Data protection
1. Information about the collection of personal data
With this declaration on data protection, we inform you about the collection of personal data when using our website. Personal data are all data that can be related to you personally, e.g. B. Name, address, email addresses, user behavior.
The person responsible within the meaning of Article 4 (7) GDPR is Hof Kornrade, Gabriel Leithaus, Am Bergschlösschen 10 in 09633 Halsbrücke OT Hetzdorf, phone 035209/22793, email info@hof-kornrade.de (see also imprint).
If we use contracted service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail below about the respective processes. We also state the specified criteria for the storage period.
2. Collection and use of personal data (processing purposes and legal basis)
Automated decision making and profiling
As part of this data protection declaration, we will inform you as soon as we carry out automated decision-making processes, including profiling, and provide meaningful information about the logic involved and the scope and intended effects of such processing for the data subject.
Obligation to provide personal data
We are not obliged to provide personal data.
2.1. Collection when using the website for information purposes
If you only use our website for information purposes (if you do not register or otherwise provide us with information), we only collect the personal data that your browser transmits to our server. If you want to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security. The storage period is 90 days.
The legal basis for their collection is Art. 6 para. 1 sentence 1 lit. f GDPR.
The following data are collected:
IP address
Date and time of the request
Time zone difference to Greenwich Mean Time (GMT)
Content of the request (specific page)
Access status / HTTP status code
amount of data transferred in each case
Website from which the request comes
Browser
Operating system and its surface
Language and version of the browser software
2.2. Cookies
(1) We use cookies on our website, i.e. that cookies are stored on your computer when you use our website. Cookies are small text files that are saved on your hard drive and assigned to the browser you are using and through which certain information flows to the location that sets the cookie (here by us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the website more user-friendly, more effective and more secure. The legal basis for the use of cookies is Art. 6 Para. 1 S. 1 lit. f GDPR.
(2) We use the following types of cookies, the scope and functionality of which are explained below:
Transient cookies:
Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This enables your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
Persistent cookies:
Persistent cookies are automatically deleted after a specified time, which may differ depending on the cookies. You can delete the cookies in the security settings of your browser at any time.
(3) Most browsers are set to automatically accept cookies. You can configure your browser settings according to your wishes and e.g. refuse to accept third-party cookies or all cookies. You can prevent cookies from being saved by making the appropriate settings. You can also delete the cookies that have already been saved in your browser. We point out that this can limit the functionality of our website.
(4) We use cookies to identify you for subsequent visits if you have an account with us. Otherwise you would have to log in again for each visit.
3.1. Other forms of use of our website
Webshop
(1) When placing an order in our web shop, it is necessary for the conclusion of the contract that you provide your personal data, which we need to process the order. The mandatory information required for the execution of the contracts is marked separately, further information is voluntary. We collect, process and store the personal data you have entered only to the extent required and legally permissible for the execution of the contracts. We only use the data you provide to process the order. The legal basis for processing is Art. 6 Para. 1 b) GDPR.
(2) Passing on the data to third parties
For the fulfillment of the contract according to Art. 6 Para. 1 Clause 1 b) GDPR, your address data (name and address) will be passed on to the shipping company commissioned with the delivery. We transmit your data to DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany or DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, Germany.
Depending on the payment service provider and the payment method you selected in the ordering process, your data will be passed on to fulfill the contract
to the payment service provider commissioned with the payment processing.
The payment service provider is responsible for your payment details. Information in particular about the responsible office of the payment service providers, the contact details of the data protection officers of the payment service providers and the categories of personal data that are processed by the payment service providers can be found at the given Internet address.
VR Bank Mittelachsen
Give us a SEPA direct debit mandate, we'll send it
Name first Name
IBAN and BIC
Information on the assignment of the transaction and the invoice amount to:
VR-Bank Mittelachsen eG, Korngasse 7-9, 09599 Freiberg, Tel .: (03731) 374 0, Fax: (03731) 374 143 or (03431) 727 140, E-Mail: info@vr-bank-mittelachsen.de
PayPal
When paying via PayPal, we give your payment details to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.
Further processing will only take place if you have given your consent or if you have a legal permit.
(3) Due to commercial and tax regulations, we are obliged to store your address, payment and order data for a period of ten years. However, after two years, we restrict processing, i.e. H. Your data will only be used to comply with legal obligations.
(4) To prevent unauthorized access by third parties to your personal data, in particular financial data, the ordering process is encrypted using TLS technology.
Customer account
You can voluntarily create a customer account on our website at https://www.wollfaser.de/shop.php?do=CreateRegistree, through which we can save your data for later purchases. For this we need the data, which you can recognize in the input mask. The mandatory entries are the information on
Salutation, last name, first name
E-mail address
Street, house number, postcode, city, country
The information is voluntary
Company name, VAT ID no.
Phone number
Fax number
We only process the data entered in the customer account in order to facilitate the use of our online shop, since it is no longer necessary to enter your data for an order after logging in. Your customer account is also visible after registration and login. The legal basis for processing the data is Art. 6 Para. 1 S. 1 b) GDPR.
When you create a customer account, the data you provide will be stored revocably. You can change or adjust this information at any time. You can always delete all other data, including your user account, in the customer area.
Your data will be stored by us until you object to further use or delete your data.
Contact Form
If you send us inquiries on the "Contact" page using the contact form provided, only the personal data that is made available as part of the request will be collected. Mandatory fields are marked accordingly, since we absolutely need this data to process your contact request.
As part of the contact request, we collect the following data:
Surname
E-mail address
The data you provide will be used to answer your request. The legal basis for the processing of the data is Art. 6 Para. 1 S. 1 f) GDPR.
We delete the data in this context after your request has been processed and the matter is settled. Alternatively, we restrict processing if there are statutory retention requirements.
To prevent unauthorized access by third parties to your personal data, especially financial data, the connection is encrypted using TLS technology.
Contact by email
When you contact us by e-mail, the data you provide (your e-mail address and your name) will be saved by us to answer your questions. The legal basis for the processing of the data is Art. 6 Para. 1 S. 1 f) GDPR.
We delete the data in this context after your request has been processed and the matter is settled. Alternatively, we restrict processing if there are statutory retention requirements.
3.2. Social plugins
Use of social media plug-ins
(1) We currently use Facebook as a social media plug-in. We use the so-called two-click solution. This means that when you visit our website, no personal data is initially passed on to the providers of the plug-ins. We give you the opportunity to communicate directly with the provider of the plug-in using the "facebook" button. The plug-in provider only receives the information that you have called up the corresponding website of our online offer if you click on the marked field and thereby activate it. In addition, the under 2.1. and 2.2. data mentioned in this declaration. In the case of Facebook, according to the respective provider in Germany, the IP address is anonymized immediately after collection. By activating the plug-in, personal data is transmitted from you to the respective plug-in provider and stored there (with US providers in the USA). Since the plug-in provider collects data using cookies in particular, we recommend that you delete all cookies using your browser's security settings before clicking.
(2) We have no influence on the data collected and data processing operations, nor are we aware of the full scope of the data collection, the purposes of the processing or the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.
(3) The plug-in provider saves the data collected about you as usage profiles and uses them for the purposes of advertising, market research and / or the design of its website according to needs. Such an evaluation is carried out in particular (also for users who are not logged in) to display needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right. Via the plug-ins, we offer you the opportunity to interact with social networks and other users, so that we can improve our offer and make it more interesting for you as a user. The legal basis for using the plug-ins is Art. 6 Para. 1 S. 1 lit. f GDPR.
(4) The data is passed on regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected from us will be assigned directly to your existing account with the plug-in provider. If you press the activated button and e.g. For example, if the page is linked, the plug-in provider also stores this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, but especially before activating the button, as this way you can avoid being assigned to your profile by the plug-in provider.
(5) Further information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the data protection declarations of these providers given below. There you will also find further information about your rights and setting options to protect your privacy.
(6) Addresses of the plug-in provider and URL with their data protection information:
a) [Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; Further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http: //www.facebook .com / about / privacy / your-info # everyoneinfo. Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
3.3. Integration of Google Maps
(1) We use Google Maps on this website. This enables us to show you interactive maps directly on the website and enables you to conveniently use the map function. The legal basis for the integration of Google Maps is Art. 6 Para. 1 S. 1 lit. f GDPR.
(2) When you visit the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the under 2.1. and 2.2. data mentioned in this declaration. This takes place regardless of whether Google provides a user account that you are logged in to or whether there is no user account. If you are logged in to Google, your data will be assigned directly to your account. If you do not want your profile to be assigned to Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and / or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of these user profiles, and you must contact Google to exercise them.
(3) Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the privacy policy of the provider. There you will also find further information about your rights and setting options to protect your privacy: http://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
4. Information, deletion, correction, restriction of processing, right to object, data portability
You have the following rights towards us with regard to your personal data:
Right to information
Right to correction or deletion
Right to restriction of processing
Right to object to processing
Right to data portability
In this case, we ask you to contact the body responsible for data processing:
Address: Hof Kornrade
Am Bergschlösschen 10, 09633 Halsbrücke OT Hetzdorf
Responsible: Gabriel Leithaus
Telephone: 0335209/22793
Email: info@hof-kornrade.de
5. Objection or revocation against the processing of your data
5.1.
If the processing of your personal data is based on consent, you have the right to withdraw your consent at any time with future effect. Such a revocation affects the admissibility of processing your personal data after you have given it to us.
5.2.
If we base the processing of your personal data on the balancing of interests, you can object to the processing. This is the case if the processing is in particular not necessary to fulfill a contract with you. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and will either discontinue or adjust the data processing or show you our compelling reasons worthy of protection, on the basis of which we will continue the processing.
5.3.
You can object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us about your objection to advertising using the following contact details:
Address: Hof Kornrade
Am Bergschlösschen 10, 09633 Halsbrücke OT Hetzdorf
Responsible: Gabriel Leithaus
Telephone: 0335209/22793
Email: info@hof-kornrade.de
6. Right to complain
You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
In case of doubt, the German conditions on privacy and data protection apply.