Kontakt-Icon Actionmenü Kontakt-Icon Actionmenü Contact

Contact:

Pabst & Richarz Vertriebs GmbH

+49 571 40 40 400 pabst+richarz@berentzen.de
toggle menu
instagram icon de deutsch

Data Protection Policy

Data Protection Policy

According to EU Data Protection Regulation (GDPR)

 

Regulation EU (2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46EG in the Official Journal of the European Union, OJ L 119/1; effective date: 25 May 2018).

 

to website www.pabst-richarz.de

 

We, the Pabst und Richarz Vertriebs GmbH, as the provider of the aforementioned telemedia service, are taking the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations under German and European law (in particular in accordance with the Data Protection Regulation/GDPR and the German Telemedia Act/TMG) and the following declaration.

This data protection policy refers solely to the aforementioned website. If you are forwarded to other websites via links on this website, please seek information from those other websites about how they handle and process your data.

The legal basis for data processing, including on websites, is essentially the following provisions and legal regulations:

 

  • Your consent (Art. 6 para. 1 lit. a GDPR)
  • Fulfillment of contracts or other legal relationships as well as legal obligations (Art. 6 para. 1 lit. b and lit. c GDPR)
  • Safeguarding legitimate interests / balancing of interests (Art. 6 para. 1 lit. f GDPR)

 

In accordance with the principles of data avoidance and data economy, we process personal data only for as long as it is necessary in the sense of the following statement or as long as it is required by law (statutory storage period). If the purpose or the right to process the collected personal data ceases to apply or the permissible storage period expires, we will lock or erase the data; unless their - temporary - further processing is necessary, in particular for the following purposes:

 

  • Fulfilment of retention periods under commercial and tax laws, in particular pursuant with the German Commercial Code (HGB) and the German Tax Code (AO). The periods prescribed therein for retention or documentation run from two to at most ten years.
  • Preservation of evidence in the context of the statute of limitations. According to Sections 195 et seq. of the German Civil Code (BGB), these limitation periods can be up to 30 years, although the regular limitation period is three years.
  • Warranty or guarantee claims on your part.

 

However, in order to be able to take a data block into account at any time, it is necessary to keep the data in a blocking file for control purposes. If there is no legal archiving obligation, you can also demand the erasure of such data. In the event of a legal archiving obligation, we will block this data if you wish. If providing personal data is mandated by law or contract, or is necessary for conclusion of a contract, we refer to the adverse consequences for not providing them.

In particular, the following terms used in this agreement are defined in accordance with Art. 4 GDPR as follows:

 

  • Personal data: any information relating to an identified or identifiable natural person (hereinafter "data subject"). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Data subject: any identified or identifiable natural person whose personal data are processed by the controller responsible for the processing.
  • Processing: any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

 

For further definitions and information on the scope of the legal data protection provisions, we refer in particular to Art. 4 GDPR (https://dejure.org/gesetze/DSGVO).

 

1. Name and contact details of the controller responsible for the processing and the internal Data Protection Officer

This Data Protection Statement applies to data processing by the responsible operator of this website: Pabst und Richarz Vertriebs GmbH, Sollingweg 41, 32427 Minden, Germany (hereinafter: Pabst und Richarz), Email: pabst+richarz@berentzen.de, Phone: +49 (0)571/4040-0, Fax: +49 (0)571/40404-10.

 

The company data protection officer (m/f/d) of Pabst und Richarz can be reached as follows:

 

Sebastian Feldmann, Prico GmbH
Phone: +49 (0) 5451 562 213 1
Mail: datenschutz@berentzen.de

 

2. Processing of personal data; nature and purpose of use

a. Call-up of the website (server-logfiles)

When you access this website www.pabst-richarz.de, information is automatically sent to the server of this website by the browser used on your terminal device. This information is temporarily stored in a log file. The following information is collected without your intervention and stored until automated deletion:

 

  • IP address of the querying computer (hostname)
  • access date and time
  • name and URL of the file called up
  • website from which the access originates (referrer URL)
  • browser used and operating system of your computer, if applicable
  • name of your access provider

 

It is not possible to deduce your identity from this automatically generated information. The aforementioned data are processed for the following purposes:

 

  • Ensuring a smooth establishment of connection with the website
  • Ensuring a comfortable use of our website
  • Analysis of system security and stability
  • Other administrative purposes.

 

The legal basis for this data processing is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes for data collection listed above. In no case will we use the collected data for the purpose of drawing conclusions as to your identity.

In this respect, we only store access data without personal reference. Non-personal information includes all information that is processed anonymously and cannot be assigned to a person. This includes aggregated key figures, such as the average time spent on or the frequency with which websites are called up (see above under section 2.a.). When non-personal information is stored, the IP addresses and domain data of visitors in particular are also only stored in abbreviated form, so that it is not possible to draw conclusions about individual visitors.

 

b. Data processing when contacting us

You can contact us by mail or e-mail (especially via pabst+richarz@berentzen.de, see contact details in the imprint). We will then process the data that you provide to us when contacting us. This may include, in particular, your full name (first name/last name), your postal address (street, house number, postal code, city), your telephone number and your e-mail addresses. We process the data you provide when contacting us for the purpose of providing you with appropriate feedback.

The personal data collected by us for your contact and received from you will be deleted after completion of your request, unless there is a legitimate interest for further - limited - storage (eg applicant data or for subsequent correspondence) or you give your consent otherwise.

The data processing for the purpose of initiating contact with us is done on the basis of your freely given consent according to Art. 6 para. 1 sentence 1 lit. a GDPR. 

 

c. Google Search Console

For this website, the SEO tool Google Search Console is used for optimization purposes. Personal data is not collected, stored or processed in any other way. Cookies are not set, tracking does not take place. You can find more information about the Google Search Console here: https://search.google.com/search-console/about?hl=en

 

3. Disclosure of personal data

Any transfer of your data to third parties will take place only for the purposes listed below.

We share your personal data with third parties only

 

  • if you have given your explicit consent to this under Art. 6 para. 1 sentence 1 lit. a GDPR
  • if the sharing is required under Art. 6 para. 1 sentence 1 lit. f GDPR for the assertion, exercise or defense of legal rights and there is no reason to assume that you have an overriding interest worthy of protection in your data not being shared
  • if a legal obligation to share the data exists under Art. 6 para. 1 sentence 1 lit. c GDPR
  • if this is legally permitted and is required under Art. 6 para. 1 sentence 1 lit. b GDPR for the performance of a contractual relationship with you
  • if this is necessary to protect vital interests of you or other natural persons
  • if this is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the person responsible.
  • on the basis of an order processing agreement (AVV) concluded by us with a processor in accordance with Art. 28 GDPR

 

If we should form the intention to use the personal data for a purpose other than those mentioned above, prior to this further processing we will make available to you information about this other purpose and all other relevant information according to Art. 13 para. 2 GDPR.

4. Cookies

 

 

5. Tracking-Tools

The tracking measures listed below and used by us are carried out on the basis of Art. 6 para. 1 p. 1 lit. f GDPR.

With the tracking measures used, we want to ensure a needs-based design and continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and evaluate it for the purpose of optimizing our website offering for you.

These interests are to be regarded as legitimate within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools

 

Matomo

Description and purpose

This website uses Matomo (formerly Piwik), an open source software for statistical analysis of visitor access. The provider of Matomo is InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand.

Matomo uses cookies that are stored on your computer, which allow an anonymous analysis of your website usage. As a rule, it is not possible to draw conclusions about a specific person, as your IP address is anonymized immediately after processing and before storage.

We use Matomo to improve the quality of our website and its content. By learning how our website is used, we can continuously optimize our website offering.

The following data is stored when you call up the individual pages of our website:

 

  1. two bytes of the IP address of the user's calling system
  2. the web page called up
  3. the website from which the user accessed the website (referrer url)
  4. subpages that are called from the called web page
  5. dwell time on the web page
  6. frequency of calling the web page.

 

The software runs exclusively on the servers of our website or our website support, a storage of the personal data of the users takes place exclusively there. The user's IP address is not stored in full, but is shortened by masking only 2 bytes of the IP address. An assignment of the IP address shortened in this way to the end device of the user is then not possible.

The processing of the user's personal data enables the analysis of usage behavior on our website.

 

Legal basis

The legal basis of this processing of your personal data is Art. 6 para. 1 lit. f) GDPR.

 

Data recipient, data transfer and data transmission to third countries
The recipient of your anonymized data is the website operator and website support. A data transfer to a third country does not take place. There is also no other transfer of data to third parties. 

 

Duration and scope of data storage
The data will be deleted as soon as the data is no longer required to achieve the purpose for which it was collected and processed. Likewise, the data will be deleted if you assert your right to data deletion pursuant to Art. 17 (1) GDPR.
For further data subject rights, see below in this privacy policy.
There is no contractual or legal obligation for the provision of the data.

Further information on the processing of your personal data by Matomo can be found here: https://matomo.org/privacy-policy/ 

 

6. Social media plug-ins

Plug-ins, by which you might be directly linked to our website, or conversely this website might be directly linked to a social media account of yours, and by which a certain usage behaviour of yours might become detectable, are not used on this website.

 

7. Rights of data subjects

You have the right, free of charge,

 

  • under Art. 15 GDPR, to demand information about your personal data that we process. In particular, you can demand information about the purposes of processing, the category of personal data, the categories of recipients to whom your personal data were or are disclosed, the planned duration of storage, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to complain, the source of your data if not collected by us, and about the existence of automated decision-making including profiling and meaningful information about its details, if any;
  • under Art. 16 GDPR, to demand the rectification of inaccurate data or the completion of your personal data stored with us without undue delay;
  • under Art. 17 GDPR, to demand the erasure of your personal data stored with us, unless the processing is necessary to exercise the right to a free expression of opinion and to information, to fulfil a legal obligation, for reasons of the public interest, or to assert, exercise or defend against legal claims; the same applies in the event of a restriction of processing;
  • under Art. 18 GDPR, to demand restriction of the processing of your personal data, if the correctness of the data is disputed by you, processing is unlawful but you refuse to have them erased, and we no longer need the data, but you need them to assert, exercise or defend against legal claims, or you have lodged a protest against processing under Art. 21 GDPR;
  • under Art. 20 GDPR, to demand to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format, or to have those data transmitted to another controller;
  • under Art. 7 para. 3 GDPR, to withdraw your previously given consent from us at any time. This will have the consequence that we will no longer be permitted in future to continue the data processing that was based on this consent;
  • not to be subjected to a decision based solely on automated processing — including profiling — that has legal effect in relation to you or significantly harms you in a similar manner, insofar as the decision (1) is not required for the conclusion or performance of a contract between the data subject and the controller, or (2) is not permissible based on legal regulations of the European Union or of the Member States to which the controller is subject and these legal regulations contain appropriate measures to protect the rights and freedoms and the legitimate interests of the data subject or (3) is not made with the express consent of the data subject. If the decision (1) is required for the conclusion or performance of a contract between the data subject and the controller or (2) if it occurs with the express consent of the data subject, we will take reasonable measures to protect the rights and freedoms and legitimate interests of the data subject, which shall include at a minimum the right to force a person to act on behalf of the controller, the right to explain one's own standpoint, and the right to challenge the decision. If the data subject would like to assert rights with respect to automated decisions, he/she can at any time contact an employee of the controller responsible for the processing and
  • to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters (Haselünne) for this purpose. The contact details of the data protection supervisory authority for Pabst und Richarz are:

 

Die Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen Kavalleriestraße 2-4

40213 Düsseldorf

Telefon: +49 (0) 211 / 38424-0

Telefax: +49 (0) 211 / 38424-999

E-Mail-Adresse: poststelle@ldi.nrw.de

 

To assert the rights of a data subject, please send an e-mail to datenschutz@berentzen.de.

 

8. Right of Objection/Withdrawal

Insofar as your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR.

If your personal data is processed on the basis of your express consent pursuant to Art. 6 (1) p. 1 lit. a GDPR, you may revoke this consent - provided that there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation.

If you would like to make use of your right of objection/withdrawal, an e-mail sent to datenschutz@berentzen.de will suffice.

 

9. Data protection

Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. Generally, this is a 256-bit encryption. You can tell whether an individual page of our website is encrypted by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

10. Topicality and amendment of this Data Protection Statement

This Data Protection Statement is currently valid and is updated as of 25 May 2018 (effective date of the GDPR).

Due to the further development of our website and offers on it or due to changing legal or regulatory requirements, it may become necessary to change this privacy policy. The data protection declaration will then always apply in the correspondingly adapted version published here.