1. GENERAL NOTES AND MANDATORY INFORMATION
The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. When you use this website, various personal data are collected. Personal data are data with which you can be personally identified. This data protection declaration explains what data we collect and what we use it for. It also explains how and for what purpose this is done. We would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
Note on the accountable body
The accountable body within the meaning of Art. 4 Paragraph 7 DGSVO for data processing on this website is:
EOS Saunatechnik GmbH
35759 Driedorf, Germany
Phone: +49 (0)2775 82-0
The accountable body is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).
Legally required data protection officer
We have appointed a data protection officer for our company.
Data protection officer at EOS Saunatechnik GmbH
35759 Driedorf, Germany
If you have any questions about data protection, you can contact our data protection officer at the above address or at the email address firstname.lastname@example.org.
Personal data is information that can be used to find out personal or factual circumstances about you, such as your name, address, telephone number or email address.
Information that we cannot use to relate to you is generally not personal data.
Purposes of data processing
When the website is accessed, the Internet browser used by the visitor automatically sends data to the server of this website and stores it in a log file for a limited period of time. Until the automatic deletion, the following data will be saved without further input by the visitor:
- IP address of the visitor's device,
- Date and time of access by the visitor,
- Name and URL of the page called up by the visitor,
- Website from which the visitor came to this website (so-called referrer URL),
- Browser and operating system of the visitor's device as well as the name of the access provider used by the visitor.
The processing of this personal data is justified in accordance with Article 6 Paragraph 1 Clause 1 lit f) GDPR. EOS-Saunatechnik has a legitimate interest in data processing for this purpose
- To enable a user-friendly application of the website
- To recognize and guarantee the security and stability of the systems and
- To facilitate and improve the administration of the website.
The processing is expressly not carried out for the purpose of gaining knowledge about the person visiting the website.
Mandatory information according to Article 13 GDPR
In the case of the first contact, we are obliged in accordance with Art. 12, 13 GDPR to provide you with the following mandatory information under data protection law: We only process your personal data
- if there is a legitimate interest in the processing (Art. 6 Para. 1 lit.f GDPR),
- you have consented to the data processing (Art. 6 Para. 1 lit. a GDPR),
- the processing is necessary for the initiation, justification, content design or change of a legal relationship between you and us (Art. 6 Para. 1 lit. b GDPR) or
- another legal norm allows processing.
Your personal data will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions - in particular retention periods under tax and commercial law - remain unaffected. You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to object, data portability and the right to lodge a complaint with the competent supervisory authority. You can also request the correction, deletion and, under certain circumstances, the restriction of the processing of your personal data.
Details can be found in our data protection declaration www.eos-sauna.com/en/legal-information. You can contact our data protection officer at: email@example.com
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. An informal e-mail to us is sufficient. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
Right to object to the collection of data in special cases and to direct advertising (Art. 21 GDPR)
If the data processing takes place on the basis of Art. 6 Paragraph 1 lit. e or f GDPR, you have the right to object to the processing of your personal data at any time for reasons that arise from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this data protection declaration. If you object, we will no longer process your personal data concerned, unless we can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims ( Objection according to Art. 21 Paragraph 1 GDPR).
Right of appeal to the competent supervisory authority
In the event of violations of the GDPR, the data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, their place of work or the place of the alleged violation.
Der Hessische Beauftragte für Datenschutz und Informationssicherheit
The right of appeal exists without prejudice to other administrative or judicial remedies.
Right to data portability
You have the right to have your personal data, which we process automatically on the basis of your consent or in fulfillment of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done if it is technically feasible.
Information, blocking, deletion and correction
Within the framework of the applicable statutory provisions, you have the right to free information about your stored personal data, their origin and recipient and the purpose of the data processing and, if necessary, a right to correction, Art. 16 GDPR, blocking, Art. 18 GDPR or deletion , Art. 17 GDPR, this data. You can contact us at any time at the address or email address given above if you have any further questions on the subject of personal data.
Right to restriction of processing
You have the right to request that the processing of your personal data be restricted. You can contact us at any time at the address given in the legal notice. The right to restriction of processing exists in the following cases:
- If you dispute the accuracy of your personal data stored by us, we usually need time to check this. For the duration of the test, you have the right to request that the processing of your personal data be restricted.
- If the processing of your personal data happened / happens unlawfully, you can request the restriction of the data processing instead of the deletion.
- If we no longer need your personal data, but you need them to exercise, defend or assert legal claims, you have the right to request that the processing of your personal data be restricted instead of being deleted.
- If you have lodged an objection in accordance with Art. 21 Paragraph 1 GDPR, your interests and ours must be weighed up. As long as it is not yet clear whose interests prevail, you have the right to request that the processing of your personal data be restricted.
If you have restricted the processing of your personal data, this data - apart from its storage - may only be used with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest processed by the European Union or a member state.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the website operator, this site uses an SSL or. TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line.
If the SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
2. DATA COLLECTION ON OUR WEBSITE
Some of the internet pages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser the next time you visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when you close the browser. If cookies are deactivated, the functionality of this website may be restricted.
Cookies that are required to carry out the electronic communication process or to provide certain functions you require (e.g. shopping cart function) are stored on the basis of Art. 6 Para. 1 lit.f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. If other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these will be treated separately in this data protection declaration.
A detailed list of the cookies used on this page can be found at the end of this data protection declaration.
If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent.
The processing of the data entered in the contact form takes place exclusively on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke this consent at any time. An informal e-mail to us is sufficient. The legality of the data processing operations carried out before the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions - in particular retention periods - remain unaffected.
Inquiries by email, phone or fax
If you contact us by e-mail, telephone or fax, your request, including all personal data derived from it (name, request), will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.This data is processed on the basis of Article 6 (1) (b) GDPR, provided that your request is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 Para. 1 lit. a GDPR) and / or on our legitimate interests (Art. 6 Para. 1 lit.f GDPR), as we have a legitimate interest in the effective Processing the inquiries sent to us.The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.
3. ANALYSIS TOOLS AND ADVERTISING
This website uses functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.Google Analytics uses so-called "cookies". These are text files that are saved on your computer and that enable your use of the website to be analyzed. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and saved there.The storage of Google Analytics cookies and the use of this analysis tool are based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.
We have activated the IP anonymization function on this website. As a result, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the USA. The full IP address will only be sent to a Google server in the USA and shortened there in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out, however, that in this case you may not be able to use all functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading the browser plug-in available under the following link and install: tools.google.com/dlpage/gaoptout.
Deactivate data collection
Data stored by Google at user and event level that are linked to cookies, user IDs (e.g. user ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID) are anonymized after 14 months or deleted. You can find details on this under the following link: support.google.com/analytics/answer/7667196
If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or is only collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
If you register for one of our newsletters, we will send a confirmation link to the email address you provided. You will only receive our newsletter after you have activated this confirmation link (double opt-in). The processing of the data entered in the newsletter registration form is based solely on your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "Unsubscribe" link in the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter.
After you have been removed from the newsletter distribution list, your email address may be stored in a blacklist by us or the newsletter service provider in order to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in compliance with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). The storage in the blacklist is not limited in time. You can object to the storage provided that your interests outweigh our legitimate interests.
This website uses Newsletter2Go to send newsletters. The provider is Newsletter2Go GmbH, Nürnberger Strasse 8, 10787 Berlin, Germany.Newsletter2Go is a service with which, among other things, the dispatch of newsletters can be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter will be stored on the Newsletter2Go servers in Germany.If you do not want an analysis by Newsletter2Go, you have to unsubscribe from the newsletter. We provide a link for this in every newsletter message. You can also unsubscribe from the newsletter directly on the website.
Data analysis by Newsletter2Go
With the help of Newsletter2Go it is possible for us to analyze our newsletter campaigns. So we can e.g. see whether a newsletter message has been opened and which links have been clicked. In this way we can determine, among other things, which links have been clicked particularly often.We can also see whether certain previously defined actions were carried out after opening / clicking (conversion rate). We can e.g. recognize whether you have made a purchase after clicking on the newsletter.Newsletter2Go also enables us to subdivide the newsletter recipients into different categories (“cluster”). The newsletter recipients can be e.g. subdivide according to age, gender or place of residence. In this way, the newsletters can be better adapted to the respective target groups.You can find detailed information on the functions of Newsletter2Go at the following link: www.newsletter2go.de/features/newsletter-software/.
The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke this consent at any time. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. This does not affect data that we have saved for other purposes.After you have been removed from the newsletter distribution list, your email address may be stored in a blacklist by us or the newsletter service provider in order to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in compliance with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). The storage in the blacklist is not limited in time. You can object to the storage provided that your interests outweigh our legitimate interests.For more information, see the data protection provisions of Newsletter2Go at: www.newsletter2go.de/features/datenschutz-2/.
Conclusion of an order processing contract
We have concluded a contract with Newsletter2Go in which we oblige Newsletter2Go to protect the data of our customers and not to pass them on to third parties. This contract can be viewed at the following link: https://www.newsletter2go.de/docs/datenschutz/ADV_Muster_Newsletter2Go_GmbH_latest_Form.pdf.
5. PLUGINS AND TOOLS
This website integrates videos from the YouTube website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of our websites on which YouTube is integrated, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited.
Furthermore, YouTube can save various cookies on your device. With the help of these cookies, YouTube can obtain information about visitors to this website. This information is used, among other things. used to collect video statistics, improve usability and prevent fraud attempts. The cookies remain on your device until you delete them.
If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Article 6 (1) (a) GDPR; the consent can be revoked at any time.
Further information on the handling of user data can be found in YouTube's data protection declaration at: https://policies.google.com/privacy?hl=de.
Google Web Fonts
This page uses so-called web fonts, which are provided by Google, for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to the Google servers. This gives Google knowledge that our website has been accessed via your IP address. The use of Google Web Fonts takes place in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit.f GDPR.
If your browser does not support web fonts, a standard font will be used by your computer.
Further information on Google Web Fonts can be found at developers.google.com/fonts/faq and in Google's data protection declaration: policies.google.com/privacy.
This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy findability of the places we have indicated on the website. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit.f GDPR.You can find more information on handling user data in Google's data protection declaration: policies.google.com/privacy.
6. OWN SERVICES
Handling of applicant data
We offer you the opportunity to apply to us (e.g. by email, post or via the online application form). In the following, we will inform you about the scope, purpose and use of your personal data collected during the application process. We assure you that your data will be collected, processed and used in accordance with the applicable data protection law and all other statutory provisions and that your data will be treated as strictly confidential.
Scope and purpose of the data collection
If you send us an application, we process your related personal data (e.g. contact and communication data, application documents, notes in the context of job interviews, etc.), insofar as this is necessary to decide on the establishment of an employment relationship. The legal basis for this is § 26 BDSG-new according to German law (initiation of an employment relationship), Art. 6 Paragraph 1 lit. b GDPR (general contract initiation) and - if you have given your consent - Art. 6 Paragraph 1 lit. a GDPR . The consent can be withdrawn at any time. Your personal data will only be passed on to persons within our company who are involved in processing your application.If the application is successful, the data you submit will be stored in our data processing systems on the basis of Section 26 of the BDSG-new and Article 6 (1) (b) GDPR for the purpose of carrying out the employment relationship.
Retention period of the data
If we cannot make you a job offer, you reject a job offer or withdraw your application, we reserve the right to store the data you have transmitted on the basis of our legitimate interests (Art. 6 Para. 1 lit.f GDPR) for up to 6 months to be kept with us from the end of the application process (rejection or withdrawal of the application). The data will then be deleted and the physical application documents destroyed. The storage serves in particular for evidence purposes in the event of a legal dispute. If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), it will only be deleted when the purpose for further storage no longer applies.Longer storage can also take place if you have given your consent (Art. 6 Para. 1 lit. a GDPR) or if statutory storage obligations prevent deletion.
7. OUR SOCIAL MEDIA PRESENTATIONS
Data processing through social networks
We maintain publicly accessible profiles on social networks. The individual social networks we use can be found below.
Social networks such as Facebook, Twitter etc. can generally analyze your user behavior comprehensively if you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). Visiting our social media presence triggers numerous data protection-related processing operations. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data can also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is recorded, for example, using cookies that are stored on your device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, the interest-based advertising can be displayed on all devices on which you are or were logged in.
Our social media appearances are intended to ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 Para. 1 lit.f GDPR. The analysis processes initiated by the social networks may be based on different legal bases that must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 Para. 1 lit. a GDPR).
Responsible and assertion of rights
If you visit one of our social media sites (e.g. Facebook), we and the operator of the social media platform are responsible for the data processing operations triggered during this visit. In principle, you can exercise your rights (information, correction, deletion, restriction of processing, data portability and complaint) against us as well as claim against the operator of the respective social media portal (e.g. against Facebook).
Please note that despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely based on the company policy of the respective provider.
The data collected directly by us via the social media presence is deleted from our systems as soon as the purpose for its storage no longer applies, you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies. Saved cookies remain on your device until you delete them. Mandatory legal provisions - especially retention periods - remain unaffected.
Social networks in detail
We have a profile on Facebook. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Facebook, the data collected will also be transferred to the USA and other third countries.
You can adjust your advertising settings yourself in your user account. Click on the following link and log in: www.facebook.com/settings.
We have a profile on XING. The provider is XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany. Details on how they handle your personal data can be found in XING's data protection declaration: privacy.xing.com/de/datenschutzerklaerung.
We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn is certified according to the EU-US Privacy Shield. LinkedIn uses advertising cookies.
If you would like to deactivate LinkedIn advertising cookies, please use the following link: www.linkedin.com/psettings/guest-controls/retargeting-opt-out.