Loading...

Privacy Policy of Zenit Design GmbH

This privacy policy explains how Zenit Design GmbH handles your data. Data protection is very important to us, which is why we do not collect any unnecessary data. We are an official Shopware Premium Extension Partner.

Preface

With the following information, we as the controller would like to provide an overview of the processing of personal data on this website. This is a purely informational offering – it is not possible to place orders or create a user account.

General

Use of this offering is generally possible without providing any personal data. Insofar as personal data (name, address, e-mail addresses, etc.) is collected, this is always done on a voluntary basis where possible. The provider points out that data transmission over the internet can have security gaps. Complete protection of data against access by third parties is not possible.

Scope

This privacy policy informs users about the nature, scope and purposes of the collection and use of personal data by the responsible provider / controller of this website (hereinafter the “offering”). Data processing on this offering is carried out by the website operator. You can find their contact details in the legal notice of this offering.

The legal foundations of data protection can be found in the German Federal Data Protection Act (BDSG-Neu) and the German Telemedia Act (TMG).

Legal Basis for the Processing of Data

The processing and use of personal data takes place without further consent insofar as it is necessary for the establishment and performance of a contract as well as for billing purposes (Art. 6 (1) lit. b GDPR).

Data is collected with prior consent for sending newsletters, contact forms as well as account openings or user registrations (Art. 6 (1) lit. a GDPR).

To safeguard the legitimate interests of the controller or a third party, the provider collects data – for example by means of server log files. This data is evaluated exclusively to ensure the trouble-free operation of the site and to improve the offering (Art. 6 (1) lit. f GDPR).

Where the processing of personal data is based on Art. 6 (1) lit. f GDPR, the legitimate interest of the provider, unless stated otherwise, is the conduct of its business activities. In addition, the purposes and interests of the processing are stated individually within the above list.

Storage of Access Data in Server Log Files

You can visit these web pages without providing any personal information. The provider (or its web hosting provider) collects data about every access to the offering (so-called server log files). The access data includes:

Name of the accessed web page, file, date and time of access, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

The provider uses the log data only for statistical evaluations for the purpose of operation, security and optimisation of the offering. However, the provider reserves the right to subsequently review the log data if there are concrete indications giving rise to a justified suspicion of unlawful use. This information is technically necessary in order to correctly deliver the content of web pages requested by you and is unavoidable when using the internet. This data is not merged with other data sources.

The legal basis for the temporary storage of this data and the server log files is Art. 6 (1) lit. f GDPR. This data is evaluated exclusively to ensure the permanent and trouble-free operation of the website and to improve the content of the offering, as well as for transmission to law enforcement authorities in the event of a cyberattack. The provider evaluates this collected data and information statistically with the aim of increasing data protection and data security. The server log file data is stored separately from any other personal data provided by you.

Handling of Personal Data

Personal data is information that can be used to identify a person, i.e. details that can be traced back to a person. This includes the name, the e-mail address or the telephone number. However, data about preferences, hobbies, memberships or which websites someone has viewed also counts as personal data.

Personal data is only collected, used and passed on by the provider if this is permitted by law or if the users consent to the data collection.

SSL Encryption

To protect the security of your data during transmission, the provider uses encryption methods (e.g. SSL) over HTTPS in line with the current state of technology. You can recognise an encrypted connection by the lock symbol in your browser bar or by the https:// in the address bar of the browser. According to the current state of technology, data can therefore not be read by third parties.

Handling of Anonymised Data

Anonymised data is information that can be used to evaluate user behaviour on this offering anonymously and to display recommendations. This anonymised data is stored with the help of cookies and session cookies in the user's browser.

Use of Cookies

On this website we do not use any analysis or tracking cookies, only cookies that are necessary for technical functionality:

  • A cookie to store the language selection so that your choice is retained on your next visit.

We do not collect any personal data via cookies, no usage data or IP addresses. Therefore, no cookie banner is required.

Transfer to Third Parties

The provider does not transfer personal data to third parties beyond the purpose for which it was collected. Data is only passed on to state institutions and authorities within the scope of mandatory national legal provisions or where the transfer is necessary for legal or criminal prosecution in the event of attacks on the provider's network infrastructure.

Deletion or Blocking of Data

The provider adheres to the principles of data avoidance and data minimisation. The provider therefore stores the user's personal data only for as long as is necessary to achieve the purposes stated here or as provided for by the various storage periods stipulated by the legislator. Once the respective purpose ceases to apply or these periods expire, the relevant data is routinely blocked or deleted in accordance with the statutory provisions.

Basis of the above-mentioned rights: Right to erasure (Art. 17 GDPR)

Revocation, Changes, Corrections and Updates

Upon request, the user has the right to receive information free of charge about the personal data stored about them. In addition, the user has the right to the correction of incorrect data, the blocking and deletion of their personal data, insofar as no statutory retention obligation prevents this. So that a blocking of data can be taken into account at any time, this data must be kept in a blocking file for control purposes.

Basis of the above-mentioned rights: Right of access (Art. 15 GDPR), Right to rectification (Art. 16 GDPR), Right to restriction of processing (Art. 18 GDPR), Right to data portability (Art. 20 GDPR), Right to object (Art. 21 GDPR), Right of withdrawal (Art. 7 (3) GDPR)

Complaint to a Supervisory Authority

Every data subject has the right to lodge a complaint with a supervisory authority, in particular in the member state of their place of residence, place of work or the place of the alleged infringement, if the data subject is of the opinion that the processing of personal data concerning them violates the current legal situation.

Deletion of Data

Personal data is deleted or blocked as soon as the purpose of storage ceases to apply or you withdraw your consent. Storage may also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. If the purpose of storage ceases to apply, you withdraw your consent or a storage period prescribed by the European directive and regulation legislator or another competent legislator expires, the personal data is routinely blocked or deleted in accordance with the statutory provisions, unless there is a need for further storage of the data for the conclusion or performance of a contract.

Data Security

The provider secures its offerings, online shops, ticket systems and other systems through appropriate technical and organisational measures against loss, destruction, access, alteration or distribution by unauthorised persons. Despite regular checks, however, complete protection against all risks is not possible and cannot be guaranteed by the provider. For this reason, you are free at any time to transmit your personal data to us by other means as well, for example by telephone or by post.

Changes to Our Privacy Policy

The provider reserves the right to occasionally adapt this privacy policy so that it always complies with the current legal requirements, or in order to implement changes to services in the privacy policy, e.g. when introducing new services. The new privacy policy then applies to the user's next visit.

Web Analytics with Matomo

To statistically evaluate the use of our offering, we use the web analytics software Matomo. The software runs exclusively on our own server, so that no data whatsoever is transmitted to third parties.

Matomo is used in a privacy-friendly configuration:

  • No cookies are set.
  • Visitors' IP addresses are anonymised, so that any reference to a person is excluded.
  • Referrer information is cleaned up in order to avoid the transmission of personal data via external links.
  • We take care not to process any personal data in URLs, page titles, custom variables or events.
  • Functions for recognising individual users (e.g. user ID tracking) are disabled.
  • No tracking takes place across different websites.
  • The collected data is used exclusively for statistical evaluation and the improvement of our web offering. There is no linking with other data sources.

The processing is carried out on the basis of Art. 6 (1) lit. f GDPR and § 25 (2) no. 2 TTDSG. Our legitimate interest lies in the analysis and optimisation of our website – without processing any personal data.

Deactivating Web Analytics

If you do not want your visit to be included in our anonymised statistics, you can deactivate web analytics here:

Version 25.08.0

Competent Supervisory Authority

The Hessian Commissioner for Data Protection

  • Postfach 31 63, 65021 Wiesbaden
    Gustav-Stresemann-Ring 1, 65189 Wiesbaden
  • poststelle@datenschutz.hessen.de
  • Phone 0611/1408-0
Top