Data privacy policy

I. General

Your personal data (e.g. title, name, address, personal email address, telephone number) will only be processed by us in accordance with the provisions of German data protection law and the data protection law of the European Union (EU). This document provides information about how, for what purposes and for how long we process which of your data, to which recipients we may pass your data, on what legal basis this is done and your rights with regard to this data processing. This privacy policy refers exclusively to the above website. If you are redirected to other sites through links built into our pages, please inform yourself there about the respective handling of your data.

II. Data controller:

Esbit Compagnie GmbH
Zippelhaus 3
20457 Hamburg
Tel: 040 – 85 31 06 50
esbit@esbit.de

Represented by the directors: Philip Paap and Robert Paap

III Accessing our website

When you visit our website www.esbit-the-original.com information is automatically sent to the server of our website by the browser used on your terminal. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion:

  • Address (URL) of the page/file accessed
  • Browser and browser version
  • Operating system
  • Address (URL) of the previously visited page (referrer URL)
  • Host name and IP address (anonymised) of the requesting computer/server
  • Date and time

The above data will be processed by us for the following purposes:

  • Ensuring smooth connection of the website,
  • Ensuring comfortable use of our website,
  • Evaluation of the security and stability of the system,
  • Tracking of unauthorised or illegal access.

The above log data is stored anonymously for 7 days.

The legal basis for the above data processing is Art. 6 para. 1 s. 1 lit. f GDPR. Our legitimate interest results from the above purposes of data collection. In this context, we do not use the collected data for the purpose of drawing conclusions about your person.

IV. Contact form

On our website you have the possibility to call up a contact form and get in touch with us.

It is necessary to provide your first and last name, the company name, an email address and the postcode. We need this information to be able to answer your request from the responsible office (hence the request for your postcode) and to be able to address you personally in the process. Optionally, you can also enter your telephone number. By providing your telephone number, you agree that we may contact you by telephone for the purpose of responding to your inquiry.

We store this data until your request has been fully processed. If no contract is concluded, the data will be automatically deleted after 15 months at the latest. Longer-term storage only takes place with your express consent.

The processing of the personal data provided by you in the context of this contact takes place on the basis of Art. 6 para. 1 s. 1 lit. b GDPR in the interests of the fulfilment of your request.

V. Data processing using cookies

We use cookies on our website.

1. General information

A “cookie” is a – usually small – amount of data that your browser automatically creates and that can be stored in a text file on your terminal (laptop, tablet, smartphone or similar) when you visit our website. Cookies do not cause any damage to your terminal and do not contain viruses, Trojans or other malware.

In the cookies, information is stored that arises in each case in connection with the specific terminal you use. However, this does not mean that we obtain direct knowledge of your identity.

2. Necessary cookies – usable without consent

Cookies, which also store your personal data listed above under III are technically necessary for the use of our website. These cookies are deleted when you close the browser.

The use of these cookies is justified under Art. 6 para. 1 p. 1 lit. b GDPR in order to be able to present our website to you appropriately.

3. Web analysis with Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

a) Purpose of processing

Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website on our behalf, compiling reports/statistics on website activity and providing other services relating to website activity and internet usage to us.

However, due to the activation of IP anonymisation on this website, your IP address will first be truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.

The data will be stored for 24 months.

b) Legal basis – Consent

This processing only takes place with your consent and is then justified under Art. 6 para. 1 s. 1 lit. a GDPR..

c) Transfer to a third country

Google Ireland Limited is an affiliated company of Google LLC. Google LLC has its headquarters in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043). The level of data protection in the USA is considered insufficient with regard to the requirements of the GDPR. However, we would like to point out that we have selected the “IP address anonymisation” function for Google Analytics so that your IP address is not transmitted in full. You can find more information on this at:
https://support.google.com/analytics/answer/2763052?hl=de

Please also note the terms of use and the privacy policy of Google:
Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

User conditions: http://www.google.com/analytics/terms/de.html,
Privacy overview: Latest major version 7.0 – 01 April 2021
https://www.google.com/intl/de/analytics/learn/privacy.html as well as the data protection regulations: https://www.google.de/intl/de/policies/privacy.

d) Withdrawal

You can withdraw your consent to the use of Google Analytics at any time here

Change cookie settings

You can also prevent the storage of cookies by making the appropriate settings in your browser software.
However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.

4. Deactivating cookies

Most browsers accept cookies automatically. However, you can set your browser so that no cookies are stored on your computer or that a message always appears before a new cookie is created. On the other hand, the complete deactivation of cookies may mean that you cannot use all the functions of our website.

In addition, you can disable third-party cookies by visiting the Network Advertising Initiative’s disable page https://www.networkadvertising.org/choices/ and click on the opt-out information link.

5. Storage period

The technically necessary cookies are usually deleted when the browser is closed. Permanently stored cookies have a varying lifespan from a few minutes to several years.

6. Right of withdrawal

You can withdraw your consent to the use of functional cookies here

Change cookie settings

If you do not want necessary cookies to be stored, please deactivate the acceptance of these cookies in your Internet browser. However, this may lead to a functional restriction of our website.

You also have the option of preventing the permanent storage of cookies through your browser.

VI. Disclosure of data

The following applies to the possible transfer of your data generated through our website to third parties:

1. Authorisation for disclosure

We will only share your personal information with third parties if:

  • it is legally permissible and necessary, under Art. 6 para. 1 s. 1 lit. b GDPR for the processing of contractual relationships with you,
  • there is a legal duty of disclosure under Art. 6 (1) sentence 1 lit. c GDPR and/or
  • the disclosure is necessary in accordance with Art. 6 (1) sentence 1 lit. f GDPR for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data.

We will only pass on your personal data for other purposes if you have expressly consented to this, Art. 6 para. 1 s. 1 lit. a GDPR.

2. Recipients

Any disclosure of your personal data by us to third parties will primarily be to those service providers to whom we grant access to your data held by us. In detail: IT application support/maintenance; archiving; data destruction; website administration.

In cases where your personal data is passed on to third parties, however, the scope of the data transferred is limited to the minimum necessary.

The transmission of the data is necessary due to our legitimate interest in the proper operation of the website as well as the proper fulfilment of our legal retention periods and deletion duties and is therefore permitted under Art. 6 para. 1 sentence 1 lit. f GDPR.

VII Rights of the data subject

If your personal data is processed, you are a data subject within the meaning of the GDPR and have the following rights against us as the controller:

1. Right to information

You can obtain information about your personal data processed by us within the scope of Art. 15 GDPR.

2. Right to correction

If the data concerning you is not (or is no longer) accurate, you may request a correction in accordance with Art. 16 of the GDPR. If your data is incomplete, you may request that it be supplemented.

3. Right to deletion

You can request the deletion of your personal data under the conditions of Art. 17 GDPR.

4. Right to restriction of processing

Within the context of the provisions of Art. 18 GDPR, you have the right to request a restriction of the processing of data concerning you.

5. Right to data portability

In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller.

6. Right to withdraw the declaration of consent under data protection law

In accordance with Art. 7 (3) GDPR, you have the right to withdraw your declaration of consent under data protection law at any time. For this purpose, we inform you above about the respective required consents. The lawfulness of the processing carried out on the basis of the consent until the withdrawal is not affected by this.

7. Right to complain to a regulator

If you consider that the processing of personal data relating to you breaches the GDPR, you have the right to lodge a complaint with a regulator (in particular in the Member State of your residence, workplace or the place of the alleged breach) in accordance with Article 77 of the GDPR.

8. Right to object under Art. 21 GDPR:

If the processing of your personal data is based on legitimate interests under Article 6 (1) sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data under Article 21 GDPR, provided that there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation.

If you wish to exercise your right to object, simply send an email to esbit@esbit.de

VIII Data security

Within the website visit we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
 
In addition, we use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.