PRIVACY NOTICE

We will also inform you in detail about:

I. General information

II. Data processing on our website

Galvano Pro GmbH, Am Atlaswerk 18 a, 33106 Paderborn, Germany (hereinafter referred to as “we” or “us”) is responsible for the data processing.

I. General information

1. Contact

If you have any questions or suggestions regarding this information, or if you want to contact us to assert your rights, please address your query to

Galvano Pro GmbH
Am Atlaswerk 18 a
33106 Paderborn

Germany

Phone: +49 5251 873 2008

E-Mail: mail@galvano-pro.de

2. Legal basis

We process personal data taking the relevant data protection provisions into account, in particular those of the GDPR and BDSG (Federal Data Protection Act). Data processing conducted by us is only done on the basis of a legal permit. We only process personal data with your consent (Art. 6 para. 1 sentence 1 a) GDPR) to fulfil a contract to which you are a party, or in order to take steps at your request prior to entering into a contract (Art. 6 para. 1 sentence 1 b) GDPR), to comply with a legal obligation (Art. 6 para.1 sentence 1 c) GDPR) or when processing is necessary to maintain the legitimate interests pursued by us or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms which require protection of personal data (Art. 6 para. 1 sentence 1 f) GDPR).

3. Duration of storage

Unless the following information specifies otherwise, we shall only store your personal data as long as is necessary for achieving the processing purpose or for the performance of our contractual or legal obligations. Legal storage obligations may in particular arise from commercial or tax-related regulations.

4. Recipient of the data

We make use of commissioned service providers for individual processing operations. This includes, for example, hosting, maintenance and support of IT systems, marketing measures or destruction of files and data carriers. These service providers will only process the personal data following explicit instructions and are contractually obligated to guarantee the implementation of sufficient technical and organisational data protection measures. In addition, we may transfer personal data of our customers to parties such as postal and delivery services, payment and information services, banks, tax consultants/auditors or the tax authorities.

5. Processing in the exercise of your rights pursuant to Art. 15 to 22 GDPR

If you exercise your rights pursuant to Art. 12 to 22 GDPR, we will process the personal data transmitted for the purpose of implementing these rights by us and to be able to provide proof of this. For the purpose of providing information and preparing such information, we will process stored data only for this purpose and for purposes of data protection control and otherwise restrict processing in accordance with Art. 18 GDPR.

These processing operations are based on the legal basis of Art. 6 Para. 1 letter c) GDPR in connection with Art. 15 to 22 GDPR and § 34 para. 2 BDSG.

6. Your rights

As an affected person, you have the right to assert your rights as an affected person vis-à-vis our company. You have the following rights in particular:

In accordance with Art. 15 GDPR and § 34 BDSG, you have the right to demand information on whether we process your personal data, and if so, to what extent.

You have the right, in accordance with Art. 16 GDPR, to demand the rectification of your personal data.

You have the right, in accordance with Art. 17 GDPR and § 35 BDSG, to demand the deletion of your personal data.

You have the right, in accordance with Art. 18 GDPR, to demand the limitation of the processing of your personal data.

You have the right, in accordance with Art. 20 GDPR, to receive the data concerning your person which you have provided us with, in a structured, commonly used and machine-readable format, and to transmit this personal data to another controller.

You can withdraw granted consent in accordance with Art. 7 para. 3 GDPR. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

WIf you are of the opinion that the processing of your personal data violates the provisions of the GDPR, you have the right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR.

7. Right to object

As stipulated in Art. 21 GDPR, you have the right to object to any processing which arises from the legal basis in Art. 6 para. 1 sentence 1 e) or f) GDPR.If we process personal data for direct marketing purposes, you can object to this processing in accordance with Art. 21 para. 2 and para. 3 GDPR.

8. Data protection officer

You can contact our data protection officer at:

thomas.dieckmann@galvano-pro.de

II. Data processing on our website

When using the website, we collect information that you provide yourself. In addition, certain information about your use of the website is automatically collected during your visit to the website. In data protection law, the IP address is generally also considered a personal date. An IP address is assigned to every device connected to the internet by the internet provider so that it can send and receive data.

1. Data transmission to the USA

Visiting our website may involve the transfer of certain personal data to the USA. For the transfer of data to the USA as a third country, i.e. a country in which the GDPR is not applicable law, the European Commission has decided in accordance with Art. 45 GDPR that an adequate level of data protection is required for companies certified under the EU-US Privacy Shield. The transfer to the USA will then take place in a permissible manner. Certified companies are listed by the U.S. Department of Commerce at: www.privacyshield.gov/list.

2. Processing of server log files

In case of a purely informative use of our website, general information which is transmitted by your browser to our server is automatically (hence not via registration) stored. By default, this includes: type of browser/version, operating system used, accessed page, previously accessed page (referrer URL), IP address, date and time of the server query and HTTP status code.

The processing is necessary for the purposes of pursuing our legitimate interests and is based on the legal foundation of Art. 6 para. 1 sentence 1 f) GDPR. This processing serves the technical administration and security of our website. The stored data is deleted when there are no specific indications that prompt us to suspect, on reasonable grounds, any illegal activity which requires the further review and processing of the information for this reason. We will not be able to identify you as a data subject from the information we hold. Therefore Art. 15 to 22 GDPR do not apply pursuant to Art. 11 para. 2 GDPR, unless you provide additional information to enable identification in order to exercise the rights set out in these articles.

3. Contact form

Our website contains a contact form which you can use to send us messages. The transfer of your personal data in these messages is encrypted. All data fields designated as mandatory fields are required to process your request. Your request cannot be processed if you do not provide all the necessary information. The disclosure of other personal data is voluntary. Alternatively, you can send us a message via the contact email address.

The legal basis for the data processing is provided in Art. 6 para. 1 sentence 1 b) GDPR.

4. Cookies

We use cookies on our website. Cookies are small text files that are stored by your browser when you visit a website. This identifies the browser and can be recognised by our web server. If the use of cookies results in the processing of personal data, it is done on the legal basis of Art. 6 para. 1 sentence 1 f) GDPR. This processing serves our legitimate interest of increasing the user-friendliness, effectiveness and security of our website.

“Session cookies” are cookies which are automatically deleted at the end of your visit. Other cookies (“persistent cookies”) are automatically deleted after a specified period of time, which may differ depending on the cookie. You can delete cookies at any time via your browser’s security settings. You can generally, or for specific instances, object to the use of cookies via your browser settings. The Federal Office for Information Security (BSI) provides additional information at www.bsi-fuer-buerger.de/BSIFB/DE/Empfehlungen/EinrichtungSoftware/EinrichtungBrowser/Sicherheitsmassnahmen/Cookies/cookies_node.html.

5. Integrated services and content of third parties

We use services and contents on our website that are provided by third-party vendors. Integration of these requires the technical processing of your IP address so that the contents can be sent to your browser. Your IP address is therefore forwarded to the respective third-party vendor.

This data processing is conducted to safeguard our legitimate interests regarding the optimisation and economical operation of our website. They arise from the legal basis of Art. 6 para. 1 sentence 1 f) GDPR.

We regularly use the JavaScript programming language for the integration of the contents. You can object to the data processing by deactivating the execution of JavaScript in your browser or by installing a JavaScript blocker. Please note that this may result in functional limitations on the website.

We have included the “Google Maps” service for the depiction of maps on our website. Google Maps is provided by Google Ireland Limited (Ireland/Europe). When using Google Maps, we cannot exclude the possibility that the processed data may be transferred to Google LLC, which is based in the USA. Google LLC is certified under the EU-US Privacy Shield which offers an appropriate level of data protection in accordance with Art. 45 GDPR.