Privacy policy (on our web site)

 

In the following we will inform you on how, to what extent and for what purpose personal data is collected on our website. We adhere to the EU general data protection regulation (GDPR) in content because the data protection provisions of the German Telemedia Act (TMG) will no longer be applicable as of 05-25-2018.

 

General information on data protection law

For information on the company responsible for this website (and general contact data), see imprint.

If you wish to contact our data protection officer, you may do so by sending an email to datenschutzbeauftragter.rheingold-salon@securedataservice.de. You may as well contact Mr. Nicholas Vollmer calling +49 (0)2166 / 96523-30 or writing a letter to Priorstr. 63, D-41189 Mönchengladbach. Your matter will be treated confidentially. Our data protection officer is not responsible for the processing of your particular request (e. g. provide information); he will rather be at your disposition for confidential and general legal issues.

In accordance with article 77 of the GDPR you have the right to lodge a complaint with the relevant supervisory authority. These are the contact data: LDI NRW, Kavalleriestr. 2-4, 40213 Düsseldorf, GERMANY, Tel. +49 (0)211 / 38424-0, www.ldi.nrw.de.

Don’t hesitate to get in touch with us before contacting the supervisory authority. Our company’s highly competent data protection officer will deal with your issue much faster and as rigorously. Should we not be able to help you, you will still have the chance you to contact the supervisory authorities then.

 

You are obviously granted numerous personal rights which we will be pleased to fulfill:

  • Access to information
    In the data privacy statement at hand, we are complying with our obligation to provide information.
  • Rectification
    You have the right to obtain the rectification of inaccurate data on your person.
  • Erasure
    You have the right to request the erasure of your personal data unless one of the numerous exceptions listed in the GDPR applies.
  • Restriction of processing
    You have the right to request that your data not be actively used (e.g. if you have doubts on the data’s accuracy).
  • Right to object to our “legitimate interests”
    If in your particular case there are interests that override our company’s interests, you have the right to object to the processing of your data. In many cases this, you may do so by “opting out”.
  • Data portability
    If you actively provide data and the processing of this data is based on the legal ground of (a) your consent or (b) a contract, you have the right to receive this data in electronic format.
    Retrieval of information on this website
    In the course of simply “surfing” our website, the following data are collected and processed on your behalf for transmission of websites.
    Date and hour (This allows an assignment in time used e. g. to locate technical problems.)
  • IP address (The collection of your IP address is necessary to enable the web server to send you the information requested.)
  • Data requested (Which file do you request? In which subdirectory is it stored?)
  • The port through which you request the data (Your browser automatically sends this information. This port will refer you to the requested website.)
  • The referring web site (Some browsers also send the URL of the previously visited website each time.)
  • Name of the browser you use when surfing the Internet (Your browser sends this information automatically. We possibly use this information in order to ensure an ideal optical display of contents. Your browser may also send further information, for example on installed programs.)
  • Data retrieval status (This status shows us if the requested website exists and if it was successfully delivered to you.)
  • Miscellaneous: For the sake of completeness it should be noted that your browser may possibly send further information (such as name of the browser, screen resolution, etc.) to our web server. Of course, this is something beyond our control.

The above mentioned data are stored in the web server’s memory for fractions of a second only. This process is absolutely necessary to make a website available. Therefore, we have a legitimate interest herein pursuant to article 6 (1f) of the GDPR. The web server is run by a European operator.

Due to the nature of Internet, these data are inevitably processed on a great number of servers before your request reaches our web server. This is why data may also be collected and processed in “third countries” (e. g. the US). Our company has no influence on this.

 

Since our web site consistently uses internal SSL encryption for data transfer, the operators of global web servers have no access to the information transmitted.

Additionally, the above mentioned files are stored for a limited period of time in the form of log files to make sure that technical issues (or hacker attacks) can be analyzed. If there are no technical problems (or hacker attacks), nobody will open these files. These log files are important when it comes to proving criminal conduct before the law enforcement authorities; in this respect we have a “legitimate interest” pursuant to article 6 (1f) of the GDPR.

 

Contact form

The contact form allows you to request information in a fast and unbureaucratic way. Please understand that we ask for your specific data; from experience we know that this is the only way to provide you with the precise information.

In this context, data collection is based on our “legitimate interest”, pursuant to article 6 (1f) of the GDPR, of facilitating easy and smooth communication, which fosters our business purposes. Should a future contractual relationship arise from the contact form, the pre(-) contractual task fulfillment should also be mentioned pursuant to article 6 (1b) of the GDPR as a legal basis. If you do not wish to reveal this data in the contact form, please contact us some other way, e.g. by phone.

(It might be interesting for you to know that the obligation of consent regarding the contact form, which might have applied in the past, does not exist anymore as the section it was based on, § 12 paragraph 1 of the TMG (telemedia law) is not applicable anymore.)

Data entered in the contact form has no SSL encryption and is therefore not confidential. If total confidentiality, however, is important for you, please contact us by email; (our email server supports TLS encryption as long as yours does so too.)

After sending your email containing the respective data of the contact form, there will be no data left on the web server.

In case you want us to erase the thereby resulting email, please let us know. We will be pleased to do so if no serious grounds (e. g. laws) prevail.

 

Cookies

Cookies are small text files which are left on your fixed disk by your browser. This serves several purposes which make it possible to adapt a web site to the users’ necessities.

It is important to know how to disable and erase cookies. For further instructions check the following link or see on www.youronlinechoices.com.

With regard to storage period and access rights there are different types of cookies:

Session cookies of short duration

This kind of cookies do not represent a risk in the sense of data protection and  mainly serve design purposes of our own website. The legal basis is our “legitimate interest” pursuant to article 6 (1f) of the GDPR. As soon as you close the browser, these cookies are deleted.

Cookies we do not use:

1. Website-specific long-term cookies

These cookies allow our website to recognize your browser on the long term and contents can be customized even “tomorrow” or “next” week.

We do not employ this kind of cookies.

2. Third-party long-term cookies

These cookies are readable and writable for us and also for other websites. Therefore, also other services have access to these data which is particularly interesting for customized advertisement and for “social network” connection.

3. Google Analytics

Google sets cookies in the frame of our website’s pseudonymized usage profiles. These are only used for our internal analysis.

 

Statistical analysis of the use of our website (Google Analytic)

The statistical analysis of how visitors use our website is of great economic importance for our company. Our aim is not to analyze a particular person’s behavior but to learn more about general statistical aspects: on which page do users enter our website? How many mouse clicks does an average user execute on our website?

You may have heard of the German data protection conference’s position paper which addresses the issue “consent” in the context of “tracking mechanisms and user profiles” under number 9.

In our view (and not only ours) the abovementioned position paper does not mean that we need your consent for our internal statistics of website usage. We agree to the article 29 data protection group’s opinion expressed in the working paper -194 (chapter 4.3, page 10) according to which your rights and freedoms are not at risk if we act with due caution. In the above mentioned position paper, also regulators explicitly agree to this European interpretation of the law.

 Be assured that the findings of these statistics do not contain any personal data. These statistics are of utmost importance for our company and we consider this a “legitimate interest” pursuant to article 6 (1f) of the GDPR. If you do not agree you are naturally free to take the opt-out option on our site.

This website uses Google Analytics, a web analysis service by Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For further information see here.

Google Analytics uses so called “cookies” which are text files which are stored on your computer and enable us to analyze your use of our website. The information on your website usage which the cookie generates are generally transmitted to a Google server in the US and stored there. In case you have activated IP anonymization on this website, your IP address, however, is previously truncated by Google within the member states of the European Union or in other contracting states of the European Economic Area. Only in exceptional cases the entire IP address is transmitted to a Google server in the USA and truncated there. On behalf of this website’s operator, Google will use this data in order to analyze the use you make of this website, to issue reports on website activities and to deliver the website operator further services related with website and internet use. The IP address transmitted from your browser in the context of Google Analytics will not be brought together with other Google data. You can block the storage of cookies in the settings of your browser software; however, we inform you that this will probably mean that you may not be able to use all functions of this website to their full extent. Furthermore, you can avoid the collection of data generated by the cookies in relation to your use of this website by downloading and installing the browser plug in available under the following link: //tools.google.com/dlpage/gaoptout?hl=de.

 

 

 

 

DISCLAIMER

IMPRINT

© RHEINGOLD SALON GMBH & CO. KG 2018