Personal data (usually referred to just as 'data' below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.
Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the 'GDPR'), 'processing' refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.
Our privacy policy is structured as follows:
I. Information about us as controllers of your data
II. The rights of users and data subjects
III. Information about the data processing
The party responsible for this website (the 'controller') for purposes of data protection law is:
g-HoReCa, Manjari Khetan
Lürriper Bruchweg 75
41065 Mönchengladbach
Germany
Telephone: +49(0)2161-9906040
Email: mail@g-horeca.com
With regard to the data processing to be described in more detail below, users and data subjects have the right
In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.
Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller's future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.
Your data processed when using our website will be deleted or blocked as soon as the purpose for its storage ceases to apply, provided the deletion of the same is not in breach of any statutory storage obligations or unless otherwise stipulated below.
For technical reasons, the following data sent by your internet browser to us or to our server provider will be collected, especially to ensure a secure and stable website: These server log files record the type and version of your browser, operating system, the website from which you came (referrer URL), the webpages on our site visited, the date and time of your visit, as well as the IP address from which you visited our site.
The data thus collected will be temporarily stored, but not in association with any other of your data.
The basis for this storage is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality, and security of our website.
The data will be deleted within no more than seven days, unless continued storage is required for evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the investigation of the relevant incident is finally resolved.
We use cookies on our website. Cookies are small text files or other storage technologies stored on your computer by your browser. These cookies process certain specific information about you, such as your browser, location data, or IP address.
This processing makes our website more user-friendly, efficient, and secure, allowing us, for example, to display our website in different languages or to offer a shopping cart function.
The legal basis for such processing is Art. 6 Para. 1 lit. b) GDPR, insofar as these cookies are used to collect data to initiate or process contractual relationships.
If the processing does not serve to initiate or process a contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR.
When you close your browser, these session cookies are deleted.
You can refuse the use of cookies by changing the settings on your browser. Likewise, you can use the browser to delete cookies that have already been stored. However, the steps and measures required vary, depending on the browser you use. If you have any questions, please use the help function or consult the documentation for your browser or contact its maker for support. Browser settings cannot prevent so-called flash cookies from being set. Instead, you will need to change the setting of your Flash player. The steps and measures required for this also depend on the Flash player you are using. If you have any questions, please use the help function or consult the documentation for your Flash player or contact its maker for support.
If you prevent or restrict the installation of cookies, not all of the functions on our site may be fully usable.
The data you submit when ordering goods and/or services from us will have to be processed in order to fulfill your order. Please note that orders cannot be processed without providing this data.
The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.
After your order has been completed, your personal data will be deleted, but only after the retention periods required by tax and commercial law.
In order to process your order, we will share your data with the shipping company responsible for delivery to the extent required to deliver your order and/or with the payment service provider to the extent required to process your payment.
If you create a customer account with us via our website, we will use the data you entered during registration (e.g. your name, your address, or your email address) exclusively for services leading up to your potential placement of an order or entering some other contractual relationship with us, to fulfill such orders or contracts, and to provide customer care (e.g. to provide you with an overview of your previous orders or to be able to offer you a wishlist function). We also store your IP address and the date and time of your registration. This data will not be transferred to third parties.
During the registration process, your consent will be obtained for this processing of your data, with reference made to this privacy policy. The data collected by us will be used exclusively to provide your customer account.
If you give your consent to this processing, Art. 6 Para. 1 lit. a) GDPR is the legal basis for this processing.
If the opening of the customer account is also intended to lead to the initiation of a contractual relationship with us or to fulfill an existing contract with us, the legal basis for this processing is also Art. 6 Para. 1 lit. b) GDPR.
You may revoke your prior consent to the processing of your personal data at any time under Art. 7 Para. 3 GDPR with future effect. All you have to do is inform us that you are revoking your consent.
The data previously collected will then be deleted as soon as processing is no longer necessary. However, we must observe any retention periods required under tax and commercial law.
If you accept any offer we make for you to pay for goods or services on account, we reserve the right to run a credit check with a credit bureau (such as Creditreform, Schufa, Bürgel, or infoscore) to obtain credit information determined on the basis of mathematical-statistical methods. For this purpose, any data you provide that is relevant to the contract, such as your name and address, will be forwarded to the credit bureau. We then use the information obtained about the statistical probability of default to decide whether we will offer you payment on account.
The legal basis for such processing is our legitimate interest to avoid default on our account per Art. 6 Para.1 lit. f) GDPR.
We offer you the opportunity to subscribe to our free newsletter via our website. The prerequisite is that you are a verified customer with a customer account.
If you are interested, simply send us an e-mail with the subject "Subscribe to newsletter" to mail
@g-horeca.com . Please use the e-mail address with which you are registered in our store.In addition, by purchasing goods or services, you enable us to send newsletters to the e-mail address stored in your customer account under the very strict conditions of §7 (3) UWG.
We use MailChimp, a service of The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA, hereinafter referred to as "The Rocket Science Group", to send newsletters. This service now belongs to Intuit, which can be reached in Europe under Intuit France SAS, Intuit Data Protection Administration, 7 rue de la Paix 75002 Paris, France.
By doing so, The Rocket Science Group has fully complied with Intuit's global Privacy Policy and adapted its own legal Data Processing Policy.
The Rocket Science Group has certified its compliance with the EU-US Privacy Shield Framework since 2016. On July 16, 2020, Europe's highest court (the CJEU) invalidated the EU-US Privacy Shield. However, The Rocket Science Group will continue to voluntarily protect data from Europe in accordance with the Privacy Shield Principles for which compliance has been certified. Further details can be found in Intuit's global privacy policy mentioned above.
In addition, The Rocket Science Group is contractually obligated to transfer and process all European data of its users in accordance with the Standard Contractual Clauses (the "SCCs"), which continue to allow users of The Rocket Science Group's Mailchimp to lawfully transfer data subject to European data protection laws (including the GDPR) outside of Europe to Mailchimp in the United States. The SCCs apply automatically in accordance with the Data Processing Addendum of Mailchimp.
The Rocket Science Group has recently updated its Data Processing Addendum to ensure that it includes the new SCCs adopted by the European Commission on June 4, 2021. The new SCCs will automatically apply to all users using The Rocket Science Group's service since September 27, 2021 and to all other users from December 27, 2022. This is in line with the EU Commission's implementing decision of June 4, 2021, which accompanies the new SCCs.
The newsletter sent via The Rocket Science Group contains a so-called tracking pixel, also known as a web beacon. With the help of this tracking pixel, we can evaluate whether and when you have read our newsletter and whether you have followed any links contained in the newsletter. In addition to other technical data, such as the data of your IT system and your IP address, the processed data is stored so that we can optimize our newsletter offer and respond to the wishes of our readers. The data is therefore used to increase the quality and attractiveness of our newsletter offering.
The legal basis for sending the newsletter and the analysis is Art. 6 para. 1 lit. a.) GDPR when you register via e-mail, in the other cases listed Art. 6 para. 1 lit. f.) in conjunction with §7 para. 3 UWG.
You can revoke your consent to receive the newsletter at any time with effect for the future in accordance with Art. 7 para. 3 GDPR. All you have to do is inform us of your revocation or click on the unsubscribe link contained in every newsletter.
If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your inquiry; otherwise we will not be able to answer it in full or at all.
The legal basis for this data processing is Art. 6 Para. 1 lit. b) GDPR.
Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.
We offer you the opportunity to post questions, answers, opinions, and ratings on our website, hereinafter referred to jointly as 'posts.' If you make use of this opportunity, we will process and publish your post, the date and time you submitted it, and any pseudonym you may have used.
The legal basis for this is Art. 6 Para. 1 lit. a) GDPR. You may revoke your prior consent under Art. 7 Para. 3 GDPR with future effect. All you have to do is inform us that you are revoking your consent.
In addition, we will also process your IP address and email address. The IP address is processed because we might have a legitimate interest in taking or supporting further action if your post infringes the rights of third parties and/or is otherwise unlawful.
In this case, the legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in any legal defense we may have to mount.
Our website uses Google reCAPTCHA to check and prevent automated servers ('bots') from accessing and interacting with our website. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (hereinafter: Google).
Google guarantees that it will follow the EU's data protection regulations when processing data on its servers. This service allows Google to determine from which website your request has been sent and from which IP address the reCAPTCHA input box has been used. In addition to your IP address, Google may collect other information necessary to provide and guarantee this service. The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the security of our website and in the prevention of unwanted, automated access in the form of spam or similar.
Google offers detailed information concerning the general handling of your user data.
On our website we offer payment via PayPal if available. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as 'PayPal'). If you choose to pay via PayPal, the payment details you enter will be sent to PayPal. Please refer to PayPal's Privacy Policy for details: https://www.paypal.com/de/webapps/mpp/ua/privacy-full. Your data will only be transferred to PayPal if you choose this payment option. The basis is then Art. 6 para. 1 lit. b GDPR (processing for the fulfilment of a contract).
The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops seal of approval and the possibly collected evaluations as well as to offer the Trusted Shops products to buyers after an order.
This serves to safeguard our predominantly legitimate interests in optimal marketing within the framework of a balancing of interests by enabling secure purchasing in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO. The Trustbadge and the services advertised with it are an offer of the Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne. The trust badge is provided by a CDN provider (Content-Delivery-Network) as part of order processing. The Trusted Shops GmbH uses also Dienstleister from the USA. An appropriate level of data protection is ensured. You can find further information on data protection at Trusted Shops GmbH here: https://www.trustedshops.de/impressum/#datenschutz
When the trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call. Individual access data are stored in a security database for the analysis of security problems. The log files are automatically deleted 90 days after creation at the latest.
Further personal data are transferred to the Trusted Shops GmbH if you decide after conclusion of an order for the use of Trusted Shops products or have already registered for the use. The contractual agreement between you and Trusted Shops applies. For this an automatic collection of personal data takes place from the order data. Whether you as a buyer are already registered for a product use is automatically checked on the basis of a neutral parameter, the e-mail address hashed by cryptological one-way function. The e-mail address is converted into this hash value, which cannot be decoded for Trusted Shops, before transmission. After checking for a match, the parameter is automatically deleted.
This is necessary for the fulfilment of our and Trusted Shops' predominantly legitimate interests in the provision of the buyer protection linked to the specific order and the transactional valuation services in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO. Further details, including objections, can be found in the Trusted Shops data protection declaration linked above and in the Trustbadge.
Model Data Protection Statement for Anwaltskanzlei Weiß & Partner, individually extended.