Privacy Policy

Data protection

 

The following privacy policy applies to the use of our online offer [www.mayer-assetmanagement.com] (hereinafter “Website”).

We attach great importance to privacy. The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).

 

1             Responsible

Is responsible for the collection, processing and use of your personal data within the meaning of Art. 4 no. 7 GDPR:

Mayer Asset Management,

Stollenmattenweg 16 , 79254 Oberried

Tel.: 07661-982277, E-Mail: karl-heinz.mayer@mayer-asset-management.com

If you wish to object to the collection, processing or use of your data by us in accordance with this Privacy Policy as a whole or for individual measures, you can address your objection to the person responsible.

You can save and print this privacy policy at any time.

 

2             General purposes of processing

We use personal information for the purpose of operating the website.

 

3             What data we use and why

3.1             hosting

Measurements taken from us to complete hosting services are the provision of the following services: services that we use for the purpose of the operation of the site infrastructure and platform, computing power, storage and database services, security services and technical maintenance.

Here we process and our hosting provider inventory data, contact information, content data, contract data, usage data, meta and communication data from customers, prospects and visitors to this site on the basis of our legitimate interests in an efficient and secure provision of our he website gem. Art. 6 para. 1 sentence 1 f.) GDPR in conjunction with Art. 28 GDPR.

3.2             Access data

We collect information about you when you use this website. We automatically collect information about your usage and interaction with us and register information about your computer or mobile device. We collect, store and use data about every access to our e website (so-called server log files). Access data includes:

–         Name and URL of the retrieved file

–         Date and time of retrieval

–         Transferred amount of data

–         Message about successful retrieval (HTTP response code)

–         Browser type and browser version

–         Operating system

–         Referrer URL (i.e. the previously visited page)

–         Websites that are accessed by the user’s system through our website

–         Internet service provider of the user

–         IP address and the requesting provider

We use these log data without assignment to you or other profiling for statistical evaluations for the purpose of operation, safety and optimization of our r Site, but also to the anonymous recording the number of visitors to our web site (traffic) as well as m scope and nature of the use of our website and services, as well as for billing purposes, to measure the number of clicks received from cooperation partners. Based on this information, we can provide personalized and location-based content, analyze traffic, troubleshoot and improve our services.

This is also our legitimate interest in accordance with Article 6 para. 1 p. 1 f) GDPR.

We reserve the right to retrospectively review the log data if, on the basis of concrete evidence, there is a legitimate suspicion of unlawful use. We store IP addresses in the log files for a limited period of time, if this is necessary for security purposes or for the provision of services or the billing of a service, e.g. As if you have a use it our offer e. After termination of the operation of the order or after receipt of payment, we will delete the IP address if it is no longer necessary for security purposes. We store IP addresses even if we have a specific suspicion of a crime in connection with the use of our website. In addition, as part of your account, we save the date of your last visit (e.g. when registering, logging in, clicking links etc.).

3.3             Cookies

We use so-called session cookies to our e Optimize website. A session cookie is a small text file that is sent by the respective servers when visiting a website and stored on your hard disk. As such, this file contains a so-called session ID, with which various requests from your browser can be assigned to the shared session. This can be recognized Y our computer when you return to our site. These cookies are deleted after you close your browser. They serve z. For example, you can use the shopping cart feature across multiple pages.

We also use a small amount of persistent cookies (also small text files stored on your device) that remain on your device and allow us to recognize your browser the next time you visit it. These cookies are stored on your hard drive and delete themselves after the given time. Their lifespan is 1 month to 10 years. In this way, we can present our offer in a more user-friendly, effective and secure manner and, for example, show you information tailored to your interests on the page.

Our legitimate interest in the use of cookies in accordance with Article 6 para. 1 p. 1 f) GDPR is to make our website more user-friendly, effective and secure.

The cookies store about the following data and information:

–           Log-in information

–           Language settings

–           entered search terms

–           Information about the number of visits to our website and use of individual functions of our website.

If the cookie is activated, it will be assigned an identification number and no assignment of your personal data to this identification number will be made. Your name, IP address or similar information that would allow an allocation of the cookie to you n will not be inserted into the cookie. Based on the cookie technology, we only receive pseudonymous information, for example, which pages of our shop were visited, which products were viewed, etc.

You can set your browser so that you are informed in advance about the setting of cookies and can decide on a case-by-case basis whether you exclude the acceptance of cookies for specific cases or in general, or that cookies are completely prevented. This may limit the functionality of the website.

3.4             Data to fulfill our contractual obligations n

We process personal information we use to fulfill our contractual obligations, such as name, address, e-mail address,    ordered products, billing and payment data. The collection of this data is required for the conclusion of the contract.

The deletion of the data takes place after expiry of the warranty periods and legal retention periods. Any data associated with a user account (see below) will in any case be retained for the time this account is maintained.

The legal basis for the processing of this data is Art. 6 (1) sentence 1 b) GDPR, because this data is needed so that we can fulfill our contractual obligations to you.

3.5             User account

You can create a user account on our website. If you wish this, we need the personal data requested during the login. When logging in later, only your email or username and the password you have chosen will be required.

For the new registration we collect master data (e.g. name, address), communication data (e.g. e-mail address) and payment data (bank details) as well as access data (user name and password).

In order to ensure your proper registration and to prevent unauthorized log-ins by third parties, you will receive an activation link by e-mail after your registration in order to activate your account. Only after successful registration do we save the data transmitted by you permanently in our system.

You can have a once created user account deleted from us at any time, without any costs other than the transmission costs according to the basic rates. A communication in text form to the contact details mentioned under point 1 (e.g. e-mail, fax, letter) is sufficient. We will then delete your stored personal data, as far as we do not have to save them for the processing of orders or due to legal storage requirements.

The legal basis for the processing of this data is your consent in accordance with Art. 6 para. 1 p. 1 a) GDPR.

3.6             Newsletter

To subscribe to the newsletter you will need the data requested in the registration process. The registration for the newsletter will be logged. After logging in, you will receive a message on the specified email address requesting confirmation of your registration (“Double Opt-in”). This is necessary so that third parties cannot register with their email address.

You can always revoke your consent to receive the newsletter and thus unsubscribe from the newsletter.

We save the registration details as long as they are needed for sending the newsletter. The logging of the application and the shipping address are stored as long as there was an interest in the proof of the originally given consent, as a rule, these are the limitation periods for civil claims, thus a maximum of three years.

Legal basis for sending the newsletter is your consent acc. Art. 6 para. 1 sentence 1 a) in conjunction with Art. 7 GDPR in conjunction with § 7 para. 2 no. 3 UWG. Legal basis for logging the application is our legitimate interest in proving that the shipment was made with your consent.

You can cancel the registration at any time, without incurring any costs other than the transmission costs according to the basic rates. A communication in text form to the contact details mentioned under point 1 (e.g. e-mail, fax, letter) is sufficient. Of course, you will also find in every newsletter an unsubscribe link.

3.7             product recommendations

Regardless of the newsletter, we will send you regular product recommendations by e- mail. In this way, we will provide you with information about products from our offering that you may be interested in based on your recent purchases of goods or services from us. We comply strictly with the legal requirements. You can object to this at any time without incurring any costs other than the transmission costs according to the basic tariffs. A communication in text form to the contact details mentioned under point 1 (e.g. e-mail, fax, letter) is sufficient. Of course, you will also find an unsubscribe link in every e-mail.

Legal basis for this is the legal permission according to Art. 6 Abs. 1 S. 1 f) GDPR in conjunction with § 7 Abs. 3 UWG.

3.8             e-mail contact

If you contact us in contact (e.g. as by contact form or e-mail), we will process your data for processing the request and in the event that follow-up questions arise.

If the data processing to perform pre-contractual measures which take place at your request, or if you are already our customer, for execution of the contract, the legal basis is for this data processing Art. 6 para. 1 p. 1 b) GDPR.

Other personal data we process only if you agree to it (Art. 6 para. 1 p. 1 a) GDPR) or we have a legitimate interest in the processing of your data (. Art. 6 para. 1 S 1 f) GDPR). A legitimate interest lies z. For example, responding to your email.

 

4             storage time

Unless specifically stated, we store personal data only as long as necessary for the fulfillment of the purposes that have been performed.

In some cases, the legislator provides for the retention of personal data, for example in tax or commercial law. In these cases, the data will be stored by us only for these legal purposes, but not otherwise processed and deleted after expiration of the statutory retention period.

 

5             Your rights as data controller

Under applicable law, you have various rights to your personal information. If you would like to assert these rights, please send your request by e-mail or by post with a clear identification of your person to the address specified in section 1.

Below is an overview of your rights.

5.1             Right to confirmation and information

You have the right to clear information about the processing of your personal data.

In detail:

You have the right at any time to obtain confirmation from us as to whether personal data relating to you is being processed. If this is the case, you have the right to ask us for free information about your personal data stored together with a copy of this data. Furthermore, there is a right to the following information:

  1. the processing purposes;
  2. the categories of personal data being processed;
  3. the recipients or categories of recipients to whom the personal data have been disclosed or are still being disclosed, in particular to recipients in third countries or to international organizations;
  4. if possible , the planned duration for which the personal data are stored or, if this is not possible, the criteria for determining that duration;
  5. the existence of a right of correction or deletion of the S he personal data, or limitation of the processing by the controller or the right of appeal against this processing;
  6. the existence of a right of appeal to a supervisory authority;
  7. if the personal information is not collected from you , all available information about the source of the data;
  8. the existence of automated decision making including profiling according to   22   Paragraphs 1 and 4 GDPR and – at least in these cases – meaningful information about the logic involved, as well as the scope and the intended effects of such processing for you .

If personal data are transmitted to a third country or an international organization, you have the right to dispose of the appropriate guarantees in accordance with Art. 46 GDPR in connection with the transmission to be informed.

5.2             Right to rectification

You have the right to demand that we correct and, if necessary, complete your personal data.

In detail:

You have to demand that we immediately rectification your of respective incorrect personal data the right. Taking into account the purposes of processing, you have the right to request the completion of incomplete personal data, including by means of a supplementary statement.

5.3             Right to cancellation (“right to be forgotten “)

In a number of cases, we are required to delete your personal information.

In detail:

They have pursuant to Article 17, Section 1 GDPR to demand from us the right that your relevant personal data are deleted immediately, and we are obliged to delete personal data immediately unless one of the following reasons applies:

  1. The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  2. You revoke your consent to the processing in accordance with   6   Abs. 1 p. 1 a ) GDPR or   Art. 9   Abs. 2 (a) GDPR and there is no other legal basis for the processing.
  3. You lay according to   21   Abs. 1 GDPR objection to the processing and there are no prior justifiable grounds for processing, or you submit according to   Art. 21   Abs. 2 GDPR objection to the processing.
  4. The personal data were processed unlawfully.
  5. The deletion of personal data is required to fulfill a legal obligation under Union or national law to which we are subject.
  6. Personal data has been provided in relation to information society services offered 8th   Abs. 1 GDPR levied.

If we have made the personal data publicly available and if we are obliged to delete it in accordance with Art. 17 (1) GDPR , we shall take appropriate measures, including technical ones, for data controllers who are responsible for the personal data, taking into account the available technology and the implementation costs process data to inform you that you are of them to delete all links to these personal data or copies or replications of personal data requires ha ben.

5.4             Right to restriction of processing

In a number of cases, you may request that we restrict the processing of your personal information.

In detail:

You have the right to require us to restrict processing if any of the following conditions apply:

  1. The accuracy of your personal information is contested by you for a period of time that enables us to verify the accuracy of your personal information.
  2. the processing is unlawful and rejects the deletion of personal data en and instead calls for the restriction of the use of personal data;
  3. We no longer need your personal information for the purposes of processing, but you need the information to assert, exercise or defend your rights, or
  4. You object to the processing according to   21   Abs. 1 GDPR have filed, as long as it is not certain whether the legitimate reasons of our company outweigh theirs.

5.5             Right to data portability

You have the right to receive, transmit or transmit any personal data relating to you in a machine-readable manner.

In detail:

You have the right to receive the personal information you provide to us in a structured, common and machine-readable format, and you have the right to submit that information to another person without hindrance, provided that

  1. processing on consent in accordance with   Art . 6 1 p. 1 a ) GDPR or   Art. 9   Abs. 2 a) GDPR or on a contract according to   Art. 6   Abs. 1 p. 1 b ) GDPR is based and
  2. the processing is done using automated procedures.

In the exercise I hres right to data portability under paragraph 1, you have the right to obtain, that the personal data is transmitted directly from us another charge, if this is technically feasible.

5.6             Right of objection

You have the right to object to the lawful processing of your personal data by us if this is based on your particular situation and if our interests in processing do not prevail.

In detail:

You have the right, for reasons arising from your particular situation at any time to the processing Y ou of respective personal data, by virtue of   Art. 6   Abs. 1 p. 1 e) or f) GDPR, objection is lodged; this also applies to profiling based on these provisions. We no longer process personal information, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.

If personal data are processed by us in order to operate direct mail, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.

You have the right, for reasons arising from your particular situation against which you relevant processing S to scientific or historical research purposes or for statistical purposes i.e. of respective personal data, according to   Art. 89   Abs. 1 GDPR takes an objection, unless the processing is necessary to fulfill a task of public interest.

5.7             Automated decisions including profiling

You have the right, not one solely on automated processing – to be subject-based decision that will unfold over legal effect or you significantly affected in a similar way – including profiling.

There is no automated decision-making based on personal data collected.

5.8             Right to revoke a data protection consent

You have the right to revoke your consent to the processing of personal data at any time.

5.9             Right to complain to a supervisory authority

You have the right to appeal to a regulatory authority, in particular in the Member State of your residence, your workplace or the location of the alleged violation, if you consider that the processing of S is unlawful i.e. personal data.

 

6             Data Security

We make every effort to ensure the security of your data within the framework of applicable data protection laws and technical possibilities.

Your personal data will be transmitted encrypted with us. This applies to your orders and also to the customer login. We use the coding system SSL (Secure Socket Layer), but point out that data transmission over the Internet (e.g. in the case of communication by e-mail) can have security gaps. A complete protection of the data from access by third parties is not possible.

To safeguard your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, which we always adapt to state-of-the-art technology.

We also do not warrant that our offer will be available at specific times; Disturbances, interruptions or failures cannot be excluded. The servers we use are regularly backed up carefully.

 

7             Transfer of data to third parties, no data transfer to non-EU countries

Basically, we only use your personal data within our company.

If and to the extent that we engage third parties in the performance of contracts (such as logistics service providers), they will only receive personal data to the extent that the transmission is required for the corresponding service.

In the event that we outsource certain parts of the data processing (“order processing”), we contractually obligate processors to use personal data only in accordance with the requirements of data protection laws and to ensure the protection of the data subject’s rights.

Data transmission to bodies or persons outside the EU outside de s in this Declaration, in paragraph 4, if mentioned does not take place and is not planned.

 

8             Data Protection Officer

We are a small company and have no privacy officer.