Data protection

Contents

  1. Objective and responsible body
  2. Basic information on data processing
  3. Processing of personal data
  4. Collection of access data
  5. Cookies, range measurement & services of third parties
  6. User rights and deletion
  7. Changes to the privacy policy
  8. SSL and/or TLS encryption
  9. Contact form
  10. Request by e-mail, telephone or fax

1. Objective and responsible body

This Privacy Policy clarifies the nature, scope and purpose of the processing (including collection, processing, use and consent) of personal information within our online offering and the related websites, features and content (collectively referred to as "online offer" or "online offer") "Website"). The privacy policy applies regardless of the domains, systems, platforms, and devices (such as desktop or mobile) on which the online offering is being run.

The provider of the online offer and the data protection officer is CODASA INDUSTIRES, Ulrich Schmidt, Haldenstr. 18, 79790 Küssaberg (hereinafter referred to as "provider", "we" or "us"). For the contact possibilities we refer to our imprint.

The term "user" includes all customers and visitors of our online offer. The terms used, such as "Users" are to be understood gender-neutral.

2. Basic information on data processing

We process personal data of the users only in compliance with the relevant data protection regulations in accordance with the requirements of data minimization and data avoidance. This means that the data of the users are processed only if a legal permission exists, in particular if the data for the performance of our contractual achievements as well as on-line services are required, or prescribed by law or in the presence of a consent.

We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are complied with and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons protect.

Insofar as content, tools or other means from other providers (hereinafter collectively referred to as "third party providers") are used in the context of this privacy policy and their registered office is located abroad, it can be assumed that data will be transferred to the states of residence of the third party providers , The transfer of data to third countries takes place either on the basis of a legal permission, the consent of the users or special contractual clauses, which ensure a legally required security of the data.

3. Processing of personal data

In addition to the use expressly stated in this privacy policy, the personal data are processed for the following purposes on the basis of legal permissions or user consent:

  • The provision, execution, maintenance, optimization and safeguarding of our services, services and user services;
  • Ensuring effective customer service and technical support.

We only transfer users' data to third parties when necessary for billing purposes (for example, to a payment service provider) or for other purposes if necessary to meet our contractual obligations to users (for example, address information to suppliers).

When contacting us (by phone or e-mail) the details of the user are stored for the purpose of processing the request as well as in the event that follow-up questions arise.
Personal data will be deleted if they have fulfilled their purpose and deletion does not conflict with any retention requirements.

4. Collection of data

Personal data

We collect your data as a result of your sharing of your data with us. This may, for instance be information you enter into our contact form.
Our IT systems automatically record other data when you visit our website. This data comprises primarily technical information (e.g. web browser, operating system or time the site was accessed). This information is recorded automatically when you access our website.
Our website is offered with the support of Host Europe GmbH, so that the user enters their server offer when using our website. The privacy policy of Host Europe GmbH can be found Host Europe GmbH can be found here.

Access data

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the retrieved web page, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

We use the log data without assignment to the person of the user or other profiling according to the legal provisions only for statistical evaluations for the purpose of operation, security and the optimization of our online offer. However, we reserve the right to retrospectively check the log data if, on the basis of concrete evidence, the legitimate suspicion of unlawful use exists.

5. Cookies, range measurement & services of third parties

Cookies are information transmitted by our web server or third-party web servers to users' web browsers and stored there for later retrieval. The use of cookies in the context of pseudonymous range measurement informs users in the context of this privacy policy.

Until further notice, we do not use cookies on our website. Nevertheless, we would like to point out the following:

The consideration of this online offer is also possible to the exclusion of cookies. If users do not want cookies stored on their machine, they will be asked to disable the option in their browser's system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

There is a possibility to manage many online advertising cookies from companies via the US website
www.aboutads.infoor the EU www.youronlinechoices.com.

It may happen that contents or services of third-party providers, such as maps or fonts from other websites, are included in our online offer. The inclusion of content from third-party providers always requires that the third-party providers perceive the IP address of the users, since they could not send the content to the users' browser without the IP address. The IP address is therefore required for the presentation of this content. Furthermore, providers of third-party content can set their own cookies and process users' data for their own purposes. In the process, user profiles of the processed data can be created. We will use this content as much as possible in a data-saving and data-avoiding manner and will select reliable third-party providers with regard to data security.

The following presentation provides an overview of third-party providers as well as their contents, along with links to their privacy statements, which further notes on the processing of data and, currently. already mentioned here, contradictory possibilities (so-called opt-out) contain:

6. User rights and deletion

Users have the right, upon request, to obtain information free of charge about the personal data that we have stored about them.
In addition, users have the right to correct inaccurate data, revoke consent, block and delete their personal data, and to file a complaint with the appropriate regulatory authority in the event of unlawful processing.

If you would like to exercise any of these rights, please do not hesitate to contact us.

The data stored with us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any statutory storage requirements.

7. Changes to the privacy policy

We reserve the right to change the privacy policy in order to adapt it to changing legal situations, or to changes in the service and data processing. However, this only applies to declarations of data processing. If users' consent is required or elements of the privacy policy contain provisions of the contractual relationship with the users, the changes are only made with the consent of the users.
Users are requested to inform themselves regularly about the content of the privacy policy.

8. SSL and/or TLS encryption

For security reasons and to protect the transmission of confidential content, such as purchase orders or inquiries you submit to us as the website operator, this website uses either an SSL or a TLS encryption programme. You can recognise an encrypted connection by checking whether the address line of the browser switches from “http://” to “https://” and also by the appearance of the lock icon in the browser line.
If the SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.

9. Contact form

If you submit inquiries to us via our contact form, the information provided in the contact form as well as any contact information provided therein will be stored by us in order to handle your inquiry and in the event that we have further questions. We will not share this information without your consent.
Hence, the processing of the data entered into the contact form occurs exclusively based on your consent (Art. 6 Sect. 1 lit. a GDPR). You have the right to revoke at any time any consent you have already given us. To do so, all you are required to do is sent us an informal notification via e-mail. This shall be without prejudice to the lawfulness of any data collection that occurred prior to your revocation.
The information you have entered into the contact form shall remain with us until you ask us to eradicate the data, revoke your consent to the archiving of data or if the purpose for which the information is being archived no longer exists (e.g. after we have concluded our response to your inquiry). This shall be without prejudice to any mandatory legal provisions – in particular retention periods.

10. Request by e-mail, telephone or fax

If you contact us by e-mail, telephone or fax, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We do not pass these data on without your consent.
The processing of these data is based on Art. 6 para. 1 lit. b GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Article 6 (1) a GDPR) and/or on our legitimate interests (Article 6 (1) (f) GDPR), since we have a legitimate interest in the effective processing of requests addressed to us.
The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent to the storage or the purpose for the data storage lapses (e.g. after completion of your request). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

As of: January 2019