Privacy Policy

DATA PROTECTION
Responsible for the data processing is:
NATUREA Heidelberg GmbH
Mannheimer Str. 74
D-76676 Graben-Neudorf

E-Mail: info@naturea-heidelberg.de

We appreciate your interest in our website and our product. NATUREA Heidelberg GmbH ("we", "us" and "our") respect the privacy of our prospects, business partners and visitors to our website. That's why we developed this privacy policy. It describes how we collect, use, share, protect, store and transmit your personal information. Please take a moment to read and understand our privacy policy. If you have any questions, do not hesitate to ask us.

This Privacy Policy is based on the terminology used by the European Regulatory and Regulatory Authority in the adoption of the General Data Protection Regulation (GDPR). Unfortunately, these terms are often not easy to understand. Therefore, we would like to explain some explanatory terms in advance.

- natural person

A natural person is man as the bearer of rights and obligations.

- legal entity

In addition to natural persons, there is the so-called legal entity, often synonymous with companies or associations - if, for example, in a GmbH (limited liability company) the shareholder is not a natural person.

- affected person

An affected person within the meaning of the GDPR is any identified or identifiable natural person whose personal data are processed by the controller.

- Responsible (or controller)

The controller or controller is the natural or legal person, public authority, body or body that, alone or in concert with others, decides on the purposes and means of processing personal data.

- personal data

Personal data is any information that relates to an identified or identifiable natural person. These are all information that relates to an affected person.

A natural person is considered to be identifiable who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person can be identified.

- Processing

Processing is any process performed with or without the aid of automated procedures or any such process associated with personal information. This includes collecting, collecting, organizing, organizing, storing, adapting or modifying, reading out, querying, using, disclosing through transmission, dissemination or any other form of provisioning, reconciliation or linking, the restriction, deletion or destruction of personal data.

- Profiling

Profiling is any kind of automated processing of personal data to evaluate certain personal aspects that relate to a natural person. Particular attention is paid to analyzing or predicting aspects of job performance, economic condition, health, personal preferences, interests, reliability, behavior, whereabouts, or relocation of that natural person.

- Pseudonymization

Pseudonymisation is the processing of personal data in a way in which the personal data can no longer be assigned to a specific data subject without the need for additional information.

This requires that such additional information be kept separate and be subject to technical and organizational measures to ensure that the personal data can not be assigned to an identified or identifiable natural person.

- processor

A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

- Receiver

A Recipient is a natural or legal person, agency, agency or other entity to whom Personal Information is disclosed. This is independent of whether it is a third party or not. However, authorities which may receive personal data under Union or national law in connection with a particular mission are not considered to be beneficiaries.

- Third party (or third party)

A third party is a natural or legal person, public authority, body or body other than the data subject, the controller, the processor and the persons empowered under the direct responsibility of the controller or processor to process the personal data.

- Consent

Consent is any act of volition voluntarily given by the data subject in an informed and unambiguous manner in the form of a statement or other unambiguous confirmatory act by the data subject to indicate to the data subject that they are processing personal data concerning them agrees.

We hope that we hereby understandably understood the terms of this Privacy Policy that require clarification. If you have further questions, do not hesitate to ask us - we are happy to help.

0. Preamble

If you work with us or use our website, various personal information will be collected. The processing of personal data in our company is always in accordance with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to NATUREA Heidelberg GmbH.

NATUREA Heidelberg GmbH, as controller, has implemented numerous technical and organizational measures to ensure the most complete protection of personal data. This both within the IT infrastructure of our company and on our website. However, no security measure is perfect and no product, service, website, data transfer, computer system or network connection is completely secure. In particular, Internet-based data transmissions can in principle have security gaps so that absolute protection can not be guaranteed. For this reason, any data subject is free to provide us with personal information by alternative means (such as by mail or telephone).

1. Name and address of the controller

The person responsible within the meaning of the General Data Protection Regulation, other data protection laws in the Member States of the European Union and other provisions with a data protection character is:


NATUREA Heidelberg GmbH
Mannheimer Str. 74
D-76676 Graben-Neudorf
Telephone: +49 (0) 7255 396 78 54
Fax: +49 (0) 7255 396 78 56
E-Mail: info@naturea-heidelberg.de
Website: https://www.naturea-heidelberg.de

Further information can be found in the imprint of our website.

2. Collection and storage of personal data as well as the nature and purpose of their use

In general, the principle applies to us: Unless there is a legal basis for the processing of personal data, the consent of the person concerned must generally be obtained. Depending on the nature of the relationship between the prospect, business partner or visitor to our website, different personal data will be processed:

i)

When visiting our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

  • IP address of the requesting computer,
  • date and time of access,
  • name and URL of the retrieved file,
  • website from which access is made (referrer URL),
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider.
The data mentioned are processed by us for the following purposes:
  • ensuring a smooth connection of the website,
  • ensuring comfortable use of our website,
  • Evaluation of system security and stability as well
  • for further administrative purposes.

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f DSGVO. Our legitimate interest follows from the data collection purposes listed above. In no case we use the collected data for the purpose of drawing conclusions about you.

In addition, we use cookies and analysis services when visiting our website. Further details can be found under no. 4 and 5 of this privacy policy.

If, pursuant to Art. 6 para. 1 sentence 1 lit. a DSGVO have expressly consented, we will use your e-mail address to regularly send you our newsletter. For the receipt of the newsletter the indication of an E-Mail address is sufficient. The deregistration is possible at any time, for example via a link at the end of each newsletter. Alternatively, you can send your unsubscribe request at any time via email to info@naturea-heidelberg.de.

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who the request came from and to answer it. Further information can be provided voluntarily.

The data processing for the purpose of contacting us is in accordance with Art. 6 para. 1 p. 1 lit. A DSGVO on the basis of your voluntarily granted consent. The personal data collected by us for the use of the contact form will be automatically deleted after completion of the request made by you.

ii)

When contacting us, we will ask for personal information, such as: your name, address and address or contact details (telephone, fax, e-mail, etc.) in order to stay in contact with you. If you receive goods or services from us, we will provide the information necessary for the billing, such as Request order information, delivery address, payment mode. We use your data for the following purposes:

  • General communication,
  • performance of commissioned services,
  • delivery of commissioned products,
  • Transmission of information

Insofar as we process personal data on behalf of our customers, the "data protection agreement DSGVO order processing", separately agreed with the customer, shall apply in addition to this privacy policy.

We take reasonable and necessary measures to ensure the security of the information you provide. Data processing is thus carried out in accordance with Art. 6 para. 1 sentence 1 lit. A DSGVO on the basis of your voluntarily granted consent. You must ensure that the people whose information you provide agree to have their information made available to us.

Insofar as we are required by law to hold personal data (for example, according to § 132 Abs 1 BAO), we will keep the data collected for this period.

3. Disclosure of data

A transfer of your personal data to third parties for purposes other than those listed below does not take place. We only share your personal information with third parties if:

  • You your according to Art. 6 para. 1 p. 1 lit. a DSGVO have given express consent to this
  • in the event that disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c DSGVO a legal obligation exists, as well
  • as permitted by law and according to Art. 6 para. 1 sentence 1 lit. b DSGVO is required for the settlement of contractual relationships with you.

4. Cookies

We use cookies on our website. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your device, do not contain viruses, Trojans or other malicious software. In the cookie information is stored, each resulting in connection with the specific terminal used. However, this does not mean that we are immediately aware of your identity. On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our page.

In addition, to improve usability, we also use temporary cookies that are stored on your device for a specified period of time. If you visit our site again to take advantage of our services, it will automatically recognize that you have already been with us and what inputs and settings you have made, so you do not have to re-enter them.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer (see section 5). These cookies allow us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined time.

The data processed by cookies are for the purposes mentioned in order to safeguard our legitimate interests as well as third parties pursuant to Art. 6 para. 1 sentence 1 lit. f DSGVO required. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a note always appears before a new cookie is created. However, disabling cookies completely may mean that you can not use all features of our website.

5. Analysis tools

On our website, the following tracking measures may be based on Art. 6 para. 1 sentence 1 lit. f DSGVO. With the tracking measures used, we want to ensure that the design is tailored to needs and the ongoing optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as justified within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.

i) Google Analytics

For the purpose of the needs-based design and continuous optimization of our website, we may use Google Analytics, a web analytics service provided by Google Inc. (https://www.google.com/intl/en/about/) (1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereafter "Google"). In this context, pseudonymised usage profiles are created and cookies (see point 4) are used. The information generated by the cookie about your use of this website such as

  • browser type / version,
  • used operating system,
  • Referrer URL (the previously visited page),
  • host name of the accessing computer (IP address),

Time of the server request, are transferred to a Google server in the US and stored there. The information is used to evaluate the use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage for the purpose of market research and customization of these websites. This information may also be transferred to third parties if required by law or as far as third parties process this data in the order. In no case will your IP address be merged with other data provided by Google. The IP addresses are anonymized, so that an assignment is not possible (IP masking).

You can prevent the installation of cookies by setting the browser software accordingly; however, we point out that in this case not all features of this website may be fully exploited.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https: //tools.google.com/dlpage/gaoptout?hl=de).

As an alternative to the browser add-on, especially for browsers on mobile devices, you can prevent the collection by Google Analytics by clicking on this link. An opt-out cookie will be set which prevents the future collection of your data when you visit this website. The optout cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again. For more information about privacy related to Google Analytics, see the Google Analytics Help Center at https://support.google.com/analytics/answer/6004245?hl=en

ii) Google Adwords Conversion Tracking

To statistically record the use of our website and to evaluate it for the purpose of optimizing our website, we also use Google conversion tracking. In doing so, Google Adwords will set a cookie (see section 4) on your computer if you have reached our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. Each Adwords customer receives a different cookie. Cookies can not be tracked via the websites of Adwords customers. The information gathered using the conversion cookie is used to generate conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers hear the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive any information that personally identifies users.

If you do not want to participate in the tracking process, you can also refuse the required setting of a cookie - for example, via a browser setting that generally deactivates the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com". Google's Conversion Tracking Privacy Policy can be found at https://services.google.com/sitestats/en.html/sitestats.html.

iii) Piwik

This website uses Piwik, a web analytics service for the statistical analysis of visitor traffic. Piwik uses so-called "cookies", which are text files stored on your computer that allow us to analyze the use of the website. For this purpose, the usage information generated by the cookie (including your shortened IP address) is transmitted to our server and stored for usage analysis purposes, which helps us to optimize the website. Your IP address will be immediately anonymized during this process so that you remain anonymous to us as a user. The information generated by the cookie about your use of this website will not be disclosed to third parties. You may refuse the use of cookies by selecting the appropriate settings on your browser, however, if you do this you may not be able to use the full functionality of this website.

You have the ability to prevent any actions that you perform here being analyzed and linked. This will protect your privacy, but will also prevent the owner from learning from your actions and improving usability for you and other users.

Your visit to this website is currently covered by the Matomo web analytics. Deselect this checkbox for opt-out.

6. Social Media Plug-ins

We rely on our website on the basis of Art. 6 para. 1 sentence 1 lit. f DSGVO may use social plug-ins from social networks Facebook and Twitter to promote our business. The underlying commercial purpose is to be regarded as legitimate interest within the meaning of the GDPR. The responsibility for the operation compliant with data protection is to be guaranteed by their respective providers. The integration of these plug-ins by us is done by means of the so-called two-click method to protect visitors to our website in the best possible way.

i) Facebook

On our website social media plugins from Facebook may be used to personalize their use. For this we use the "LIKE" or "SHARE" button. This is an offer from Facebook. If you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and incorporated by this into the website. By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are currently not logged in to Facebook. This information (including your IP address) is transmitted from your browser directly to a Facebook server in the US and stored there. If you are logged in to Facebook, Facebook can directly assign the visit to our website to your Facebook account. If you interact with the plugins, for example, press the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information will also be posted on Facebook and displayed to your Facebook friends. Facebook may use this information for the purpose of advertising, market research and tailor-made Facebook pages. For this purpose, Facebook uses user, interest and relationship profiles, eg. For example, to evaluate your use of our website in relation to the advertisements displayed on Facebook, to inform other Facebook users about your activities on our website, and to provide other services related to the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting our website. The purpose and scope of the data collection and the further processing and use of data by Facebook, as well as your related rights and settings options for the protection of your privacy, please refer to the privacy policy at https://www.facebook.com/about/privacy/ from Facebook.

ii) Twitter

On our web pages plugins of the short message network of Twitter Inc. (Twitter) may be integrated. The Twitter plugins (tweet button) can be recognized by the Twitter logo on our site. An overview of tweet buttons can be found at https://about.twitter.com/resources/Buttons. When you visit a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet button" while logged in to your Twitter account, you can link the contents of our pages to your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We point out that we as the provider of the pages are not aware of the content of the transmitted data and their use by Twitter.

If you do not want Twitter to associate your visit to our pages, please log out of your Twitter account. For more information, see the Twitter Privacy Policy at https://twitter.com/privacy.

7. Other plugins

We rely on our website on the basis of Art. 6 para. 1 sentence 1 lit. f DSGVO may use various plugins to make our website more attractive to you. The underlying commercial purpose is to be regarded as legitimate interest within the meaning of the GDPR. The responsibility for the operation compliant with data protection is to be guaranteed by their respective providers.

i) Google Maps

Our website may use the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The use of Google Maps is for the sake of an appealing presentation of our online offers and an easy findability of the places we specify on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored by Google on servers in the United States. The provider of this page has no influence on this data transfer.

For more information about how to handle user information, please see the Google Privacy Policy at https://www.google.com/intl/en/policies/privacy/

ii) YouTube

Our website may use plugins from the Google-powered YouTube site. Site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. The use of YouTube is in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. When you visit any of our YouTube plug-in sites, you will be connected to the servers of YouTube. It tells the YouTube server which of our pages you've visited. If you are logged in to your YouTube account, YouTube will allow you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

For more information about how to handle user data, please refer to the YouTube Privacy Policy at https://www.google.com/intl/en/policies/privacy.

iii) Google Web Fonts

Our website may use the common look of fonts so-called web fonts provided by Google. When you call up a page, your browser loads the required web fonts into your browser cache to correctly display texts and fonts. To do this, the browser you use must connect to Google's servers. As a result, Google learns that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. If your browser does not support web fonts, a standard font will be used by your computer.

More information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's Privacy Policy: https://www.google.com/policies/privacy/

iiii) LinkedIn

Our website uses features of the LinkedIn network. Providers is LinkedIn Corporation, 2029 Stierlin Court, Moutain View, CA 94043, United States. Each time you visit one of our pages that contains LinkedIn features, it connects to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn's "Recommend Button" and are logged in to your LinkedIn account, LinkedIn will be able to associate your visit to our website with you and your user account. We point out that we as the provider of the pages have no knowledge of the content of the transmitted data and their use by LinkedIn. For more information, see the LinkedIn privacy statement at: http://www.linkedin.com/legal/privacy-policy

iiiii) Xing

Our website uses functions of the network XING. Provider is the XING AG, Dammtorstraße 29-32, D-20354 Hamburg. Each time you visit one of our sites that includes Xing features, it will connect to Xing servers. A storage of personal data is not done to our knowledge. In particular, no IP addresses are stored or the usage behavior is evaluated. For more information about privacy and the Xing Share button, see Xing's privacy policy at http://www.xing.com/app/share?op=data_protection

8. Newsletter

Possibly we offer to interested persons orally, in writing or via our website the receipt of a newsletter. If this is the case and you would like to receive this newsletter, we need an e-mail address from you, as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive the newsletter are. Further data are not collected or only on a voluntary basis. We use this data exclusively for the delivery of the requested information and do not pass it on to third parties. The processing of the data entered into the newsletter registration form takes place exclusively on the basis of your consent (Art. 6 (1) lit. DSGVO). You can revoke your consent to the storage of data, the e-mail address and its use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the already completed data processing operations remains unaffected by the revocation.

The data deposited with us for the purpose of obtaining the newsletter will be stored by us from the newsletter until your cancellation and will be deleted after cancellation of the newsletter. Data that has been stored for other purposes with us (such as e-mail addresses for the members area) remain unaffected.

9. Contact form

Due to legal regulations, our website contains information that enables us to contact our company quickly and to communicate with us directly. If an affected person contacts the controller by e-mail or via the contact form, the personal data provided by the data subject (name, e-mail) will be automatically saved. Such personal information provided on a voluntary basis by a data subject to the controller is stored for the purposes of processing or contacting the data subject. There is no disclosure of this personal data to third parties.

10. Login area

Our website contains a closed area that can only be reached with access data (username / password). You will receive these access data solely on the basis of an existing business relationship with NATUREA Heidelberg GmbH. There is no disclosure of this access data data to third parties.

11. Affected rights

You have the right:

  • - in accordance with Art. 15 DSGVO, to request information about your personal data processed by us. In particular, you may provide information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been disclosed, the planned retention period, the right of rectification, deletion, limitation of processing or opposition, the existence of a The right to complain, the source of their data, if not collected from us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details;
  • in accordance with Art. 16 DSGVO, immediately demand the correction of incorrect or completed personal data stored by us;
  • to demand, in accordance with Art. 17 DSGVO, the cancellation of your personal data held by us, unless the processing is for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of Legal claims is required;
  • to demand the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, as far as the accuracy of the data is disputed by you, the processing is unlawful, but you reject its deletion and we no longer need the data, but you assert this, Exercise or defense of legal claims or require
  • you filed an objection against the processing in accordance with Art. 21 GDPR; pursuant to Art. 20 GDPR to obtain your personal data provided to us in a structured, common and machine-readable format or to request transmission to another person responsible;
  • in accordance with Art. 7 (3) GDPR, to revoke your once given consent to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future, and
  • to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence.

12. Right to object

If your personal data are based on legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO are processed, you have the right to file an objection against the processing of your personal data in accordance with Art. 21 DSGVO, provided that there are reasons for this arising from your particular situation or the objection is directed against direct mail. In the latter case, you have a general right of objection, which is implemented by us without stating a particular situation. If you would like to exercise your right of revocation or objection, please send an e-mail to: info@naturea-heidelberg.de

13. Data security

Within a website visit, we use the widely used Secure Socket Layer (SSL) method in conjunction with the highest level of encryption supported by your browser. In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we'll use 128-bit v3 technology instead. Whether a single page of our website is encrypted is shown by the closed representation of the key or lock icon in the lower status bar of your browser.

Incidentally, we use (online and offline) appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

14. Opposition to advertising mails

The use of contact data published in the context of the imprint obligation for the purpose of sending unsolicited advertising and information materials is hereby rejected. NATUREA Heidelberg GmbH expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

15. Updating and changing this privacy policy

This privacy policy is currently valid and is valid as of May 2018.

Due to the further development of our website and offers or due to changed legal or regulatory requirements, it may be necessary to change this privacy policy. Therefore, we reserve the right to update this statement at any time. The current privacy policy can be viewed and printed by you at any time on the website: https://www.naturea-heidelberg.de

Privacy Policy

DATA PROTECTION
Responsible for the data processing is:
NATUREA Heidelberg GmbH
Mannheimer Str. 74
D-76676 Graben-Neudorf

E-Mail: info@naturea-heidelberg.de

We appreciate your interest in our website and our product. NATUREA Heidelberg GmbH ("we", "us" and "our") respect the privacy of our prospects, business partners and visitors to our website. That's why we developed this privacy policy. It describes how we collect, use, share, protect, store and transmit your personal information. Please take a moment to read and understand our privacy policy. If you have any questions, do not hesitate to ask us.

This Privacy Policy is based on the terminology used by the European Regulatory and Regulatory Authority in the adoption of the General Data Protection Regulation (GDPR). Unfortunately, these terms are often not easy to understand. Therefore, we would like to explain some explanatory terms in advance.

- natural person

A natural person is man as the bearer of rights and obligations.

- legal entity

In addition to natural persons, there is the so-called legal entity, often synonymous with companies or associations - if, for example, in a GmbH (limited liability company) the shareholder is not a natural person.

- affected person

An affected person within the meaning of the GDPR is any identified or identifiable natural person whose personal data are processed by the controller.

- Responsible (or controller)

The controller or controller is the natural or legal person, public authority, body or body that, alone or in concert with others, decides on the purposes and means of processing personal data.

- personal data

Personal data is any information that relates to an identified or identifiable natural person. These are all information that relates to an affected person.

A natural person is considered to be identifiable who, directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or one or more special features, expresses the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person can be identified.

- Processing

Processing is any process performed with or without the aid of automated procedures or any such process associated with personal information. This includes collecting, collecting, organizing, organizing, storing, adapting or modifying, reading out, querying, using, disclosing through transmission, dissemination or any other form of provisioning, reconciliation or linking, the restriction, deletion or destruction of personal data.

- Profiling

Profiling is any kind of automated processing of personal data to evaluate certain personal aspects that relate to a natural person. Particular attention is paid to analyzing or predicting aspects of job performance, economic condition, health, personal preferences, interests, reliability, behavior, whereabouts, or relocation of that natural person.

- Pseudonymization

Pseudonymisation is the processing of personal data in a way in which the personal data can no longer be assigned to a specific data subject without the need for additional information.

This requires that such additional information be kept separate and be subject to technical and organizational measures to ensure that the personal data can not be assigned to an identified or identifiable natural person.

- processor

A processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

- Receiver

A Recipient is a natural or legal person, agency, agency or other entity to whom Personal Information is disclosed. This is independent of whether it is a third party or not. However, authorities which may receive personal data under Union or national law in connection with a particular mission are not considered to be beneficiaries.

- Third party (or third party)

A third party is a natural or legal person, public authority, body or body other than the data subject, the controller, the processor and the persons empowered under the direct responsibility of the controller or processor to process the personal data.

- Consent

Consent is any act of volition voluntarily given by the data subject in an informed and unambiguous manner in the form of a statement or other unambiguous confirmatory act by the data subject to indicate to the data subject that they are processing personal data concerning them agrees.

We hope that we hereby understandably understood the terms of this Privacy Policy that require clarification. If you have further questions, do not hesitate to ask us - we are happy to help.

0. Preamble

If you work with us or use our website, various personal information will be collected. The processing of personal data in our company is always in accordance with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to NATUREA Heidelberg GmbH.

NATUREA Heidelberg GmbH, as controller, has implemented numerous technical and organizational measures to ensure the most complete protection of personal data. This both within the IT infrastructure of our company and on our website. However, no security measure is perfect and no product, service, website, data transfer, computer system or network connection is completely secure. In particular, Internet-based data transmissions can in principle have security gaps so that absolute protection can not be guaranteed. For this reason, any data subject is free to provide us with personal information by alternative means (such as by mail or telephone).

1. Name and address of the controller

The person responsible within the meaning of the General Data Protection Regulation, other data protection laws in the Member States of the European Union and other provisions with a data protection character is:


NATUREA Heidelberg GmbH
Mannheimer Str. 74
D-76676 Graben-Neudorf
Telephone: +49 (0) 7255 396 78 54
Fax: +49 (0) 7255 396 78 56
E-Mail: info@naturea-heidelberg.de
Website: https://www.naturea-heidelberg.de

Further information can be found in the imprint of our website.

2. Collection and storage of personal data as well as the nature and purpose of their use

In general, the principle applies to us: Unless there is a legal basis for the processing of personal data, the consent of the person concerned must generally be obtained. Depending on the nature of the relationship between the prospect, business partner or visitor to our website, different personal data will be processed:

i)

When visiting our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automated deletion:

  • IP address of the requesting computer,
  • date and time of access,
  • name and URL of the retrieved file,
  • website from which access is made (referrer URL),
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider.
The data mentioned are processed by us for the following purposes:
  • ensuring a smooth connection of the website,
  • ensuring comfortable use of our website,
  • Evaluation of system security and stability as well
  • for further administrative purposes.

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f DSGVO. Our legitimate interest follows from the data collection purposes listed above. In no case we use the collected data for the purpose of drawing conclusions about you.

In addition, we use cookies and analysis services when visiting our website. Further details can be found under no. 4 and 5 of this privacy policy.

If, pursuant to Art. 6 para. 1 sentence 1 lit. a DSGVO have expressly consented, we will use your e-mail address to regularly send you our newsletter. For the receipt of the newsletter the indication of an E-Mail address is sufficient. The deregistration is possible at any time, for example via a link at the end of each newsletter. Alternatively, you can send your unsubscribe request at any time via email to info@naturea-heidelberg.de.

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who the request came from and to answer it. Further information can be provided voluntarily.

The data processing for the purpose of contacting us is in accordance with Art. 6 para. 1 p. 1 lit. A DSGVO on the basis of your voluntarily granted consent. The personal data collected by us for the use of the contact form will be automatically deleted after completion of the request made by you.

ii)

When contacting us, we will ask for personal information, such as: your name, address and address or contact details (telephone, fax, e-mail, etc.) in order to stay in contact with you. If you receive goods or services from us, we will provide the information necessary for the billing, such as Request order information, delivery address, payment mode. We use your data for the following purposes:

  • General communication,
  • performance of commissioned services,
  • delivery of commissioned products,
  • Transmission of information

Insofar as we process personal data on behalf of our customers, the "data protection agreement DSGVO order processing", separately agreed with the customer, shall apply in addition to this privacy policy.

We take reasonable and necessary measures to ensure the security of the information you provide. Data processing is thus carried out in accordance with Art. 6 para. 1 sentence 1 lit. A DSGVO on the basis of your voluntarily granted consent. You must ensure that the people whose information you provide agree to have their information made available to us.

Insofar as we are required by law to hold personal data (for example, according to § 132 Abs 1 BAO), we will keep the data collected for this period.

3. Disclosure of data

A transfer of your personal data to third parties for purposes other than those listed below does not take place. We only share your personal information with third parties if:

  • You your according to Art. 6 para. 1 p. 1 lit. a DSGVO have given express consent to this
  • in the event that disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c DSGVO a legal obligation exists, as well
  • as permitted by law and according to Art. 6 para. 1 sentence 1 lit. b DSGVO is required for the settlement of contractual relationships with you.

4. Cookies

We use cookies on our website. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not damage your device, do not contain viruses, Trojans or other malicious software. In the cookie information is stored, each resulting in connection with the specific terminal used. However, this does not mean that we are immediately aware of your identity. On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after leaving our page.

In addition, to improve usability, we also use temporary cookies that are stored on your device for a specified period of time. If you visit our site again to take advantage of our services, it will automatically recognize that you have already been with us and what inputs and settings you have made, so you do not have to re-enter them.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer (see section 5). These cookies allow us to automatically recognize when you visit our site again that you have already been with us. These cookies are automatically deleted after a defined time.

The data processed by cookies are for the purposes mentioned in order to safeguard our legitimate interests as well as third parties pursuant to Art. 6 para. 1 sentence 1 lit. f DSGVO required. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a note always appears before a new cookie is created. However, disabling cookies completely may mean that you can not use all features of our website.

5. Analysis tools

On our website, the following tracking measures may be based on Art. 6 para. 1 sentence 1 lit. f DSGVO. With the tracking measures used, we want to ensure that the design is tailored to needs and the ongoing optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as justified within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.

i) Google Analytics

For the purpose of the needs-based design and continuous optimization of our website, we may use Google Analytics, a web analytics service provided by Google Inc. (https://www.google.com/intl/en/about/) (1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereafter "Google"). In this context, pseudonymised usage profiles are created and cookies (see point 4) are used. The information generated by the cookie about your use of this website such as

  • browser type / version,
  • used operating system,
  • Referrer URL (the previously visited page),
  • host name of the accessing computer (IP address),

Time of the server request, are transferred to a Google server in the US and stored there. The information is used to evaluate the use of the website, to compile reports on website activity, and to provide other services related to website activity and internet usage for the purpose of market research and customization of these websites. This information may also be transferred to third parties if required by law or as far as third parties process this data in the order. In no case will your IP address be merged with other data provided by Google. The IP addresses are anonymized, so that an assignment is not possible (IP masking).

You can prevent the installation of cookies by setting the browser software accordingly; however, we point out that in this case not all features of this website may be fully exploited.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https: //tools.google.com/dlpage/gaoptout?hl=de).

As an alternative to the browser add-on, especially for browsers on mobile devices, you can prevent the collection by Google Analytics by clicking on this link. An opt-out cookie will be set which prevents the future collection of your data when you visit this website. The optout cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again. For more information about privacy related to Google Analytics, see the Google Analytics Help Center at https://support.google.com/analytics/answer/6004245?hl=en

ii) Google Adwords Conversion Tracking

To statistically record the use of our website and to evaluate it for the purpose of optimizing our website, we also use Google conversion tracking. In doing so, Google Adwords will set a cookie (see section 4) on your computer if you have reached our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. Each Adwords customer receives a different cookie. Cookies can not be tracked via the websites of Adwords customers. The information gathered using the conversion cookie is used to generate conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers hear the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive any information that personally identifies users.

If you do not want to participate in the tracking process, you can also refuse the required setting of a cookie - for example, via a browser setting that generally deactivates the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com". Google's Conversion Tracking Privacy Policy can be found at https://services.google.com/sitestats/en.html/sitestats.html.

iii) Piwik

This website uses Piwik, a web analytics service for the statistical analysis of visitor traffic. Piwik uses so-called "cookies", which are text files stored on your computer that allow us to analyze the use of the website. For this purpose, the usage information generated by the cookie (including your shortened IP address) is transmitted to our server and stored for usage analysis purposes, which helps us to optimize the website. Your IP address will be immediately anonymized during this process so that you remain anonymous to us as a user. The information generated by the cookie about your use of this website will not be disclosed to third parties. You may refuse the use of cookies by selecting the appropriate settings on your browser, however, if you do this you may not be able to use the full functionality of this website.

You have the ability to prevent any actions that you perform here being analyzed and linked. This will protect your privacy, but will also prevent the owner from learning from your actions and improving usability for you and other users.

Your visit to this website is currently covered by the Matomo web analytics. Deselect this checkbox for opt-out.

6. Social Media Plug-ins

We rely on our website on the basis of Art. 6 para. 1 sentence 1 lit. f DSGVO may use social plug-ins from social networks Facebook and Twitter to promote our business. The underlying commercial purpose is to be regarded as legitimate interest within the meaning of the GDPR. The responsibility for the operation compliant with data protection is to be guaranteed by their respective providers. The integration of these plug-ins by us is done by means of the so-called two-click method to protect visitors to our website in the best possible way.

i) Facebook

On our website social media plugins from Facebook may be used to personalize their use. For this we use the "LIKE" or "SHARE" button. This is an offer from Facebook. If you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and incorporated by this into the website. By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are currently not logged in to Facebook. This information (including your IP address) is transmitted from your browser directly to a Facebook server in the US and stored there. If you are logged in to Facebook, Facebook can directly assign the visit to our website to your Facebook account. If you interact with the plugins, for example, press the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information will also be posted on Facebook and displayed to your Facebook friends. Facebook may use this information for the purpose of advertising, market research and tailor-made Facebook pages. For this purpose, Facebook uses user, interest and relationship profiles, eg. For example, to evaluate your use of our website in relation to the advertisements displayed on Facebook, to inform other Facebook users about your activities on our website, and to provide other services related to the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting our website. The purpose and scope of the data collection and the further processing and use of data by Facebook, as well as your related rights and settings options for the protection of your privacy, please refer to the privacy policy at https://www.facebook.com/about/privacy/ from Facebook.

ii) Twitter

On our web pages plugins of the short message network of Twitter Inc. (Twitter) may be integrated. The Twitter plugins (tweet button) can be recognized by the Twitter logo on our site. An overview of tweet buttons can be found at https://about.twitter.com/resources/Buttons. When you visit a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet button" while logged in to your Twitter account, you can link the contents of our pages to your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We point out that we as the provider of the pages are not aware of the content of the transmitted data and their use by Twitter.

If you do not want Twitter to associate your visit to our pages, please log out of your Twitter account. For more information, see the Twitter Privacy Policy at https://twitter.com/privacy.

7. Other plugins

We rely on our website on the basis of Art. 6 para. 1 sentence 1 lit. f DSGVO may use various plugins to make our website more attractive to you. The underlying commercial purpose is to be regarded as legitimate interest within the meaning of the GDPR. The responsibility for the operation compliant with data protection is to be guaranteed by their respective providers.

i) Google Maps

Our website may use the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The use of Google Maps is for the sake of an appealing presentation of our online offers and an easy findability of the places we specify on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored by Google on servers in the United States. The provider of this page has no influence on this data transfer.

For more information about how to handle user information, please see the Google Privacy Policy at https://www.google.com/intl/en/policies/privacy/

ii) YouTube

Our website may use plugins from the Google-powered YouTube site. Site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. The use of YouTube is in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. When you visit any of our YouTube plug-in sites, you will be connected to the servers of YouTube. It tells the YouTube server which of our pages you've visited. If you are logged in to your YouTube account, YouTube will allow you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

For more information about how to handle user data, please refer to the YouTube Privacy Policy at https://www.google.com/intl/en/policies/privacy.

iii) Google Web Fonts

Our website may use the common look of fonts so-called web fonts provided by Google. When you call up a page, your browser loads the required web fonts into your browser cache to correctly display texts and fonts. To do this, the browser you use must connect to Google's servers. As a result, Google learns that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. If your browser does not support web fonts, a standard font will be used by your computer.

More information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's Privacy Policy: https://www.google.com/policies/privacy/

iiii) LinkedIn

Our website uses features of the LinkedIn network. Providers is LinkedIn Corporation, 2029 Stierlin Court, Moutain View, CA 94043, United States. Each time you visit one of our pages that contains LinkedIn features, it connects to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn's "Recommend Button" and are logged in to your LinkedIn account, LinkedIn will be able to associate your visit to our website with you and your user account. We point out that we as the provider of the pages have no knowledge of the content of the transmitted data and their use by LinkedIn. For more information, see the LinkedIn privacy statement at: http://www.linkedin.com/legal/privacy-policy

iiiii) Xing

Our website uses functions of the network XING. Provider is the XING AG, Dammtorstraße 29-32, D-20354 Hamburg. Each time you visit one of our sites that includes Xing features, it will connect to Xing servers. A storage of personal data is not done to our knowledge. In particular, no IP addresses are stored or the usage behavior is evaluated. For more information about privacy and the Xing Share button, see Xing's privacy policy at http://www.xing.com/app/share?op=data_protection

8. Newsletter

Possibly we offer to interested persons orally, in writing or via our website the receipt of a newsletter. If this is the case and you would like to receive this newsletter, we need an e-mail address from you, as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive the newsletter are. Further data are not collected or only on a voluntary basis. We use this data exclusively for the delivery of the requested information and do not pass it on to third parties. The processing of the data entered into the newsletter registration form takes place exclusively on the basis of your consent (Art. 6 (1) lit. DSGVO). You can revoke your consent to the storage of data, the e-mail address and its use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the already completed data processing operations remains unaffected by the revocation.

The data deposited with us for the purpose of obtaining the newsletter will be stored by us from the newsletter until your cancellation and will be deleted after cancellation of the newsletter. Data that has been stored for other purposes with us (such as e-mail addresses for the members area) remain unaffected.

9. Contact form

Due to legal regulations, our website contains information that enables us to contact our company quickly and to communicate with us directly. If an affected person contacts the controller by e-mail or via the contact form, the personal data provided by the data subject (name, e-mail) will be automatically saved. Such personal information provided on a voluntary basis by a data subject to the controller is stored for the purposes of processing or contacting the data subject. There is no disclosure of this personal data to third parties.

10. Login area

Our website contains a closed area that can only be reached with access data (username / password). You will receive these access data solely on the basis of an existing business relationship with NATUREA Heidelberg GmbH. There is no disclosure of this access data data to third parties.

11. Affected rights

You have the right:

  • - in accordance with Art. 15 DSGVO, to request information about your personal data processed by us. In particular, you may provide information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been disclosed, the planned retention period, the right of rectification, deletion, limitation of processing or opposition, the existence of a The right to complain, the source of their data, if not collected from us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details;
  • in accordance with Art. 16 DSGVO, immediately demand the correction of incorrect or completed personal data stored by us;
  • to demand, in accordance with Art. 17 DSGVO, the cancellation of your personal data held by us, unless the processing is for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of Legal claims is required;
  • to demand the restriction of the processing of your personal data in accordance with Art. 18 DSGVO, as far as the accuracy of the data is disputed by you, the processing is unlawful, but you reject its deletion and we no longer need the data, but you assert this, Exercise or defense of legal claims or require
  • you filed an objection against the processing in accordance with Art. 21 GDPR; pursuant to Art. 20 GDPR to obtain your personal data provided to us in a structured, common and machine-readable format or to request transmission to another person responsible;
  • in accordance with Art. 7 (3) GDPR, to revoke your once given consent to us at any time. As a result, we are no longer allowed to continue the data processing based on this consent for the future, and
  • to complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence.

12. Right to object

If your personal data are based on legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO are processed, you have the right to file an objection against the processing of your personal data in accordance with Art. 21 DSGVO, provided that there are reasons for this arising from your particular situation or the objection is directed against direct mail. In the latter case, you have a general right of objection, which is implemented by us without stating a particular situation. If you would like to exercise your right of revocation or objection, please send an e-mail to: info@naturea-heidelberg.de

13. Data security

Within a website visit, we use the widely used Secure Socket Layer (SSL) method in conjunction with the highest level of encryption supported by your browser. In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we'll use 128-bit v3 technology instead. Whether a single page of our website is encrypted is shown by the closed representation of the key or lock icon in the lower status bar of your browser.

Incidentally, we use (online and offline) appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

14. Opposition to advertising mails

The use of contact data published in the context of the imprint obligation for the purpose of sending unsolicited advertising and information materials is hereby rejected. NATUREA Heidelberg GmbH expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.

15. Updating and changing this privacy policy

This privacy policy is currently valid and is valid as of May 2018.

Due to the further development of our website and offers or due to changed legal or regulatory requirements, it may be necessary to change this privacy policy. Therefore, we reserve the right to update this statement at any time. The current privacy policy can be viewed and printed by you at any time on the website: https://www.naturea-heidelberg.de