Data Privacy Policy

Thank you for your visit to our website and your interest in our company. We see privacy as a customer-oriented quality issue. The protection of your personal data and the preservation of your rights are important to us.

With this privacy policy, we would like to inform all visitors of our website about the nature, scope and purpose of the personal data collected, used and processed by us and notify you about your rights.

Use of our website is possible without the provision of personal data. However, if you use the website services of our company, the processing of your personal data may be required.

The data collected automatically when you visit our websites or entered by you when you use its services are processed in accordance with the current statutory provisions for the protection of personal data.

If the processing of your personal data is required and there is no legal basis for such processing, we will obtain consent for the required purpose of the processing.

As the company responsible for processing, we have defined technical and organizational measures to ensure the highest possible level of protection of your personal data.

However, we point out that data transmission over the World Wide Web can generally have security gaps.

If you would like to make use of the services of our company and do not want to transmit information via the World Wide Web for this purpose, you can also contact us by phone.

1. Contact details of the party responsible for data processing

The party responsible according to the General Data Protection Regulation is:
Company: Neuland GmbH & Co. KG
Street: Am Kreuzacker 7
Postal code/location: 36124 Eichenzell / Germany
Phone: +49 6659 88-0
Email: info@neuland.com

Data Protection Officer:
Mr Stephan Hartinger
Coseco GmbH
Phone: 08232 80988-70
Email: datenschutz@coseco.de

2. Collection of general access information

Every time you visit our website, server log file information, sent by your browser, is automatically recorded. This includes:

  1. IP address (Internet Protocol address) of the accessing computer
  2. The website from which you visit us (referrer)
  3. The pages you visit on our website
  4. The date and duration of the visit
  5. Browser type and browser settings
  6. Operating system

Note that this data cannot be assigned to a specific person. We use this technical access information exclusively for the following purposes:

  1. To improve the attractiveness and usability of our websites,
  2. To detect technical problems on our website early,
  3. To deliver the contents of our website correctly,
  4. And to provide law enforcement with the information necessary for prosecution in the event of a cyberattack.

These data are stored as a technical precaution for a maximum of 14 days to protect the data processing systems against unauthorized access.

3. Collection and transfer of personal data

3.1 Registration on our website

3.1.1 Blog comment function

On our website, we offer you a blog and the opportunity to leave comments on individual blog posts. A blog is a web-based, typically public-accessible portal in which one or more people who are called bloggers can post articles or write down thoughts in so-called blog posts. Generally, you can leave comments on blog posts.
If you leave a comment in our blog, in addition to the comment, information about the time of the commentary input as well as the username (pseudonym) chosen by the person concerned will be saved and published. Furthermore, your IP address will be logged. This storage of the IP address is made for security reasons and in the event that the rights of third parties are infringed or illegal content is posted via a given comment. The storage of these personal data is therefore in your own interest, so that we can provide evidence in case of infringement, if necessary. There is no disclosure of this personal data to third parties, unless such disclosure is required by law or serves the purpose of legal defense.

When processing personal information for which we obtain the consent of the data subject, Art. 6 para. 1 lit. a of the General Data Protection Regulation (GDPR) serves as the legal basis.

Subscriptions of blog comments on the internet

The comments made in our blog can essentially be subscribed to by a third party.
If you choose to subscribe to comments, we will send you an automatic confirmation email to verify that the owner of the specified email address has actually opted for this option (Double Opt In).

When processing personal information for which we obtain the consent of the data subject, Art. 6 para. 1 lit. a of the General Data Protection Regulation (GDPR) serves as the legal basis.

According to Art. 7, para. 3 and Art. 21 of the General Data Protection Regulation (DSGVO), you have the opportunity at any time to prevent the sending of postal information material and to revoke your consent to the use of your data for that purpose.

3.1.2 Contact by mail or contact form

We offer you the opportunity to contact us by email and/or via a contact form.

If you contact us by email or via a contact form, the personal data you provide will be automatically saved.

  1. Name
  2. Email address

Personally identifiable information you submit to us on a voluntary basis will be stored for the purposes of processing your request or contacting the data subject. There is no disclosure of this personal data to third parties.

When processing personal information for which we obtain the consent of the data subject, Art. 6 para. 1 lit. a of the General Data Protection Regulation (GDPR) serves as the legal basis.

4. What are cookies used for?

Our website uses cookies in several places. Detailed information and which cookies are used can be found in our Cookie-Policy.

5. Use and use of tracking, analysis tools and social plugins

5.1 Use of YouTube components

On our website, we use components (videos) from the company YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, a company of Google Inc., Amphitheater Parkway, Mountain View, CA 94043, USA.
When you visit a page that has an embedded video, it will connect to the YouTube servers and display the content on the website by notifying your browser.
According to information provided by YouTube, only data is transmitted to the YouTube server, in particular which of our web pages you have visited when watching the video. If you are logged in to YouTube at the same time, this information will be assigned to your member account on YouTube. You can prevent this by logging out of your member account before visiting our website.
Additional information about YouTube’s privacy is provided by Google at the following link: https://www.google.com/intl/en/policies/privacy/ 

6. Deletion, blocking and duration of storage of personal data

We process and store your personal data only for the period necessary to achieve the respective purpose of storage or as required by the various retention periods provided for by law.
After the expiry of a storage purpose or after expiry of the retention period provided for by law, the personal data will be routinely blocked and deleted for further processing in accordance with the statutory provisions.

7. Data protection rights of the data subject

If you have questions about your personal data, you can always contact us in writing. You have the following rights under the GDPR:

7.1 The right to information (subsection Article 15 of the GDPR)

You have the right at any time to obtain information about which categories and information about your personal data are processed by us for what purpose and for how long and according to which criteria these data are stored and whether automated decision-making (including profiling) is used in this context. You also have the right to know to which recipients or categories of recipients your information has been disclosed or will be disclosed; in particular for beneficiaries in third countries or international organizations. In this case you also have the right to be informed about appropriate guarantees in connection with the transmission of your personal data.

In addition to the right of appeal to the supervisory authority and the right to information about the origin of your data, you have the right to cancellation, rectification and the right to restriction or opposition to the processing of your personal data.

In all cases mentioned above, you have the right to request from the data processor a free copy of your personal data processed by us. We are entitled to charge a reasonable administration fee for any additional copies you request or that go beyond the information rights of the data subject.

7.2 The right to rectification (Article 16 of the GDPR)

You have the right to demand the immediate correction of your incorrect personal data and to request the completion of incomplete personal data by means of a supplementary declaration, taking into account the purposes of the processing.
If you wish to exercise your right to rectification, you can contact our data protection officer or the party responsible for data processing at any time.

7.3 The right to erasure (Article 17 of the GDPR)

You have the right to request the immediate deletion of your data (“right to be forgotten”) especially if the storage of the data is no longer necessary, you revoke your consent to processing, your data has been unlawfully processed or illegally collected and there is a legal obligation to delete under EU or national law.
However, the right to be forgotten does not apply where there is an overriding right to freedom of expression or information, where data retention is necessary for the fulfilment of a legal obligation (e.g. retention obligations), for archival purposes or saving for the exercise or defence of legal claims.

7.4 The right of restriction (Article 18 of the GDPR)

You have the right to request the party responsible for data processing to restrict the processing of your data if the accuracy of the data is disputed by you, if the processing is unlawful, if you refuse to a deletion of your personal data and if you require a restriction of processing, if the need for the processing purpose ceases or you have objected to the processing referred to in Article 21 para. 1, as long as it is not certain that our legitimate reasons prevail over yours.

7.5 The right to data portability (Article 20 of the GDPR)

You have the right to transfer your personal data, which you have provided to our company in the form of a standard format, so that you can have your personal data forwarded to another person without hindrance, if, for example, you give your consent and processing by means of an automated process procedure takes place.

7.6 The right to object (Article 21 of the GDPR)

You have the right to object to the processing of your personal data at any time, except in the presence of legitimate reasons. For example, legitimate reasons for data processing exist where the interests, rights and freedoms of the data subject prevail, or processing serves to assert, defend and exercise rights. In addition, you may at any time express a separate, explicit right to object to the processing of your personal data for the purpose of direct mail.

7.7 Right to lodge a complaint with a supervisory authority (Article 77 of the GDPR in conjunction with Section 19 BDSG)

You are granted the right to complain to the competent authority if you believe that your personal data has been infringed.

The supervisory authority responsible for our company is:
Der Hessische Datenschutzbeauftragte, PO Box 3163, 65021 Wiesbaden
Email: Poststelle@datenschutz.hessen.de, www. datenschutz.hessen.de
Telephone: +49 611 1408 – 0, Fax: +49 611 1408 – 900

7.8 Right to revoke data protection consent (Article 7 para. 3 of the GDPR)

You may withdraw your consent to the processing of your personal data at any time without giving reasons. This also applies to the revocation of declarations of consent issued to us prior to the entry into force of the EU General Data Protection Regulation.

8. Legal basis of processing (summary)

When processing personal information for which we obtain the consent of the data subject, Art. 6 para. 1 lit. a of the General Data Protection Regulation (GDPR) serves as the legal basis.

According to Art. 7, para. 3 and Art. 21 of the General Data Protection Regulation (GDPR), you have the opportunity at any time to prevent the sending of postal information material and to revoke your consent to the use of your data for that purpose.

9. Transfer of data to third parties

We generally do not sell or lend user data. Transmission to third parties beyond the scope described in this privacy policy will only take place if necessary to complete the requested service.
We transmit data only if there is a legal obligation to do so. This is the case when government agencies (e.g. law enforcement agencies) ask in writing for information or a court order is available.
The transfer of personal information to so-called third countries outside the EU/EEA area does not take place.

10. Legal or contractual regulations for the provision of personal information and possible consequences of non-provision

We hereby point out that the provision of personal data in certain cases (e.g. tax regulations) is required by law or may result from a contractual regulation (e.g. information about the contracting party). For example, it may be necessary for a contract that the person/the contracting party must provide their personal data, so that their request (e.g. order) can be processed by us at all. An obligation to provide personal data arises especially when concluding a contract. If no personal data is provided in this case, the contract cannot be concluded with the data subject. Prior to any provision of personal data by the data subject, the data subject may contact our data protection officer or the party responsible for data processing. The data protection officer or the party responsible for data processing then informs the data subject whether the provision of the personal data required is required by law or contract or for the conclusion of the contract and whether the data subject’s concerns imply the provision of the personal data or what consequences a non-provision of the desired data has for the person concerned.

11. Legislative existence of automated decision-making (including profiling)

As a responsible company, we refrain from automatic decision-making or profiling in our business relationships.

 

Date: May 2018