Below you can find the contact information regarding the controller of processing as well as the data protection manager.
Controller of Processing: MLINE Vertriebs- u. Produktions GmbH, E-Mail: email@example.com
Data Protection Manager: Management board of MLINE Vertriebs- u. Produktions GmbH respectively Roman Faustin, E-Mail: firstname.lastname@example.org
We take organizational, contractual and technical safety precautions according to the state of the art to make sure to comply with formalities of the data protection laws as well as protection of the data used by us against incidental or deliberate manipulation, loss, destruction or unauthorized access.
The safety measures notably include the encrypted transmission of all data between your browser and our server.
Personal data will only be transferred to third parties if it is necessary – for instance if required for contractual purposes in accordance to DSGVO Art. 6 para1 lit. b, or on the basis of legitimate interests of economic and efficient operations for our business in accordance to DSGVO Art. 6 para. 1 lit. f.
While commissioning subcontractors to provide our services, we take legal precautions as well as technical and organizational measurements to ensure the safety of personal data in accordance with the data protection law.
When contacting us, the users’ information regarding the processing of your contact request will be used in accordance to DSGVO Art. 6 para. 1lit.b.
On our website, you can subscribe to our newsletter via a double-opt-in-process. After your subscription, you receive an e-mail with the request to confirm your subscription. Without the disclosure of this data, it is not possible to send you our newsletter. You can always unsubscribe by clicking the unsubscription-link at the end of each newsletter and afterwards following the instructions given on the website. After an unsubscription no more data is collected and the e-mail address is put on a blocking list to keep records of the unsubscription and to prevent further newsletter sending.
We entrust data processors with the sending of our newsletter, respectively send them directly from our systems. Data processors have committed themselves towards MLINE Vertriebs- u. Produktions GmbH to comply with the regulations concerning data privacy. A data processing agreement in accordance to DSGVO Art. 28 was concluded. More information regarding the commissioned data processors can be requested under email@example.com
The data processing is handled in accordance to the legal requirements of § 96 para. 3 TKG and DSGVO Art. 6 para. 1 lit a .
The newsletters of MLINE Vertriebs- u. Produktions GmbH include so-called tracking pixels. A tracking pixel is a thumbnail which is embedded in e-mail in HTML format to allow the recording and analysis of logfiles. This permits the statistical analysis of success and failure of online marketing campaigns. With the help of the embedded tracking pixel, MLINE Vertriebs- u. Produktions GmbH can see if and when an e-mail was opened by a person concerned. Additionally, it is tracked which links within the e-mail were opened by a person concerned.
The personal data obtained through tracking pixels and newsletter tracking are stored and analysed for optimising the newsletters and adapting the content of future newsletter to the interests of the person concerned.
For the selection of suitable content for the newsletter offered by MLINE Vertriebs- u. Produktions GmbH, automated decision-making and profiling can be applied. This serves the optimal selection of relevant newsletter content.
We collect data on the basis of legitimate interests in accordance to DSGVO Art. 6 para. 1 lit. f. about every access to the server in service (so-called server log files). The access data include the name of the requested website, data file, date and time of access, transferred amount of data, message about successful call, browser type version, the users` operating system, referrer URL (previously visited page), IP-address as well as the requesting provider.
For safety reasons (e.g. for the purpose of clearing up misuse or fraud in connection with the access) log file information is stored for a maximum of seven days and deleted afterwards.
Data, for which a storage for evidence is necessary, is excluded from erasure until clarification of the incident.
Cookies consist of information, which are transferred from our own or a third parties‘ server to the users browser , where they are stored for a later retrieval. Cookies can be small files or similar types of information storage.
We use session-cookies, which are only active for the duration of the current visit on one of our websites (e.g. to save log-in files or basket functions, hence making the use of our online services possible)
In a session cookie a randomly generated and unique identification number is stored, a so-called session-ID. Furthermore the cookie contains information about its origins and storage period – they are not able to secure any other data. The deletion of the session-cookie will take place, when the usage of our online services is completed e.g. a logging-off is performed or the browser is closed.
If the storage via cookie on their computer is not desired by the user, they are asked to deactivate the corresponding option in their browser system settings. Secured cookies can be deleted in their browser system settings. The exclusion of cookies can lead to functional restrictions regarding our online services.
Google is certified in accordance with the privacy-shield agreement which guarantees to abide the European data protection law.
For further details please click here: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.
On our account Google will use this information to evaluate the usage of our online services by users, to compile reports about activities within our online services and to perform further services associated with usage of our online services and internet use. Thereby processed data can be used to create user profiles by using pseudonyms.
We use Google Analytics to display advertisements within the ad services of Google and their partners only to users, which have shown interest in our online services or show certain characteristics (for instance interest in certain topics or products, which are determined by the visited website). By using Remarketing Audiences we like to ensure that our ads correspond with the users’ potential interest and are not annoying.
We only use Google Analytics with activated IP anonymization. This means, that the user‘s IP address will be shortened within the Member States of the European Union or in different Contracting States, which are parties to the Agreement on the European Economic Area.
Only in exceptional cases the full IP address will be transmitted and shortened on a Google server in the US.
The user’s transmitted IP address will not be merged with other data from Google. The user can prevent the storage of the cookie through deactivating the corresponding option in their browser system settings. In addition to that, the user has the possibility to prevent data capture through the cookie, so that no data will be processed by Google, by downloading and installing this Browser-Plugin available following this link: http://tools.google.com/dlpage/gaoptout?hl=de.
Further information on data usage by Google, settings and possibility to appeal can be found on the following websites:
Google: https://www.google.com/intl/de/policies/privacy/partners („data usage by Google, when using one of our websites or apps of our partners“, http://www.google.com/policies/technologies/ads („data usage for advertising purposes“), http://www.google.de/settings/ads („administer information used by Google to display ads“).
Based on our legitimate interest (interest of analysis, economic and efficient operations for our online services in accordance to DSGVO Art. 6 para. 1 lit. f.) we use marketing and remarketing services („Google-Marketing-Services“) provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, („Google“).
Google is certified in accordance with the privacy-shield agreement which guarantees to abide the European data protection law. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
The usage of Google-Marketing-Services allows us to show more targeted ads for and on our website, to only show ads to a user, who posed a potential interest. If a user is shown a product, for which he has shown interest on another website, it is called „Remarketing“.
For those purposes, when visiting our and other websites, on which Google-Marketing-Services are activated, a code will be immediately performed by Google and so called (re)marketing-tags (invisible graphics or code, also known as „web beacons“) are incorporated in the website. With help of those tags and code, an individual cookie – a small file will be secured on the user’s device (instead of cookies a similar technology can be used). Cookies can be set by different domains, for example: google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. In those files the user data is stored (which website was requested, which content the user is interested in and which offers he clicked on, technical information about the browser and operating system, referring websites, time of access, as well as further information about usage of our online services). The user’s IP address will also be collected, but will be shortened only within the Member States of the European Union or in different Contracting States, which are parties to the Agreement on the European Economic Area, according to Google Analytics. Only in exceptional cases the full IP address will be transmitted and shortened on a Google server in the US. The user’s transmitted IP address will not be merged with other data from other Google services. The above mentioned information can be connected with information from other sources by Google. When subsequently visiting another website, the user can be shown ads according to his interests.
The user data is processed pseudonymously by Google-Marketing-Services. This means that Google does not save the user‘s name or mail address, it only processes the relevant cookie data per pseudonymous user profiles. Therefore for Google ads are not shown to a specific identified person but to a cookie-holder, regardless of who the cookie holder is. This will not apply if a user has given Google his consent to process his data without pseudonymisation. The user data collected by Google-Marketing-Services will be transmitted to and secured by Google on their servers in the US. One of the Google-Marketing-Services we use is the online-ad programme „Google AdWords“. In case of Google AdWords every AdWords-customer gets a different „Conversion-Cookie“. Therefore cookies can’t be retraced from the websites of AdWords-customers. The information collected by cookies is used to create Conversion-statistics for AdWords-customers, who chose Conversion tracking. AdWords-customers learn the total number of users, who clicked on their ad and where forwarded to website containing a Conversion-Tracking-Tag. They will not get information, by which a user can be identified.
Furthermore we can use „Google Optimizer“. Google Optimizer allows us to comprehend „A/B-Testing“, how changes effect the website (for instance changes concerning input-fields, designs, etc.) In those test purposes cookies are filed on a user’s device. But only pseudonymous data of the user will be processed.
We also can use „Google Tag Manager“ to incorporate and manage Google-Analysis and Marketing Services on our website.
If you want to object to advertisements regarding user’s interests by Google-Marketing-Services, you can use the settings and Opt-Out-possibilities provided by Google: http://www.google.com/ads/preferences
Within our online services, based on our legitimate interest (interest of analysis, economic and efficient operations for our online services, we us „Facebook-Pixel“ run by social network Facebook of Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are a resident in the European Union, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Facebook is certified in accordance with the privacy-shield agreement which guarantees to abide the European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).
By usage of Facebook-Pixel it is possible for Facebook to determine the visitors of our online services as target audience for displaying advertisements („Facebook-Ads“). We use Facebook- Pixel to display Facebook-Ads to Facebook-users, which have shown interest in our online services or show certain characteristics (for instance interest in certain topics or products, which are determined by the visited website), which we transmit to Facebook (so called „Custom Audiences“). By using Facebook-Pixel we like to ensure that our Facebook-Ads correspond with the users’ potential interest and are not annoying. With Facebook-Pixel we also can determine the effectiveness of our Facebook-Ads for statistical and market research purposes – this way we can see if the user has been forwarded to our website via Facebook-Ad (so called „Conversion“).
When visiting our websites Facebook-Pixel will immediately be incorporated and a cookie – a small file will, can be secured on the user’s device. If you are subsequently logging in on Facebook or visiting already logged-in, the visit of our online service will be secured in your profile. The collected personal data is anonymous for us hence the user can not be identified by us. However Facebook secures and processes the data, so a connection can be made to a certain user profile which is used by Facebook and us for their own market research and advertising purposes. If data is sent to Facebook for comparison, it will be encrypted locally on the user’s browser and afterwards an encrypted transfer to Facebook, using a secured HTTPS connection, will take place. This only is the case if encrypted data needs to be in comparison with similar encrypted data of Facebook.
Based on our legitimate interest we use a service called „Custom Audiences from File“ from Facebook, Inc. Here mail-addresses of newsletter recipients are uploaded on Facebook. The upload process is encrypted. The purpose of the upload is to determine recipients of our Facebook-Ads. This way we like to ensure, that ads are only displayed to users, which have shown interest in our information and services.
The processing of data by Facebook takes place within the scope of Facebooks data use policy.
Appropriate instructions for the display of Facebook-Ads can be found in the Facebook data use policy: https://www.facebook.com/policy.php. Specific information and details about Facebook-Pixel and their operating principle can be found in the help section of Facebook: https://www.facebook.com/business/help/651294705016616.
You can object to the collection of data via Facebook-Pixel and the processing of your data to display Facebook-Ads. To adjust the settings concerning which advertisements are shown on Facebook, you can visit Facebooks dedicated page and follow the instructions to change the settings for usage based advertisements: https://www.facebook.com/settings?tab=ads. These settings take place platform-independent – that means, that changes apply to all kinds of devices (PC, mobile devices, etc.).
Note: Please take into account, that Facebook does not feature an Opt-Out option at the time of writing – therefore it has to be implied by yourself. In case of disagreement, you have to remove the particular passage.
If you want to object to the usage of cookies, which are used for range measurement and advertising purposes, you can visit the Opt-Out page of the Network Advertising Initiative (http://optout.networkadvertising.org/) as well as the US-American website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).
Based on our legitimate interest (interest of analysis, economic and efficient operations for our online services in accordance to DSGVO Art. 6 para. 1 lit. f.) we use third party content offerings and services to corporate their content offerings and services, for instance corporating videos and fonts (throughout consistently used as content). This assumes that third parties of this content use the user’s IP-address because the content can’t be sent to the browser without an IP-address. Therefore an IP-address is needed for displaying content. We endeavour to only use content, where the provider merely uses an IP-address for delivering content. Third parties can use so called Pixel-Tags (invisible graphics or code, also known as „Web Beacons“) as well for statistic or marketing purposes. With the help of „Pixel-Tags“ information like traffic of visitors can be analysed on subsites of the website. The pseudonymous data can be stored in cookies on the user’s device and include technical information about the browser and operating system, referring websites, time of access, as well as further information about usage of our online services. This information is used to be connected with other information from different sources.
The following description gives an overview over third parties and their respective content, including a link to their respective privacy policies, which contains further information on data processing and, as partly mentioned above, contradictory possibilities (so called Opt-Out):
Upon request users have the right to receive information on the stored personalised data free of charge.
Further users have the right on rectification of incorrect data, limitations of processing and deletion of personalised data if they assert their rights to data portability and lodge a complaint with the competent regulatory authority in the event of unlawful processing.
Likewise, users can revoke consent generally with implications for the future.
The deletion of data secured by us takes place, when it is no longer required for its intended purpose and provided that there are no statutory storage obligations objecting to the erasure. If a user’s data is not deleted, because it is needed for other legal purposes, the processing will be limited. This means that the data will be locked and not be used for other purposes, which applies to user data which has to be stored on the basis of commercial or fiscal reasons.
In principle, the storage of the data takes place for up to 10 years.
Users have the right to object future processing of their personalised data at any time according to legal guidelines.
Especially an objection to processing data for direct advertising can be made.