Privacy Policy

Controller for Data Processing

The controller pursuant to Art. 4(7) of the EU General Data Protection Regulation (GDPR) and the applicable state-specific data protection provisions is:

Franz H. Bruder GmbH, Neuensteiner Straße 5, 77728 Oppenau

Tel.: +49 7804 97 55 - 0, info@bruder-gmbh.de

Managing Director: Maximilian Bruder, Data Protection Officer: datenschutz@bruder-gmbh.de

Your Rights as a Data Subject

You may request information about the personal data stored about you at the address stated above (Art. 15 GDPR). Furthermore, you may request rectification if we have stored inaccurate data about you (Art. 16 GDPR). You may also, under certain conditions, request the deletion of your data (Art. 17 GDPR) or exercise your right to object (Art. 21 GDPR). You are equally entitled to the right to restriction of processing of your personal data (Art. 18 GDPR) as well as the right to receive the data you have provided in a portable format (Art. 20 GDPR). The right to information and the right to deletion are subject to the limitations set out in §§ 34 and 35 BDSG (German Federal Data Protection Act). In addition, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR in conjunction with § 19 BDSG). If you believe that the processing of your personal data violates the provisions of the General Data Protection Regulation, you have the right to contact the competent supervisory authority for data protection. In the case of Baden-Württemberg, this is:

The State Commissioner for Data Protection and Freedom of Information: Office address: Königstraße 10a, 70173 Stuttgart. Postal address: Postfach 10 29 32, 70025 Stuttgart. Telephone: +49 711/615541-0, Fax: 0711/615541-15. Email: poststelle@lfdi.bwl.de

If you have given consent to the processing of your data, you may withdraw this consent at any time. Such withdrawal shall affect the permissibility of the processing of your personal data after you have communicated it to us.

Insofar as we base the processing of your personal data on the balancing of interests, you may object to the processing. This applies where the processing is not necessary, in particular, for the performance of a contract with you, which is explained in each case in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data in the manner we have carried out. In the event of your justified objection, we will review the situation and will either cease or adjust the data processing, or demonstrate our compelling legitimate grounds on the basis of which we will continue the processing.

Retention Period

Unless otherwise specified in the detailed descriptions of the offers or procedures, we process and store your personal data for as long as necessary to fulfill our contractual and legal obligations. Your personal data will be regularly deleted or blocked if it is no longer necessary for the fulfillment of contractual or legal obligations, you have exercised your right to erasure, all mutual claims have been settled, and there are no other legal retention obligations or legal grounds for storage.

 

Automated Decision-Making

We do not use automated processing that results in automated decision-making or profiling regarding you.

 

Data Transfer to Third Countries

Data is transferred to countries outside the EU/EEA (so-called third countries) only to the extent that this is necessary or required by law, you have given us your consent, or within the scope of data processing on our behalf. If service providers in third countries are used, they are obligated, in addition to written instructions, to comply with the data protection standards in Europe through the EU Standard Contractual Clauses.

 

General Information

We appreciate your interest in our website. The protection of your personal data when visiting our homepage is of particularly high importance to the management of Franz H. Bruder GmbH. With the following information, we provide you with an overview of the processing of your personal data by us and your rights under data protection law. Personal data is any data that can be personally attributed to you, e.g. name, address, email addresses, user behavior. If a data subject wishes to make use of special services offered by our company via our website, such as our contact form, the processing of personal data may become necessary. Where the processing of personal data is required and there is no legal basis for such processing, we generally obtain the consent of the data subject. Processing is always carried out in accordance with the EU General Data Protection Regulation (GDPR) and in compliance with the state-specific data protection provisions applicable to Franz H. Bruder GmbH.

Franz H. Bruder GmbH, as the controller responsible for processing, has implemented technical and organizational measures to ensure the most comprehensive protection possible of personal data processed via this website against loss, destruction, access, modification, or distribution by unauthorized persons. This also includes the secure transmission of your personal data to us through encryption. We use the TLS (Transport Layer Security) encryption system for this purpose. Nevertheless, absolute protection cannot be guaranteed due to inherent security vulnerabilities in internet-based data transmissions.

We collect and use personal data of our users only insofar as this is necessary for the provision of a functional website and for the display of our content and the delivery of services. The collection and use of personal data of our users is generally carried out only with the user's consent. An exception applies in cases where prior consent cannot be obtained for practical reasons and the processing of data is permitted by statutory provisions. The following legal bases for the processing of your personal data may apply:

• Processing based on your consent (Art. 6(1)(a) GDPR)
• Processing for the performance of a contract to which the data subject is party. This also applies to processing operations necessary for the implementation of pre-contractual measures (Art. 6(1)(b) GDPR)
• Processing for compliance with a legal obligation to which our company is subject (Art. 6(1)(c) GDPR)
• Processing where vital interests of the data subject or of another natural person require the processing of personal data (Art. 6(1)(d) GDPR)
• Processing for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests, fundamental rights, and freedoms of the data subject (Art. 6(1)(f) GDPR). Legitimate interests may include, in particular:
  • delivering the content of our website correctly;
  • statistical analysis for the review and optimization of the website;
  • providing law enforcement authorities with the information necessary for criminal prosecution in the event of a cyberattack;
  • responding to inquiries and providing services and/or information intended for you;
  • processing and transferring personal data for internal or administrative purposes;
  • preventing and detecting cases of fraud and criminal offenses;
  • ensuring the continued functionality of our information technology systems and the technology of our website, with the aim of enhancing data protection and data security within our company.

Who receives your data?

Unless otherwise specified in the detailed descriptions of the offerings, those departments within our company that require your data to fulfill our contractual and legal obligations will have access to it. We will only disclose information about you if statutory notification obligations require it, you have given your consent, and/or another legal basis legitimizes such disclosure. Where we engage commissioned service providers for individual functions of our offering, these have been carefully selected and commissioned by us, are bound by our instructions, and are regularly monitored.

What happens in the background — what tools and techniques do we use to process your data?

Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies," text files that are stored on your computer and that enable an analysis of your use of the website. The information generated by the cookie about your use of this website is generally transferred to a Google server in the USA and stored there. EU data protection requirements mandate IP anonymization through truncation of the IP address, which has been configured accordingly. Therefore, your IP address will be truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area beforehand. A data processing agreement has been concluded with the service provider Google in the EU member state for this purpose. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide other services related to website usage and internet usage to the website operator. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other Google data. You may prevent the storage of cookies by adjusting your browser software settings accordingly; however, we point out that in this case you may not be able to use all functions of this website to their full extent. You may also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

Opt-out cookies prevent the future collection of your data when visiting this website. To prevent collection by Universal Analytics across different devices, you must carry out the opt-out on all systems used. If you click here, the opt-out cookie will be set: Disable Google Analytics. This website uses Google Analytics with the extension "_anonymizeIp()." This means that IP addresses are processed in truncated form, so that any link to a specific person can be ruled out. Insofar as the data collected about you allows a personal reference, this is immediately excluded, and the personal data is thus promptly deleted. We use Google Analytics to analyze and regularly improve the use of our website. The statistics obtained allow us to improve our offering and make it more interesting for you as a user. For exceptional cases in which personal data is transferred to the USA, so-called Standard Contractual Clauses are used as the transfer mechanism. Information from the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of use: http://www.google.com/analytics/terms/de.html. Privacy overview: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy: http://www.google.de/intl/de/policies/privacy. This website also uses Google Analytics for cross-device analysis of visitor flows, which is carried out using a User ID.

Facebook

We maintain a presence on the social network Facebook, Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA (hereinafter "Facebook"), by operating a so-called fan page. Through this page, you have the opportunity to contact us directly and to receive information about current events from our company. Through this page, we as the operator receive data from Facebook, which may include personal data. We use and process these so-called "Facebook Insights" — as described below — on the basis of our legitimate interests pursuant to Art. 6(1)(f) GDPR. We can retrieve statistical data of various categories from Facebook, such as:

• Number of page views
• "Likes"
• Page activities
• Video views
• Post reach
• Comments
• Shared content
• Male/female ratio
• Origin by country and city
• Language
• Views
• Clicks

We use this data to optimize our own posts. For example, we learn which types of posts are not successful among the desired target groups and can continuously refrain from publishing them. We also use the analysis of "Likes" on posts to invite the respective individuals to our page (i.e., to "Like" the fan page as a whole). Furthermore, the aforementioned data provides us with information about which types of posts generate the most interactions at which time of day and on which day of the week. Based on this information, we optimize the times at which we publish our posts.

Instagram

We have set up a company profile on Instagram to provide you with authentic and visual insights into our company. Instagram is a company within the Facebook group. The European headquarters of the company is located in Ireland: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Facebook Ireland Limited is a company registered under Irish law. Commercial register number: 462932 impressum@support.instagram.com

General information on Facebook and Instagram

We recommend reading Facebook's Data Policy and Instagram's Privacy Policy in detail before using Facebook and Instagram.

There you will find further details and answers to the following questions: What types of information do the providers collect? How is this data used? How is information shared? How do the Facebook companies work together with regard to your data? What legal basis do the companies rely on when processing data? How do the companies handle data storage, account deactivation, and account deletion? How do the companies handle legal requests? How do the companies process data within the scope of their global services? How will you be informed about changes to the data policy? How can you contact the companies?

Integration of Google Maps

On our website, we use the Google Maps service in the form of a link. This allows you to view an interactive map, and we enable you to conveniently use the map function. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned under the section "Use of server log files" in this statement will be transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged into Google, your data will be directly associated with your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data as usage profiles and uses them for purposes of advertising, market research, and/or the needs-based design of its website. Such evaluation takes place in particular (even for users who are not logged in) for the provision of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact Google directly to exercise this right. Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the provider's privacy policy. There you will also find further information about your rights and setting options for the protection of your privacy: https://policies.google.com/privacy. You can exercise your right to object in particular via the opt-out plug-in: https://tools.google.com/dlpage/gaoptout?hl=de.

For exceptional cases in which personal data is transferred to the USA, so-called Standard Contractual Clauses are used as the transfer mechanism. Information from the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

Use of server log files

Each time our website is accessed by a data subject or an automated system, a series of general data and information is recorded in log files. This includes an Internet Protocol address (IP address), the browser types and versions used, the website from which an accessing system reaches our website (so-called referrer), the sub-pages accessed on our website via an accessing system, the date and time of access to the website, and other similar data and information that serve to avert threats in the event of attacks on our information technology systems. The legal basis for the temporary storage of data and log files is Art. 6(1)(f) GDPR, based on the aforementioned legitimate interests. Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must be stored for the duration of the session. Storage in log files is carried out to ensure the functionality of the website. In addition, the data serves to optimize the website and to ensure the security of our information technology systems. Our legitimate interest in data processing pursuant to Art. 6(1)(f) GDPR also applies here. The data is deleted as soon as it is no longer necessary for the purpose for which it was collected. In the case of data collected for the provision of the website, this is when the respective session has ended. The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. An additional option for reviewing the log files exists where, on the basis of specific indications, there is a legitimate suspicion of unlawful use or a specific attack on our website. Our legitimate interest in processing lies in the purpose of investigating and prosecuting such attacks and unlawful use.

Use of cookies

In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive in association with the browser you use, and through which certain information flows to the entity that sets the cookie (in this case, us). Cookies cannot execute programs or transmit viruses to your computer. They serve to make the website as a whole more user-friendly and effective. This website uses the following types of cookies, the scope and functionality of which are explained below: Transient cookies are automatically deleted when you close the browser. This includes, in particular, session cookies. These store a so-called session ID, which allows various requests from your browser to be assigned to the common session. This enables your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close the browser. Persistent cookies are automatically deleted after a predetermined period, which may vary depending on the cookie. You can delete cookies at any time in your browser's security settings. When accessing our website, you will be informed about the use of cookies, and your consent to the processing of personal data used in this context will be obtained. A reference to this privacy policy is also provided in this context. You can configure your browser settings according to your preferences and, for example, decline third-party cookies or all cookies. As a user, you thus have full control over the use of cookies. The legal basis for the processing of personal data using cookies is Art. 6(1)(f) GDPR. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website to their full extent.

The following cookies are used:

Essential: Contao CSRF Token — Purpose: Protects the website against cross-site request forgery. The cookie is deleted when the browser is closed.

Essential: Contao Cookie ncoi_17 — Purpose: Stores the cookie settings.

Essential: Contao HTTPS CSRF Token — Purpose: Protects the encrypted website (HTTPS) against cross-site request forgery. The cookie is deleted when the browser is closed.

Essential: PHP SESSION ID — Purpose: PHP (programming language) cookie, PHP data identifier. Contains only a reference to the current session. No information is stored in the user's browser, and this cookie can only be used by the current website. This cookie is primarily used in forms to enhance user-friendliness. Data entered in forms is, for example, temporarily stored if the user makes an input error and receives an error message. Otherwise, all data would need to be re-entered.

Essential: FE USER AUTH — Purpose: Stores information about a visitor once they log into the frontend.

Analytics: Google Analytics — Purpose: Display of Google Maps.

External media: YouTube — Display of videos.

 

 

Weitere Funktionen und Angebote unserer Website

Neben der rein informatorischen Nutzung unserer Website bieten wir verschiedene Leistungen an, die Sie bei Interesse nutzen können. Dazu müssen Sie in der Regel weitere personenbezogene Daten angeben, die wir zur Erbringung der jeweiligen Leistung nutzen und für die die zuvor genannten Grundsätze zur Datenverarbeitung gelten.

 

Verwendung der Kontaktmöglichkeiten

Auf unserer Webseite steht ihnen ein Kontaktformular zur Verfügung, welches zur elektronischen Kontaktaufnahme genutzt werden kann. Die dabei durch den Nutzer eingegebenen Daten werden an uns übermittelt und gespeichert. Dazu zählen zur Eingrenzung Ihrer Anfrage unser Teilespektrum, und Ihre personenbezogenen Angaben, die sind: Vorname, Nachname, Firma, Telefon und Ihre E-Mail-Adresse. Alle weiteren Angaben sind freiwillig und gehen über das Notwendige hinaus. Für die Verarbeitung Ihrer Daten wird im Rahmen des Absende-Vorgangs Ihre Einwilligung eingeholt und auf diese Datenschutzerklärung verwiesen . Rechtsgrundlage für die Verarbeitung der Daten bei der Verwendung des Kontaktformulars ist damit Art. 6 Abs.1 lit. a DSGVO.

Alternativ besteht die Möglichkeit der Kontaktaufnahme über die bereitgestellte E-Mail-Adresse. Bei deren Nutzung die mit der E-Mail übermittelten personenbezogenen Daten des Nutzers gespeichert werden. Die Daten dienen ausschließlich der weiteren Konversation mit Ihnen und werden nicht an Dritte weitergegeben. Für die Verarbeitung von Daten die im Zuge einer Übersendung einer E-Mail übermittelt werden liegt mit Art.6 Abs.1 lit. f DSGVO ein berechtigtes Interesse vor. Zielt die Kontaktaufnahme auf den Abschluss eines Vertrages ab, so ist mit der Durchführung vorvertraglicher Maßnahmen und der ggf. späteren Verarbeitung zur Erfüllung eines Vertrages zusätzliche die Rechtsgrundlage für die Verarbeitung lt. Art. 6 Abs.1 lit. b DSGVO einzubeziehen. Personenbezogene Daten, die im Rahmen einer allgemeinen Kontaktanfrage per Kontaktformular oder per E-Mail von uns verarbeitet werden, speichern wir nur so lange, bis die jeweilige Korrespondenz beendet ist. Beendet ist die Konversation dann, wenn sich aus den Umständen entnehmen lässt, dass der betroffene Sachverhalt abschließend geklärt ist. Einwilligungen zur Verarbeitung Ihrer personenbezogenen Daten können jederzeit widerrufen werden. Im Fall einer E-Mail-Kontaktaufnahme mit uns können Sie der Speicherung Ihrer personenbezogenen Daten selbstverständlich auch jederzeit widersprechen. In einem solchen Fall kann die Konversation nicht weiter fortgeführt werden.

 

Links zu anderen Webseiten

Unser Angebot enthält Links zu externen Webseiten Dritter, auf deren Inhalte wir keinen Einfluss haben. Deshalb können wir für diese fremden Inhalte auch keine Gewähr übernehmen. Für die Inhalte der verlinkten Seiten ist stets der jeweilige Anbieter oder Betreiber der Seiten verantwortlich. Die verlinkten Seiten wurden zum Zeitpunkt der Verlinkung auf mögliche Rechtsverstöße überprüft. Rechtswidrige Inhalte waren zum Zeitpunkt der Verlinkung nicht erkennbar. Eine permanente inhaltliche Kontrolle der verlinkten Seiten ist jedoch ohne konkrete Anhaltspunkte einer Rechtsverletzung nicht zumutbar. Bei bekannt werden von Rechtsverletzungen werden wir derartige Links umgehend entfernen. Bitte beachten Sie die Datenschutzerklärungen der Dritten, auf deren Seite der Link erfolgt.
Unsere Website verwendet insbesondere Links zu unserer Firmenpräsentation, Bildern und unseren neuesten Informationen auf den sozialen Netzwerken facebook.com und instagram.com welche von der Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA betrieben werden. Diese Links sind mit einem Facebook- bzw. Instagram-Logo gekennzeichnet.