PRIVACY POLICY

Gull XPand & Personality

 

  1. Definitions

This data protection declaration is based on the definitions used by the European legislator for directives and regulations when the DSGVO was adopted (Article 4 DSGVO). This privacy policy should be both easy to read and easy to understand for every person. To ensure this, we would first like to explain the terms used. This privacy policy uses, inter alia, these definitions:

  • individual-related data“Any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, a location data, an on-line identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person
  • data subject “ shall mean any identified or identifiable natural person whose personal data are processed by the controller
  • Processing” any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, organisation, organisation, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction
  • limitation of processing‘ means the marking of stored personal data with a view to limiting their processing in the future
  • Profiling” any automated processing of personal data consisting in using such personal data to evaluate certain personal aspects relating to a natural person, in particular with a view to analysing or predicting aspects relating to work performance, economic situation, health, personal preferences, interests, reliability, conduct, whereabouts or movements of that natural person
  • Responsible person” means the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union law or by the law of the Member States, provision may be made for the controller or for the specific criteria for his or her designation under Union law or the law of the Member States
  • “‘recipient‘ means any natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not that person is a third party However, authorities which may receive personal data in the context of a specific investigation mandate under Union or national law shall not be considered as recipients; the processing of such data by those authorities shall be carried out in accordance with the applicable data protection rules and in compliance with the purposes of the processing;
  • third party” means any natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data
  • data subject’s ‘consent’ shall mean any freely given specific, informed and unequivocal expression of his or her wishes in the form of a declaration or other unequivocal affirmative act by which the data subject signifies his or her consent to the processing of personal data relating to him or her
  1. Name and contact details of the controller

Diese Datenschutzhinweise gelten für die Datenverarbeitung durch:

Person in charge:        Gull XPand, Heideggstrasse 6, 5630 Muri AG
                                          Responsible Sascha Gull, E-Mail: sascha@gullxpand.com 

  1. Erhebung und Speicherung personenbezogener Daten sowie Art und Zweck von deren Verwendung
  2. a) When visiting the website

You can use our website without disclosing your identity. When you call up our website, the browser used on your end device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the retrieved file,
  • Website, von der aus der Zugriff erfolgt (Referrer-URL),
  • the browser used and, if applicable, the operating system of your computer and the name of your access provider.

The mentioned data will be processed by us for the following purposes:

  • Ensure a smooth connection of the website,
  • Guarantee a comfortable use of our website,
  • Evaluation of system security and stability and
  • for other administrative purposes.

The legal basis for data processing is Art. 6 Abs. 1 S. 1 lit. f DSGVO Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your person.

Furthermore, we use cookies and analysis services when you visit my website. You will find more detailed explanations in sections 5 and 7 of this privacy policy.

  1. b) When using our contact form

For questions of any kind we offer you the possibility to contact us via a form provided on our website. It is necessary to provide a valid e-mail address so that we know who the enquiry comes from and can answer it. Further information can be provided voluntarily. Es unterliegt Ihrer freien Entscheidung, ob Sie diese Daten im Rahmen des Kontaktformulars eingegeben möchten.

The data processing for the purpose of contacting us is carried out according to Art. 6 Abs. 1 S. 1 lit. a DSGVO based on your voluntarily given consent.

The personal data collected by us for the use of the contact form will be automatically deleted after the completion of your request.

  1. c) For orders via our website

You can either place orders via our website as a guest without registering, or register in our shop as a customer for future orders. A registration has the advantage for you that you can log into our shop directly with your e-mail address and your password in case of a future order without having to enter your contact data again.

Your personal data is entered into an input mask and transmitted to us and stored. If you place an order via our website, we collect the following data both in the case of a guest order and in the case of registration in the shop:

  • Salutation, first name, last name,
  • a valid e-mail address,
  • Address,
  • Telephone number (fixed and/or mobile)

This data is collected,

  • to identify you as our customer;
  • to be able to process, fulfill and handle your order;
  • for correspondence with you;
  • for invoicing;
  • for the settlement of any existing liability claims, and the assertion of any claims against you
  • to ensure the technical administration of our website;
  • to manage our customer data.

As part of the ordering process, you will be asked for your consent to process this data.

The data processing is carried out in response to your order and/or registration and, according to Art. 6 Abs. 1 S. 1 lit. b DSGVO, is necessary for the aforementioned purposes for the appropriate processing of your order and for the mutual fulfilment of obligations arising from the purchase contract.

The personal data collected by us for the processing of your order will be stored until the expiry of the statutory retention period and deleted thereafter, unless we are required by Article Paragraph 6 1 S. 1 lit. c DSGVO due to tax and commercial law storage and documentation obligations (from HGB, StGB or AO) to a longer storage are obligated or you in a storage going beyond it after art. Paragraph 6 1 S. 1 lit. have consented to a DSGVO.

  1. information disclosure

Your personal data will only be passed on by us to third parties to the service partners involved in the execution of the contract, such as the logistics company commissioned with the delivery and the credit institute commissioned with payment matters. In den Fällen der Weitergabe Ihrer personenbezogenen Daten an Dritte beschränkt sich der Umfang der übermittelten Daten jedoch auf das erforderliche Minimum.

In the case of payment via PayPal, credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal, we will pass on your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”) within the framework of the payment processing. PayPal reserves the right to carry out a credit assessment for the payment methods credit card via PayPal, direct debit via PayPal or “purchase on account” via PayPal. PayPal shall use the result of the credit assessment with regard to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values. Further information regarding data protection can be found in the PayPal privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Your personal data will not be transferred to third parties for purposes other than those mentioned above.

We also only pass on your personal data to third parties if:

  • you have given your express consent according to Art. 6 Abs. 1 S. 1 lit. a DSGVO
  • die Weitergabe nach Art. 6 Abs. 1 S. 1 lit. f DSGVO zur Geltendmachung, Ausübung oder Verteidigung von Rechtsansprüchen erforderlich ist und kein Grund zur Annahme besteht, dass Sie ein überwiegendes schutzwürdiges Interesse an der Nichtweitergabe Ihrer Daten haben,
  • in the event that there is a legal obligation for disclosure in accordance with Art. 6 Par. 1 S. 1 lit. c DSGVO, and
  • dies gesetzlich zulässig und nach Art. 6 Abs. 1 S. 1 lit. b DSGVO für die Abwicklung von Vertragsverhältnissen mit Ihnen erforderlich ist.

As part of the ordering process, you will be asked for your consent to pass on your data to third parties.

  1. Use of cookies

We use cookies on our website. These are small files that are automatically created by your browser and stored on your device (laptop, tablet, smartphone or similar) when you visit our website. Cookies do not cause any damage to your end device, do not contain viruses, Trojans or other malware.

Information is stored in the cookie, which results in each case in connection with the specifically used terminal device. This does not mean, however, that we obtain immediate knowledge of your identity.

On the one hand, the use of cookies serves to make the use of our offer more pleasant for you. We use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after leaving our site.

In addition, we also use temporary cookies, which are stored on your end device for a certain fixed period of time, to optimise user-friendliness. If you visit our site again to make use of our services, it will automatically be recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

On the other hand, we use cookies to record the use of our website statistically and to evaluate it for the purpose of optimizing our offer for you (see Ziffer 7). These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined time.

The data processed by cookies are required for the above-mentioned purposes in order to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Abs. 1 S. 1 lit. f DSGVO.

Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you will not be able to use all the functions of our website.

  1. Links to third party websites

The links published on our website are researched and compiled by us with the greatest possible care. However, we have no influence on the current and future design and content of the linked pages. We are not responsible for the content of the linked pages and expressly do not adopt the content of these pages as our own. For illegal, incorrect or incomplete contents as well as for damages resulting from the use or non-use of the information, only the provider of the linked website is liable. The liability of the person who merely refers to the publication by a link is excluded. We are only responsible for third-party references if we have positive knowledge of them, i.e. also of any illegal or criminal content, and if it is technically possible and reasonable for us to prevent their use.

  1. Analysis and tracking tools

The tracking measures listed below and used by us are based on Art. Abs. 1 S. 1 lit. f DSGVO With the tracking measures we use, we want to ensure that our website is designed to meet your needs and is continuously optimized. On the other hand, we use the tracking measures to record the use of our website statistically and evaluate it for the purpose of optimizing our offer for you. These interests are to be considered legitimate within the meaning of the aforementioned provision.

The respective data processing purposes and data categories can be taken from the corresponding tracking tools.

  1. a) Google Analytics1

We use Google Analytics, a web analysis service of the Google  Inc(https://www.google.de/intl/de/about/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; im Folgenden „Google“). In this context, pseudonymised user profiles are created and cookies (see under Ziffer 5) are used. The information generated by the cookie about your use of this website such as

  • Browser-Typ/-Version,
  • the operating system used,
  • Referrer URL (the previously visited page),
  • Host name of the accessing computer (IP address),
  • Time of the server request,

are transmitted to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on the website activities and to provide further services associated with the use of the website and the Internet for the purposes of market research and the design of these Internet pages in line with requirements. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other data from Google. The IP addresses are made anonymous, so that an assignment is not possible (IP masking).

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of our website.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing ein Browser-Add-on (https://tools.google.com/dlpage/gaoptout?hl=de)

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent the collection by Google Analytics by clicking on the aforementioned link. An opt-out cookie is set to prevent future collection of your information when you visit our site. The opt-out cookie is valid only in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

For more information on data protection in connection with Google Analytics, please refer to the following link in the Google Analytics help: https://support.google.com/analytics/answer/6004245?hl=de

  1. b) Google Adwords Conversion Tracking

In order to record the use of our website statistically and evaluate it for the purpose of optimizing our website for you, we also use Google Conversion Tracking. Google Adwords will set a cookie (see number  5) on your computer if you have reached our website via a Google ad.

These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the AdWords client’s website and the cookie has not expired, Google and the client will be able to tell that the user clicked on the ad and was directed to that page.

Every Adwords customer receives a different cookie. Cookies can therefore not be tracked via the websites of Adwords clients. The information collected using the conversion cookie is used to generate conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive information that can be used to identify users personally.

If you do not wish to participate in the tracking process, you can also refuse the necessary setting of a cookie – for example, via browser settings that generally deactivate the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain “www.googleadservices.com”. Google’s privacy policy on conversion tracking can be found at  under the link below: https://services.google.com/sitestats/de.html

  1. Social Media Plugins

We use on our website on the basis of Art. 6 Abs. 1 S. 1 lit. f DSGVO Social Plugins of social networks (e.g. Facebook, Twitter, Google+)  ein to make our company better known. The advertising purpose behind this is to be regarded as a legitimate interest within the meaning of the DSGVO. The responsibility for data protection-compliant operation must be ensured by their respective providers. The integration of these plugins by us takes place by means of the so-called two-click method to protect visitors to our website in the best possible way.

  1. a) Facebook

Social media plugins from Facebook are used on our website to make its use more personal. For this we use the “LIKE” or “SHARE” button. This is an offer from Facebook.

If you call up a page on our website that contains such a plugin, your browser establishes a direct connection with the Facebook servers. Der Inhalt des Plugins wird von Facebook direkt an Ihren Browser übermittelt und von diesem in die Webseite eingebunden.

By integrating the plugins, Facebook receives the information that your browser has called up the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can assign your visit to our website directly to your Facebook account. Wenn Sie mit den Plugins interagieren, zum Beispiel den „LIKE“ oder „TEILEN“-Button betätigen, wird die entsprechende Information ebenfalls direkt an einen Server von Facebook übermittelt und dort gespeichert. The information is also published on Facebook for everyone to see.

Facebook kann diese Informationen zum Zwecke der Werbung, Marktforschung und bedarfsgerechten Gestaltung der Facebook-Seiten benutzen. For this purpose, Facebook creates usage, interest and relationship profiles, e.g.  B. to evaluate your use of our website with regard to the advertisements displayed on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before you visit my website.

The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights and setting options for protecting your privacy, can be found in the data protection information, in particular   the Facebook data guideline, which you can view at the following link: https://www.facebook.com/about/privacy/

  1. b) Twitter

Auf unserer Webseite sind Plugins des Kurznachrichtennetzwerks der Twitter Inc. (Twitter) integrated. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. An overview of tweet buttons can be found  under this link on Twitter: https://dev.twitter.com/web/tweet-button

Wenn Sie eine Seite unseres Webauftritts aufrufen, die ein solches Plugin enthält, wird eine direkte Verbindung zwischen Ihrem Browser und dem Twitter-Server hergestellt. Twitter thereby receives information that you have visited our site with your IP address. Wenn Sie den Twitter „tweet-Button“ anklicken, während Sie in Ihrem Twitter-Account eingeloggt sind, können Sie die Inhalte unserer Seiten auf Ihrem Twitter-Profil verlinken. This allows Twitter to associate your visit to our site with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Twitter.

If you do not want Twitter to be able to track visits to our site, please log out of your Twitter account.

For further information, please refer to the privacy policy of Twitter, which you can view here: https://twitter.com/de/privacy

  1. c) Google „+1“-Schaltfläche

Our website uses the “+1” button of the social network Google, which is operated by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043-1351, USA. The button is marked with a “+1”.

The “+1” button is an abbreviation for “this is pretty cool” or “check it out”. The button is not used to record your visits to the web.

If a web page of our website contains the “+1” button, then your internet browser will load and display this button from the Google server. The website of our Internet presence that you visit is automatically communicated to the Google server. When displaying a +1 button, Google does not permanently log your browsing history, but only for a period of up to two weeks.

Google hält diese Daten über Ihren Besuch für diesen Zeitraum zu Systemwartungs- und Fehlerbehebungszwecken gespeichert. However, this data is not structured according to individual profiles, user names or URLs. This information is also not accessible to website publishers or advertisers. The use of this information is for maintenance and troubleshooting purposes in internal systems at Google only. Your visit to a page with a +1 button is not evaluated in any other way by Google.

Eine weitergehende Auswertung Ihres Besuchs einer Webseite unseres Internetauftrittes mit einer „+1“-Schaltfläche erfolgt nicht.

Giving +1 itself is a public act, which means that anyone performing a Google search or viewing content on the web to which you give +1 can potentially see that you have given a +1 to that content. Therefore, only give +1 if you are absolutely sure that you want to share this recommendation with the whole world.

A click on this +1 button serves as a recommendation for other users in Google’s search results. You can publicly state that you like our website, that our website meets with your approval or that you can recommend our website. If you have registered for Google+ and are logged in, the +1 button will turn blue when clicked. The +1 will also be added to the +1 tab in your Google profile. On this tab you can manage your +1 and decide if you want to make the +1 tab public.

In order to store your +1 recommendation and make it publicly available, Google collects information about the URL you recommended, your IP address and other browser-related information via your profile. If you cancel your +1, this information will be deleted. All +1-recommendations from you are listed on the +1- tab in your profile.

Weitere Hinweise und die geltenden Datenschutzbestimmungen von Google können unter https://www.google.de/intl/de/policies/privacy/ abgerufen werden. You can find more information from Google about the Google+1 button at the link https://developers.google.com/+/web/buttons-policy

 

  1. Rights of data subjects

You have the right:

  • to request information about your personal data processed by us in accordance with Art. 15 DSGVO In particular, you may request information as to the purposes of the processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the envisaged storage period, the existence of a right of rectification, erasure, restriction of processing or opposition, the existence of a right of appeal, the origin of your data, if not collected from me, as well as the existence of automated decision making including profiling and, where applicable, meaningful information on the details thereof;
  • in accordance with Art. 16 DSGVO to immediately demand the correction of incorrect or completion of your personal data stored with us;
  • in accordance with Art. 17 DSGVO to demand the deletion of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims
  • gemäß Art. 18 DSGVO to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, if the processing is unlawful but you refuse to delete it and we no longer require the data, but you require it for the assertion, exercise or defence of legal claims, or if you require it pursuant to Art. 21 DSGVO Widerspruch gegen die Verarbeitung eingelegt haben;
  • in accordance with Art. 20 DSGVO to receive your personal data that you have provided us with in a structured, common and machine-readable format or to request its transmission to another person in charge;
  • according to Art. 7 Abs. 3 DSGVO to revoke your once given consent to us at any time. As a consequence, we may no longer continue the data processing that was based on this consent for the future and
  • complain to a supervisory authority in accordance with Art. 77 DSGVO As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.
  1. Right of objection

If your personal data is based on legitimate interests according to Art. Paragraph 6 1 S. 1 lit. f DSGVO are processed, you have the right, in accordance with Art. 21 DSGVO to object to the processing of your personal data for reasons arising from your particular situation or if the objection is directed against direct marketing. In the latter case you have a general right of objection, which will be implemented by us without specifying a special situation.

If you wish to make use of your right of revocation or objection, simply send an e-mail to: info@gullxpand.com

  1. Datensicherheit

When you visit our website, we use the common SSL (Secure Socket Layer) procedure in conjunction with the highest encryption level supported by your browser. Usually this is a 256 bit encryption. Falls Ihr Browser keine 256-Bit Verschlüsselung unterstützt, greifen wir stattdessen auf 128-Bit v3 Technologie zurück. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

  1. Up-to-dateness and modification of this privacy policy

This privacy policy is currently valid and has the status March 2018.

Due to the further development of our website and offers above or due to changed legal or official requirements, it may become necessary to change this data protection declaration. The current data protection declaration can be called up and printed out at any time on our website under the following link:

https://www.personality.vision/datenschutzerklaerung

___________________________________________________________________________

1 Data protection authorities require the conclusion of a commissioned data processing agreement for the permissible use of Google Analytics. A corresponding template is available under http://www.google.com/analytics/terms/de.pdf  offered by Google.

Source: Model data protection declaration prepared by attorney Andreas Gerstel (http://www.anwaltblog24.de/)