Privacy Policy

PRIVACY POLICY

Privacy Policy

1. General Information

1.1 Personal Data (Art. 4 No. 1 GDPR

Data privacy law protects personal data (hereinafter referred to as data). Personal data means any information relating to an identified or identifiable natural person. Therefore, personal data can be names, addresses, profession, e-mail addresses, state of health, income, marital status, genetic traits, phone numbers and even user data as IP-addresses.

 

1.2 Controller (Art. 4 No. 7 GDPR)

The Controller of the data processing of your data on this website is the Peter Kröner GmbH (hereinafter referred to as the controller or operator). The contact details are:

Peter Kröner GmbH

Represented by: Ute and Peter Kröner

ID for sales tax according to: §27 a Umsatzsteuergesetz: DE149321321

HRB 2615 Montabaur

Company location: 56379 Winden

Kirchstraße 1h

D-56412 Stahlhofen

Phone: +49(0)2602 5278

Fax: +49(0)2602 17 992

E-Mail: info@peter-kroener.de

 

1.3 Data protection officer

The controller is not legally obliged to appoint a data protection officer.

 

1.4 Right to object

If you wish to object in data processing in general or in partial processing regarding you, please use the contact details described in the side notice.

 

2. Scope and Processing of Personal Data, Legal Basis and Provision of Data, Duration of Storage

2.1 Access and Use of the Website

Any time you access the website, your user data will be transferred via your web browser and stored in server log files. These data records contain the following data:

  • Date and time of access
  • Name of the website
  • IP-address
  • Referrer-URL
  • Quantity of transferred data
  • Information about your web browser

 

The log files are analysed by the operator in anonymised form to continue to improve the website and make it more user-friendly, to detect and rectify errors more quickly and to control server capacities. For example, the operator can determine the preferred times of access to the website and thus make available appropriate data volumes.

The Controller needs the data in order to grant access to the website. The processing is necessary during the access.

 

The legal admissibility of such processing is based on Art. 6 para. 1 f) GDPR according to which processing is lawful when it is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. The legitimate interests of the controller involve the provision of a website to convey inform and offer services via the internet.

Provision of the data is necessary to invoke the operator’s website. Failure to provide the data means that the content of the website can no longer be viewed.

The provision of the data is neither required by law nor by contract. However, it is necessary to invoke the operators’ website. Failure to provide means that the website can no longer be invoked and the operator’s services cannot be utilised.

Your IP address is deleted or anonymised upon termination of use. Anonymisation means the IP address is altered so that it cannot or can only with a disproportionate investment of time, cost and labour be attributed to a particular or identified or identifiable natural person.

 

2.2 Contact forms

This website contains a contact form if you wish to contact the operator. This form requires that you provide the following information:

  • Name
  • E-mail-address

You may also provide the following information:

  • Subject

You shall have the opportunity to contact the controller via those forms or other e-mail-addresses displayed on the website. If you choose to send an e-mail to the controller, you may also provide further information about yourself regardless of your e-mail-address.

If you choose to send a fax to the provider, your fax-contact will be displayed to the controller. You may also provide further information about yourself that is seen as personal data.

The legal justification for this data processing is based on Art. 6 Para. 1 b) GDPR, under which processing is lawful when it is necessary for fulfilling a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract. Provision of contact data is contractually prescribed. You are not able to contact the controller if you fail to provide that information.

Personal data in that context will be deleted, unless the controller claims legitimate interests in a further storage. In any case, only those data will be stored that are absolutely necessary to achieve the respective purpose. If possible, personal data will be anonymised.

The above mentioned processing are also justified according to Art. 6 para 1 f) GDPR. The controller can claim legitimate interests in processing personal data via electronic and automated means and to process those data also electronically and automated.

 

2.3 Marketing and Advertising

The controller processes personal data for the purposes of advertising and direct marketing.

The legal justification for this data processing is based on Art. 6 para. 1 f) GDPR, under which processing is lawful when it is necessary to safeguard the legitimate interests of the controller. The legitimate interest of the controller involves the use of personal data for marketing purposes. The controller may use those data to inform existing or future customers,

The provision of data is neither legally required, nor contractually necessary. Failure to provide will not result in any negative consequences.

The provision of data is neither legally required, nor contractually necessary. Failure to provide will not result in any negative consequences. The provider will not use or data for the above mentioned purposes.

Personal data in that context will be deleted, unless the controller claims legitimate interests in a further storage. In any case, only those data will be stored that are absolutely necessary to achieve the respective purpose.

 

2.4 Use of Cookies

The Controller uses cookies in order to collect and store data. Cookies are small data packets that typically consist of letters and numbers. The cookies are stored on a browser whenever you visit a website. Cookies allow the website to recognise your browser again, to track your surfing through various sections of a website and to identify you if visit the website again later. Cookies contain no data that identify you personally but the information about you stored by the operator may be attributed to the data obtained by and stored in the cookies.

Information that the operator obtains through the use of cookies may be used for the following purposes:

  • Recognition of the user‘s electronic device.
  • Records of the user‘s use of the website
  • Improvement of the usability of the website.
  • Analysis of the user’s use of the website
  • Administration of the website
  • Prevention of fraud and improvement of security
  • Individual design of the website concerning the needs of the user.

Cookies do not damage your computer in any way. They do not contain viruses and also do not allow the operator to spy on you. There are two types of cookies.

  • Temporary cookies are automatically deleted when you close your browser (session cookies).
  • In contrast, permanent cookies have a maximum lifetime of up to 20 days. This type of cookie allows your computer to be recognised when you visit the website again later.

Cookies do not harm your Browser. The do not contain viruses, nor do they allow the controller to track or spy your activities.

Using the above described cookies, the controller may reconstruct general usage information in order to provide optimal performance of the website and to improve the usage of the website itself.

Those data will also only be collected in anonymised form. The legal admissibility of such processing is based on Art. 6 para. 1 f) GDPR according to which processing is lawful when it is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. The legitimate interests of the controller involve the provision of a website to convey inform and offer services via the internet. The provision of data is necessary to If you choose not to accept cookies or delete existing cookies, access to the website may be restricted.

 

2.5 reCAPTCHA

This website uses reCAPTCHA, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4. This service is used for safety reasons and in order to distinguish human users to artificial ones. In that context, personal data (such as your IP-address) will be collected and transmitted to Google Ireland. Eventually, personal data concerning you may also be transmitted to Google U.S. In that case, Google Ireland Limited is certified under the EU-US-privacy shield. See https://policies.google.com/privacy/frameworks?gl=de for more information

The legal admissibility of such processing is based on Art. 6 para. 1 f) GDPR according to which processing is lawful when it is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. The legitimate interests of the controller involve the provision of a website to convey inform and offer services via the internet.

The use of reCAPTCHA is seen as a legitimate interest according to Art. 6 para 1 f) GDPR.

Provision of the data is necessary to invoke the operator’s website. Failure to provide the data means that the contact forms cannot be used.

The controller does not store personal data in the context of the use of reCAPTCHA. Google will erase your personal data, unless Google claims its own legitimate interests for a further storage.

In any event, only those data will be stored, that are absolutely necessary for achieving the respective purpose. As far as possible, personal data will be anonymised. Google will store personal data according to its own privacy policy. you can find further instructions in Googles privacy policy.

 

3. Right to Access, Rectification, Erasure, Restriction, Objection and Data Portability

3.1 Right to Access (Art. 15 GDPR)

Upon request, the operator shall provide information as to whether your data is being processes. The operator endeavours to respond to requests for information expeditiously.

 

3.2 Right to Rectification (Art. 16 GDPR)

You have the right to request from the controller without undue delay the rectification of inaccurate personal data concerning you.

 

3.3 Right to Erasure (Art. 17 GDPR)

You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller has the obligation to erase personal data without undue delay where one of the grounds listed in Art. 17 para. 1 a)-f) applies.

 

3.4 Right to Restriction of Processing (Art. 18 GDPR)

You have the right to obtain from the controller the erasure of personal data concerning you without undue delay and the controller has the obligation to erase personal data without undue delay where one of the grounds listed in Art. 17 para. 1 a)-f) applies.

 

3.5 Right to Objection (Art. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data concerning that is based on Art. 6 para. 1 e) or f), including profiling based on those provisions. The controller shall no longer process your personal data unless the controller demonstrates compelling legitimate grounds for the processing that override your interests, rights and freedoms or if processing is used for the establishment, exercise or defence of legal claims.

Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.

Where personal data is processed for scientific or historical research purposes or statistical purposes pursuant to Art. 89 para. 1 GDPR, you have the right to object to processing of your personal data on grounds relating to your particular situation, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

Please use the contact address provided in the site notice for your message.

 

3.6 Right to Data Portability (Art. 20 GDPR)

You have the right to receive information about your personal data that you have provided to a controller, in a structured, commonly used and machine-readable format and you have the right to transmit these data to another controller without hindrance from the controller to which the personal data have been provided, so long as the processing is based on consent pursuant to Art. 6 para. 1 a) GDPR, Art. 9 para. 2 a) GDPR or on a contract pursuant to Art. 6 para. 1 b) GDPR and if the processing is carried out by automated means.

 

4. Revocation of your Consent

If you have provided consent to the processing of your personal data and withdraw this consent, processing that has taken place until the time of revocation remains unaffected.

 

5. Right to appeal, Art. 77 GDPR

You have the right to lodge an appeal with the competent supervisory authority at any time.

 

6. Recipients

Data obtained as a result of the access and use of this website and information you provide when you make contact are transmitted to the operator’s server and stored there. Otherwise, your data may be forwarded to the following categories of recipients:

  • Data processing services (e.g. data centres, IT service providers, software providers)
  • Contractual partners of the operator (e.g. shipping providers, banks, tax consultants, carriers, courier-services)
  • Group companies commissioned to provide services
  • Public authorities

Any transfer of your personal data is either covered by a legal basis or is performed in the context of a data processing agreement according to Art. 28 para, 3 GDPR.

The controller does not intend to transfer your data to third party countries.

 

7. Links to Third Party Websites

Visiting this website may display content that is linked with the website of a third party. The operator has no access to the cookies or other functionalities that are used by third-party websites and cannot control them. Such third-party sites are not subject to the data privacy conditions of the operator.