ABUS Bike Lock Keys | purchase online

PRIVACY POLICY ABUS KEY SERVICE

PRIVACY POLICY ABUS KEY SERVICE

All personal information will be handled confidentially. Our data protection practice is in accordance with the General Data Protection Regulation (GDPR). Below we inform you about the details of privacy:

Responsible within the meaning of the GDPR

ABUS August Bremicker Söhne KG

Altenhofer Weg 25, 58300 Wetter, Germany

Tel .: +49 2335 634-0

Fax: +49 2335 634-300

E-Mail: info@abus.de

Data Protection Officer

The data protection officer can be reached at dataprotection@abus.de .

1. The reasons for data collection

We collect and process your information to provide our website and to provide you with the best possible service through convenient access to our services.

2. Which data is collected, processed or used?

2.1 Visit our website

When you access our website, our servers automatically collect information of a general nature, especially for the purpose of connection setup, functionality and system security. This includes the type of browser used, the operating system used, the domain name of the Internet service provider, the connection data of the computer used (IP address), the website from which you visit us (referrer URL), the pages, you visit us and the date and duration of the visit. Conclusions from this data on certain persons are not possible for us due to a pseudonymization. There is no merge of this data with other data sources.

2.2 contact form

If you contact us via a contact form, personal data will be collected. Which data are collected in each case can be found in the contact form. The data will be stored for the purpose of processing your request. Mandatory information is indicated by an asterisk (*). All other details are optional. We delete the data resulting from the contact form after the storage is no longer required, or restrict the processing if there are statutory retention requirements. The legal basis for the processing of your personal data is Art. 6 para. 1 lit. b) GDPR, when it comes to your contacting in the context of a contract. Incidentally, it is our legitimate interest to answer your inquiries, so in this case Art. 6 para. 1 lit.

2.3 Newsletter registration

With your consent, you can subscribe to our free e-mail newsletter, which will inform you about current interesting offers. For the registration to the newsletter we use the so-called double-opt-in-procedure. This means that after you have registered, we will send you an e-mail to the e-mail address in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration, your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and times of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to clarify possible misuse of your personal data. The only requirement for sending the newsletter is your e-mail address. All other details are optional. After your confirmation, we will store your data for the purpose of sending you the newsletter. You can unsubscribe at any time by sending a message to the responsible person, cf. at the beginning of our privacy policy, e.g. by e-mail info@abus.de . The legal basis is Art. 6 para. 1 sentence 1 lit. a) GDPR.

2.4 Sending our e-mail newsletter to our existing customers

If you have provided us with your e-mail address when purchasing goods or services, we reserve the right to send you regular offers for similar goods or services as those already purchased from our product range by e-mail. For this purpose, according to § 7 Abs. 3 UWG, no separate consent from you is required. Data processing is based on our legitimate interest in the transmission of personalized direct mail in accordance with Art. 6 para. 1 lit. f) GDPR. If, however, you have initially objected to the use of your e-mail address for this purpose, no mail will be sent to you by us. Even if you did not initially object, you are entitled to refuse the use of your e-mail address for the aforementioned advertising purpose at any time with effect for the future by sending a message to the person responsible, cf. Beginning of our privacy policy. For this purpose, only transmission costs according to the basic rates apply. Upon receipt of your opposition, the use of your e-mail address for advertising purposes will be stopped immediately.

2.5 Data processing to process the order

We collect personal data and process it if you provide us with this data when carrying out a contract. Legal basis is Art. 6 para. 1 lit. b) GDPR. The data collected can be found in the respective input form masks. The deletion is possible at any time and can be done by a message to the contact address of the responsible person. We store and use the information you provide about the contract between you and us. After completion of the contract or deletion of your customer data, your data will be blocked with regard to tax and commercial storage periods and deleted after expiry of these periods, unless you have expressly permitted us to further use your data or we have a legally permitted further use for which we have informed you in the existing privacy policy.

2.6 Data processing to process the order - data transfer to third parties

DATA DISTRIBUTION TO SHIPPING SERVICE PROVIDER

The personal data collected by us will be passed on to the carrier in charge of the delivery (e.g. Royal Mail) within the scope of the contract, insofar as this is necessary for the delivery of the goods. The legal basis for the transfer of data is Art. 6 para. 1 lit. b) and f) GDPR.

DATA DISTRIBUTION TO PAYMENT SERVICE PROVIDER (PAYMENT SERVICE PROVIDER)

PAYPAL

We have components from PayPal integrated into our website. PayPal is an online payment service provider. Payments are made through PayPal accounts, which are virtual private or business accounts.
The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If the data subject selects "PayPal" or "PayPal Plus" (purchase on account) to make a payment in our online shop as part of the ordering process, the data subject’s data will automatically be transmitted to PayPal. By selecting this payment option, the data subject consents to the transfer of personal data required for payment processing. PayPal also assumes the function of an online payment service provider as well as a trustee and offers buyer protection services.
Personal data transmitted to PayPal is usually the first name, surname, address, e-mail address, IP address, telephone number, mobile phone number or other data necessary for payment processing. Personal data associated with the respective order is also required for the processing of the purchase contract.
The purpose of the data transmission is to process payments and prevent fraud. The data controller will transmit personal data to PayPal, in particular when there is a legitimate interest for its transmission. The personal data exchanged between PayPal and the data controller may be transferred by PayPal to credit reference agencies. The purpose of the data transmission is to check identity and credit. PayPal uses the result of the credit check, taking into account the statistical probability of non-payment, for the purpose of deciding whether to provide the respective payment method.
You can see which credit agencies are involved at https://www.paypal.com/de/webapps/mpp/ua/privacy-full#rAnnex.
PayPal may disclose personal data to affiliates and service providers or subcontractors to the extent necessary to fulfil its contractual obligations or to process the data on behalf of it.
The data subject has the option to withdraw their consent to the handling of their personal data by PayPal at any time. A withdrawal has no effect on personal data that must be processed, used or transmitted for (contractual) payment processing.
PayPal’s current privacy policy can be accessed at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

3. Inclusion of YouTube videos

We have included YouTube videos in our online offering, which are stored on http://www.YouTube.com and are directly playable from our website. These are all embedded in "enhanced privacy mode", which means that if you do not play the video, you will not transfer any data about you as a user to YouTube. Only when you play the videos, the following data will be transmitted. We have no influence on this data transfer. By visiting the website, YouTube receives the information that you have accessed the corresponding subpage of our website. It will contain the IP address, date and time of the request, Greenwich mean time (GMT) time zone difference, request content (concrete page), access status / HTTP status code, amount of data transferred, website, from which the request comes, browser, operating system and its interface, language and version of the browser software transmitted. This happens regardless of whether YouTube provides a user account that you are logged in to, or if there is no user account. When you're logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for purposes of advertising, market research and / or customization of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about their activities on our website.

You have a right to object to the creation of these User Profiles, and you must contact YouTube to exercise this right.

For more information on the purpose and scope of your data collection and processing through YouTube, please read the privacy policy. You'll also get more information about your rights and privacy settings here: https://www.google.com/intl/en/policies/privacy . Google also processes your personal information in the United States and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US Framework .

The legal basis for processing is Art. 6 para. 1 lit. f) GDPR.

4. Integration of Google Maps

On this website we use the offer of Google Maps. This allows us to show you interactive maps directly in the website and allow you to conveniently use the map feature. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the IP address, date and time of the request, time zone difference to the Greenwich Mean Time (GMT), content of the request (concrete page), access status / HTTP status code, each amount of data transferred, website, the request comes browser, Operating system and its interface, language and version of the browser software transmitted. This is done regardless of whether Google provides a user account that you are logged in to, or if there is no user account. When you're logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for purposes of advertising, market research and / or tailor-made website design. Such an evaluation is carried out in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about their activities on our website. Market research and / or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about their activities on our website. Market research and / or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about their activities on our website.

You have a right to object to the creation of these User Profiles, and you must contact Google to exercise this right.

For more information on the purpose and scope of the data collection and its processing by the plug-in provider, please refer to the privacy policy of the provider. You can also find out more about your rights and privacy settings here: http://www.google.com/intl/en/policies/privacy . Google also processes your personal information in the US and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US Framework .

The legal basis for processing is Art. 6 para. 1 lit. f) GDPR.

5. COMPETITIONS

From time to time you have the opportunity to participate in competitions on our website. Within the framework of these competitions, personal data (e-mail address, name, address and possibly further data necessary for the competition) may also be collected and stored for the purpose of processing the competition. The personal information you provide to us will be used exclusively for the processing of the competition (for example, for the determination of winnings, prize notification and transfer of the prize.) In the context of the competition, we will inform the participant about data processing on the occasion of the specific competition. After the competition we delete the data of the participants.

6. Deletion

Personal data will be deleted or blocked as soon as the purpose of the storage no longer applies or you request the deletion. A deletion of the data takes place even if a storage period prescribed by the above-mentioned standard expires, unless there is a need for further storage of the data for conclusion of contract or fulfilment of the contract or if you have given your consent in this regard.

7. Cookies

In order to make the use of the websites and preferences of website visitors attractive, cookies are used. This will, for example, save your information for selecting a language. Cookies are text files that are created on your hard disk to allow the browser to be identified when the website is re-launched.

You can prevent the storage of cookies on your hard disk by making the appropriate browser settings. Already set cookies can be deleted at any time. How to delete cookies or prevent their storage, please refer to the respective browser instructions. If you do not accept cookies, this may result in an impairment of the use of our website.

The legal basis for the processing of cookies is Article 6 (1) lit. f) GDPR.

8. Data security

We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or dissemination of your data by unauthorized persons. Depending on the browser used, the data is transmitted using 128-bit to 256-bit SSL encryption. Despite regular checks and continuous improvement of our security measures, complete protection against all dangers is not possible.

9. Use of Google Analytics for web analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Ltd. (www.google.de). Google Analytics uses so-called "cookies", text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. IP anonymization is active on this website. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google information.

You can prevent the storage of cookies by a corresponding setting of your browser software; however, we point out that in this case you may not be able to use all the functions of this website in full. The data will be deleted after 26 months.

In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install: http://tools.google.com/dlpage/gaoptout?hl=en .

Alternatively you can use the browser plugin here: this link

Click on an opt-out cookie to prevent future detection by Google Analytics on this website. An opt-out cookie is stored on your device. If you delete your cookies, you must click the link again. You can find the Terms of Use and Privacy Policy at http://www.google.com/analytics/terms/en.html or at https://www.google.com/intl/en/policies/.

10. Google Ads Remarketing

Our website uses the features of Google Ads Remarketing to advertise this site on Google's search results, as well as on third-party websites. Provider is the Google LLC., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). For this purpose, Google sets a cookie in the browser of your device, which automatically enables interest-based advertising using a pseudonymous cookie ID and based on the pages you visit. The processing is based on our legitimate interest in optimally marketing our website in accordance with Art. 6 para. 1 lit. f) GDPR.

Any further processing will only take place if you have agreed with Google that your Internet and App Browsing history will be linked to your Google Account by Google and information from your Google Account will be used to personalize your ads on the web consider. In this case, when you log in to Google during the page visit of our website, Google will use your data with Google Analytics data to create and define audience lists for cross-device remarketing. To do this, Google will temporarily associate your personal information with Google Analytics data to create audiences.

You can permanently disable the setting of cookie cookies by downloading and installing the browser plug-in available at the following link: https://www.google.com/settings/ads/onweb/

Alternatively, check with the Digital Advertising Alliance at http://www.aboutads.info to set cookies and make settings. Finally, you can set your browser so that you are informed about the setting of cookies and individually decide on their acceptance or exclude the acceptance of cookies for specific cases or in general. Failure to accept cookies may limit the functionality of our website.

US-based Google LLC is certified to the US Privacy Shield, which ensures compliance with the level of data protection in the EU. For more information and privacy policy regarding advertising and Google, please visit: http://www.google.com/policies/technologies/ads/

11. Google AdSense

The controller has integrated Google AdSense on this website. Google AdSense is an online service that provides third-party advertising mediation. Google AdSense is based on an algorithm that selects the advertisements displayed on third-party websites in accordance with the contents of the respective third-party website. Google AdSense allows interest-based targeting of the Internet user, which is implemented by generating individual user profiles.

The Google AdSense component is operated by Alphabet Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of the Google AdSense component is to include advertisements on our website. Google AdSense sets a cookie on the information technology system of the data subject. What cookies are, has already been explained above. By placing this cookie, Alphabet Inc. provides an analysis of the use of our website. Each time one of the pages of this site is accessed by the controller and a Google AdSense component has been integrated, the internet browser on the subject's information technology system is automatically initiated by the respective Google AdSense component to submit data to Alphabet Inc. for purposes of online advertising and commission settlement.

The affected person can prevent the setting of cookies through our website, as shown above, at any time by means of a corresponding setting of the Internet browser used and thus permanently contradict the setting of cookies. Such a setting of the Internet browser used would also prevent Alphabet Inc. from setting a cookie on the information technology system of the person concerned. In addition, a cookie already set by Alphabet Inc. can be deleted at any time via the Internet browser or other software programs.

Google AdSense also uses so-called counting pixels. A counting pixel is a miniature graphic that is embedded in web pages to enable log file recording and log file analysis, whereby a statistical evaluation can be performed. Based on the embedded pixel, Alphabet Inc. can detect if, and when an internet page was opened by an affected person and which links were clicked by the affected person. Counting pixels are used, among other things, to evaluate the flow of visitors to a website.

Google AdSense will transfer personal information and information, including the IP address required to collect and bill the displayed advertising, to Alphabet Inc. in the United States of America. This personal information is stored and processed in the United States of America. Alphabet Inc. may transfer such personal information collected through the technical process to third parties.

Google AdSense will be explained at https://www.google.com/intl/en/adsense/start/ .

12. LINKEDIN

Our website uses the conversion tracking technology as well as the retargeting function of the LinkedIn Corporation (Gardner House, 2 Wilton Pl, Dublin 2, Ireland). This tool creates a cookie in your web browser which enables the collection of the following data, among others: IP address, device and browser properties and page events (e.g. page views).
This technology can be used to generate reports on ad performance and information on website interactions. For this purpose, the LinkedIn Insight tag is embedded on this website, which establishes a connection to the LinkedIn server if you visit this website while you are logged into your LinkedIn account.

See LinkedIn's privacy policy at https://www.linkedin.com/legal/privacy-policy for more information on data collection and use, as well as options and rights for protecting your privacy.

If you are logged in to LinkedIn, you can disable data collection at any time using the following link: https://www.linkedin.com/psettings/enhanced-advertising.

13. Applications

We also collect and process personal data from applicants for the purpose of processing the application process we conduct. The processing can also be done electronically. This is always the case if the applicant sends us application documents by electronic means,
i.e. by e-mail or via a web form implemented on our website. If we conclude a contract of employment with an applicant, the transmitted data will be stored for the purpose of the employment relationship in compliance with the legal requirements. However, if no employment contract is concluded between us and the applicant, the application documents will be deleted four months after the announcement of the rejection decision, if deletion does not conflict with any other legitimate interests of the person responsible. Another legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

We would like to rate all applicants by qualification only and, therefore, ask for information on racial and ethnic origin, political opinions, religious or ideological beliefs or affiliations, genetic data, biometric data to uniquely identify a natural person, health data or sex life data or to dispense with the sexual orientation in the application as possible.

14. RIGHTS OF THE AFFECTED PERSON

If your personal data is processed you are in the sense of the GDPR affected and you have the following rights to the responsible person:

14.1 Right to information

You may ask the person in charge to confirm if personal data concerning you is processed by us.

If such processing is available, you can request information from the person responsible about the following information:

the purposes for which the personal data are processed;
the categories of personal data that are processed;
the recipients or the categories of recipients to whom the personal data relating to you have been or will be disclosed;
the planned duration of the storage of your personal data or, if specific information is not available, criteria for determining the duration of storage;
the existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
the existence of a right of appeal to a supervisory authority;
all available information on the source of the data if the personal data are not collected from the data subject.

14.2 Right to rectification

You have a right to rectification and / or completion to the controller, if the personal data you process is incorrect or incomplete. The person in charge must make the correction without delay.

14.3 Right to restriction of processing

You may request the restriction of the processing of your personal data under the following conditions:

if you contest the accuracy of your personal information for a period of time that enables the controller to verify the accuracy of your personal information;
the processing is unlawful and you refuse the deletion of the personal data and instead demand the restriction of the use of the personal data;
the controller no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims; or
if you have objected to the processing pursuant to Art. 21 (1) GDPR and it is not yet certain whether the legitimate reasons of the person responsible outweigh your reasons.

If the processing of personal data concerning you has been restricted, this data may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for reasons of important public interest Union or a Member State.

If the restriction on processing has been restricted in accordance with the above conditions, you will be informed by the person responsible before the restriction is lifted.

14.4 Right to Deletion

Deletion obligations

You may require the controller to delete your personal information without delay, and the controller is required to delete that information immediately if one of the following is true:

- Your personal data are no longer necessary for the purposes for which they were collected or otherwise processed.

- You revoke your consent, to which the processing acc. Art. 6 para. 1 lit. a) or Art. 9 para. 2 lit. (a) GDPR and there is no other legal basis for the processing.

- Your personal data has been processed unlawfully.

- The deletion of personal data concerning you is required to fulfil a legal obligation under Union law or the law of the Member States to which the person responsible is subject.

- The personal data relating to you were collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.

Informing third parties

Where the controller has made the personal data public and is obliged pursuant to Article 17(1) of the GDPR to delete the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the deletion by such controllers of any links to, or copy or replication of, those personal data.

Exceptions

The right to deletion does not exist if the processing is necessary

- to exercise the right to freedom of expression and information;

- to fulfil a legal obligation required by the law of the Union or of the Member States to which the controller is subject, or to carry out a task which is in the public interest or in the exercise of official authority conferred on the controller;

- for reasons of public interest in the field of public health pursuant to Art. 9 (2) lit. h) and i) and Art. 9 (3) GDPR;

- to assert, exercise or defend legal claims.

14.5 Right to information

If you have the right of rectification, deletion or restriction of the processing to the controller, he / she is obliged to notify all recipients to whom the personal data concerning you have been corrected or deleted or processing restricted, unless: this proves to be impossible or involves a disproportionate effort. You have the right to be informed about these recipients.

14.6 Data transferability

You have the right to receive personally identifiable information you provide to the controller in a structured, common and machine-readable format. You also have the right to transfer this data to another person without hindrance by the person responsible for providing the personal data, provided that

- the processing on a consent acc. Art. 6 para. 1 lit. a GDPR is based and

- the processing is done using automated procedures.

In exercising this right, you also have the right to obtain that personal data relating to you be transmitted directly from one controller to another controller, as far as technically feasible. Freedoms and rights of other persons may not be affected.

14.7 Right to object

You have the right at any time, for reasons that arise from your particular situation, to prevent the processing of your personal data, which, pursuant to Art. 6 para. 1 lit. e) or f) GDPR, objection is lodged; this also applies to profiling based on these provisions.

The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.

If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.

If you object to the processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

Regardless of Directive 2002/58 / EC, you have the option, in the context of the use of information society services, of exercising your right to opt-out by means of automated procedures that use technical specifications.

14.8. Right to revoke the data protection consent declaration

You have the right to revoke your data protection consent declaration at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.

14.9 Automated decision on a case-by-case basis including profiling

You have the right not to be subjected to a decision based solely on automated processing - including profiling - that will have legal effect or similarly affect you in a similar manner. This does not apply if the decision

is required for the conclusion or performance of a contract between you and the controller,
is permitted under Union or Member State legislation to which the controller is subject, and where such legislation contains appropriate measures to safeguard your rights and freedoms and your legitimate interests, or
with your express consent.

However, these decisions may not be based on special categories of personal data under Art. 9 (1) GDPR, unless Art. 9 (2) lit. a) or g) GDPR and reasonable measures have been taken to protect the rights and freedoms and your legitimate interests.

14.10 Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority, in particular in the Member State of its place of residence, employment or the place of the alleged infringement, if you believe that the processing of the personal data concerning you violates the GDPR.

The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.