1.1. Data protection

As the operator of this website, Bauerfeind takes the protection of your personal data very seriously. We treat your personal data confidentially and in observance of the applicable statutory data protection regulations and this Privacy Policy.

Various pieces of personal data are collected when you use this website. Personal data is data that can be used to identify you as a person. As the website operator, we only collect, use or disclose your personal data to third parties if this is legally permissible or if you have given your consent for your data to be processed. This privacy notice explains what data we collect and what we use it for. It also outlines how and for what purposes we process it.

We would like to point out that the transmission of data online (e.g. communication by e-mail) may be vulnerable to security breaches. It is not possible to fully protect data from access by third parties.

1.2. Data controller and data protection officer

The data controller for the processing of data on this website is:

Bauerfeind AG
Triebeser Straße 16
07937 Zeulenroda-Triebes
T: +49 (0) 36628 66 – 10 00
E: info@bauerfeind.com

We have appointed an internal company data protection officer (pursuant to Article 37 et seq GDPR). You can reach this person under the following contact details:

Bauerfeind AG
Datenschutzbeauftragter
Triebeser Str. 16
07937 Zeulenroda-Triebes

E: datenschutzbeauftragter@bauerfeind.com

1.3.Encrypted communication

This website uses SSL encryption for security reasons and in order to protect the transmission of confidential information, such as orders or requests that you send to us as the website operator. Your connection is being encrypted if a padlock icon appears in your browser address bar and the start of the URL in your address bar changes from “http://" to “https://”.

When SSL encryption is activated, the data that you transfer to us cannot be read by third parties.

2.1. Access, blocking, erasure, restriction of processing, objection

As part of the applicable statutory provisions, you have various rights relating to the processing of your personal data. You can contact our data protection officer at any time using the details provided if you would like to exercise your rights or if you have any questions concerning your personal data.

Each data subject has the following rights under the GDPR:

• The right of access to the personal data stored about you (pursuant to Article 15 GDPR),
• The right to have your personal data rectified (pursuant to Article 16 GDPR),
• The right to erasure (pursuant to Article 17 GDPR),
• The right to the restriction of processing (pursuant to Article 18 GDPR),
• The right to object to your data being processed (pursuant to Article 21 GDPR).

The right of access and the right to erasure are subject to the restrictions laid down in Sections 34 and 35 of the German Data Protection Act (BDSG).

2.2. The right to data portability

You have the right (pursuant to Article 20 GDPR) to have data that we have processed by automated means on the basis of your consent or in order to perform a contract to be given to you or to a third party in a commonly used and machine-readable format. If you request that this data be transmitted directly to another controller, this will only take place if technically feasible.

2.3. Withdrawal of your consent to the processing of your data

If we are processing your data on the basis of your consent (for example, in accordance with Article 6 (1) a GDPR), you have the right to withdraw this consent at any time. To exercise this right, you simply need to notify us of your request by e-mail. In order to be able to process your withdrawal as quickly as possible, please describe the circumstances in which you gave your consent in the message. This withdrawal of consent will not affect the lawfulness of any data processing that has already taken place.

2.4. The right to lodge a complaint with the competent supervisory authority

As a data subject, you have the right to lodge a complaint with a supervisory authority in the event of infringements of data protection legislation.

Cookies

Our website uses cookies to make it more user-friendly, efficient, and secure. Cookies are small text files that your browser stores on your device.

Cookies that are necessary for electronic communication purposes or in order to provide certain features that you wish to use (e.g. the shopping basket feature) are stored on the basis of Article 6 (1) f GDPR. As the website operator, we have a legitimate interest in storing cookies to help optimize our services and keep them free from technical faults.

Other cookies, which may serve for instance to measure the performance of our website, provide extended features, personalize the website or are utilized for marketing purposes, will only be used if you have granted your consent via our cookie consent banner that is displayed (in accordance with Article 6 (1) a GDPR). If you do not consent to the use of cookies, it is possible that our website will be unable to execute all features properly.

Please note that some of these cookies may be placed by commissioned service providers such as Google, Facebook, and YouTube (known as third-party cookies). In order to provide their commissioned services, these companies may use cookies to obtain knowledge about your browsing behavior on our website and characteristics that identify you personally; this data may also be transferred and stored outside the EU, for instance on their servers in the USA. By consenting to the activation of cookies, you are also consenting to the transmission of data to states outside the EU and the EEA. In this context, we hereby inform you that the European Court of Justice has classified the US as a country with an insufficient level of data protection according to EU standards. In particular, there is a risk that US authorities may process your data for monitoring and surveillance purposes, potentially without the possibility of redress.   

In the context of displaying our cookie consent banner from the provider OneTrust Technology Limited, Dixon House 1 Lloyd’s Avenue, London EC3N3DQ, UK, we use cookies in order to manage your cookie settings. Further information about OneTrust can be found at https://community.cookiepro.com/s/article/UUID-1e75fb0d-bb79-2af8-cb85-f905d16f1220

You may adjust or withdraw your consent to the use of cookies using the following button at any time with future effect:

You can also configure your browser to alert you when cookies are created so that you can choose whether to accept them on a case-by-case basis. You can also configure it to always decline cookies or to decline them in certain cases as well as to automatically delete cookies when you close the browser. Please note that deactivating cookies may limit the functionality of this website.

Server-log-files

The provider of this website automatically collects and stores information in server log files automatically transferred to us by your browser when you visit this website. This information includes:

• Your browser type and browser version
• Your operating system (if applicable)
• The referrer URL
• The URL visited, including the protocol and method
• Your computer’s hostname
• The date and time of the server request
• Your IP address
• GeoIP country code

This data is not merged with other sources of data.

The abovementioned data is processed within the server log files so that we can fulfil our legitimate interest (pursuant to Article 6 (1) f GDPR). Our legitimate interest is to provide you, as one of our users, with a functional website tailored to your needs (e.g. in the right language for your country) so that our website is presented in an attractive manner and can be optimized continuously. In addition, collecting this data allows us to prevent or protect ourselves against cyber attacks, to perform error analysis, and to detect potential cases of fraud.

The data is processed by the company Netigo GmbH on the basis of a data processing agreement pursuant to Article 28 GDPR, in which we require the service provider to protect the data of our customers, and not to disclose this data to unauthorized third parties. The data is only processed in the EU and is not disclosed to third parties. The server log files are stored by the provider for 30 days before being deleted.

How to contact us

Our website provides various means for you to contact us. For example, if you would like to ask us any questions or give us any feedback, you can do this using the contact details listed (in particular our e-mail address).

We will only use and store your data for the purpose of processing your request. We will pass on the information you enter to the relevant members of staff, who will process your request according to your requirements. We will only share your data with third parties if doing so is necessary in order to process your request. Our chat feature is provided using the web hosting services provided by netigo GmbH. We have concluded a data processing agreement with Netigo in accordance with Article 28 GDPR, in which we require the service provider to protect our customers’ data, and not to disclose it to unauthorized third parties. The data is only processed in the EU and is not disclosed to third parties.

We will store your request and the data provided in your request for the purpose of processing your request and so that we can respond to any follow-up questions. We will keep this data until you ask us to delete it or until we have fulfilled the purpose for which we were storing it. Any mandatory legal provisions – in particular retention periods – will remain unaffected by this.

3.1. Collection of data by embedded video services

Vimeo

Our website uses plugins from the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

We use the services of this company in order to display videos about our products and our company on our website in an appealing and professional manner. The integration of Vimeo videos occurs due to our legitimate interest in presenting an appealing image on our website (Article 6 (1)(f) GDPR).

The integration of videos could result – for reasons of technical necessity – in calling on Vimeo servers that may be located in third-party countries with a lower level of data protection. Vimeo is independently responsible for the associated use of data from your browser or device in this context.

To guarantee compliance with data protection requirements when transmitting data to the USA and other countries outside the European Union or the European Economic Area, we have established EU standard contract clauses with Vimeo. In addition, videos from Vimeo are embedded in their "Do Not Track" version as a rule so that personal data is only transmitted to Vimeo to a minimal extent. Vimeo has also committed to continue complying with its previous obligations from the former Privacy Shield Agreement.

Further information about how Vimeo processes your data can be found in Vimeo’s Privacy Policy, which is available at https://vimeo.com/privacy.

YouTube

Our website uses plugins from the video portal YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We use the services of this company in order to display videos about our products and our company on our website in an appealing and professional manner. The integration of YouTube videos occurs based on our legitimate interest in presenting an appealing image on our website (Article 6 (1) f GDPR). To this end, we have concluded a processing agreement with Google in which we require Google to handle personal data in compliance with data protection regulations and only based on our instructions. You can find detailed information here: https://www.youtube.com/t/terms_dataprocessing

The integration of videos could result – for reasons of technical necessity – in calling on Google servers that may be located in third-party countries outside the EU and EEA with a lower level of data protection. Google is independently responsible for the transmission and processing of data from your browser or device in this context. To keep data transmission to a minimum, we embed all YouTube videos using the “Privacy-Enhanced Mode”. As a result, data is only sent to Google if you actively click the video in order to play it.

Further information about how your user data is handled can be found in YouTube’s Privacy Policy, which is available at https://www.google.com/policies/privacy/.

3.2. Collection of data by the services of Google

General information

This website uses various services offered by the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The use of these individual services is described in more detail below.

The services we implement regularly collect various data from you, the devices you use and the websites you visit. This includes usage data (such as websites visited, interest in content, access times) as well as meta-data and communication data (such as device information, IP addresses).

Our use of the following services and the associated collection of personal data (in particular IP addresses) is generally based on our legitimate interest in analyzing, improving and making our website content appear attractive to you as a user as well as on our legitimate interest in tailoring any advertising to your needs. Where necessary, we will obtain your consent to the use of these services in advance.

Google Analytics

Google Analytics uses cookies. Cookies are stored on your computer after you have granted your consent pursuant to Article 6 (1) a GDPR and may be used to analyze how you use this website. The information generated by the cookie about your use of this website is generally transmitted to and stored on a Google server in the USA. You can find more information about the storage of cookies and any potential risks involved under Item 3 "Cookies".

IP anonymization

We have activated IP anonymization on our website. This shortens your IP address before it is transmitted to Google’s servers (also known as "IP masking"). The operator of this website contracts Google to use this information to evaluate how you use the website, to create reports about the website activity, and to provide other services relating to the use of the website and the internet. The shortening of the IP address is intended to prevent or make it significantly more difficult to identify a person by their IP address.

The processing of data on our behalf

We have concluded a data processing agreement for our use of Google Analytics and fully comply with the strict provisions of German data protection authorities when using this service. Additionally, standard contractual clauses have been established with the provider regarding the use of the service that are intended to help ensure a more appropriate level of data protection. The data processing agreement can be accessed here: https://privacy.google.com/businesses/processorterms/

Collection of demographic data by Google Analytics

This website uses the “Demographics feature” provided by Google Analytics. This feature enables reports to be created that contain statements about the age, gender, and interests of visitors to this site. This data is gathered from Google’s personalized advertising as well as visitor data from third-party providers. This data cannot be attributed to any specific individuals. You can disable this feature at any time by adjusting the ads settings in your Google account.

Google Analytics Remarketing Audiences & Google Signals

By using “Google Analytics Remarketing Audiences,” we pursue the goal of showing you interest-based, personalized advertising that matches your browsing and usage behavior on our website. For example, we collect information about which products you have viewed or added to your shopping basket and also transmit this data to Google Ads and, if applicable, to the Google Marketing Platform (formerly “DoubleClick”).

By using “Google Signals,” we also pursue the goal of being able to show you our personalized advertising regardless of the browser or terminal device you are using. For this purpose, Google links your web and app browser history to your Google account. The prerequisite for this is that you are logged into your Google account and have given Google the appropriate consent.

The data collected is linked to your Google account exclusively on the basis of your consent, which you can give or withdraw from Google (Article 6 (1) a GDPR). The collection of data that is not merged into your Google account (for example, because you do not have a Google account or have withdrawn your consent for this data to be linked) is based on the consent you have granted to us via our cookie consent banner. If you refuse the use of cookies, we will not send any data to Google in this context. You can find more information, including on withdrawal of consent, in the “Cookies” section.

You can permanently turn off cross-device remarketing/targeting by deactivating personalized advertising in your Google account by following this link: https://adssettings.google.com/authenticated.

Further information and the data protection provisions can be found in Google’s Privacy Policy, which is available at: https://policies.google.com/privacy & https://policies.google.com/technologies/ads.

Google Maps

This page uses the Google Maps API. Your IP address needs to be stored in order for you to use Google Maps. This information is generally transmitted to and stored on a Google server in the USA. The operator of this site has no influence over the transmission of this data.

We use Google Maps due to our interest in making our website more attractive and in making it easier for our visitors to find the addresses provided on our website. This constitutes a legitimate interest within the meaning of Article 6 (1) f GDPR.

You can find the Google Maps Terms of Service and Google’s Privacy Policy at the following links: https://www.google.com/help/terms_maps.html and https://policies.google.com/privacy.

3.3. Use of Web Fonts

Web Fonts by Linotype

To ensure that fonts are displayed consistently, this website uses web fonts provided by Linotype, that is, the company Monotype GmbH, Spichernstraße 2, 10777 Berlin.

When you open a web page, your browser loads the required web fonts into your browser cache so that text and fonts are displayed correctly. For this to work, your browser needs to be connected to Linotype’s servers. The web fonts are provided through our server, website visits are counted using a tracking code since this is required for licensing the fonts. This informs Linotype that our website was accessed via your IP address. We use Linotype web fonts due to our interest in providing a uniform and attractive website. This constitutes a legitimate interest within the meaning of Art. 6 (1) f GDPR.

If your browser does not support web fonts, your computer will use a standard font instead.

You can find more information about Linotype web fonts at Linotype web fonts www.linotype.com/de/7003/using-web-fonts.html and in the privacy policy of Linotype www.linotype.com/de/2061-18846/datenschutz-richtlinien.html , or the web font end user license agreement www.linotype.com/de/2061-33353/web-font-endnutzerlizenzvertrag.html