Data protection
5-2018

Privacy Policy of MIWE Michael Wenz GmbH

Welcome to our website. Thank you for your interest in our company. We take protecting your personal data very seriously. We process your data in accordance with the applicable legal regulations on the protection of personal data, in particular the EU General Data Protection Regulation (GDPR) and the national implementation laws applicable to us. In this privacy policy we provide you with comprehensive information about the processing of your personal data by MIWE Michael Wenz GmbH and the rights to which you are entitled.

Personal data is defined as information that facilitates identification of natural persons. In particular, this includes your name, date of birth, address, telephone number, e-mail address as well as your IP address. 

Data is deemed to be anonymous if no personal link to the user can be established.

Controller and data protection

MIWE Michael Wenz GmbH Michael-Wenz-Straße 2-10 97450 Arnstein +49 9363 68-0 Contact Data Protection: e-mail: cntctmwd

Your rights as a data subject

First, we would like to inform you of your rights as a data subject. These rights are codified in Art. 15 - 22 of the GDPR. These include:

  • The right to information (Art. 15 GDPR),
  • The right to erasure (Art. 17 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to a restriction of processing (Art. 18 GDPR),
  • The right to object to processing (Art. 21 GDPR).

To assert these rights, please contact us at: cntctmwd. The same applies if you have questions about data processing at our company or would like to withdraw any consent you have given. You also have the right to lodge a complaint with a data protection authority.

Rights to objection

Please note the following in connection with your right of objection: If we process your personal data for direct advertising, you have the right to object to this data processing at any time without stating reasons. If you object to processing for the purpose of direct advertising, we shall no longer process your personal data for these purposes. Objections are free of charge and can be made informally, ideally by e-mail to: cntctmwd. If we process your data to protect legitimate interests, you can object to this processing at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. We will then no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. 

Purpose and legal basis for data processing

The provisions of the GDPR and all other relevant legal regulations are always observed when processing your personal data. The legal basis for data processing is derived in particular from Art. 6 GDPR. We use your data to make business contacts, to fulfil contractual and legal obligations, to implement contractual relationships, to offer products and services and to enhance customer relationships, which can also include analyses for marketing purposes and direct advertising. Your consent to data processing can also represent an authorising provision under data protection law. Prior to any consent, we will inform you about the purpose of the data processing and about your right of withdrawal. 

Forwarding to third parties

We will only share your data with third parties within the framework of applicable laws and regulations or with appropriate consent. Otherwise, data will not be shared with third parties unless we are obliged to do so by mandatory legal provisions (transfer to external bodies such as supervisory authorities or law enforcement authorities). 

We pass on contact data sent to us via forms on the MIWE website for specific purposes to affiliated companies to process and respond to your inquiry. This refers to the responsible MIWE subsidiary or the responsible retailer/service provider, which may be in a third country depending on the responsibility.

Recipients of data / Categories of recipients

In our company, we ensure that only those individuals receive your data who need this data to fulfil our contractual and legal obligations.In many cases, service providers support our operational departments in fulfilling their tasks. Necessary data protection agreements have been concluded with all service providers. 

Transfer to third countries / Intent to transfer data to third countries

Data is only transferred to third countries (outside the European Union or the European Economic Area) where this is required to implement a contractual obligation, legally mandated or you have consented to it. 

We pass on contact data sent to us via forms on the MIWE website for specific purposes to affiliated companies to process and respond to your inquiry. This refers to the responsible MIWE subsidiary or the responsible retailer/service provider, which may be in a third country depending on the responsibility.

Duration of data storage

We save your data for as long as it is required for the respective processing purpose. Please note that numerous archival periods require that data (must) be stored further. This includes in particular commercial or taxation law archival periods (e.g. German Commercial Code, German Fiscal Code, etc.). If there are no further archival requirements, the data is deleted routinely after the purpose is achieved. 

In addition, we can store data if you have consented to this or if legal disputes occur and we use evidence within the scope of legal statutes of limitations, which can be up to thirty years; the standard statute of limitations is three years.

Secure transfer of your data

We have taken appropriate technical and organisational security measures to protect the data we store from accidental or intentional manipulation, loss, destruction or access by unauthorised parties. Security levels are constantly monitored in cooperation with security experts and adjusted for compliance with new security standards.

All incoming and outgoing data sharing on our website is encrypted. We offer HTTPS as a transfer protocol for our website, using the latest encryption protocols. Alternative communication methods, e.g. post, can also be used.

Obligation to provide data

Various personal data is necessary for the establishment, performance and termination of the contractual relationship and the fulfilment of the associated contractual and legal obligations. The same applies for the use of our website and the various functions it provides. 

We summarised details about this in the point above. In certain cases, data must be collected or provided due to legal requirements. Please note that we cannot process your inquiry or complete the underlying contractual obligation without provision of this data.

Categories, sources and origin of data

The data we process is determined by the context in question: for example, it depends on whether you place an order online or enter an inquiry in our contact form, or send us an application or submit a complaint. 

Please note that we may also provide information separately in suitable locations for specific processing situations, e.g. when uploading application documents or making contact requests. 

All data is anonymised immediately. Complete personal data is never saved, neither on our web server nor via Google Analytics.

Automated individual decision-making

We do not use purely automated processing operations for decision-making purposes.

Links to other providers

Our website also contains clearly identifiable links to the websites of other companies. We have no control over the content of these websites. Therefore, we also accept no responsibility or liability for this content. The respective provider or operator is always responsible for the content of these sites. Linked websites were checked for possible violations of the law and any recognisable legal infringements when the links were created. No illegal content was found at that time. The linked websites will not be monitored on an ongoing basis unless there is concrete evidence of a violation. If we become aware of any violations, such links will be removed promptly.

Cookies (Art. 6 (1) lit. f of GDPR / Art. 6 (1) lit. a of GDPR with consent)

Our websites only use temporary session cookies (small text files) in the browser's main memory, which are deleted again when the browser is closed. Cookies make our web presence more user-friendly, effective and secure. 

They allow us to analyse how users use our website. By doing this, we can design our website content to meet the needs of visitors. Most web browsers accept cookies automatically. You can usually change your browser's settings if you would rather not send this information.

Google Analytics

Based on your consent per Art. 6 (1) lit. a., Art.7 GDPR) Google Analytics, a web analytics service provided by Google LLC ("Google"). Google uses cookies. The information that a cookie generates about the user's use of the website is usually sent to a Google server in the US and stored there. Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). Google will use this information on our behalf to analyse the use of our website by the user, to compile reports on activities within the site and provide other services related to the use of this website and the internet for us. Pseudonymous usage profiles of users can be produced from the data processed.

We only use Google Analytics with IP anonymisation active. That means that the user's IP address will first be truncated by Google within the Member States of the European Union or other countries subject to the Agreement on the European Economic Area. Only in exceptional cases is the complete IP address transmitted to a Google server in the US and truncated there.

The IP address transmitted from the user's browser will not be combined with other Google data. Users can prevent cookies being stored by configuring their browser software accordingly; users can also prevent the data generated by the cookie related to your use of the website being recorded by Google and processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

For further information on data use by Google, configuration and objection options, see Google's privacy policy (https://policies.google.com/technologies/ads) and the settings for advertising displayed by Google (https://adssettings.google.com/authenticated).

For further information on data use by Google, configuration and objection options, see Google's privacy policy (https://policies.google.com/technologies/ads) and the settings for advertising displayed by Google (https://adssettings.google.com/authenticated).

The user's personal data is deleted after 14 months

Google Tag Manager (GTM)

This website uses Google Tag Manager. This service allows website tags to be managed via an interface. Google Tag Manager only implements tags. That means that no cookies are used and no personal data is recorded. Google Tag Manager triggers other tags, which in turn may record data. However, Google Tag Manager does not access this data. If deactivation was implemented at a domain or cookie level, it continues to apply for all tracking tags, provided they were implemented with the Google Tag Manager.

Google Maps integration

We use the Google Maps service on this website. That allows us to show you interactive maps directly in the website and makes it convenient for you to use the map function. When you visit the website, Google is informed that you have accessed the corresponding sub-page of our website. The data collected on your visit to our website is also sent. This is done irrespective of whether Google provides a user account, and you are logged in, or whether you have no user account. When you are logged into Google, your data is attributed directly to your account. If you do not want your data to be attributed to your Google account, you must log out before clicking the button. Google saves your data as user profiles and uses it for advertising, market research and/or needs-based website design purposes. Evaluation of this kind is conducted (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network of your activities on our website. You have a right to object to this formation of user profiles, but you must contact Google to exercise it. See the provider's privacy policies for further information on the purpose and scope of data collected and its processing by the plug-in provider. You will also receive further information on your rights in this matter and configuration options to protect your privacy: http://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and adheres to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Use of YouTube in enhanced data protection mode

To display videos, our site uses the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Normally, your IP address is sent to YouTube, and cookies are saved on your computer as soon as you access a page with embedded videos. However, we integrated our YouTube videos in enhanced data protection mode (when this is active, YouTube still contacts the Google DoubleClick service, but no personal data is evaluated according to Google's privacy policy). As a result, YouTube does not save any information on the visitor, unless they watch the video. When you click the video, your IP address is sent to YouTube and YouTube sees that you have watched the video. If you are logged in to YouTube, this information is also attributed to your user account (you can prevent this by logging out of YouTube before accessing the video). We are not aware of possible collection and use of your data by YouTube, and cannot influence it. For further information, see YouTube's privacy policy at https://www.google.de/intl/de/policies/privacy/ . For general information on handling and deactivation of cookies, we also refer to our general description in this privacy policy.

Contact form / E-mail contact (Art. 6 (1) lit. a, b GDPR)

Our website features contact forms which can be used to make contact electronically. When you write to us via the contact forms, we process the data you enter as part of the contact form directly to contact you and respond to your questions and requests. We collect and process the following data as part of a contact inquiry:

  • Company
  • Title
  • Surname
  • Telephone number
  • Postal code and town
  • Information on requests and interests

We observe the principles of data economy and data avoidance by only requiring you to provide the data we absolutely need to contact you. This data is your form of address, surname, telephone, postal code and town, as well as the message field itself. All other data are voluntary fields and can be provided optionally (e.g. to answer your questions more individually). If you consent to receiving occasional information on interesting news about our products and services, we also save your e-mail address. You then receive an e-mail with a confirmation link as part of the legally required double opt-in process. When you click this link, we save the data listed below.

  • Data and time of the entry
  • IP address
  • User agent / Browser
  • Operating system
  • E-mail address
  • Unsubscribe ID
  • Subscription status (presubscribed or subscribed)

Advertising purposes for existing customers (Art. 6 (1) lit. f GDPR)

MIWE Michael Wenz GmbH is interested in maintaining a customer relationship with you and sending you information and offers on our products and services. As a result, we process your data to send you corresponding information and offers by e-mail. If you do not want that, you can object to the use of your personal data for direct advertising purposes at any time. If you object, we will no longer process your data for this purpose. You can object informally and without stating reasons by calling +49 9363 680, by e-mail to cntctmwd or by post to MIWE Michael Wenz GmbH, Michael-Wenz-Straße 2-10, 97450 Arnstein, Germany.

Websites and minors

Persons under 16 years of age may not submit personal data to us or give us consent without approval of their parents or guardians. We ask that parents and guardians actively participate in their children's online activities and interests.

Data protection for applicants

The protection of your personal information is very important to us. In the document below we provide you information about the processing of your personal data and the rights to which you are entitled under data protection law during the course of your application at MIWE.

Any questions?

You can also contact our data privacy officer, who will be happy to answer any questions you may have.

Contact for data protection issues: e-mail: cntctmwd

Diese Webseite verwendet Cookies. Durch die Nutzung der Webseite stimmen Sie der Verwendung von Cookies zu. Datenschutzinformationen