1. Responsible party
The party responsible for the collection, processing and use of your personal data within the meaning of the DSGVO is
VBW Weigt GmbH
Mr Ralph-Ingo Weigt
Am Mühlenberg 3
Tel.: +49 (0) 382 07 / 97 95 21
If you wish to object to the collection, processing or use of your data by us in accordance with these data protection provisions, either as a whole or for individual measures, you can send your objection to the above-mentioned responsible office. You can save and print out this data protection declaration at any time.
2. General use of the website
2.1 Access data
We collect information about you when you use this website. We automatically collect information about your usage behavior and your interaction with us and register data about your computer or mobile device. We collect, store and use data about every access to our online offer (so-called server log files). The access data includes the name and URL of the accessed file, the date and time of access, the amount of data transferred, a message about successful access (HTTP response code), the browser type and version, the operating system, the referrer URL (i.e. the previously visited site), the IP address and the requesting provider. We use this protocol data without allocation to your person or other profiling for statistical evaluations for the purpose of the operation, security and optimization of our online offer, but also for anonymous recording of the number of visitors to our website (traffic) as well as the extent and type of use of our website and services. Based on this information, we can analyze the data traffic, search for and correct errors and improve our services. We reserve the right to subsequently check the log data if, based on concrete evidence, there is a justified suspicion of illegal use. We store IP addresses in the log files for a limited period of time if this is necessary for security purposes or if it is necessary for the provision of a service or the billing of a service, e.g. if you use one of our offers. We also store IP addresses if we have a concrete suspicion of a criminal offence in connection with the use of our website. The legal basis for the temporary storage of data and log files is Art. 6 Para. 1 lit. f DSGVO.
2.2 E-Mail Contact
When you contact us (e.g. via contact form or e-mail), we store your details to process your inquiry and, in the event, that follow-up questions arise. We only store and use further personal data if you consent to this or if this is legally permissible without special consent. The legal basis for the processing of the data is Art. 6 para. 1 lit. a DSGVO if the user has given his consent. The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 letter f DSGVO. If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 letter b DSGVO.
3. Your rights as a person affected by the data processing
According to the applicable laws, you have various rights regarding your personal data. If you wish to exercise these rights, please send your request by e-mail or by post, clearly identifying yourself, to the address indicated in point 1 below, together with a summary of your rights.
3.1 Right to confirmation and information
You have the right to obtain confirmation from us at any time as to whether or not personal data concerning you is being processed. If this is the case, you have the right to obtain free information from us about the personal data stored about you, together with a copy of this data. Furthermore, you have the right to obtain the following information:
- the purposes of the processing
- the categories of personal data processed
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular with regard to
- if possible, the envisaged duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right of rectification or erasure of personal data concerning you or of a right of objection to the processing by the controller or of a right of opposition to such processing
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from you, any available information concerning the origin of the data
- the existence of automated decision-making, including profiling, in accordance with Article 22 paragraphs 1 and 4 DPA and, at least in these cases, meaningful information about the logic involved and the scope and intended impact of such processing on you.
If personal data are transferred to a third country or international organization, you have the right to be informed of the appropriate safeguards in accordance with Article 46 DPA in connection with the transfer.
3 .2 Right of rectification
You have the right to request us to rectify incorrect personal data concerning you without delay. You have the right to request the completion of incomplete personal data, including by means of a supplementary declaration, considering the purposes of the data transfer.
3.3 Right to deletion (“right to be forgotten”)
You have the right to request us to delete personal data relating to you without delay and we are obliged to delete personal data without delay if any of the following reasons apply:
- the personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
2 . you revoke your consent on which the processing was based pursuant to Article 6 paragraph 1 DSGVO letter a or Article 9 paragraph 2 letter a DSGVO, and there is no other legal basis for the processing.
- you object to the processing pursuant to Article 21 paragraph 1 DSGVO and there are no overriding legitimate reasons for the processing, or you object to the processing pursuant to Article 21 paragraph 2 DSGVO.
4 The personal data have been processed unlawfully.
5 The deletion of the personal data is necessary to comply with a legal obligation under Union law or the law of the Member States to which we are subject.
6 . the personal data has been collected in relation to the information society services offered, in accordance with Article 8, paragraph 1 of the DPA. If we have made the personal data public and we are obliged to delete it in accordance with Article 17 of the DPA, we shall take reasonable measures, including technical measures, taking into account the available technology and the implementation costs, to inform data controllers who process the personal data that you have requested them to delete all links to this personal data or copies or replications of this personal data.
3 .4 Right to limit the processing You have the right to request us to limit the processing if any of the following conditions are met:
- you contest the accuracy of the personal data, for a period of time sufficient to enable us to verify the accuracy of the personal data
- the processing is unlawful, and you have refused to delete the personal data and instead requested the limitation of the use of the personal data
- we no longer need the personal data for the purposes of the processing, but you needed the data for the purpose of asserting, exercising or defending legal claims; or
- you have lodged an objection to the processing in accordance with Article 21 Paragraph 1 DSGVO as long as it has not yet been established whether the legitimate reasons of our company outweigh your own.
3 .5 Right to data transfer
You have the right to receive the personal data concerning you that have been provided to us in a structured, common and machine-readable format and you have the right to transfer this data to another responsible party without hindrance by us, provided that
- the processing is based on a consent pursuant to Article 6 paragraph 1 letter a of the DPA or Article 9 paragraph 2 letter a of the DPA, or on a contract pursuant to Article 6 paragraph 1 letter b of the DPA, and
- the processing is carried out with the aid of automated procedures
When exercising your right to data transfer in accordance with paragraph 1, you have the right to obtain that the personal data be transferred directly from us to another controller, insofar as this is technically feasible.
3.6 Right of objection
You have the right to object at any time, for reasons arising from your specific situation, to the processing of personal data concerning you, carried out pursuant to Article 6 paragraph 1 letters e or f of the DPA, including profiling based on these provisions. We shall no longer process the personal data unless we can demonstrate compelling legitimate reasons for processing which outweigh your interests, rights and freedoms, or if the processing is for the purpose of asserting, exercising or defending legal claims; if personal data are processed by us for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it is related to such direct marketing. You have the right to object, for reasons arising from your particular situation, to the processing of personal data relating to you which is carried out for the purposes of scientific or historical research or for statistical purposes in accordance with Article 89 paragraph 1 FADP, unless the processing is necessary for the performance of a task carried out in the public interest.
3 .7 Automated decisions including profiling
You have the right not to be subject to a decision based solely on automated processing – including profiling – which has legal effect vis-à-vis you or significantly affects you in a similar manner.
3.8 Right to withdraw consent under data protection law
You have the right to withdraw consent to the processing of personal data at any time.
3 .9 Right to complain to a supervisory authority
You have the right to complain to a supervisory authority, in particular in the member state of your residence, your place of work or the place of the suspected violation, if you are of the opinion that the processing of personal data concerning you is unlawful.
4. Data security
We make every effort to ensure the security of your data within the framework of the applicable data protection laws and technical possibilities.
Your personal data is transmitted by us in encrypted form. This applies in particular to your customer login and form data transmitted to us. We use the SSL (Secure Socket Layer) coding system, but we would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible. To protect your data, we maintain technical and organizational security measures, which we constantly adapt to the state of the art. We also do not guarantee that our offer is available at certain times; disturbances, interruptions or failures cannot be excluded. The servers used by us are regularly and carefully secured.
5. Automated decision making
Automated decision making based on the personal data collected does not take place.
7. Duration of storage
The personal data of the person concerned will be deleted or blocked as soon as the purpose of the storage no longer applies. Storage may also take place if this has been provided for by the European or national legislator in EU ordinances, laws or other regulations to which the person responsible is subject. Data is also blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or performance of a contract.8 Transfer of data to third parties, no data transfer to non-EU countries. In principle, we only use your personal data within our company If and insofar as we involve third parties in the fulfilment of contracts, they only receive personal data to the extent that the transfer is necessary for the corresponding service. In the event that we outsource certain parts of the data processing (“contract processing”), we contractually oblige contract processors to use personal data only in accordance with the requirements of the data protection laws and to ensure the protection of the rights of the person concerned. A data transfer to bodies or persons outside the EU does not take place and is not planned.