Privacy Policy
Euro-Locks Germany

Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter ‘data subject’). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Pseudonymisation
Pseudonymisation is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

Controller or controller responsible for the processing
The controller or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Processor
A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Recipient
Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular enquiry in accordance with Union or Member State law shall not be regarded as recipients.

Third party
A third party is a natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or processor, are authorised to process the personal data.

Consent
Consent is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Health data
‘Health data’ means personal data relating to the physical or mental health of a natural person, including the provision of healthcare services, and from which information about their health status is derived.

If we allow third parties to participate in the processing, this is done exclusively on the basis of a legal authorisation standard and in compliance with the legal provisions. This authorisation standard may consist of your consent, a legal obligation or our legitimate interests.

Hosting
The hosting services we may utilise serve to provide the following services: Infrastructure and platform services, software tools, computing capacity, storage space and maintenance services that we require for the purpose of operating this online offering.

The hosting provider processes the usage data on the basis of our legitimate interest in the effective and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f) GDPR.

The usage data includes the data described under ‘Type and scope of data processed’. This data is deleted after seven days.

Links to other websites
Our website contains links to third-party websites. This privacy policy only applies to the content of our website and does not cover the websites of third parties linked to this site. We have no influence on the legality of the content of these sites or their handling of personal data. If you have any questions about the content or data protection of such third-party providers, please contact the respective provider.

Plugins

Google Fonts
We integrate the fonts (‘Google Fonts’) of the provider Google LLC, 1600 Amphitheatre Parkway Mountain View, CA94043, USA. The service’s privacy policy is available at: https://policies.google.com/privacy. A control option for the processing of your data by the provider is offered at: https://adssettings.google.com/authenticated. This service is used to improve the visual design of the website. It cannot be ruled out that data will also be transferred to other Google servers. Google LLC guarantees and offers sufficient guarantees to comply with European data protection law.

Google Apis
We use Google Apis from the provider Google LLC, 1600 Amphitheatre Parkway Mountain View, CA94043, USA. The service’s privacy policy is available at: https://policies.google.com/privacy. A control option for the processing of your data by the provider is offered at: https://adssettings.google.com/authenticated. This makes our website more resistant to bottlenecks in the available bandwidth and enables our visitors to have a fast and reliable connection to our website. When you call up a page, your browser loads the required files (in particular web fonts) via the Content Delivery Network (CDN) via the address in your browser cache in order to display texts and fonts correctly. This service enables the operator to know that our website has been accessed with your IP address. The CDN is used in the interest of a uniform and appealing website design and a fast and reliable connection to our website. The authorisation basis is Art. 6 para. 1 lit. a), f) GDPR. It cannot be ruled out that data will also be transferred to other servers. Google LLC guarantees and offers sufficient guarantees to comply with European data protection law.

Gstatic
We use a web service of the company Google LLC, 1600 Amphitheatre Parkway Mountain View, CA94043, USA. The service’s privacy policy is available at: https://policies.google.com/privacy. A control option for the processing of your data by the provider is offered at: https://adssettings.google.com/authenticated. The legal basis for data processing is Art. 6 para. 1 lit. a), f) GDPR. The legitimate interest consists in the error-free functioning of the website and in the continuous improvement and optimisation as well as the economically sensible operation of our website. The sole purpose of the use is to fulfil our interests. Further information on the handling of the transferred data can be found in Google’s privacy policy. A control option for the processing of your data by the provider is offered at: https://adssettings.google.com/authenticated. During processing, it cannot be ruled out that data will also be transferred to other servers. Google LLC guarantees and offers sufficient guarantees to comply with European data protection law.

Microsoft Ads
We use the advertising system Microsoft Advertising from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. The service’s privacy policy is available at: https://about.ads.microsoft.com/de-de/policies/legal-privacy-and-security. Microsoft Ads was formerly known as Bing Ads. This is an advertising programme based on a pay-per-click system. Advertisers can place adverts via the Bing and Yahoo! search engines, whereby users can click on the adverts. The legal basis for data processing is Art. 6 para. 1 lit. a), f) GDPR. The legitimate interest lies in the error-free functioning of the website and in the continuous improvement and optimisation as well as the economically sensible and targeted operation of our website. The sole purpose of the use is to fulfil our interests. Further information on the handling of the transferred data can be found in Microsoft’s privacy policy. During processing, it cannot be ruled out that data may also be transferred to other servers, possibly in the USA. Microsoft Corporation guarantees and offers sufficient guarantees to comply with European data protection law.

Microsoft Clarity
This website uses MS Clarity, a web analysis tool from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter: MS Clarity).

We use the MS Clarity recording function to record visits (only with anonymised IP addresses). This creates a log of mouse movements, mouse clicks and keyboard interactions with the purpose of randomly reproducing individual visits to this website as so-called session replays and analysing them in the form of so-called heat maps in order to derive potential improvements for this website. The legal basis for data processing is Art. 6 para. 1 lit. a), f) GDPR and our legitimate interest lies in the error-free functioning of the website and the continuous improvement and optimisation of our website. The data collected by MS Clarity is not personal and will not be passed on to third parties. Further information can be found at https://clarity.microsoft.com. The storage and processing of the data collected on our behalf takes place for 365 days and is specified within the EU. Microsoft Corporation guarantees and offers sufficient guarantees to comply with European data protection law. You can find more information on the handling of user data at MS Clarity in Microsoft’s privacy policy at https://privacy.microsoft.com/de-de/privacystatement. If you do not wish your data to be collected by MS Clarity, you can object to this on all websites that use MS Clarity by clicking on the following link: https://choice.microsoft.com/de-DE/opt-out.

WordPress/Plugins
Our website uses a web service provided by Automattic Inc, 94043 San Francisco, CA. We use the WordPress web service and corresponding plugins to ensure and improve the full functionality of our website. In this context, your browser may transmit personal data to WordPress.com or the plugin creators. The legal basis for data processing is Art. 6 para. 1 lit. f) GDPR. The legitimate interest lies in the error-free functioning and continuous improvement of the website. Automattic Inc. and, if applicable, the plugin creators guarantee and offer sufficient guarantees to comply with European data protection law. Further information on the handling of the transferred data can be found in the WordPress.com privacy policy at https://automattic.com/privacy/

CloudFlare
We use functions of CloudFlare from the provider CloudFlare, Inc. 665 3rd St. #200, San Francisco, CA 94107, USA. CloudFlare. CloudFlare offers a globally distributed content delivery network with DNS. The information transfer between your browser and our website is routed via the CloudFlare network. CloudFlare Cloudflare collects statistical data about visits to this website and can thus analyse the data traffic between users and our websites, for example to detect and ward off attacks on our services. CloudFlare may also store cookies on your computer for optimisation and analysis purposes. This serves the purpose of safeguarding our legitimate interests, which predominate in the context of a balancing of interests, in the optimal marketing of our offer and to ensure the full and error-free functionality of our website.

Cloudflare, Inc. guarantees and offers sufficient guarantees to comply with European data protection law.

Further information and notes can be found in CloudFlare’s privacy policy at https://www.cloudflare.com/privacypolicy/ and at https://blog.cloudflare.com/what-cloudflare-logs/.

Font Awesome
This site uses so-called web fonts provided by Fonticons, Inc. for the standardised display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must connect to the servers of Fonticons, Inc. As a result, Fonticons, Inc. becomes aware that our website has been accessed via your IP address. The use of web fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

Further information about Font Awesome can be found at https://fontawesome.com/help and in the Fonticons, Inc. privacy policy: https://fontawesome.com/privacy.

Vimeo
We use the option of integrating videos from the ‘Vimeo’ platform of the provider Vimeo, LLC, headquartered at 555 West 18th Street, New York, New York 10011. The privacy policy of the service is available at https://vimeo.com/privacy and further information can be found here https://vimeo.com/privacy/california-privacy.
The legal basis for data processing is your consent in accordance with Art. 6 para. 1 lit. a GDPR, which you can give either in the form of the cookie banner or when calling up the video. In the course of processing, it cannot be ruled out that data will be transferred to other Vimeo servers. Vimeo LLC guarantees and offers sufficient guarantees to comply with European data protection law.

Google Tag Manager
We use the so-called Tag Manager of the provider Google LLC, 1600 Amphitheatre Parkway Mountain View, CA94043, USA. The service’s privacy policy is available at: https://policies.google.com/privacy. A control option for the processing of your data by the provider is offered at: https://adssettings.google.com/authenticated. The tags set up via the Google Tag Manager ensure the collection of data that is passed on to the target system. Because the data is only passed on, the system does not collect or store the data itself. According to the provider, the Google Tag Manager is a cookie-free domain and therefore cannot collect any personal data in this way.

Cookiebot
This website uses a cookie consent banner with technology from Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter: Cookiebot) to obtain effective user consent for cookies and cookie-based applications requiring consent. By integrating a corresponding JavaScript code, a banner is displayed to users when they access the page, in which consent for certain cookies and/or cookie-based applications can be given by ticking the corresponding boxes. The banner blocks the setting of all cookies requiring consent until the respective user gives their consent by ticking the appropriate box. This ensures that such cookies are only set on the user’s end device if consent has been given. So that the cookie consent banner can clearly assign page views to individual users and individually record, log and store the consent settings made by the user for the duration of a session, certain user information (including the IP address) is collected when our website is accessed by the cookie consent banner, transmitted to Cookiebot servers and stored there. This data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website. Another legal basis for the data processing described is Art. 6 para. 1 lit. c GDPR. As the controller, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent. We may have concluded an order processing contract with Cookiebot, in which we oblige Cookiebot to protect the data of visitors to our website and not to pass it on to third parties. For more information on Cookiebot’s use of data, please refer to the Cookiebot privacy policy at https://www.cookiebot.com/de/privacy-policy/.

Social plugins – links
Our website contains links to our offers on social media sites. No data is transferred to the platforms when the corresponding links are displayed. If you wish to visit one of these pages, please note that you are leaving the scope of this privacy policy with regard to platform operation.

You have the right to receive information about your data stored by us, as well as the origin, recipients or categories of recipients to whom this data is passed on and the purpose of storage, free of charge at any time without giving reasons. You can correct, delete or restrict the processing of your data collected by us at any time and exercise your right to data portability. You also have the option to object.

Rectification, erasure or restriction of processing: You have the right to obtain from Euro-Looks without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

Right to object: Insofar as the processing of personal data concerning you is based on Art. 6 para. 1 lit. f) GDPR, you have the right to object to the processing of this data at any time for reasons arising from your particular situation. We will then no longer process this personal data unless Euro-Looks can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

Right to withdraw consent: If the processing is based on consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. To do so, you can contact us or our data protection officer at any time using the details given above.

Right to erasure: You have the right to obtain from Euro-Looks the erasure of personal data concerning you without undue delay and Euro-Looks is obliged to erase personal data without undue delay where one of the following grounds applies:

• The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
• You object to the processing and there are no overriding legitimate grounds for the processing.
• The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which we are subject. This does not apply if the processing is necessary for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject.

Right to restriction of processing: You have the right to obtain from Euro-Looks restriction of processing where one of the following applies

• The accuracy of the personal data is contested by you, for a period enabling us to verify the accuracy of the personal data.
• The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead.
• Euro-Looks no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims, or you have objected to processing pending the verification whether our legitimate grounds override yours.
• Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If you have obtained restriction of processing, we will inform you before the restriction is lifted.

Right to lodge a complaint: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. You can also contact the data protection officer of Euro-Looks. You can reach him at:

[email protected]
Telephone: 06841 9816 0
Fax: 06841 9816 29

We will be happy to answer any further questions you may have about our information, data protection and the processing of your personal data. Further information on the subject of data protection in the Federal Republic of Germany can also be found at www.bfdi.bund.de.