Data Privacy Statement as applicable to the Naber website (as of 25.05.2018)
This Data Privacy Statement applies to all contents provided at www.naber.com. The protection of personal data is very important to us. We therefore operate our website in accordance with all the applicable laws and regulations pertaining to the protection of personal data and to data integrity. Below, you will see what information we may collect, how we handle it and whom we may furnish it with.
On our website, we only collect your personal data (e.g. names, addresses, phone numbers or e-mail addresses) if you provide them on a voluntary basis and to whose collection you have given your consent. We may also collect your personal data if thus permitted by the pertinent legal regulations on the protection of personal data.
The personal data you have provided will only be used by Naber to process your requests. After such processing, any such data will be deleted. Neither will we sell your personal data to third parties, nor commercialise them in any other way, shape or form.
Transfer to third parties
We find having information on our customers and interested parties important because they help us to optimise our services. It is not part of our business to sell this information or pass it on to third parties.
Contract data processing
We have commissioned orbiz Software GmbH to provide and technically support our website. If personal data is collected, stored and processed, this is done as specified by Naber GmbH and only as set forth in art. 28 GDPR. We check up on the protection of your personal data at orbiz Software GmbH’s on a regular basis. The contractor will not pass on personal data to third parties.
We will only use your personal data for marketing purposes, e.g. online surveys or product information, if you have given your express consent. You do so electronically and can revoke such consent at any time by sending us an e-mail.
Communication or use-related data
If you access our website via telecommunication services, communication-related data (e.g. your IP address) or use-related data (e.g. start and end of the session and data on the telecommunication services you use) are generated automatically. These may allow conclusions to be drawn on personal data. If a collection, processing and use of your communication-related or use-related data is mandatory, it is also covered by data protection laws and regulations.
Google Analytics by Google
This website uses Google Analytics, a Google Inc. (“Google“) web analysis service. Google Analytics uses so-called cookies, text files stored on your computer that allow an analysis of your use of the website. As a rule, this user information generated by the cookie is transferred to a server in the U.S. and stored there. If the IP-address anonymisation function has been activated, however, within Member States of the EU or in other EEA countries Google will shorten your IP address. The full IP address will only in exceptional cases be transferred to a Google server in the U.S. and shortened there. Google will use this information on behalf of and for the operator of this website in order to analyze your use of this website, collate reports on the website activities and to render other services in the context of website use and Internet use. Your IP address transmitted by your browser within the framework of Google Analytics will not be correlated with other Google data. You can prevent the storage of cookies by adjusting your browser software accordingly. We have to point out, however, that you will then not be able to use our website’s functions in full. You can also prevent the transfer to Google of the data generated by the cookie and relating to your use of this website (including your IP address) and such data’s processing by Google by clicking on the following link (http://tools.google.com/dlpage/gaoptout?hl=en) and downloading and installing the browser plug-in.
For further information on the terms and conditions of use and on data protection, please consult http://www.google.com/analytics/terms/de.html or https://www.google.de/intl/de/policies/. We would like to inform you that in order to guarantee an anonymised registration of IP addresses (the so-called IP masking) on this website Google Analytics has been extended by the code “gat._anonymizeIp();”.
Use of the YouTube service
Automatically collected non-personal data
When you access our website, sometimes information will be collected automatically (i.e. not with any registration or log-on) that have nothing to do with specific persons (e.g. the browser and operating system that are being used, the name of the domain you last visited, number of visits, average duration of such visits, pages called up). We will use this information to find out how attractive our website is and to improve its efficiency and contents.
If you no longer assent to the storage of your personal data or these have become incorrect, we will see to their deletion, correction or blocking if thus instructed and in accordance with the pertinent legal regulations. You have the right to receive information on all the personal data we have stored on you. The details of this right of information are set forth in the General Data Protection Regulation, Federal Data Protection Act (GDPR, esp. art. 15) and the new Federal Data Protection Act (FDPA-new §§ 34 ff). Our contact details are:
Naber GmbH, Enschedestr. 24, 48529 Nordhorn, Germany, phone: +49 5921 704-0, naber(at)naber.com
"Cookies" – information automatically stored on your computer
Naber takes technical and organisational security measures to protect your personal data from inadvertent or unlawful deletion or alteration or from loss, unauthorised transfer or illegitimate access.
Links to other websites
The Naber website features links to other websites. Naber is not responsible for these other websites’ data privacy policies or contents.
Queries and comments
Registration on our website
The data subject has the option to register on the Internet site of the data processor by providing personal data. Which personal data is transmitted to Naber GmbH here depends on the respective input mask, which is used for the registration. The personal data entered by the data subject is collected and stored solely for internal use by Naber GmbH and for its own purposes. Naber GmbH can arrange for disclosure to one or more order processors, for example a parcel service provider, which also uses the personal data exclusively for internal purposes attributable to Naber GmbH.
Subscription to our newsletter
On the Internet site of Naber GmbH, the users have the opportunity to subscribe to our company’s newsletter. Which personal data is transmitted to Naber GmbH on ordering the newsletter depends on the input mask used for this purpose.
Naber GmbH informs its customers and business partners about company offers at regular intervals by means of a newsletter. Our company’s newsletter can fundamentally only be received by the data subject if
(1) the data subject is a specialist retailer registered with us and has a valid e-mail address.
(2) the data subject registers for the newsletter.
For legal reasons, a confirmation e-mail is first sent to the e-mail address entered by a data subject for newsletter dispatch in the double-opt-in procedure. This confirmation email serves to check that the owner of the e-mail address authorised the receipt of the newsletter as the data subject.
The personal data collected in the context of registering for the newsletter is used exclusively for the dispatch of our newsletter. Furthermore, subscribers to the newsletter may also be notified by e-mail if this is necessary for the operation of the newsletter service or registration is required for this, for example in case of changes to the newsletter offer or changes to the technical conditions. The personal data collected in the context of the newsletter service is not disclosed to third parties. The subscription to our newsletter may be cancelled by the data subject at any time. The data subject’s consent to the storage of personal data provided for the newsletter dispatch may be revoked at any time. There is a corresponding link in each newsletter for revoking consent. It is also possible to unsubscribe from the newsletter at any time, either directly on the Internet site of the data processor or by notifying the data processor of this by other means.
The newsletters of Naber GmbH contain so-called tracking pixels. A tracking pixel is a miniature graphic which is embedded in such emails, which are sent in HTML format, to enable log file recording and log file analysis. This makes statistical evaluation of the success or failure of online marketing campaigns possible. Based on the embedded tracking pixel, Naber GmbH can see whether and when an e-mail was opened by a data subject and which links in the e-mail were accessed by the data subject.
Such personal data collected via the tracking pixels contained in the newsletters is stored and evaluated by Naber GmbH so as to optimise the newsletter despatch and to adapt the content of future newsletters better to the interests of the data subject. This personal data is not disclosed to third parties. Data subjects are entitled to revoke the separate declaration of consent provided for this via the double-opt-in procedure at any time. After revocation, this personal data is deleted by the data processor. Deregistration from receipt of the newsletter is automatically regarded by Naber GmbH as revocation.
Contact possibility via the Internet site
Due to legal regulations, the Naber GmbH Internet site contains information that enables quick electronic contact with our company as well as direct communication with us, which also includes a general address for so-called electronic mail (e-mail address). If a data subject contacts the data processor by e-mail or through a contact form, the personal data provided by the data subject is automatically stored. Such personal data, voluntarily transmitted to the data processor by a data subject is stored for the purpose of processing or contacting the data subject. This personal data is not disclosed to third parties.
The following data is transmitted via the contact form: subject, your message to us, company name, customer number, name, address, telephone, fax number and mail address. The following data is transmitted via the returns service form: customer number, company name, contact person, telephone number, mail address, name, address, delivery note number, product number, product description and reason for the return.
Data protection for applications and in the application process
Naber GmbH collects and processes the personal data of applicants for the purpose of completing the application process. The processing can also be carried out electronically. This is particularly the case if an applicant submits corresponding application documents to the data processor by electronic means (e-mail). If the data processor concludes a contract of employment with an applicant, the data transmitted is stored for the purpose of processing the employment relationship in accordance with the legal provisions. If the data processor does not conclude a contract of employment with the applicant, the application documents are automatically deleted two months after notification of the rejection decision, unless deletion precludes other legitimate interests of the data processor. Other legitimate interest in this sense include, for example, the obligation to furnish evidence in a lawsuit in accordance with the General Act on Equal Treatment (AGG).
Adobe Typekit Web Fonts
For the uniform representation of certain fonts, our website uses so-called web fonts from Adobe Typekit. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe). When you access our sites, your browser loads the required fonts directly from Adobe so as to display them correctly on your device. For this, your browser connects to Adobe’s servers in the USA. In this way, Adobe is informed that our website has been accessed via your IP address. According to Adobe, no cookies are stored when providing the fonts.
Adobe is certified according to the EU-US Privacy Shield. The Privacy Shield is an arrangement between the United States of America and the European Union intended to ensure compliance with European privacy standards. Further information can be found at: https://www.adobe.com/de/privacy/eudatatransfers.html.
The use of Adobe Typekit Web Fonts is required to ensure a consistent typeface on our website. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.
Further information on Adobe Typekit Web Fonts is available at: https://www.adobe.com/de/privacy/policies/typekit.html.
Content Delivery Network
We use the service CDN Highspeed Network on our website to make media available to you. When connecting to the CDN server of Highspeed Network / orbiz Software GmbH, your IP address is transmitted. The use of the CDN Highspeed Network is required in order to offer you product images, CAD drawings, PDF files, Exel files, etc. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.
Further information on CDN Highspeed Network / orbiz Software GmbH is available at: https://www.orbiz.com/.
Some of the web pages use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective, and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognise your browser the next time you visit.
You can configure your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for specific cases or generally, and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.
Consent: if other cookies (e.g. cookies for the analysis of your surfing behaviour) are stored, you can decide yourself which cookies you allow. For this, simply tick the permitted cookies in the “Cookies” pop-up window. You can open the window at any time by clicking on the fingerprint below left.
Contact data of the data protection officer
The company Naber has appointed Dr. Johannes Schröder as its data protection officer.
Postal address: To the data protection officer of Naber GmbH
Tel.: +49 5461-886299
Mail (preferred): datenschutz(at)naber.com
Information obligations according to the EU General Data Protection Regulation (GDPR)
We take the protection of your personal data very seriously. We treat your personal data confiden-tially and in accordance with the statutory data protection regulations and this declaration.
Personal information is information that personally identifies you. This information sheet explains what data we collect and what we use it for. It also explains how and for what purpose.
Company name: Naber GmbH
Address: Enschedestraße 24, 48529 Nordhorn, Germany
Tel.: +49 5921 704-0
Fax: +49 5921 704-140
Data Protection Officer (external)
Dr. Johannes Schröder
Griegstraße 6, 49565 Bramsche, Germany
Tel.: +49 5461 886299
Legal basis for the processing of personal data
We only process personal data if there is a legal basis, i.e. if
- the data subject has given their consent (Art. 6, para. 1, lit. a GDPR),
- it is for the fulfilment of a contract (Art. 6, para. 1, lit. b GDPR),
- legitimate interests (Art. 6, para. 1, lit. f GDPR) exist,
- it is for the fulfilment of a legal obligation (Art. 6, para. 1, lit. c GDPR).
All personal data is collected and processed in accordance with the EU General Data Protection Regulation (GDPR) and the Act to Adapt Data Protection Law to Regulation (EU) 2016/679 and to Implement Directive (EU) 2016/680 (DSAnpUG-EU).
We process the following data from you:
Company name, first name and surname of contact person and (end) customer, address, telephone and fax number, e-mail, bank details, contracts, orders, delivery notes, invoices.
The data belongs to the following data categories: identification data, communication data, financial data, order and contract data and billing data.
The following groups of people are affected: customers, prospective customers, suppliers, sales representatives and employees.
Use of your data (purpose)
This data is collected
- to identify you as a customer,
- to process your request, your order appropriately,
- to fulfil orders,
- for correspondence with you,
- for invoicing,
- for informational purposes.
As a data subject you have the right at any time
- to free information about your stored personal data (Art. 15 GDPR), its origin and recipient and the purpose of the processing of your data,
- to rectification (Art. 16 GDPR),
- to blocking (right to restriction of processing, Art. 18 GDPR),
- to deletion of this data subject to any statutory retention requirements (Art. 17 GDPR),
- to complain to the competent supervisory authority (Art. 77 GDPR),
- to data portability (Art. 20 GDPR).
Data is not disclosed to third parties unless this is necessary to fulfil your request/order. The data is not transferred to third countries.
Automated decision making and profiling
No automated decision-making procedures according to Art. 22 GDPR or other profiling measures according to Art. 4 No. 4 GDPR are carried out.
Revocation of consent
You may revoke your consent granted at any time with effect for the future. If you wish to exercise your right of revocation, an e-mail to E Naber GmbH (see above) is sufficient.
Deletion of personal data
The personal data collected by us is deleted after the purpose is finished, taking into account the statutory retention requirements.
We take technical and organisational measures to process your data with a high degree of security. Importance is especially attached to the following points:
- Confidentiality (Art. 32 para. 1 lit. b GDPR), especially physical, electronic and internal access control and isolation control
- Integrity (Art. 32 para. 1 lit. b GDPR), especially data transfer, data entry, processing, documentation and order control
- Availability and resilience (Art. 32 para. 1 lit. b GDPR), especially availability control and recoverability
- Process for regularly testing, assessing and evaluating (Art. 32 para. 1 lit. d GDPR; Art. 25 para. 1 GDPR), especially data protection management, data-protection-friendly default settings and organisation control