zurück

Privacy Policy

1. Privacy Policy Overview

General Information

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data with which you can be personally identified. For detailed information on the subject of data protection, please refer to our privacy policy listed below.

Data Collection on Our Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the section "Information on the Controller" in this data privacy policy.

How do we collect your data?

On the one hand, your data is collected by you providing it to us. This could be, for example, data that you enter in a contact form.

Other data is collected automatically or with your consent by our IT systems when you visit the website. This mainly includes technical data (e.g. internet browser, operating system or page viewing time). This data is collected automatically as soon as you visit our website.

What do we use your data for?

Part of the data is collected to ensure error-free operation of the website. Other data may be used to analyse your user behaviour.

What rights do you have regarding your data?

You have the right at any time to receive information for free regarding the origin, recipient and purpose of your stored personal data. You further have a right to request the correction or deletion of this data. If you have provided your consent to data processing, you can revoke this consent at any time for the future. Under certain circumstances, you also have the right to request the restriction of the processing of your personal data. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time with regard to this and other questions on the subject of data protection.

2. Hosting

The content of our website is hosted by the following provider:

IONOS

The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany (hereinafter referred to as "IONOS"). When you visit our website, IONOS collects various log files including your IP addresses. Please see IONOS’ privacy policy for details: https://www.ionos.de/terms-gtc/terms-privacy.

The legal basis for the use of IONOS is Art. 6(1)f GDPR. We have a legitimate interest in presenting our website as reliably as possible. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) of the Act on Data Protection and Privacy in Telecommunications and Telemedia (TDDDG), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

3. General and Mandatory Information

Data Protection

The operators of these websites take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

When you use this website, various personal data is collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the Internet (e.g. communication by email) can have security gaps. Complete protection of data against access by third parties is not possible.

Information Regarding the Responsible Authority

The data controller for this website is:

Eberhardt GmbH
Eichendorffstraße 5
91586 Lichtenau
Tel: +49(0)9827/354
Telefax: +49(0)9827/7504
Email: info@eberhardt-gmbh.de

A controller is a natural or legal person who alone, or jointly with others, determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

Storage Term

Unless a more specific storage period is specified within this privacy policy, your personal data shall remain with us until the purpose for processing the data no longer applies. If you assert a justified request for deletion or revoke consent to data processing, your data shall be deleted unless we have other legally permissible grounds for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be deleted once these reasons no longer apply.

General Information on the Legal Basis for Data Processing Data on this Website

If you have consented to data processing, we process your personal data on the basis of Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, if special categories of data are processed in accordance with Art. 9 (1) GDPR. In the event of express consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 (1) (a) GDPR. If you have consented to the storage of cookies or to the access to information in your terminal device (e.g. via device fingerprinting), the data processing shall also be carried out on the basis of § 25 (1) TTDSG. Consent can be revoked at any time. If your data is required for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1) (b) GDPR. Furthermore, we process your data if this is necessary for the fulfilment of a legal obligation on the basis of Art. 6 (1) (c) GDPR. Data processing may also be based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR. Information on the relevant legal basis in each individual case is provided in the following Sections of this Privacy Policy.

Recipients of personal data

Our business activity entails working with various external agencies. In some cases, this requires sending personal data to those external agencies. We only share personal data with external agencies where necessary to fulfil a contract, where we are obliged by law to do so (e.g. sharing data with tax authorities), where we have a legitimate interest in sharing such data under Art. 6(1)f GDPR, or where sharing data is permitted on another legal basis. When we use data processors, we only share our customers’ personal data on the basis of a valid data processing contract. In the case of joint data processing, a contract for joint processing will be concluded.

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the revocation shall remain unaffected by the revocation.

Right to Object to the Collection of Data in Specific Cases and to Direct Marketing (Art. 21 GDPR)

IF THE DATA PROCESSING IS BASED ON ART. 6 (1) (E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR IF THE PROCESSING IS FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION UNDER ARTICLE 21 (1) DSGVO).

IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT ADVERTISING (OBJECTION PURSUANT TO ART. 21 (2) DSGVO).

Right of Appeal to the Competent Supervisory Authority

In the event of GDPR violations, data subjects shall have a right of appeal to a supervisory authority, in particular in the Member State of their habitual residence, place of work or the place of the alleged violation. The right of appeal is without prejudice to any other administrative or judicial remedy.

Right to Data Portability

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract transferred to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this shall only be done insofar as it is technically feasible.

Information, Deletion and Correction

Within the framework of the applicable legal provisions, you have the right at any time to free information regarding your stored personal data, its origin and recipient and the purpose of the data processing and, if applicable, a right to correction or deletion of this data. You can contact us at any time about this and any other questions you may have on the subject of personal data.

Right to Restrict Processing

You have the right to request the restriction of the processing of your personal data. You can contact us at any time about this. The right to restrict processing applies in the following cases:

  • If you dispute the accuracy of your personal data held by us, we will usually need time to verify this. For the duration of this review, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data is/was carried out unlawfully, you can request the restriction of data processing instead of deletion.
  • If we no longer need your personal data, but you need it to exercise, defend or enforce legal claims, you have the right to request restriction of the processing of your personal data instead of deletion.
  • If you have filed an appeal pursuant to Art. 21 (1) GDPR, a balancing of your and our legitimate interests must be carried out. As long as it has not yet been determined whose legitimate interests prevail, you have the right to demand the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, such data may - apart from being stored - only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.

SSL or TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the portability of confidential content, such as orders or enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

4. Data Collection on Our Website

Contact Form

If you send us enquiries via our contact form, such enquiries, including the contact details you have provided on the form, shall be stored by us for the purpose of processing the enquiry and in the event of follow-up enquiries. We shall transfer this data without your consent.

The processing of this data is based on Art. 6 (1) (b) GDPR, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of requests directed to us (Art. 6 (1) (f) GDPR) or in accordance with your consent (Art. 6 (1) (a) GDPR) if requested; consent may be revoked at any time.

The data you enter in the contact form shall remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry). Mandatory statutory provisions - in particular retention periods - shall remain unaffected.

Request by Email, Phone or Fax

If you contact us by email, telephone or fax, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We shall transfer this data without your consent.

The processing of this data is based on Art. 6 (1) (b) GDPR, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of requests directed to us (Art. 6 (1) (f) GDPR) or in accordance with your consent (Art. 6 (1) (a) GDPR) if requested; consent may be revoked at any time.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory statutory provisions - in particular statutory retention periods - shall remain unaffected.

5. Plug-ins and Tools

Google Maps

This site uses the map service Google Maps. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. This service allows us to integrate maps into our website.

It is necessary to store your IP address to use the functions of Google Maps. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts for the purpose of the uniform display of fonts. When you call up Google Maps, your browser will load the required web fonts into your browser cache in order to display texts and fonts correctly.

Google Maps is used in order to facilitate an engaging experience for our online services and to make it easy to find the places we indicate on the website. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) GDPR. Insofar as corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and § 25 (1) of the Act on Data Protection and Privacy in Telecommunications and Telemedia (TTDSG), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find further details here: https://privacy.google.com/businesses/gdprcontrollerterms/ und https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

You can find further information on the handling of user data in Google's privacy policy: https://policies.google.com/privacy?hl=de.

The company is certified according to the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States of America, which aims to ensure compliance with European data protection standards when processing data in the USA. All companies certified under the DPF are committed to upholding these data protection standards. More information is available from the provider via the following link: https://www.dataprivacyframework.gov/participant/5780.

Source: https://www.e-recht24.de