Privacy policy

You are here:
  1. Home
  2. Privacy policy

Privacy policy

The protection of your data when you visit our website is very important to us. In the following, we will inform you which data is collected during your visit and how it is used. You will also receive information about your rights with regard to the use of your data.

For security reasons, our website is equipped with SSL/TLS encryption. You can recognize this by the small lock icon in the top left of your browser’s address bar. This encryption prevents data that you transmit to us from being read by third parties. Our security measures are also continuously improved in line with technological developments.

  1. Controller within the meaning of data protection law and data protection officer

Responsible acc. Art. 4 para. 7 of the EU General Data Protection Regulation (GDPR):

CALORPLAST Wärmetechnik GmbH

Siempelkampstrasse 94

47803 Krefeld

E-mail: info@calorplast.de

CALORPLAST Wärmetechnik GmbH is represented by the managing director Dirk Kullwitz

You can contact our data protection officer at info@calorplast.de or at our postal address with the addition “the data protection officer”.

  1. What is personal data?

Personal data is information that can be assigned to your person. This includes, for example, details such as name, address, e-mail address and telephone number.

  1. Data collection when visiting our website

(1) When using the website for information purposes only, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security (legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR):

  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and its interface
  • Language and version of the browser software.

The data listed above will be stored for a maximum of 7 days for security reasons (e.g. to investigate misuse or fraud) and then deleted.

(2) In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk assigned to the browser you are using and through which certain information flows to the body that sets the cookie (in this case us). Cookies cannot run programs or transfer viruses to your computer. They serve to make the website more user-friendly and effective overall (legal basis is also Art. 6 para. 1 sentence 1 lit. f GDPR).

(3) Use of cookies:

  1. a) This website uses the following types of cookies, the scope and function of which are explained below:
  • Transient cookies (see b)
  • Persistent cookies (see c).
  1. b) Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
  2. c) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
  3. d) Cookies that are not absolutely technically necessary for the operation of our website (such as those in connection with external media or statistics) are only used when using the website with your consent (which can be revoked at any time). The legal basis in this respect is Art. 6 para. 1 p. 1 lit. a GDPR and § 25 para. 1 TTDSG. We obtain your consent by using a so-called Consent Manager. This is a tool through which you can give your consent to the use of certain cookies and manage and revoke them there. The consent you have given is stored there so that you do not have to give it again when you visit our website at a later date. In addition, we can prove that you have given your consent by storing it. We use the Consent Manager “Borlabs Cookie”. The storage takes place via an opt-in cookie in order to be able to assign the consent to a user or their device. The following information is stored in the cookie: runtime, cookie version, domain and path of the WordPress website, consent and a randomly generated user ID (this does not contain any personal information). The Consent Manager is hosted locally on our server; no data is passed on to the provider of Borlabs Cookie.
  4. e) You can revoke your consent via the Consent Manager. In addition, you can also revoke your consent by making the appropriate browser settings, e.g. by refusing to accept third-party cookies or all cookies. We would like to point out that in this case you may not be able to use all the functions of this website. For the rest, we refer you to Section 10 of this Privacy Policy regarding the withdrawal of your consent.
  5. f) Without your consent, we will only use cookies that are absolutely technically necessary for the operation of our website (essential cookies). The legal basis in this case is Art. 6 para. 1 p. 1 lit. f GDPR.
  1. Webhosting

(1) For the purpose of secure and efficient provision of our website, we use the services of a web hosting provider from whose server the website can be accessed. For this purpose, certain data, in particular the data listed above under para. 3. para. 1, from our hosting provider. The legal basis for this is Art. 6 para. 1 p. 1 lit. f GDPR. If data is collected with your consent, the processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG.

(2) The web hosting provider is ALL-INKL.COM – Neue Medien Münnich,

Owner René Münnich, Hauptstraße 68 02742 Friedersdorf. Further information on the purpose and scope of data collection and its processing by the web hosting provider can be found in the provider’s privacy policy at https://all-inkl.com/datenschutzinformationen

  1. Data collection when using the contact form/inquiry form or when contacting us by e-mail

(1) When you contact us via the contact form/enquiry form provided on our website or by e-mail, the data you provide (usually at least your name and e-mail address) will be stored by us in order to answer your questions. Insofar as you wish to work towards the conclusion of a contract with your message, the legal basis is Art. 6 para. 1 lit. b) GDPR. Otherwise, the legal basis for the processing of the data you provide is Art. 6 para. 1 lit. f) GDPR.

(2) We delete the data arising in this context after storage is no longer required, or restrict processing if statutory retention obligations exist.

  1. Integration of Google Analytics

(1) On this website, we use Google Analytics, a web analysis service of the third-party provider Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), to analyze and regularly improve the use of our website. By using Google Analytics, we receive various usage data, such as information on page views, length of visit and the origin of the user. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

(2) As part of the use of Google Analytics, your IP address is initially collected and stored. However, we have activated IP anonymization for storage and further processing. As a result, a so-called IP masking procedure is used by Google, i.e. your IP address is pseudonymized by shortening it before it is transmitted to a Google server in the USA. Only in exceptional cases will the

full IP address to a Google server in the USA and shortened there. As a matter of principle, therefore, no clear data about you is stored as part of the web analysis, but pseudonyms. Accordingly, only pseudonymous user profiles are created. The transmitted IP address will not be merged with other Google data. The data transmitted to Google accordingly is processed by Google in order to provide us with the commissioned web analysis services.

(3) When using Google Analytics, we have also activated the “Google signals” function. According to Google’s definition, Google signals are session data from websites and apps that Google links to users who are logged into their Google account and have activated personalized advertising. This means that the usage data collected through the use of Google Analytics (see paragraph 1 above) is linked to Google information from accounts of registered users of the Google account and used for personalized advertising, provided that the respective owner of the Google account has consented to this linking for the purpose of ad personalization.

(4) You have the option of preventing the collection and processing of your data by Google by downloading and installing the Google browser plug-in available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=de

(5) Google Analytics is only used when you visit our website with your express consent. The legal basis for the use of Google Analytics is Art. 6 para. 1 p. 1 lit. a GDPR and § 25 para. 1 TTDSG. Insofar as personal data is transferred to a Google server in the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Google is certified in accordance with the EU-US Data Privacy Framework (DPF). This is an agreement on data exchange between the European Union and the United States, which is intended to ensure compliance with European data protection standards for data processing in the USA. Through certification, Google has undertaken to comply with these data protection standards. You can find more information on this and on data transfer to third countries in general at: https://business.safety.google/adscontrollerterms/sccs/c2c/ and https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TXVKAA4&status=Active and https://commission.europa.eu/law/law-topic/data-protection/international-d imension-data-protection_en?prefLang=de

(6) Further information on the purpose and scope of data collection and its processing by Google can be found in their privacy policy at http://www.google.de/intl/de/policies/privacy and at https://support.google.com/analytics/answer/6004245?hl=de. There you will also find further information on your rights in this regard and setting options to protect your privacy:

Data processing agreement: https://business.safety.google/adsprocessorterms;

  1. Use of the Google Tag Manager

(1) On this website, we use the Google Tag Manager of the third-party provider Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). This is a tag management system (TMS) that simplifies the implementation of tools such as Google Analytics for us. The Google Tag Manager is only used by us for the corresponding implementation. The Google Tag Manager itself does not carry out any independent analyses and does not create any user profiles. Nevertheless, Google Tag Manager records your IP address, which may also be transmitted to a Google server in the USA.

(2) We use Google Tag Manager to implement tools more quickly and easily on our website, which also constitutes our legitimate interest. The legal basis for the use of Google Tag Manager is Art. 6 para. 1 p. 1 lit. f GDPR. Insofar as personal data is transferred to a Google server in the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Google is certified in accordance with the EU-US Data Privacy Framework (DPF). This is an agreement on data exchange between the European Union and the United States, which is intended to ensure compliance with European data protection standards for data processing in the USA. Through certification, Google has undertaken to comply with these data protection standards. You can find more information on this and on data transfer to third countries in general at: https://business.safety.google/adscontrollerterms/sccs/c2c/ and https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TXVKAA4&status=Active and https://commission.europa.eu/law/law-topic/data-protection/international-d imension-data-protection_en?prefLang=de

(3) Further information on the purpose and scope of data collection and its processing by Google can be found in their privacy policy. There you will also find further information on your rights in this regard and setting options to protect your privacy: http://www.google.de/intl/de/policies/privacy

  1. Sign up for our newsletter

(1) With your consent, you can subscribe to our newsletter, with which we inform you about our current interesting offers. The advertised services are named in the declaration of consent.

(2) We use the so-called double opt-in procedure to register for our newsletter. This means that after your registration we will send you an e-mail to the e-mail address you have provided in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store the IP addresses you use and the times of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data.

(5) In connection with sending our newsletter, we use the newsletter management tool Mailchimp from the third-party provider Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA (“Rocket Science”). This tool enables us to organize and analyze the sending of newsletters. As soon as you open a newsletter, this tool collects various usage data, such as information on the links clicked on in the newsletter, the time of retrieval or the IP address. The usage data cannot be assigned to the respective newsletter recipient. They are used exclusively for statistical analysis. We can use the statistics obtained to improve our newsletter and make it more interesting for recipients. As part of the analysis, the usage data is transferred to a Rocket Science server in the USA. The data transmitted accordingly to Rocket Science will be processed by Rocket Science in order to provide us with the commissioned organization and analysis services.

Further information on the purpose and scope of data collection and its processing by Rocket Science can be found in their privacy policy at https://mailchimp.com/de/legal/

(6) The legal basis for sending the newsletter and the use of the aforementioned Mailchimp tool is Art. 6 para. 1 p. 1 lit. a GDPR. Insofar as personal data is transferred to a Rocket Science server in the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Rocket Science is certified in accordance with the EU-US Data Privacy Framework (DPF). This is an agreement on data exchange between the European Union and the United States, which is intended to ensure compliance with European data protection standards for data processing in the USA. Through certification, Rocket Science has undertaken to comply with these data protection standards, and you can find more information on this and on data transfer to third countries in general at https://mailchimp.com/de/help/mailchimp-european-data-transfers and https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TXVKAA4&status=Active and https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=de

  1. Your rights

(1) Right to information: You have the right to receive information from us at any time upon request about the personal data processed by us concerning you within the scope of Art. 15 GDPR. To do so, you can send an application by post or by e-mail to the address given under point. 1. specified address.

(2) Right to rectification of inaccurate data: You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. Please use the contact addresses listed below.

(3) Right to erasure: You have the right to obtain from us the erasure of personal data concerning you under the conditions described in Art. 17 GDPR. In particular, these conditions provide for a right to erasure if the personal data are no longer necessary for the purposes for which they were collected or otherwise processed, as well as in cases of unlawful processing, the existence of an objection or the existence of an obligation to erase under Union law or the law of the Member State to which we are subject. In order to assert your right to erasure, please contact the contact details provided under point. 1. given contact addresses.

(4) Right to restriction of processing: You have the right to demand that we restrict processing in accordance with Art. 18 GDPR. This right exists in particular if the accuracy of the personal data is disputed between the user and us, for the period required to verify the accuracy, as well as in the event that the user requests restricted processing instead of deletion in the case of an existing right to deletion; furthermore, in the event that the data is no longer required for the purposes pursued by us, but the user needs it to assert, exercise or defend legal claims, as well as if the successful exercise of an objection between us and the user is still disputed. To exercise your right to restriction of processing, please contact us at the addresses below.

(5) Right to data portability: You have the right to receive from us the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format in accordance with Art. 20 GDPR. To assert your right to data portability, please contact us at the addresses given below.

(6) Right to lodge a complaint: You also have the right to lodge a complaint with a supervisory authority.

  1. Objection or revocation against the processing of your data

(1) If you have given your consent to the processing of your data, you can revoke this at any time. Such a revocation affects the permissibility of the processing of your personal data after you have declared it to us.

(2) Insofar as we base the processing of your personal data on the balancing of interests, you can object to the processing. This is the case if the processing is not necessary in particular for the performance of a contract with you. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either discontinue or adapt the data processing or point out to you our compelling reasons worthy of protection on the basis of which we will continue the processing.

(3) Please send both your revocation and your objection by post or by e-mail to the address given under para. 1. address given.

  1. Storage duration

Unless this privacy policy contains more specific information on the storage period, we store your personal data until the purpose for data processing no longer applies. If you request the deletion of your data (Section 9 (3)) or revoke your consent to data processing (Section 10 (1)), your personal data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law). In the latter case, we will delete the corresponding data after these reasons no longer apply.

  1. Changes to the privacy policy

Due to the further development of our website or due to changes in legal or official requirements, it may become necessary to amend this privacy policy. You can access the current privacy policy at any time on our website.