en
Quickorder

Privacy Policy of EHRLE GmbH

We welcome you to our website and appreciate your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the EU General Data Protection Regulation (EU GDPR) and the country-specific implementation laws applicable to us. With the help of this data protection declaration, we inform you comprehensively about the processing of your personal data by EHRLE GmbH and the rights to which you are entitled.

Personal data is the information that makes it possible to identify a natural person. This includes in particular your name, date of birth, address, telephone number, e-mail address but also your IP address.

Anonymous data exists if no personal reference to the user can be established.

Responsible body and data protection officer

EHRLE GmbH
Industriestraße 3
D-89165 Dietenheim - Germany

Website:   https://www.ehrle.com/
Phone:   +49 (0) 7303 / 1600 0
Fax:   +49 (0) 7303 / 1600 600
E-Mail:   info@ehrle.com

Contact of the Data Protection Officer

E-Mail   info@ehrle.com

Your rights as a concerned person

First of all, we would like to inform you here about your rights as a person concerned. These rights are standardised in Articles 15 - 22 of the EU GDPR. This includes:

  • The right to information (Article 15 EU-GDPR),
  • The right to cancellation (Art. 17 EU GDPR),
  • The right to rectification (Art. 16 EU GDPR),
  • The right to data transfer (Art. 20 EU GDPR),
  • The right to restrict data processing (Art. 18 EU GDPR),
  • The right to object to data processing (Art. 21 EU GDPR).

To claim these rights, please contact: info@ehrle.com. The same applies if you have questions about data processing in our company. You also have a right of appeal to a data protection supervisory authority.

Right of appeal

Please note the following in connection with rights of objection:

If we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without giving reasons. This also applies to profiling in so far as it is related to direct advertising.

If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made form-free, if possible to: info@ehrle.com.

In the event that we process your data to safeguard legitimate interests, you may at any time object to such processing for reasons arising from your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can prove compelling reasons worthy of protection for the processing which outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.

Purposes and legal bases of data processing

The processing of your personal data complies with the provisions of the EU GDPR and all other applicable data protection regulations. Legal bases for data processing result in particular from Art. 6 EU GDPR.

We use your data for business initiation, for the fulfilment of contractual and legal obligations, for the execution of the contractual relationship, for offering products and services and for strengthening the customer relationship, which may also include analyses for marketing purposes and direct advertising.

Your consent also constitutes a data protection regulation. In doing so, we will inform you about the purposes of data processing and your right of withdrawal. If the consent also relates to the processing of special categories of personal data, we will expressly inform you in the consent, Art. 88 para. 1 EU-GDPR.

Processing of special categories of personal data within the meaning of Art. 9 (1) EU GDPR only takes place if this is required by law and there is no reason to assume that your legitimate interest in the exclusion of processing predominates, Art. 88 (1) EU GDPR.

Forwarding to third parties

We will only pass on your data to third parties within the framework of legal regulations or with appropriate consent. Otherwise, data will not be passed on to third parties unless we are obliged to do so by mandatory legal provisions (transfer to external bodies such as supervisory authorities or law enforcement authorities).

Recipients of data / categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfil their contractual and legal obligations.

In many cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection agreements have been concluded with all service providers. Your data may be viewed by web hosting service providers

Transfer to a third country / Intention to transfer to a third country

Data will only be transmitted to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual obligation, is required by law or you have given us your consent.

We do not transfer your personal data to a service provider or group company outside the European Economic Area.

Duration of data storage

We store your data as long as it is needed for the respective processing purpose. Please note that numerous retention periods require that data continue to be (must be) stored. This applies in particular to commercial or tax storage obligations (e.g. German Commercial Code, Fiscal Code, etc.). If there are no further storage obligations, the data will be routinely deleted after the purpose has been achieved.

In Addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence within statutory limitation periods of up to thirty years; the regular limitation period is three years.

Secure transmission of your data

In order to protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we use appropriate technical and organizational security measures. The security levels are continuously checked in cooperation with security experts and adapted to new security standards.

The data exchange from and to our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current encryption protocols. It is also possible to use alternative communication channels (e.g. by post).

Obligation to provide the data

Various personal data are necessary for the establishment, execution and termination of the obligation and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.

We have summarised the details for you in the above point. In certain cases, data must also be collected or made available on the basis of legal regulations. Please note that it is not possible to process your request or to perform the underlying obligation without providing this data.

Categories, sources and origin of data

The context determines which data we process: This depends on whether you place an order online or enter an enquiry in our contact form, whether you send us an application or submit a complaint.

Please note that we may also make information available separately at a suitable location for special processing situations, e.g. when uploading application documents or making a contact request.

When you visit our website we collect and process the following data:

  • Name of the Internet service provider
  • Information about the website from which you are visiting us
  • Web browser and operating system used
  • The IP address assigned by your Internet Service Provider
  • Requested files, transferred data volume, downloads/file export
  • Information about the web pages you visit on our site, inc. Date and time.
  • For reasons of technical security (in particular to prevent attempts to attack our web server) these data are stored in accordance with Art. 6 paragraph 1 letter F EU- GDPR. After 7 days at the latest, anonymization takes place by shortening the IP address, so that no reference to the user is established.

As part of the order process we process the following data:

  • Salutation
  • Last name, first name
  • Date of birth
  • Shipping address
  • Billing address
  • Email address
  • Data which may legitimately be processed from other sources

In the context of a contact inquiry we collect and process the following data:

  • Last name, first name
  • Contact details
  • Salutation, Subject
  • Information on wishes, interests, communications and news

Contact form / Contact by e-mail (Art. 6 par. 1 lit. A, b EU- GDPR)

There is a contact form on our website which can be used for electronic contact. If you write to us using the contact form, we will process the information you provide in the contact form to contact you and answer your questions and requests.

Here, the principle of data economy and data avoidance is observed, in that you only have to provide the data that we absolutely need to contact you. These are your name and e-mail address as well as the message field itself. In addition, your IP address is processed for technical reasons and for legal protection. All other data are voluntary fields and can be entered optionally (e.g. for more individual answers to your questions).

If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your inquiry. If you do not use the offered forms to contact us, no further data will be collected.

Webshop (Article 6 Abs. 1 lit. B EU- GDPR)

We process the data provided by you within the scope of the order form only for the execution or processing of the contractual relationship, unless you agree to further use.

The principle of data economy and data avoidance is observed, in that you only have to give us the data which we absolutely need for the execution of the contract or for the fulfilment of our contractual obligations (i.e. your name, address, e-mail address and the payment data required for the chosen payment method) or which we are legally obliged to collect.

In addition, your IP address is processed for technical reasons and for legal protection. Without these data we will unfortunately have to refuse the conclusion of the contract, as we will then not be able to execute it or may have to terminate an existing contract. Of course, you can also enter more data of your own accord if you wish.

Registration / customer account (Art. 6 par. 1 lit. A, b EU- GDPR)

On our website, we offer users the opportunity to register by providing personal data. The advantage is that you can view the order history and your data is saved for the order form. If you place another order, you do not have to enter it again.

Registration is therefore necessary or possible either to fulfil a contract (via our online shop) with you or to carry out pre-contractual measures, if guest access is also provided.

The principle of data economy and data avoidance is observed, as only the data required for registration are marked with an asterisk (*). These are e.g. the e-mail address as well as password including password repetition. For the order in our online shop we also need information on the invoice address (title, first name, surname, address) for delivery. If the delivery address differs from the billing address, the above information must also be provided for the delivery address.

By registering on our website, the IP address of the user, the date and time of registration are also stored (technical background data). By clicking the button "Register now" you give your consent to the processing of your data.

Please note: The password you have given us is stored in encrypted form. Employees of our company cannot read this password. They can therefore not give you any information if you have forgotten your password.

In this case, use the "Forgot password" function, with which an automatically generated new password is sent to you by e-mail. No employee is entitled to ask you for your password by telephone or in writing. Please never give your password if you receive such requests.

Upon completion of the registration process, your data is stored with us for the use of the protected customer area. As soon as you log in on our website with your e-mail address as user name and password, this data will be made available on our website for actions carried out by you (e.g. for orders in our online shop). Executed orders can be traced in the order history. You can change the billing or delivery address here.

Registered persons are free to make changes / corrections to the invoice or delivery address in the order history independently. Our customer service will also be happy to make changes / corrections if you contact them. Of course, you can also cancel or delete the registration or your customer account.

Payment systems (Art. 6 para. 1 lit. A, b EU GDPR), credit assessment (Art. 6 para. 1 lit. F EU GDPR)

In our online shop you can pay on account. For this the respective payment-relevant data are raised, in order to be able to accomplish your order as well as payment completion. In addition, your IP address is processed for technical reasons and for legal protection.

The principle of data economy and data avoidance is observed, in that you only have to provide us with the data that we absolutely need for the execution of the payment processing and thus processing of the contract or to whose collection we are legally obligated.

Without these data we will unfortunately have to refuse the conclusion of the contract, as we will then not be able to carry it out.

The payment system used by us uses SSL encryption for the secure transmission of your data.

Note on invoice payment: If you choose the payment method invoice in our online shop, we carry out a credit check. For this purpose, the data relevant to creditworthiness is determined to determine creditworthiness and default risks.

By selecting this payment option, the data subject consents to the transfer of personal data required for payment processing.

Personal data in connection with the respective order are also necessary for the processing of the purchase contract. Details on data protection at PayPal can be found at: www.paypal.com/de/webapps/mpp/ua/privacy-prev (for the legal situation from 25.5.2018).

Note on direct debiting: As is usual with direct debit, your account details are collected in order to debit the corresponding amount from your account. Please add or adjust payment modalities if necessary.

Advertising purposes Existing customers (Art. 6 para. 1 lit. F EU GDPR)

EHRLE GmbH is interested in maintaining customer relations with you and sending you information and offers about our products / services. We therefore process your data in order to send you relevant information and offers by e-mail.

If you do not wish to do so, you can object at any time to the use of your personal data for the purpose of direct marketing; this also applies to profiling insofar as it is connected with direct marketing. If you file an objection, we will no longer process your data for this purpose.

The objection can be made free of charge and free of form without giving reasons and should be addressed to +49 7303 1600 0, by e-mail to info@ehrle.com or by post to EHRLE GmbH, Industriestrasse 3, 89165 Dietenheim, Germany.

Automated individual case decisions

We do not use purely automated processing processes to bring about a decision.

Cookies (Art. 6 para. 1 lit. F EU GDPR / Art. 6 para. 1 lit. A EU GDPR with consent)

Our Internet pages use so-called cookies in several places. They serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser (locally on your hard drive).

These cookies enable us to analyse how users use our websites. In this way we can design the website content according to the visitor's needs. In addition, cookies enable us to measure the effectiveness of a particular ad and allow ist placement to take place, for example, depending on the user's thematic interests.

Most of the cookies we use are so-called "session cookies". These are automatically deleted after your visit. Permanent cookies are automatically deleted from your computer if they are valid (usually six months) or if you delete them yourself before they expire.

Most web browsers automatically accept cookies. However, you can usually change the settings of your browser if you prefer not to send the information. You can still use the offers on our website without restrictions (exception: configurators).

We use cookies to make our website more user-friendly, effective and secure. In addition, we use cookies, which enable us to analyse how users use our websites. In this way, we can design the content according to the needs of the visitors. In addition, cookies enable us to measure the effectiveness of a particular ad and allow ist placement to take place, for example, depending on the user's thematic interests.

Cookies are stored on the user's computer and transmitted to our site. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common internet browsers.

Please note: If you deactivate the setting of cookies, not all functions of our website may be fully usable.

Online offers for children

Persons under 16 years of age may not transmit any personal data to us or submit a declaration of consent without the consent of their legal guardians. We encourage parents and guardians to actively participate in their children's online activities and interests.

Links to other providers

Our website also contains - clearly recognisable - links to the websites of other companies. As far as there are links to websites of other providers, we have no influence on their contents. Therefore, no guarantee and liability can be assumed for these contents. The respective provider or operator of these pages is always responsible for their content.

At the time of linking, the linked pages were checked for possible legal infringements and recognisable infringements. Illegal contents were not recognizable at the time of linking. However, permanent monitoring of the content of the linked pages is unreasonable without concrete evidence of a violation of the law. Upon notification of violations of the law, such links will be removed immediately.