Privacy policy in accordance with the GDPR:
Privacy policy in accordance with the GDPR:
The text below contains information on what personal data is collected when you use our website. Personal data are any data that relate to you personally, e.g. your name, address, email addresses, user behaviour and IP address.
I. Name and address of the controller
The controller pursuant to Art. 4(7) EU General Data Protection Regulation (GDPR) and other data protection laws of Member States as well as any other data protection provisions is:
Rehm Thermal Systems GmbH
Leinenstrasse 7
89143 Blaubeuren-Seissen
Tel.: +49 7344 9606-0
Email: info@rehm-group.com
Website: www.rehm-group.com
II. Name and address of the data protection officer
The data protection officer of the controller is:
audius GmbH
Mendelstraße 13
D-89081 Ulm
Phone +49 (0)7151/36900 0
Fax +49 (0)7151/36900 10
E-Mail datenschutz-ulm@audius.de
III. General information on data processing
1. Scope of the processing of personal data
As a rule, we collect and use personal data of our users only if this is necessary to provide a functional website as well as our content and services. The personal data of our users is collected and used on a regular basis and only after receiving consent from the user. This excludes cases where obtaining consent was previously not possible due to technical reasons and where processing of the data is permitted by legal provisions.
2. Legal basis for the processing of personal data
Should we obtain consent from the data subject for the processing of personal data, Art. 6(1)(a) EU General Data Protection Regulation (GDPR) shall apply as the legal basis for the processing of personal data.
When processing personal data that is necessary for the performance of a contract, where the contractual party is the data subject, Art. 6 (1) (b) GDPR shall serve as the legal basis. This also applies to processing operations that are necessary for carrying out pre-contractual measures. Should the processing of personal data be necessary to fulfil a legal obligation to which this company is subject, Art. 6(1)(c) shall serve as the legal basis.
Where personal data must be processed to safeguard the vital interests of the data subject or those of another natural person, Art. 6(1)(d) shall serve as the legal basis.
Where the processing is required to safeguard the legitimate interests of our company or of a third party, and these interests do not override the above-mentioned interests or fundamental rights and freedoms of the data subject, Art. 6(1)(f) GDPR shall serve as the legal basis for processing.
3. Erasure of data and storage period
The personal data of the data subject are erased or made unavailable as soon as the purpose of storage no longer exists. Furthermore, data may also be stored if this is stipulated by the European or national legislature in regulations of Union law, laws or other provisions to which the Controller is subject. The data are made unavailable or erased if the storage period set out lapses, unless continued storage of the data is necessary for the conclusion or performance of a contract.
4. Use of service providers in the context of this website
We sometimes employ external service providers to process your data on our website. They have been carefully selected and commissioned by us. They are bound by our instructions and are monitored regularly. Data are not transmitted to countries outside the EU or the EEA (so-called third countries).
IV. Provision of the website and creation of log files
1. Description and scope of the data processing
For every visit to our website our system automatically collects data and information from the computer system of the accessing computer. If our website is used for mere informational purposes, we collect only the personal data that your browser transmits to our server. The following data are collected:
• IP address
• Information about the type of browser and the version used
• Operating system of the user
• Date and time of access
The data are also stored in the log files of our system. Unaffected by this are IP addresses of the user or other data that enable the data to be associated with a user. These data are not stored together with other personal data of the user.
2. Legal basis for the processing of data
The legal basis for temporary storage of the data is Art. 6(1)(f) GDPR.
3. Purpose of the data processing
Temporary storage of the IP address by the system is necessary to deliver the website to the computer of the user. The IP address of the user must therefore remain stored for the duration of the visit.
Our legitimate interest in the processing of data is also based on this purpose, in accordance with Art. 6(1)(f) GDPR.
4. Period of storage
The data are erased as soon as they are no longer necessary to achieve the purpose for which they were collected. Where data is recorded to provide the website, this applies when the respective visit has ended.
5. Option to object and eliminate
The recording of data to provide the website and to store data in log files is vital for the operation of the website. The user thus has no option to object.
V. Use of technically necessary cookies
1. Description and scope of the data processing
Our website uses cookies. Cookies are text files that are stored in/by the Internet browser on the computer system of the user. If the user visits a website, a cookie may be stored on the operating system of the user. This cookie contains a character string that enables clear identification of the browser upon subsequent visits to the website.
We use cookies to make our website more user-friendly. Some elements of our website require that the accessing browser can also be identified after switching websites.
2. Legal basis for the processing of data
The legal basis for processing personal data when using cookies is Art. 6(1)(f) GDPR.
3. Purpose of the data processing
The purpose of using technically necessary cookies is to simplify the use of websites for the users. Some features of our website can be offered without the use of cookies. For these features it is necessary that the browser can also be recognised after switching websites.
The user data collected by technically necessary cookies are not used to create user profiles.
Our legitimate interest in the processing of personal data is also based on this purpose in accordance with Art. 6(1)(f) GDPR.
4. Period of storage, option to object and eliminate
Cookies are stored on the computer of the user and then transmitted to our website. This is why you as a user also have full control over the use of cookies. By changing the settings in your browser you can deactivate or limit the transfer of cookies. Cookies that have already been stored can be erased at any time. This can also be done automatically. If cookies are deactivated for our website, it may be the case that you are no longer able to use all the features of this website in full.
VI. Contact form and email contact
1. Description and scope of the data processing
Our website includes a contact form which can be used to make contact with us electronically. If a user makes use of this option, the data entered in the input mask are transmitted to us and stored.
To process the data, we will ask for your consent as part of the submission process and refer to this Privacy Policy.
Alternatively, you can contact us at the email address provided. In this case, the personal data of the user which were transmitted using the email address are stored.
In this context, the data are not passed on to third parties. The data are used solely for processing the conversation.
2. Legal basis for the processing of data
If consent has been given by the user, the legal basis for processing the data is Art. 6(1)(a) GDPR.
The legal basis for processing the data, which are transmitted when sending an email, is Art. 6(1)(f) GDPR. If the purpose of the email contact is to conclude a contract, the additional legal basis for processing is Art. 6(1)(b).
3. Purpose of the data processing
Processing personal data from the input mask serves only to help us manage the contact. If contact is via email, there is also a necessary legitimate interest in processing the data.
The other data processed during the mailing processes are used to prevent misuse of the contact form and to safeguard the security of our IT systems.
4. Period of storage
The data are erased as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case for personal data from the input mask of the contact form and those that are sent by email if the respective conversation with the user has ended. The conversation has ended if it is apparent from the circumstances that the issue concerned has been clarified conclusively.
The additional personal data collected during the mailing process are erased after a period of seven days at the latest.
5. Option to object and eliminate
The user has the option to withdraw his or her consent to the processing of personal data at any time. If the user contacts us via email, he or she can object to the storage of his or her personal data at any time. In such a case, the conversation cannot be continued. The withdrawal can be informal and should be directed towards the controller.
Any personal data stored when contact is made shall be erased in this case.
VII. Newsletter
1. Description and scope of the data processing
On our website you have the option to subscribe to a free newsletter. When subscribing to the newsletter, the data from the input mask is transmitted to us.
Only your email address is mandatory for us to be able to send you the newsletter. Entering any other, specially marked data is optional and allows us to address you personally. Following your confirmation, we store your email address for the purpose of sending you the newsletter.
To process the data, we will ask for your consent when you register and will refer to this Privacy Policy. For subscriptions to our newsletter we use the so-called double opt-in process. This means that after you have registered we send to the email address entered an email in which we ask for confirmation that you wish to receive the newsletter. If you do not confirm your subscription within 24 hours, your information shall be made unavailable and erased automatically after one month. Furthermore, we store your IP addresses used each time and the times of the subscription and confirmation. The purpose of the procedure is to be able to prove your subscription and, if necessary, to clarify any possible misuse of you personal data.
Data processed for sending newsletters are not passed on to third parties. The data are solely used for sending the newsletter.
2. Legal basis for the processing of data
Newsletters are sent based on the subscription of the user on the website.
Once the user has subscribed to the newsletter, the legal basis for processing the data is Art. 6(1)(a) GDPR.
3. Purpose of the data processing
The email address of the user is collected in order to deliver the newsletter. Newsletters are sent based on the subscription of the user on the website. Data collected as part of the subscription process help prevent misuse of the services or of the email address used.
4. Period of storage
The data are erased as soon as they are no longer necessary to achieve the purpose for which they were collected. The email address of the user is therefore stored for as long as the subscription to the newsletter is active. Other personal data collected as part of the mailing process are usually erased after seven days.
5. Option to object and eliminate
Subscription to the newsletter can be cancelled by the user concerned at any time. There is a corresponding link in every newsletter for this purpose. This also enables a withdrawal of consent to the storage of personal data collected during the subscription process.
VIII. Use of Google Analytics
1. Description and scope of the data processing
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files which are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a server of Google in the US and stored there. If IP anonymization is activated on this website, however, your IP address is truncated by Google beforehand within member states of the European Union or in other contractual sates of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a server of Google in the US and truncated there. Google uses this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activities, and to render other services related to the use of the website and the Internet for the website operator.
The IP address transmitted by your browser in the context of Google Analytics is not merged with other data of Google.
Please check use: This website uses Google Analytics with the extension “_anonymizeIp()”. This means that IP addresses are processed further in truncated form, eliminating direct reference to persons. If the data collected about you makes personal reference to you, it shall be excluded without undue delay and the personal data shall be erased immediately.
2. Legal basis for the processing of data
If consent has been given by the user in relation to this, the legal basis for processing personal data using cookies for analytical purposes is Art. 6(1)(a) GDPR.
3. Purpose of the data processing
We use Google Analytics to analyse the use of our website and to improve it on a regular basis. The statistics we gain from this can be used to improve our offer and to make it more interesting for you as a user. In exceptional cases where personal data is transmitted to the US, Google is subject to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is the first sentence of Art. 6(1)(1)(f) GDPR.
4. Period of storage, option to object and eliminate
You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that you then may not be able to use all the features of this website in full. Furthermore, you can also prevent the data generated by the cookie and related to your use of the website (including your IP address) from being collected by Google as well as the processing of these data by Google by downloading and installing the browser plug-in available at the following link: tools.google.com/dlpage/gaoptout.
5. Details of the third-party provider
Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of use: www.google.com/analytics/terms/gb.html, Overview of data privacy: www.google.com/intl/de/analytics/learn/privacy.html, as well as privacy policy: policies.google.com/privacy.
[(7) This website also uses Google Analytics for cross-device analysis of the flow of visitors, which is carried out using a user ID. You can deactivate the cross-device analysis of your usage in your customer account under “My data”, “Personal data”.]
IX. Google Analytics Remarketing
1. Description, purpose and scope of the data processing
Our websites use the features of Google Analytics Remarketing in connection with the cross-device features of Google Adwords and Google DoubleClick. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
This feature makes it possible to link the advertising target groups created by Google Analytics Remarketing with the cross-device features of Google Adwords and Google DoubleClick. In this way, interest-related, personalised advertising messages which were adapted to you based on your previous usage and surfing behaviour on an end device (e.g. mobile phone) can also be displayed on another of your end devices (e.g. tablet or PC).
2. Period of storage, option to object and eliminate
If you have given the corresponding consent, Google will link your Internet and app browser history with your Google account for this purpose. This allows the same personalised advertising messages to be displayed on every end device you use to log into your Google account.
To support this feature, Google Analytics records Google-authenticated IDs of the user, which are temporarily linked to our Google Analytics data, in order to define and create target groups for cross-device advertising.
You can permanently object to cross-device remarketing / targeting by deactivating advertising in your Google account; to do this, simply follow this link: www.google.com/settings/ads/onweb/.
3. Legal basis for the processing of data
The data recorded in your Google account is summarised solely on the basis of your consent, which you can submit to or withdraw from Google (Art. 6(1)(a) GDPR). For data collection processes which are not merged in your Google account (e.g. because you do not have a Google account or have objected to the merging), the collection of data shall be based on Art. 6(1)(f) GDPR. The legitimate interest is a result of the fact that the website operator has an interest in the anonymised analysis of the visitor to the website for advertising purposes.
4. Details of the third-party provider
You can find more detailed information and the data protection regulations in the privacy policy of Google at: www.google.com/policies/technologies/ads/
X. Integration of Google Maps
We use the service of Google Maps on this website. This allows us to display to you interactive maps directly on the website and to enable you to comfortably use the maps feature.
When you visit the website, Google receives information indicating that you have accessed the corresponding subpage of our website. In addition, the data set out in Section IV of this Privacy Policy are transmitted. This happens regardless of whether Google provides a user account which you are logged into or if no user account exists. If you are logged into Google, your data is directly associated with your account. If you do not wish to have this association with your Google profile you must log out before activating the button. Google saves your data as a usage profile and uses them for marketing, market research and/or needs-based design of its website. Such an analysis is carried out in particular to render needs-based advertising (even for users who are not logged in) and to inform other users of the social network about your activities on our website. You have the right to object to this forming of a user profile and must contact Google to exercise this right.
You can find more information on the purpose and scope of data collection and the processing thereof by the plug-in provider in the privacy policies of the provider. There you will also find more information about your rights concerning this matter and settings options for protecting your privacy: www.google.de/intl/de/policies/privacy. Google also processes your personal data in the US and is subject to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework.
XI. Rights of the data subject
Every data subject has the right of access in accordance with Article 15 GDPR, the right to rectification in accordance with Article 16 GDPR, the right to erasure in accordance with Article 17 GDPR, the right to restriction of processing in accordance with Article 18 GDPR, the right to object according to Article 21 GDPR as well as the right to data portability according to Article 20 GDPR. For the right of access and the right to erasure the limitations set out in Sections 34 and 35 Federal Data Protection Act (BDSG) shall apply. Furthermore, you also have the right to lodge a complaint with a supervisory authority (Article 77 GDPR in connection with Section 19 BDSG). The competent supervisory authority for questions relating to data protection is the data protection commissioner of the federal state in which our company is headquartered. A list of data protection officers as well as their contact details can be found at the following link: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
You can withdraw any consent given to us for the processing of personal data at any time. This also applies to the withdrawal of declarations of consent which were submitted to us before the EU General Data Protection Regulation came into force, i.e. prior to 25 May 2018. Please note that the withdrawal has effect only for the future. Processing carried out prior to the withdrawal shall not be affected. The withdrawal can be informal and should be directed towards the controller.
