Data privacy

Introduction

We are pleased about your visit to our website. The Rommelag Group of Companies (hereinafter "Rommelag", "we" or "us") attaches great importance to the security of users' data and compliance with data protection regulations. We would like to inform you below about the processing of your personal data on our website. Our processing is generally subject to the European Union's General Data Protection Regulation (GDPR) and, if applicable, foreign data protection law, first and foremost the Swiss Data Protection Act (DPA).

Responsible party and data protection officer

Responsible entity:

 

Rommelag SE & Co. KG
Talstraße 22-30

74429 Sulzbach-Laufen

Tel.: 0797680-0

E-Mail: marketing@rommelag.com

 

External data protection representative:

DDSK GmbH
Herr Stefan Fischerkeller

Tel.: +49 7542 949 21 - 01

E-Mail: datenschutz@rommelag.com

Representative and external data protection consultant in Switzerland:

Suffert Neuenschwander & Partner

Tel.: +41 (0)44 396 62 00

E-Mail: dsb.rommelag@snplegal.com

Terms

The technical terms used in this privacy policy are to be understood as legally defined in Art. 4 DSGVO.

Data processing notes

Automated data processing (log files, etc.)

Our site can be visited without actively providing personal information about the user. However, we automatically store access data (server log files) each time the website is called up, such as the name of the Internet service provider, the operating system used, the website from which the user visited us, the date and duration of the visit or the name of the requested file, and for security reasons, e.g. to detect attacks on our website, the IP address of the end device used for a period of 7 days. These data are evaluated exclusively for the improvement of our offer and do not allow any conclusions to be drawn about the person of the user. A combination of this data with other data sources is not made.

We process and use the data for the following purposes: providing the website, improving our websites, preventing and detecting errors/malfunctions and misuse of the website.

Legal basis: legitimate interest, according to Art. 6 para. 1 lit. f) DSGVO

Legitimate interests: ensuring the functionality and error-free as well as secure operation of the website and adapting this website to the requirements of the users.

 

Use of cookies (general, functionality, opt-out links, etc.)

In order to make the visit to our website attractive and to enable the use of certain functions, we use so-called cookies on our website. The use of cookies serves our legitimate interest in making the visit to our website as pleasant as possible and is based on Art. 6 para. 1 lit. f) DSGVO. Cookies are a standard Internet technology for storing and retrieving login and other usage information for all users of the website. Cookies are small text files that are stored on the end device. Among other things, they allow us to store user preferences so that our website can be displayed in a format tailored to the user device. Some of the cookies we use are deleted at the end of the browser session, i.e. after the browser is closed (so-called session cookies). Other cookies remain on the user's terminal device and enable us or our partner companies to recognize the browser on the next visit (so-called persistent cookies).

The browser can be set so that the user is informed about the setting of cookies and can decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general. Furthermore, the cookies can be deleted afterwards in order to remove data that the website has stored on the user's computer. The deactivation of cookies (so-called opt-out) may lead to some restrictions in the functionality of our website.

Categories of data subjects: website visitors, users of online services

Opt-Out

Internet Explorer:
https://support.microsoft.com/en-gb/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d

Firefox:
https://support.mozilla.org/en-US/kb/how-do-i-turn-do-not-track-feature

Google Chrome:
https://support.google.com/chrome/answer/95647?hl=en-GB

Safari
https://support.apple.com/en-us/HT201265

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO); legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

The relevant legal basis in each case is specifically named for the corresponding tool.

Legitimate interests: storing opt-in preferences, displaying the website, ensuring the functionality of the website, preserving user status across the entire website, recognition for next website visitors, user-friendly online offering, ensuring chat function.

 

Web analysis and optimization

To enable us to evaluate visitor flows on our website, we use tools for web analysis and reach measurement. For this purpose, we collect information about the behavior, interests, or demographic information about our visitors, such as age, gender, or similar. This helps us to recognize at what time our online offer, its functions or content are most frequented or invite repeat visits. In addition, we can use the information collected to determine whether our online offering needs to be optimized or adapted.

The information collected for this purpose is stored in cookies or similar procedures and is used for reach measurement and optimization. The data stored in the cookies may include content viewed, online sites visited, settings and functions and systems used. As a rule, however, no clear user data is processed for the purposes described. In this case, the data is modified in such a way that the actual identity of the users is known neither to us nor to the provider of the tool used. The data modified in this way is often stored in user profiles.

If consent is not given to non-essential cookies and analytics tools, the web analytics service Google Analytics is used without setting cookies that would allow the provider to identify the user. Without cookies, the recognition of returning users is done with the help of a so-called "digital fingerprint", which is generated anonymously, is not stored anywhere, and is changed every 8 hours; With the "digital fingerprint", user movements within our online offer are recorded with the help of pseudonymized IP addresses in combination with user-side browser settings in such a way that conclusions about the identity of individual users are not possible. Google Analytics does not receive any information about how the "digital fingerprint" is determined.

Categories of data subjects: website visitors, users of online services

Categories Data: User data (e.g. web pages visited, interest in content, access times), meta and communication data (e.g. device information, IP addresses), contact data (e.g. e-mail address, telephone number), content data (e.g. text details, photographs, videos).

Purposes of processing: Website analysis, reach measurement, utilization and evaluation of website interaction, lead evaluation.

Legal basis: consent (Art. 6 para. 1 lit. a) DSGVO).

Legitimate interests: Optimization and further development of the website, increase in profits, customer retention and acquisition.

 

Consent Management Tool

We use a consent management procedure on our online offering in order to be able to store and manage the consent given by visitors to our online offering in a verifiable manner in accordance with the requirements of the GDPR. At the same time, visitors to our online offering can use the service we have integrated to store the consent they have given.

Manage consents and preferences or revoke consent.

The consent status is stored on the server and/or in a cookie (so-called opt-in cookie) or a comparable technology in order to be able to assign the consent to a user or their device. In addition, the time of the declaration of consent is recorded.

Categories of data subjects: website visitors who use the Consent Management Tool.

Categories Data: User data (e.g., web pages visited, interest in content, access times), meta and communication data (e.g., device information, IP addresses), Consent data (Consent ID, Consent number, time of submission Consent, opt-in or opt-out, banner language, customer setting, template version).

Purposes of processing: fulfillment of accountability obligations, consent management.

Legal basis: legal obligation (Art. 6 para. 1 lit. c) DSGVO in conjunction with. Art. 7 DSGVO)

 

HubSpot

Deployed service:
HubSpot, Inc.,
25 First Street,
2nd Floor, Cambridge,
MA 02141 USA

Data privacy: https://legal.hubspot.com/privacy-policy

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Google Analytics

Service used:
Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Ireland

Data protection: https://policies.google.com/privacy

Opt-Out-Link: https://policies.google.com/privacy?hl=en or https://myaccount.google.com/

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO), legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

If consent is not given to non-essential cookies and analysis tools, the web analysis service Google Analytics is used without setting cookies that would allow the provider to identify the user. Without cookies, the recognition of returning users is done with the help of a so-called "digital fingerprint", which is generated anonymously, is not stored anywhere, and is changed every 8 hours; With the "digital fingerprint", user movements within our online offer are recorded with the help of pseudonymized IP addresses in combination with user-side browser settings in such a way that conclusions about the identity of individual users are not possible. Google Analytics does not receive any information about how the "digital fingerprint" is determined.

 

Online marketing

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO), legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

In order to continuously increase our reach and the awareness of our online offer, we process personal data in the context of online marketing, in particular with regard to potential interests and measuring the effectiveness of our marketing measures.

For the purpose of measuring the effectiveness of our marketing measures and identifying potential interests, relevant information is stored in cookies or similar procedures are used for this purpose. The data stored in the cookies may include content viewed, online sites visited, settings and functions and systems used. As a rule, however, no clear user data is processed for the purposes described. The data is then modified in such a way that the actual identity of the users is known neither to us nor to the provider of the tool used. The data modified in this way is often stored in user profiles.

In the event that user profiles are stored, the data can be read out, supplemented and added to on the server of the online marketing provider when visiting other online offers that use the same online marketing method.

We can determine the success of our advertisements on the basis of aggregated data made available to us by the provider of the online marketing procedure (so-called conversion measurement). Within the scope of these conversion measurements, we can track whether a marketing measure has led to a purchase decision by the visitor to our online offering. This evaluation serves to analyze the success of our online marketing.

Categories of data subjects: website visitors, users of online services, interested parties, communication partners, business and contractual partners.

Categories of data: User data (e.g. websites visited, interest in content, access times), meta and communication data (e.g. device information, IP addresses), location data, contact data, content data (e.g. text details, photographs, videos).

Purposes of processing: marketing (partly also interest-based and behavioral), conversion measurement, targeting, click tracking, developing marketing strategies and increasing the efficiency of campaigns

Legal basis: consent (Art. 6(1)(a) DSGVO); legitimate interests (Art. 6(1)(f) DSGVO).

Legitimate interests: Optimization and further development of the website, increase in profits, customer loyalty and new customer acquisition

 

Google Tag Manager

Deployed service:

Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Irland

Data privacy:  https://policies.google.com/privacy

Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de or https://myaccount.google.com/

Legal basis: Legitimate interest (Art. 6 para. 1 lit. f) DSGVO)

Legitimate interests:  Coordination of different tools, management, ease of use and presentation.

 

Google Ads and conversion measurement

Deployed service:
Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Irland

Privacy:

https://policies.google.com/privacy

Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de or https://myaccount.google.com/

Legal basis:  Einwilligung (Art. 6 Abs. 1 lit. a) DSGVO)

 

Google Doubleclick

Deployed service:
Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Irland

Privacy:

https://policies.google.com/privacy

Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de or https://myaccount.google.com/

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Google Adsense with personalized ads

Deployed service:
Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Irland

Privacy: 

https://policies.google.com/privacy

Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de or https://myaccount.google.com/

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

LinkedIn

Deployed service:
LinkedIn Corporation,
1000 West Maude Avenue,
Sunnyvale,
CA 94085,
USA

Privacy: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-polic

Opt-Out-Link:  https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Social media presences

We maintain online presences on social networks and career platforms in order to be able to exchange information with the users registered there and to make contact in an uncomplicated manner.

In some cases, the data of users on social networks is used to conduct market research and thus pursue advertising purposes. User profiles can be created via the usage behavior of users, for example the specification of interests, and used to adapt advertisements to the interests of target groups. For this purpose, cookies are regularly stored on the end devices of users, partly regardless of whether they are registered users of the social network.

Depending on where the social network is operated, user data may be processed outside the European Union or outside the European Economic Area. This may result in risks for users, for example because it makes it more difficult to enforce their rights.

Categories of data subjects: registered users and non-registered users of the social network.

Categories of data: master data (e.g., name, address), contact data (e.g., e-mail address, telephone number), content data (e.g., textual information, photographs, videos), usage data (e.g., websites visited, interests, access times), meta and communication data (e.g., device information, IP address).

Purposes of processing: extension of reach, networking.

Legal basis: Legitimate interests (Art. 6 para. 1 lit. f) DSGVO), consent (Art. 6 para. 1 lit. a) DSGVO).

Legitimate Interests: Interaction and communication on social media presence, profit increase, insights about target groups.

 

Facebook

Deployed service:
Facebook Ireland Limited,
4 Grand Canal Square,
Dublin 2,
Irland

Privacy: https://www.facebook.com/privacy/explanation and https://www.facebook.com/legal/terms/page_controller_addendum

Opt-Out-Link: https://www.facebook.com/policies/cookies/ 

 

LinkedIn

Deployed service:
LinkedIn Corporation,
1000 West Maude Avenue,
Sunnyvale,
CA 94085,
USA

Privacy:  https://www.linkedin.com/legal/privacy-policy

Opt-Out-Link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

 

Kununu

Deployed service:
New Work SE,
Dammtorstr. 30,
20354 Hamburg,
Deutschland

Privacy: https://privacy.xing.com/de/datenschutzerklaerung

 

Vimeo

Deployed service:
Vimeo Inc.,
555 West 18th Street New York,
New York 10011,
USA

Privacy: 

https://vimeo.com/privacy

Opt-Out-Link: https://vimeo.com/cookie_policy

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO

 

Xing

Deployed service:  New Work SE,
Dammtorstraße 30,
20354 Hamburg,
Deutschland

Privacy: https://privacy.xing.com/de/datenschutzerklaerung

 

YouTube

Deployed service: 
Google Ireland Limited,
Gordon House,
Barrow Street,
Dublin 4,
Irland

Privacy: 
 
https://policies.google.com/privacy?hl=de&gl=de

Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de and https://myaccount.google.com/

 

Online conferences, meetings and webinars

We make use of the possibility to hold online conferences, meetings and webinars. For this purpose, we use the services of other providers, which we have carefully selected.

When actively using such offers, data of the communication participants is processed and stored on the servers of the third-party providers used, insofar as it is data required for the communication process. Furthermore, usage and metadata may be processed in the process.

Categories of data subjects: participants in the respective online service (conference, meeting, webinar)

Categories of data: master data (e.g., name, address), contact data (e.g., e-mail address, telephone number), content data (e.g., text input, photographs, videos), meta and communication data (e.g., device information, IP addresses)

Purposes of processing: processing requests, increasing efficiency, promoting cross-company or cross-location collaboration.

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO).

 

Skype

Deployed service: 
Microsoft Corporation,
One Microsoft Way,
Redmond,
WA 98052-6399,
USA

Privacy:
 https://privacy.microsoft.com/de-de/privacystatement

Opt-Out-Link: https://account.microsoft.com/privacy/ad-settings/signedout?ru=https:%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Microsoft Teams

Deployed service: 
Microsoft Corporation,
One Microsoft Way,
Redmond,
WA 98052-6399,
USA

Privacy:
 
https://privacy.microsoft.com/de-de/privacystatement

Opt-Out-Link: https://account.microsoft.com/privacy/ad-settings/signedout?ru=https:%2F%2Faccount.microsoft.com%2Fprivacy%2Fad-settings

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Payment service provider

In order to easily make and receive payments or funding, we use various payment service providers in addition to banks and other credit institutions.

To make transactions particularly convenient and uncomplicated for visitors to our online offering, payments to us can also be made via payment service providers. The payment service providers process the data required for the transaction; when using the payment service provider, we do not receive any of the data that visitors to our online offering have provided to them. We receive when using a payment service provider only information with confirmation or negative information of the payment.

Categories of data subjects: customers, sponsors

Categories of data: master data (e.g. name, address), transaction data (bank details, invoices, payment history), contract data (e.g. subject matter of contract, term), meta and communication data (e.g. device information, IP address), contact data (e.g. e-mail address, telephone number).

Purposes of processing: simplification of order and payment processing, outsourcing, data economy.

Legal basis: Legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

Legitimate interests: Simplification of workflows, resource-efficient fulfillment, market research, service provision.

 

PayPal

Deployed service: 
PayPal (Europe) S.à r.l. et Cie, S.C.A.,
22-24 Boulevard Royal,
L-2449 Luxemburg

Privacy:
 
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE

 

Newsletter and broad communication (with tracking if necessary)

On our online offer, users have the option of subscribing to our newsletter or any notifications via various channels (hereinafter referred to as newsletter). We send newsletters within the scope of the legal provisions only to recipients who have consented to receive the newsletter. We use a selected service provider to send our newsletter.

To subscribe to a newsletter from us, it is necessary to provide an e-mail address. If necessary, we collect additional data, such as the name, in order to provide our newsletter with a personal address.

Our newsletter is only sent after the so-called double opt-in procedure has been completed. If visitors of our online offer decide to subscribe to our newsletter, they will receive a confirmation e-mail, which serves to prevent the misuse of false e-mail addresses and to exclude that the sending of the newsletter is triggered by a simple, possibly accidental click. The subscription to our newsletter can be terminated at any time for the future. An unsubscribe link (opt-out link) is included at the end of each newsletter.

In addition, we are obliged to provide proof that our subscribers actually wanted to receive the newsletter. For this purpose, we collect and store the IP address and the time of subscription and unsubscription.

Categories of data subjects: Newsletter subscribers

Categories of data: master data (e.g. name, address), contact data (e.g. e-mail address, telephone number), meta and communication data (e.g. device information, IP address), usage data (e.g. interests, access times).

Purposes of processing: marketing, customer retention and new customer acquisition.

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO)

 

Inxmail Professional

Deployed Service:
Inxmail GmbH,
Wentzingerstr. 17,
79106 Freiburg,
Deutschland

Privacy:
 
https://www.inxmail.de/datenschutz

 

Promotional communication

We also use data provided to us for advertising purposes, in particular to provide information on various channels about news from us or from our portfolio of offers. We will address you with advertising within the framework of the legal requirements and - if necessary - after obtaining your consent.

If the recipients of our advertising do not wish to receive it, they can inform us of this at any time. We will gladly comply with the corresponding request.

Categories of data subjects: Communication partners

Categories of data: master data (e.g. name, address), contact data (e.g. e-mail address, telephone number)

Purposes of processing: Direct marketing

Legal basis: consent (Art. 6 para. 1 lit. a) DSGVO), legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

Legitimate interests: Retention of existing and acquisition of new contacts or contractual partners.

 

Contact

On our online offer, we provide the possibility to contact us directly or to obtain information via various contact options.

In case of contact, we process the data of the inquiring person to the extent necessary for answering or processing the inquiry. Depending on the way in which contact is made with us, the data processed may vary.

Categories of data subjects: Inquiring persons

Categories of data: master data (e.g. name, address), contact data (e.g. e-mail address, telephone number), content data (e.g. text input, photographs, videos), usage data (e.g. interests, access times), meta and communication data (e.g. device information, IP address).

Purposes of processing: processing of requests

Legal basis: Consent (Art. 6 para. 1 lit. a) DSGVO), performance or initiation of a contract (Art. 6 para. 1 lit. b) DSGVO).

 

Events and meetings

On our online offer, visitors have the opportunity to register for events. The information collected by us and required for the initiation and fulfillment of the contract is marked as mandatory. The provision of additional data is voluntary.

Categories of data subjects: Participants, interested parties

Categories of data: Master data (e.g. name, address), contact data (e.g. e-mail address, telephone number), transaction data (bank details, invoices, payment history), contract data (e.g. subject matter of contract, term).

Purposes of processing: contract initiation and execution.

Legal basis: contract initiation and execution (Art. 6 para. 1 lit. b) DSGVO), consent (Art. 6 para. 1 lit. a) DSGVO)

 

Data transmission

We transmit the personal data of visitors to our online offering for internal purposes (e.g., for internal administration or to the HR department in order to comply with legal or contractual obligations). The internal transfer or disclosure of data is only carried out to the extent necessary and in compliance with the relevant data protection regulations.

We are a globally active company with headquarters in Germany. The data of visitors to our online offering is stored in our centralized customer database in Germany in compliance with the relevant data protection regulations and is processed within this framework throughout the Group for internal administrative purposes. Processing beyond administrative purposes does not take place.

Legal basis: legitimate interests (Art. 6 para. 1 lit. f) DSGVO).

Legitimate interests: so-called small group privilege, centralized management and administration within the company to take advantage of synergy effects, cost savings, increase in effectiveness.

In order to execute contracts or to fulfill a legal obligation, it may be necessary for us to pass on personal data. If we are not provided with the data required in this respect, it may not be possible to conclude the contract with the data subject.

We transfer data to countries outside the EEA (so-called third countries). This is done on the basis of the above-mentioned purposes. The transfer takes place only for the fulfillment of our contractual and legal obligations or based on a previously given consent of the data subject.

In the event that we transfer data to a country outside the EEA for processing purposes, we ensure that the processing is legally permissible in the manner we intend. For this case, we have concluded standard data protection clauses incl. a separate regulation of suitable technical and organizational measures in order to protect the data of data subjects in the best possible way.

 

Storage duration

In principle, we store the data of visitors to our online offering for as long as is necessary to provide our service or if this has been provided for by the European Directive and Regulation Maker or another legislator in laws or regulations to which we are subject. In all other cases, we delete the personal data after the purpose has been fulfilled, with the exception of data that we must continue to store in order to fulfill legal obligations (e.g., we are obliged to retain documents such as contracts and invoices for a certain period of time due to retention periods under tax and commercial law).

 

Automated decision making

We do not use automated decision-making or profiling pursuant to Art. 22 DSGVO.

 

Legal basis

The relevant legal bases are primarily derived from the GDPR. These are supplemented by national laws of the Member States and are applicable together with or in addition to the GDPR where applicable. Where applicable, if and insofar as applicable, the legal bases arise from the Swiss Data Protection Act (DSG).

Consent: Art. 6 para.1 lit. a) DSGVO serves as the legal basis for processing operations for which we have obtained consent for a specific processing purpose.

Performance of a contract: Art. 6 (1) (b) DSGVO serves as the legal basis for processing operations necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures carried out at the data subject's request.

Legal obligation: Article 6(1)(c) DSGVO serves as the legal basis for processing operations which are necessary for compliance with a legal obligation.

Vital interests: Art. 6 (1) (d) DSGVO serves as the legal basis if the processing is necessary to protect the vital interests of the data subject or another natural person.

Public interest: Art. 6(1)(e) DSGVO serves as the legal basis for processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Legitimate interest: Art. 6(1)(f) DSGVO serves as the legal basis for processing necessary for the purposes of the legitimate interests of the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

 

Rights of the data subjects

Right to information: Pursuant to Art. 15 of the GDPR, data subjects have the right to request confirmation as to whether we are processing data relating to them. They can request information about this data as well as the further information listed in Art. 15 (1) DSGVO and a copy of their data.

Right to rectification: Pursuant to Art. 16 DSGVO, data subjects have the right to request that data concerning them and processed by us be corrected or completed.

Right to erasure: Pursuant to Art. 17 of the GDPR, data subjects have the right to request the immediate erasure of the data concerning them. Alternatively, they can demand that we restrict the processing of their data in accordance with Art. 18 DSGVO.

Right to data portability: Pursuant to Art. 20 DSGVO, data subjects have the right to request that the data they have provided to us be made available and transferred to another controller.

Right of complaint: Data subjects also have the right to complain to the supervisory authority responsible for them in accordance with Art. 77 DSGVO.

Right to object: If personal data is processed on the basis of legitimate interests pursuant to Article 6 (1) sentence 1 lit. f) DSGVO, data subjects have the right to object to the processing of their personal data pursuant to Article 21 DSGVO, insofar as there are grounds for doing so that arise from their particular situation or the objection is directed against direct marketing. In the latter case, data subjects have a general right to object, which is implemented by us without specifying a particular situation.

The data subjects are entitled to the same data subject rights under the Swiss Data Protection Act, if and to the extent that it is applicable.

 

Revocation

Some data processing operations are only possible with the express consent of the data subjects. You have the possibility to revoke an already given consent at any time. For this purpose, an informal communication or e-mail to datenschutz@rommelag.com to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

External links

Our website contains links to the online offers of other providers. We hereby point out that we have no influence on the content of the linked online offers and the compliance with data protection regulations by their providers.

 

Changes

We reserve the right to adapt this data protection notice at any time in the event of changes to our online offering and in compliance with the applicable data protection regulations so that it meets the legal requirements.

This privacy policy was created by DDSK GmbH