privacy policy

This Privacy Policy clarifies the nature, scope and purpose of the processing of personal data (hereinafter referred to as "Data") within our online offer and the websites, functions and content associated with it, as well as external online presences, such as .B our social media profile. (collectively referred to below as an "Online offering"). With regard to the terms used, such as.B"personal data" or their "processing", we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

Opt-out complete; your visits to this website will not be recorded by the Web Analytics tool. Note that if you clear your cookies, delete the opt-out cookie, or if you change computers or Web browsers, you will need to perform the opt-out procedure again.

You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.

Responsible:

Name/Fa. Yannic Prümper

E-mail address: office@oilpressparts.com

Types of Data processed:

• Inventory data (e..B., names, addresses).
• Contact details (e.B., e-mail, phone numbers).
• Content data (e..B., text, photographs, videos).

Processing of special categories of data (Art. 9 sec. 1 GDPR):

In principle, no special categories of data are processed, unless these are fed to the processing by the users, e.B. entered in online forms.

Categories of persons affected by the processing:

• Customers / Prospects / Suppliers.
• visitors and users of the online offer.

In the following, we also refer to the persons concerned as "users".

Purpose of processing:

• Make available the online offer, its contents and functions.
• Provision of contractual services, service and customer care.
• Respond to contact requests and communicate with users.

As of: 01.07.2018

1. Authoritative legal bases

In accordance with Article 13 GDPR, we shall inform you of the legal bases of our data processing operations. Unless the legal basis is mentioned in the data protection declaration, the following applies: The legal basis for obtaining consents is Art. a and Art. 7 GDPR, the legal basis for processing for the performance of our services and the implementation of contractual measures as well as answering questions is Art. b GDPR, the legal basis for processing in order to fulfil our legal obligations is Art. c GDPR, and the legal basis for processing in order to safeguard our legitimate interests is Art. F DSGVO. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(f) GDPR provides. D GDPR as the legal basis.

2. Changes and updates to the Privacy Statement

We ask you to check the content of our privacy policy on a regular basis. We adjust the privacy policy as soon as the changes to the data processing we do make this necessary. We will inform you as soon as the changes require an act of participation on your part (e..B. consent) or any other individual notification.

3. Security

3.1.        In accordance with Article 32 GDPR, we take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different probability of occurrence and severity of the risk to the rights and freedoms of natural persons; The measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access, input, disclosure, ensuring availability and its separation. In addition, we have established procedures that ensure the exercise of data subjects' rights, the erasure of data and the response to the data being compromised. Furthermore, we take into account the protection of personal data already in the development or selection of hardware, software and procedures, in accordance with the principle of data protection through technical design and by data protection-friendly presets (Art. 25 GDPR).

3.2.        The security measures include, in particular, the encrypted transmission of data between your browser and our server.

4. Working with Contract Processors and Third parties

4.1.        If, in the context of our processing, we disclose data to other persons and companies (processors or third parties), transmit them to them or otherwise grant them access to the data, this will only be done on the basis of a legal permission (e.B. if a transmission of the data to third parties, such as to payment service providers, in accordance with Article 6 (1) lit. b GDPR is required for the performance of the contract), you have consented to a legal obligation to do so or on the basis of our legitimate interests (e.B. when using agents, web hosts, etc.).

4.2.        If we commission third parties with the processing of data on the basis of a so-called "order processing contract", this is done on the basis of Art. 28 GDPR.

5. Transfers to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) or if we do so in the context of the use of third-party services or disclosure or transfer of data to third parties, this will only be done if it is done in order to fulfil our (pre)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual authorisations, we process or have the data processed in a third country only if the special conditions of Art. 44 e.g. GDPR are met. This means that the processing is carried out .B on the basis of special guarantees, such as the officially recognised determination of an EU-compliant level of data protection (e.B. for the US through the "Privacy Shield") or compliance with officially recognised special contractual obligations (so-called "standard contractual clauses").

6. Rights of the persons concerned

6.1.        You have the right to request confirmation as to whether the data in question is being processed and to obtain information about this data as well as further information and a copy of the data in accordance with Article 15 GDPR.

6.2.        You have accordingly. Article 16 GDPR the right to request the completion of the data concerning you or the correction of the inaccurate data concerning you.

6.3.        In accordance with Article 17 GDPR, you have the right to demand that the data in question be deleted immediately or, alternatively, to demand a restriction of the processing of the data in accordance with Article 18 GDPR.

6.4.        You have the right to request that the data concerning you that you have provided to us be received in accordance with Article 20 GDPR and to request their transmission to other controllers.

6.5.        In accordance with Article 77 GDPR, you also have the right to lodge a complaint with the competent supervisory authority.

7. Right of withdrawal

You have the right to revoke consents given in accordance with Art. 7 sec. 3 GDPR with effect for the future.

8. Right to Object

You may object at any time to the future processing of the data concerning you in accordance with Article 21 GDPR. The objection may be made in particular against processing for direct advertising purposes.

9. Cookies and right to object todirect   marketing

We use temporary and permanent cookies, i.e. small files that are stored on users' devices (declaration of term and function, see last section of this Privacy Policy). In some cases, the cookies are for security purposes or are necessary for the operation of our online offer (e..B., for the presentation of the website) or to save the user's decision when confirming the cookie banner. In addition, we or our technology partners use cookies for range measurement and marketing purposes, which users are informed about in the course of the data protection declaration.

A general objection to the use of cookies used for online marketing purposes can be declared for a large number of services, especially in the case of tracking, via the US site   http://www.aboutads.info/choices/   or the EU site   http://www.youronlinechoices.com/.   In addition, cookies can be stored by switching them down in the browser's settings. Please note that not all functions of this online offer may then be able to be used.

10. Deletion of data

10.1.     The data processed by us will be deleted or restricted in their processing in accordance with Articles 17 and 18 GDPR. Unless expressly stated in the context of this Privacy Statement, the data stored with us will be deleted as soon as it is no longer necessary for its purpose and no legal retention obligations stand in the way of deletion. Unless the data is deleted because it is necessary for other and legally permissible purposes, its processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example.B to data that must be retained for commercial or tax reasons.

10.2.     In accordance with legal requirements, the storage takes place in particular for 6 years in accordance with § 257 (1) HGB (trading books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with § 147 (1) AO (books, records, management reports, accounting documents, commercial and business letters, documents relevant for taxation, etc.).

11. Provision of contractual services

11.1.     We process inventory data (e.B., Names and addresses as well as contact details of users), contract data (e..B g., services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. 6 sec. 1 lit b. GDPR. The entries marked as mandatory in online forms are required for the conclusion of the contract.

12. Credit information

12.1.     If we make an advance payment (e.B. in the case of purchase on   account),we reserve the right to obtain identity and credit information for the purpose of assessing the credit risk on the basis of mathematical-statistical procedures from specialized service companies (credit agencies) in order to safeguard our legitimate interests.

12.2.     As part of the credit report, we transmit the following personal data of the customer (name, postal address, date of birth, information on the type of contract, bank [Bitte ggf. weitere Daten angeben] details) to the following credit agencies:

–  [Bitte hier die Auskunfteien angeben, z.B.:] SCHUFA-Gesellschaft (SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden), Data protection information:   https://www.schufa.de/de/ueber-uns/daten-scoring/.

12.3.     We process the information received from the credit agencies about the statistical probability of a payment default as part of an appropriate discretionary decision on the establishment, execution and termination of the contractual relationship. We reserve the right to refuse payment on account or any other advance payment in the event of a negative result of the credit check.

12.4.     The decision as to whether we make an advance payment is made in accordance with Art. 22 GDPR solely on the basis of an automated decision in individual cases, which our software makes on the basis of the information provided by the credit agency.

12.5.     If we obtain express consent from you, the legal basis for the credit report and the transmission of the customer's data to the credit agencies is the consent pursuant to Article 6 (1) lit. a, 7 GDPR. If no consent is obtained, our legitimate interests in the resilience of their payment claim are the legal basis in accordance with Art. f. GDPR.

13. Contact

13.1.     When contacting us (via contact form or e-mail), the user's details will be used to process the contact request and its processing in accordance with Article 6 (1) (f) GDPR. b) DSGVO processed.

13.2.     The information provided by users may be stored in our Customer Relationship Management System ("CRM System") or comparable request organization.

13.3.     We delete the requests if they are no longer necessary. We check the necessity every two years; We store requests from customers who have a customer account permanently and refer to the customer account information for deletion. In the case of statutory archiving obligations, the deletion takes place after their expiry (end of commercial law (6 years) and tax law (10 years) retention obligation).

14. Collection of access data and log files

14.1.     We collect   on the basis of our legitimate interests within the meaning of Article 6(1)(f) GDPR. f. GDPR data about each access to the server on which this service is located (so-called server logfiles). Access data includes name of the website retrieved, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type plus version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting providers.

14.2.     Log file information is stored for security reasons (e.B. to investigate misuse or fraud) for a maximum of seven days and then deleted. Data that is required for further retention for evidentiary purposes are exempt from deletion pending a final resolution of the incident.

15. Online presence on social media

15.1.     We maintain online presences within social networks and platforms in order to be able to communicate with customers, interested parties and users active there and to inform them about our services there. When Calling the respective Networks and Platforms, the Terms And conditions and Data Processing Policies of their respective Operators apply.

15.2.     Unless otherwise stated in our privacy policy, we process the data of the users if they communicate with us within the social networks and platforms, e.B. write contributions on our online presences or send us messages.

16. Cookies & range measurement

16.1.     Cookies are information that is transmitted from our web server or third-party web servers to the web browsers of the users and stored there for later retrieval. Cookies can be small files or other types of information storage.

16.2.     We use "session cookies", which are only stored for the duration of the current visit to our online presence (e.B. to enable the storage of your login status or the shopping cart function and thus the use of our online offer at all). A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. In addition, a cookie contains the indication of its origin and the storage period. These cookies cannot store any other data. Session cookies will be deleted if you have stopped using our online offer and .B log out or close your browser.

16.3.     Users are informed about the use of cookies in the context of pseudonymous range measurement in the context of this data protection declaration.

16.4.     If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted from the browser's system settings. The exclusion of cookies can lead to functional limitations of this online offer.

16.5.     You can object to the use of cookies used for range measurement and advertising purposes via the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and additionally the US website (http://www.aboutads.info/choices) or the European   website (http://www.youronlinechoices.com/uk/your-ad-choices/).

17. Newsletter

17.1.     With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure as well as your rights of objection. By subscribing to our newsletter, you agree to the reception and the procedures described.

17.2.     Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter referred to as "newsletter") only with the consent of the recipients or a legal permission. If its contents are specifically described as part of a registration for the newsletter, they are decisive for the consent of the users. In addition, our newsletters contain information about our products, offers, promotions and our company.

17.3.     Double opt-in and logging: The registration for our newsletter takes place in a so-called double opt-in procedure. I.e. You will receive an e-mail after registration asking you to confirm your registration. This confirmation is necessary so that no one can log in with foreign email addresses. Registrations to the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes storing the login and confirmation timing, as well as the IP address. The changes to your data stored with the shipping service provider are also logged.

17.4.     Shipping service provider: The newsletter is sent via "MailChimp", a newsletter distribution platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The data protection regulations of the shipping service provider can be viewed here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy Shield Agreement and thus provides a guarantee to comply with the European data protection level (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active).

17.5.     Furthermore, according to its own information, the shipping service provider can use this data in pseudonymous form, i.e. without assignment to a user, to optimize or improve its own services, e.B. for the technical optimization of the dispatch and presentation of the newsletter or for statistical purposes to determine from which countries the recipients come. However, the shipping service provider does not use the data of our newsletter recipients to write to them themselves or to pass it on to third parties.

17.6.     Registration data: To subscribe to the newsletter, it is sufficient to provide your e-mail address.

17.7.     Performance measurement – The newsletters contain a so-called "web beacon", i.e. a pixel-sized file that is retrieved from the server of the shipping service provider when the newsletter is opened. As part of this   retrieval,technical   information, such as information about the browser and your system, as well as your IP address and time of retrieval are first collected. This information is used to improve the technical services on the basis of the technical data or the target groups and their reading behaviour based on the raRuforte (which can be determined with the help of the IP address) or the access times. Statistical surveys also include determining whether newsletters will open, when they will open and which links will be clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our intention nor that of the shipping service provider to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

17.8.     The dispatch of the newsletter and the performance measurement are based on the consent of the recipients acc.   Art. 6 para. 1 lit. a, Art. 7 GDPR i.V.m Section 7 (2) No. 3 UWG or on the basis of legal permission in accordance with 7 (3) UWG.

17.9.     The registration procedure is logged on the basis of our legitimate interests in accordance with Article 6(1)(f) GDPR. f GDPR and serves to prove your consent to receive the newsletter.

17.10.  Termination/revocation – You can cancel the receipt of our newsletter at any time, i.e. Withdraw your consent. A link to the cancellation of the newsletter can be found at the end of each newsletter. If the users have only subscribed to the newsletter and have cancelled this registration, their personal data will be deleted.

18.  Integration of third-party services and content

18.1.     We set within our online offer on the basis of our legitimate interests (i.e.     interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR) Third-Party content or service offerings to include their content and services, such as .B videos or fonts (hereinafter referred to as "Content"). This always presupposes that the Third-party providers of this Content perceive the IP address of the Users, since they would not be able to send the Content to their Browser without the IP address. The IP address is required for the presentation of this content. We try to using only such content, their respective provider use the IP address for the delivery of content. Third-party vendors can also use so-called pixel tags (invisible Graphics, also known as "Web Beacons") for statistical or Marketing Purposes. The "pixel tags" allow Information to be analysed on the Pages of this Website. The pseudonymous information can also be stored in cookies on the user's device and, among other things, technical information about the browser and operating system, referring websites, visit time as well as further information on the use of our online offer as well as such information from other sources.

18.2.     The following presentation provides an overview of third-party providers and their contents, as well as links to their data protection declarations, which contain further information on the processing of data and, in some case already mentioned here, possibilities of objection (so-called opt-out):

–   If our customers use the payment services of third parties (e.B. PayPal or Sofortüberweisung), the terms and conditions and the data protection information of the respective third-party providers, which can be called up within the respective websites or transaction applications, apply.

–   External fonts from Google, LLC., https://www.google.com/fonts ("Google Fonts"). Google Fonts is integrated by a server call to Google (usually in the United States). Privacy Policy:   https://policies.google.com/privacy, Opt-Out:   https://adssettings.google.com/authenticated.