Data protection

Information on data processing for this website in accordance with Art. 13 EU General Data Protection Regulation (GDPR) when collecting personal data from the data subject

(Version: GDPR 2.0 from October 2023)

Mauderer Alutechnik GmbH is responsible for this website and, as a provider of a teleservice, must inform you at the beginning of your visit about the type, scope and purpose of the collection and use of personal data in a precise, transparent, understandable and easily accessible form in clear and simple language. This content must be available to you at all times.

We attach great importance to the security of your data and compliance with data protection regulations. The processing of personal data is subject to the provisions of the European and national laws currently in force.

With the following data protection information, we would like to show you how we handle your personal data and how you can contact us:

Mauderer Alutechnik GmbH

Goßholzer Street 44

88161 Lindenberg

Lindenberg, Germany

Commercial register no.: HRB 1417

Managing Director: Frank Mauderer

Phone: +49 8381 9204 0

E-mail: info@mauderer.de

Our data protection officer

Sven Lenz

German data protection law firm - Datenschutzkanzlei Lenz GmbH & Co KG

Bahnhofstraße 50

87435 Kempten

Kempten, Germany

If you have any questions about data protection or other data protection concerns, please send an e-mail to the following e-mail address: datenschutz@mauderer.de

General information

For better comprehensibility, we do not differentiate between the genders. In the interests of equal treatment, the corresponding terms apply to all genders. The meaning of the terms used, such as "personal data" or their "processing", can be found in Art. 4 GDPR.

The personal data processed in the context of this website includes

Usage data (e.g. pages visited on our website) and
Content data (e.g. entries in online forms).

Specific

Data protection information
We warrant that we only process your data in connection with the handling of your enquiries and for internal purposes as well as to provide the services you have requested or to provide content.

Principles of data processing

We only process your personal data in compliance with the relevant data protection regulations and on the basis of the following legal bases

-Processing for the fulfilment of our services and implementation of contractual measures

Art. 6 para. 1 lit. b) GDPR

-Processing for the fulfilment of our legal obligations

Art. 6 para. 1 lit. c) GDPR

-Consent

Art. 6 para. 1 lit. a) and Art. 7 GDPR

-Processing for the protection of our legitimate interests

Art. 6 para. 1 lit. f) GDPR

Data transfer to third parties

We would like to point out that data may be transferred when you use our website if you use the services offered on the website (maps and video). If you do not select any of these services, no data will be transferred to third parties.

In the context of website hosting, the service provider used may gain access to your data. We have described which web host we use in this privacy policy.

Data transfer to a third country or an international organisation

Third countries are countries in which the GDPR is not directly applicable law. This basically includes all countries outside the EU or the European Economic Area.

We would like to point out that data may be transferred to a third country when you use our website if you use the services offered on the website (maps and video). If you do not select any of these services, no data will be transferred to a third country.

The following applies to data transfers to the USA: Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organisations in the USA.

The US services used are certified under the Data Privacy Framework. Details can be found under the individual services.

Storage duration of your personal data

We adhere to the principles of data minimisation and data avoidance. This means that we only store your data for as long as is necessary to fulfil the aforementioned purposes or for the various storage periods stipulated by law. If the respective purpose no longer applies or after the corresponding periods have expired, your data will be routinely blocked or deleted in accordance with the statutory regulations.

Making contact

Personal data is processed when you contact us electronically (e.g. via contact form or email). The information you provide will be stored exclusively for the purpose of processing your enquiry and for possible follow-up questions.

We would like to inform you of the legal basis for this:

Processing for the fulfilment of our services and implementation of contractual measures

Art. 6 para. 1 lit. b) GDPR

We would like to point out that e-mails can be read or changed without authorisation and unnoticed during transmission. We would also like to draw your attention to the fact that we use software to filter unwanted emails (spam filter). The spam filter can reject e-mails if they have been falsely identified as spam due to certain characteristics.

What rights do you have?

Right to information

You have the right to obtain information about your stored data free of charge. On request, we will inform you in writing which of your personal data we have stored. This also includes the origin and recipients of your data as well as the purpose of the data processing.

Right to rectification

You have the right to have your data stored by us corrected if it is incorrect. You can also request that processing be restricted, e.g. if the accuracy of your personal data is disputed.

Right to blocking

You can also have your data blocked. To ensure that your data can be blocked at any time, this data must be stored in a lock file for control purposes.

Right to erasure

You can request the erasure of your personal data, provided there are no statutory retention obligations. If such an obligation exists, we will block your data on request. If the relevant legal requirements are met, we will delete your personal data even without your request.

Right to data portability

You are entitled to request that we provide you with the personal data transmitted to us in a format that allows it to be transmitted to another organisation.

Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority.

The data protection authority responsible for us:

The Bavarian State Commissioner for Data Protection (BayLfD)

Postal address: P.O. Box 22 12 19, 80502 Munich, Germany

House address: Wagmüllerstraße 18, 80538 Munich, Germany

Telephone: +49 89 212672-0

Fax: +49 89 212672-50

E-mail: poststelle@datenschutz-bayern.de

Web: https://www.datenschutz-bayern.de

You can obtain information about submitting a complaint to the Bavarian State Commissioner for Data Protection at https://www.datenschutz-bayern.de/docs/buerger/eingabe.html

Note: It is also possible to lodge a complaint with any data protection supervisory authority within the EU.

Right to object

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your data in accordance with Article 6(1)(e) and (f); this also applies to profiling based on these provisions.

Mauderer Alutechnik GmbH will then no longer process your personal data unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

Where personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In the event of such an objection, we will no longer process your personal data for the purposes of direct advertising. All you need to do is send us an email to this effect.

h) Right of cancellation

You have the option to revoke your consent to the processing of your data at any time with effect for the future without giving reasons. You will not suffer any disadvantages as a result of the cancellation. All you need to do is send us an e-mail to this effect.

However, such a revocation does not affect the legality of the processing carried out up to the time of revocation on the legal basis of Art. 6 para. 1 letter a) GDPR.

To assert your rights as a data subject, please send us an email to the following address: datenschutz@mauderer.de

Protection of your personal data

We take contractual, technical and organisational security measures in accordance with the cutting edge technology to ensure that data protection laws are complied with and to protect the processed data against accidental or intentional manipulation, loss, destruction or access by unauthorised persons.

The security measures include in particular the encrypted transmission of data between your browser and our server. For this purpose, 256-bit SSL (AES 256) encryption technology is used.

Your personal data is protected within the scope of the following points (extract):

Safeguarding the confidentiality of your personal data

In order to protect the confidentiality of your data stored by us, we have taken various measures to control access and access control.

Safeguarding the integrity of your personal data

In order to protect the integrity of your data stored by us, we have taken various measures to control the transfer and input of data.

Safeguarding the availability of your personal data

In order to ensure the availability of your data stored by us, we have taken various measures to control orders and availability.

The security measures in usage are continuously improved in line with technological developments. Despite these precautions, we cannot guarantee the security of your data transmission to our website due to the insecure nature of the Internet. Therefore, any data transmission by you is at your own risk.

Protection of minors

Personal information may only be provided to us by persons under the age of 16 with the express consent of their legal guardians. This data will be processed in accordance with this data protection notice.

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are

Browser type and browser version
Operating system used
Referrer URL
Host name of the accessing computer
Time of the server enquiry
IP address

This data is not merged with other data sources.

The basis for data processing is our legitimate interest in accordance with Art. 6 para. 1 lit. f) GDPR.

Cookies

Cookies are small text files that are stored locally in the cache of your internet browser. The cookies make it possible, for example, to recognise the Internet browser. The files are used to help the browser navigate through the website and to utilise all functions to their full extent.

Cookie consent tool

This website uses a so-called "cookie consent tool" to obtain effective user consent for cookies and cookie-based applications that require consent. We use the cookie consent tool from mindshape GmbH, Bonner Straße 172-176, 50968 Cologne, Germany, for usage.

The "Cookie Consent Tool" is displayed to users in the form of an interactive user interface when they access a page, on which consent for certain cookies and/or cookie-based applications can be given by ticking a box. Through the usage of the tool, all cookies/services requiring consent are only loaded if the respective user gives the corresponding consent by ticking the box. This ensures that such cookies are only set on the user's end device if consent has been granted.

The tool sets technically necessary cookies to save your cookie preferences. Personal user data is not processed in this context.

If, in individual cases, personal data (such as the IP address) is processed for the purpose of storing, assigning or logging cookie settings, this is done in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in legally compliant, user-specific and user-friendly consent management for cookies and thus in a legally compliant design of our website.

Another legal basis for the processing is Art. 6 para. 1 lit. c GDPR. As the controller, we are subject to the legal obligation to make the usage of technically unnecessary cookies dependent on the respective user consent.

Further information on the operator and the setting options of the cookie consent tool can be found directly in the corresponding user interface on our website.

Further information on data usage by Shopware can be found at www.shopware.com/de/datenschutz/

Website hosting

We use the system of the following provider to host our website and display the page content: Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany

All data collected on our website is processed on the provider's servers.

We have concluded an order processing contract with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorised disclosure to third parties.

Google Analytics 4 (with cookies, with UserIDs, with Google Signals)

This website uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which can be used to analyse the use of websites.

When using Google Analytics 4, so-called "cookies" are used as standard. Cookies are text files that are stored on your end device and enable your use of a website to be analysed. The information collected by cookies about your use of the website (including the IP address transmitted by your device, shortened by the last digits, see below) is usually transmitted to a Google server, where it is stored and processed.

This may also result in information being transmitted to the servers of Google LLC based in the USA and further processing of the information there.
Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organisations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

All processing described here, in particular the setting of Google Analytics cookies for the storage and reading of information on the end device used by you for the use of the website, will only take place if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG have given your express consent. Without your consent, the usage of Google Analytics 4 will not take place during your use of the website. You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service using the "cookie consent tool" provided on the website.

When using Google Analytics 4, the IP address transmitted by your end device when you use the website is always collected and processed in anonymised form by default and automatically, so that the information collected cannot be directly linked to a person. This automatic anonymisation takes place by Google truncating the IP address transmitted by your device within member states of the European Union (EU) or other signatory states to the Agreement on the European Economic Area (EEA).

Google uses this and other information on our behalf to evaluate your use of the website, to compile reports on your website activities and usage behaviour and to provide us with other services relating to your use of the website and the Internet. The abbreviated IP address transmitted by your device as part of Google Analytics 4 will not be merged with other Google data. The data collected as part of the use of Google Analytics 4 is stored for 2 months and then deleted.

Google Analytics 4 also enables the creation of statistics with statements about the age, gender and interests of website users based on an evaluation of interest-based advertising and with the use of third-party information via a special function, the so-called "demographic characteristics". This makes it possible to determine and differentiate between user groups of the website for the purpose of target group-optimised marketing measures. However, data collected via the "demographic characteristics" cannot be assigned to a specific person and therefore not to you personally. This data collected via the "demographic characteristics" function is stored for two months and then deleted.

In connection with this website, the "UserIDs" function is also used as an extension of Google Analytics 4. By assigning individual UserIDs, we can have Google create cross-device reports (so-called "cross-device tracking"). This means that your usage behaviour can also be analysed across devices if you have given your consent to the usage of Google Analytics 4 in accordance with Art. 6 para. 1 lit. a GDPR, if you have set up a personal account by registering on this website and are logged in to your personal account on different devices with your relevant login data. The data collected in this way shows, among other things, on which device you clicked on an advert for the first time and on which device the relevant conversion took place.

In connection with this website, the Google Signals service is also used as an extension of Google Analytics 4. With Google Signals, we can have Google create cross-device reports (so-called "cross-device tracking"). If you have activated "personalised ads" in your Google account settings and linked your Internet-enabled devices to your Google account, Google can analyse usage behaviour across devices and create database models based on this if you have given your consent to the usage of Google Analytics 4 in accordance with Art. 6 para. 1 lit. a GDPR. The logins and device types of all website users who were logged into a Google account and carried out a conversion are taken into account. The data shows, among other things, on which device you clicked on an advert for the first time and on which device the relevant conversion took place. We do not receive any personal data from Google, but only statistics compiled on the basis of Google Signals. You have the option of deactivating the "personalised ads" function in the settings of your Google account and thus deactivating the cross-device analysis in connection with Google Signals. To do this, follow the instructions on this page: Google Support Help Center

Further information on Google Signals can be found at the following link: support.google.com/analytics/answer/7532985

We have concluded a so-called order processing contract with Google for our use of Google Analytics 4, which obliges Google to protect the data of our website users and not to pass it on to third parties.

Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at policies.google.com/privacy and at policies.google.com/technologies/partner-sites

Hotjar (hotjar Ltd.)

This website uses the web analysis service Hotjar from Hotjar Ltd. Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe Tel.: +1 (855) 464-6788).

This tool can be used to track movements on the websites on which Hotjar is used (so-called heat maps). For example, it is possible to recognise how far users scroll and which buttons users click and how often. The tool also makes it possible to obtain feedback directly from website users. In this way, we obtain valuable information to make our websites even faster and more customer-friendly.

The above analysis is carried out for optimisation and marketing purposes and to design our website in line with your interests. We pay particular attention to the protection of your personal data during the usage of this tool. For example, we can only track which buttons you click and how far you scroll. Areas of the websites in which personal data about you or third parties is displayed are automatically hidden by Hotjar and are therefore not traceable at any time.

All processing described above, in particular the reading of information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG have given us your express consent to do so. You can revoke your consent at any time with effect for the future by deactivating this service in the "cookie consent tool" provided on the website.

Data may be transferred to a third country (in this case the USA) or an international organisation. Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organisations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

Further information about Hotjar Ltd. and the Hotjar tool can be found at: www.hotjar.com

The privacy policy of Hotjar Ltd. can be found at: www.hotjar.com/privacy

Use of videos from YouTube

We provide videos about our products on our website. To display and play videos, we use the "YouTube" service, which belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

If you click on a video, it will be played in a separate window. If you play the videos in this way, you give us your consent in accordance with Art. 6 para. 1 lit. a GDPR i.V.m. § 25 TTDSG your consent.

You can revoke your consent at any time with effect for the future. To withdraw your consent, simply close the extra window that has opened and no longer use the link.

Data is transferred to a third country (in this case the USA) or an international organisation. Since July 2023, there has been an adequacy decision by the EU Commission (Data Privacy Framework), which identifies the USA as a third country with a level of data protection comparable to that of the EU. The adequacy decision can now serve as the basis for data transfers to certified organisations in the USA. According to the list of certified companies published by the US Department of Commerce, Google LLC is listed as a certified company.

According to information from "YouTube", cookies are used to collect video statistics, improve user-friendliness and prevent abusive behaviour, among other things. If you are logged in to Google, your data will be assigned directly to your account when you click on a video. If you do not wish to be associated with your YouTube profile, you must log out before activating the button.

Google stores your data (even for users who are not logged in) as usage profiles and analyses them. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. Regardless of whether the embedded videos are played, a connection to the Google network is established each time this website is accessed, which may trigger further data processing operations without our influence. Further information on data protection at "YouTube" can be found in the provider's privacy policy at: https://www.google.de/intl/de/policies/privacy

Use of Google Maps

We use Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") on this website. Google Maps is a web service for displaying interactive map material. Using this service will show you our location and make it easier for you to find us.

Insofar as legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with. § 25 TTDSG obtained.

You can revoke your consent at any time with effect for the future. To exercise your cancellation, simply switch to another subpage of our website.

Google stores your data (even for users who are not logged in) as usage profiles and analyses them. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. If you do not agree to the future transmission of your data to Google when using Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used.

You can view Google's terms of use at: https: //www.google.de/intl/de/policies/terms/regional.html, the additional terms of use for Google Maps can be found at: https://www.google.com/intl/de_US/help/terms_maps.html

Detailed information on data protection in connection with the use of Google Maps can be found on the Google website ("Google Privacy Policy"): https://www.google.de/intl/de/policies/privacy

Online applications via a form

We offer applicants a career section on our website in which we advertise vacancies. Applications for the positions can be made via an online form, which is forwarded to a subpage. In order to be included in the application process, applicants must provide us with all personal data required for a well-founded and informed assessment and selection via the form.

You will receive information obligations as part of the application process directly in the system.

When you submit the form, your data will be transmitted to us in encrypted form in accordance with the cutting edge technology and processed exclusively for the purpose of processing your application.

Dealer login

We offer a login for retailers on our website. Registration is not required here. Access to this is provided by Mauderer on request. In this dealer area, Mauderer provides an image database for products.

Changes to our data protection information

We reserve the right to amend our data protection information at short notice so that it always complies with current legal requirements or to implement changes to our services. This may concern, for example, the introduction of new services. The new data protection information will then apply to your next visit.