Privacy Policy
Data Protection Statement
We take the protection of your data seriously and make every effort to collect and store as little data as possible. Nevertheless, a certain degree of storage and evaluation of user data is necessary to guarantee and improve the operation of this website. The use of this Internet site is basically possible without having to provide any personal data. Nor is there any assignment of data to a specific person - unless you tell us your name, for example in an e-mail, via one of our forms or as part of an order.
If you use one of the services offered on this website or buy goods, this also regularly requires the collection, processing and storage of personal data, such as your name, your address, your e-mail address or telephone number. This collection, processing and storage takes place either on the basis of your express consent obtained beforehand or on the basis of a corresponding legal approval and on the basis of the provisions of the European Data Protection Basic Regulation and the German Federal Data Protection Act.
We would like to inform you here about the type, scope and purpose of the data collected, processed, stored and used by us via this website as well as about your rights in this context.
We use SSL transport encryption on this site. This serves among other things the protection of confidential contents, for example in the case of inquiries to us. You can see that the connection is actually encrypted in the address line of your browser, which always starts with "https://" and confirms the existing transport encryption with a green lock symbol.
1. Name and address of the controller
The controller within the meaning of the Basic Data Protection Ordinance and other data protection regulations is:
ck Vertriebsgesellschaft UG
Willeckstr. 7, 35614 Asslar, Germany
info@werk83.com
2. Definitions
Data protection law has special terms which we also use in this data protection declaration in accordance with the legal definitions of the basic European data protection regulation. Therefore in this data protection declaration the expression
- "personal data“
any information relating to an identified or identifiable natural person ("data subject");
- "data subject“
any identified or identifiable natural person whose personal data is processed; an identifiable natural person is one who can be identified, directly or indirectly, in particular by assignment to an identifier such as a name, an identification number, location data, an on-line identifier or one or more special characteristics which express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person;
- "Processing“
any operation or series of operations carried out with or without the aid of automated procedures relating to personal data, such as the collection, collection, organisation, classification, storage, adaptation or alteration, reading, consultation, use, disclosure by transmission, dissemination or any other form of provision, comparison or linking, restriction, deletion or destruction;
- "Restriction of processing“
the marking of stored personal data with the aim of restricting its future processing;
- "Profiling“
any automated processing of personal data consisting in the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the performance of work, economic situation, health, personal preferences, interests, reliability, conduct, location or relocation of that natural person; as a company committed to data protection, we waive any form of profiling;
- "Pseudonymisation“
the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person;
- "File system“
any structured collection of personal data accessible according to specific criteria, whether centralised, decentralised, functional or geographical;
- "Controller“
(or: "person responsible for the processing“)
;the natural or legal person, authority, body, office or other body which alone or jointly with others decides on the purposes and means of processing personal data; where the purposes and means of such processing are specified by Union law or by the law of the Member States, the data controller or the specific criteria for his appointment may be laid down by Union law or by the law of the Member States;
- "Contract processor“
a natural or legal person, authority, institution or other body processing personal data on behalf of the controller;
- "Recipient“
a natural or legal person, authority, institution or other body to which personal data is disclosed, whether or not it is a third party. However, authorities which may receive personal data under Union law or the law of the Member States under a particular investigation mandate shall not be considered recipients; the processing of such data by the said authorities shall be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing;
- "Third party“
a natural or legal person, authority, institution or other body other than the data subject, the data controller, the data processor and the persons authorised to process the personal data under the direct responsibility of the controller or the data processor;
- "Consent“
of the data subject
any voluntary declaration of intent, made in an informed and unequivocal manner, in the form of a declaration or other clear affirmative act, which the data subject indicates his or her consent to the processing of personal data concerning him or her;
- "Violation of the protection of personal data“
a breach of security resulting in destruction, loss or alteration, whether unintentional or unlawful, or unauthorised disclosure or access to personal data transmitted, stored or otherwise processed;
- "Cross-border processing“
the processing of personal data in the context of the activities of a controller or contract processor in the Union in more than one Member State where the controller or contract processor is established in more than one Member State, or the processing of personal data in the context of the activities of an individual establishment of a controller or contract processor in the Union, but which has or may have a significant impact on data subjects in more than one Member State;
- "relevant and well-founded objection“
an objection as to whether or not there has been an infringement of this Regulation or whether the proposed measure is in conformity with this Regulation against the controller or the processor, where the objection clearly indicates the scope of the risks posed by the draft decision in relation to the fundamental rights and freedoms of data subjects and, where appropriate, the free movement of personal data within the Union.
3. Legal basis of data processing
The processing of personal data by us is carried out on the basis of the provisions of the European Data Protection Basic Regulation and the German Federal Data Protection Act:
- For processing operations for which we request consent for a specific processing purpose, the processing is carried out on the basis of Article 6(1)(a) of the Basic Data Protection Regulation.
- Insofar as the processing of personal data is necessary for the performance of a contract to which the data subject is a party (e.g. for the delivery of goods or the rendering of another service or consideration) or for the performance of pre-contractual measures (e.g. for enquiries about our products or services), the processing is based on Article 6 paragraph 1 letter b of the Basic Data Protection Regulation.
- Insofar as processing of personal data is necessary on the basis of a legal obligation applicable to us, such as for the fulfilment of tax obligations or commercial storage regulations, the processing is carried out on the basis of Article 6 paragraph 1 letter c of the Basic Data Protection Regulation.
- Where the processing of personal data should exceptionally be necessary to protect the vital interests of the data subject or another natural person, processing would be carried out on the basis of Article 6(1)(d) of the Basic Data Protection Regulation.
- The processing of personal data necessary to safeguard a legitimate interest of our company or of a third party shall be carried out on the basis of Article 6(1)(f) of the Basic Data Protection Regulation, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data prevail. Such a legitimate interest also represents the conduct of our business for the well-being of all our employees and our shareholders.
The provision of personal data may be required for legal (e.g. commercial or tax) reasons or for reasons of contract execution. If such data (such as information on a contractual partner) is not made available to us for processing, we cannot conclude a corresponding contract.
4. Log files
- As on other web servers, a log file is kept on our Internet server. This log file stores records in which
- the IP address with which you are travelling on the Internet and the Internet service provider you use
- date and time of each access to our website,
- the exact URL of each website you visit
- the data you requested from the server,
- general information on the web browser (in particular the browser type and version) and operating system you use to access the website, and
- in some cases the website from which you accessed our website (the so-called "referrer")
are listed. This information is required and used by us
- for the correct delivery of the respective website
- for statistical purposes,
- to further improve our Internet offering and to optimise the advertising it contains,
- to permanently guarantee the functionality and integrity of our information technology systems, including security in the event of attacks on our information technology systems, and
- in the event of an attack on our information technology systems to provide the necessary information to the law enforcement authorities
- This data is collected anonymously by us and stored separately from all personal data provided to us by a data subject.
[Home]