The protection of your data has a particularly high priority for Ruhr:Hub GmbH (hereinafter: our company). At this point we would like to point out that we process personal data in accordance with the data protection regulations, in particular Regulation (EU) 2016/679 (General Data Protection Regulation; hereinafter: GDPR).
With this declaration we would like to inform you about the exact data handling in our company in connection with the use of our web pages:
This data protection declaration is essentially based on the terms and definitions of the GDPR. We would like to refer in particular to the definitions in Art. 4 GDPR, which you can find freely accessible on the Internet (e.g. here). We would like to briefly describe the most important terms from our point of view:
´personal data´ means any information relating to an identified or identifiable natural person ('data subject'); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, a location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
´processing´ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automatic means, such as collection, recording, organisation, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
´controller´ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
´recipient´ means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
´consent´ of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
2. Person responsible for data protection
Lindenallee 10, 45127 Essen
represented by the managing directors
Oliver Weimann & Svenja Tietje
Telephone: 0201 36537593
3. Data protection officer
In accordance with the legal requirements, we have not appointed a data protection officer. If you have any questions on the subject of data protection, please contact our management using the contact details above.
4. Which data is collected/processed?
a) Simple use of our web pages
When you visit our website, the following data is recorded and stored by our server:
- Browser and operating system used,
- If applicable, the web page from which you reach our pages
- Date/time of your visit to our website,
- Your IP address,
- Your internet provider
This data is required in order to be able to show you our website at all, to improve the content of our website and to ensure the permanent functionality of our website.
It is not possible for us to identify you personally using this data alone. For this purpose we would additionally need the data stored with third parties, in particular the data stored with your internet provider. Your internet provider knows which specific internet connection was provided with the stored IP address at the time of your visit. If several people use an internet connection, it is not possible to determine the concrete person solely by means of the IP address. Your internet provider is generally not authorised to provide us with the data stored by him. Only in the case of illegal behaviour in connection with your IP address (e.g. attack of our systems via your IP address) would we forward the stored data to the criminal prosecution authorities, who may then be able to determine your identity by using the data of your Internet provider. The data of the server log files are stored separately from all personal data provided by a person concerned.
If these operations involve the processing of personal data, the legal basis for this is Art. 6 para. 1 sentence 1 letter f GDPR.
Even cookies alone do not enable us to identify you personally, but only to recognize your browser or the terminal device you use.
If these operations involve the processing of personal data, the legal basis for this is Art. 6 para. 1 sentence 1 letter f GDPR.
c) Use of our contact form
If you contact us via the contact form on our website, our company will collect and store the personal data provided by you in the contact form.
This processing serves the purpose of further communication with you. The legal basis for the processing is the consent given by you by sending the contact form (Art. 6 para. 1 sentence 1 lit. a) GDPR). You can revoke your consent at any time (e.g. by email or letter). This also applies to the revocation of declarations of consent that were issued to us before the GDPR was applicable. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected by your revocation.
The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. This is the case for the personal data from the input mask of the contact form when the respective communication with you has ended. The communication is terminated when it can be concluded from the circumstances that the matter in question has been finally clarified. If the establishment of contact is in connection with the conclusion of a contract, further retention periods may result from the law (tax code, commercial code, etc.).
If you contact us via email, we will process the personal data you provided in your email/phone call for the purpose of further communication with you.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 Paragraph 1 S. 1 letter f GDPR. If the contact is aimed at the conclusion of a contract, the additional legal basis for processing is Art. 6 para. 1 sentence 1 lit. b GDPR.
The data will be deleted as soon as they are no longer necessary for the purpose for which they were collected. For personal data sent by e-mail/telephone, this is the case when the respective communication with you has ended. The communication is terminated when it can be concluded from the circumstances that the matter in question has been finally clarified. If the establishment of contact is in connection with the conclusion of a contract, further retention periods may result from the law (tax code, commercial code, etc.).
e) Registration function
Users can create a user account with us. During the registration process, the required mandatory data will be communicated to the users again and requested by them. We process the data entered during registration for the purpose of using the offer. Users can be informed by e-mail about information relevant to the offer or registration, such as changes in the scope of the offer or technical circumstances. The legal basis for this is the consent you have given during registration (Art. 6 para. 1 sentence 1 lit. a) GDPR). If users have terminated their user account, their data relating to the user account will be deleted, unless it is necessary to keep them for reasons of commercial or tax law. The legal basis for the processing would then be Art. 6 para. 1 lit. c) GDPR. If an order/contract is placed using the registration/login on our website, the data provided by you will be used to carry out the contractual relationship. The legal basis is then Art. 6 para. 1 lit. b) GDPR.
In the context of the use of our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the user's need for protection against misuse and other unauthorized use. As a matter of principle, this data will not be passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so. By linking your IP address with the information you provided during registration, your IP address becomes one for us.
5. Your rights
You are entitled to the following rights:
- Right of access by the data subject pursuant to Article 15 GDPR
- Right of rectification pursuant to Article 16 GDPR
- Right to erasure (‘right to be forgotten’) pursuant to Article 17 GDPR
- Right to restriction of processing pursuant to Article 18 GDPR
- Right to object pursuant to Article 21 GDPR
- Right to data portability from Article 20 GDPR
- Right to appeal to a data protection supervisory authority (e.g. State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia, Inbox 20 04 44, 40102
Düsseldorf, Tel.: 0211/38424-0, Fax: 0211/38424-10, E-Mail: email@example.com).
6. Information disclosure
We store data with an external hosting provider. We use the following hosting services to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services. We need all these services to operate our online offer. In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors of our online offer on the basis of our legitimate interests in an efficient and secure provision of this online offer in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with Art. 28 GDPR.
7. Third party provider/Social Media Plug-ins (Facebook, YouTube, google analytics etc.)
a) Google Analytics
We have integrated the Google Analytics component (with anonymisation function) on our website. Google Analytics is a web analysis service. Web analysis is the collection, collection and evaluation of data on the behaviour of visitors to websites. Among other things, a web analysis service collects data about the website from which a person concerned came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. A web analysis is mainly used to optimize a web page and for cost-benefit analysis of internet advertising. The operating company of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. We use the addition "_gat._anonymizeIp" for web analysis via Google Analytics. By means of this addition, the IP address of the internet connection of the person concerned is shortened by Google and made anonymous if the access to our internet pages occurs from a member state of the European Union or from another state that is a signatory to the Agreement on the European Economic Area. The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google Analytics sets a cookie on the information technology system of the person concerned. You can read about what cookies are in section 4 above. By setting the cookie, Google is enabled to analyse the use of our website. Each time one of the individual pages of this website, which is operated by the data controller and on which a Google Analytics component has been integrated, is called up, the internet browser of the person concerned is automatically prompted by the respective Google Analytics component to transmit data to Google for the purpose of online analysis. Within the scope of this technical procedure, Google receives knowledge of data such as the IP address of the person concerned, which serves Google, among other things, to trace the origin of visitors and clicks and subsequently to enable commission settlements. By means of the cookie, personal information such as the access time, the location from which an access originated and the frequency of visits to our website by the person concerned is stored. Each time our website is visited, this personal data, including the IP address of the Internet connection used by the person concerned, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may pass on this personal data collected via the technical process to third parties.
b) Google Maps
This site uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an attractive presentation of our online offers and to make it easy to find the places we have indicated on the website. This represents a legitimate interest in the sense of Art. 6 para. 1 lit. f GDPR.
This website uses the services of MailChimp for sending newsletters. Provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.
MailChimp is a service with which, among other things, the sending of newsletters can be organized and analyzed. If you enter data for the purpose of receiving newsletters (e.g. e-mail address), this data is stored on the servers of MailChimp in the USA. MailChimp is certified according to the "EU-US-Privacy-Shield". The "Privacy-Shield" is an agreement between the European Union (EU) and the USA, which is intended to ensure compliance with European data protection standards in the USA.
With the help of MailChimp we can analyze our newsletter campaigns. When you open an e-mail sent with MailChimp, a file contained in the e-mail (so-called web-beacon) connects to the servers of MailChimp in the USA. This way it can be determined whether a newsletter message has been opened and which links have been clicked on. Furthermore, technical information is collected (e.g. time of retrieval, IP address, browser type and operating system). We do not use this data for personalized evaluations. They are used exclusively for statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
If you do not want to receive any analysis by MailChimp, you have to unsubscribe from the newsletter. For this purpose we provide a corresponding link in every newsletter message. Furthermore you can unsubscribe the newsletter directly on the website.
The data processing is based on your consent (Art. 6 para. 1 lit. a) GDPR). You can revoke this consent at any time by unsubscribing to the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of MailChimp after you unsubscribe from the newsletter. Data, which was stored for other purposes (e.g. e-mail addresses for the member area) remain unaffected.