Privacy

We at Bruno Nebelung GmbH are happy that you have visited our website. Data privacy and data security are of high priority to our users. Protecting your personal data is of particular importance to us. This data protection statement will serve to inform you about the kind of information we collect when you visit our website and how it is used.

General Information

Various types of personal information are collected when you visit our website. Data which personally identifies you constitutes personal data.

Please note that data transfer on the internet (for e.g. in the process of email communication) may involve security gaps. Complete protection against data access by third parties is not possible.

Your data is stored whenever you provide us with it. This can be data that you enter, such as data entered in a contact form.

Other data is automatically stored by our IT systems when you visit our website. It mainly consists of technical data (e.g. internet browser, operating system or time of page request). The data is collected automatically as soon as you access our website.

Data processing at this website is done by Bruno Nebelung GmbH. We are at your disposal for queries at the following address:

Bruno Nebelung GmbH
Freckenhorster Str. 32
48351 Everswinkel
Germany

Phone: +49 2582 6700
Email: galabau@nebelung.de

What do we use your data for?

A part of the data is collected to provide an error-free functioning website. Other data can be used to analyse your user behaviour.

What are the rights available to you with regard to your own data?

You have the right to acquire information for free at any time about the origin, recipient and purpose of the personal data that has been stored about you. You also have the right to ask for amendment, blocking or deletion of this data. You may contact us at any time about this, e.g. by email at galabau@nebelung.de, or for any further queries. Furthermore, the right of appeal to a competent regulatory agency is another option open to you.

Analytical tools and tools from third-party providers

Your surfing behaviour can be analysed when you visit our website. This is done using cookies and analytical programs. As a rule your surfing behaviour is analysed anonymously. The surfing behaviour cannot be traced back to you. You can object to this analysis or put a stop to it by declining the use of certain tools.

Revoking your consent to data processing

Several data processing operations cannot be run without clear consent from you. You may at any time revoke any consent you granted previously. This can be done simply by sending us an informal message via email. The revocation has no bearing on the legality of the data processing done until the time of your revocation.

Right of appeal to the regulatory agency

You have the right of appeal to a regulatory agency for data protection, such as the State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia, PO box 20 04 44, 40102 Dusseldorf, Tel. 0211/38424-0, poststelle@ldi.nrw.de, which in our case is the competent authority.

Secure Socket Layer/Transport Layer Security

This website uses SSL and/or TLS connections for protecting the transmission of confidential information, such as orders or enquiries that you send to us as the website operator. A secure connection is indicated by “http://” changing to “https://” on the browser address bar and a padlock icon appearing on your internet browser.

Activation of SSL and/or TLS ensures that data sent to us cannot be read by third parties.

Data Protection Officer

We have appointed a Data Protection Officer for Bruno Nebelung GmbH. Our Data Protection Officer is at your disposal at the following address for any queries:

DSB Münster GmbH
Heiner Niehüser
Martin-Luther-King-Weg 42-44
48155 Münster
Telefon: +49 (0) 251 71879 110
E-Mail: datenschutzmail@nebelung.de

Data collection on our website

Cookies

Websites to some extent use what are called cookies. Cookies bring no harm to your computer and do not contain viruses. Cookies help us to make our offers more user-friendly, effective and secure. Cookies are small text files that are stored in your computer and saved by your browser.

Most of the cookies that we use are what are known as “Session Cookies”. They are automatically deleted at the end of your website visit. Other cookies remain in your end device until you delete them. These cookies help us recognise your browser at resumption of a visit to our website.

You can configure your browser settings to be kept informed about cookies being installed and to allow cookies on an individual basis, to accept cookies only in certain cases or to block them as a matter of course, and to activate automatic deletion of cookies at the end of a browser session. Deactivation of cookies can, however, restrict the functionality of this website.

Cookies that enable electronic communication or provide some preferred functions (e.g. the shopping cart functionality) are stored in compliance with GDPR guidelines. There is a legitimate interest in storing cookies for the website operator: to provide technically sound and optimised services. Storage of other cookies (e.g. cookies to analyse your surfing patterns) shall be dealt with separately in this data protection statement.

Server Log Files

The webpage provider collects and saves automatic information sent to us by your browser in what are called server log files. This constitutes:

• Browser type and browser version
• The operating system used
• Referrer URL
• Host name of the accessing computer
• Time of server request
• IP Address

None of this data will be merged or commingled with any other data sources.

The GDPR guidelines form the basis for data processing, which permit data processing for fulfilling contracts or pre-contractual arrangements.

Data processing (customer and contract data)

We collect, process and use personal data only when required for initiating, formulating, or amending the legal relationship (subscriber data). This complies with the GDPR, which permits processing of data for fulfilling contracts or pre-contractual arrangements. We collect, process and use personal data from the use of our web pages (usage data), only if it is required to facilitate the use of services and to settle accounts.

Customer data thus collected is deleted upon conclusion of an order or after the end of a business relationship. This has no bearing on the statutory retention period obligations.

Data transmission to our website

Contact Form

If you use contact forms to send us enquiries, the information you provide in the enquiry form, including contact details, is saved to process the query and in anticipation of follow-up queries. We do not forward these details without your consent.

Data provided in the contact form is thus processed only on the basis of your consent. You may revoke this consent at any time. This can be done by simply sending us an informal message by email. The revocation has no bearing on the legality of the data processing operations done until the time of revocation.

We retain the information provided in the contact form until you ask us to delete it, revoke your consent to storage, or if the purpose for storage of this data becomes redundant (e.g. after your enquiry has been processed). This has no bearing on mandatory legal provisions, in particular, where statutory retention periods demand a longer storage.

Registration at our website

You can register at our website to enjoy the additional functions of our website. The information provided in this context is used exclusively to enable you to enjoy the respective offer or service that you have registered for. Mandatory information required for registration has to be given in full. If this is not given, the registration will be rejected.

We use the email address provided at the time of registration to communicate important changes, such as the range of our offer or technically necessary changes.

The GDPR forms the legal basis for processing of registration data. You may at any time revoke a consent you have previously granted. This can be done simply by sending us an informal message via email. The revocation has no bearing on the legality of the data processing done until the time of revocation.

We save the data collected at the time of registration for as long as you remain registered at our website, after which it is deleted. This has no bearing on statutory retention periods that might demand longer storage.

Data transfer upon concluding contracts for online-shops, dealers and dispatch of goods

Personal data is transferred to third parties only if it is required within the context of fulfilling a contract, for instance, to companies appointed to deliver your goods. No further transfer of data occurs, unless you have given your explicit approval for such transfer to take place. Your data is not transferred to any third parties without your clear consent, e.g. for advertising purposes.

The GDPR forms the legal basis for data processing, which permits processing of data for fulfilling contracts or pre-contractual arrangements.

Payments

Electronic monetary transactions in encrypted form on this website

If conclusion of a contract involving monetary transactions requires you to forward your payment data to us (e.g. account number in case of a direct debit authorisation), this data is used solely to process payment transactions.

Electronic monetary transactions using common payment options (Visa/MasterCard, direct debiting) are only done over encrypted SSL or TLS connections. A secure connection is indicated by “http://” changing to “https://” on the browser address bar and a padlock icon appearing on your internet browser.

Encrypted communication does not allow third parties to access your payment data while it is sent to us.

Depending on the payment option you select while ordering, we forward the payment data collected to settle payments to the authorised banking institution and, if necessary, to the payment service provider appointed by us and/or to the chosen payment service. The chosen payment service providers themselves collect this data to some extent when you open an account with them. The ordering process in such a case requires you to log on with the access data for your payment service provider. The data protection statement of the respective payment service provider then becomes applicable in this case.

PayPal

Our website also allows payment via PayPal. The payment service provider is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as “PayPal”).

If you choose to pay by PayPal, the payment data you have provided is forwarded to PayPal.

Transfer of your data to PayPal complies with the GDPR (consent and processing for fulfilling a contract). You have the option to revoke your consent for data processing at any time. The revocation does not have a bearing on the legality of any past data-processing operations.

Social media

Facebook

We have integrated Facebook plug-ins into our web pages, the provider being Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook plug-ins are indicated by the Facebook logo or the “like” button on our web page. Log on to the following site for an overview of Facebook plug-ins: https://developers.facebook.com/docs/plugins/.

When you visit our website, the plugins establish a direct connection between your browser and the Facebook server. This informs Facebook of a visit made via your IP address to our website. Clicking the “like” button on Facebook when logged into Facebook links our website content to your Facebook profile. This helps Facebook assign the website visits to your user account. Please note that we as the website provider have no knowledge of the transferred data and the use made thereof by Facebook. You can acquire more information about this from Facebook’s data privacy statement at: https://de-de.facebook.com/policy.php.

If you do not want Facebook to assign your visits to our website to your Facebook account please log out of your Facebook account.

Twitter plugin

Our website integrates the functions of Twitter. These functions are provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Using Twitter and the “re-tweet” function links your website visits to your Twitter account and makes it known to other users. Data gets transferred in this process to Twitter. Please note that we as the website provider have no knowledge of the transferred data and the use made thereof by Twitter. You can acquire more information about this from Twitter‘s data privacy statement at: https://twitter.com/privacy.

You can change your Twitter privacy settings in your account settings at: https://twitter.com/account/settings.

Google+ plugin

Our website uses Google+ functions. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Collection and transfer of information: information can be globally publicised with the help of the Google+ button. The Google+ button helps you and other users to receive personalised contents from Google and our partners. Google saves the information that you have clicked the +1 button for certain content, as well as information on the page that you viewed while clicking the +1 button. Your +1 profile can be displayed as a lead along with your profile name and a photograph in Google services, such as in search results, or in your Google profile, or in other places on websites and advertisements on the internet.

Google compiles information on your +1 activities in order to improve Google services for you and others. To be able to use the Google+ button, your Google profile has to be set to the ‘globally visible’ and ‘public’ modes, and it has to bear your profile name. This name is used in all Google services. In some cases this name can also replace another name that you have used to share contents through your Google account. Your Google profile identity can be displayed to users who know your email address, or who are privy to other identifying information about you.

Use of information collected: apart from the purposes stated above, the information provided by you is used as per prevailing Google data privacy rules. Google might publish aggregate statistics on the user’s +1 activities and/or forward it to users and partners such as publishers, advertisers or related websites.

Pinterest plugin

Our website uses Pinterest social plug-ins, operated by Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103-490, USA ("Pinterest").

When you recall a page containing such a plug-in, your browser establishes a direct link with Pinterest’s servers. In this process, the plug-in transmits protocol data to Pinterest’s server in the USA. This protocol data might carry your IP address, addresses of sites visited that also incorporate Pinterest functions, browser type and settings, date and time of request, your Pinterest usage behaviours and cookies.

You can acquire further information on the purpose, the extent and further processing, and the use of data by Pinterest, as well as related rights and options to protect your privacy from Pinterest’s data privacy statement at: https://about.pinterest.com/de/privacy-policy.

YouTube

Our website uses YouTube plug-ins operated by Google. The operator of the website is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

When you visit our pages with integrated YouTube plugins, they establish links with the YouTube servers. This helps the YouTube server to receive information about those of our web pages that you have visited.

If you are logged into your YouTube account, you allow YouTube to integrate your surfing behaviour directly into your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube to add appeal to our online offers. According to the GDPR this constitutes a legitimate interest.

You can acquire further information on how user data is handled from YouTube’s data privacy statement at: https://www.google.de/intl/de/policies/privacy.

Analytical tools and advertising

Matomo (formerly Piwik)

This website uses the Matomo open-source web analytical service. Matomo uses cookies. Cookies are text files that are stored in your computer and enable analysis of your website usage. Cookie-generated information on your website usage is also stored on our server. The IP address is anonymised before storage. Matomo cookies remain in your end device until you delete them.

Art. 6 para 1 sentence 1 letter f of the GDPR forms the legal basis for the storage of Matomo cookies. There is a legitimate interest for the website operator in the anonymised analysis of user behaviour: for the optimisation of its website offer and its advertising.

Cookie-generated information on the use of this website is not forwarded to third parties. You may use the appropriate browser settings to block the saving of cookies. Please note that by doing so you may not be able to use all the functions of this website completely.

If you do not approve of the storage and use of your data, you can deactivate storage and use here. In this event an opt-out cookie is stored in your browser that prevents Matomo from saving usage data. When you delete cookies, however, the Matomo opt-out cookie will also be deleted. The opt-out function therefore has to be reactivated by visiting our website again.

Newsletter

If you want to subscribe to the website newsletter, we need your email address as well as other information to allow us to verify that the email address we receive belongs to you and that we have your consent to send the newsletter. No other data will be collected, or will only be collected on a voluntary basis. We will use this data just to send the requested information and we shall not forward it to any third parties.

Data provided in the newsletter registration form is only processed on the basis of the consent you give. You may at any time revoke your consent to save your data, your email address and to use it for dispatching the newsletter by clicking on the newsletter’s “unsubscribe” link. The revocation has no bearing on the legality of any previously executed data processing operations.

We store newsletter subscription-related data until such time as you unsubscribe to the newsletter, after which we delete it upon cancellation of the subscription. This has no bearing on the data stored with us for other purposes (e.g. email addresses for the membership section).

CleverReach

This website uses CleverReach for newsletter dispatch. The operator is CleverReach GmbH & Co. KG, Muehlenstr. 43, 26180 Rastede. CleverReach is a service that organises and analyses newsletter dispatches. The data you have provided for newsletter subscription (e.g. email address) is stored on servers in Germany and Ireland.

Using CleverReach for newsletter dispatch helps us analyse newsletter recipient behaviour. Among other things it is used to analyse how many recipients are accessing newsletter reports and how often which link is being accessed. Conversion tracking helps also to analyse whether a pre-defined action (like buying a product on our website) has been taken after clicking on the newsletter link. For further information on data analysis carried out by the CleverReach newsletter go to: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/.

Data processing is done on the basis of your consent (Art. 6 para 1 sentence 1 letter a GDPR). You may at any time revoke your consent by unsubscribing to the newsletter. The revocation has no bearing on the legality of previously executed data processing operations.

If you do not approve of analysis by CleverReach, you have to unsubscribe to the newsletter. A link is provided in the newsletter for this purpose. Furthermore, you can also cancel the newsletter subscription directly on the website.

We store the newsletter subscription data you have provided until you unsubscribe to the newsletter, and we delete it a from our servers as well as the CleverReach servers after delivery is stopped. This has no bearing on the data stored with us for other purposes (e.g. email addresses for membership section).

You can acquire more information from the CleverReach Data Privacy Statement at: https://www.cleverreach.com/de/datenschutz/.

Conclusion of an order data processing contract

We have concluded an order data processing contract with CleverReach and use CleverReach in complete compliance of the strict regulations of the German data protection authorities.