1) Introduction and contact details of the person responsible

1.1 We are pleased that you are visiting our website and thank you for your interest. Below we will inform you about how your personal data is handled when you use our website. Personal data is all data with which you can be personally identified.

1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Kay Braune, Die Stromfritzen GmbH (information), Ernst-Thälmann-Straße 42, 15370 Frederdorf, Germany, Tel.: +491737380888, Email: kontakt@die-stromfritzen.de. The person responsible for the processing of personal data is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

2) Data collection when visiting our website

2.1 If you use our website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to the site server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:

The website you visited
Date and time of access
Amount of data sent in bytes
Source/reference from which you accessed the site
Browser used
Operating system used
IP address used (if applicable: in anonymized form)

The processing takes place in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use.

2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the character string “https://” and the lock symbol in your browser line.

3) Contact

When you contact us (e.g. via contact form or email), personal data is collected. The data collected when you use a contact form can be seen in the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration.

The legal basis for processing this data is our legitimate interest in answering your request in accordance with Art. 6 (1) (f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR. Your data will be deleted after your request has been processed. This is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified and provided that there are no statutory retention periods to the contrary.

4) Page functionalities

Google Web Fonts

This site uses so-called web fonts from the following provider for the uniform display of fonts: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly and establishes a direct connection to the provider’s servers. Certain browser information, including your IP address, is transmitted to the provider.

Data can also be transmitted to: Google LLC, USA

The processing of personal data in the course of establishing a connection with the provider of the fonts will only be carried out if you have given us your express consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service using the “Cookie Consent Tool” provided on the website. If your browser does not support web fonts, a standard font from your computer will be used.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European data protection level based on an adequacy decision of the European Commission.

Further information on Google’s data protection regulations can be found here: https://business.safety.google/intl/de/privacy/

5) Rights of the data subject

5.1 The applicable data protection law grants you the following data subject rights (rights to information and intervention) vis-à-vis the controller with regard to the processing of your personal data, whereby reference is made to the legal basis stated for the respective conditions for exercising them:

Right to information in accordance with Art. 15 GDPR;

Right to rectification in accordance with Art. 16 GDPR;

Right to erasure in accordance with Art. 17 GDPR;

Right to restriction of processing in accordance with Art. 18 GDPR;

Right to information in accordance with Art. 19 GDPR;

Right to data portability in accordance with Art. 20 GDPR;

Right to withdraw consent granted in accordance with Art. 7 Para. 3 GDPR;

Right to lodge a complaint in accordance with Art. 77 GDPR.

5.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA BASED ON OUR OVERRIDING LEGITIMATE INTEREST AS PART OF A BALANCE OF INTERESTS, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA IN QUESTION. HOWEVER, WE RESERVE THE RIGHT TO FURTHER PROCESSING IF WE CAN PROVE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA IS PROCESSED BY US IN ORDER TO CARRY OUT DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU CAN EXERCISE THE OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.

6) Duration of storage of personal data

The duration of storage of personal data is determined by the respective legal basis, the purpose of processing and – if applicable – also by the respective statutory retention period (e.g. retention periods under commercial and tax law).

When processing personal data on the basis of an express consent in accordance with Art. 6 Para. 1 lit. a GDPR, the data concerned will be stored until you revoke your consent.

If statutory retention periods exist for data that is processed within the framework of legal or quasi-legal obligations on the basis of Art. 6 Para. 1 lit. b GDPR, this data will be routinely deleted after the retention periods have expired, provided that it is no longer required to fulfill or initiate a contract and/or we have no legitimate interest in continuing to store it.

When processing personal data on the basis of Art. 6 (1) (f) GDPR, these data will be stored until you exercise your right of objection in accordance with Art. 21 (1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

When processing personal data for the purpose of direct marketing on the basis of Art. 6 (1) (f) GDPR, these data will be stored until you exercise your right of objection in accordance with Art. 21 (2) GDPR.

Unless the other information in this declaration on specific processing situations indicates otherwise, stored personal data will be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.