Privacy Policy | Korntex GmbH

Effective Date: September 16, 2024

Who We Are
The entity responsible under the General Data Protection Regulation (GDPR) and other applicable data protection laws is:

Korntex GmbH
Carl-Zeiss-Straße 5
70736 Fellbach
Germany
+49(0)711 888 88 777
info@korntex.com
https://korntex.de/de/

Contacting the Data Protection Officer

The Data Protection Officer of the controller is:
DataCo GmbH
Nymphenburger Str. 86
80636 Munich, Germany
+49 89 7400 45840
www.dataguard.de

This page informs you about the processing of your personal data on our website.

How we collect and use your personal data depends on how you interact with us or which services you use. We collect, use, or share your personal data only when we have a legitimate purpose and a legal basis for doing so.

What do we mean by legal basis?

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR) - You have given us your consent to process your personal data for the specific purpose we have explained to you. You have the right to withdraw your consent at any time. For more information on how to withdraw your consent, see the subsection "Exercising Your Rights" in the sections of this privacy policy below.
Contract (Art. 6 para. 1 sentence 1 lit. b GDPR) - We need to use your data to fulfill a contract you have with us. Alternatively, it is necessary to use your data because we asked you or you took certain steps before entering into this contract.
Legal Obligation (Art. 6 para. 1 sentence 1 lit. c GDPR) - We must use your data to comply with the law.
Vital Interests (Art. 6 para. 1 sentence 1 lit. d GDPR) - The processing of your data is necessary to protect your vital interests or those of another person. For example, to save you from serious physical harm.
Public Task (Art. 6 para. 1 sentence 1 lit. e GDPR) - The processing of your data is necessary for the performance of a task carried out in the public interest or because it is covered by a legally defined task, such as a statutory function.
Legitimate Interests (Art. 6 para. 1 sentence 1 lit. f GDPR) - The processing of your data is necessary to support a legitimate interest that we or another party have, provided your own interests do not override them.

Please note that we may not be able to provide you with our website services if your data is processed for the fulfillment of a contract or a legal obligation and you do not provide the requested data.

Data Sharing and International Transfers

As explained in this privacy policy, we use various service providers who assist us in delivering our services and ensuring the security of your data. When we engage these service providers, it is necessary to share your personal data with them.

We have agreements with all service providers to whom we share your data, which oblige them to protect your data.

If your personal data is transferred outside the EU, we ensure that your personal data receives an equivalent level of protection, either because the country to which your data is transferred has an "adequate" data protection standard as per the European Commission, or by using another safeguard, such as an extended contractual arrangement, i.e., the Standard Contractual Clauses (SCCs) adopted by the European Commission.

For example, when we use U.S. service providers, we rely on either the SCCs or the EU-US Data Privacy Framework, depending on the provider. You can request a copy of the SCCs we have with our service providers by sending an email to the email address provided in this privacy policy.

Your Rights

If your personal data is processed, you are a data subject under the GDPR, and you have the following rights against the controller:

Right to Access (Art. 15 GDPR) You have the right to request confirmation from us as to whether personal data concerning you is being processed. If this is the case, you have the right to access this data and the following information:

Processing purposes

Categories of personal data

Recipients or categories of recipients

Planned storage duration or the criteria for determining this duration

The existence of rights to rectification, erasure, restriction, or objection

Right to lodge a complaint with the relevant supervisory authority

If applicable, the origin of the data (if collected from a third party)

If applicable, the existence of automated decision-making, including profiling, with meaningful information about the logic involved, the significance, and the anticipated consequences

If applicable, the transfer of personal data to a third country or an international organization

Right to Rectification (Art. 16 GDPR)
If your personal data is inaccurate or incomplete, you have the right to request immediate correction or completion of your personal data.
Right to Restriction of Processing (Art. 18 GDPR)
If any of the following conditions apply, you have the right to request the restriction of processing your personal data:

You dispute the accuracy of your personal data for a period that allows us to verify the accuracy of the personal data.
The processing is unlawful, and you oppose the erasure of the personal data and request the restriction of its use instead.
We no longer need your personal data for the purposes of processing, but you require it to establish, exercise, or defend legal claims.
You have objected to the processing, pending the verification of whether our legitimate grounds override your grounds.

Right to Erasure ("Right to be Forgotten") (Art. 17 GDPR) If one of the following reasons applies, you have the right to request the immediate deletion of your personal data:

Your data is no longer necessary for the purposes for which it was originally collected.
You withdraw your consent, and there is no other legal basis for the processing.
You object to the processing, and there are no overriding legitimate grounds for processing, or you object in accordance with Art. 21 para. 2 GDPR.
Your personal data is being unlawfully processed.
The erasure is necessary to comply with a legal obligation under Union or Member State law to which we are subject.
The personal data was collected concerning information society services offered according to Art. 8 para. 1 GDPR.

Please note that the above reasons do not apply if processing is necessary:

To exercise the right of freedom of expression and information;
To fulfill a legal obligation or to perform a task in the public interest that we are subject to;
For reasons of public interest in the area of public health;
For archiving purposes in the public interest, scientific or historical research purposes, or for statistical purposes;
To establish, exercise, or defend legal claims.

Right to Data Portability (Art. 20 GDPR)
You have the right to receive your personal data in a structured, commonly used, and machine-readable format or request that it be transmitted to another controller.
Right to Object to Certain Data Processing (Art. 21 GDPR)
You have the right to object, at any time, to the processing of your personal data based on Art. 6 para. 1 sentence 1 lit. e or f GDPR, including profiling based on those provisions.

If your personal data is processed for direct marketing purposes, you have the right to object to the processing of your personal data for such marketing purposes, including profiling related to direct marketing.

Right to Lodge a Complaint with a Supervisory Authority Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data violates the GDPR.

The supervisory authority to which the complaint has been submitted shall inform the complainant about the status and outcome of the complaint, including the possibility of a judicial remedy according to Art. 78 GDPR.

A list of the locally competent supervisory authorities in Germany can be accessed on the website of the Federal Commissioner for Data Protection at the following link:
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

Provision of the Website and Creation of Log Files

1. Description and Scope of Data Processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device.

The following data is collected:

Information about the browser type and version used
The user's operating system
Date and time of access
Websites from which the user's system accesses our website

This data is stored in the log files of our system. The IP addresses of the users or other data that could allow the data to be linked to a user are not affected. Storage of this data together with other personal data of the user does not take place.

2. Purpose of Data Processing

The storage in log files ensures the functionality of the website. Additionally, the data helps us optimize the website and ensure the security of our information technology systems. In this context, the data is not evaluated for marketing purposes.

3. Legal Basis for Data Processing

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 sentence 1 lit. f GDPR.

4. Duration of Storage

The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of the collection of data to provide the website, this is the case when the respective session is terminated.

If the data is stored in log files, this is the case after no more than seven days. A longer storage period is possible. In this case, the users' IP addresses will be deleted or anonymized, making it impossible to assign them to the accessing client.

5. Exercising Your Rights

The collection of data for the provision of the website and the storage of data in log files is essential for the operation of the website. The user has the option to object. Whether the objection is successful is determined by a balancing of interests.

Use of Cookies

1. Description and Scope of Data Processing
When you visit our website, we use technical tools for various functions, especially cookies, which may be stored on your device. When you access our website and at any time afterward, you have the option to allow cookies or to select specific functions. You can make changes in your browser settings or through our consent manager.

Cookies are text files or information stored in a database, saved on your hard drive, and assigned to the browser you are using, so the entity placing the cookie can receive certain information. Below we describe the types of cookies we use:

We use technically necessary cookies that are required for the technical setup of the website. Without these cookies, our website cannot be displayed correctly, or support functions cannot be provided.

The following data is stored and transmitted through technically necessary cookies:

Login information
Use of website features

2. Purpose of Data Processing
The purpose of using technically necessary cookies is to ensure the functionality of our website. Some functions of our website cannot be offered without the use of cookies. For these functions, it is necessary for the browser to be recognized after changing pages.

We require technically necessary cookies for the following applications:

Website functionality

3. Legal Basis for Data Processing
For the storage of information on the end device of the end user and/or access to information already stored on the end device of the end user, the provisions of the Telecommunications Telemedia Data Protection Act (TTDSG) are applicable. If the setting and reading of cookies are technically necessary, this is done to ensure the functionality of our website. In this case, the storage and access to cookies on your end device are based on § 25 para. 2 No. 2 TTDSG.

If cookies are used that are not technically necessary, this is done based on your express consent, which you can provide through the cookie banner. The basis for storage and access to information is in this case § 25 para. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a), Art. 7 GDPR. You can withdraw your consent at any time with effect for the future by adjusting your cookie settings. Alternatively, you can prevent the storage of cookies by configuring your browser settings accordingly. Please note that your browser settings apply only to the respective browser used.

Newsletter

1. Description and Scope of Data Processing
Our website allows you to subscribe to a free newsletter. When signing up for the newsletter, the data entered in the input form is transmitted to us.

To provide this service, we collect the following data from you:

Email address
Last name
First name
Industry
Interests

During the registration process, your consent is obtained for the data processing, and reference is made to this privacy policy.

No data is passed on to third parties in connection with data processing for the dispatch of newsletters. The data is used exclusively for sending the newsletter.

2. Purpose of Data Processing
The user's email address is collected to deliver the newsletter.

Other personal data collected during the registration process helps prevent misuse of the services or the provided email address.

3. Legal Basis for Data Processing
The legal basis for processing the data after registration for the newsletter by the user is Art. 6 para. 1 sentence 1 lit. a GDPR, provided the user has given their consent.

4. Duration of Storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. The user's email address will be stored as long as the newsletter subscription is active.

Other personal data collected during the registration process will generally be deleted after seven days.

5. Exercising Your Rights
The user can cancel the newsletter subscription at any time. For this purpose, there is a corresponding link in each newsletter.

This will also revoke the consent for the storage of personal data collected during the registration process.

Use of Brevo

1. Scope of Personal Data Processing
We use Brevo, an email marketing platform for managing and sending email newsletters, provided by Sendinblue GmbH, Germany. Brevo is used for sending our email newsletters to inform subscribers about news, offers, and relevant information.

2. Purpose of Data Processing
The processing of personal data is carried out for the purpose of sending email newsletters to subscribers who have given their consent.

3. Legal Basis for Processing Personal Data
The processing of personal data by Brevo is based on the consent of the affected individuals in accordance with Art. 6 para. 1 lit. a GDPR. Consent is granted by subscribing to our newsletter and can be revoked at any time.

4. Duration of Storage
The personal data collected by Brevo is stored only as long as necessary for the purpose of sending newsletters. Once the purpose of data collection is fulfilled or consent is revoked, the data will be securely deleted or anonymized unless there are legal retention requirements.

5. Exercising Your Rights
You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the legality of the processing carried out based on the consent before the withdrawal. You can exercise the withdrawal by clicking the unsubscribe link in each newsletter or by notifying us directly.

For more information about your rights and how Brevo processes personal data, please refer to Brevo's privacy policy.

Webshop

We offer a webshop on our website.

For this, we use the following webshop software:

Shopware by the provider shopware AG, Ebbinghoff 10, 48624 Schöppingen, Germany (hereinafter referred to as "Shopware").

You can find more information in the provider's privacy policy:
https://de.shopware.com/datenschutz/

The website and webshop are hosted on external servers by a service provider we have commissioned.

Our service provider is:
Mittwald

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when visiting the website. The stored information is:

Information about the browser type and version used
The user's operating system
The user's internet service provider
Date and time of access
Websites from which the user's system accesses our website
Websites accessed by the user's system through our website

No merging of this data with other data sources takes place. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of their website – for this, the server log files must be recorded.

We have a processing contract with the respective service provider, in which we obligate the service provider to protect user data and not to pass it on to third parties.

The location of the server for the website is geographically located in Germany.

Payment Methods

1. Description and Scope of Data Processing
We offer our customers various payment options for processing their orders. For this purpose, we forward customers to the platform of the respective payment service provider depending on the payment option chosen. After completing the payment process, we receive the customers' payment data from the payment service providers or our bank and process them in our systems for invoicing and accounting purposes.

Payment by Credit Card
You can complete the payment process by credit card. If you choose to pay by credit card, payment data is passed on to the payment service providers for payment processing. All payment service providers comply with the requirements of the “Payment Card Industry (PCI) Data Security Standards” and have been certified by an independent PCI Qualified Security Assessor.

The following data is regularly transmitted in the context of payment by credit card:

Purchase amount
Date and time of the purchase
First and last name
Address
Email address
Credit card number
Credit card expiration date
Security code (CVC)
IP address
Phone number / Mobile phone number

Payment data is transmitted to the following payment service providers:

PayPal, provided by PayPal (Europe) S.à r.l. et Cie, S.C.A.
For more information on how your data is processed by PayPal, please refer to PayPal’s privacy policy:
https://www.paypal.com/myaccount/privacy/privacyhub.

Payment by PayPal
You can complete the payment process using the PayPal payment service provider. PayPal offers direct payment methods as well as purchase on account, direct debit, credit card, and installment payment.

The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg.

When you choose PayPal as the payment method, your data required for the payment process will be automatically transmitted to PayPal.

This data includes, in particular:

Name
Address
Email address
Phone / Mobile number
IP address
Bank details
Card number
Expiration date and CVC code
Number of items
Item number
Data regarding goods and services
Transaction sum and tax information
Information about past purchasing behavior

The data transmitted to PayPal may be passed on by PayPal to credit reference agencies. This transmission aims to verify identity and creditworthiness.

PayPal may also pass your data on to third parties if this is necessary to fulfill contractual obligations or if the data is to be processed on behalf of PayPal. When transmitting your personal data within companies affiliated with PayPal, the Binding Corporate Rules apply, which have been approved by the competent supervisory authorities. You can find these here:
https://www.paypal.com/de/webapps/mpp/ua/bcr

Other data transfers are based on contractual protection provisions, if applicable. For more information, please contact PayPal.

All PayPal transactions are subject to PayPal’s privacy policy, which you can find here:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full/.

SEPA Direct Debit Mandate
You can make payments using a SEPA direct debit mandate.
When making payments via SEPA direct debit mandate, we store the data you provide for the purpose of processing the direct debit procedure. In this procedure, your payment information, including your IBAN and BIC, is transmitted to an intermediary payment service provider who instructs your authorized bank to process the debit.

Payment in Advance
If you choose payment in advance, no data will be processed on our part except for the data transmitted by your bank. This data is only used to verify the payment receipt.

Other Payment Methods
We also offer payment using the following methods:

Invoice

2. Purpose of Data Processing
The transfer of payment data to payment service providers is necessary for processing the payment, for example, when you purchase a product and/or use a service.

3. Legal Basis for Data Processing
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. b GDPR, as the processing of the data is necessary for the execution of the concluded purchase contract.

4. Duration of Storage
All payment data, as well as data regarding any chargebacks, will only be stored for as long as necessary for processing the payment and handling possible chargebacks and debt collection as well as for preventing abuse.

Further storage of payment data may take place if and for as long as required to comply with legal retention periods or to pursue a specific abuse case.

Your personal data will be deleted after the expiration of the statutory retention periods, which is typically after 10 years.

5. Exercising Your Rights
If the data is necessary to fulfill a contract or to carry out pre-contractual measures, early deletion of the data is only possible insofar as there are no contractual or legal obligations to the contrary.

Contact Form

1. Description and Scope of Data Processing
There is a contact form on our website, which can be used for electronic contact. If a user makes use of this option, the data entered in the input form is transmitted to us and stored.

At the time the message is sent, the following data is also stored:

Email address
Last name
First name
Date and time

2. Purpose of Data Processing
The processing of personal data from the contact form or via the provided email address is solely used for processing the contact request.

Other personal data processed during the submission process helps prevent misuse of the contact form and ensure the security of our information technology systems.

3. Legal Basis for Data Processing
The legal basis for processing the data transmitted in the course of sending an email is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in optimally responding to your inquiry sent via the contact form. If the email contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 sentence 1 lit. b GDPR.

4. Duration of Storage
The data will be deleted as soon as it is no longer necessary for the purpose of its collection. For personal data from the contact form input and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is considered terminated when the circumstances indicate that the relevant issue has been resolved.

Any additional personal data collected during the sending process will be deleted no later than seven days after submission.

5. Exercising Your Rights
If the user contacts us via the contact form, they can object to the storage of their personal data at any time by using the following method:

We will store your personal data only for as long as necessary to process and complete your order, as well as for legitimate and essential business purposes, such as making data-driven business decisions about new offers, complying with our legal obligations, and resolving disputes. We store some of your personal data, such as email addresses and phone numbers, for newsletters and offers in our assortment. Upon request, we will delete or anonymize your personal data, so it can no longer identify you, unless we are legally permitted or required to retain personal data, such as in the following situations: 1. If there are any unresolved issues regarding your account, such as an outstanding balance on your account or an unresolved claim or dispute, we will retain the necessary personal data until the matter is resolved; 2. If we are legally or tax-wise required to retain the personal data for legal or auditing obligations, we will retain the necessary personal data for the duration required by applicable law; and/or, 3. If necessary for our legitimate business interests, such as preventing fraud or maintaining the security of our users. Deletion of Cookies 1. You can delete cookies already stored on your device. Typically, you can delete cookies in the privacy or history sections available in the settings or options of your browser.

All personal data stored during the contact process will be deleted in this case.

Applications via Email

You can send us your application via email. In this process, we collect your email address and the information you provide in your email.

After sending your application, you will receive an email confirmation of receipt of your application documents.

2. Purpose of Data Processing
The processing of personal data from your application email is solely for the purpose of processing your application.

3. Legal Basis for Data Processing
The legal basis for processing your data is the initiation of a contract at the request of the individual concerned, Art. 6 para. 1 sentence 1 lit. b Alt. 1 GDPR and § 26 para. 1 sentence 1 BDSG.

4. Duration of Storage
After completing the application process, the data will be stored for up to 3 months. After the expiration of 3 months, your data will be deleted. In the event of a legal obligation, the data will be stored in accordance with applicable regulations.

Company Presence

Instagram:
Instagram, part of Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

On our company page, we provide information and offer Instagram users the opportunity to communicate with us.

When you take an action on our Instagram company page (e.g., comments, posts, likes, etc.), it is possible that you will publicly disclose personal data (e.g., your real name or profile photo).

Since we typically have no influence on the processing of your personal data by Instagram, we cannot make any binding statements about the purpose and scope of the processing of your data.

We use our company presence on social networks for communication and information exchange with (potential) customers. In particular, we use our company presence for:

The Korntex GmbH company page is used to present the wide range of high-visibility and work clothing. Products are showcased with application examples from various industries. Occasionally, promotions such as discounts, competitions, or special offers are promoted to strengthen customer loyalty and attract new customers. Additionally, new products and innovative developments are regularly presented to keep customers informed. A special highlight is the integrated online shop, where products can be purchased directly. This allows customers to quickly and easily order the items they need. The company presence also serves to provide customers with important information such as certifications, sustainability initiatives, and sales details.

The publications on the company presence may include the following content:

Product information
Advertising
Customer contact

It is up to each user to decide whether to disclose personal data through their activities.

Insofar as we process your personal data to evaluate your online behavior, offer contests, or conduct lead campaigns, this is done based on your express consent declaration, Art. 6 para. 1 sentence 1 lit. a, Art. 7 GDPR.

The legal basis for processing personal data for communication purposes with customers and interested parties is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in optimally responding to your inquiry or providing the requested information.

If the contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

We store your activities and personal data posted on our Instagram company presence until you withdraw your consent. In addition, we comply with statutory retention periods.

YouTube:

YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, United States

On our company page, we provide information and offer YouTube users the opportunity to communicate with us.

When you perform an action on our YouTube company page (e.g., comments, posts, likes, etc.), it is possible that you will publicly disclose personal data (e.g., your real name or profile photo).

Since we typically have little to no control over the processing of your personal data by YouTube, we cannot make any binding statements about the purpose and scope of the processing of your data.

We use our company presence on social networks for communication and information exchange with (potential) customers. In particular, we use the company presence for:

The Korntex GmbH company page is used to present a wide range of high-visibility and work clothing. Through the website and other digital channels, both product features and application examples in various industries are showcased. Occasionally, promotions like discounts, competitions, or special offers are advertised to strengthen customer loyalty and attract new customers. In addition, new products and innovative developments are regularly presented to keep customers updated. A special highlight is the integrated online shop, where products can be purchased directly, allowing customers to quickly and easily order the items they need. The company presence also serves to provide customers with important information, such as certifications, sustainability initiatives, and sales details.

The publications on the company presence may include the following content:

Product information
Advertising
Customer contact

It is up to each user to decide whether to disclose personal data through their activities.

If the contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

We store your activities and personal data posted on our YouTube company presence until you withdraw your consent. In addition, we comply with statutory retention periods.

We process data from our company presence in our systems. This data is stored for the following period:
We store your personal data only as long as it is necessary to process and fulfill your order as well as for legitimate and essential business purposes, such as making data-driven business decisions about new offers, fulfilling our legal obligations, and resolving disputes. We store some of your personal data, such as email addresses and phone numbers, for newsletters and offers about our product range. If you request it, we will delete or anonymize your personal data so that it no longer identifies you, unless we are legally permitted or required to retain personal data, such as in the following situations:

If there are unresolved matters regarding your account, such as an outstanding balance on your account or an unresolved claim or dispute, we will retain the necessary personal data until the matter is resolved;
If we are legally or tax-wise required to retain personal data for legal or auditing obligations, we will retain the necessary personal data for the period required by applicable law; and/or,
If necessary for our legitimate business interests, such as preventing fraud or maintaining the security of our users, we will retain the necessary personal data.

The data generated by the company presence is not stored in our own systems.

For the processing of your personal data in third countries, we have provided appropriate safeguards in the form of standard data protection clauses in accordance with Art. 46 para. 2 lit. c GDPR. A copy of the standard contractual clauses can be requested from us.

You can object to the processing of your personal data collected as part of your use of our company presence at any time and exercise your rights as a data subject, as outlined in the section "Your Rights" in this privacy policy. Please send an informal email to info@korntex.com. You can find further information on how YouTube processes your personal data and the corresponding objection options here:
YouTube: https://policies.google.com/privacy?gl=DE&hl=en

LinkedIn:

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

On our company page, we provide information and offer LinkedIn users the opportunity to communicate with us.

When you perform an action on our LinkedIn company page (e.g., comments, posts, likes, etc.), it is possible that you will publicly disclose personal data (e.g., your real name or profile photo).

Since we typically have little to no control over the processing of your personal data by LinkedIn, we cannot make any binding statements about the purpose and scope of the processing of your data.

We use our company presence on LinkedIn for applications, information/PR, and active sourcing.
For the processing of your personal data by LinkedIn, please refer to the provider's privacy policy:
LinkedIn: https://www.linkedin.com/legal/privacy-policy

If the contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.

We store your activities and personal data posted on our LinkedIn company presence until you withdraw your consent. In addition, we comply with statutory retention periods.

You can object to the processing of your personal data collected as part of your use of our company presence at any time and exercise your rights as a data subject, as outlined in the section "Your Rights" in this privacy policy. Please send an informal email to info@korntex.com. You can find further information on how LinkedIn processes your personal data and the corresponding objection options here:
LinkedIn: https://www.linkedin.com/legal/privacy-policy

Hosting

The website is hosted on servers by a service provider commissioned by us.

Our service provider is:
Mittwald, provided by Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4-6, 32339 Espelkamp, Germany. Further information can be found in the provider’s privacy policy:
https://www.mittwald.de/datenschutz

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when visiting the website. The stored information is:

Information about the browser type and version used
The user's operating system
The user's internet service provider
Date and time of access
Websites from which the user's system accesses our website

No merging of this data with other data sources takes place. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. Our legitimate interest in processing this data lies in ensuring the error-free display of our website and optimizing its functionality.

The location of the server for the website is geographically located in Germany.

Geotargeting

We use your IP address and other information you provide (especially the postal code during registration or ordering) for regional targeting (so-called "geotargeting").

The regional targeting is used, for example, to automatically show you regional offers or advertisements that are often more relevant to users. The legal basis for using the IP address and any other information you provide (especially the postal code) is Art. 6 para. 1 lit. f GDPR, based on our interest in ensuring more accurate targeting and providing offers and advertising with higher relevance for users.

Only part of the IP address and the additional information provided by the user (especially the postal code) is read, not stored separately.

You can prevent geotargeting by using, for example, a VPN or proxy server to prevent exact localization. Additionally, depending on the browser you use, you can disable location settings in the respective browser settings (if supported by the browser).

We use geotargeting on our website for the following purposes:

Customer targeting
Advertising purposes

Registration

1. Description and Scope of Data Processing
On our website, we offer users the option to register by providing personal data. The data is entered into an input form and transmitted to us and stored. No data is passed on to third parties. The following data is collected as part of the registration process:

Email address
Last name
First name
Address

During the registration process, the user’s consent to the processing of this data is obtained.

2. Purpose of Data Processing
User registration is necessary to fulfill a contract with the user or to carry out pre-contractual measures.

3. Legal Basis for Data Processing
If the registration serves to fulfill a contract, of which the user is a party, or to carry out pre-contractual measures, the additional legal basis for processing the data is Art. 6 para. 1 sentence 1 lit. b GDPR.

4. Duration of Storage
The data will be deleted as soon as it is no longer required for the purpose of its collection.

This applies to the data collected during the registration process if it is no longer necessary for the performance of a contract or to carry out pre-contractual measures. Even after the conclusion of the contract, it may be necessary to store personal data of the contractual partner to comply with contractual or legal obligations.

5. Exercising Your Rights
As a user, you have the option at any time to cancel your registration. You can have the stored data relating to you changed at any time.

You can request deletion of the data as follows:

We will store your personal data only for as long as necessary to process and fulfill your order, as well as for legitimate and essential business purposes, such as making data-driven business decisions about new offers, fulfilling our legal obligations, and resolving disputes. We store some of your personal data, such as email addresses and phone numbers, for newsletters and offers related to our product range. If you request it, we will delete or anonymize your personal data, so that it can no longer identify you, unless we are legally permitted or required to retain personal data, such as in the following situations:

If there are unresolved matters regarding your account, such as an outstanding balance on your account or an unresolved claim or dispute, we will retain the necessary personal data until the matter is resolved;
If we are legally or tax-wise required to retain personal data for legal or auditing obligations, we will retain the necessary personal data for the period required by applicable law; and/or,
If necessary for our legitimate business interests, such as preventing fraud or maintaining the security of our users.

If the data is necessary to fulfill a contract or to carry out pre-contractual measures, early deletion of the data is only possible if there are no contractual or legal obligations preventing the deletion.

Integration of Third-Party Services

We engage various service providers to provide the services we offer on the website.

In general, we have a legitimate interest in sharing your data with the relevant service providers when these services are essential for providing the basic service offered on the website.

If such services are necessary for additional services, extended features, or additional purposes, your personal data will only be shared with service providers if you give your consent.

Use of Bing Ads

1. Scope of Personal Data Processing
We use the conversion tracking tool Bing Ads by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter referred to as "Microsoft"). When you arrive at our website via a Bing Ads advertisement, Bing Ads stores a cookie on your computer. This allows personal data to be stored and evaluated, especially user activity (including which pages have been visited and which elements have been clicked), device and browser information (including IP address and operating system), data about the displayed ads (including which ads were shown and whether the user clicked on them), and data from advertising partners (especially pseudonymized user IDs). We only learn the total number of users who clicked on a Bing advertisement and were then redirected to the conversion page.

Further information on how Microsoft processes data can be found here:
https://privacy.microsoft.com/en-us/privacystatement

2. Purpose of Data Processing
Microsoft Bing and we can recognize in this way that someone clicked on an advertisement, was redirected to our website, and reached a previously defined target page (conversion page).

3. Legal Basis for Processing Personal Data
The legal basis for processing the users' personal data is, in principle, the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage
Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights
You have the right to revoke your consent to data protection at any time. Revoking your consent does not affect the legality of the processing that occurred based on your consent before the revocation.

You can prevent Microsoft from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link, you can deactivate the use of your personal data by Microsoft:
https://account.microsoft.com/privacy/ad-settings/

Further information on objection and removal options against Microsoft can be found here:
https://privacy.microsoft.com/en-us/privacystatement

Use of Meta Pixel

1. Scope of Personal Data Processing

We use the Meta Pixel from Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland (hereinafter referred to as "Facebook"). With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows personal data to be stored and evaluated, particularly user activity (including which pages have been visited and which elements have been clicked), device and browser information (including the IP address and operating system), data about the displayed ads (including which ads were shown and whether the user clicked on them), and data from advertising partners (especially pseudonymized user IDs). In this way, we can measure the effectiveness of Facebook ads for statistical and market research purposes.

Data may be transferred to servers of Facebook in the USA.

The collected data is anonymous for us, meaning that we cannot see the personal data of individual users. However, Facebook stores and processes this data. Facebook may link this data with your Facebook account and use it for its own advertising purposes in accordance with Facebook's data usage policy.

Further information on how Facebook processes data can be found here:
https://www.facebook.com/about/privacy/

2. Purpose of Data Processing

The use of Meta Pixel serves to analyze and optimize our advertising measures.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

You have the right to revoke your consent to data protection at any time. Revoking your consent does not affect the legality of the processing that occurred based on your consent before the revocation.

You can prevent Facebook from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

The deactivation of personalized advertising for Facebook users who are logged in is possible here:
https://www.facebook.com/settings/?tab=ads

Further information on objection and removal options against Facebook can be found here:
https://www.facebook.com/about/privacy/

Use of Google AdWords

1. Scope of Personal Data Processing

We use Google AdWords from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the European Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as "Google"). With this service, we display advertisements. Google sets a cookie on your computer. This allows personal data to be stored and evaluated, including user activity (especially which pages have been visited and which elements have been clicked), device and browser information (including the IP address and operating system), data about the displayed ads (including which ads were shown and whether the user clicked on them), and data from advertising partners (especially pseudonymized user IDs).

Further information on how Google processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

We only learn about the total number of users who responded to our advertisement. No information is passed on that could identify you. The usage is not for tracking purposes.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

You can prevent Google from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

With the following link, you can deactivate the use of your personal data by Google:
https://adssettings.google.com

Further information on objection and removal options against Google can be found here:
https://policies.google.com/privacy

Use of Google Ads Remarketing

1. Scope of Personal Data Processing

We use Google Ads Remarketing from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the European Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as "Google"). Google Remarketing is used to retarget visitors to the website for advertising purposes through Google Ads. With the help of Google Ads Remarketing, target groups ("Similar Audiences") can be created, for example, based on which pages were viewed. This allows us to identify users on other websites and display targeted ads. Google sets a cookie on the user's computer. This allows personal data to be stored and evaluated, including user activity (especially which pages have been visited and which elements have been clicked), device and browser information (including the IP address and operating system), data about the displayed ads (including which ads were shown and whether the user clicked on them), and data from advertising partners (especially pseudonymized user IDs).

Further information on how Google processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

The purpose of processing personal data is to target specific audiences. The cookies stored on the user’s device recognize them when they visit a website, allowing interest-based advertisements to be displayed.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

Furthermore, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=en

With the following link, you can deactivate the use of your personal data by Google:
https://adssettings.google.com

Further information on objection and removal options against Google can be found here:
https://policies.google.com/privacy

Use of Google Analytics 4 (GA4)

1. Scope of Personal Data Processing

We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google").

Google Analytics analyzes how users interact with our website. Google places cookies on your device. While visiting the website, the user's behavior is tracked in the form of "events." The following personal data can be collected and analyzed:

First visit to the website
Interaction with the website, usage path
Clicks on external links
Video usage
File downloads
Advertising impressions and clicks
Scroll behavior (if reaching the bottom of the page)
Search queries on the website
Language selection
Page visits
Location (region)
Your IP address (in anonymized form)
Technical information about your browser and the devices you use (e.g., language settings, screen resolution)
Your internet provider
Referrer URL

We use Google Signals, which allows additional information about users who have enabled personalized ads (interests and demographic data) to be collected in Google Analytics. Ads can be delivered in cross-device remarketing campaigns to these users.

By default, IP address anonymization is enabled in GA4. This means that your IP address is truncated by Google within the European Union member states or other countries that are parties to the Agreement on the European Economic Area. Only in rare cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google states that the IP address transmitted by your browser in the context of Google Analytics will not be merged with other Google data.

Further information on how Google processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

We use GA4 to evaluate how our website is used and to generate reports on website activity. These reports help us analyze the performance of our website and target ads at people who have already shown interest by visiting the site.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a) GDPR.

4. Duration of Storage

Your personal data will be deleted after two months. This deletion occurs automatically once a month.

5. Exercising Your Rights

You can prevent Google from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net) or Ghostery (https://www.ghostery.com) in your browser.

Further information on objection and removal options against Google can be found here:
https://policies.google.com/technologies/partner-sites

Additionally, you can prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=en

With the following link, you can deactivate the use of your personal data by Google:
https://adssettings.google.com

Use of Google ReCaptcha

1. Scope of Personal Data Processing

We use Google ReCaptcha, a service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the European Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland. This tool analyzes and authenticates the behavior of a website visitor to ensure that the input is from a legitimate user and not a bot. Personal data can be collected and analyzed, including user activity (especially mouse movements and clicks), and device and browser information (including time, IP address, and operating system).

The data collected by Google ReCaptcha is not associated with any data from other Google services, such as Gmail, unless you are simultaneously logged into a Google service.

Further information on how Google processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

The purpose of using Google ReCaptcha is to protect our website from abusive activity, such as automated bots.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

With the following link, you can deactivate the use of your personal data by Google:
https://adssettings.google.com

Further information on objection and removal options against Google can be found here:
https://policies.google.com/privacy

Use of Instagram Plugin

1. Scope of Personal Data Processing

We use plugins from the Instagram service provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA, and its representative in the European Union, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as "Facebook"). The integrated Instagram buttons are used to provide a link to our Instagram profile. Additionally, a widget is integrated that allows us to display specific photos and videos from our Instagram profile on our website. When you visit a page on our website that contains such a plugin, your browser establishes a direct connection with a server from Facebook. The content of the plugin is transmitted directly to your browser and integrated into the website. In this process, data is automatically transmitted to Instagram and stored on its servers. This data includes connection details (such as your IP address, date and time, and the requested URL), as well as the browser and operating system used.

Your visit to our pages can be tracked by Instagram, even if you do not use the plugin functions. If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This allows Instagram to associate your visit to our pages with your user account. If you want to prevent this direct association, you must log out of Instagram before visiting our website.

Further information can be found in Instagram's privacy policies:
https://help.instagram.com/155833707900388

2. Purpose of Data Processing

The use of the Instagram plugin serves to improve the external representation of our company.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

You can prevent Instagram from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

Further information on objection and removal options against Instagram can be found here:
https://help.instagram.com/155833707900388

Use of LinkedIn

1. Scope of Personal Data Processing

We use features of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as "LinkedIn"). Each time you access one of our pages that contains LinkedIn features, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website using your IP address. If you click on the "Recommend" button on LinkedIn and are logged into your LinkedIn account, LinkedIn can associate your visit to our website with your user account. Personal data can be stored and evaluated, especially user activity (including which pages were visited and which elements were clicked) and device and browser information (including IP address and operating system).

We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or how it is used by LinkedIn. Further information on how LinkedIn processes data can be found here:
https://www.linkedin.com/legal/privacy-policy

2. Purpose of Data Processing

The use of the LinkedIn plugin serves to improve the usability of our website.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

You can prevent LinkedIn from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Furthermore, the transmission can be prevented by logging out of your LinkedIn account before visiting our website.

With the following links, you can deactivate the use of your personal data by LinkedIn:
https://www.linkedin.com/psettings/guest-controls

Further information on objection and removal options against LinkedIn can be found here:
https://www.linkedin.com/legal/privacy-policy

Use of YouTube

1. Scope of Personal Data Processing

We use the YouTube plugin operated by Google LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, and its representative in the European Union, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google"). We use the YouTube plugin to embed YouTube videos on our website. When you visit our website, your browser establishes a connection to YouTube's servers. Personal data can be stored and evaluated, especially user activity (including which pages were visited and which elements were clicked) and device and browser information (including IP address and operating system).

We have no influence over the content of the plugin. If you are logged into your YouTube account while visiting our website, YouTube can associate your visit to our website with your account. By interacting with the plugin, this corresponding information is transmitted directly to YouTube and stored there.

Further information on how Google processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

The use of the YouTube plugin serves to improve the user-friendliness and visual presentation of our website.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

With the following link, you can deactivate the use of your personal data by Google:
https://adssettings.google.com

Further information on objection and removal options against Google can be found here:
https://policies.google.com/privacy

Use of Google Tag Manager

1. Scope of Personal Data Processing

We use the Google Tag Manager (https://www.google.com/intl/en/tagmanager/) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the European Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as "Google"). The Google Tag Manager allows us to manage and bundle tags from Google and third-party services on our website. Tags are small pieces of code on a website that measure visitor activity and behavior, assess the effectiveness of online advertising and social channels, enable remarketing and audience targeting, and test and optimize websites. When a user visits the website, the current tag configuration is sent to the user’s browser. It contains instructions on which tags should be triggered. Google Tag Manager triggers other tags, which may collect data themselves. Information on this can be found in the relevant sections about the use of these services in this privacy policy. Google Tag Manager does not access this data.

Further information about Google Tag Manager can be found here:
https://www.google.com/intl/en/tagmanager/faq.html and in Google's privacy policy:
https://policies.google.com/privacy

Use of Facebook Retargeting

1. Scope of Personal Data Processing

We use the advertising plugin Facebook Retargeting from Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter referred to as "Facebook Retargeting").

Facebook Retargeting is used for conducting advertising campaigns and tracking user interactions with them. Users are reminded of products they have searched for or viewed but not purchased. Cookies from Facebook are stored on your device as part of this process.

The following personal data is processed by Facebook:

Information about user activities
The websites visited
Products that were displayed
Ads that were clicked on
Device information, particularly device type and IP address
Facebook account details, if users are logged into Facebook

Data may be processed on Facebook Inc.'s servers in the USA (Facebook Inc., 1601 Willow Road, Menlo Park, California 94025, USA). Other recipients of the data include Facebook’s service providers, for example, for analysis purposes.

Further information on how Facebook processes data can be found here:
https://www.facebook.com/about/privacy/explanation

2. Purpose of Data Processing

The purpose of using Facebook Retargeting is to display advertisements across various platforms and analyze user interactions with these ads. This helps ensure that users are shown personalized and relevant advertisements.

3. Legal Basis for Processing Personal Data

The legal basis for processing the users' personal data is the consent of the user under Art. 6 para. 1 sentence 1 lit. a GDPR.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

You can deactivate personalized ads for Facebook users who are logged in here:
https://www.facebook.com/settings/?tab=ads

Further information on objection and removal options against Facebook can be found here:
https://www.facebook.com/about/privacy/explanation

Use of Google My Business

1. Scope of Personal Data Processing

We use the marketing platform Google My Business provided by Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as "Google").

We use Google My Business for customer acquisition through optimized company profiles, including the possibility of statistical analysis and user contact. Cookies from Google are stored on your device as part of this process.

The following personal data is processed through Google My Business:

Contact data/company information
Address details
Email addresses
Phone numbers
Business hours
Location data
Credit card details
Reviews
IP addresses

Data may be transmitted to Google's servers in the USA. Further information on how Google My Business processes data can be found here:
https://policies.google.com/privacy

2. Purpose of Data Processing

The purpose of using Google My Business is to employ statistical methods and improve user behavior analysis.

3. Legal Basis for Processing Personal Data

The legal basis for the data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is derived from the purposes of data processing mentioned in section 2.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes.

5. Exercising Your Rights

Use of HERE Geocoding and Search API

1. Scope of Personal Data Processing

We use the HERE Geocoding and Search API from HERE Global B.V., Kennedyplein 222-226, 5611 Eindhoven, Netherlands (hereinafter referred to as "HERE").

This service is used to locate the geographic coordinates of a known address, place, locality, or administrative area, even if the query is incomplete or contains errors. The result is a complete string of the postal address and address details.

Cookies from HERE are stored on your device as part of this process. The following personal data is processed through HERE:

Registration data
Contact information
Location data and place information
Search terms
Information on how the service is used

Further information on how HERE processes data can be found here:
https://legal.here.com/de-de/privacy/policy

2. Purpose of Data Processing

The purpose of using the Geocoding and Search API is to obtain geographic coordinates for addresses, places, administrative areas, locations, and landmarks.

3. Legal Basis for Processing Personal Data

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is derived from the purposes of data processing mentioned in section 2.

4. Duration of Storage

Your personal information will be stored as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g., for tax and accounting purposes. Cookies expire at the end of each session.

Data such as records of your activities within the application are generally only retained for a short time before being anonymized or pseudonymized.

5. Exercising Your Rights

You can prevent HERE from collecting and processing your personal data by blocking third-party cookies on your computer, using the "Do Not Track" feature of a supporting browser, disabling the execution of script code in your browser, or installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.

Further information on objection and removal options against HERE can be found here:
https://legal.here.com/de-de/privacy/policy

This privacy policy was created with the support of DataGuard.

Besuche Korntex.ch

Besök Korntex.se

Privacy Policy | Korntex GmbH

What do we mean by legal basis?

Data Sharing and International Transfers

Your Rights

Right to Rectification (Art. 16 GDPR)

Right to Restriction of Processing (Art. 18 GDPR)

Right to Data Portability (Art. 20 GDPR)

Right to Object to Certain Data Processing (Art. 21 GDPR)

Provision of the Website and Creation of Log Files

1. Description and Scope of Data Processing

2. Purpose of Data Processing

3. Legal Basis for Data Processing

4. Duration of Storage

5. Exercising Your Rights

Use of Cookies