Data protection declaration
Scope of application
The protection of personal data is very important to us. Personal data is any information that makes it possible to identify a natural person. This includes, in particular, name, date of birth, address, telephone number, e-mail address, but also your IP address. Data is anonymous if no personal reference can be made to the user.
The legal basis for data protection can be found in the General Data Protection Regulation (hereinafter GDPR) and the German Federal Data Protection Act (BDSG).
With this privacy policy, we would like to inform you comprehensively about the processing of your personal data and the rights to which you are entitled.
The following information applies to all content on www.westermann-druckde (hereinafter ‘offer’ / ‘website’) and other offers of the provider, insofar as reference is made to this data protection declaration.
Responsible entity and Data Protection Officer
Westermann GmbH & Co.KG
Georg-Westermann-Allee 66
38104 Braunschweig, Germany
T. +49 531 708 0
F. +49 531 708 127
Email service(at)westermanngruppe.de
Data protection officer contact: datenschutzbeauftragter(at)westermanngruppe.de.
Your rights as an affected person
Here, we would like to inform you of your rights as an affected person. These rights are standardised in Article 15-22 of the GDPR. This encompasses:
• Right to information (Article 15 of the GDPR),
• The right to deletion (Article 17 of the GDPR),
• The right to rectification (Article 16 of the GDPR),
• Right of data portability (Article 20 of the GDPR),
• The right to restriction of processing (Article 18 of the GDPR),
• The right to object to data processing (Article 21 of the GDPR).
In order to exercise these rights please contact: Email: datenschutz(at)westermanngruppe.de, Telephone: +49 531 708 0 Post: Westermann GmbH & Co. KG, Georg-Westermann-Allee 66, 38104 Braunschweig, Germany.
The same applies should you have any questions regarding data processing at our company. You have the right to appeal at a data protection authority.
Right to object to data processing
Please note the following with regards to the right to object to data processing: If we process your data for the purpose of direct advertising, you have the right to object to the processing of this data at any time without providing reasons. This also applies to profiling insofar as it is associated with such direct advertising.
If you object to the processing of your personal data for direct marketing purposes, we will no longer process your personal data for these purposes. This objection is free of charge and can take place in any format, ideally via:
Email: datenschutz(at)westermanngruppe.de, Telephone: +49 531 708 860 Post: Westermann GmbH & Co. KG, Georg-Westermann-Allee 66, 38104 Braunschweig, Germany.
In the event that we process your data to safeguard justified interests, you may object to the processing of this data which arises as a result of your particular situation at any time; this also applies to profiling based on these clauses. We shall no longer process your personal data unless we can establish compelling legitimate grounds for processing it that outweigh your interests, rights and freedoms, or processing it for purposes of asserting, exercising or defending against legal claims.
Purpose and legal bases of data processing
Your personal data is processed according to the EU-GDPR and all other applicable data protection regulations. The legal bases for processing data are formed in particular from Article 6 of the GDPR and § 25 TDDDG.
We use your data
- to provide, troubleshoot and improve the services. These purposes pursued by us also represent the legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR/§ 25 para. 2 TDDDG.
- for the fulfilment of a contractual relationship pursuant to Art. 6 para. 1 lit. b GDPR
- for the initiation of business pursuant to Art. 6 para. 1 lit. b GDPR
- for the fulfilment of legal obligations pursuant to Art. 6 para. 1 lit. c GDPR
- for communication with customers in accordance with Art. 6 para. 1 lit. f GDPR after weighing up interests
to offer products and services and to strengthen the customer relationship, which may also include analyses for marketing purposes and direct advertising.
Art. 6 para. 1 lit. a, f GDPR/§ 25 para. 1 and 2 TDDDG.
Your consent also constitutes a data protection authorisation provision. We will inform you about the purposes of data processing and your right of cancellation. If the consent also relates to the processing of special categories of personal data, we will expressly point this out to you in the consent.
Dissemination of data to third parties
We shall only pass on your data to third parties within the scope of legal provisions or corresponding consent. Otherwise, this shall not be transferred to third parties unless we are obliged to as a result of a legal requirement (transfer to external authorities such as supervisory authorities or law enforcement authorities).
Recipients of data / Categories of recipients
At our company, we ensure that only those persons who require your data to fulfil our contractual and legal obligations shall gain access (to it).
These are the employees within the:
Westermann Druck GmbH and Westermann Druck Zwickau GmbH
- for price and deadline enquiries and commissioning the production or provision of products and services as well as their invoicing
Third country transfer / Third country intent to transfer
Transfer of data to third countries (outside of the European Union or European Economic Area) shall only take place if we are contractually or legally obliged to do so, or you have given your consent. You can revoke your consent at any time with effect for the future. To do so, simply call up our consent banner in the footer or in this privacy policy under ‘Cookies’ and deselect the corresponding setting.
Storage duration of data
We store your data as long as is required to process your order. Please note that various retention periods demand that data is stored after this time. This particularly concerns commercial law or fiscal regulations (e.g. commercial code, fiscal law, etc.). If no additional retention periods are required, the data will be routinely deleted after fulfilling its purpose. This means that we may store data if you have consented to this or if legal regulations require us to do so and we use statutory limitation periods which may last up to thirty years; the regular limitation period is three years.
Secure transmission of your data
In order to protect your data against accidental or wilful manipulation, loss, destruction or access by unauthorised persons, we use technical and organisational security measures. The security level is continuously reviewed in collaboration with security experts and adapted to meet new security standards.
We offer users content encryption when using our contact forms. Decryption of this data is only possible by us. There is also the option of using alternative communication channels (e.g. post).
Obligation to provide data
Various personal data are necessary for the establishment, performance and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions it provides.
We have summarised the details for you in the point above. In certain cases, data must also be collected or made available due to legal provisions. Please note that it is not possible to process your enquiry or execute the underlying contractual relationship without providing this data.
Categories, sources and origin of data
The data we process depends on the context: This may depend on whether you place an order online, submit an enquiry using our contact form or send us an application or complaint. Please note that we store information in appropriate places depending on the processing situation, e.g. when uploading application documents or a contact enquiry.
We collect and process the following data when visiting our website:
• Name of the internet service provider
• Details about the websites from which you visit us
• Web browser and operating system used
• The IP address issued by your internet service provider
• Requested files
• The amount of data transmitted, downloads/file export
• Details about the websites visited through our site including date and time
For technical security reasons (in particular to defend against hacking attempts on our web server), this data is stored pursuant to Article 6 para. 1 lit. f GDPR. After no more than 7 days, anonymisation takes place by shortening the IP address so that no reference to the user can be found.
We collect and process the following data upon receipt of a contact enquiry:
• Surname, first name
• Contact information
• Title
• Details of the enquiry and interests
Contact form / Contacting by email (Article 6 para. 1 lit. a, b GDPR)
A contact form is provided on our website which can also be used to establish contact with us electronically. If you write to us using the contact form, we process the details provided in the contact form for the purpose of establishing contact and responding to your enquiry.
In accordance with the principles of data processing, we ensure you only need to provide the data necessary to establish contact with you. This includes your email address, your name and message with concerning. Your IP address is processed for technical and legal reasons. All other data are voluntary fields and can be optionally provided (e.g. for a more personal response to your enquiry).
If you contact us by email, we will only process the personal data provided for the purpose of handling your enquiry. If you do not use the contact form provided, no further data collection will take place.
Automated case-by-case decision
We do not use any automated processing methods to make a decision.
Cookies (Article 6 para. 1 lit. f GDPR § 25 para. 2 TDDDG / Article 6 para. 1 lit. a GDPR upon consent)
Our website uses so-called cookies in several places. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your device and saved by your browser (locally).
Cookies only contain pseudonymous, usually even anonymous data. Some cookies remain in place for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. consent settings). The latter are automatically deleted after the specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.
Due to our legitimate interest (Art. 6 para. 1 lit. f GDPR), we set technically necessary cookies, which are absolutely necessary for the operation of the website and to ensure its functionality. Furthermore, we use cookies without your consent if their sole purpose is to store or access information stored in the terminal device for the transmission of messages or if they are absolutely necessary to provide the service you have expressly requested, Section 25 (2) TDDDG.
Subject to your consent, other cookies are used to enable us or third parties to analyse how our services are used, for example. This allows us to customise the content according to user needs. Cookies also enable us to measure the effectiveness of a particular advert and to place it, for example, depending on the thematic interests of the user. The legal basis for this is your express consent (Art. 6 para. 1 lit. a GDPR, § 25 para. 1 TDDDG).
You can revoke your consent at any time with effect for the future. To do so, simply call up our consent banner in the footer or in this privacy policy under ‘Cookies’ and deselect the corresponding setting. Please note that the change in the consent banner settings must be made individually for each end device.
Cookie settings
If you have accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a link by not giving or revoking your consent to the relevant cookies or by logging out of the respective third-party providers in advance.
Most browsers accept cookies automatically. You can also deactivate, restrict or delete cookies on your end device manually via your browser settings or with the help of software. If you deactivate the setting of cookies, you will not be able to use our website to its full extent or only to a limited extent. Please also note our information in the section of the respective service that uses cookies.
We distinguish between the following types of cookies on our website:
Technically necessary cookies
Technically necessary cookies are required for the basic function of this website. They are used for secure and intended use and cannot be deactivated for this reason. These cookies are used exclusively by us. This means that all information stored in the cookies is fed back to our website. These cookies ensure, for example, that logged-in users always remain logged in when accessing the various subpages of our website and do not have to re-enter their login details each time they access a new page.
Statistics cookies
Cookies in this category enable us to analyse the use of the website and measure performance. These cookies help us to determine whether, which, how often and for how long subpages of our website are visited and what content users are particularly interested in. We also record search terms, the country, region and, if applicable, the city from which access is made, as well as the proportion of mobile devices accessing our websites. We use this information to compile statistics in order to tailor the content of our website more specifically to the needs of users and to optimise our offering.
User profiles / web tracking process
This website uses the open-source analysis tool Matomo (www.matomo.org, previously known as PIWIK) to create statistical reports about the use of our website. This makes it possible to ensure that the websites are optimised and made more user-friendly. Matomo stores the collected data (including time, pages visited, browser used, operating system) in a database. The evaluations generated with Matomo are completely anonymised and cannot be used for the identification of individual persons. IP addresses are made unrecognisable before entering the database to comply with legal regulations. No links are made between the data stored and other sources of data, nor is it passed on to third parties. The legal basis for this is Art. 6 para. 1 lit. a) GDPR, § 25 para. 1 TDDDG. The Matomo analysis tool uses cookies for data analysis purposes. The anonymous user profiles are not combined with personal data concerning the user of the pseudonym without the express consent of the data subject, which is to be granted separately. You can prevent the storage of cookies by using the appropriate setting on your browser software; however we would point out to you that if you do so, you may not be able to use all functions of this website to their full extent.
Social plugins by social networks
This website does not use social plugins from social networks.
Online offers for children
Persons under 16 years of age should not send us personal data without the consent of their parents or legal guardians. We encourage parents and guardians to actively participate in the online activities and interests of their children.
Links to other providers
Our website clearly displays links to other websites. We have no influence over the content of other websites to which we provide a link. For this reason, we cannot accept liability for such third-party content. The respective provider or operator of such sites is always responsible for the content of linked sites.
The linked sites were checked at the time of linking for possible legal violations or clearly identifiable infringements. Illegal content was not evident at that time. A permanent inspection of linked sites is not reasonable without concrete evidence of an infringement of the law. On becoming aware of legal violations, we will remove such links immediately.