DATA PROTECTION
For the use of the website, the delivery of goods or the provision of services, we collect different types of data, which are partly provided by you as a user and partly required for and through the use of the website. In this context, personal data are individual information about personal or factual circumstances of a specific or identifiable natural person like your name, address, phone number, date of birth, payment details and your IP address. The transfer or another kind of transmission of your personal data to third parties takes place only if the transfer is required for the purpose of the contract execution (for example for the payment processing or for the dispatch of goods over parcel service) or if you have expressly consented. Any other use of the information as well as automated decision-making does not take place.
1. The responsible person according to art. 4, para. 7 of the EU General Data Protection Regulation (GDPR) is the company Hofmann Menü-Manufaktur GmbH, Adelbert-Hofmann-Strasse 6, 97944 Boxberg-Schweigern (see also our imprint). You can contact our data protection officer at datenschutz@hofmann-menue.de or via our postal address by adding "Datenschutz/Privacy Policy".
2. A transfer of your personal data to third parties is only possible in the following cases:
· if you have given your express consent according to art. 6 para. 1 sentence 1 a) GDPR;
· if the disclosure is required to fulfil contractual obligations according to art. 6 (1) sentence 1 (b) GDPR;
· if we are required by law to disclose the data according to art. 6 para. 1 sentence 1 c) GDPR;
· if the disclosure of the data is of public interest according to art. 6 para. 1 e) GDPR or;
· if the disclosure of the data according to art. 6 para. 1 sentence 1 f) GDPR is required for the protection of our legitimate interests or the legitimate interests of a third party, unless your interests in the protection of your data predominate.
3. You have the right at any time to inquire about the data collected about you free of charge. You also have the right at any time to revoke your consent to the use of your personal information with effect for the future, and to request the correction or deletion of your data stored by us.
In particular, you have the following rights concerning your personal data:
· Right to information,
· Right to rectification or cancellation,
· Right to restriction of processing,
· Right to opposition the processing,
· Right to data portability.
You also have the right to complain to the data protection supervisory authority about the processing of your personal data by us. In detail you have the following data subject rights:
a) The right to information according to Art. 15 GDPR concerning the processing of your personal data by us for processing purposes, categories of processed data, recipients or recipient categories, duration of storage or criteria to determine the duration, right to rectification, cancellation, limitation of processing or opposition to it, the right of appeal to the supervisory authority, if applicable, information about the origin of the data and the existence of an automated decision-making process and, if required, information about guarantees according to art. 46 GDPR when forwarded to a third country or to international organizations;
b) Right to immediate correction of incorrect information and right to completion of incomplete personal data according to art. 16 GDPR;
c) Right to cancellation of stored personal data according to art. 17 GDPR, if the data are no longer required for the purposes they were collected or processed for, if a given consent was revoked and there is no legal basis, if an objection to the processing has been filed and the data may no longer be processed according to art. 21 (1) or (2) GDPR, if the data have been processed unlawfully, if the deletion is necessary to fulfil a legal obligation or if the data were collected by making reference to services of an information company according to article 8 (1) GDPR. This does not apply if the processing is required to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
d) Right to limitation of the processing according to Art. 18 GDPR, if you deny the correctness of the data (and for the duration required to check the correctness), if the processing is illegal, but you reject the deletion and instead you ask for their restriction if you no longer need the data for processing purposes, but you need the data for asserting, exercising or defending legal claims, or if you have objected to the data processing according to art. 21 (1) GDPR, as long as it is not yet certain whether our legitimate reasons outweigh your legitimate reasons;
e) Right to objection to the processing of your personal data according to art. 21 (2) GDPR (if data are processed for the purpose of direct advertising) or art. 21 (1) GDPR (in case of a processing according to art. 6 (1) sentence 1 e ) or f) GDPR, for reasons related to your particular situation, unless we have compelling legitimate reasons for the processing that outweighs your interests, or the processing is for the assertion, exercise or defence of legal claims).
f) Right to data portability according to art. 20 GDPR, ie the receipt of personal data that you have provided to us, in a structured, common and machine-readable format or also submitted to another person in charge;
g) Right to revoke consent granted at any time according to art. 7 (3) GDPR. The revocation results in that we are no longer allowed to carry out the data processing for the future from the time of your revocation.
h) Right to appeal to a supervisory authority according to art. 77 GDPR. The right to appeal applies without prejudice to any other administrative or judicial remedies.
i) The address of the supervisory authority responsible for us is
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Postfach/PO Box 10 29 32, 70025 Stuttgart
Königstraße 10a, 70173 Stuttgart
Phone Number: 0711 / 61 071161–55
Fax Number: 0711 / 61 071161–55
E-Mail: poststelle@lfdi.bwl.de
Internet: https://www.baden-wuerttemberg.datenschutz.de
j) For information injunction and revocation, as well as for notification of a request for cancellation, please get in touch with the data protection officer under the contact details indicated in section 2. The officer will then provide the information without delay or confirm the execution of your cancellation request. Any deletion requested by you will be subject to statutory retention requirements. If a deletion cannot be completed because of legal storage requirements, we will limit the processing of your data and inform you accordingly.
4. Contact Form
a) From our website through the “Contact Form” you can send us an e-mail with your encoded request. Here, among others, you can ask questions about our company, our products or our services.
b) We ask you to enter personal data in our input mask to process your request. These data include your name, e-mail address and other information such as the subject of your request and your message text. In addition to the mandatory fields, you can provide further information. There is to option to add address and/or phone number.
This requested information enables us to comprehensively address your concerns. The communication of the data provided by you in this context is expressly on a voluntary basis.
c) The personal data transmitted to us as part of the above mentioned information as well as the contact date will be used exclusively for the purpose for which you provide us with the contact - especially the processing of your request. The information provided by you will be used exclusively to process your request. The data will not be used for other purposes. They will also not be submitted to third parties without your prior express consent. Excluded from this rule are partner companies we use to fulfil your request. These can be, for example: Our suppliers, payment service providers, logistics partners and our trading partners. If there are no statutory storage requirements, your personal data will be deleted after the processing of your request.
d) The legal basis for data processing is art. 6 para. 1 sentence 1 f) GDPR. Our legitimate interest is that we need your information to process your message and/or to respond to it.
5. Data provided by us as a user:
a) As far as the website or an action on our website requires a registration, the basic registration data of the respective registration form are determined, transmitted, processed, stored, collected and used only for the use of the website, its services and the online store. In the context of such an application, we are also entitled to inform you about changes, additions or new versions of the website, changes to our terms and conditions and this privacy policy and other information provided via the website and, for example, about new products.
b) If you send us e-mail messages or other communications, in particular comments, or if you enter them directly on our website, we will keep such notifications to process the request, answer to questions and optimise the website, products and services. We delete the data that arises in this context after the storage is no longer requested, or limit the data processing in case of statutory retention requirements.
c) If you provide feedback (for example, on the website), we may use and disclose this feedback for any purpose if we do not provide your personal information, ie publish it anonymously or under a pseudonym. The collection of the data included in such feedback and the handling of all personal data contained therein complies with the data protection principles mentioned above.
d) If you register as a user for the use of a newsletter, this registration can be done by stating the e-mail address without adding any other information. Additional information is not requested.
To send the newsletter, we use the so-called double opt-in procedure. In the context of this process, we will first send the user an e-mail to the specified e-mail address. However, the user will not receive a newsletter by e-mail until she/he has clicked on the link included in the e-mail and has explicitly confirmed that we should activate the newsletter service. After your confirmation, we will save your e-mail address only to send you the newsletter. The legal basis is art. 6 para. 1 sentence 1 lit. a GDPR.
At this point we would like to specify that we evaluate your user behaviour when sending the newsletter. For this evaluation, the sent e-mails include so-called web beacons or tracking pixels that represent one-pixel image files stored on our website. For the evaluations, we link the data mentioned above and the web beacons with your e-mail address and individual ID. You can oppose to this tracking at any time by clicking on the separate link provided in each e-mail or inform us via another contact path. The information will be stored as long as you have subscribed to our newsletter. After your log-off, we will store the data purely statistically and anonymously.
If at any time you no longer wish to receive newsletters from us, you may oppose to our newsletter at any time without incurring any costs other than the transmission costs according to the basic rates. A message in text form to the contact details mentioned in the imprint is sufficient to get logged off. Of course, also every newsletter contains an unsubscribe link.
e) The data created by users during the website use via a login or newsletter subscription is stored on servers operated on our behalf. However, the server operators are subject to the same data protection standards as we do and are all operated within the European Union.
6. Orders in the online store
a) If you wish to order from our online store, you have to sign up to provide us with your personal information we need to process your order. Mandatory information required for the execution of the contracts is marked separately, while additional details are voluntary. We process the data provided by you to process your order. For this purpose, we can transmit your payment data to our payment service provider. The legal basis is art. 6 para. 1 sentence 1 lit. b GDPR.
b) You can voluntarily create a customer account. We will save your data for later purchases through this account. If you create an account under "My Account", the data provided by you will be revocable. All other data, including your user account, can always be deleted in the customer area.
c) We can also process the information provided by you to inform you of other interesting products from our portfolio or to send you an e-mail message containing technical information.
d) Due to commercial and tax regulations, we are obliged to save your address, payment and order data for a period of ten years. However, after two years we will limit the processing. This means that these data are used only to comply with legal obligations.
e) To prevent unauthorized access by third parties to your personal data, in particular to your financial data, the order process is encrypted by TLS technology.
7. Data collected directly during the use of the website:
a) In case of a purely informational use of the website, which means without registering or providing us with information, we only collect the personal data your browser transmits to our server. If you would like to view our website, we collect the following data, which are technically required to display our website and to ensure the stability and security (legal basis is art. 6 (1) sentence 1 GDPR):
· IP address (saved shortened for data protection reasons)
· Date and time of the request
· Time Zone Difference to Greenwich Mean Time (GMT)
· Content of the requirement (concrete page)
· Access status and/or HTTP status code
· The amount of data transmitted during each operation
· The website the request comes from
· Browser name and version, language setting
· Operating system and its version
b) When you visit our website and use the services offered through it, the server sends one or more cookies - small files containing a string - to the user's computer or other data processing unit. Cookies permit a clear identification of the browser. We use cookies to improve the quality of the website, including storing user preferences and tracking user trends.
Cookies can be used as follows:
· Transient cookies are automatically deleted when you close the browser. These cookies particularly include session cookies. They store a so-called session ID, with which various requests from your browser can be assigned to the common session. This procedure will allow your computer to be recognized when you visit our website again. The session cookies are deleted when you log out or close the browser.
· Persistent cookies are automatically deleted after a specified period, which differs depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
· Third-party cookies are cookies inserted by third parties. They can be either transient or persistent cookies.
c) You can set your browser to notify you when a cookie is sent. This gives you the chance of accepting or rejecting a cookie. The collected and analysed data is used to improve services and website, to personalize the web experience and to allow an easy log-in with permanently set log-in cookies.
d) We may use third-party services in the evaluation of cookies to assess the effectiveness of our website and services and to evaluate how visitors use the website and/or its services and, where appropriate, to provide a personalized user experience. For this purpose, the website may use web beacons (pixels) and cookies provided by third-party providers to do so. Information collected by the provider includes visited pages, navigation patterns, and similar data. These data enables us to find out which product information is most interesting to users, and which offerings users prefer. We may also transmit anonymised usage data for market research purposes. Although third parties may log the data of our website on our behalf, we have control over how that information can be used and/or must not be used. Even if the cookie itself does not contain any personal data, if you provide personal data when you visit the website and do not delete the cookie from your browser after submitting such kind of data, the provider will record the non-personal data stored in the cookie (such as the number of your visits to the provider) and stores and processes this as anonymised data.
8. We use Google Analytics to analyze and regularly improve the use of our website. Thanks to the created statistics we are able to improve our offer and make it more interesting for you as a user. Google Analytics is a web analytics service provided by Google Inc. ("Google") using cookies to analyze your use of the website.
The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA where it is stored. However, as a result of our activation of IP anonymisation on this website, your IP address will be abbreviated by Google beforehand within the member states of the European Union or other signatories of the Agreement on the European Economic Area. If personal data are transferred to the United States in an exceptional case, however, Google must comply with the EU-US Privacy Shield, www.privacyshield.gov/EU-US Framework. The legal basis for the use of Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to prepare reports on the website activity and to provide other services concerning the website and internet usage to the website operator.
You can prevent the storage of cookies by a corresponding setting of your browser software; however, please consider that by doing so, you may not be able to use all the features of the present website to the fullest extent possible. You can also prevent the collection by Google of the data generated by the cookie concerning your use of the website (including your IP address) as well as the processing of these data by Google by using the browser plug-in you can download under the following link to install it: tools.google.com/dlpage/gaoptout.
Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User’ Conditions: www.google.com/analytics/terms/en.html, Overview of the Privacy Policy: www.google.com/intl/de/analytics/learn/privacy.html, Data protection declaration: www.google.de/intl/de/policies/privacy.
9. The present website uses the Google AdSense online advertising service, allowing you to display advertising tailored to your interests. We are interested in showing you advertisements which could interest you to make our website more interesting to you. Our website collects statistical information about you. This information is processed by our advertising partners. These ads can be recognised by the "Google ads" reference in the ad.
When you visit our website, Google receives the information that you have accessed it. Google uses a web beacon to install a cookie on your computer. We cannot influence the collected data, nor are we aware of the full extent of the data collection and the duration their storage. Your data will be transmitted to the USA for evaluation purposes. If you are logged in with your Google account, your data can be attributed directly to it. If you do not want to associate with your Google profile, you have to log out. These data may be shared with Google's contractors, third parties and government agencies. The legal basis for the processing of your data is art. 6 para. 1 sentence 1 lit. f GDPR.
You can prevent the installation the cookies of Google AdSense in various ways: a) by setting your browser software accordingly, in particular, the elimination of third-party cookies will prevent you from receiving any third party advertisements; b) by deactivating interest-based ads on Google via the link www.google.com/ads/preferences, which will be deleted if you eliminate your cookies; c) by deactivating the interest-based ads of the providers that are part of the "About Ads" self-regulatory campaign through the link www.aboutads.info/choices, which will be deleted when you eliminate your cookies; d) by the permanent deactivation in your browsers Firefox, Internet Explorer or Google Chrome under the following link www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all the features of this offer in full.
Third-party information: Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; Privacy Police for Advertising: www.google.de/intl/de/policies/technologies/ads. Google has submitted to the EU-US Privacy Shield, www.privacyshield.gov/EU-US framework.
