With this privacy statement we inform you about the nature, scope and purpose of the processing of personal data (hereinafter referred to as “data”) collected through our website. The terms used, such as “Processing” or “Responsible” are defined in Art. 4 of the General Data Protection Regulation (GDPR).
Accordingly, of course, the data that we collect via e-mail or through classic communication and processed electronically.
Franke IndustrieOfen-Service GmbH
Managing Director Dr.-Ing. Norbert Pfitzner
Dresdner Strasse 172
Fax: + 49 351 79 56 55 9 99
Data Protection Officer
Mr. Ralf Hempel
We process the following data of visitors and users of our website and our contractual partners:
– names, addresses
– E-mail, phone numbers
– Text input
– Data for use (e.g. websites visited, interest in content, access times, amount of data)
– Technical information (e.g. device information, IP addresses, browser, operating system)
In addition we process
– Contract data (for example subject matter, term, customer category)
– Payment data (e.g. bank details, payment history)
Purpose of processing:
– Provision of the website, its functions and content.
– Answering contact requests and communicating with users.
– Safety measures.
– Provision of contractual services, service and customer care, marketing, advertising and market research.
Relevant legal bases
Our security measures, SSL encryption
In accordance with Art. 32 GDPR, we take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk. We control physical access to the data and access, input, disclosure and availability.
In order to best protect your transmitted data, the website operators use SSL encryption. You recognize such encrypted connections with the prefix “https: //” in the page link in the address bar of your browser. Unencrypted pages are identified by “http: //”. All data that you submit to this website – such as inquiries or logins – can not be read by third parties thanks to SSL encryption.
Collaboration with processors and third parties
If, in the context of our processing, we disclose data to other persons and companies (contract processors or third parties), transmit them to them or otherwise grant access to the data, this will only be done on the basis of a legal permission (eg if a transmission of the data to third parties, as to payment service providers, pursuant to Art. 6 para. 1 b DSGVO is required to fulfill the contract) or you have consented or a legal obligation to do so or based on our legitimate interests (eg the use of agents or web hosts).
If we commission third parties to process data on the basis of a so-called “contract processing contract”, this is done on the basis of Art. 28 GDPR.
Transfers to third countries
If we process data in a third country (ie outside the European Union (EU) or the European Economic Area (EEA)) or in the context of the use of third party services or disclosure or transmission of data to third parties, this will only be done if it is to fulfill our (pre) contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or have the data processed in a third country only in the presence of the special conditions of Art. 44 et seq. DSGVO. That the processing is e.g. on the basis of specific guarantees, such as the officially recognized level of data protection (eg for the US through the Privacy Shield) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).
“Cookies” are small files that are stored on users’ computers. Different information can be stored within the cookies. A cookie is primarily used to store the information about a user (or the device on which the cookie is stored) during or after his visit to an online offer. Temporary cookies, or “session cookies” or “transient cookies”, are cookies that are deleted after a user leaves an online service and closes his browser. In such a cookie, e.g. the contents of a shopping cart in an online shop or a login status are saved. The term “permanent” or “persistent” refers to cookies that remain stored even after the browser has been closed. Thus, e.g. the login status will be saved if users visit it after several days. Likewise, in such a cookie the interests of the users can be stored, which are used for range measurement or marketing purposes. A “third-party cookie” refers to cookies that are offered by providers other than the person who manages the online offer (otherwise, if it is only their cookies, this is called “first-party cookies”).
Use of Google services
Users can contact us by e-mail. In order to be able to receive a reply, at least the specification of a valid e-mail address is required. All other information can be given voluntarily by the user. By submitting the message, the user agrees to the processing of the transmitted personal data. The data processing takes place exclusively for the purpose of processing and answering inquiries. This is done on the basis of the voluntarily granted consent acc. Art. 6 para. 1 sentence 1 a DSGVO. The personal data collected for the use of the contact form will be automatically deleted as soon as the request has been completed and there are no reasons for further storage (eg subsequent order).
Administration, financial accounting, office organization, contact management
We process data in the context of administrative tasks and organization of our business, financial accounting and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in the course of rendering our contractual services. The processing principles are Art. 6 (1) (c) DSGVO, Art. 6 (1) (f) GDPR. The processing affects customers, prospects, business partners and website visitors. The purpose and interest in processing lies in administration, financial accounting, office organization, data archiving, that is, tasks that serve to maintain our business, perform our duties and provide our services. The deletion of the data in terms of contractual performance and contractual communication corresponds to the information provided in these processing activities.
We disclose or transmit data to the financial administration, consultants, such as tax accountants or auditors, and other fee agents and payment service providers.
Furthermore, based on our business interests, we store information about suppliers and other business partners, e.g. for later contact. In principle, we store this majority of company-related data permanently.
Provision of our commercial services
We process the data of our prospective customers, customers or other persons in accordance with Art. 6 para. 1 b DSGVO if we offer them contractual services or operate in the context of an existing business relationship or are themselves recipients of services and benefits. Incidentally, we process the data of affected persons in accordance with. Art. 6 (1) (f) GDPR based on our legitimate interests, e.g. when it comes to administrative tasks or public relations.
The data processed, the nature, scope and purpose and necessity of their processing are determined by the underlying contractual relationship. This includes in principle inventory and master data of the persons (eg name, address, etc.), as well as the contact data (zBE-mail address, telephone, etc.), the contract data (eg services used, communicated contents and information, names of Contact persons) and if we offer paid services or products, payment data (eg bank details, payment history, etc.).
Deletion of data
According to legal requirements in Germany, the storage takes place in particular for 10 years according to §§ 147 Abs. 1 AO, 257 Abs. 1 Nr. 1 and 4, Abs. 4 HGB (books, records, management reports, accounting documents, trading books, relevant for taxation Documents, etc.) and 6 years in accordance with § 257 (1) no. 2 and 3, para. 4 HGB (commercial letters).
Rights of the user: information, correction and cancellation, revocation and opposition
As a user, you will receive, at your request, free information about which personal data has been stored about you. If your request does not conflict with a legal obligation to store data, you are entitled to correct incorrect data and to block or delete your personal data. You have gem. Art. 77 DSGVO the right to file a complaint with the competent supervisory authority (mh050618).
You have the right to grant consent in accordance with. Art. 7 para. 3 DSGVO with effect for the future.
You can object to the future processing of your data in accordance with Art. 21 GDPR at any time. The objection may in particular be made against processing for direct marketing purposes.