Privacy policy
1. General information
The following notices provide a general overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified.
Data collection and processing on our website
Data processing on this website is carried out by us, the website operator. You can find our contact details below under “Responsible party” or refer to the imprint of this website.
On the one hand, your data is collected by you providing it to us. This can be, for example, the data that you enter in our contact form. Other data is collected automatically or with your consent when you visit the website by our IT systems – mainly technical data (e.g. Internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website. Some of this data is collected to ensure the technically error-free provision of our website. Other data may be used, among other things, to analyze your user behavior on our website.
Data protection
As a matter of principle, we treat your personal data confidentially and in accordance with the applicable statutory data protection regulations and this data protection declaration.
We would like to point out that data transmission on the Internet (e.g. via contact forms, e-mails or in chats) can have security gaps. Complete protection of data against access by third parties is not or hardly possible. The measures provided and taken by us to protect your personal data at least meet the current standard, so that your data, insofar as it is collected and processed by us, is protected in the best possible way.
If you have any further questions about the general protection of your data, you can refer to the following privacy policy or contact us personally.
Storage period
Unless we specify a specific storage period, your personal data will remain with us until the purpose for processing the data no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, we will delete your data unless we have other legal grounds for storing your data or are required to comply with legal regulations to the contrary.
What rights do you have regarding your data?
You have the right at any time to receive information free of charge about the origin, recipient and purpose of your stored personal data. You also have a right to request the correction or deletion of this data. If you have given us additional consent for data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with a supervisory authority or with the supervisory authority responsible for us.
For further details, please refer to the following privacy policy or contact us directly if you have any questions about how your data is handled by our company.
Objection to advertising e-mails
We hereby expressly object to the use of the contact data published by us within the framework of the imprint obligation for the purpose of sending advertising and information material that has not been expressly requested. We expressly reserve the right to take legal action against the sender or client in the event of infringement (e.g. in the case of unsolicited sending of advertising information, spam e-mails, or similar).
2. Mandatory information on data protection
Note on the responsible entity
The responsible body is a natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
The responsible body for data processing on this website is:
DRB OPERATIONS GmbH
Vilbeler Landstr. 255
60388 Frankfurt a.M.
You can reach us at the following e-mail address: office@drb-operations.de
SSL or TLS encryption on our website
For security reasons and to protect the possible transmission of personal data and confidential content, our website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of your browser displays “https://” and by the lock symbol in front of it.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. For this purpose, it is sufficient to send us an informal message by e-mail, for example. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
General information on the right to object to data collection in special cases and to direct marketing (Art. 21 DS-GVO)
IF DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 ABS. 1 LIT. E OR F DS-GVO, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION. THIS ALSO APPLIES TO ANY SO-CALLED “PROFILING” BASED ON THESE PROVISIONS. “PROFILING”. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS DATA PROTECTION DECLARATION. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA CONCERNED UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING IS FOR THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS (ARTICLE 21(1) DS-GVO).
SHOULD YOUR PERSONAL DATA BE PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING. THIS ALSO APPLIES TO THE SO-CALLED “PROFILING”, INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT ADVERTISING. SHOULD YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (ARTICLE 21 (2) OF THE GERMAN DATA PROTECTION ACT).
Right of appeal to a competent supervisory authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right of appeal is without prejudice to other administrative or judicial remedies.
The data protection authority responsible for us can be contacted by post at the following address in the event of a complaint:
The Hessian Commissioner for Data Protection and Freedom of Information
P.O. Box 3163
65021 Wiesbaden
The right to data portability
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request direct transfer of the data to another controller, this will only be done insofar as it is technically feasible and the effort involved is in a justifiable relationship to this right.
Information, deletion and correction
Within the framework of the applicable legal provisions, you have the right at any time to free information about your personal data stored by us, as well as its origin and, if applicable, recipients, the purpose of data processing and, if applicable, you have a right to correction or deletion of this data. For this purpose, as well as for further questions regarding the processing of your personal data by us, you can contact us at any time using the contact option provided above.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. The right to restriction of processing exists in the following cases:
- If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data by us happened/is happening unlawfully, you may also request that we restrict the processing of your data instead of deleting it.
- If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request restriction of the processing of your personal data instead of erasure.
- If you have lodged an objection pursuant to Article 21 (1) DS-GVO, a balancing of your and our interests must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data by us, this data – apart from its storage – may only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the EU or a Member State.
3. Hosting of our website
External hosting
Our website is provided (“hosted”) by the external service provider (a so-called “hoster”) ALL-INKL.COM (hereinafter “ALL-INKL.”), Hauptstr. 68 in 02742 Friedersdorf. The servers used for this purpose are also managed by this external hoster. Personal data collected on our website is stored in encrypted form on the hoster’s servers. The data stored includes:
IP addresses
Website accesses by IP addresses
Contact details
Names
Meta and communication data
and other data that may be collected through our website and are necessary for the operation of our website and/or offered services and/or products.
Further information on data protection at ALL-INKL. can be found, for example, at:
https://all-inkl.com/info/datenschutzinformationen
The use of the external hoster is for the purpose of business management, the fulfillment of contracts with our potential and existing customers (Art. 6 para. 1 lit. b DS-GVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DS-GVO).
Conclusion of a contract for order processing
In order to ensure data protection-compliant processing for the users of our website, we have concluded an order processing contract with our hoster.
4. Data collection by us and on this website
Server log files
The servers of the external hoster we use automatically store information in so-called server log files, which your browser automatically transmits to us. These are among others:
IP of the user
Timestamp (date and time of access)
Type of request (access)
Client information (type of client, client version)
User’s operating system (device, OS version of the device if applicable)
Referrer information (i.e. the source of the access)
We do not merge this data with other data sources.
The collection of this data is based on Art. 6 (1) lit. f DS-GVO. We, as the website operator, have a legitimate interest in the technically error-free presentation and optimization of our website – for this purpose, the server log files must be collected.
Inquiries by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, your inquiry and all personal data resulting from it (e.g. your name and your contact details given to us) will be stored and processed by us for the purpose of processing your inquiry. We do not pass on this data at any time without your consent.
The processing of this data is based on Art. 6 (1) lit. b DS-GVO, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6 (1) (f) DS-GVO) or on your given consent (Art. 6 (1) (a) DS-GVO) if we obtain this from you.
The data you thereby provide will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for this data storage no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions – in particular legal retention periods – remain unaffected.
5. Plugins and tools
Google Web Fonts
This site uses so-called “web fonts” provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This enables Google to know that this website has been accessed via your IP address. The use of Google Web Fonts is based on Art. 6 (1) lit. f DS-GVO. The website operator has a legitimate interest in the uniform presentation of the typeface on his website. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 (1) lit. a DS-GVO. Consent can be revoked at any time.
If your browser does not support web fonts, a standard font will be used by your computer.
You can find more information about Google Web Fonts at:
https://developers.google.com/fonts/faq
and in Google’s privacy policy at:
https://policies.google.com/privacy?hl=de