§ 1 Information on the collection of personal data

1. The following presents information on the collection of your personal data when you use our website. Personal data are all details that refer to you personally, e.g. your name, address, email addresses, user behavior.
2. The controller as defined under Art. 4(7) of the EU GDPR is McGard Deutschland GmbH, Nordstr. 12, 74226 Nordheim, datenschutz@mcgard.de. Our data protection officer can be reached at datenschutz@priolan.de or our mailing address, with the supplement “Data Protection Officer”.
3. When you contact us by email or via the contact form, the data you enter (your email address and, if necessary, your name and phone number) will be stored by us for the purpose of answering your questions.
   The data collected for this purpose are deleted once their storage is no longer needed or their processing is restricted if subject to legal retention periods.
4. If we wish to access commissioned third parties for individual functions of our offer or use your data for advertising purposes, we shall inform you in detail of the processes involved as described below.
   At the same time, we also name the criteria defined for the storage duration.

§ 2 Your rights

1. You have with respect to us the following rights to the personal data relating to you:
   · right of access,
   · right to rectification or erasure,
   · right to restriction of processing,
   · right to object to processing,
   · right to data portability.
2. Moreover, you have the right to file a complaint to a data protection supervisory authority about our processing your personal data.

§ 3 Collection of personal data during visits to our website

1. Visits to our website
   When you are using our website for purely informational purposes, i.e. without registering or communicating with us in any other manner, we collect only those personal data that your browser transfers to our server. When you want to view our website, we collect the following data that our technology needs to present our website to you and to safeguard stability and security (legal basis is Art. 6(1) point f GDPR):
   · IP address
   · date and time of request
   · time zone difference to GMT
     contents of request (actual page)
     access status / HTTP status code
   · data quantity transferred in each case
     website originating the request
     browser
     operating system and its UI
     language and version of the browser software.
    
2. Cookies
   In addition to the above data, also cookies are saved to your computer while you are using our website. Cookies are small text files that the browser you are using saves to your hard disk and that provide the cookie sender (i.e. us) with certain information. Cookies cannot execute code or transfer viruses to your computer. They serve to make the web presence a more user friendly and effective experience overall.
   1. Use of cookies:
      1. This website uses the following cookie types whose extent and function are described in the following:
         · transient cookies (see b)
         · persistent cookies (see c).
      2. Persistent cookies are deleted automatically after a defined period, which may differ from cookie to cookie. You can open the safety settings for your browser and from there delete cookies at any time.
      3. You can also configure your browser settings to your own wishes, and refuse e.g. to accept third party or all cookies. We point out in this case that you may not be able to use all of this website’s functions.
      4. We use cookies to identify you when you next visit our website, if you have an account with us. Otherwise, you may have to log in every time you visit.
      5. The Flash cookies used are not collected by your browser, but by your Flash plugin. We also use HTML5 storage objects that are saved to your terminal. These objects store the required data irrespectively of the browser you are using and do not have an automatic expiry date.
      6. If you do not want Flash cookies to be processed, you will have to install to this effect an addon, e.g. Better Privacy for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash Killer Cookie for Google Chrome. You can suppress the use of HTML5 storage objects by activating private mode in your browser. In addition, we recommend erasing your cookies and your browser history manually.
3. Data security
   While you are visiting our website, we use the widespread SSL (Secure Sockets Layer) protocol in conjunction with the highest encryption level your browser supports. The encryption is generally 256 bits. If your browser does not support 256 bit encryption, we use 128 bit v3 technology instead. You can see by the depiction of a key or closed lock symbol in the bottom status bar of your browser whether pages are being transmitted in encrypted form. In all other cases, we make use of technical and organizational security measures to protect your data against inadvertent or willful manipulation, partial or complete loss or destruction, and unauthorized third party access. Our security measures are undergoing continuous improvement in line with the state of the art.

Web analytics

1. Use of Google Analytics
   1. This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so called “cookies”, text files that are saved to your computer and serve the analysis of how you use the website. As a rule, the information this cookie generates on how you use the website is transmitted to a Google server in the USA, where it is stored. If, however, IP anonymization has been activated for this website, Google first crops your IP address when within the member states of the European Union or other signatory nations to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and cropped there. Authorized by the provider of this website, Google will use this information to analyze how you use the website, to compile reports on website activities, and to furnish the website provider with other services connected with website and Internet use.
   2. The IP address your browser transmits for Google Analytics is not merged with other Google data.
   3. You can prevent cookies from being saved to your computer by reconfiguring your browser software; in this case, we point out that you may be unable to use all of this website’s functions to the full extent. In addition, you can prevent Google from receiving and processing the data generated by the cookie and relating to your use of the website (including your IP address) by downloading and installing the bowser plugin at the following link: tools.google.com/dlpage/gaoptout.
   4. This website uses Google Analytics with the function “_anonymizeIp()”. This crops IP addresses before they are processed, thereby eliminating all reference to a specific person. In other words, as soon as the data collected about you turns personal, it is immediately rejected and the personal content deleted.
   5. We use Google Analytics to analyze how our website is being used and to improve it on a regular basis.
      The statistics gained help us to refine our presence and make it more interesting to you as a user. For the exceptional cases when personal data are transmitted to the USA, Google has submitted to the EU-US Privacy Shield (https://www.privacyshield.gov/EU-US-Framework). The legal basis for the use of Google Analytics is Art. 6(1) point f GDPR.
   6. Third-party information:
      Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland,
      Fax: +353 (1) 436 1001.
      User conditions: www.google.com/analytics/terms/de.html
      Overview of data protection: www.google.com/intl/de/analytics/learn/privacy.html
      Privacy policy: www.google.de/intl/de/policies/privacy
   7. This website also uses Google Analytics for the cross device analysis of visitor flows based on a user ID. You can deactivate the cross device analysis under “My Data”, “Personal Data” in your customer account.

Objection to data collection
You can suppress the collection of your data by Google Analytics by clicking the following link. This generates an opt-out cookie that prevents the collection of your data during future visits to this website: Deactivate Google Analytics. Details on how Google Analytics handles user data can be found in the Google Privacy Policy: support.google.com/analytics/answer/6004245.

Special forms of website usage

1. Use of our webshop
   1. If you wish to order in our webshop, the contract conclusion requires you to enter your personal data that we need to process your order. The entries needed to handle contracts are highlighted separately; all other details are voluntary. The data you enter we process for the handling of your order. In doing so, we may forward your payment details to our company bank. The legal basis is Art. 6(1) point f GDPR.
      If you wish, you may also create a customer account that will save your details for future orders. Creating an account under “My account” will save the data you enter until website. All other data, including your user account, you can delete in the Customers area at any time. 
      We may also process the data you have entered for the purpose of informing you of other interesting products in our portfolio and sending you technical details by email.
   2. Trade and tax laws compel us to retain your address, payment, and order details for a period of ten years.
   3. The order process is TLS encrypted, preventing unauthorized third party access to your personal data, specifically financial data.
2. Use of our contact form
   If you have any questions, we offer you the opportunity to contact us via a form provided on the website. This requires a valid email address so that we know who is submitting the request and that we can reply. Other details are voluntary.
   The data entered for the purpose of contacting us are processed in compliance with Art. 6(1) point a GDPR, based on the consent you have granted voluntarily. The personal data our contact form collects are deleted automatically after your request has been processed. Your personal data will not be transmitted to third parties for any purpose other than those listed in the following. We transmit your personal data to third parties only when:
   · you have granted explicitly your consent in compliance with Art. 6(1) point a GDRP,
   · the transfer is necessary for the establishment, exercise, or defense of legal claims and there are no legitimate grounds for assuming you have an overriding, compelling interest in the noncommunication of your data,
   · there is a legal obligation for the transfer as defined under Art. 6(1) point c GDPR, and
   · this is permitted under the law and required under Art. 6(1) point B GDPR for the processing of contractual relationships with you.