Policy on Protection of Customer Data

Dreusicke Shops profishop.dreusicke.de, service.dreusicke.de, toolshop.dreusicke.de, walzen.dreusicke.de, www.dreusicke.de, resp. dreusicke.com and benning123.de, are an internet service offered by Wilhelm Dreusicke GmbH&Co.KG, Rohdestr. 17, 12099 Berlin, Germany, VAT-ID: DE811977523. For further information please see our imprint.

Customer Data are used to …

… manufacture and sell Parts and Rollers, Tools and Machines, for use in/as devices in electronic industries such as the office machine industry or other. Customer Data are stored to answer inqiries and to fullfil orders. Data from commercial users are also used for marketing purposes (print mailings only).

Customer Data Storage, Use and Deletion

Address, Phone and Fax number, e-mail, contact person names, delivery address, reports on meetings with commercial customers are stored and will be, if necessary, transmitted to our accounts receivable department.

For storage and use we are applying the General Data Protection Regulation currently valid. Your data are protected from physical access. They are protected from electronic access by technical measures such as firewalls and antivirus software, also by organizational measures such as separate storage, access control etc. Employees with access to your data are required to protect your data.

Customer Data will be transmitted to third parties if necessary to fulfill our delivery obligations (address to the freight company, attorney if payments are overdue). Postal and parcel companies are bound by law to protect your data. Address and contact persons names are transmitted to our mailing company, who will send our print advertisement. Those companies are required to delete the data after use. We do not sell address data etc to third parties.

Tax laws require that we store data for 10 years after the last purchase or inquiry. We regularily check our database for data that can be deleted. The storage time can be extended to up to 30 years in order to be able to check warranty ussues, and to have necessary information for spare part deliveries during the life of the purchased products. Basis for this data processing is paragraph 6, section 1 lit.b GDPR, that says that the processing of data is allowed for order fulfillment, and precedent actions.

Data Storage and Deletion during internet shopping

ssl- or tls- encryption

Our sites use for security reasons and to protect confidential data like orders or enquiries, ssl- or tls-encryption. Encrypted connections can be recognized in the headline of your browser as it shows 'https://' or a locked padlock. Encrypted connections cannot be read by third parties.

We point out that data connections in the internet may be prone to security gaps. A 100% data protection from third parties is not possible. To offer you best protection, the order confirmation e-mail in our service.dreusicke.de shop can be sent protected by a password, or can be suppressed at all.

Cookies

The internetpages are sometimes using cookies. Cookies donīt do any harm to your computer and don't have computer viruses. Cookies are used to make our offer more userfriendly, effective and safe. Cookies are small text data that will be stored on your computer and saved by your browser. Most of the cookies that we use are session-cookies. They will be deleted automatically after your visist. Other cookies stay saved on your terminal until you delete them yourself. Those cookies make it possible for us to recognise your browser at further visits.

You can regulate your browser to inform you about the settling of cookies and to only allow the cookies in individual cases, to accept the cookies for particular cases or to not accept them, as well as to activate the automatical deleting of the cookies after you closed the browser. After the deactivation of the cookies, the functionality of the website might be shortened.

Cookies that are needed for the implementation of the electronic communication process or for the supply of certain requested features (for example shopping cart feature), will be saved based on Art. 6 Paragraph 1 lit. f GDPR.

The website operator has an legitimate interest in saving cookies for the technical accurate and optimized supply of his services. If other cookies(for example cookies for the analysis of your behavior in the internet)are saved, they will be mentioned separately in this data privacy statement.

Server-Log-Dateien

With each call of a page or file of our internet site, and with every download, data are being stored at our internet provider. This storage is necessary for internal computer systems reasons, and for statistical purposes. The following data are being stored:

- Name of the called file

- Date and time of the call

- size of the transmitted file

- success/failure of the transmission

- Type of the webbrowser

- calling domain

These data are deleted after 30 days by our provider.

A fan-in of those data with other data sources won't happen. The collection ot those data happens based on Art. 6 paragraph 1 lit. f GDPR. The website operator has an legitimate interest in the technical accurate presentation and improvement of his website. Therefor the server-log-files have to be recorded.

contact form

If you send us a request on the contact form, your data from the contact form and your contact data will be saved for the processing of your request and for the case of following-up inquieries.

The processing of the data from the contact form only happens based on your consent. (Art. 6 paragraph 1 lit. a GDPR). You may cancel this consent at any time by sending us an informal Email. The legality of the data processing before the cancellation of the agreement remains.

The data from of the contact form will be saved by us, until you ask us to delete them or until you cancel the consent for saving or the purpose for the data saving is not applicable (for example after completed processing of your request). Mandatory legislation, especially statutory retention obligations, remain.

Customer login and -password

Active Customers with an e-mail address in our customer data base can receive a customer login ans password. Logged-in customers can view their purchase prices, delivery terms and payment conditions in the internet shop.

The Password is issued automatically. Several security mechanism prevent any misuse, e.g. the confirmation e-mail with a link to the password. Additionally the connection is secured via certificate (SSL).

Unused passwords will be deleted after 2 years. To this end, the date of the first and the date of the last use are stored. These dates are not processed otherwise. Legal safekeeping periods prevail.

The processing of the dates of your costumer login results from your agreement (Art. 6 paragraph. 1 lit. a GDPR). You are allowed to take this agreement back at any time by sending an informal Email to us. The data processing before the cancelation of the agreement remains legal.

Paypal

You can pay via Paypal on our website. The provider of this payment service is PayPal (Europe) S.ā.r.l. et Cie, Luxembourg (in the following PayPal). If you select the payment with Paypal, the invoice amount and the session-ID will be transferred to Paypal. After you logged into Paypal and paid successfully, Paypal will transfer your delivery adress and your billing adress to us.

The transmission of your data from Paypal is based on Art. 6 paragraph 1 lit. a GDPR (agreement) and Art. 6 paragraph 1 lit.b GDPR (processing for the completion of a contract). You have the possibility to cancel the agreement of the data processing at any time. The cancelation of the agreement has no influence on the data procession that had been done in the past.

Cancelation of the acquiescence of the data processing Many data processing processes are only possible with your explicit acquiescence. You are allowed to cancel an acquiescence at any time by sending an informal Email to us. The cancelation of the agreement has no influence on the data procession that had been done in the past.

Right of objection of the data collection (Art. 21 GDPR)

When the collection of your data is done according to Art. 6 paragraph. 1 lit. e or f GDPR, you can object to the data collection at any time, for reasons specific to your situation. The legal basis on which this data collection and processing are done can be found in this data protection policy. When you are objecting, we shall no longer use your personal data, as long as we have no necessary reasons worthy of protection and your own reasons and rights are less important than ours, or the data processing is done for defending or claiming legal claims (objection acc. to Art. 21 paragraph 1 GDPR).

When your data is used for direct mailings, you have the right to contradict its use for this purpose. When you are contradicting, your personal data will not be used for direct mailings any longer (contradiction according to GDPR article 21 paragraph 2).

Right of Complaint at the relevant supervisory authority

In case the GDPR is violated, those affected may complain at a relevant supervisory authority, especially in the country of residence, work, or place of the violation. This right of complaint may be used independently of other legal or administrative measures.

Right of Transfer

You or a third party you name us, may receive computerized data we are processing, in a typically used computer data format. If you require transfer a third party, this will be done only if technically feasable.

Infomation, Suspension, Deletion and Correction

Within the legal framework you have at any time the right of information about your personal data we are storing, their provenance, their use, their beneficiary, at no charge, and also possibly the right of right of Suspension, Deletion and Correction of this data. Please contact us by the adress given in our imprint.

Right on the limitation of the data processing

You may require limitations on the processing of your data. Please contact us by the adress given in our imprint. This right may be exercised under the following circumstances:

When you are contesting the correctness of the personal data we are storing, we shall need time to check. During the check you may demand limitations on the processing of your personal data.

If the processing of your personal data was or is unlawful, you can demand limitations on the processing of your personal data, instead of having them deleted.

If we do no longer need your personal data, but you are needing them to assert your rights or claims, then you can demand limitations on the processing of your personal data, instead of having them deleted.

If you refuse according to article 21 paragraph 1 GDPR, there shall be found a fair balance between your rights and our rights. As long as that balance has not been found, you have the right to demand limitations on the processing of your personal data.

If you have limited the processing of your data, these may be processed only with your consent, or for enforcement, use or assertion of legal claims, or for the protection of other natural or legal persons rights, or because of public interest of the European union or one of its member states. Storage is always allowed.

Compulsary Data protection Officer

Our company's data protection officer can be reached at: Wilhelm Dreusicke GmbH&Co.KG, Rohdestr. 17, 12099 Berlin, Germany. Via e-mail: datenschutzbeauftragter@dreusicke.de.

Last Changes: august 28, 2018