Privacy Policy

We are pleased about your visit to our website https://wigo-zelte.de/ and the associated interest in our company. With the aim of providing you with the highest possible level of transparency, we inform you below about the type, scope, and purpose of the collection, processing, and use of personal data that occur during the use of our website. You can access the General Data Protection Regulation (hereinafter referred to as “GDPR”) here as a complete document.

Contents

1. Definitions
2. Data Controller according to Article 4 No. 7 GDPR
3. Data Protection Officer
4. Legal Basis for Processing
5. Data Storage / Data Deletion
6. Transfer of Personal Data
7. Collection of Personal Data
7.1. Purely Informative Use of our Website
7.2. Contact by Email
7.3. Contact Form – Product Inquiries
8. Cookies
9. Matomo (Web Tracking)
10. Google Maps
11. Instagram Feed
12. YouTube
13. Hosting
14. Your Rights
15. Right to Object
16. Data Security

1. Definitions

The following terminology, which we use within our Privacy Policy, is defined within Art. 4 GDPR. This is only an excerpt from Art. 4 GDPR. All definitions can be viewed in the GDPR (accessible here).

• Personal Data (Art. 4 No. 1 GDPR)
  Personal data are all information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
• Processing (Art. 4 No. 2 GDPR)
  Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.
• Pseudonymisation (Art. 4 No. 5 GDPR)
  Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
• Controller (Art. 4 No. 7 GDPR)
  The controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
  A processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
• Third Party (Art. 4 No. 10 GDPR)
  A third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
• Consent (Art. 4 No. 11 GDPR)
  Consent of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
• Enterprise (Art. 4 No. 18 GDPR)
  An enterprise is a natural or legal person engaged in an economic activity, irrespective of its legal form, including partnerships or associations regularly engaged in an economic activity.

2. Data Controller according to Art. 4 No. 7 GDPR

WIGO-Zelte GmbH & Co. KG
Industriestraße 35-37
37235 Hessisch Lichtenau
Phone: 05602 91 73 8 – 0
Fax: 05602 91 73 8 – 36
Email:info@wigo-zelte.de
You can access our full imprint here:
https://wigo-zelte.de/impressum/

3. Data Protection Officer

Heinz Walter
Consulting Firm
Rothe Lache 3
63457 Hanau
Phone: 06181/9069987
Fax: 06181/5790746
Mobile: 0171/8022910

You can reach our Data Protection Officer at the email address: walter-eschwege@t-online.de

4. Legal Basis for Processing

In each processing described within our Privacy Policy, we will inform you of the corresponding legal basis on which the processing is carried out. The following case groups distinguish when processing is lawful:
You have given us consent to process your personal data for one or more specific purposes (Art. 6 para. 1 s. 1 lit. a GDPR).
A contract exists between you and us, for the performance of which processing is carried out, or processing is necessary for the implementation of pre-contractual measures, which occur at your request (Art. 6 para. 1 s. 1 lit. b GDPR).
Compliance with a legal obligation to which we are subject requires processing (Art. 6 para. 1 s. 1 lit. c GDPR).
The protection of vital interests on your part or another natural person require processing (Art. 6 para. 1 s. 1 lit. d GDPR).
The performance of a task carried out in the public interest or in the exercise of official authority vested in us requires processing (Art. 6 para. 1 s. 1 lit. e GDPR).
The necessity of processing for the purposes of our legitimate interests or those of a third party, unless your interests or fundamental rights and freedoms, which require the protection of personal data, prevail (Art. 6 para. 1 s. 1 lit. f GDPR).

5. Data Storage / Deletion of Data

Within the processing described in our Privacy Policy, we inform you about the corresponding storage duration or the times of deletion or blocking of data. If no explicit storage duration is defined, deletion or blocking of data occurs as soon as the purpose or legal basis for storage no longer exists.
Storage may continue beyond the defined periods if legal provisions to which we are subject (e.g., § 147 AO, § 247 HGB) prescribe a different storage duration.
Following the storage period, personal data will be deleted or blocked unless further storage by us is required on the basis of a legal basis. Furthermore, storage beyond the specified time is possible in the case of a (potential) legal dispute with you or other legal proceedings.

6. Transfer of Personal Data

If a transfer of your personal data occurs, we will inform you about this at the respective point in our Privacy Policy. If a transfer of your personal data takes place outside the European Economic Area and thus to so-called third countries, we will inform you about this at the respective point in our Privacy Policy. Generally, we only transfer personal data to third countries where an adequate level of protection has been confirmed by the EU Commission, or we can ensure careful handling of personal data due to contractual agreements or other suitable guarantees.

7. Collection of Personal Data

We will inform you about the collection of personal data (such as name, email address, address, or user behavior).

7.1. Exclusive Informational Use of Our Website

If you neither register on our website (for example, in the form of a newsletter) nor transmit data to us in any other way (for example, by using a contact form), only those personal data are collected that your browser transmits to our server. These are data that are technically necessary for us to display the website to you with a safe and stable display. This includes the following information, which results from a logfile line:

Internet Protocol Address (IP Address)
Time and date of the respective access
Time zone difference to Greenwich Mean Time (GMT)
The specific page accessed
Status of access / Hypertext Transfer Protocol (http)
Amount of data transferred
Website from which access to our website occurred (Referrer URL)
Internet browser used (including language and version)
Operating system used

The legal basis for the collection of the listed data arises from Art. 6 para. 1 s. 1 lit. f GDPR. We have a legitimate interest in ensuring error-free connection setup and comfortable use of our website, as well as analyzing system stability and security and using the data for further administrative purposes.

7.2. Contact via Email

When contacting us via the email address provided in item 2 or other email addresses of our company published on our website, your email address and other contact details contained within your email (e.g., your name or telephone number) will be stored by us to process your request. These data will be deleted immediately as soon as further storage is no longer necessary. If there are legal retention periods regarding the data, the deletion of the data is replaced by a corresponding restriction of processing. The legal basis for processing the data depends on the reason for the email being sent from Art. 6 para. 1 s. 1 lit. b GDPR or from Art. 6 para. 1 s. 1 lit. f GDPR, so either to process the contract concluded with you and to fulfill our (pre)contractual obligations or based on our legitimate interest in contacting interested parties of our service.

7.3. Contact Form – Questions about the Product

When contacting us via the contact form “Questions about the Product” on our website, the contact details you provide will be stored and processed by us to handle your inquiry. The legal basis for processing the data depends on the reason for the contact from Art. 6 para. 1 s. 1 lit. b GDPR or from Art. 6 para. 1 s. 1 lit. f GDPR, so either to process the contract concluded with you and to fulfill our (pre)contractual obligations or based on our legitimate interest in contacting interested parties of our service/products.

8. Cookies

We use cookies on our website. Cookies are small, browser-specific text files that are stored on your hard drive. This allows the place that sets the respective cookie to receive certain information, but cannot execute programs or transfer viruses. Cookies are divided into the following categories:
First, there is a distinction based on who set the respective cookie (website operator in the form of First-Party-Cookies or third parties in the form of Third-Party-Cookies).
Then there is a distinction regarding the duration of storage.

• There are transient cookies, which are automatically deleted when closing the browser, especially so-called session cookies, which store a session ID. With these session cookies, your computer is recognized when you visit our website again within a session using the same browser. When you close the browser or log out, these temporary cookies are deleted.
• There are also so-called persistent cookies, which are stored for a longer period (up to two years). However, the period until deletion varies from cookie to cookie. You can delete these cookies at any time manually via the settings of your browser.
• Another group is formed by the so-called Flash Cookies. These are Flash Player-bound cookies that store the technical data needed to play video or audio content (e.g., picture quality or network speed), usually without an automatic expiry date and the cookies store the necessary data regardless of the browser used. Some browsers (e.g., Firefox) offer the option to delete Flash cookies along with other cookies.

Furthermore, cookies are differentiated based on their function, which is most relevant from a data protection perspective.

• Technical (essential) Cookies are cookies that are necessary to perform basic functions of the website (e.g., saving a product that has been added to the shopping cart).
• Performance Cookies collect information about the use of the website and errors that occur. This involves anonymous information used to improve the website.
• Through Advertising Cookies or Targeting Cookies, it is possible to show the user of the website customized advertising (also from third parties) and to determine the effectiveness of these ads.
• Sharing Cookies connect the website with other services (e.g., social media presences).

We automatically set only Technical Cookies and thus cookies that are essential for the operation of our website, based on our legitimate interest according to Art. 6 Para. 1 S. 1 lit. f GDPR, to make our website effective and continuously improve it.
We point out that you can prevent the storage of cookies at any time by setting your browser accordingly. We have compiled further information in this regard for the most common browsers below, but please note that this may limit the functionality of our website.

• Mozilla Firefox: https://support.mozilla.org/de/kb/verbesserter-schutz-aktivitatenverfolgung-desktop
• Microsoft Edge: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
• Google Chrome: https://support.google.com/chrome/answer/95647
• Opera: https://help.opera.com/de/latest/web-preferences/#cookies
• Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

9. Matomo (Webtracking)

Matomo
This website uses the open source web analytics service Matomo.

With the help of Matomo, we are able to collect and analyze data on the use of our website by visitors. This allows us to find out, among other things, when which page views were made and from which region they come. We also collect various log files (e.g., IP address, referrer, used browsers and operating systems) and can measure whether our website visitors perform certain actions (e.g., clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its web offering and its advertising. If a corresponding consent was requested, the processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

IP Anonymization
In the analysis with Matomo, we use IP anonymization. In this process, your IP address is shortened before the analysis, so it can no longer be clearly assigned to you.

Cookieless Analysis
We have configured Matomo so that Matomo does not store any cookies in your browser.

Hosting
We host Matomo with the following third-party provider:

Panzer Design GmbH
Kemnather Str. 12b
92681 Erbendorf

Order Processing
We have entered into a contract for order processing (AVV) with the above-mentioned provider. This is a data protection contract required by law, which ensures that this provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

10. Google Maps

We integrate Google Maps on our website using the Google API (API stands for Application Programming Interface). This is a program interface that allows us to integrate services from third parties on our website. You can access the privacy policy regarding the Google API Services here: https://developers.google.com/terms/api-services-user-data-policy
We only use Google Maps if you have given us your explicit consent through our Consent Tool (Art. 49 Para. 1 lit. a GDPR). Your data will then be transferred with your consent to the USA and thus to an insecure third country. Currently, there is neither an adequacy decision by the EU nor other suitable guarantees for the USA. The protection of your data cannot be guaranteed in the destination country USA. Currently, there is no data protection level in the USA equivalent to that of the EU. Therefore, the transfer is associated with corresponding risks. In particular, there are no guarantees with regard to the non-access of your transmitted data by state authorities. For example, it cannot be ruled out that US authorities may access your data based on Section 702 of the Foreign Intelligence Surveillance Act (FISA), a law that regulates foreign intelligence and counter-espionage of the United States. We explicitly point out in this context that as an EU citizen, you have no effective legal remedy against the processing of your data by US authorities based on FISA. If you give your consent, you do so with knowledge of these risks, which you also consciously accept. You can revoke your consent at any time via the “Revoke / Change Privacy Settings” button located in the footer of our website.
This is an interactive map service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Imprint: https://www.google.de/intl/de/contact/impressum.html The parent company of this Ireland-based company is: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”). Google’s privacy policy can be accessed here: https://policies.google.com/privacy?hl=de When you access the subpage where Google Maps is implemented, Google receives information about this call, and there is a transfer of the personal data mentioned in this privacy policy for purely informational use of the website to Google. This transfer is for the purpose of creating a user profile by Google and occurs regardless of whether you have a Google account. If, however, you have an account and are logged into it when accessing the subpage where Google Maps is integrated, this data will be assigned. This data is stored by Google and used for advertising and/or market research purposes, such as providing tailored advertising.

11. Instagram Feed

We integrate posts from our Instagram profile on our website. Instagram is a social network of the company Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, Imprint: https://www.facebook.com/terms. The data policy can be accessed here: https://www.facebook.com/about/privacy. The parent company of this Ireland-based company is: Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA. When you visit a page where Instagram posts are implemented, there is a transfer of the personal data mentioned in this privacy policy for purely informational use of the website to Facebook (and thus possibly to an insecure third country).
We only use Instagram if you have given us your explicit consent through our Consent Tool (Art. 49 Para. 1 lit. a GDPR). Your data will then be transferred with your consent to the USA and thus to an insecure third country. Currently, there is neither an adequacy decision by the EU nor other suitable guarantees for the USA. The protection of your data cannot be guaranteed in the destination country USA. Currently, there is no data protection level in the USA equivalent to that of the EU. Therefore, the transfer is associated with corresponding risks. In particular, there are no guarantees with regard to the non-access of your transmitted data by state authorities. For example, it cannot be ruled out that US authorities may access your data based on Section 702 of the Foreign Intelligence Surveillance Act (FISA), a law that regulates foreign intelligence and counter-espionage of the United States. We explicitly point out in this context that as an EU citizen, you have no effective legal remedy against the processing of your data by US authorities based on FISA. If you give your consent, you do so with knowledge of these risks, which you also consciously accept. You can revoke your consent at any time via the “Revoke / Change Privacy Settings” button located in the footer of our website.

12. YouTube

We embed YouTube videos on our website. This is a video portal of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Imprint: https://www.google.de/intl/de/contact/impressum.html. The parent company of this Ireland-based company is: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”). Google’s privacy policy can be accessed here: https://policies.google.com/privacy?hl=de.
We have implemented the videos in an “extended privacy mode”, which ensures that data transfer to the USA and thus to an insecure third country only takes place when you start playing the video. When you visit a subpage where a YouTube video is implemented and play it, Google receives information about this call, and there is a transfer of the personal data mentioned in this privacy policy for purely informational use of the website to Google (and thus possibly to an insecure third country). This transfer is for the purpose of creating a user profile by Google and occurs regardless of whether you have a Google account. However, if you have an account and are logged into it when accessing the subpage where a YouTube video is integrated, this data will be assigned. This data is stored by Google and used for advertising and/or market research purposes, such as providing tailored advertising. Regarding storage, we refer to the explanations by Google, available at: https://policies.google.com/technologies/retention?hl=de.
We only use YouTube if you have given us your explicit consent through our Consent Tool (Art. 49 Para. 1 lit. a GDPR). Your data will then be transferred with your consent to the USA and thus to an insecure third country. Currently, there is neither an adequacy decision by the EU nor other suitable guarantees for the USA. The protection of your data cannot be guaranteed in the destination country USA. Currently, there is no data protection level in the USA equivalent to that of the EU. Therefore, the transfer is associated with corresponding risks. In particular, there are no guarantees with regard to the non-access of your transmitted data by state authorities. For example, it cannot be ruled out that US authorities may access your data based on Section 702 of the Foreign Intelligence Surveillance Act (FISA), a law that regulates foreign intelligence and counter-espionage of the United States. We explicitly point out in this context that as an EU citizen, you have no effective legal remedy against the processing of your data by US authorities based on FISA. If you give your consent, you do so with knowledge of these risks, which you also consciously accept. You can revoke your consent at any time via the “Revoke / Change Privacy Settings” button located in the footer of our website.

13. Hosting

Our website is hosted by the company HB-Internetservice GmbH & CO. KG, Bahnhofstr. 22a, 34369 Hofgeismar, Imprint: https://www.brielmedia.de/impressum/. When accessing our website, a transfer of the personal data mentioned in this privacy policy for purely informational use of the website takes place to the host. The host’s server locations are exclusively in Germany. Here you can find the privacy information of the host: https://www.brielmedia.de/dsvgo-datenschutzgrundverordnung/

14. Your Rights

Below we inform you about your rights according to the GDPR. You can access the GDPR here as a complete document.

• Right of Access according to Art. 15 Para. 1 GDPR
  You have the right to request confirmation from us as to whether personal data concerning you is being processed. If this is the case, you have the right to information about this personal data, as well as information about the purposes of processing, the categories of personal data processed, the recipients or categories of recipients to whom your personal data has been or will be disclosed (particularly in third countries or international organizations), the planned storage duration or the criteria for determining the storage duration, the existence of a right to correction or deletion of the personal data concerning you or to restriction of processing by us, as well as the existence of a right to object to this processing, the existence of a right to lodge a complaint with a supervisory authority, all available information on the source of the data (if they were not collected from us), the existence of automated decision-making including profiling and, if applicable, meaningful information about the involved logic, and the scope and intended effects of such processing.
• Right to Rectification according to Art. 16 GDPR
  You have the right to demand immediate correction of incorrect personal data concerning you and completion of incomplete personal data from us.
• Right to Erasure (“Right to be Forgotten”) according to Art. 17 Para. 1 GDPR
  You have the right to demand that we delete your personal data immediately. However, this right does not exist according to Art. 17 Para. 3 GDPR if the processing is necessary for exercising the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest in the field of public health, for archiving purposes in the public interest, or for the establishment, exercise or defense of legal claims.
• Right to Restriction of Processing according to Art. 18 Para. 1 GDPR
  You have the right to demand that we restrict the processing of your personal data if you dispute the accuracy of your personal data (the restriction applies for the duration that enables us to verify the accuracy), the processing of your personal data is unlawful and you refuse deletion, we no longer need your personal data for processing purposes but you need them to assert, exercise or defend legal claims, or you have objected to processing according to Art. 21 Para. 1 GDPR (the restriction applies as long as it has not yet been determined whether our legitimate reasons outweigh yours).
• Right to Data Portability according to Art. 20 GDPR
  You have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, and to transmit this data to another controller without hindrance from us (or to request direct transmission from us to another controller, if technically feasible), if the processing by us is based on consent or a contract and carried out by automated means.
• Right to Withdraw Consent given according to Art. 7 Para. 3 GDPR
  You have the right to revoke any given consent at any time with effect for the future, so that data processing based on the consent cannot be continued in the future, however, the legality of the processing carried out until your revocation is not affected by this.
• Right to Lodge a Complaint according to Art. 77 GDPR
  Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR. Typically, you can contact the supervisory authority of your usual place of residence, your workplace, or the place of the alleged infringement. Further information can be found on the website of the Federal Commissioner for Data Protection and Freedom of Information.

15. Right to Object

In addition to the rights mentioned, you also have the right to object at any time to the processing of your personal data, which is carried out based on the performance of a task in the public interest or in the exercise of official authority (Art. 6 Para. 1 S. 1 lit. e GDPR) or for the protection of legitimate interests on our part (Art. 6 Para. 1 S. 1 lit. f GDPR), effective for the future, if there are reasons arising from your particular situation. In the event of an objection, no further processing of personal data will take place, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights, and freedoms, or the processing serves to assert, exercise or defend legal claims. In the case of processing your personal data for the purpose of direct marketing or profiling, if it is connected to direct marketing, you have a general right to object without having to provide reasons that arise from your particular situation. In the case of an objection, we will immediately stop processing the personal data for these purposes. To exercise your right of revocation or objection, simply send an email to: info@wigo-zelte.de

16. Data Security

Our website uses the encryption and communication protocol TLS 1.3 (Transport Layer Security). Through the TLS certificate issued by a certification authority used by us, we enable encrypted data exchange between the web browser and the web server, preventing sensitive data from being read by third parties. We use the method with the highest encryption level supported by your browser, usually a 256-bit encryption. The higher the bit number, the longer the key and thus the better the protection against third parties.

This privacy policy was individually created for this website by Frame for Business GmbH in cooperation with Schützle Rechtsanwaltsgesellschaft mbH, available at Frame for Business GmbH and Schützle Rechtsanwaltsgesellschaft mbH.