1) Information about the collection of personal data and contact details of the responsible person
1.1 We are pleased that you are visiting our website and thank you for your interest. In the following we will inform you about the handling of your personal data when using our website. Personal data are all data with which you can be personally identified.
1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Sibolab UG (limited liability), Kastanienallee 4, 10435 Berlin, Germany, Tel .: 0049 (0) 30 49500833, Fax: 0049 (0) 30 41209906, Email: firstname.lastname@example.org. The person responsible for the processing of personal data is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), this website uses an SSL or. TLS encryption. You can recognize an encrypted connection by the character string "https: //" and the lock symbol in your browser line.
2) Data collection when visiting our website
In the case of merely informative use of our website, ie if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (so-called "server log files"). When you visit our website, we collect the following information that is technically necessary for us to display the website:
- Our visited website
- Date and time at the time of access
- Amount of transmitted data in bytes
- Source/reference from which you accessed the site
- Used browser
- Operating system used
Used IP address (possibly in anonymous form)
The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR based on our legitimate interest in improving the stability and functionality of our website. A transfer or other use of the data does not take place. However, we reserve the right to retrospectively check the server logfiles should concrete evidence point to unlawful use.
In order to make the visit to our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your device. Some of the cookies we use are deleted after the end of the browser session, ie after closing your browser (so-called session cookies). Other cookies remain on your device and allow you to recognize your browser the next time you visit it (so-called persistent cookies). If cookies are set, they collect and process specific user information, such as browser and location data as well as IP address values, to an individual extent. Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. The duration of each cookie storage can be found in the overview of the cookie settings of your web browser.
In some cases, cookies are used to simplify the ordering process by saving settings (e.g. remembering the content of a virtual shopping cart for a later visit to the website). If personal data is also processed by individual cookies we use, the processing is carried out in accordance with Art. 6 Para. 1 lit. b GDPR either to implement the contract, in accordance with Art. 6 Para. 1 lit. a GDPR in the case of a given consent or according to Art. 6 Para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website and a customer-friendly and effective design of the page visit.
Please note that you can set your browser so that you are informed about the setting of cookies and individually decide on their acceptance or can exclude the acceptance of cookies for specific cases or in general. Each browser differs in the way it manages the cookie settings. This is described in the Help menu of each browser, which explains how to change your cookie settings. These can be found for the respective browser under the following links:
Internet Explorer: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
Please note that if you do not accept cookies, the functionality of our website may be limited.
4) contact us
When contacting us (eg via contact form or e-mail), personal data is collected. Which data are collected in the case of a contact form can be seen from the respective contact form. These data are stored and used solely for the purpose of answering your request or for establishing contact and the associated technical administration. The legal basis for processing this data is our legitimate interest in answering your request in accordance with Art. 6 para. 1 lit. f DSGVO. If your contact aims to conclude a contract, then additional legal basis for the processing is Art. 6 para. 1 lit. b DSGVO. Your data will be deleted after final processing of your request. This is the case if it can be inferred from the circumstances that the matter in question has been finally clarified and provided that no statutory storage requirements are in conflict.
5) Data processing when opening a customer account and for contract execution
According to Art. 6 para. 1 lit. b DSGVO, personal data will continue to be collected and processed if you provide it to us for the purpose of concluding a contract or opening a customer account. The data collected is shown in the respective input forms. A deletion of your customer account is possible at any time and can be done by a message to the above-mentioned address of the person in charge. We store and use the data you have provided for the execution of the contract. After completion of the contract or deletion of your customer account, your data will be blocked with regard to tax and commercial retention periods and deleted after expiration of these periods, unless you have expressly consented to further use of your data or a legally permitted further data use by our side has been.
6) Data processing for order processing
In order to process your order, we work with the following service provider (s) who support us in whole or in part in the execution of contracts. Certain personal data is transmitted to these service providers in accordance with the following information.
The personal data collected by us will be passed on to the transport company commissioned with the delivery within the scope of the contract, insofar as this is necessary for the delivery of the goods. We will pass on your payment details to the commissioned bank as part of the processing of payments, if this is necessary for the processing of payments. If payment service providers are used, we will inform you explicitly below. The legal basis for the transfer of data is Art. 6 para. 1 lit. b DSGVO.
7) rights of the person concerned
7.1 The applicable data protection law grants you comprehensive rights of data subjects (information and intervention rights) to the person responsible with regard to the processing of your personal data, about which we inform you below:
Right of access according to Art. 15 GDPR: In particular, you have the right to obtain information about the personal data processed by us, the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data was or is being disclosed Period of storage or the criteria for determining the duration of storage, the right of rectification, deletion, limitation of processing, objection to processing, complaint to a supervisory authority, the origin of your data, if they were not collected by us, the Existence of automated decision-making including profiling and, where appropriate, meaningful information about the logic and scope involved and the intended effects of such processing, as well as your right to be informed of what guarantees under Art. 46 DSGVO in case of assignment your data to third countries;
Right to correction according to Art. 16 GDPR: You have the right to immediate correction of incorrect data concerning you and / or completion of your incomplete data stored by us;
Right to cancellation according to Art. 17 GDPR: You have the right to demand the deletion of your personal data in the presence of the requirements of Art. 17 para. 1 GDPR. However, that right does not apply, in particular, where the processing is necessary for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the pursuit, exercise or defense of rights;
Right to restriction of the processing according to Art. 18 GDPR: You have the right to demand the restriction of the processing of your personal data, as long as the correctness of your data challenged by you is checked, if you refuse a deletion of your data because of inadmissible data processing and instead the Restricting the processing of your data require, if you need your data for the assertion, exercise or defense of legal rights, after we no longer need these data after purpose or if you have objected for reasons of your particular situation, as long as it is not certain, whether our entitled Reasons predominate;
Right to be informed in accordance with Art. 19 GDPR: If you have the right to rectify, delete or limit the processing to the controller, he / she is obligated to rectify or delete the data or all recipients to whom the personal data relating to you have been disclosed Notify of limitation of the processing, unless this proves to be impossible or involves a disproportionate effort. You have the right to be informed about these recipients.
Right to data portability according to Art. 20 GDPR: You have the right to receive your personal data provided to us in a structured, common and machine-readable format or to request transmission to another person responsible, as far as technically feasible;
Right to revoke granted consent in accordance with Art. 7 para. 3 GDPR: You have the right to revoke a consent once given in the processing of data at any time with future effect. In the case of withdrawal, we will delete the data concerned immediately, as far as further processing can not be based on a legal basis for consentless processing. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation;
Right to complain under Art. 77 DSGVO: If you consider that the processing of your personal data violates the GDPR, you have the right to complain to a supervisory authority, in particular in the case of an administrative or judicial remedy Member State of your whereabouts, place of work or place of alleged infringement.
7.2 RIGHT TO OBJECT
IF, IN THE CONTEXT OF INTEREST ACCOUNTABILITY, WE PROCESS OUR PERSONAL DATA BASED ON OUR MAJOR LEGITIMATE INTEREST, YOU HAVE ANY PRESENT RIGHT TO SUBMIT AGAINST THIS PROCESSING FOR CONSEQUENCES WITH EFFECT ON THE FUTURE FOR REASONS OBTAINED FROM YOUR SPECIFIC SITUATION.
MAKE USE OF YOUR OPPOSITION RIGHT, WE FINISH THE PROCESSING OF THE AFFECTED DATA. FURTHER PROCESSING REMAINS SUBJECT TO EXERCISE WHEN WE MAY PROVIDE IMPERATIVE REASONABLE REASONS FOR PROCESSING WHICH EXCEED ITS INTERESTS, FUNDAMENTAL RIGHTS AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING SERVES THE PRESENTATION, EXERCISE OR DEFENSE OF LEGAL CHARGES.
IF YOUR PERSONAL DATA IS PROCESSED BY US TO OPERATE DIRECT ADVERTISING, YOU HAVE THE RIGHT TO INTRODUCE ANY CONTESTING AGAINST THE PROCESSING OF YOU OF PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING. YOU MAY EXERCISE THE OPPOSITE AS DESCRIBED ABOVE.
MAKE USE OF YOUR CONTINGENCY RIGHT, WE FINISH THE PROCESSING OF THE DATA CONCERNED FOR DIRECT ACCEPTANCE.
8) Duration of storage of personal data
The duration of the storage of personal data is based on the respective legal basis, the purpose of processing and - if applicable - additionally based on the respective legal retention period (eg commercial and tax retention periods).
In the processing of personal data based on an explicit consent in accordance with Art. 6 para. 1 lit. a DSGVO, these data are stored until the person withdraws his consent.
There are statutory retention periods for data which, in the context of legal or similar obligations, are based on Art. 6 para. 1 lit. b DSGVO are processed, these data are routinely deleted after expiry of the retention periods, if they are no longer required for fulfillment of the contract or for initiating a contract and / or if there is no legitimate interest in the re-storage on our part.
In the processing of personal data on the basis of Art. 6 para. 1 lit. f DSGVO, these data will be stored until the person concerned exercises his right of objection under Art. 21 para. 1 DSGVO, unless we can prove compelling legitimate reasons for the processing that outweigh the interests, rights and freedoms of the person concerned, or the processing serves the assertion, exercise or defense of legal claims.
In the processing of personal data for the purpose of direct advertising on the basis of Art. 6 para. 1 lit. f DSGVO these data will be stored until the person concerned exercises his right of objection under Art. 21 para. 2 DSGVO.
Unless otherwise stated in the other information in this Declaration on Specific Processing Situations, stored personal data will be erased if they are no longer necessary for the purposes for which they were collected or otherwise processed.