The responsible person (controller), within the meaning of the General Data Protection Regulation and other national data protection laws of the EU member states, and other data protection regulations is:
REICHHART digital logistics GmbH
D-60386 Frankfurt am Main
Collection and purpose-oriented processing personal data
As a general rule, you can use our website without disclosing your identity. When you visit our web pages, this is logged for security analysis and to prevent attacks. The data collected in this process are not assigned to specific persons, but could possibly allow identification. Neither directly personal nor pseudonymized user profiles are created. These data are not combined with other data sources. IP addresses are only evaluated if there is an attack.
Furthermore, we only collect personal data in connection with the operation of our websites, if you provide us with such data voluntarily (e.g., through registration, contact inquiries, surveys, etc.), and if we are entitled to process or use such data on the basis of your consent or on the basis of a statutory provision. Only a few authorized persons have access to it.
Categories of affected persons (data subjects)
Visitors and users of the website (hereinafter, we refer to such data subjects collectively as "users").
Applicable legal bases
We inform you of the legal basis of our data processing, in accordance with Art. 13 GDPR. If the legal basis is not mentioned in the data protection declaration, the following applies: the legal basis for obtaining consents is Art. 6 para. 1 (a) and Art. 7 GDPR; the legal basis for processing for the performance of our services, the performance of contractual measures, and for answering inquiries is Art. 6 para. 1 (b) GDPR; the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 (c) GDPR; and the legal basis for processing to protect our legitimate interests is Art. 6 para. 1 (f) GDPR. Article 6 para 1 (d) GDPR is the legal basis, if the vital interests of the data subject or another natural person make the processing of personal data necessary.
Transfer of personal information
The data will not be transferred to third parties outside the REICHHART group of companies without your express consent.
We would like to point out that data transmission over the Internet (e.g., communication by email) can have security gaps. Complete protection of data against access by third parties is not possible.
Cooperation with contract processors and third parties
If, as part of our processing, we disclose data to other persons and companies (contract processors or third parties), transmit such data to them or otherwise grant access to the data, this will only be done on the basis of a legal authorization (e.g., if a transmission of the data to third parties, in accordance with Art. 6 para. 1 (b) GDPR is required to fulfill the contract), if you have consented to a legal obligation, or on the basis of our legitimate interests (e.g., the use of agents, web hosters, etc.).
If we commission third parties to process data on the basis of a "processor contract", this is done on the basis of Art. 28 GDPR.
Transfers to third countries
If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if this occurs as part of the use of third party services or disclosure or transmission of data to third parties, this will only be done if it is to fulfill our (pre) contractual obligations, on the basis of your consent, on the basis of a legal obligation, or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or leave the data in a third country, in accordance with the special provisions of Art. 44 ff. GDPR. This means, for example, that processing is carried out on the basis of special guarantees or compliance with officially recognized special contractual obligations (so-called "standard contractual clauses").
Rights of the data subject
You have the right to request confirmation as to whether the data concerned are being processed and to request information about these data, as well as further information and a copy of the data in accordance with Art. 15 GDPR.
You have the right, under Art. 16 GDPR, to request the completion of data concerning you or the rectification of inaccurate data concerning you.
You have the right, under the provisions of Art. 17 GDPR, to demand that relevant data be erased immediately or, alternatively, to demand a restriction on the processing of the data in accordance with Art. 18 GDPR.
You have the right under Art. 20 GDPR, to request receipt of the data concerning you, which you have provided to us, and to transmit it to another controller.
You also have the right, under Art. 77 GDPR, to lodge a complaint with the competent supervisory authority.
Withdrawal of consent
You have the right, under Art. 7 para. 3 GDPR, to withdraw consent already given, with future effect.
Right to object
Under Art. 21 GDPR, you can object to the future processing of the data concerning you at any time. In particular, you can lodge an objection against processing for direct marketing purposes.
Erasure of data
Retention is in accordance with the statutory requirements in Germany: retention is for 6 years in accordance with Section 257 (1) of the German Commercial Code (HGB) (trading books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with Section 147 (1) of the German Fiscal code (AO) (books, records, management reports, accounting documents, commercial and business letters, documents relevant for taxation, etc.).
The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services, and technical maintenance services that we use for the purpose of operating this website.
As part of this service, we, or our hosting provider, process inventory data, contact data, content data, contract data, usage data, and meta- and communication data of customers, interested parties, and visitors to this website on the basis of our legitimate interests in the efficient and secure provision of this website, in accordance with Art. 6 Para. 1 (f) GDPR in conjunction with Art. 28 GDPR (conclusion of a processor contract).
Collection of access data and log files
We, or our hosting provider, collect data (so-called, server log files) on each access to the server on which this service is located, on the basis of our legitimate interests within the meaning of Art. 6 para. 1 (f) GDPR. The access data includes the name of the accessed website, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address, and the requesting provider.
Log file information is stored for a maximum of 6 weeks for security reasons (e.g., to investigate misuse or fraud) and then erased. Data whose further storage is required for evidentiary purposes are excluded from erasure until the respective incident has been finally clarified.
Objection to data collection
When contact is made with us (for example via a contact form, email, telephone, or social media), the user's information is processed in accordance with Art. 6 para. 1 (b) GDPR, in order to deal with the inquiry and any follow-up. The user's information may be stored in a customer relationship management system ("CRM system") or a comparable request system. We erase this information if it is no longer required. We review this requirement every two years; the statutory archiving obligations also apply.
Links to other websites
Our website contains links to external, third-party websites. We have no influence on whether the operators of such sites comply with the data protection regulations. REICHHART assumes no responsibility or liability in this regard.
Online presence in social media
We maintain an online presence within social networks and platforms in order to communicate with active customers, interested parties, and users and to inform them about our services. When accessing the such networks and platforms, the terms and conditions and privacy policies of their respective operators apply.
Contact - Data Protection Officer
Our data protection officer is at your disposal for information and suggestions on the subject of data protection.
If, despite our best efforts to ensure data correctness, incorrect information is stored, we will correct this at your request.
External data protection officer
Graf Consultings GmbH