Privacy Policy

Privacy Policy https://www.suesse-werbung.de/


1.    Privacy Notice
This Privacy Policy informs you of the extent to which we process your personal data (hereinafter referred to as “data”).
2.    Responsible for data processing
In accordance with the provisions of the General Data Protection Regulation (GDPR), the controller responsible for data processing is:
Kalfany Süße Werbung GmbH & Co. KG


Industriegebiet West
Holzmattenstraße 22
D-79336 Herbolzheim
Tel. +49 (0) 7643 / 801-0
Fax +49 (0) 7643 / 801-20
info@ksw24.com


3.    Contact information for our data protection officer
Matthias Rosa
Am Winterhafen 78
D-55131 Mainz
Tel. + 49 (0) 6131/1445615
datenschutz@ksw24.com


4.    Data processing
We process data as part of operating our website. This also includes disclosure by transmission to third parties and, where applicable, to so-called third countries outside the European Union (“EU”) and the European Economic Area.
An adequacy decision by the EU Commission, the EU-US Privacy Shield, is in place for the transmission of data to the United States. In this decision, the Commission certified that the guarantees for the transfer of data to the United States on the basis of the EU-US Privacy Shield comply with data protection standards in the EU. In the event that we transmit data to the United States, we have noted the participation of our service providers in the EU-US Privacy Shield.
Details regarding the data concerned, processing purposes, legal bases, recipients and transfers to third countries are listed below:
a)    Log files when visiting our website
We log your visit to our website. The following data is processed in this context: Name of the website accessed, date and time of access, the amount of data transferred, the browser type and version, the operating system you are using, the referrer URL (the previously visited website), your IP address and the requesting provider. This is necessary to ensure the security of the website. Accordingly, this data is processed on the basis of our legitimate interest in ensuring the security of our website in accordance with Art. 6(1)(f) GDPR. The log file is deleted after seven days unless it is required for clarification or verification of specific violations of the law of which we have become aware within the retention period.
b)    Hosting
All data to be processed in connection with the operation of the website is stored within the context of hosting. We process such data on the basis of our legitimate interest in enabling the operation of this website in accordance with Art. 6(1)(f) GDPR. We use the services of web hosting providers to whom we transmit the data referred to above in order to make our website available.
c)    Contacting us
If you contact us, we process your data (name and contact details – if you have provided them) and your communication exclusively for the purpose of responding to your enquiry. Data is processed on the basis of Art. 6(1)(b) GDPR for the performance of a contract and/or for satisfaction of our pre-contractual obligations or on the basis of our legitimate interests in responding to your enquiry in accordance with Art. 6(1)(f) GDPR.
d)    Contacting us to apply for a job
If you contact us to send us your application for employment, e.g. by e-mail or via a contact form, your data (e.g. name, e-mail address, desired location if specified by you), your message and the application documents you submit will be processed exclusively for the purpose of processing and handling your application for employment. The legal basis for data processing is primarily section 26 BDSG. This provision permits data to be processed that is required in connection with a decision to establish an employment relationship.
Should this data be necessary for the pursuit of legal rights after completion of the application process, data processing may be carried out in the pursuit of legitimate interests pursuant to Art. 6(1)(f) GDPR, namely for purposes of asserting and/or defending against legal claims.
e)    Newsletter
To receive regular information about our company and our offers, you have the option to sign up for our e-mail newsletter. Upon your registration for the newsletter, we process the data you have provided (e-mail address and any other information provided voluntarily). A double opt-in procedure is used to subscribe to the newsletter. To prevent abuse of your data, we will send you an e-mail after your registration asking you to confirm your registration. To verify the subscription process according to the legal requirements, your subscription will be logged. The data stored here includes the date and time of your subscription and confirmation as well as your IP address.
Sending a confirmation e-mail for your registration, and the associated storage of data, are performed on the basis of our legitimate interest in verifying your proper registration under Art. 6(1)(f) GDPR and the newsletter is sent on the basis of your consent pursuant to Article 6(1)(a) GDPR.
Provided you have given your consent, we use tracking pixels to analyse your user behaviour as part of sending the newsletter when opening e-mails or clicking on links. We use the information generated in this way exclusively to make information and offers available to you via the newsletter that correspond to your interests. The legal basis for this processing is your prior consent pursuant to Art. 6(1)(a) GDPR.
We use service providers to whom we submit the above data in order to send the newsletter. The associated data is processed exclusively within Germany. Our newsletter service provider is CleverReach GmbH & Co. KG (“Cleverreach”), Mühlenstr. 43, D-26180 Rastede, who sends out the newsletter on our behalf. Information on Cleverreach’s data protection practices may be found at: https://www.cleverreach.com/de/datenschutz/.
f)    Customer account/Dealer log-in
If you open a customer account, you agree that your master data (name, address, e-mail address, bank details if applicable) as well as your usage data (user name, password) will be stored. This allows us to identify you as a customer and allows you to manage your orders and commissions. Data is processed in this context on the basis of your consent in accordance with Art. 6(1)(a) GDPR.
g)    Contract performance
We process your order data within the scope of performing existing contracts between you and us. This data is processed accordingly on the basis of Art. 6(1)(b) GDPR.
We transmit your address data to the company hired to carry out the delivery. Where necessary to execute the contract, we also provide your e-mail address or telephone number to coordinate a delivery date (notification of dispatch) to the company hired to carry out the delivery.
We transmit your transaction data (name, date of order, payment method, date of dispatch and/or receipt, amount and payment recipient, bank details or credit card details) to the payment service provider responsible for processing the payment.

5.    Integration of third-party content
We use third-party dynamic content (“content”) to optimise the display and offerings on our website. When visiting our website, an application programming interface (“API”) automatically submits a request to the server of the respective content provider as part of which certain log data (e.g. the user’s IP address) is transmitted. The dynamic content is then transmitted to our website and displayed there.
We use third-party content in connection with the following functionalities:
a)    Integration of YouTube videos
We have included videos from the YouTube portal on our website. YouTube is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). When playing the videos, log data is transferred to servers operated in the United States by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Processing in this manner is performed on the basis of our overriding legitimate interest in the optimum marketing of our website in accordance with Art. 6(1)(f) GDPR.
Google LLC is certified under: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Further information is available at: https://policies.google.com/privacy?hl=de&gl=de
b)    Google Maps
We use Google’s Google Maps service on our website in order to provide you interactive maps. When the map is displayed, data, including your IP address and your location, is transferred to Google’s server in the USA and stored there. Processing in this manner is performed on the basis of our overriding legitimate interest in the optimum marketing of our website in accordance with Art. 6(1)(f) GDPR.
Google is certified under:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Further information on data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de
c)    Google Web Fonts
We use external fonts provided by Google Fonts in order to make our website more attractive. When you visit our website, they are loaded from servers operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
Google does not save any cookies to your browser as part of this process. However, as we understand it, the IP address of a user’s device is sent to Google and stored. Processing in this manner is performed on the basis of our overriding legitimate interest in the optimum marketing of our website in accordance with Art. 6(1)(f) GDPR.
Google is certified under: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Further information on data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de
d)    ReCAPTCHA
We use the external service reCAPTCHA in order to protect input forms on our website and registration for our newsletter from spam and unauthorised use. This service is provided by Google LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (hereinafter referred to as “Google”). reCAPTCHA makes it possible to distinguish between human input and unauthorised input from automated software (also referred to as “bots”). The following data is transferred to Google’s servers in the USA when using this service:

  • Referrer URL
  • The user’s IP address
  • The user’s input behaviour and mouse movements within the area of the “reCAPTCHA” check-boxes
  • Google Account: If the user is logged in to their Google account when visiting our website, this will be recognised and associated with your profile.
  • Information on the browser you are using, browser size, browser resolution, browser plugins, language settings, date
  • Mouse and touch events within the page
  • Scripts and display instructions on the website
  • Cookies


This processing is performed on the basis of our overriding legitimate interest in the security of our website in accordance with Art. 6(1)(f) GDPR.

Google is certified under:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

Further information on data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de
e)    Seal of Approval
The Trusted Shops Trust Badge is integrated into this website in order to display our Trusted Shops Seal of Approval and Trusted Shops’ products for buyers after they place an order. The Trust Badge and the services advertised with it are offered by Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, Germany. Upon accessing the Trust Badge, your IP address, the date and time of the request, the amount of data transferred and the requesting provider (access data) are transmitted to the Trusted Shops servers. This access data is not evaluated and is automatically overwritten at the latest seven days following the end of your visit to the relevant page. This data is transferred on the basis of our legitimate interest in the optimum marketing of our website in accordance with Art. 6(1)(f) GDPR.
Additional personal data will only be transferred to Trusted Shops if you decide to use Trusted Shops products after completing an order or if you have already registered to use such products. The contractual agreement between you and Trusted Shops applies in such cases.
We use certain cookies that store your IP address to analyse user behaviour on our websites, to optimise our website as well as to personalise content and advertisements.
f)    Userlike integration
Our website uses a live chat function provided by Userlike UG (haftungsbeschränkt), Probsteigasse 44–46, 50670 Cologne, Germany. You can use the live chat like a contact form to chat with our employees in near real time. Personal data is collected at the start of the chat.
•    Date and time of access;
•    Browser type/version;
•    IP address;
•    Operating system in use;
•    URL of the previously visited website;
•    Amount of data sent;
•    First name, Last name;
•    E-mail address
Depending on the course of the conversation, additional personal data that you have entered may be collected during the chat. The nature of this data depends heavily on your enquiry or the problem you are describing.
When you access this website, the chat widget is loaded by AWS Cloudfront in the form of a JavaScript file. From a practical standpoint, the chat widget represents the source code that is executed on your computer and allows the chat function to operate.
In addition, Userlike stores transcripts of live chats. The purpose of this is to save you from potentially having to go through a long history of your enquiry and to constantly monitor the quality of our live chat service. If you do not wish chats to be retained for this purpose, please inform us using the contact details set out above. We will then delete any live chats we have stored without undue delay.
Data is processed on the basis of Art. 6(1)(b) GDPR for the performance of a contract and/or for satisfaction of our pre-contractual obligations or on the basis of our legitimate interests in responding to your enquiry in accordance with Art. 6(1)(f) GDPR.
g)    Cloudflare
We use the Cloudflare service on our website provided by Cloudflare Inc., 101 Townsend Street San Francisco, CA 94107, USA (“Cloudflare”). Cloudflare processes your log data (name of the website accessed, date and time of access, the amount of data transferred, the browser type and version, the operating system you are using, the referrer URL (the previously visited website), your IP address and the requesting provider). This data is processed in accordance with Art. 6(1)(f) GDPR on the basis of our overriding interest in the optimum marketing of our website. Data is transferred to Cloudflare servers in the USA.
Cloudflare is certified under: https://www.privacyshield.gov/participant?id=a2zt0000000GnZKAA0&status=Active
Further information on data protection can be found at:
https://www.cloudflare.com/security-policy/


6.    Data retention
We only retain personal data for as long as it is necessary for the purposes for which it is processed or until you withdraw your consent. The retention period for certain data can be up to 10 years irrespective of the processing purposes in the event we must comply with statutory retention obligations.


7.    Your rights as a data subject
a)    Information
Upon request, you may receive information about all personal data that we have stored about you at any time and free of charge.
b)    Rectification, erasure, restriction of processing (blocking), objection
Should you no longer agree to the retention of your personal data or should such data have since become incorrect, we will arrange for the erasure or blocking of your data or make the necessary corrections (insofar as this is possible under applicable law) upon instruction from you. The same applies if you would like us to restrict the processing of your data in future. Without limitation, you have the right to object in cases where your data is necessary for the performance of a task carried out in the public interest, or in pursuit of our legitimate interests or in cases based on profiling. You likewise have a right to object in the case of data processing for purposes of direct marketing.
c)    Data portability
Upon request, we will provide you with your data in a structured, commonly used and machine-readable format so that you can, if you wish, transmit your data to another controller.
d)    Right to withdraw consent with future effect
You can withdraw your consent at any time with future effect. Withdrawal of your consent shall not affect the lawfulness of processing based on consent before its withdrawal.
e)    Right to lodge a complaint
You also have the option of lodging a complaint related to your rights as a data subject with a supervisory authority:
(https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html).
f)    Limitations
The rights described above do not apply to data for which we are not able to identify the data subject, e.g. if anonymised for analysis purposes. It may be possible to exercise your right of access and right to erasure, blocking, rectification or portability with regard to this data if you provide us with additional information that enables us to make the required identification.


8.    Exercising your rights as a data subject
For questions regarding the processing of your personal data, requests for information, rectification, blocking, objection or erasure of data, or requests to transfer your data to another company, please contact datenschutz@ksw24.com.

9.    Cookies, website analysis and marketing
We use cookies in order to enable the use of certain functions. These are short data packets that are stored on your end device and exchanged with other providers. Some of the cookies we use are deleted immediately after you close your browser (so-called session cookies). Other cookies remain on your device and make it possible to recognise your browser on your next visit (persistent cookies). Data processing based on cookies that are used solely to create the functionality of our website, is based on our legitimate interests pursuant to Art. 6(1(f) GDPR.
You can delete all cookies stored on your device and configure most common browsers in such a way to prevent cookies from being saved.
In that case, you may need to re-configure some settings every time you visit this website and accept that this may impact some features.
We use additional services in connection with the following functionalities:
a)    Google services
We use a variety of services on our website provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). When using these services, it is possible that Google will transmit data to the USA. In such cases, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, which performs the data processing concerned in the USA, has agreed to be bound by the EU-US Privacy Shield:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Further information on data protection can be found at: https://policies.google.com/privacy?hl=de&gl=de
aa. Google Analytics
We use the Google tracking tool “Google Analytics” on our website. Using this tool, interactions between website visitors are collected and analysed primarily with the aid of cookies. The following data is stored when you visit our website:
•    3 bytes of the IP address of the system accessed by the visitor (anonymised IP address)
•    The web page viewed
•    The website from which the user reached the page accessed on our website (referrer)
•    The sub-pages accessed via the website
•    Length of stay on the website
•    Frequency of visiting the website
This data is generally transmitted to a Google server in the United States and stored there. We use Google Analytics with the extension “anonymizeIp()”. This shortens IP addresses before they are sent to a server in the USA (e.g.192.158.79.***). As a rule, this precludes personal identification. In particular, it is not possible to identify the computer/device used by the website visitor to access the website. Only in exceptional cases is the full IP address transmitted to a server in the USA and shortened there.
We use Google Analytics in order to evaluate your use of the website, to compile reports on website activities for website operators and to provide other services associated with website use and to improve user friendliness.
This data is processed in accordance with Art. 6(1)(f) GDPR on the basis of our overriding interest in the optimum marketing of our website. Google will not associate your IP address with any other data held by Google.
You may revoke your consent to your data being collected at any time with future effect by using the Google Analytics Opt-out Browser Add-on found at: https://www.google.com/intl/de/policies/privacy/partners/
In addition, please refer to statements concerning Google’s use of data within the Google Partner Network at: https://www.google.com/intl/de/policies/privacy/partners/.
bb. Google Remarketing/Retargeting
We use “tracking cookies” from Google on our website. When you visit our site, permanent cookies are used to store information about which products you have viewed on our site and which third-party advertisements and pages have redirected you to our website. During a subsequent visit to a partner website, we can display personalised advertising for you on the basis of products you viewed on our site.
The data received in this manner is processed in accordance with Art. 6(1)(f) GDPR on the basis of our overriding interest in the optimum marketing of our website. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States.
b)    Facebook Remarketing/Retargeting: Facebook Custom Audiences (Pixel/Cookies)
We use a “tracking pixel” on our website provided by Facebook Inc., 1601 Willow Road Menlo Park, CA 94025, USA. This stores a cookie on your end device when you visit certain pages. These cookies are stored permanently on your PC. These cookies store information about which third-party advertisements and websites direct you to our website. This process serves to optimise our advertising by evaluating the statistical data we receive with the aid of these cookies. We process the data we receive in this manner in accordance with Art. 6(1)(f) GDPR on the basis of our overriding interest in the optimum marketing of our website.
These cookies do not facilitate your personal identification. The data is anonymous and does not permit us to personally identify any users. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to, and stored by, Facebook on servers in the United States.
Facebook is certified under:
https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
Further information on data protection can be found at:
https://www.facebook.com/help/568137493302217
You may object to data collection at any time with future effect by clicking the following link: An opt-out cookie is then set that prevents data collection. Please note that you must set the cookie again if you delete the cookies in your browser. Please insert link here to set an opt-out cookie
c)    Microsoft Advertising and Microsoft Advertising Remarketing (Bing Ads)

We use the “Microsoft Advertising” analysis and remarketing service provided by Microsoft Ireland Operations Limited (One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521) (“Microsoft”).
We have activated the UEN tag (Universal Event Tracking) as part of this service. Cookies, i.e. small text files, are placed on your device that collect data which can later be read by a web server of the domain placing the cookie. If you are then directed to our website via a “Microsoft Advertising” ad, it is possible to see that the ad was clicked and that this resulted in a redirect to our website. In such cases, you may be shown targeted production recommendations and interest-based advertising on Microsoft websites and those of other “Microsoft Advertising” customers. The information collected with the help of cookies is also used to generate conversion statistics. The cookie does not store any other information with which users can be personally identified.
Processing in this manner is performed on the basis of our legitimate interest in the optimum marketing of our website in accordance with Art. 6(1)(f) GDPR.
For more information about Microsoft’s privacy practices and the cookies that Microsoft uses, please see Microsoft’s Privacy Statement: https://privacy.microsoft.com/de-de/privacystatement.
 
An opt-out cookie is then set that prevents data processing. Please note that you must set the cookie again if you delete the cookies in your browser.
You may also opt out of receiving interest-based advertising from Microsoft by using Microsoft’s opt-out page: www.choice.microsoft.com/de-DE/opt-out.
The data may be transmitted to Microsoft’s servers in the USA. Microsoft participates in the EU-US Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000KzNaAAK.