Privacy

Data protection declaration
Data protection has a high value for us and for you certainly also. With this
privacy policy, we will inform you which personal data (in the following
also „data“) from us in relation to our Internet presence (hereinafter „websites“)
processed and what rights you are entitled to. The data protection declaration also serves to protect your privacy. Implementation of our obligations under § 13 Telemediengesetz (TMG) and Article 13 of the
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the Protection of natural persons with regard to the processing of personal data, for free
data traffic and repealing Directive 95/46/EC (basic data protection regulation, DSGVO).
1. person responsible
Company: Guillermo Herlt
Managing Director Address: Frauenrichterstr. 2 (1st floor), 92637 Weiden
Phone: 0961 20490400
Fax:
E-mail: info@open.cr
Data protection officer:
Open.cr is not obliged to appoint a separate data protection officer.
2. definitions
The privacy statement uses the following terms in the sense of the basic data protection regulation:
- „personal data“:: any information relating to an identified or
identifiable natural person (hereinafter referred to as the "person concerned"); as Identifiable is considered to be a natural person who, directly or indirectly, in particular by means of assignment to an identifier such as a name, to an identification number, to
location data, to an online identifier or to one or more special
characteristics can be identified that express the physical, physiological,
genetic, psychological, economic, cultural or social identity of this
are a natural person;
- Processing; any operation carried out with or without the aid of automated processes. or any such series of operations relating to personal data such as the
collecting, recording, organizing, arranging, storing, adapting or
Change, readout, query, use, disclosure by
transmission, dissemination or any other form of making available, matching or comparison /> Linking, restriction, deletion or destruction;
- Responsible person; the natural or legal person, authority, institution or other entity Body which alone or jointly with others has the right to be informed about the purposes and means of the processing of personal data;
- A natural or legal person, authority, institution or entity, or a public authority, institution or entity other entity that processes personal data on behalf of the controller;
- Recipient; a natural or legal person, authority, institution or other entity Entities to which personal data is disclosed, regardless of whether it is is or is not a third party. Authorities which, within the framework of a specific
Mandate under Union or national law
may receive personal data, but are not considered to be recipients; the >br /> The processing of this data by the said authorities will be carried out in accordance with the provisions of the law. applicable data protection regulations in accordance with the purposes of the processing;
- third party; a natural or legal person, authority, institution or other body except for the data subject, the controller, the processor and the
Persons who are under the direct responsibility of the person in charge or the
processor are authorised to process the personal data;
- The consent of the data subject is given voluntarily for the specific case, in informed form. A wise and unequivocal expression of will in the form of a declaration or letter any other unambiguous confirmatory act by which the data subject has been identified understand that they are in agreement with the processing of personal data concerning them. data is agreed;
- Cross-border processing; either
o the processing of personal data carried out within the scope of the activities of
Branch offices of a responsible person or an order processor in the
Union in more than one Member State, where the person responsible or
processor established in more than one Member State, or
o the processing of personal data carried out in the course of the activities of a company individual branch office of a responsible person or an order processor in
of the Union, but which has a significant impact on data subjects in
has or may have more than one Member State;
3. type, scope and purpose of processing, legal basis
3.1 The following types of data are processed by us:
- Customer data (name, sex, date of birth, address, telephone and fax, e-mail,
account connection);
- Contents (texts, pictures, videos);
- Usage data (websites visited, access times, location, etc.).
- Communication data (device information, IP addresses, etc.).
- Contract data (contract text, payments)
3.2 The following categories of data subjects exist:
- Visitors to our web pages (hereinafter also „users“) as well as other interested parties,
Lottery participants;
- Buyers of our goods and buyers of services (hereinafter also referred to as "customers");
further business partners. 3.3 The processing of data is carried out for the following purposes, and using the
legal bases mentioned below:
- Presentation, maintenance and improvement of our websites including all
functions towards users, evidence purposes; this is done on the basis of article 6
Paragraph 1 letter f DSGVO (safeguarding our legitimate interests). It will
communication and usage data is processed, the data is not passed on to third parties
does not occur in principle, unless there is a legal obligation to do so. (Article 6 paragraph 1 letter c DSGVO).
- Processing of usage data (websites visited, products viewed) and content
for advertising purposes, especially for personalized product information; this is done on
Basis of article 6 paragraph 1 letter f DSGVO (safeguarding our legitimate
interests).
- Answers to enquiries via a contact form, e-mail correspondence with users and
customers, execution of a lottery; the processing is carried out on the basis of article 6
Paragraph 1 letter b DSGVO.
- Create a user account. On the occasion of the creation or modification of a user account User accounts for our web pages are used to store customer data, contract data and, if applicable, contents. processed in order to provide the services within the scope of the web pages for registered users
Article 6(1)(b) of the DSGVO; in addition, it may also be possible to Communication data for evidence purposes and to protect against misuse of the functions
Article 6 paragraph 1 letter f DSGVO (protection of our legitimate rights) interests).
- For the execution of contractual obligations towards customers and others Customer data and contract data are processed for contractual partners. As far as in
forms are marked as obligatory, they are required to be filled in. of the presented purpose is required. The processing is based on article 6
paragraph 1(b) and (c) DSGVO.
- For the presentation of the user's own contents. If necessary, the user can display his own contents in forums
or äl;nlichen functions on our web pages stop; this will become in principle in general /> anonymously murdered. IP addresses are used for evidentiary reasons and thus on the basis ofbr /> of our legitimate interests according to Article 6 paragraph 1 letter f DSGVO.
- Own marketing; where consent has been obtained, processing has been carried out in accordance with Article 6
Paragraph 1 letter a as well as Art. 7 DSGVO, in the rest to protect our legitimate rights. interests: Article 6 paragraph 1 letter f DSGVO.
Insofar as our processing is based on further legal bases, they are listed below in the
further executions named.
4. recipient of data, third countries
Insofar as this is necessary for the delivery of the products ordered by customers, data will be sent to the
from us with the delivery commissioned shipping companies passed on. To the payment processing
the data required for payment transactions (name, account data, e-mail address,
purchase price) if applicable, to a payment service provider and/or to a person charged with the payment credit institution further. Further categories of recipients are hosting providers, participants in the
Merchandise management and financial accounting system, external providers for customer service and, if necessary,
suppliers.
The passing on as well as the disclosure of data to recipients, processors or third parties is prohibited. Third parties are exclusively within the scope of the legal bases (cf. point 2.4 above) or if a
further legal obligation exists. The granting of access to data for the purpose of data processing Contract processing was carried out in strict compliance with Article 28 DSGVO. Processing of the
Data in a third country (outside the European Union (EU) or the European Community) Economic Area (EEA) are subject to Articles 44 to 50 DSGVO. The processing takes place on
a level of data protection equivalent to the DSGVO, in particular through guarantees of the
Contract processors, e.g. due to the agreement between the EU and the USA in accordance with the US data protection shield (hereinafter also „Privacy Shield“), or on the basis of special contractual
obligations (standard contractual clauses).
5. data reading
A deletion of data is carried out on the basis of Art. 17 and 18 DSGVO; the same applies to a >br /> Restriction of processing and blocking of data. The restriction or a restriction Processing of the data is carried out if and insofar as it is not necessary for the achievement of a specified purpose
more are necessary, unless a change is required by law (e.g. obligations to retain records according to the Federal Law on the Protection of Personal Data). commercial or tax law) is prohibited or something else has been agreed upon.
According to § 257 German Commercial Code (HGB) and § 147 paragraph 1 of the German Fiscal Code (AO), everyone
merchant in particular obliged to keep commercial books and records, inventories, etc. Opening balance sheets including work instructions, annual financial statements, other organizational documents as well as accounting vouchers for ten years; for commercial and business letters a period of time applies of six years.
6. cookies
This website uses cookies „cookies“. These are small files that are stored on users' computers
can be stored with different information. They are used to determine the identity of the person. of the user and his equipment as well as for the protection of the user during his stay. the information provided. Besides temporary cookies („Session-Cookies“, e.g. contents of a shopping cart),
which are deleted after leaving the web pages and closing the browser. Permanent
Cookies (e.g. for the last login, viewed websites) are not saved after leaving the
Websites deleted. With so-called „Third-Party-Cookies“ the cookies do not originate from the
but by a third party. The setting of cookies is based on article 6 paragraph 1
letter f DSGVO and serves both the error-free and smooth provision of our
services, for the exercise of electronic communication activities or the provision of certain functions desired by the user (e.g. shopping cart in online shops). You can prevent cookies from being stored on your computer. You are entitled to the
It is also possible to select the option in the settings of your browser that Cookies
are not permitted in general and in relation to specific pages. There you can also check existing >br /> Cookies are löish. As a precautionary measure, we would like to point out that the functions of our web pages are not available at
disabled or removed cookies can be restricted.
7. hosting
We work together to maintain, restore and improve our services
hosting partners together, especially in terms of storage space, computing capacity, database, etc. Infrastructure, maintenance and similar services. Here it can be used for the processing of data
in accordance with section 2.1 of this data protection declaration; in particular for the collection of server log files
(server accesses). The processing takes place on the basis of a legitimate interest in
of our site; Article 6 paragraph 1 letter f DSGVO in conjunction with Art. 28 DSGVO. A solution to the problem /> Data will be stored at the latest seven days after storage; this does not apply if the
storage is required for reasons of evidence; the deletion shall take place if the >br /> The purpose of the evidence is no longer applicable. 8. SSL – Encryption
To protect your transmitted data in the best possible way, the website operator uses SSL encryption. You can recognize such encrypted connections by the test certificate fix „https://“ im
Page link in the address line of your browser. Unencrypted pages are protected by „https://“
marked.
All data which you transmit to this website, for example in case of inquiries, can be encrypted with SSL encryption. not be read by third parties.
9. rights of the data subjects
According to the DSGVO, you are entitled to various rights with regard to your data:
- You have the right to obtain confirmation as to whether or not the data in question are being processed;
if this is the case, you can obtain information about this data and other information and request a copy of the data, Article 15 DSGVO.
- You have the right to demand the immediate correction of incorrect personal and business data. demand the completion of incomplete personal data, Article 16
DSGVO.
- They can demand that the data in question be deleted without delay (Article 17 DSGVO) or that the data be destroyed. be restricted with regard to processing (Article 18 DSGVO.
- Under the conditions of Article 20 DSGVO, you have the right to use the data you have provided. and to pass on this data to another person responsible without the need for
handicap by us to transfer. - Under Article 77 of the DSGVO, you can lodge a complaint with the competent supervisory authority. submit.
- According to article 7 paragraph 3 DSGVO, you can give your consent with effect for the future. and to a future processing of the data concerning you in accordance with the
Article 21 DSGVO at any time.
10. other
Google ReCaptcha
We use on this website „ReCaptcha“, a technique for the recognition of automated
Web accesses or so-called bots, for example to ensure that entries in online forms
are done by a human being. This serves our legitimate interests in accordance with the law. Article 6(1)(f) DPA. The provider of ReCaptcha is Google LLC, 1600
Amphitheatre Parkway, Mountain View, CA 94043, USA (Google). When using this site, you may be asked to enter data such as
for example your IP address, to Google. The use of this data is subject to
the responsibility of Google. You can find the privacy policy of Google under
https://www.google.com/policies/privacy on the Internet.
Google Analytics
We make use of our legitimate interests (operation and optimization of our
websites) within the meaning of Article 6 paragraph 1 letter f DSGVO of the Google Analytics tool, a
Service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA („Google“).
Google is certified under the Privacy Shield Agreement, it is guaranteed that the European Privacy Policy data protection law is observed
(https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Through the use of cookies, Google generates information about the use of the websites that are linked to the website. usually to a Google server in the USA and stored there. Google
will use this information to evaluate your use of the website in order to generate reports about the
to compile website activities for the website operators and to create further activities with the
to provide services associated with the use of the website and the Internet. We refer
to the fact that your IP address is used by Google within the European Union or in other countries. Contracting States of the Agreement on the European Economic Area before storage and
The transmission is short, so that a direct personal reference is excluded. Only in
In exceptional cases, the full IP address will be transferred to a Google server in the USA and the full IP address will be transferred to a Google server in the USA. there. You may refuse the use of cookies by selecting the appropriate settings on your browser. and, in the meantime, permanently prevent this by using a browser add-on from Google for the >br /> Deactivation of Google Analytics, you can install this program under
https://tools.google.com/dlpage/gaoptout?hl=de download. Further information as well as the privacy policy of Google can be found under:
http://www.google.com/policies/technologies/ads/ , http://www.google.de/policies/privacy/
Facebook
On these Internet pages, plugins of the social network facebook.com are used, which is operated by
of Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or for EU citizens Facebook Ireland
Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, „Facebook"). Facebook is under
the Privacy Shield Agreement,
https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.
If you call up Internet pages of our Internet presence that are equipped with such a plugin, the system will a connection to the Facebook servers is established and the plugin is activated by sending a message to your
browser on the Internet page. This is transmitted to the Facebook server. which of our Internet pages you have visited. Are you a member of Facebook
Facebook will associate this information with your personal Facebook account. With the >br /> Use of the plugin function (e.g. clicking on the „I like“ buttons“, submitting a comment)
this information will also be assigned to your Facebook user account, which you can only see by
Prevent logging out before using the plugin can be prevented. Purpose and scope of data collection and the further processing and use of data by
Facebook as well as the rights and adjustment possibilities for the protection of the rights of the users. The privacy of the user can be found in the Facebook privacy policy:
https://www.facebook.com/about/privacy/. Clic here to opt out from Google Analytics.