As the operator of this website and as a company, we come into contact with your personal data. This concerns all data that reveals something about you and by which you can be identified. In this privacy policy, we would like to explain how, for what purpose and on which legal basis we process your data.
Responsible for the data processing (“data controller”) on this website and in our company is:
Alexander H. Boehm e.K.
Adolfsallee 55
65185 Wiesbaden
Deutschland
Phone: +49 162 8702550
E-mail: a.boehm@ah-boehm.com
When you enter your data on websites, place online orders or send e-mails via the Internet, you must always be prepared for unauthorized third parties to access your data. There is no complete protection against such access. However, we do our utmost to protect your data as best we can and to close security gaps as far as we can.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the Internet address entered in your browser and by the fact that our Internet address begins with https:// and not with http://.
Payment data, such as account or credit card numbers, require special protection. For this reason, payment transactions made with the most common means of payment are carried out exclusively via an encrypted SSL or TLS connection.
In some parts in this privacy policy, we inform you about how long we or the companies that process your data on our behalf will store your data. In the absence of such information, we store your data until the purpose of the data processing no longer applies, you object to the data processing or you revoke your consent to the data processing.
In the event of an objection or revocation, we may however continue to process your data if at least one of the following conditions applies:
In this case, we will delete your data as soon as the requirement(s) cease to apply.
On our website, we use tools from companies that transfer your data to the USA and store it there and, if necessary, process it further. The European Commission has adopted an adequacy decision for the EU-US data protection framework. The decision establishes that the US ensures an adequate level of protection for EU personal data transferred to US companies. This decision is based on new safeguards and measures put in place by the US to meet data protection requirements. The adequacy decision includes, among other things, restrictions and safeguards on access to data by US intelligence agencies. Binding safeguards were introduced to limit US intelligence agencies' access to what is necessary and proportionate to protect national security. In addition, enhanced oversight of US intelligence activities was established to ensure that restrictions on surveillance activities are respected. An independent redress mechanism has also been established to handle and resolve complaints from European citizens about access to their data. The EU-US data protection framework thus allows European companies to transfer data to certified US companies without having to introduce additional data protection safeguards. A list of all certified companies can be found at the following link: https://www.dataprivacyframework.gov/s/participant-search.
A change in the European Commission's decision cannot be ruled out.
IF IT'S STATED IN THIS PRIVACY STATEMENT THAT WE HAVE LEGITIMATE INTERESTS FOR THE PROCESSING OF YOUR DATA AND THAT THIS PROCESSING IS THEREFORE BASED ON ART. 6 PARA. 1 SENTENCE 1 LIT. F) GDPR, YOU HAVE THE RIGHT TO OBJECT IN ACCORDANCE WITH ART. 21 GDPR. THIS ALSO APPLIES TO PROFILING THAT IS CARRIED OUT ON THE BASIS OF THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE REASONS FOR THE OBJECTION THAT ARISE FROM YOUR PARTICULAR SITUATION. NO REASONS ARE REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING.
THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING PREREQUISITS EXISTS:
THESE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT ADVERTISING OR TO PROFILING RELATED TO IT.
Many data processing operations are based on your consent. You can give this consent, for example, by ticking the appropriate box on online forms before you send the form, or by allowing the operation of certain cookies when you visit our website. You may revoke your consent at any time without giving reasons (Art. 7 (3) GDPR). From the time of revocation, we may then no longer process your data. The only exception: we are required by law to retain the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.
If you believe that we are in breach of the General Data Protection Regulation (GDPR), you have the right to complain to a supervisory authority in accordance with Art. 77 GDPR. You may contact a supervisory authority in the Member State of your residence, place of work or the place where the alleged infringement took place. The right to complain exists alongside administrative or judicial remedies.
We must hand over data that we process automatically on the basis of your consent or in fulfillment of a contract to you or a third party in a common machine-readable format if you request this. We can only transfer the data to another “data controller” if this is technically possible.
According to Art. 15 GDPR, you have the right to receive information free of charge about which of your personal data we have stored, where the data came from, to whom we transmit the data and for what purpose it is stored. If the data is incorrect, you have a right to rectification (Art. 16 GDPR), and under the conditions of Art. 17 GDPR you may demand that we delete the data.
In certain situations, according to Art. 18 GDPR, you may demand that we restrict the processing of your data. The data may then - apart from storage - only be processed as follows:
The right to restrict processing exists in the following situations:
Our website is hosted on a server of the following Internet service provider (hoster):
Marcel Seger Mediendesign & IT-Dienstleistungen
Hoorweiherstraße 15
56218 Mülheim-Kärlich
Yes
The hoster stores all the data from our website. This includes all personal data that is collected automatically or through entering. This can be in particular: Your IP address, pages accessed, names, contact details and requests, as well as meta and communication data. When processing data, our hoster adheres to our instructions and always processes the data only insofar as this is necessary to fulfill the service obligation to us.
Since we address potential customers via our website and maintain contacts with existing customers, the data processing by our hoster serves to initiate and fulfill contracts and is therefore based on Art. 6 (1) lit. b) GDPR. In addition, it is our legitimate interest as a company to provide a professional Internet offering that meets the necessary requirements for security, speed and efficiency. In this respect, we also process your data on the legal basis of Art. 6 (1) lit. f) GDPR.
Our website places cookies on your device. These are small text files that are used for various purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to perform certain actions or functions on the site (functional cookies). For example, without cookies it would not be possible to take advantage of a shopping cart in an online store. Still other cookies are used to analyze user behavior or to optimize advertising measures. If we use third-party services on our website, for example to process payment transactions, these companies may also leave cookies on your device when you access the website (so-called third-party cookies).
Session cookies are only stored on your device for the duration of a session. As soon as you close the browser, they therefore disappear by themselves. Permanent cookies, on the other hand, remain on your device unless you delete them yourself. This can, for example, lead to your user behavior being permanently analyzed. You can use the settings in your browser to influence how it handles cookies:
If you disable or do not allow cookies, the functionality of the website may be limited.
If we use cookies from other companies or for analysis purposes, we will inform you about this as part of this privacy policy. We also request your consent in this regard when you access our website.
We have a legitimate interest in ensuring that our online offers can be used by visitors without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device therefore takes place on the legal basis of Art. 6 (1) lit. f) GDPR. We use all other cookies on the legal basis of Art. 6 (1) lit. a) GDPR, provided you give us your consent. You can revoke this at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when requesting consent, these cookies will also be stored exclusively on the basis of your consent.
Server log files log all requests and accesses to our website and record error messages. They also include personal data, in particular your IP address. However, this is anonymized by the provider after a short time, so that we cannot assign the data to your person. The data is automatically transmitted to our provider by your browser.
Our provider stores the server log files in order to be able to track the activities on our website and to locate errors. The files contain the following data:
We do not combine this data with other data but use it only for statistical analysis and to improve our website.
We have a legitimate interest in ensuring that our website runs without errors. It is also our legitimate interest to obtain an anonymized overview of the accesses to our website. Therefore, the data processing is lawful according to Art. 6 (1) lit. f) GDPR.
You can send us a message via the contact form on this website.
We store your message and the information from the form in order to process your request including follow-up questions. This also applies to the contact details provided. We do not pass on the data to other persons without your consent.
We delete your data as soon as one of the following occurs:
This does not apply only if we are required by law to retain the data.
If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.
You can send us a message by e-mail or fax or call us.
We store your message as well as your self-made contact details or the transmitted telephone number in order to be able to process your inquiry including follow-up questions. We do not pass on the data to other persons without your consent.
We delete your data as soon as one of the following occurs:
This does not apply only if we are required by law to retain the data.
If your request is related to our contractual relationship or serves the implementation of pre-contractual measures, we process your data on the legal basis of Art. 6 (1) lit. b) GDPR. In all other cases, it is our legitimate interest to effectively process requests directed to us. The legal basis for data processing is therefore Art. 6 (1) lit. f) GDPR. If you have consented to the storage of your data, Art. 6 (1) lit. a) GDPR is the legal basis. In this case, you can revoke your consent at any time with effect for the future.
In order to use certain functions or offers on our website, you must register. This requires you to provide your e-mail address and possibly other personal data.
We store the data you provide during registration and use it to provide you with the function or offer for which you have registered. If there are any changes in relation to the offer or function, we will use your e-mail address to inform you about them. In addition, we use your e-mail address to make you further contract offers, if necessary.
We delete your data as soon as one of the following occurs:
The only time this does not apply is when we are legally obligated to retain the data.
We store and use your data to fulfill the user relationship established during registration and, if necessary, to initiate further contracts. The legal basis is therefore Art. 6 (1) lit. b) GDPR.
Service for sending newsletters and messages and for analyzing recipient behavior and managing marketing activities.
Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin, Germany.
Yes
https://www.brevo.com/de/legal/privacypolicy/ and https://www.brevo.com/de/legal/antispampolicy/
Brevo allows us to manage a database of email contacts, phone numbers or any other contact information in order to communicate with customers and other interested parties.
This may include collecting information on what date and time a message was read, as well as when the contacted person interacts with incoming messages, for example by clicking on links contained therein.
It is also possible to send - timed - messages to customers and other interested parties.
If you would like to receive our newsletter or other messages, we need your e-mail address/corresponding contact information. We will also check by means of a confirmation e-mail (double opt-in procedure) whether you are really the owner of this e-mail address and/or telephone number. We do not collect any further data or only on a voluntary basis. We use your data exclusively for newsletter dispatch/messaging.
If we send a newsletter via Brevo and you open it, a file contained in the newsletter automatically connects to Brevo's servers. In this way, the service learns that the newsletter has been opened and registers all clicks on the links it contains. In addition, Brevo collects technical information, such as the time of the retrieval, the IP address, browser type and operating system.
You can unsubscribe from the newsletter/messaging at any time.
After you have unsubscribed, the data is deleted from the newsletter distribution list. Under certain circumstances, we may blacklist your e-mail address at the same time; this is necessary, for example, if we receive an objection to advertising from you. The storage then takes place on the basis of Art. 6 (1) lit. f) GDPR.
Otherwise, we reserve the right to delete the data at any time after the purpose for which it was collected has ceased to exist or at our own discretion.
By entering your data in the subscriber list, you consent to data processing by Brevo. This is therefore carried out lawfully on the basis of Art. 6 (1) a) GDPR. You can revoke your consent by unsubscribing from the newsletter or by sending us an informal message. For us, this means that we may no longer send you newsletters from this point on.
Video plattform
Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
You can watch YouTube videos on our website. In doing so, Google, as the provider of YouTube, collects and stores certain information about you. However, since we use YouTube in extended data protection mode, this only happens when you start a video. Specifically, the following happens in this case:
Even if you do not start a YouTube video on our website, Google establishes a connection to its DoubleClick network and possibly also to other partners. The extended data protection mode therefore does not mean that Google does not process any data from you at all when you visit our website.
By integrating YouTube videos, we want to make our website and our services and offers more appealing. This is our legitimate interest as a company and therefore lawful according to Art. 6 (1) lit. f) GDPR.
If you have consented to data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.
We use fonts from the US company Google on our website. We have installed the fonts locally, so there is no connection to Google's servers when you visit our website.
For more information about Google Fonts, please visit https://developers.google.com/fonts/faq and read Google's privacy policy: https://policies.google.com/privacy?hl=de.
We use icons from the Font Awesome icon library on our website. The library is provided by Fonticons Inc. We have installed the icons locally, so there is no connection to the company's servers when you visit our website.
For more information about Font Awesome, please visit https://fontawesome.com/ and specifically see their privacy policy there: https://fontawesome.com/privacy.
Service that provides access to a JavaScript library for use on this website
The OpenJS Foundation, 548 Market St, PMB 57274, San Francisco, California, USA
jQuery adheres to the standard contractual clauses of the European Commission (see https://openjsf.org/privacy)
We use the services of jQuery on our website. jQuery is a JavaScript library. It simplifies Javascript programming by providing an easy-to-use interface for many common tasks. With jQuery, users can make their websites faster and more interactive. When you visit our website, a direct connection is established between your browser and the jQuery servers. This is how jQuery learns that our website was accessed via your IP address.
jQuery's fonts ensure a consistent typeface on our websites. As a company, we have a legitimate interest in this. The data processing is therefore lawful according to Art. 6 (1) lit. f) GDPR.
If you have consented to the data processing, we process your data exclusively on the basis of Art. 6 (1) lit. a) GDPR. You may revoke your consent at any time. From the time of revocation, we may no longer process your data.
When we conclude a contract with you, we require certain personal data from you. We collect, process and use this data only insofar as it is necessary to establish our legal relationship, to shape its content or to change it. If you can only use our services via our website or if the services are billed via the website, we also collect usage data insofar as this is necessary to enable you to use our offer or to bill the service used.
We store your data until our legal relationship ends, unless we are required by law to keep the data longer.
We store your data in order to fulfill the contract with you or to carry out pre-contractual measures. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR.
When you order goods from us, we transmit your data to companies that we commission with the delivery and/or through which we process the payment. In doing so, only data that is necessary for the commissioned company to carry out the specific order will be transmitted. If we want to pass on data beyond this, we will obtain your consent. We do not pass on your data for advertising purposes.
We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR.
To enable you to conveniently pay for your purchases on our website, we use the services of payment services, i.e. external companies that process the payments for us. You can see which ones these are specifically from the list at the end of this section.
For the payment process, you must provide certain personal data, e.g. your name, your account details or credit card number. We pass this data on to the respective payment service. For the transaction itself, the respective contract and data protection provisions of the respective services apply.
We pass on your data in order to fulfill the contract we have concluded with you. The basis of the data processing is therefore Art. 6 (1) lit. b) GDPR. In addition, we have a legitimate interest in processing purchases as quickly, conveniently and securely as possible. In this respect, the legal basis is also Art. 6 (1) lit. f) GDPR. If you have consented to the transfer of your data, the data processing is based on Art. 6 (1) lit. a) GDPR. You can revoke your consent at any time with effect for the future.
Online payment service
PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
https://www.paypal.com/de/webapps/mpp/ua/privacy-full
PayPal adheres to the standard contractual clauses of the European Commission (see https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full).
Invoice tool / merchandise management tool
JTL-Software-GmbH, Rheinstr. 7, 41836 Hückelhoven, Germany