(hereinafter “Fink & Walter” or “we” or “us”)
collect, store and process information about individual visitors to this website.
Commitment to data protection
Personal data is any information relating to personal or material circumstances that relates to an identified or identifiable individual. This includes, for example, your name, date of birth, e-mail address, postal address or telephone number as well as online identifiers such as your IP address. In contrast, information of a general nature that cannot be used to determine your identity is not personal data. This includes, for example, the number of users of a website.
However, we reserve the right to put this data to additional uses to the extent permitted or required by law or necessary to support legal or criminal investigations. In this case, we will inform you again about this further data processing to the extent required by law and obtain your consent.
In the next sections we explain when and how we process personal data about you when you visit our website.
Purposes of use of personal data and legal basis
a) Log Files
We only collect and process access data that your internet browser automatically transmits to us for technical reasons in order to provide the website. Depending on the access protocol used, the protocol data record contains general information with the following contents: Your session data (usage behaviour, length of stay, which links were clicked on, etc.), your abbreviated and unabbreviated IP address, your browser version, your operating system, your website-specific settings, your cookie IDs, your pixel IDs. This data does not allow any direct inference to your person and is processed to improve our website offer and to defend against attempted attacks on our web server. The legal basis for the processing of your personal data is Art. 6 para. 1 lit. f) GDPR. We have a legitimate interest in presenting you with a website optimised for your browser and in enabling communication between our server and your device.
b) Contact requests
Enquiries via telephone, email or our contact form may include your name, address, e-mail address, the subject of your contact and your message and your phone number if provided. We process and store the personal data provided in the contact enquiry solely for the purpose of processing and responding to your enquiry and contacting you. The legal basis for the processing of your personal data is Art. 6 para. 1 lit. b) GDPR.
c) Cookies and similar technologies
Cookies are small files that are stored on your computer when you visit a website. The next time you visit, the website can recognise the file. The files are thus typically used to compile statistics or for behavioural advertising purposes. Cookies help us to provide you with our services on our website and are partly necessary for website functionality purposes. The personal data stored in our cookies is encrypted.
i) How long are cookies stored?
Cookies are stored on your computer for different lengths of time depending on their type. From a technical point of view, a distinction is made between two types of cookies:
Session cookies: session cookies are used, for example, to temporarily store the items in your shopping cart while you navigate the website. Session cookies are not stored on your device and disappear when you close your browser.
Persistent Cookies: Persistent cookies are stored as text files on your device. Persistent cookies allow our server to recognise your device the next time you visit our website.
ii) How can I prevent and delete cookies?
When you visit our website, one or more cookies are automatically stored on your device. If you do not want this to happen, it is best to use the following links (depending on the browser you use) to set your browser to prevent cookies from being stored on your computer in the future.
If your browser is not listed above, it's best to check your browser's help menu or search the Internet for "cookies" in conjunction with your browser's name.
Cookies are small text files that can be used by websites to make a user's experience more efficient. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies, we need your permission.
This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
iv) Types of cookies
There are different types of cookies:
Functional cookies are essential cookies to provide a correct and user-friendly website. Some examples:
These cookies are typical third party cookies that we use to collect statistical data about how our website is used, including:
The main purpose of these cookies and their statistical data is, after analysis, to optimise our performance, security, usability, content and services.
Non-essential Cookies are any cookies that do not fall within the definition of essential cookies, such as cookies used to analyse your behaviour on a website (‘analytical’ cookies) or cookies used to display advertisements to you (‘advertising’ cookies).
The Cookies we use
|The pll _language cookie is used by Polylang to remember the language selected by the user when returning to the website, and also to get the language information when not available in another way.
Transfer of personal data
Fink & Walter will not disclose or otherwise distribute your personal data to third parties unless this is necessary for the performance of our services (legal basis for processing: Art. 6 para. 1 lit. b) GDPR), you have consented to the disclosure (legal basis for processing: Art. 6 para. 1 lit. a) GDPR) or the disclosure of data is permitted by relevant legal provisions.
Fink & Walter is entitled to outsource the processing of your personal data in whole or in part to external service providers acting as processors for Fink & Walter pursuant to Art. 4 No. 8 GDPR within the framework of the data protection provisions. External service providers support us, for example, in the technical operation and support of the website, data management, the provision and performance of services, marketing, as well as the implementation and fulfilment of reporting obligations.
The service providers commissioned by Fink & Walter process your data exclusively in accordance with our instructions. Fink & Walter remains responsible for the protection of your data, which is ensured by strict contractual regulations, technical and organisational measures and additional controls by us.
Personal data may also be disclosed to third parties if we are legally obliged to do so e.g., by court order (legal basis for processing: Art. 6 (1) (c) GDPR) or if this is necessary to support criminal or legal investigations or other legal investigations or proceedings at home or abroad or to fulfil Fink & Walter' legitimate interests (legal basis for processing: Art. 6 (1) (f) GDPR).
Transfer of personal data
Fink & Walter will not sell, rent, or otherwise transfer your personal data to third parties. We will transfer your data to third parties if you have consented to this in accordance with Art. 6 (1) (a) GDPR, or in the following cases:
Fink & Walter may engages other companies and individuals in certain cases to fulfil its obligations to its customers on its behalf. This may involve sharing your data with these third parties in order to provide products or services to you. Examples include payment data processing and technical support. In these cases, data is transferred to such service providers and contractors (such as payment service providers, technical service providers) for the purpose of fulfilling the contract in accordance with Art. 6 (1) (b) GDPR.
It goes without saying that Fink & Walter ensures that the respective service provider guarantees data security before passing on personal data. Fink & Walter will therefore only commission companies that can guarantee secure and proper data processing based on their qualifications and their technical and organisational capabilities.
Storage and retention
Your personal data will be stored by us only for as long as is necessary to achieve the purposes for which the data was collected or - if statutory retention periods exist that go beyond this point and for the duration of the legally prescribed retention period (typically 10 years). We then delete your personal data. Only in a few exceptional cases is your data be stored beyond this period, e.g., if storage is necessary in connection with the enforcement of and defence against legal claims against us.
Fink & Walter is entitled to process your personal data insofar as this is necessary to fulfil legal obligations. For this purpose, Fink & Walter may transfer this data in particular to authorities, law enforcement agencies and courts. In this case, the transfer of your data is required by Art. 6 (1) (c) GDPR for compliance with a legal obligation to which we are subject. Fink & Walter is further entitled to process personal data if and to the extent necessary to detect or prevent misuse of this website or to enforce claims of Fink & Walter, our staff, or users, whereby the data processing in these cases is necessary to protect these aforementioned legitimate interests of Fink & Walter pursuant to Art. 6 (1) (f) GDPR. Insofar as the disclosure of health data is necessary for the assertion of claims or the defence against claims, the related data processing is based on Art. 9 (2) f) GDPR.
Our main operations are based in Germany and your personal data is generally processed, stored and used in Germany. In some instances, your personal data may be processed outside Germany. If and when this is the case, we take steps to ensure there is an appropriate level of security, so your personal data is protected in the same way as if it was being used within Germany.
Where we need to transfer your data outside Germany, we will use one of the following safeguards:
Automated decision-making including profiling pursuant to Art. 22 (1) and (4) GDPR does not take place on the part of Fink & Walter.
You have a number of ‘Data Subject Rights’ below is some information on what they are and how you can exercise them. These rights are standardised in Art. 15 - 22 GDPR and includes:
The above rights may be limited in some circumstances, for example, if fulfilling your request would reveal personal data about another person, if you ask us to delete information which we are required to have by law, or if we have compelling legitimate interests to keep it.
We will let you know if that is the case and will then only use your information for these purposes. You may also be unable to continue using our services if you want us to stop processing your personal data.
We encourage you to get in touch if you have any concerns with how we collect or use your personal data. You do however also have the right to lodge a complaint.
The Supervisory Authority
According to the BDSG and the GDPR, you are entitled to file a complaint with your local Supervisory Authority. Nonetheless, we would appreciate the chance to deal with your concerns first before you approach any Supervisory Authority.
Security and confidentiality
To ensure the security and confidentiality of the personal data we collect on the Website, we use data networks that are protected by, among other things, industry-standard firewalls and password systems. When handling your personal data, we take appropriate technical and organisational measures to protect your information from loss, misuse, unauthorised access, disclosure, alteration or destruction and to ensure its availability.
Online presences in social media
We maintain online presences on the basis of our legitimate interests. We maintain online presences within social networks and platforms in order to communicate with customers, interested parties and users who are active there. Unless otherwise stated in this policy, we process the data of users if they communicate with us within the social networks and platforms, e.g., write articles on our online presences or send us messages.
We would like to point out that you use these platforms and their functions on your own responsibility, in particular to the use of the interactive functions (e.g., commenting, sharing, rating).
In the case of requests for information and the assertion of user rights, we would also like to point out that these can most effectively be asserted with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us using firstname.lastname@example.org.
Personal data and children
Most of the services available on this website are aimed at people aged 18 and over. We will not knowingly collect, use or disclose personal data from minors under the age of 18 without first obtaining consent from a legal guardian through direct offline contact. The parent or guardian will be provided with (i) information about the specific type of personal data being collected from the minor, (ii) the purpose for which it will be used, and (iii) the opportunity to object to any further collection, use or storage of such information. We comply with youth protection laws.
Links to other website
The website may contain links to another website. We have no control over the privacy practices or the content of those other website. Therefore, we recommend that you carefully read the respective privacy policies of these other website that you visit.
This Policy and our commitment to protecting the privacy of your personal data can result in changes to this Policy. Please regularly review this Policy to keep up to date with any changes.
Queries and Complaints
Any comments or queries on this policy should be directed to us using the following contact details.
If you believe that we have not complied with this policy or acted otherwise than in accordance with data protection law, then you should notify us.