Privacy policy

You are here:
  1. Home
  2. Privacy policy

Privacy policy

The protection of your data when you visit our website is very important to us. In the following, we will inform you which data is collected during your visit and how it is used. You will also receive information about your rights with regard to the use of your data.

For security reasons, our website is equipped with SSL/TLS encryption. You can recognize this by the small lock icon in the top left of your browser’s address bar. This encryption prevents data that you transmit to us from being read by third parties. Our security measures are also continuously improved in line with technological developments.

  1. Controller within the meaning of data protection law and data protection officer

Responsible acc. Art. 4 para. 7 of the EU General Data Protection Regulation (GDPR):

CALORPLAST Wärmetechnik GmbH

Siempelkampstrasse 94

47803 Krefeld

E-mail: info@calorplast.de

CALORPLAST Wärmetechnik GmbH is represented by the managing director Dirk Kullwitz

You can contact our data protection officer at info@calorplast.de or at our postal address with the addition “the data protection officer”.

  1. What is personal data?

Personal data is information that can be assigned to your person. This includes, for example, details such as name, address, e-mail address and telephone number.

  1. Data collection when visiting our website

(1) When using the website for information purposes only, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security (legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR):

  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and its interface
  • Language and version of the browser software.

The data listed above will be stored for a maximum of 7 days for security reasons (e.g. to investigate misuse or fraud) and then deleted.

(2) In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk assigned to the browser you are using and through which certain information flows to the body that sets the cookie (in this case us). Cookies cannot run programs or transfer viruses to your computer. They serve to make the website more user-friendly and effective overall (legal basis is also Art. 6 para. 1 sentence 1 lit. f GDPR).

(3) Use of cookies:

  1. a) This website uses the following types of cookies, the scope and function of which are explained below:
  • Transient cookies (see b)
  • Persistent cookies (see c).
  1. b) Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
  2. c) Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
  3. d) Cookies that are not absolutely technically necessary for the operation of our website (such as those in connection with external media or statistics) are only used when using the website with your consent (which can be revoked at any time). The legal basis in this respect is Art. 6 para. 1 p. 1 lit. a GDPR and § 25 para. 1 TTDSG. We obtain your consent by using a so-called Consent Manager. This is a tool through which you can give your consent to the use of certain cookies and manage and revoke them there. The consent you have given is stored there so that you do not have to give it again when you visit our website at a later date. In addition, we can prove that you have given your consent by storing it. We use the Consent Manager “Borlabs Cookie”. The storage takes place via an opt-in cookie in order to be able to assign the consent to a user or their device. The following information is stored in the cookie: runtime, cookie version, domain and path of the WordPress website, consent and a randomly generated user ID (this does not contain any personal information). The Consent Manager is hosted locally on our server; no data is passed on to the provider of Borlabs Cookie.
  4. e) You can revoke your consent via the Consent Manager. In addition, you can also revoke your consent by making the appropriate browser settings, e.g. by refusing to accept third-party cookies or all cookies. We would like to point out that in this case you may not be able to use all the functions of this website. For the rest, we refer you to Section 10 of this Privacy Policy regarding the withdrawal of your consent.
  5. f) Without your consent, we will only use cookies that are absolutely technically necessary for the operation of our website (essential cookies). The legal basis in this case is Art. 6 para. 1 p. 1 lit. f GDPR.
  1. Webhosting

(1) For the purpose of secure and efficient provision of our website, we use the services of a web hosting provider from whose server the website can be accessed. For this purpose, certain data, in particular the data listed above under para. 3. para. 1, from our hosting provider. The legal basis for this is Art. 6 para. 1 p. 1 lit. f GDPR. If data is collected with your consent, the processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG.

(2) The web hosting provider is ALL-INKL.COM – Neue Medien Münnich,

Owner René Münnich, Hauptstraße 68 02742 Friedersdorf. Further information on the purpose and scope of data collection and its processing by the web hosting provider can be found in the provider’s privacy policy at https://all-inkl.com/datenschutzinformationen

  1. Data collection when using the contact form/inquiry form or when contacting us by e-mail

(1) When you contact us via the contact form/enquiry form provided on our website or by e-mail, the data you provide (usually at least your name and e-mail address) will be stored by us in order to answer your questions. Insofar as you wish to work towards the conclusion of a contract with your message, the legal basis is Art. 6 para. 1 lit. b) GDPR. Otherwise, the legal basis for the processing of the data you provide is Art. 6 para. 1 lit. f) GDPR.

(2) We delete the data arising in this context after storage is no longer required, or restrict processing if statutory retention obligations exist.

  1. Integration of Google Analytics

(1) On this website, we use Google Analytics, a web analysis service of the third-party provider Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), to analyze and regularly improve the use of our website. By using Google Analytics, we receive various usage data, such as information on page views, length of visit and the origin of the user. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

(2) As part of the use of Google Analytics, your IP address is initially collected and stored. However, we have activated IP anonymization for storage and further processing. As a result, a so-called IP masking procedure is used by Google, i.e. your IP address is pseudonymized by shortening it before it is transmitted to a Google server in the USA. Only in exceptional cases will the

full IP address to a Google server in the USA and shortened there. As a matter of principle, therefore, no clear data about you is stored as part of the web analysis, but pseudonyms. Accordingly, only pseudonymous user profiles are created. The transmitted IP address will not be merged with other Google data. The data transmitted to Google accordingly is processed by Google in order to provide us with the commissioned web analysis services.

(3) When using Google Analytics, we have also activated the “Google signals” function. According to Google’s definition, Google signals are session data from websites and apps that Google links to users who are logged into their Google account and have activated personalized advertising. This means that the usage data collected through the use of Google Analytics (see paragraph 1 above) is linked to Google information from accounts of registered users of the Google account and used for personalized advertising, provided that the respective owner of the Google account has consented to this linking for the purpose of ad personalization.

(4) You have the option of preventing the collection and processing of your data by Google by downloading and installing the Google browser plug-in available at the following link:

https://tools.google.com/dlpage/gaoptout?hl=de

(5) Google Analytics is only used when you visit our website with your express consent. The legal basis for the use of Google Analytics is Art. 6 para. 1 p. 1 lit. a GDPR and § 25 para. 1 TTDSG. Insofar as personal data is transferred to a Google server in the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Google is certified in accordance with the EU-US Data Privacy Framework (DPF). This is an agreement on data exchange between the European Union and the United States, which is intended to ensure compliance with European data protection standards for data processing in the USA. Through certification, Google has undertaken to comply with these data protection standards. You can find more information on this and on data transfer to third countries in general at: https://business.safety.google/adscontrollerterms/sccs/c2c/ and https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TXVKAA4&status=Active and https://commission.europa.eu/law/law-topic/data-protection/international-d imension-data-protection_en?prefLang=de

(6) Further information on the purpose and scope of data collection and its processing by Google can be found in their privacy policy at http://www.google.de/intl/de/policies/privacy and at https://support.google.com/analytics/answer/6004245?hl=de. There you will also find further information on your rights in this regard and setting options to protect your privacy:

Data processing agreement: https://business.safety.google/adsprocessorterms;

  1. Use of the Google Tag Manager

(1) On this website, we use the Google Tag Manager of the third-party provider Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). This is a tag management system (TMS) that simplifies the implementation of tools such as Google Analytics for us. The Google Tag Manager is only used by us for the corresponding implementation. The Google Tag Manager itself does not carry out any independent analyses and does not create any user profiles. Nevertheless, Google Tag Manager records your IP address, which may also be transmitted to a Google server in the USA.

(2) We use Google Tag Manager to implement tools more quickly and easily on our website, which also constitutes our legitimate interest. The legal basis for the use of Google Tag Manager is Art. 6 para. 1 p. 1 lit. f GDPR. Insofar as personal data is transferred to a Google server in the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Google is certified in accordance with the EU-US Data Privacy Framework (DPF). This is an agreement on data exchange between the European Union and the United States, which is intended to ensure compliance with European data protection standards for data processing in the USA. Through certification, Google has undertaken to comply with these data protection standards. You can find more information on this and on data transfer to third countries in general at: https://business.safety.google/adscontrollerterms/sccs/c2c/ and https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000TXVKAA4&status=Active and https://commission.europa.eu/law/law-topic/data-protection/international-d imension-data-protection_en?prefLang=de

(3) Further information on the purpose and scope of data collection and its processing by Google can be found in their privacy policy. There you will also find further information on your rights in this regard and setting options to protect your privacy: http://www.google.de/intl/de/policies/privacy

  1. Sign up for our newsletter

(1) If you subscribe to our company’s newsletter, the data in the respective input mask will be transmitted to the controller.
Subscription to our newsletter takes place in a so-called double opt-in procedure.
This means that after registering, you will receive an email asking you to confirm your registration.
This confirmation is necessary so that no-one can register with other people’s email addresses.
When registering for the newsletter, the user’s IP address and the date and time of registration are stored.
This serves to prevent misuse of the services or the e-mail address of the person concerned.
The data is not passed on to third parties.
An exception is made if there is a legal obligation to pass on the data.
The data is used exclusively for sending the newsletter.
Subscription to the newsletter can be terminated by the data subject at any time.
Consent to the storage of personal data can also be revoked at any time.
There is a corresponding link for this purpose in every newsletter.
The legal basis for the processing of data after the user has subscribed to the newsletter is Art. 6 para. 1 lit. a) GDPR.
The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 para.
3 UWG.

(2) We use rapidmail to send newsletters.
The provider is rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg, Germany.
Among other things, rapidmail is used to organize and analyse the sending of newsletters.
The data you enter for the purpose of subscribing to the newsletter is stored on rapidmail’s servers in Germany.
If you do not wish to be analyzed by rapidmail, you must unsubscribe from the newsletter.
For this purpose, we provide a corresponding link in every newsletter message.
For the purpose of analysis, the emails sent with rapidmail contain a so-called tracking pixel, which connects to the rapidmail servers when the email is opened.
In this way, it can be determined whether a newsletter message has been opened.
We can also use rapidmail to determine whether and which links in the newsletter message have been clicked on.
Optionally, links in the email can be set as tracking links, with which your clicks can be counted.

Legal basis: The legal basis for data processing is Art. 6 para. 1 lit. a) GDPR.

Recipient: The recipient of the data is rapidmail GmbH.

Transfer to third countries: Data is not transferred to third countries.

Duration: The data stored by us as part of your consent for the purpose of the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from both our servers and the servers of rapidmail after you unsubscribe from the newsletter.
Data stored by us for other purposes (e.g. e-mail addresses for the member area) remain unaffected by this.

Revocation option: You have the option to revoke your consent to data processing at any time with effect for the future.
The legality of the data processing operations that have already taken place remains unaffected by the revocation.

Further data protection information: For more information, please refer to rapidmail’s data security information at: https://www.rapidmail.de/datensicherheit. For more information on the analysis functions of rapidmail, please see the following link: https://www.rapidmail.de/wissen-und-hilfe

  1. Your rights

(1) Right to information: You have the right to receive information from us at any time upon request about the personal data processed by us concerning you within the scope of Art. 15 GDPR. To do so, you can send an application by post or by e-mail to the address given under point. 1. specified address.

(2) Right to rectification of inaccurate data: You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. Please use the contact addresses listed below.

(3) Right to erasure: You have the right to obtain from us the erasure of personal data concerning you under the conditions described in Art. 17 GDPR. In particular, these conditions provide for a right to erasure if the personal data are no longer necessary for the purposes for which they were collected or otherwise processed, as well as in cases of unlawful processing, the existence of an objection or the existence of an obligation to erase under Union law or the law of the Member State to which we are subject. In order to assert your right to erasure, please contact the contact details provided under point. 1. given contact addresses.

(4) Right to restriction of processing: You have the right to demand that we restrict processing in accordance with Art. 18 GDPR. This right exists in particular if the accuracy of the personal data is disputed between the user and us, for the period required to verify the accuracy, as well as in the event that the user requests restricted processing instead of deletion in the case of an existing right to deletion; furthermore, in the event that the data is no longer required for the purposes pursued by us, but the user needs it to assert, exercise or defend legal claims, as well as if the successful exercise of an objection between us and the user is still disputed. To exercise your right to restriction of processing, please contact us at the addresses below.

(5) Right to data portability: You have the right to receive from us the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format in accordance with Art. 20 GDPR. To assert your right to data portability, please contact us at the addresses given below.

(6) Right to lodge a complaint: You also have the right to lodge a complaint with a supervisory authority.

  1. Objection or revocation against the processing of your data

(1) If you have given your consent to the processing of your data, you can revoke this at any time. Such a revocation affects the permissibility of the processing of your personal data after you have declared it to us.

(2) Insofar as we base the processing of your personal data on the balancing of interests, you can object to the processing. This is the case if the processing is not necessary in particular for the performance of a contract with you. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either discontinue or adapt the data processing or point out to you our compelling reasons worthy of protection on the basis of which we will continue the processing.

(3) Please send both your revocation and your objection by post or by e-mail to the address given under para. 1. address given.

  1. Storage duration

Unless this privacy policy contains more specific information on the storage period, we store your personal data until the purpose for data processing no longer applies. If you request the deletion of your data (Section 9 (3)) or revoke your consent to data processing (Section 10 (1)), your personal data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law). In the latter case, we will delete the corresponding data after these reasons no longer apply.

  1. Changes to the privacy policy

Due to the further development of our website or due to changes in legal or official requirements, it may become necessary to amend this privacy policy. You can access the current privacy policy at any time on our website.