Data protection

We appreciate your interest in our website and our online shop. The protection of your privacy is very important to us. Below we inform you in detail about the handling of the processing of personal data in accordance with Article 13 of the General Data Protection Regulation (GDPR). If you have any questions or comments about this Privacy Notice, you may address it to our Privacy Officer at any time Datenschutz@goeller-verlag.de or you may contact the Data Controller

Göller Verlag GmbH

Aschmattstr. 8

76532 Baden-Baden

                phone: +49 7221 502 0

                fax:        +49 7221 502 222

                email:   info@goeller-verlag.de

Our Data Protection Officer is:

Guenter Stallecker, attorney at law, Aschmattstr.8, 76532 Baden-Baden, Germany .

The processing of your personal data is divided into two categories:

  1. For the purpose of contract execution and advertising purposes, such as the sending of newsletters or advertising mailings, we process all necessary data. External service providers involved in the execution of the contract, such as Logistics companies or payment service providers will receive your data to the extent required.
  1. By accessing our website, various information is automatically exchanged between your device and our server, which may also be personal data. The information collected in this way will i.a. used by us to optimize our website or to display advertising in the browser of your device.

In this section you will learn more about the purposes for which the personal data are processed, the legal basis for the processing, the legitimate interests pursued by us or a third party, and the categories of recipients

 

Data collection and use for contract processing and opening a customer account

We process personal data for the purpose of contract execution and opening a customer account, if you voluntarily inform us of this as part of your order, when contacting us (for example by contact form or e-mail) or when opening a customer account. Which data are collected, can be seen from the respective input forms.

Essentially, these are the following data:

  • First name, last Name
  • Billing and delivery address
  • E-mail address
  • Billing and payment data
  • Date of birth, if applicable
  • if necessary telephone number

The legal basis for the processing of personal data for the purposes of contract execution is Article 6 (1) (b) GDPR. If you sign up for our newsletter with your e-mail address, we will send you a confirmation e-mail based on Article 6 (1) (c) GDPR. On the basis of Article 6 (1) (f), we reserve the right to send you a newsletter for similar product offers once you have made a purchase, if you have not objected. Insofar as we do not use your contact data for advertising purposes, we may save the data collected for the execution of the contract until expiry of the statutory or potential contractual warranty and guarantee rights. After expiry of this period, we retain the information required by commercial and tax law of the contractual relationship for the statutory periods. For this period (usually ten years from the conclusion of the contract), the data will be reprocessed in the event of a review by the tax authorities.

The investment of the customer account is voluntary and takes place on the basis of your consent within the meaning of Article 6 paragraph 1 letter a GDPR. You can view and change the data stored in your customer account at any time.

To process the purchase contract, the following additional data processing is required:

Data transfer for contract fulfillment, identity and credit assessment

For the fulfillment of the contract, we will forward your e-mail address and, if applicable, your telephone number to the logistics company commissioned by us, insofar as this is necessary for the delivery of ordered goods and you have given us your consent during or after the ordering process for the purpose of the delivery agreement or the announcement of the delivery itself may contact you.

The given consent can be revoked at any time against us or the logistics company. A revocation intended to us, can be send to the contact information specified in the imprint by email or by post. If you want to address the cancellation to our logistics company, please contact us to the address.

In order to process payments, we will pass on the necessary payment data to the credit institution commissioned with the payment and any payment service providers commissioned by us or to the payment service selected by you in the ordering process.

We use payment service providers based in a state outside the European Union. The transfer of personal data to this company takes place only in the context of the need to fulfill the contract.

If necessary, we verify your identity on the legal basis of Article 6 (1) (b) and (f) GDPR, using information from service providers. The authorization for this results from the protection of your identity and the avoidance of attempted fraud at our expense. The circumstance and the result of our inquiry will be added to your customer account or guest account for the duration of the contractual relationship.

Credit check and scoring

If we are in advance, e.g. in the case of purchase on invoice, we reserve the right to obtain an identity and credit information from specialized service companies (credit reference agencies) to safeguard our legitimate interests. For this purpose, we will transfer your personal data required for a credit check to the following companies:

Euler Hermes GmbH
Friedensallee 254
22763 Hamburg

The credit information can contain probability values (score values) which are calculated on the basis of scientifically recognized mathematical-statistical methods and whose calculation includes, among other things, address data. We use the information obtained on the statistical probability of a default for a balanced decision on the establishment, implementation or termination of the contractual relationship. Your interests worthy of protection are taken into account in accordance with the legal provisions.

The legal bases of these transfers are Article 6 (1) (b) and Article 6 (1) (f) of the GDPR. Transfers on the basis of these provisions may only be made to the extent necessary to safeguard the legitimate interests of our company or third parties, and not to outweigh the interests of the data subject's fundamental rights and freedoms, which require the protection of personal data.

You have the opportunity to present your point of view to the aforementioned company and to challenge the decision.

Data processing for advertising purposes

On the basis of Article 6 (1) (f) of the GDPR, data controllers have a legitimate interest in the processing of data for purposes of weaving. For the use of a personalized customer approach, we reserve on this legal basis, the use of first name, last name, date of birth, street, postcode and the place, the duration of storage of personal data for advertising purposes is based on the principle of whether the storage for advertising address is required. We follow the policy of deleting data no later than two years after no commercial use has been made.

Own advertising purposes and advertising purposes of third parties

Insofar as you have concluded a contract with us or have sent us an advertising medium, we will guide you as an existing customer or prospective customer. In these cases, we process your name and address in order to provide you with information about new products and services. We reserve the right, in the context of our legitimate interests, to submit your postal contact details to selected contract partners from the areas of mail order, telecommunications and suppliers of similar products whom we are particularly careful to provide you with information about their products.

Interesting advertising

In order for you to receive only those promotional information that is of perceived interest to you, we categorize and supplement your customer profile with further information. It uses statistical information as well as information about yourself (eg basic data of your customer profile). The aim is to provide you with advertisements oriented solely to your actual or perceived needs and not to bother you with uninteresting advertising.

 

Processing of advertising mail

The advertising mailings are provided as part of a processing on our behalf by a service provider, to which we pass on your data.

Right to object

Against the data processing for the aforementioned purposes, you can at any time, and free of charge, appeal for the communication channel separately and with effect for the future. All you need to do is send an e-mail or a letter to the contact details listed under 2.

 

Insofar as you object, the affected contact address for further advertising data processing will be blocked. We point out that in exceptional cases, even after receipt of your objection, there may be a temporary shipment of advertising material. This is technically due to the necessary lead time of advertisements and does not mean that we do not implement your objection.

 

Data usage when registering for the e-mail newsletter

If you sign up for our newsletter using the Double-Opt-In procedure, we will use the information required or separately provided by you to send you our regular e-mail newsletter. For the Double-Opt-In procedure, we will send you a confirmation link after you have entered your email address in the registration field. By clicking on the confirmation link your e-mail address will be added to our e-mail distribution list. Your e-mail address will then be processed on the basis of your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time with effect for the future. Unsubscribing from the newsletter is possible at any time and can be done either by a message to the contact option described in the imprint or via a dedicated link at the end of each newsletter.

Data usage for e-mail advertising without newsletter registration and your right of objection

If we receive your e-mail address in connection with the sale of a good or service and you have not objected to the use of your e-mail address, we reserve the right to regularly offer you similar products, such as already purchased, from our assortment by e-mail. Your e-mail address will then be processed in accordance with Article 6 (1) (f) GDPR. You can object to this use of your e-mail address at any time by sending a message to the contact options described in the imprint or via a dedicated link at the end of the newsletter.

Processing the newsletter

The newsletter is sent as part of a processing on our behalf by a service provider, to which we pass on your e-mail address.

Internet technologies

 

Use of cookies

In order to make the visit to our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. If personal data are processed with these cookies, they will be used on the basis of Article 6 (1) (f) GDPR. Our interest in optimizing our website is considered to be justified in the sense of the aforementioned legal basis. The cookies are small text files that are stored on your device. Some of the cookies we use are deleted after the end of the browser session, ie after closing your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser on your next visit (persistent cookies). You can set your browser so that you are informed about the setting of cookies and individually decide on their acceptance or exclude the acceptance of cookies for specific cases or in general. Failure to accept cookies may limit the functionality of our website.

After your opposition, an opt-out cookie will be stored on your device. If you delete your cookies, you must click the link again.

Google Analytics

For the purpose of the needs-oriented design and continuous optimization of our pages, we use Google Analytics, a web analysis service of Google Inc. ("Google"), based on Article 6 (1) (f) GDPR. In this context, pseudonymised usage profiles are created and cookies are used. The information generated by the cookie about your use of this website such as

  • browser type / version,
  • used operating system,
  • referrer URL (the previously visited page),
  • host name of the accessing computer (IP address),
  • time of server request,

are transmitted to a Google server in the US and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage for the purposes of market research and tailor-made website design. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of third parties. Under no circumstances will your IP address be merged with any other data provided by Google. The IP addresses are anonymized, so that an assignment is not possible (so-called IP masking).

You can prevent the installation of cookies by setting the browser software accordingly; however, we point out that in this case not all features of this website may be fully exploited. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing this browser add-on. As an alternative to the browser add-on, especially for browsers on mobile devices, you can prevent the collection by Google Analytics by clicking on this link. An opt-out cookie will be set which prevents the future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again. For more information about privacy in connection with Google Analytics, visit the website of Google Analytics.

 

Social media plug-ins

We use social plug-ins from the social networks Facebook, Google+, Xing, Youtube and Twitter on our website based on Article 6 (1) (f) of the GDPR to make our company better known. The underlying commercial purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for the operation compliant with data protection is to be guaranteed by their respective providers. The integration of these plug-ins by us is done by means of the so-called two-click method to protect visitors to our website in the best possible way.

Facebook

On our website so-called plug-ins of the social network Facebook are used, which is offered by the Facebook Inc. The Facebook plug-ins are marked with a Facebook logo or the addition "Like" or "Share". An overview of the Facebook plug-ins and their appearance can be found at the following link. If you activate such a plug-in (first click), your browser connects directly to the Facebook servers. The content of the plug-in is transmitted by Facebook directly to your browser and integrated into the page. Through this integration, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook profile or are currently not logged in to Facebook. This information (including your IP address) will be transmitted from your browser directly to a Facebook server in the US and stored there. If you are logged in to Facebook, Facebook can immediately assign the visit to our website to your Facebook profile. If you interact with the plug-ins, for example by clicking the "Like" button, this information will also be transmitted directly to a Facebook server and stored there. The information will also be posted on your Facebook profile and displayed to your Facebook friends.

The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your related rights and settings options for the protection of your privacy, can be found in the privacy policy of Facebook. If you do not want Facebook to immediately associate the information collected about your visit to our website with your Facebook profile, you must log out of Facebook before visiting our website.

Twitter

Our website also includes plug-ins from the short message network Twitter Inc. The Twitter plug-ins ("Tweet" button) can be recognized by the Twitter logo (a white bird on a blue background) and the addition "Tweet". When you visit a page of our website that contains such a plug-in, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter button while logged in to your Twitter account, you can link the contents of our pages to your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We point out that we as the provider of the pages are not aware of the content of the transmitted data and their use by Twitter. More information can be found here. If you do not want Twitter to associate your visit to our pages, please log out of your Twitter account.

Youtube video plugins

On this website content from third party providers are included. This content is provided by Google Inc ("Provider").

Youtube is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").

For videos from Youtube that are included on our site, the advanced privacy setting is enabled. This means that no information is collected and stored on Youtube by website visitors, unless they are playing the video.

For the purpose and scope of the data collection and the further processing and use of the data by the provider as well as your rights in this regard and setting options for the protection of your privacy, please refer to

Google Privacy Policy

http://www.google.com/intl/en/+/policy/+1button.html.

Receiver outside the EU

We do not disclose your information to recipients located outside the European Union or the European Economic Area, except for those described under the rubric Internet Technologies and Social Media Plug-In. The aforementioned processing results in a data transfer to the servers of the providers of tracking or targeting technologies commissioned by us. These servers are located in the USA. The data transmission takes place in accordance with the principles of the so-called Privacy Shield as well as on the basis of so-called standard contractual clauses of the European Commission.

Your rights

In addition to the right of revocation of your consent granted to us, you are entitled to the following further rights if the relevant legal requirements apply:

  • Right to information about your personal data stored with us in accordance with art. 15 GDPR; in particular, you may obtain information about the purposes of processing, the category of personal data, the categories of recipients to whom your data was or are being disclosed, the planned retention period, the source of their data, if not collected directly from you,
  • Right to correct incorrect or to completion correct data according to art. 16 GDPR,
  • Right to delete your stored data in accordance with art. 17 GDPR insofar as no statutory or contractual retention periods or other statutory obligations or rights for further storage are to be observed,
  • Right to restriction of the processing of your data acc. art. 18 GDPR, as far as the accuracy of the data is disputed by you, the processing is unlawful, but you reject its deletion; the person in charge no longer needs the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing according to art. 21 GDPR,
  • Right to data portability acc. art. 20 GDPR, this means the right to transfer selected data stored about us in a common, machine-readable format, or to request transmission to another person in charge
  • Right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.

Right to object

Under the conditions of article 21 (1) GDPR data processing can be objected to for reasons that arise from the particular situation of the person concerned.

The above general right of objection applies to all processing purposes described in this privacy statement, which are processed on the basis of article 6 (1) (f) GDPR. Unlike the special right of objection to data processing for advertising purposes, according to the GDPR we are only obliged to implement such a general objection if you give us reasons of overriding importance (for example, a possible danger to life or health). In addition, there is the possibility to contact the supervisory authority responsible for us or our data protection officer.

 

Data security

All personally transmitted data, including your payment data, will be transmitted using the common and secure SSL (Secure Socket Layer) standard. SSL is a secure and proven standard, e.g. is also used in online banking. You will see a secure SSL connection, including the attached s at the http (ie https: // ...) in the address bar of your browser or the lock icon at the bottom of your browser.

Incidentally, we use appropriate technical and organizational security measures to protect your personal data stored by us against manipulation, partial or complete loss and against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.