Website privacy policy
https://www.tln-werbemittel.de
A. General Part
I. General information on the collection of personal data
We are pleased about your visit to our website and your interest in our offerings. The protection of personal data is important to us. Below, we provide you with an overview of which of your personal data we collect, use, and store when you visit our website, and what rights you have with regard to the processing of your personal data.
Personal data is information that can be assigned to you as a specific person, e.g., name, address, email address, or your user behavior.
II. Contact details of the data protection officer
The controller pursuant to Art. 4 (7) of the EU General Data Protection Regulation (hereinafter GDPR) is:
TLN Trade Company GmbH
Robert-Koch-Str. 35
55129 Mainz
Germany
Telephone: +49 6131 69301-0
Fax: +49 6131 69301 – 10
Email: [email protected]
III. Your rights
You have the following rights with regard to the personal data concerning you:
- You have the right, within the scope of Art. 15 GDPR, to receive information from us about the processing of your personal data;
- You have the right, within the scope of Art. 16 GDPR, to demand that we immediately correct any inaccurate personal data concerning you and/or complete any incomplete personal data;
- You have the right, within the scope of Art. 17 GDPR, to demand that personal data concerning you be immediately deleted;
- You have the right, within the scope of Art. 18 GDPR, to To request restriction of data processing concerning you;
- You have the right, within the scope of Art. 20 GDPR, to receive the personal data concerning you that you have provided to us in a structured and machine-readable format and to transmit this data to another controller.
- You also have the right to complain to a supervisory authority about our processing of your data.
Option to revoke consent to the processing of personal data
If you have given your consent to the processing of your data, you can revoke it at any time, e.g., by email to [email protected]. Such a revocation affects the legality of the processing of your personal data after you have expressed it to us and means that further processing of your data based solely on your consent will no longer take place. However, the legality of the processing carried out on the basis of the consent up to the revocation remains unaffected.
Right of objection
If your personal data is processed by us on the basis of legitimate interests pursuant to Art. 6 (1) (f) GDPR, i.e. in particular if the processing is not necessary to fulfill a contract with you, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are reasons for doing so arising from your particular situation. If you exercise such an objection, we ask you to explain the reasons why we should not process your personal data as we do. If your objection is justified, we will examine the situation and will either stop or adapt the data processing or explain to you our compelling legitimate reasons on the basis of which we continue the processing.
You can of course object to the processing of your personal data for advertising and data analysis purposes at any time without giving reasons. In this case, you have a general right of objection, which we will implement without giving reasons.
If you wish to exercise your right of objection, simply send an email to [email protected].
IV. Data security
During your visit to our website, we use the widespread SSL (Secure Sockets Layer) method in conjunction with the highest level of encryption supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted encrypted by the closed key or lock symbol in the lower status bar of your browser.
We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
V. No obligation to provide personal data
You are not obligated to provide us with your personal data. However, this may be necessary for certain functions of our website. These functions will not be available to you, or will only be available to a limited extent, if you do not provide us with your personal data.
VI. No automated decision-making (including profiling)
We do not intend to use personal data collected from you for any automated decision-making process (including profiling).
VII. Storage period and data deletion
For the processing operations we carry out, we state below how long the data will be stored by us and when it will be deleted or blocked.
Unless an explicit storage period is stated below, your personal data will be deleted or blocked as soon as the purpose or legal basis for storage no longer applies.
However, storage may extend beyond the specified period in the event of an (impending) legal dispute with you or other legal proceedings, or if storage is required by law to which we as the controller are subject (e.g., Section 257 of the German Commercial Code (HGB), Section 147 of the German Tax Code (AO)).
If the storage period prescribed by law expires, the personal data will be blocked or deleted, unless further storage by us is necessary and there is a legal basis for doing so.
VIII. Cooperation with processors
If we rely on contracted service providers for individual functions of our offering, these have been carefully selected by us, operate only on our instructions, and are contractually obligated to comply with data protection regulations within the meaning of Art. 28 GDPR. Below, we will inform you about the respective processes at the relevant points.
IX. Disclosure to third parties
We may also share your personal data with third parties if we offer participation in promotions, competitions, contract conclusions, or similar services jointly with partners, or if you have given us your consent to share your data. You will receive further information when you submit your personal data or in the description of the offer below.
X. Conditions for the transfer of personal data to third countries
If we transfer personal data outside the European Economic Area (EEA), i.e., to third countries, we ensure that data protection is adequately guaranteed. The European Commission has certified that some third countries offer data protection comparable to the EEA standard through so-called adequacy decisions (a list of these countries and a copy of the adequacy decisions can be found here: http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.html). However, in other third countries, a consistently high level of data protection may not exist due to a lack of legal provisions. Where this is the case, we ensure that data protection is adequately guaranteed. This is possible through binding corporate rules, standard contractual clauses of the European Commission for the protection of personal data, certificates, or recognized codes of conduct. We will inform you below about such transfers of your personal data to third countries and the respective details of the transfer at the relevant points.
XI. Transfer of personal data to third parties; justification
The following categories of recipients, who are usually contract processors, may have access to your personal data:
- Service providers for the operation of our website and the processing of data stored or transmitted by the systems (e.g., for data center services, IT security). The legal basis for this transfer is Art. 6 (1) (b) or (f) GDPR, unless they are contract processors.
- Government bodies/authorities, insofar as this is necessary to fulfill a legal obligation. The legal basis for this transfer is then Art. 6 (1) (c) GDPR.
- Persons employed to carry out our business operations (e.g., auditors, banks, insurance companies, legal advisors, supervisory authorities, participants in company acquisitions or the establishment of joint ventures). The legal basis for the transfer in these cases is Art. 6 (1) (b) or (f) GDPR.
Furthermore, we will only pass on your personal data to third parties if you have given your express consent in accordance with Art. 6 (1) (a) GDPR.
XII. Currentness and changes to the privacy policy
This privacy policy is currently valid and dated June 2023. Due to the further development of our website and offerings, or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The currently valid version can be accessed and printed at any time on the website https://www.tln-werbemittel.de under the “Data Protection” section.
B. Individual data processing situations on our website
I. Collection of personal data when visiting our website
1.1. Log data
If you simply use our website for information purposes, i.e. if you do not provide us with any other information, only the personal data that your browser transmits to our server will be temporarily collected, stored, and further processed. This involves the following data:
– IP address
– Date and time of the request
– Time zone difference to Greenwich Mean Time (GMT)
– Content of the request (specific page)
– Access status/HTTP status code
– Amount of data transferred in each case
– Website from which the request came
– Browser
– Operating system and its interface
– Language and version of the browser software.
This data processing is technically necessary for us to display our website to you and to ensure stability and security. The legal basis is Art. 6 (1) (f) GDPR.
1.2. Integration of Cookiebot
We use the consent management system Cookiebot from Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark to obtain your consent to processing operations that require consent (use of cookies and related technologies) when you visit our website. The legal basis for obtaining consent is Art. 6 (1) (c) GDPR. We are legally obliged to obtain your consent to processing operations that require consent. The use of the Cookiebot service provides us with the necessary technical infrastructure and always up-to-date, detailed cookie information, and enables you to conveniently and informedly select and manage cookies and similar technologies when you visit our website. The legal basis for the integration of Cookiebot is Art. 6 (1) (f) GDPR. Our legitimate interest in the integration is based on the convenient integration of the legally required consent process for both us and you.
Cookiebot collects your individually given consent to the use of cookies and similar technologies on our website for the purpose of consent management. Your consent is stored in the form of a cookie called “CookieConsent” by Cookiebot. This allows us to continue to record the status of your selected consent to the use of cookies on our website during future website visits. The storage period is 12 months; after this, consent must be granted again.
Your consent is recorded and documented by Cookiebot by registering the anonymized IP address, your browser type agent, the web URL, the date and time of consent, and a uniquely encrypted key that is stored, logged, and documented in the data center of the Cybot cloud vendor, Microsoft Ireland Operations Ltd. in Dublin, Ireland. After 12 months, the consent is automatically deleted from Cybot’s log and only used in aggregated, anonymized form in the statistics.
Further information on data protection at Cookiebot can be found at https://www.cookiebot.com/de/privacy-policy/.
You can revoke your consent to the use of cookies and related technologies at any time with effect for the future. Detailed information on this can be found below under section B. I. 2.4 of this privacy policy.
2. Cookies
In addition to the data mentioned above, cookies are stored on your computer when you use our website.
2.1 What are cookies?
Cookies are small text files that are assigned to the browser you use and stored on your hard disk using a characteristic string of characters. They allow certain information to be sent to the location that placed the cookie. Cookies cannot run programs or transmit viruses to your computer and therefore do not cause any damage. They are designed to make the Internet more user-friendly and effective, and therefore more pleasant for you.
Cookies can contain data that makes it possible to recognize the device used. However, cookies sometimes only contain information about certain settings that cannot be linked to a specific person. However, cookies cannot directly identify a user.
2.2 What types of cookies are there?
A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session.
- Session cookies are automatically
II. Additional data collection for other functions and offers on our website
In addition to the purely informational use of our website, we offer various services that you may be interested in. To do so, you will generally be required to provide additional personal data that we require to provide the respective service and to which the aforementioned data processing principles apply.
1. Collection of personal data when contacting us
When you contact us, e.g., by email, telephone, fax, or by using one of the contact forms provided on our website, the data you provide will be stored by us in order to respond to your inquiry. We will delete the data collected in this context once storage is no longer required to process your inquiry, or we will restrict processing if statutory retention periods apply. Data processing for the purpose of establishing contact is carried out in accordance with Art. 6 (1) (a) GDPR on the basis of your voluntarily granted consent, and otherwise in accordance with Art. 6 (1) (b) GDPR, provided that data processing is necessary for the fulfillment of the contract or for the implementation of pre-contractual measures carried out at your request.
2. Use of our webshop
2.1 Data processing when ordering via the webshop
If you wish to order from our webshop, it is necessary for the conclusion of the contract that you provide your personal data, which we need to process your order. Mandatory information required for contract processing is marked separately; further information is voluntary. We process the data you provide to process your order.
2.2 Data processing by payment service providers
To process the purchase price payment, we work with the payment service providers Visa and Mastercard, as well as PayPal, listed on the website.
a) PayPal
If you choose to pay via PayPal during the ordering process, we will redirect you to the PayPal website (PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg), where you must enter the payment processing data. All payment data entered is entered directly into the PayPal system and cannot be read or saved by us. For payment processing, we will transmit your name, invoice amount, and delivery address to PayPal if you have chosen this payment method.
PayPal’s differing terms of business and privacy policy apply to data processing at PayPal. For further information on data processing at PayPal, please contact PayPal directly. PayPal’s privacy policy is available on the PayPal website and transaction application, as well as via the following link:
PayPal
https://www.paypal.com/en/webapps/mpp/ua/privacy-full
b) Credit card payment via Unzer
If you choose to pay by credit card, payment processing with your credit card provider will be handled via the payment service provider Unzer E-Com GmbH, Vangerowstraße 18, 69115 Heidelberg (Unzer). For credit card payments, your payment data collected during the ordering process will be transmitted to Unzer for the purpose of executing the payment and billing the credit card company. Unzer is certified according to the Payment Card Industry Data Security Standard (PCI DSS). Further information on the payment service provider Unzer can be found at https://www.unzer.com/de/.
The different terms and conditions of business and data protection of these companies apply to data processing both at Unzer and the credit card provider you have selected. For further information on data processing at Unzer and the credit card company you have selected, please contact Unzer or the credit card company you have selected directly. The privacy policies of the selected credit card companies can be found on the respective company’s website, which you can access via the following link:
Visa
Mastercard
https://www.mastercard.de/de-de/datenschutz.html
Unzer
c) Payment processing via axytos
