A. Privacy statement www.lemarit.com
Thank you for your interest in our website. The protection of your personal data (hereinafter also referred to as “data”) is of great and very important concern to us. In the following we would therefore like to inform you in detail about which data is collected when you visit our website and how we use our offers there and how we process or use this data in the following. We would also like to inform you about the accompanying protective technical and organisational measures we have taken.
Controller, contact, data protection officer
Controller pursuant to Art. 4 (7) EU General Data Protection Regulation (“GDPR”) is
It is represented by the Managing Director Martin Küchenthal.
You can also contact us through the email address firstname.lastname@example.org.
In case of questions or comments concerning this privacy statement, please contact our data protection officer:
Herr Rechtsanwalt Thomas Rickert
c/o Rickert Rechtsanwaltsgesellschaft mbH
Legal bases for processing of your data
If the legal basis is not listed in the privacy statement, the following applies:
- Insofar as we obtain the data subject’s consent for processing, Art. 6 (1) Clause 1 lit. a) GDPR is the legal basis.
- In case of processing of personal data necessary for the fulfillment of a contract, the legal basis is Art. 6 (1) Clause 1 lit. b) GDPR.
- Insofar as processing of personal data is necessary for the fulfillment of a legal obligation, the legal basis is Art. 6 (1) Clause 1 lit. c) GDPR.
- In the event that vital interests of the data subject or of another natural person require a processing of personal data, the legal basis is Art. 6 (1) Clause 1 lit. d) GDPR.
- If processing is necessary to safeguard legitimate interests of our company or of a third party and if the interests, basic rights, and basic freedoms of the data subject do not outweigh these legitimate interests, the legal basis for processing is Art. 6 (1) Clause 1 lit. f) GDPR.
The data processed by us is erased or its processing is restricted in compliance with statutory requirements, in particular Art. 17 and 18 GDPR. Unless expressly stated otherwise within the scope of this privacy statement, we erase data stored by us as soon as such is no longer required for the intended purpose. Data will be retained beyond the time at which the purpose ends only if such data is necessary for other, legally permissible purposes or if the data must continue to be retained due to statutory retention periods. In these cases, processing is restricted, i.e. it is blocked, and will not be processed for other purposes.
Server log data
For the informational use of our Internet presence it is generally not required that you actively disclose your personal data. In this case we instead collect and use only the data automatically transmitted to us by your Internet browser. This includes:
- date and time of your retrieval of one of our websites;
- your browser type;
- your browser settings;
- utilized operating system;
- your most recently visited site;
- the transferred data volume and access status (file transferred, file not found, etc.);
- your IP address.
The data is stored on our servers. This data is not stored together with other personal data except those stated above. The temporary storage of the IP address by the system is necessary to allow delivery of the website to the user’s computer. For this purpose, the IP address of the user must be stored for the duration of the session. We create so-called log files from this data. The created log files are stored to safeguard the security of our IT systems. A personal evaluation of the data, in particular for marketing purposes, does not take place.
Processing of the above data is required for technical reasons to offer a website pursuant to Art. 6 (1) Clause 1 lit. b), lit. c), lit. f) GDPR in order to correctly display our website to you and to safeguard stability and security. In particular, log files are created to verify attacks on our systems. We erase server log data from our systems at the latest after 7 days.
Customer Area (Login)
The use and registration of our customer area is restricted to existing customers. If you are interested in our products and services, please contact us under the respective product descriptions. Our employees will inform you which data we require from you to provide online access. To use the customer area by you or your employees it is then necessary that you choose your personal access data. The processing of data requested during registration via mandatory fields or other mandatory data required for setting up access is carried out on the basis of Art. 6 (1) 1 lit. b GDPR. The processing of information provided voluntarily is based on Art. 6 (1) 1 lit. a GDPR. If you wish to delete your account, you can send us an e-mail to the above contact details. Data which we are legally obliged to store shall remain unaffected by the deletion.
In case of contacting by email or telephone, your data is processed, depending on the content of the request, for purely informational inquiries based on your (assumed) consent pursuant to Art. 6 (1) Clause 1 lit. a) GDPR or pursuant to Art. 6 (1) Clause 1 lit. b) GDPR, insofar as contacting is connected to contractual performance obligations. In case of contacting through our form, we require only your company’s name, an email address, a name of a contact person and a telephone number in order to reply to you as soon as possible. Your information may be stored in a customer relationship management system (“CRM system”). This also includes the analysis of your user behavior on our website and serves to optimize our offers for you.
We will delete your contact inquiries from our active systems immediately after final processing, unless legal permissions or storage obligations permit or require further storage.
Processors and data recipients
In some cases, we use external service providers to process your data, which are bound to our instructions. They were selected and commissioned by us with care and they are monitored regularly. The orders are based on data processing agreements pursuant to Art. 28 GDPR. The processor does not independently process data for its own purposes. We use a hosting provider to operate this web offer, who processes inventory data, contact data, content data, contract data, utilization data, metadata, and communication data from visitors or customers of this web offer within the scope of our legitimate interest in an efficient and secure provision of this online offer pursuant to Art. 6 (1) Clause 1 lit. f), 28 GDPR.
Pursuant to statutory provisions, you can assert the following rights vis-à-vis the data processing controller free of charge:
- Right to access by the data subject (Art. 15 GDPR);
- Right to rectification and erasure (Art. 16 and Art. 17 GDPR);
- Right to restriction of processing (Art. 18 GDPR);
- Right to data portability (Art. 20 GDPR);
- Right to object (Art. 21 GDPR).
You also have the right to complain to a data protection supervisory authority concerning the controller’s processing of your personal data.
Social media presences
We maintain presences in social media in order to communicate with customers and prospective customers there and to keep them informed. When retrieving the relevant networks, the terms and conditions of the operators apply.