Website Privacy Policy

In the following, we provide you with information about how your personal data will be collected when you use this website. Personal data means all data that are personally relatable to you, including, but not limited to, name, address, email addresses, user behaviour.

1. Information on the Collection of Personal Data and Provider Identification

Controller as defined in the GDPR

DILO Armaturen und Anlagen GmbH
Frundsbergstr. 36
87727 Babenhausen

Phone: +49 8333 302 0
Fax:       +49 8333 302 52
Email: info(at)dilo-gmbh(dot)com

represented by the managing directors, Christian Scheller, Dr. Klaus Jostschulte

Data Protection Officer

If you have any questions on data protection, please contact our Data Protection Officer:
by email:       datenschutz(at)dilo-gmbh(dot)com
by post:           use the above address, to the attention of the Data Protection Officer
 

2. Your Rights When Using This Website

You have the right,

  • to obtain access to your data stored by us that have been collected during your visit to the website, pursuant to Article 15 of GDPR;
  • to request the immediate rectification of inaccurate data or completion of your personal data stored by us, pursuant to Article 16 of GDPR;
  • to request the erasure of your personal data stored by us, unless processing is required for compliance with a legal obligation or for the establishment, exercise or defence of legal claims, pursuant to Article 17 of GDPR;
  • to withdraw any consent you granted us for the processing, at any time, pursuant to Article 7(3) of GDPR. This will have the consequence that we will no longer be allowed to continue any data processing based on this consent in the future. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal;
  • to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format, or to request their transmission to another controller, pursuant to Article 20 of GDPR;
  • to obtain restriction of processing, pursuant to Article 18 of GDPR. We will restrict processing if the conditions of Article 18(1) of GDPR are met;
  • if your personal data are processed based on legitimate interests pursuant to point (f) of sentence 1 of Art. 6(1) of GDPR, you have the right to object to the processing of your personal data on grounds relating to your personal situation or where such objection is brought against direct marketing pursuant to Article 21 of GDPR. In the latter case, you have a general right to object, which we will implement without any particular situation being stated;
  • to lodge a complaint with the competent data protection supervisory authority if you consider that the processing of the personal data collected during your visit of our website infringes the General Data Protection Regulation, pursuant to Article 77 of GDPR. The supervisory authority in charge of DILO Armaturen und Anlagen GmbH is the Bayerisches Landesamt für Datenschutzaufsicht [Data Protection Authority of Bavaria], Promenade 27, 91522 Ansbach, Germany, www.lda.bayern.de.

Please address all requests for information or access, or objections regarding data processing by email to our Data Protection Officer at Datenschutz@dilo-gmbh.com or to the contact details specified under Art. 1.

3.  Data Security

We maintain current technical measures in order to ensure data security, in particular for the protection of your personal data against risks during data transmissions as well as from access by third parties. These measures are adjusted in accordance with the state of the art.
 

4. Handling of Personal Data

4.1. Collection of Personal Data When Visiting Our Website

General use

When you only visit our website for informative purposes, i.e. if you do not register or otherwise transmit information to us, we will only collect the personal data that your browser transfers to our server. If you wish to view our website, we will collect the following data, which are technically necessary for us so that we are able to display our website and ensure its stability and security. The legal basis is point (f) of sentence 1 of Article 6(1) GDPR (legitimate interests).

  • IP address;
  • date and time of the request;
  • the time zone difference to the Greenwich Mean Time (GMT);
  • the contents of the request (specific site);
  • the access status / HTTP status code;
  • respective data quantity transmitted;
  • the website from which the request originates;
  • browser;
  • operating system and its interface;
  • language and version of the browser software.

Use of Cookies

In addition, when using the website, cookies will be stored on your computer if you have given your consent to such storage, when accessing the website, by clicking on the cookie banner. Cookies are small text files that are stored on your hard drive, as assigned accordingly by the browser that you use, which provide the party placing the cookie (in this case, us) with certain information. Cookies cannot run programmes or transmit viruses to your computer. They serve the purpose of making the internet offering more user friendly and more effective as a whole. The legal basis is point (a) of sentence 1 of Article 6(1) of GDPR (consent).

You can configure your browser settings in line with your wishes. However, we would like to draw your attention to the fact that you might probably not be able to use all functions of this website in such case.

4.2. More Functions and Offers of our Website

Collection and use of personal data when using functions of our website.

Contact option by email / contact forms

Should you have enquiries of any kind, we offer you the option to contact us using the email address specified on the website or contact forms. Your communicated data will be processed to reply to your enquiry. In this context, any enquiries made by individuals not having their place of residence in Germany will be forwarded by us to the respective country representation.

The legal basis for the processing of such data transferred in the course of an enquiry is point (f) of Article 6(1) of GDPR (legitimate interests).

If the purpose of the enquiry is to conclude a contract, an additional legal basis for processing is point (b) of Article 6(1) of GDPR (performance of a contract).

The sole purpose of the processing of such personal data is to handle the contact.

The aforementioned data will be erased as soon as they are no longer required for achieving the purpose of their collection and no statutory retention periods apply. For data transferred for processing the enquiry, this is the case when the relevant conversation with the user has come to an end. The conversation is also deemed terminated once it becomes clear from the circumstances that the relevant issue has been conclusively resolved.

The user has the possibility to object to data processing. The objection must be addressed to the contact details specified under no 1. All personal data stored in the course of contacting will be erased in this case.

We will use your email address, in addition to enquiry processing purposes, to provide you by email with information about similar goods/services as well as trade fair dates where you have given us your consent to do so pursuant to point (a) of sentence 1 of Article 6(1) of GDPR.

Newsletter

You can consent to subscribe to our newsletter, which provides you with information about our current interesting offers. The legal basis is point (a) of sentence 1 of Article 6(1) of GDPR.

For the subscription to our newsletter, we use the double opt-in procedure. This means that, after specification of your email address, we will send a confirmation email to the specified email address in which we ask you to confirm that you want to receive the newsletter. If you confirm your request for receiving the newsletter, we will store your email address until you unsubscribe from the newsletter. The storage exclusively serves the purpose of being able to send you the newsletter. Apart from that, we will, upon subscription and confirmation, in each case, store your IP address and the points of time in order to prevent any misuse of your personal data.

Mandatory information for sending the newsletter is your email address. The provision of further information is voluntary, and it will solely be used to personalise the newsletter.

You may withdraw your consent to the transmission of the newsletter at any time. You can submit your withdrawal by clicking on the link provided in each newsletter email, using this form on the website, or by sending a message to the contact details specified in the imprint. The data provided by you will not be forwarded to any third parties.

Please note that we will analyse any opening and click-through rates pursuant to point (f) of Article 6(1) of GDPR to improve our newsletter sent to you. In order to carry out such analysis, the emails sent will contain so-called web beacons, also called tracking pixels. These are one-pixel image files referring to our website and giving us the possibility to analyse the opening and click-through rates of the newsletter subscribers. Such kind of tracking will not be possible if you have disabled the display of images in your email programme by default. In this case, however, the newsletter will not be displayed to you in its entirety, and you will probably not be able to use all functions provided. If you have the images be displayed manually, the tracking procedure mentioned above will be used.

 

5. Analytics Tools and Advertising

Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States, (“Google”). Google Analytics uses so-called “cookies”, i.e. text files which will be stored on your computer and will allow for an analysis of the use of the website by you. The information generated by the cookie concerning your use of this website is usually transmitted to a Google server in the US and stored there. In the event that the IP anonymisation option is enabled on this web site, however, your IP address will first be shortened by Google within the Member States of the European Union or in other countries which are parties to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. Google will use such information on behalf of the operator of this website to analyse your use of the website, to compile reports about the website activities and to provide the website operator with additional services related to the use of the website and to the use of the internet.

This website uses Google Analytics with the “_anonymizeIp()” extension. In this way, IP addresses will be further processed in a shortened form, making it thus impossible to link it to a particular individual.

The IP address transmitted by your browser in connection with Google Analytics will not be merged with any other Google data.

You can prevent the storage of such cookies by changing the settings of your browser software accordingly; however, please note that, in this case, you may not be able to make full use of all the functions of this website.

In addition, you can prevent the collection of the data created by the cookie and related to your use of the website (incl. your IP address) as well as the processing of such data by Google by downloading and installing the browser plug-in available at the following link: https:tools.google.com/dlpage/gaoptout.

Should you access our page via a mobile device (smartphone or tablet), you will need to click on this link instead, in order to prevent future tracking by Google Analytics on this webpage. This alternative may also be chosen instead of the abovementioned browser add-on. By clicking on the link, an opt-out cookie will be placed on your browser which will only be valid for this browser and this domain. Should you erase the cookies in this respective browser, the opt-out cookie will be erased as well. You will therefore need to click on the link again.

We use Google Analytics to analyse and make regular improvements to the use of our website. The statistics obtained therefrom help us to improve our offering and to make it more interesting for you as a user. The legal basis for the use of Google Analytics is point (f) of sentence 1 of Article 6(1) of GDPR (consent).

Information of the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Usage terms: www.google.com/analytics/terms/de.html.

Overview on data protection: www.google.com/intl/de/analytics/learn/privacy.html, and the Privacy Policy: www.google.de/intl/de/policies/privacy.

Matomo

This website uses the open source web analysis service Matomo.
With the help of Matomo, we are able to collect and analyse data about the use of our website by website visitors. This allows us to find out, among other things, when which page views were made and from which region they come. We also collect various log files (e.g. IP address, referrer, browsers and operating systems used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.).

This analysis tool is used on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

IP anonymisation

When analysing with Matomo, we use IP anonymisation. Your IP address will be shortened before the analysis so that it can no longer be clearly assigned to you.

Hosting

We host Matomo with the following third-party provider:
Matomo Cloud

6. Embedding of Google Maps

We embed the maps from the “Google Maps“ service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To provide the map material, Google processes the data that are technically required for that purpose.

Embedding the Google Maps service is necessary to design our website in line with demand. This is also our legitimate interest in data processing pursuant to point (f) of Article 6(1) of GDPR (legitimate interests).

Further data processing is the responsibility of Google LLC. Further information on the handling of your data by Google is available at www.policies.google.com/privacy.


7. Use of Social Media Buttons with “Shariff”

On our website, we allow you to make use of social media buttons. To protect your data, we rely on the “Shariff” solution during the implementation. “Shariff” replaces the usual Share buttons provided in social media networks, protecting thus the user’s surfing habits.

“Shariff” will solely embed these Share buttons of the social media networks on our website into a graphic containing a link to the corresponding social media network. By clicking on the corresponding graphic, you will be forwarded to the service of the respective provider.

The Shariff button will not establish any direct contact between the social media network and the visitors of the website, unless the visitor actively clicked on the button. Only then will your data be forwarded to the respective social media network. If the Shariff button is not clicked, in turn, there will be no exchange between you and the social media networks. To obtain information on the collection and use of your data in social media networks, please refer to the respective Terms of Use of the different providers. More information on the Shariff solution (in the German language) can be found here: http://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html. The legal basis for embedding social media buttons is point (f) of Article 6(1) of GDPR (legitimate interests).

We have embedded the social media buttons of the following companies within our web site:

8. Embedding of Videos

§ 8.1 Integration of Bunny CDN

To secure this website and optimise loading times, BunnyCDN is used as a CDN ("Content Delivery Network"). Therefore, all requests are directed to their server. All personal data is anonymised and not transmitted to third parties. For more information on the data collected and its security / privacy, please refer to Bunny CDN's privacy notice at: https://bunnycdn.com/privacy.

Bunny CDN is used in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest in line with Art. 6 Para. 1 lit. f GDPR.

We have concluded an order processing agreement with BunnyCDN and fully implement the strict requirements of the German data protection authorities when using BunnyCDN.

8.2 Embedding of YouTube Videos

We have embedded YouTube videos in our online offering which are stored on http://www.YouTube.com and can be directly played back on our website. The service on de.youtube.com is provided by Google Ireland Limited Gordon House, Barrow Street, Dublin 4, Ireland. The YouTube videos are all embedded in the “extended data protection mode”, which means that no data about you as a user will be forwarded to YouTube, unless you play back the videos. Only when you play back the videos, will the data mentioned in section 2 be transmitted. We do not have any influence on the transmission of such data. YouTube is used in the interest of a comfortable and easy use of our website. This constitutes a legitimate interest within the meaning of point (f) of Article 6(1) of GDPR.

By visiting this website, YouTube is notified that you have accessed the corresponding sub-page of our website. Additionally, the data listed in section 4.1 of this Privacy Policy will be transmitted. This transmission is independent of whether YouTube provides a user account that you have logged into or whether you have no user account. If you are logged into your user account, your data will directly be linked to your account. If you do not wish for YouTube to attribute data to your profile, you have to log out of your user account before visiting our website. YouTube saves your data as user profiles and utilises them for advertisement, market research and/or a needs-oriented design of their website. The particular objectives of such analysis (even in case of users who are not logged in) are the provision of appropriate advertisement and informing other users of the social network of your activities on our website. You have the right to object to the creation of these user profiles, and need to contact YouTube to exercise such rights.

Please see the privacy policy of YouTube for further information on purpose and scope of data collection and processing thereof by YouTube. There, you will also find further information on your rights and the setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.


9. Use of the Google Tag Manager

The website uses the Google Tag Manager, a service of Google Inc. (“Google”). This service allows to manage website tags using an interface.

The Tag Manager tool itself (which implements the tags) is a cookie-free domain and does not collect personal data. The tool triggers the implementation of other tags that may collect data on their part. Google Tag Manager does not access these data. In case of deactivation on domain or cookie level, it remains in effect for all tracking tags that were implemented using Google Tag Manager.


10. Privacy Notice on the Provision of Services

We process personal data obtained by us from you in the course of our business relationship in line with the provisions of the European General Data Protection Regulation (GDPR) based on points (a), (b) and (c) of Article 6(1) of GDPR. This includes customer master data, such as information on name and address, communication data, profession and economic sector, professional status, order data, contract master data, contract billing and payment data, customer history.

In addition, we process – where required for the provision of our services – personal data which we obtain from publicly accessible channels of information, such as trade press or company websites.

Your personal data will be erased once the order has been processed and the statutory retention period for business documents has expired (six or ten years in accordance with Section 257 (4) of HGB [German Commercial Code], Section 147(3) of AO [German Fiscal Code], Section 14b of UStG [German VAT Act]), unless it is required for the establishment, exercise or defence of legal claims.

During the course of our business relationship, you are only required to provide such personal data as is required for the provision of services or documentation obligations in accordance with section 1.

During the course of the business relationship, your data can be accessed by those of our employees that require such data for the fulfilment of our contractual and legal obligations.


11. Privacy Notice on the Facebook Presence

The company makes use of the technical platform and the services of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Our Facebook presence serves to improve the active communication with our customers and prospects. Legal basis is point (f) of Article 6(1) of GDPR.

According to an ECJ judgement of 05/06/2018, the operator of a Facebook page and Facebook are jointly responsible for the processing of personal data.

If our Facebook page is accessed, Facebook will record, among other things, your IP address and other information that exists on your computer in the form of cookies. This information will be used to provide us, as operator of the Facebook pages, with statistical information about how the Facebook page is used. Detailed information regarding this is provided by Facebook at the following link: http://de-de.facebook.com/help/pages/insights. We do not have any influence on the generation and presentation of the information.

The data collected about you in this context will be processed by Facebook Ltd. and may be transmitted to countries outside the European Union. The information received and its use by Facebook is described by Facebook in general terms in its Privacy Policy. The Facebook Privacy Policy also contains information about options to contact Facebook and on the setting options for advertisements. The Privacy Policy is available at the following link:  http://de-de.facebook.com/about/privacy. The full data use policy of Facebook is available here:

https://de-de.facebook.com/full_data_use_policy

It is not conclusively and clearly indicated by Facebook, nor is it known to us, in which way Facebook uses the data from the visit to Facebook pages for own purposes, to what extent activities on the Facebook page are assigned to individual users, for what period Facebook retains such data and whether data from a visit to the Facebook page will be forwarded to third parties.

When accessing a Facebook page, the IP address assigned to your terminal will be transmitted to Facebook. According to Facebook, this IP address will be anonymised (in case of "German” IP addresses) and erased after 90 days. Moreover, Facebook will store information about the terminals of its users (e.g. as part of the “login notification” function), which may allow Facebook to assign IP addresses to individual users.

If you, as user, are currently logged into Facebook, your terminal contains a cookie with your Facebook ID. This enables Facebook to track that you have accessed this page and how you have used it. This also applies to all other Facebook pages. Facebook buttons embedded in websites enable Facebook to record your visits to these website pages and to assign them to your Facebook profile. Using this data, contents or advertising can be offered tailored to your needs.

If you wish to avoid this, you should log out of Facebook or disable the “remain logged in” function, erasing the cookies on your device and closing and restarting your browser. In this way, any information allowing Facebook to directly identify you will be erased. You can use our Facebook page without your Facebook ID being disclosed. If you access interactive functions of the page (Like, Comment, Share, Messages, etc.), you will see a Facebook login mask. Following your login, Facebook can identify you as a specific user again.

Information on how you can manage or erase information existing about you can be found on the following Facebook support pages:

https://de-de.facebook.com/about/privacy

Facebook has taken on the primary responsibility for the processing of Insights data and, among other things, for the exercise of the data subject’s rights pursuant to Article 15 et seq. of GDPR. If you have information enquiries or other questions regarding your rights, such as the erasure of data, please address them directly to Facebook, since only Facebook has full access to your user data. If we receive related enquiries directly from you, we will forward them to Facebook.

We do not collect and process any further data from your use of the company’s own Facebook page.


12. Social Media Profiles on LinkedIn and Instagram

We have profiles in the social networks LinkedIn and Instagram to communicate with the users registered there and to inform them about our products, services and news. When you use and visit our profile in the relevant network, you are deemed to have accepted the Privacy Policy and Terms of Use of the relevant social media provider.

Your personal data will be processed when you visit our profiles on LinkedIn and Instagram on the basis of our justified interest in a multi-faceted external presentation of our company and the use of an effective option to inform you and to communicate with you. The legal basis is point (f) of Article 6(1) of GDPR. Insofar as you have granted the controller of the social network your consent to the processing of your personal data, the legal basis is point (a) of Article 6(1) of GDPR.

We have no influence on the processing of personal data by the relevant social media provider. When you visit our profiles, the social media provider will store cookies in your browser which store your usage behaviour and your interests for market research and advertising purposes. For detailed information on the data processing when you use our social media profiles and on your rights, please refer to the privacy policy of the social media providers:

  • Instagram (provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)

Privacy Policy/ opt-out: http://instagram.com/about/legal/privacy/.

Cookie Policy and opt-out: https://www.linkedin.com/legal/cookie-policy.

 

13. Obligation to Provide Data

You are not obliged by law to provide data. If you do not provide personal data, however, you will not be able to use certain functions of our website.


14. Existence of Automated Decision-Making Including Profiling

We do not use any such procedure.
 

15. Amendments to the Privacy Policy

Due to the continued development of our website and related offerings or because of amended legal or official regulations, it may become necessary to amend this Privacy Policy.

“Shariff” will solely embed these Share buttons of the social media networks on our website into a graphic containing a link to the corresponding social media network. By clicking on the corresponding graphic, you will be forwarded to the service of the respective provider.

The Shariff button will not establish any direct contact between the social media network and the visitors of the website, unless the visitor actively clicked on the button. Only then will your data be forwarded to the respective social media network. If the Shariff button is not clicked, in turn, there will be no exchange between you and the social media networks. To obtain information on the collection and use of your data in social media networks, please refer to the respective Terms of Use of the different providers. More information on the Shariff solution (in the German language) can be found here: http://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html. The legal basis for embedding social media buttons is point (f) of Article 6(1) of GDPR (legitimate interests).

We have embedded the social media buttons of the following companies within our web site:

16. Internal Reporting Office 

The protection and well-being of our employees, our customers and our suppliers and subcontractors are very important to our company. At the same time, we are aware of our social responsibility. Therefore, it is important to us that we are at all times in full compliance with the legal Requirements that are placed on our company. Any grievances are noticed more quickly, the more people our work processes however, it is important that we actually receive reports of such problems. We would therefore like to offer an easy way to to provide us with information about possible violations. 

Who can make a report? 
For this purpose, you can use the link below  

  • our employees, 
  • temporary workers assigned to us and 
  • in addition, all other natural persons who, in the course of their professional activities, 

are in contact with our company, contact us with a report. 

How can I reach the hotline? 
Messages can be sent in text form under  

https://dilo.sicherhinweisen.de 

are submitted. Anonymous reports are also possible.