solvency and credit-worthiness. In the case of scoring, the probability with which a customer will meet his payment obligations in accordance with the contract is calculated using mathematical methods. Such score values thus support us, for example, in assessing the credit-worthiness, in our decision-making in the context of product deals and are incorporated into our risk management. The calculation is based on mathematically and statistically acknowledged and proven methods and is based on your data, in particular income, expenditure, existing liabilities, profession, employer, length of service, experience from the previous business relationship, repayment of previous loans in accordance with the contract and in-formation from credit agencies.
Information on nationality and special categories of personal data according to Art. 9 GDPR is not processed.
Information on your right of objection under Art. 21 GDPR
1. You have the right to file an objection at any time against processing of your data which is performed on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR (data-processing on the basis of a weighing out of interests) or Art. 6 para. 1 sentence 1 lit. e GDPR (data-processing in the public interest), provided that there are reasons for your objection emanating from your special personal situation. This also applies to profiling based on this provision in the meaning of Art. 4, no. 4 GDPR.
If you file an objection, we shall no longer process your personal data unless we can demonstrate compelling reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.
2. We may also use your personal data in order to perform direct advertising. If you do not want to receive any advertising, you have the right to file an objection to such at any time. This also applies to the profiling to the extent that it is connected with such direct advertising. We shall respect this objection with effect for the future.
We shall no longer process your data for the purpose of direct advertising if you object to processing for this purpose.
The objection can be filed without to any form requirements and should, if possible, be sent to:
DALLI-WERKE GmbH & Co. KG
or MÄURER & WIRTZ GmbH & Co. KG
Zweifaller Str. 120
Part 2: Additional data protection information regarding the website
Thank you for visiting our website. In the following we set out which data we collect during your visit on our website and how exactly this data is used. This data privacy statement applies to all websites accounted for by DALLI-WERKE GmbH & Co. KG or affiliated companies, or by Mäurer & Wirtz GmbH & Co. KG or affiliated companies, respectively.
1. Data collection and processing
When you visit our website, our webservers temporarily save every access in a log file. The following data will be collected and stored until automatically deleted:
• Date and time of access
• Name and URL of the retrieved file
• Transferred data volume
• Notification on whether the call was successful
• Identification specification data of the used browser- and operating system
• IP address of the calling processor
• Website from which access is made
• Name of your internet access provider.
Processing of this data takes place in order to enable the use of the website (connection establishment), for system security and for tech-nical administration of the network infrastructure.
The IP address will only be analyzed in the event of attacks on our network infrastructure or for other data security reasons.
2. Use of personal data
The personal data you provide us via our website (e.g. your name and address or your e-mail-address) is processed for correspondence with you as well as for the purpose for which you have provided us with the data (e.g. in the framework of a request, an order of dosing aids or a promotional competition).
If you order services or products from us, without your separate consent your personal data will only be used insofar as it is necessary for the provision of the service or for the performance of the contract.
This includes, in particular, the forwarding of your data to transport companies, credit companies or other service providers used for the provision of the service or for the fulfillment of the contract.
Beyond this, a use of this data for occasional offers to you via post or e-mail in order to inform you about new products or other services that might be of interest to you or about sales promotions of our company, only occurs insofar as legally permissible or where you have given us prior consent. Any use of your personal data shall be only in accordance with the before-mentioned purposes and only to the extent necessary to achieve these objects.
You can object to the receipt of advertisement from DALLI-WERKE GmbH & Co. KG or affiliated companies, or from Mäurer & Wirtz GmbH & Co. KG or affiliated companies, respectively, at any time by informing us correspondingly under the below-mentioned contact or e-mail-address. Consent given can also be revoked at any time by information to the below-mentioned contact or e-mail-address.
If we send you a newsletter upon your request, you thereby receive information on our offers and promotions or – insofar as mentioned – offers and promotions of our cooperation partners. You can cancel the newsletter at any time via the cancellation link on the newsletter without incurring any cost apart from the transfer cost according to the standard rates.
4. Transfer of personal data
The transfer of personal data to state offices or authorities only occurs in accordance with legal provisions or when the transfer is necessary for claiming our rights or for law enforcement in the event of attacks on our network infrastructure. Service-providers possibly involved in the framework of the execution only receive the data necessary to fulfil their tasks and they are equally subject to confidentiality obligations as our own staff members are. A transfer to other third parties only occurs insofar as legally permissible. Beyond this, your data will not be transferred to third parties.
DALLI-WERKE GmbH & Co. KG and Mäurer & Wirtz GmbH & Co. KG use appropriate technical and organizational security measures to protect your personal data administered by us from accidental or deliberate manipulation, loss, destruction and unauthorized access. Our security measures are continually improved according to technological development.
Cookies are small text data files which are saved on the computer of the internet user. They serve the steering of the internet connection during your visit on our websites. At the same time we receive information via these cookies that allow us to analyze your use of the website in order to optimize our website with a view to the needs of our visitors. Cookies are partly saved by your browser only for the duration of your visit on the website (session cookies), but partly for a longer period (persistent cookies).
If in the framework of the services described below a transfer of personal data to the USA might occur we point out that according to the European Court of Justice the data protection level of the USA does not fully reach the EU’s level of protection. There is no decision of the European Commission on the adequacy of the level of protection and there are no adequate guarantees. In particular, there is the risk or it cannot be excluded that within the respective applicable law public authorities may be able to access such data against which legal protection is limited.
7. Use of Google Analytics
On some of our websites we ask for your voluntary and revocable consent to the use of Google Analytics:
If you give us such consent, we will use Google Analytics (https://marketingplatform.google.com/intl/en/about/analytics/), a web analytics service of Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin, D04 E5W5, Ireland („Google“) (Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) on the website concerned in order to analyze and regularly improve the use of this website. By means of the statistics obtained we can improve our offer and shape it in a way that it is more interesting for you as a user. In exceptional cases personal data will be transferred to and saved in the USA. A data protection contract with Google is in place which includes the EU Standard Contractual Clauses with Google LLC. Further information is available at https://business.safety.google/intl/en/compliance/.
The legal basis for the use of Google Analytics is consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR.
Google Analytics uses so-called „cookies“, i.e. text files that are saved on your computer and that allow for an analysis of your use of the website. The information on your use of this website generated by the cookie is generally transmitted to and saved on a server of Google in the USA.
By activating the IP anonymization on this website your IP address will, however, be shortened beforehand by Google in the member states of the European Union or in other contractual states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a server of Google in the USA and shortened there. You can find the places of Google’s computing centers under: www.google.com/about/datacenters/locations/index.html. On behalf of the operator of this website Google will use this information in order to evaluate your use of the website, to compile reports on the activities of these websites and to provide further services related to the use of the website and of the internet to the website operator.
The IP address transmitted from your browser in the framework of Google Analytics will not be merged with other data of Google unless you have permitted this in your Google account.
You can prevent the cookies from being saved by means of a corresponding setting in your browser software; however, we advise you that in this case it is possible that not all the functions of this website can be fully used. You can further prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of such data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
You can withdraw your consent of the setting of cookies/ tracking at any time, or individually adapt your cookie settings (see Section 6).
Personal data or aliases will be deleted or anonymized after 14 months. Further details and information are available in Google’s data protection information under https://support.google.com/analytics/answer/6004245?hl=en or the Google data protection statement under http://www.google.com/intl/en/policies/privacy as well as in the settings on the settings on the display of Google’s advert flashes under
8. Use of YouTube Videos
9. Google reCAPTCHA
On some of our websites we use the service Google “reCAPTCHA”. Provider of reCAPTCHA is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) (Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)). With reCAPTCHA we check whether the data input on our respective websites (e.g. a contact form) is done by a human being or else by a bot or an automated program. To this the conduct of a website visitor is analyzed by reCAPTCHA on the basis of different characteristics. The analysis is carried out as soon as the user selects our respective website and runs fully-automated in the background. In the framework of the analysis reCAPTCHA evaluates different types of information (e.g. the IP address, the residence time of the user on the website or the user’s mouse movements). The data gathered in the framework of the analysis are forwarded to Google.
Legal basis for the use of reCAPTCHA is our legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR. As website operator we have a legitimate interest to protect our websites from abusive automated spying or spam. Further details and information on reCAPTCHA as well as Google’s data protection statement are available under https://www.google.com/recaptcha/ or https://www.google.com/intl/en/policies/privacy/ respectively.
10. Use of Google Maps
On some of our websites we use Google Maps of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). Google Maps is a web service for the display of interactive maps to visually depict geographic information. The use of this service makes it possible to show you our location and to facilitate a possible approach.
As soon as the subsides that are integrated into the map of Google Maps are called up, information of your use of our website (such as your IP address and location data) is transferred to servers of Google and saved there. This may also lead to a transfer to the servers of the parent company Google LLC. in the USA. This happens irrespective of whether Google provides a user account over which you are logged in or whether a user account even exists. If you are logged in at Google your data will be directly allocated to your account. If you do not wish for an allocation with your profile you have to log off before activating the button. Google saves your data as user profiles (even for users that are not logged in) and evaluates them. The collection, storage and evaluation are based on the legitimate interests of Google in the pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR in showing personalized advertisement, the market research and/or the tailored design of Google websites. You have the right of objection against the formation of such user profiles for the exercise of which you have to address Google.
11. Use of Webfonts by MyFonts.com or Adobe
Certain websites we are responsible for use MyFonts Webfonts, in oder to improve the optical presentation of the information contained on the websites concerned. The fonts of Myfonts.com are stored as Webfonts on the affected server. When the page is opened, for licensing reasons a meter at MyFonts (Monotype Imaging Holdings Inc., 600 Unicorn Park Drive, Woburn, MA 01801, USA) is called via your internet browser, and this way MyFonts also receives knowledge of your IP address. If your internet browser does not support the MyFonts Webfonts or prevents access thereto, our website will instead appear with a standard font. The use of the webfonts is based on our legitimate interests according to Art. 6 para. 1 sentence 1 lit. f GDPR. Further information on the MyFonts Webfonts and on privacy are available at http://www.myfonts.com/info/webfonts.
12. Additional Privacy Notice for our Facebook Fan Pages
Within the scope of the Facebook fan pages operated by DALLI-WERKE GmbH & Co. KG or its affiliates or by Mäurer & Wirtz GmbH & Co. KG or its dependent companies, you also have the opportunity to find out about our services or to contact and interact with us. Our Facebook fan pages are provided on the basis of the agreement reached with Meta (Meta Platforms Ireland Limited (formerly Facebook Ireland Limited), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) on the joint processing of personal data pursuant to Art. 26 GDPR ("Page Insights Controller Addendum”). According to this, we ourselves cannot make and implement any decisions regarding the processing of insights data. Meta assumes primary responsibility pursuant to the GDPR for the processing of insights data and the fulfilment of all obligations under the GDPR with respect to the processing of insights data.
Please be informed that when you visit Facebook fan pages, data may be processed regarding you as a user in territories outside the EEA. Meta uses the EU Standard Contractual Clauses in order to ensure that in such cases your data receives a level of protection equivalent to the EU’s.
Your data can be processed for market research and advertising purposes, for example by creating usage profiles and using them for advertising purposes based on the interests arising from your usage behaviour. For this purpose, cookies are usually stored on your computer.
Using the "Page Insights" feature, we can access statistical data from Meta in various categories related to the use of Facebook fan pages, such as the total number of page views, likes, page activities, post interactions, video views, post coverage, comments, shared content, responses, proportion of men and women, country and city of origin, language, views and clicks in the shop, clicks on route planners, and clicks on phone numbers. We use this information to be able to make our pages more attractive and more responsive to needs (e.g. by finding the right time to publish content).
Within the scope of the Facebook fan pages, personal data of the users is processed in order to safeguard our legitimate interests in tailoring our information offerings and communications with the users to needs and target groups (legal basis: Art. 6 para. 1 sentence 1 lit. f GDPR). If Meta, as provider of the platform, asks you for consent to a certain data processing, the processing is carried out in this respect on the legal basis of Art. 6 para. 1 sentence 1 lit. a GDPR.
With regard to the exercise of data subject rights and requests for information, please note that you can most effectively assert these directly with Meta (see https://www.facebook.com/legal/terms/information_about_page_insights_data).
Opt-out: www.facebook.com/settings or www.youronlinechoices.com.
13. Use of Meta Pixel (formerly Facebook Pixel)
On some of our websites we use the Meta pixel to track the website visitors' actions (so-called conversion tracking). Provider of this service is Meta Platforms Ireland Limited (formerly Facebook Ireland Limited), 4 Grand Canal Square, Dublin 2, Ireland. This way, the actions of website visitors can be tracked after they have clicked on the Facebook advertisement and thus have been forwarded to the provider’s website. Thereby, the effectiveness of Facebook advertisement can be analyzed for statistical and market research purposes, and future advertisement measures can be optimized.
The data collected is anonymous for us as the operator of the website, and we cannot draw any conclusions on the identity of the users. However, the data is saved and processed by Meta so that it is possible to make a link to the respective user profile and Meta can use the data for its own advertising purposes according to the Meta data processing guidelines. Thereby, Meta can allow to take out an advertisement on Facebook pages as well as outside of Facebook. According to Meta, the data saved can also be transferred to the USA as well as other Third Countries (see Section 6). This use of data cannot be influenced by us website operator.
The use of Meta Pixel is based on your consent (Art. 6 para. 1 sentence 1 lit. a GDPR); the consent can be revoked at any time with effect for the future.
To revoke your consent or to individually adapt your cookie settings (including selection and deselection), on the respective website please click the button “Cookie-settings” or the symbol on the left bottom of the screen and make your choice.
You can find further details on the protection of your privacy in Meta’s data protection policy at https://www.facebook.com/about/privacy/.
Further, you can deactivate the remarketing function “Custom Audiences“ in the area for advertisements under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen if you are signed-in at Facebook.
If you do not have a Facebook account you can deactivate use-based advertisement of Facebook on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement/.
14. Use of Adform Pixel
On some of our websites we use the service Adform of the provider Adform, Silkegade 3B, ST. 1, DK-1113 Kopenhagen, Denmark. The purpose of this service is to be able to offer behavior-related internet advertisement. To this end a tracking pixel has been implemented on our website. This will be saved on the visitor’s device when visiting our website concerned or when playing videos on this landing page or another website of an Adform customer. The cookie contains a random identification number or information on advertisement activities on the website of an advertiser. With random identification numbers of the cookies Adform collects and saves in the cookie-based profiles anonymous information such as operating system, browser version, geographical location, URLs on which Adform shows advertisement or information on interaction with advertisement (e.g. number of clicks or views). In the event of requests on Adform’s servers IP addresses of internet users are accessible to Adform; they are anonymized in accordance with local data protection law. A recognition on other websites is possible. Further information provided by Adform about saving, processing and using of your data is available at https://site.adform.com/privacy-center/platform-privacy/opt-out/.
15. Use of WhatsApp
On some of our websites we provide – possibly via a designated share link/ button and a corresponding logo - links to WhatsApp (WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland), an instant messaging service that is part of Meta Platforms Inc. (formerly Facebook Inc.) We advise you that you use the thereby callable, externally linked services and its functions on your own authority. WhatsApp stores data of its users and might also use those for business purposes. If you do not wish this, please do not click on the respective links or share links/ buttons. Further information on WhatsApps data processing are available at https://www.whatsapp.com/legal/updates/privacy-policy.
16. Use of Instagram
On some of our websites we provide – possibly via a designated share link/ button and a corresponding logo - links to Instagram. We advise you that you use the callable, linked Instagram service and its functions on your own authority. The Instagram service is one of the Meta products provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. For the provision of Meta products information about the users is processed. Meta and Instagram share infrastructure, systems and technology with other Meta companies and might process information about the users beyond the Meta companies. The data collected about you during such use are processed by Meta. If you do not wish this, please do not click on the respective links or share links/ buttons. Further information on the data processing by Meta and on the Instagram settings are available on the internet pages of Instagram (i.a. https://www.instagram.com/ or https://help.instagram.com/519522125107875).
17. Use of Twitter
On some of our websites we provide – possibly via a designated share link/ button and a corresponding logo - links to the platform or the services of Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. We advise you that you use the offered Twitter short message service and its functions on your own authority. Twitter might collect data of the users of its service. If you do not wish this, please do not click on the respective links or share links/ buttons. You can find information on which data is processed by Twitter and for what purposes it is used in Twitter’s privacy statement and under https://help.twitter.com/en/forms/privacy.
18. Use of Pinterest
19. Use of von Google Tag Manager
On some of our websites we use Google Tag Manager. This is a tag management system that allows various tools or tags to be managed through one user interface. The other tags and tools integrated into Google Tag Manager may collect data from you. Google Tag Manager itself does not access this data. If a deactivation has been made at the domain or cookie level, it will remain in place for all tracking tags implemented with this tool.
The legal basis for the use of the Google Tag Manager is your explicit and voluntary consent pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR to the processing of your personal data for administrative purposes using Google Tag Manager.
Data is transferred to the USA for which the ECJ has determined that there is no adequate level of data protection. It is possible that the standard contractual clauses of the European Commission used by Google do not constitute sufficient guarantees within the meaning of Art. 46 para. 2
lit. a GDPR, since it cannot be ruled out that US authorities (e.g. secret services) process, evaluate and permanently store your data on US servers for surveillance purposes and that the data subjects do not have sufficient legal remedies available.
20. Use of Floodlight Tags Google Ad Tags
On some of our websites we use Google Floodlight from service provider Google in Ireland. Google stores and processes information about your user behaviour on our website and uses, among other things, floodlight tags (code snippets) and cookies, i.e. small text files that are stored locally in the web browser on your device and enable an analysis of your use of our website.
In this context, Google processes, among other things, your IP address, as well as pseudonymized cookie or advertising IDs. In addition, contact or location data such as your e-mail address or GPS coordinates may also be processed.
We use Google Floodlight for marketing and optimization purposes and to find out how you came to our website and what content you use there. This is to help us highlight content that is relevant to you on our website and improve your user experience.
The legal basis for the use of Floodlight Tags Google Ad Tags is your explicit and voluntary consent in accordance with Article 6 para. 1 sentence 1 lit. a GDPR in the processing of your personal data for marketing purposes and Section 25 para. 1 sentence 1 TTDSG in the setting of the cookies and the tags.
Data is transferred to the USA for which the ECJ has determined that there is no adequate level of data protection. It is possible that the standard contractual clauses of the European Commission used by Google do not constitute sufficient guarantees within the meaning of Art. 46 para. 2 lit. a GDPR, since it cannot be ruled out that US authorities (e.g. secret services) process, evaluate and permanently store your data on US servers for surveillance purposes and that the data subjects do not have sufficient legal remedies available.
Further information on the purpose and scope of data collection and processing as well as further information on your rights in this regard and setting options for the protection of your privacy can be obtained from Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland, data protection conditions https://policies.google.com/privacy?hl=en
21. Content Delivery Network (CDN)
On some of our websites we use the CDN service "Nitropack CDN". The provider is Nitropack LLC, 3 Professor Georgi Bradistilov, entr. A, 3rd fl., Studentski Kompleks, Sofia, postcode 1756, Bulgaria (hereinafter referred to as "Nitropack").
Nitropack provides a globally distributed CDN with Domain Name System (DNS). Technically, the transfer of information between your browser and our website is routed via the Nitropack network. A CDN is an online service that is used in particular to deliver large media files (such as graphics, page content or scripts) through a network of regionally distributed servers connected via the Internet. The use of Nitropack's CDN helps to optimize the loading times of our website. The use of Nitropack is based on our legitimate interest in providing and improving the stability and functionality of our website as error-free, secure and efficient as possible (Art. 6 para. 1 sentence 1 lit. f GDPR).
Further information on security and data protection at Nitropack can be found under https://nitropack.io/page/privacy.
22. Use of Hotjar
For more information, see the 'about Hotjar' section on Hotjar's help page https://help.hotjar.com/hc/en-us/categories/115001323967-About-Hotjar."
23. Amendment of the data protection rules
The further development of our website or the implementation of new technologies and other things might require an amendment of this data privacy statement. We therefore reserve the right to amend our data privacy statement at any time with effect for the future. We therefore recommend you to read the current data privacy statement from time to time.
The information on data protection about our data processing according to Articles 13, 14 and 21 GDPR and the additional data protection information regarding the website, respectively, may change from time to time. All changes will be published on this page. We provide older versions in an archive to be viewed.
Part 3: Additional data protection notices for the online shops of Mäurer & Wirtz GmbH & Co. KG ("Mäurer & Wirtz"):
As part of the online shops designed and operated by Mäurer & Wirtz, you have the opportunity to find out about products from the Mäurer & Wirtz environment and to order and purchase them from our partner aixtema GmbH, Philipsstraße 8, 52068 Aachen ("aixtema").
Mäurer & Wirtz and aixtema have agreed joint responsibility for this in accordance with Art. 26 GDPR. Mäurer & Wirtz and aixtema have concluded a separate agreement for details on the cooperation as joint controllers, in which they also make provisions for the fulfillment of the obligations under the GDPR in relation to the operation of the online shops by the parties.
The joint responsibility essentially extends to the technical collection of personal data from customers of the online shop pages and their transfer to aixtema via a jointly set up interface.
aixtema is solely responsible under data protection law for processing the personal data of customers in the context of order processing, delivery, customer contact and customer service. With regard to the contractual relationship, it is made clear that you as a customer with an order on our online shop pages only enter into a purchase contract with aixtema, but not with Mäurer & Wirtz itself.
Mäurer & Wirtz is responsible for the content, product descriptions and design of the online shops. Mäurer & Wirtz is solely responsible under data protection law for the processing of any other non-order-related personal data that may have been collected.
Affected persons can assert their rights under Art. 15 to 22 GDPR either against Mäurer & Wirtz or aixtema. In principle, you will receive the corresponding information or feedback from the party to whom you submitted the request. However, we ask that you contact aixtema if you have any questions about data protection law regarding the ordering process: aixtema GmbH, Philipsstraße 8, 52068 Aachen, telephone: +49 241 70515-0, e-mail: firstname.lastname@example.org. If you have any questions about data processing on our platform (e.g. regarding sending out newsletters), please do not hesitate to contact Mäurer & Wirtz. The contact details of the respective contact person can also be found in part 1 of this data protection declaration from Mäurer & Wirtz or under the data protection declaration from aixtema linked below.
Further detailed information on data protection at Mäurer & Wirtz, including contact details for the person responsible for data protection and the data protection officer as well as statements on the purposes and legal basis of data processing, your personal data protection rights, the technologies used by Mäurer & Wirtz and on adapting/revoking consent can be found in part 1 and 2 of the data protection declaration of Mäurer & Wirtz (https://www.mw.de/datenschutz/).
You will find further detailed information on data protection at aixtema, including contact details for the data protection officer responsible for data processing, in aixtema's data protection declaration at: https://www.aixtema.de/de/datenschutz.