Privacy Policy

Your Privacy is Our Concern
We are delighted by your interest in our company and our products and services, and we want you to feel safe when visiting our website, also with regard to the protection of your personal data. We take the protection of your personal data seriously. Compliance with the provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG) is a matter of course for us. We want you to know when we collect which data and how we use it. We have implemented technical and organisational measures to ensure that data protection regulations are observed both by us and by external service providers.

Personal Data
Personal data is information relating to your identity. This includes details such as your name, address, telephone number, and email address. It is not necessary for you to disclose personal data in order to use our website. However, in certain cases we require your name and address as well as further details in order to provide the requested services. The same applies, for example, to the sending of information material and ordered goods, or for answering individual questions. Where this is necessary, we will inform you accordingly. Beyond this, we only store and process data that you provide to us voluntarily or automatically. If you make use of service offerings, generally only such data will be collected as we need to provide those services. Where we ask you for additional data, this constitutes voluntary information. The processing of personal data takes place exclusively to fulfil the requested service and to safeguard our own legitimate business interests.

Purpose of Personal Data Use
We generally use the personal data you provide to respond to your enquiries, process your orders, or give you access to certain information or offers. In order to maintain the customer relationship, it may also be necessary for us or a service company commissioned by us to use this personal data to inform you about product offers that may be useful to your business, or to conduct online surveys in order to better meet the tasks and requirements of our customers. We naturally respect your wishes if you do not want us to use your personal data to support our customer relationship (in particular for direct marketing or market research purposes). We will neither sell your personal data to third parties nor market it in any other way.

Description and Scope of Data Processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device.
The following data is collected:

• Information about the browser type and version used
• The operating system of the user
• The date and time of access
• Websites from which the user's system reaches our website

The data is stored in anonymised form in the log files of our system. This data is not stored together with other personal data of the user.

Data Processing for Advertising Purposes

The telephone and/or mobile phone numbers and/or email addresses collected on this page via contact forms are processed by us, with the exception of delivery notifications, only for our own advertising purposes and only if you have given us your express consent within the meaning of Article 6(1)(a) GDPR. If you provide us with your email address, we will first send you a confirmation link. Please click this link to be added to the newsletter mailing list. You may revoke your consent at any time, free of charge and separately for each channel. A brief call or message to the contact address provided is sufficient for this purpose. In addition, in the case of an email newsletter, you can click "Unsubscribe" at the bottom of each email.  

Non-Personal Data Collected Automatically
When using our website, the following data is stored for organisational and technical reasons: the names of pages accessed, the browser and operating system used, the date and time of access, search engines used, names of downloaded files, and IP addresses. We evaluate this technical data anonymously and solely for statistical purposes in order to continually optimise our web presence and make our online offerings even more attractive. This anonymous data is stored separately from personal information on secured systems and does not allow conclusions to be drawn about any individual person. Your personal data and your privacy are therefore protected at all times.

Children
Persons under the age of 18 should not transmit personal data to us without the consent of their parents or legal guardians. We do not request personal data from children and young people, do not collect it, and do not pass it on to third parties.

Data Security
During your visit to our website, we use the widely used SSL (Secure Socket Layer) procedure in conjunction with the highest level of encryption supported by your browser. This is generally 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or padlock symbol in the lower status bar of your browser. We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

Changes to Our Privacy Policy
We reserve the right to change our security and data protection measures where this becomes necessary due to technical developments. In such cases, we will also update our privacy notices accordingly. Please therefore refer to the current version of our privacy policy at all times.

Google Analytics, cliclab³ – Privacy Policy
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and that enable an analysis of your use of the website. The information generated by the cookie about your use of this website (including your IP address) is transmitted to and stored on a server operated by Google in the USA. Google will use this information to evaluate your use of the website, to compile reports on website activity for website operators, and to provide other services related to website use and internet use. Google may also transfer this information to third parties where required by law or where third parties process this data on Google's behalf. Google will not associate your IP address with any other data held by Google. Precautions have also been taken to ensure that your IP address is stored only in abbreviated form. You can prevent the installation of cookies by adjusting your browser software settings accordingly; however, please note that if you do so, you may not be able to make full use of all the functions of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes described above. You can also prevent the use of this service. Google Analytics provides a corresponding tool for this purpose.

In connection with our content system cliclab³, we record individual page views in order to measure the effectiveness of individual online campaigns. Information of this type is collected exclusively in anonymised form and evaluated by us statistically. This function helps us to better understand your needs. You can object to the data processing at datenschutz@weyergans.de.

Contact Forms and Email Enquiries
Description and Scope of Data Processing
Our website contains a contact form which can be used for electronic communication. If a user makes use of this option, the data entered in the input mask is transmitted to us and stored.

This data includes:

• The user's email address
• Message content
• Voluntarily provided data such as name, address, and telephone number
• The user's IP address
• Date and time of submission

At the time the message is sent, the following data is also stored:

• The user's IP address
• Date and time of submission

Your consent is obtained during the submission process for the processing of your data, and reference is made to this privacy policy. Alternatively, contact can be made via the email address provided. In this case, the personal data of the user transmitted with the email will be stored. Your personal data will not be passed on to third parties for purposes other than those listed below. We only share your personal data with third parties if:

• You have given your express consent pursuant to Art. 6(1)(1)(a) GDPR,
• disclosure is necessary pursuant to Art. 6(1)(1)(f) GDPR for the establishment, exercise, or defence of legal claims and there is no reason to assume that you have an overriding legitimate interest in your data not being disclosed,
• there is a legal obligation to disclose pursuant to Art. 6(1)(1)(c) GDPR, and
• this is legally permissible and required pursuant to Art. 6(1)(1)(b) GDPR for the processing of contractual relationships with you.

Legal Basis for Data Processing
Where the user has given their consent, the legal basis for the processing of data is Art. 6(1)(a) GDPR.

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6(1)(f) GDPR. If the email contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6(1)(b) GDPR.

Purpose of Data Processing
The processing of personal data from the input mask serves us solely for handling the contact request. In the event of contact by email, this also constitutes the necessary legitimate interest in the processing of the data.
The other personal data processed during the submission process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

Storage Duration
The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. For the personal data from the contact form input mask and that sent by email, this is the case when the respective conversation with the user has ended. A conversation is deemed to have ended when it can be inferred from the circumstances that the matter in question has been conclusively resolved. The additional personal data collected during the submission process will be deleted no later than seven days thereafter.

Right to Object and Removal
The user has the right to withdraw their consent to the processing of personal data at any time. If the user contacts us by email, they may object to the storage of their personal data at any time. In such a case, all personal data stored in the course of the contact will be deleted. In such a case, the conversation cannot be continued.

To exercise your right of withdrawal or objection, an email to datenschutz@weyergans.de is sufficient.

Newsletter
If you would like to receive the newsletter offered on the website, we only require an email address from you and your agreement that you consent to receiving the newsletter. No further data is collected. We use this data exclusively for sending the requested information and do not pass it on to third parties. The processing of the data entered in the newsletter registration form is carried out exclusively on the basis of your consent (Art. 6(1)(a) GDPR). You may revoke your consent to the storage of the data, the email address, and its use for sending the newsletter at any time, for example via the 'Unsubscribe' link in the newsletter. The lawfulness of the data processing operations already carried out remains unaffected by the revocation.

The data stored by us for the purpose of subscribing to the newsletter will be retained until you unsubscribe from the newsletter and will be deleted after cancellation of the newsletter subscription. Data stored by us for other purposes (e.g. email addresses for the members' area) are not affected by this.

Rapidmail

This website uses the services of Rapidmail for sending newsletters. The provider is Rapidmail GmbH, Augustinerplatz 2, 79098 Freiburg i.Br., Germany. Rapidmail is a service that can be used, among other things, to organise and analyse the sending of newsletters. If you enter data for the purpose of subscribing to the newsletter (e.g. email address), this data is stored on Rapidmail's servers. With the help of Rapidmail, we can analyse our newsletter campaigns. When you open an email sent by Rapidmail, a file contained in the email (a so-called web beacon) connects to Rapidmail's servers. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked. Technical information is also recorded (e.g. time of retrieval, IP address, browser type, and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the interests of the recipients. If you do not want Rapidmail to analyse your data, you must unsubscribe from the newsletter. We provide a corresponding link in every newsletter message for this purpose. You can also unsubscribe from the newsletter directly on the website. Data processing is carried out on the basis of your consent (Art. 6(1)(a) GDPR). You may revoke this consent at any time by unsubscribing from the newsletter. The lawfulness of the data processing operations already carried out remains unaffected by the revocation. The data stored by us for the purpose of subscribing to the newsletter will be retained until you unsubscribe from the newsletter and deleted after cancellation of the newsletter subscription, both from our servers and from Rapidmail's servers. Data stored by us for other purposes (e.g. email addresses for the members' area) are not affected by this.

For further details, please refer to the privacy policy of Rapidmail at: https://www.rapidmail.de/datenschutz

Use of YouTube
We use the YouTube video embedding function provided by YouTube LLC (901 Cherry Ave., San Bruno, CA 94066, USA; 'YouTube') on our website. YouTube is a company affiliated with Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; 'Google'). The function displays videos stored on YouTube in an iFrame on the website. The 'Enhanced Privacy Mode' option is activated. As a result, no information about visitors to the website is stored by YouTube. Only when you watch a video is information about it transmitted to YouTube and stored there. For more information on the collection and use of data by YouTube and Google, your rights in this regard, and options for protecting your privacy, please refer to YouTube's privacy notices (https://www.youtube.com/t/privacy).

Social Media
Facebook
Our website includes links to the fan page 'Weyergans High Care AG' on the social network Facebook (provider: Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA). You can identify the Facebook links by the Facebook logo "f" or the Like button on our page. When you click the Facebook link, you leave the weyergans.de page and are taken to the Weyergans High Care AG fan page. No personal data is transferred from weyergans.de to Facebook in this process. We would point out that, as the provider of a fan page, we do not receive any knowledge of the content of the data transmitted on Facebook itself. Responsibility for this lies with Facebook, as long as the legal situation does not change as a result of court rulings. For more information, please refer to Facebook's privacy policy at: https://de-de.facebook.com/policy.php.

Instagram
No functions of the Instagram service are integrated on our pages. We also only have a simple link here, through which no personal data is transferred. Provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA. For more information on data protection on Instagram, please visit https://instagram.com/about/legal/privacy/.

Your Data Protection Rights

Right to Object
You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is carried out on the basis of Art. 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions. The controller will no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise, or defence of legal claims. Where personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes. In connection with the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by means of automated procedures using technical specifications.

Right to Rectification
You have the right to rectification and/or completion from the controller if the personal data concerning you that is being processed is inaccurate or incomplete. The controller must carry out the rectification without undue delay.

Right to Erasure
You may request the controller to erase the personal data concerning you without undue delay, and the controller is obliged to erase this data without undue delay, where one of the following grounds applies:

• The personal data concerning you is no longer necessary for the purposes for which it was collected or otherwise processed.
• You withdraw your consent on which the processing was based pursuant to Art. 6(1)(a) or Art. 9(2)(a) GDPR, and there is no other legal basis for the processing.
• You object to the processing pursuant to Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21(2) GDPR.
• The personal data concerning you has been processed unlawfully.
• The erasure of the personal data concerning you is necessary for compliance with a legal obligation under Union or Member State law to which the controller is subject.
• The personal data concerning you was collected in relation to information society services offered pursuant to Art. 8(1) GDPR.

a. Information to Third Parties
Where the controller has made the personal data concerning you public and is obliged to erase it pursuant to Art. 17(1) GDPR, the controller shall, taking into account available technology and the cost of implementation, take reasonable steps, including technical measures, to inform controllers processing the personal data that you, as the data subject, have requested the erasure of all links to, or copies or replications of, that personal data.

b. Exceptions
The right to erasure does not exist where processing is necessary:

• for exercising the right of freedom of expression and information;
• for compliance with a legal obligation which requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
• for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) and Art. 9(3) GDPR;
• for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Art. 89(1) GDPR, insofar as the right referred to in section (a) is likely to render impossible or seriously impair the achievement of the objectives of such processing; or
• for the establishment, exercise, or defence of legal claims.

Automated Individual Decision-Making Including Profiling
You have the right not to be subject to a decision based solely on automated processing — including profiling — which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision:

0. is necessary for the conclusion or performance of a contract between you and the controller;
1. is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights, freedoms, and legitimate interests; or
2. is based on your explicit consent.
However, these decisions must not be based on special categories of personal data pursuant to Art. 9(1) GDPR, unless Art. 9(2)(a) or (g) GDPR applies and appropriate measures have been taken to safeguard your rights, freedoms, and legitimate interests.

In the cases referred to in (1) and (3), the controller shall implement suitable measures to safeguard your rights, freedoms, and legitimate interests, including at minimum the right to obtain human intervention on the part of the controller, to express your own point of view, and to contest the decision.

Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. The supervisory authority with which the complaint has been lodged will inform the complainant of the progress and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

Right to Notification
If you have exercised your right to rectification, erasure, or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed by the controller about these recipients.

Furthermore, under the conditions of Art. 21(1) GDPR, an objection to data processing may be raised on grounds relating to the particular situation of the data subject. The above general right to object applies to all processing purposes described in these privacy notices that are processed on the basis of Article 6(1)(f) GDPR. We are only obliged under the GDPR to implement such a general objection if you provide us with grounds of overriding importance (e.g. a possible risk to life or health).

If required, please write to:

Weyergans High Care AG
Gut Boisdorf 8 D-52355 Düren
Phone: +49 (0) 2421-96 78 0
Fax: +49 (0) 2421-96 78 20
or send an email to datenschutz@weyergans.de

Questions, Suggestions, Complaints

If you have further questions about our privacy notices and the processing of your personal data,
please write to: datenschutz@weyergans.de

Errors, typographical mistakes, system errors, and changes reserved. This privacy policy is currently valid and was last updated in 03.2020.

Due to the ongoing development of our website and its offerings, or due to changed legal or regulatory requirements, it may be necessary to amend this privacy policy. The current privacy policy can be viewed, retrieved, and printed at any time on the website www.weyergans.de.