Data privacy notice

The controller as defined by the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States as well as other data protection law provisions is:

Richter+Frenzel GmbH + Co. KG
Leitenäckerweg 6
97084 Würzburg-Heidingsfeld
Germany
Telefon: +49 931 6108-0
Telefax: +49 931 6108-309 
E-Mail: infonoSpam@r-fnoSpam.de

Information about the processing of your personal data while using our website is provided below. 

If you have further questions about data privacy in the context of our website or the services offered, please contact our Data Protection Officer.
The controller’s Data Protection Officer is:

Alexander Striegel
Richter+Frenzel GmbH + Co. KG
E-Mail: datenschutznoSpam@r-fnoSpam.de

On principle, we only collect and use personal data of our users to the extent required to deliver a functioning website, our content and services. We only collect and use personal data of our users with the user’s consent, except in cases where obtaining consent in advance is not possible for factual reasons and processing the data is permitted by legal regulations.  

The following data are collected in this process (“technical information”):

1. Information about the user’s browser type and version
2. The user’s IP address
3. Date and time of access

4. Websites from which the user gets to our website.

The data are also stored in our system’s log files. There is no storage of these data together with other personal data of the user.
We process this technical information for network security purposes, for example, to combat attacks, for marketing purposes, to better understand the needs of our users and to improve our website.

These purposes constitute our legitimate interest in data processing according to point (f) of Article 6(1) GDPR.

Collecting the data for delivery of the website and storing the data in log files is essential for the operation of the website. Therefore, the user has no means to object.

We use cookies to make our website more user friendly. Some of these are essential and being able to identify the accessing browser even after switching pages is required.

We ask for your consent to the use of cookies that are not technically essential. You can revoke this consent at any time with future effect.

The purpose of using technically essential cookies is to make the use of the website easier for the user. Some functions of our website cannot be offered without the use of cookies.

We use analysis cookies for the purpose of improving the quality of our website and its contents. Analysis cookies tell us how the website is used, allowing us to continuously improve our offering.

User data collected through technically essential cookies are not used to create user profiles.

These purposes constitute our legitimate interest in the processing of the personal data as well as the legal basis of processing according to point (f) of Article 6(1) GDPR.

Cookies are stored on the user’s computer and transferred by it to our site. Therefore, you as the user have full control over the use of cookies. You can deactivate or limit the transmission of cookies by changing your browser settings. Cookies that have already been stored can be erased at any time. This can be automated as well. If cookies are deactivated for our website, using the full range of all website functions may no longer be possible.

Users have the option of subscribing to a free newsletter on our website. Data from the input form are transmitted to us when a user subscribes to the newsletter. 

The following data are also collected when a user subscribes:

1. Date and time of registration
2. E-mail address
3. First and last name
4. Company

Your consent to the processing of the data is obtained during the registration process with reference to this data privacy notice.  

There is no dissemination of data to third parties in the context of data processing for sending out newsletters. The data are used exclusively for the purpose of sending out the newsletter.  

We use your data in the context of the newsletter to provide you with information about the products and services we offer. We also use the e-mail address entered by you to provide you with personalised offers.  

The user’s e-mail address is collected for the purpose of delivering the newsletter.  

Other personal data are collected in the course of the subscription process to prevent the abuse of services or the e-mail address that is used.

The legal basis for processing the data with the user’s consent after the user subscribes to the newsletter is point (a) of Article 6(1) GDPR.  

The data are erased as soon as they are no longer required to achieve the purpose of their collection. Therefore, the user’s e-mail address is stored as long as the newsletter subscription is active. The newsletter subscription can be cancelled by the user (data subject) at any time. A corresponding link is provided in each edition of the newsletter. 

We offer users the option to register on our website by providing personal data. The data are entered in a form, transmitted to us and stored. There is no dissemination of the data to third parties. The following data are collected during the registration process:  

Data stored at the time of registration:

1. Date and time of registration
2. E-mail address
3. Gender
4. First and last name
5. Company
6. Position in the company (optional)
7. Industry (optional).

The user’s consent to the processing of these data is obtained during the registration process.  

The legal basis for processing the data with the user’s consent is point (a) of Article 6(1) GDPR.  

The data are erased as soon as they are no longer required to achieve the purpose of their collection.  

For data collected during the registration process, this is the case when the registration on our website is cancelled or changed.  

As a user, you may cancel the registration at any time. You may request changes to stored personal data concerning to you at any time.

A contact form is provided on our website to contact us electronically. When a user takes advantage of this option, the data entered in the form are transmitted to us and stored. These data are:  

Data stored when the message is sent:

1. Salutation
2. First name
3. Last name
4. E-mail address
5. Postal code
6. City (optional)
7.  Availability (optional)
8. Phone number (optional)
9. Individual message.

Your consent to the processing of the data is obtained during the submission process with reference to this data privacy notice.  

Alternatively, users may contact us using the e-mail address provided. In this case, the user’s personal data transmitted with the e-mail are stored.  

There is no dissemination of the data to third parties in this context. The data are used exclusively for processing the conversation.  

We only use the personal data provided in the form for the purpose of contacting the user. In case of contact by e-mail, this also constitutes the required legitimate interest in the processing of the data.  

Other personal data processed during the submission process are used to prevent abuse of the contact form and to maintain the security of our IT systems.  

The legal basis for processing the data with the user’s consent is point (a) of Article 6(1) GDPR.
The legal basis for processing the data transmitted in the course of sending an e-mail is point (f) of Article 6(1) GDPR. When the object of the e-mail is to enter into a contract, the legal basis for processing also includes point (b) of Article 6(1) GDPR.  

The data are erased as soon as they are no longer required to achieve the purpose of their collection. For personal data from the contact form input screen and data sent by e-mail, this is the case when the respective conversation with the user ends. The conversation ends when circumstances indicate that the matter in question has been resolved and finalised.

We use the following tracking and website analysis tools on our website:

• Google Analytics/Google Maps: This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics permits the website operator to analyse the behaviour of visitors to the website. The website operator receives various usage data such as page impressions, duration of the visit, the operating system being used and the origin of the user. Google may combine these data in a profile that is assigned to the respective user and/or the user’s device. Google Analytics uses technologies that allow the user to be identified for the purpose of analysing user behaviour (cookies and device fingerprinting, for example). The information collected by Google regarding the use of this website is generally transmitted to a Google server in the USA, where it is stored. We use Google Maps provided by Google Inc. on our website. For Europe, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Maps allows us to better show you locations and therefore to adapt our service to your needs. Through the use of Google Maps, data are transferred to Google and stored on Google servers.
• Matomo
• Facebook Pixel: We use the Facebook pixel from Facebook on our website. We have implemented corresponding code on our website. The Facebook pixel is a piece of JavaScript code that loads a collection of functions that allow Facebook to track your user actions when you have reached our website through Facebook ads. When you buy a product on our website, for example, the Facebook pixel is triggered and stores your actions on our website in one or more cookies. These cookies allow Facebook to compare your user data (customer data such as the IP address and user ID) with your Facebook account data. Facebook then erases these data. The collected data are anonymous and cannot be viewed by us. They are only usable in the course of advertisement delivery. If you are a Facebook user and are logged in, the visit to our website is automatically assigned to your Facebook account. We only want to present our services and products to people who are actually interested in them. The Facebook pixel allows us to better target our promotional activities to your preferences and interests. Facebook users who allow personalised advertising see appropriate advertisements as a result. Facebook also uses the collected data for analytical purposes and for its own advertisements.
• Hotjahr: We use Hotjar from Hotjar Limited (Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta) on our website for the statistical analysis of visitor data. Hotjar is a service that analyses your behaviour and feedback as a user of our website through a combination of analysis and feedback tools. We receive reports and visual representations from Hotjar that show us where and how you are active on our website. Personal data are anonymised automatically and never reach the Hotjar servers. As a result, we learn a lot about your user behaviour even though you as a website user are not personally identified.

This analysis tool is used to improve the efficiency of our website and for direct marketing based on point (f) of Article 6(1) GDPR. The website operator has a legitimate interest in the analysis of user behaviour for the purpose of optimising the operator’s website and advertising. Consent is obtained using a cookie banner. Therefore, processing is based on point (a) of Article 6(1) GDPR. You may revoke your consent at any time.

We use te following social media plugins on our website:

• Facebook: We also use the Facebook pixel, Facebook Custom Audience and Facebook Remarketing. We ask for your consent to the transfer of your personal data to Facebook in order to count website users. No personal data are transferred to Facebook without your consent. Using our website or other services is not tied to consent.   Richter+Frenzel GmbH + Co. KG uses the Facebook pixel as a counter and for retargeting and advertising campaigns based on our legitimate interest according to point (f) of Article 6(1) GDPR. The service is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, D2 Dublin/Ireland.
• Twitter
• walls.io
• Youtube: We have integrated YouTube videos on our website. This allows us to present interesting videos to you directly on our website. YouTube is a video portal and a subsidiary of Google since 2006. The video portal is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you access a page with an integrated YouTube video on our website, your browser automatically connects to YouTube and/or Google’s servers. Various data are transferred (depending on settings). Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for the processing of these data in Europe.
• Vimeo: We also use Vimeo videos on our website. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. This allows us to present interesting video material to you directly on our website using a plug-in. Certain data concerning you may be transferred to Vimeo in this process. In this data privacy notice, we tell you what those data are, why we use Vimeo and how you can manage your data and/or prevent the transfer of data.

In general, providing the plug-in on our website is based on our legitimate interest for marketing purposes according to point (f) of Article 6(1) GDPR.

We offer a telephone hotline for customer consultations. To provide our services over the phone, we require the following data from you:

• Customer number and/or user ID
• Name/contact person
• Phone number and/or mobile number.

In general, the telephone hotline is provided for contractual performance purposes according to point (b) of Article 6(1) GDPR. 

When we obtain the consent of the data subject for the processing of personal data, the legal basis for the processing of personal data is point (a) of Article 6(1) of the EU General Data Protection Regulation (GDPR).  

The legal basis for the processing of personal data for the performance of a contract with the data subject as a contracting party is point (b) of Article 6(1) GDPR. This also applies for processing that is required for the performance of pre-contractual measures.  

Insofar as processing personal data is required to meet a legal obligation of our company, the legal basis is point (c) of Article 6(1) GDPR.  

In case the vital interests of the data subject or another natural person require the processing of personal data, the legal basis is point (d) of Article 6(1) GDPR.  

If processing is required to protect a legitimate interest of our company or a third party, and this interest is not outweighed by the interests, fundamental rights and fundamental freedoms of the data subject, the legal basis for processing is point (f) of Article 6(1) GDPR. In this case, our legitimate interests in addition to the purposes listed above are:

• Protecting our company against material and non-material damage
• Professionalising our products and services
• Cost optimisation.

We also process personal data to comply with retention obligations under commercial and tax law.  

For requirements prescribed by law or contracts, we have marked the input fields on the input forms on our website that are mandatory for you to complete so that we can provide the service requested by you.

The personal data of the data subject are erased or blocked as soon as the reason for storage ceases to apply or storage is no longer required. Personal data may be stored for the time period in which claims can be asserted against our company (statutory limitation periods can range from three to thirty years).  

Storage may continue beyond this point in time when this is intended by European or national lawmakers in Union regulations, laws or other provisions that apply to the controller.  

Corresponding obligations to produce supporting documents and retention obligations arise from the German Commercial Code (HGB), the Tax Code (AO) and the Money Laundering Act (GwG). The corresponding retention periods are up to ten years.  

Blocking or erasure of the data also takes place at the end of the retention period prescribed by the aforementioned codes, unless there is a need for the continued storage of the data for the conclusion or performance of a contract.

In order to offer our products and services to you based on our contractual obligations or our legitimate interests, we may disseminate your personal data to other companies within the Richter+Frenzel GmbH + Co. KG corporate group.  

We may also be obliged by law to provide personal data to German and international public authorities. The legal basis for this is point (c) of Article 6(1) GDPR in conjunction with local and international regulations and conventions.

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you that is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.  

The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.  

Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.  

Where you object to processing for direct marketing purposes, the personal data concerning you shall no longer be processed for such purposes.  

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.

Making our processes for the processing of personal data transparent is important to our company. Therefore, please note that aside from the right to object, you may exercise additional rights when the respective legal requirements are met:

• Right of access according to Article 15 GDPR
• Right to rectification according to Article 16 GDPR
• Right to erasure (“right to be forgotten”) according to Article 17 GDPR
• Right to restriction of processing according to Article 18 GDPR
• Right to notification according to Article 19 GDPR
• Right to data portability according to Article 20 GDPR
• (No) automated individual decision-making, including profiling, according to Article 21 GDPR.

To assert your rights, please send an e-mail to datenschutznoSpam@r-fnoSpam.de.
Please note that we process your personal data according to point (c) of Article 6(1) GDPR to handle your request and for identification purposes.

You have the right to revoke your consent given under data protection law at any time with future effect. The revocation of consent does not affect the lawfulness of processing prior to your revocation. In some cases, we have the right to continue processing your personal data on another legal basis (for the performance of a contract) notwithstanding your revocation.

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.  

The supervisory authority with whom the complaint is lodged informs the complainant about the status and results of the complaint, including the possibility of judicial remedies according to Article 78 GDPR.  

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27
91522 Ansbach, Germany
E-mail: poststellenoSpam@lda.bayernnoSpam.de

Last updated: January 2021