We are very pleased about your interest in our company. Data protection has a particularly high importance for the management of Pureflow GmbH. A use of the Internet pages of Pureflow GmbH is basically possible without any indication of personal data. However, if a data subject wishes to make use of special services offered by our company via our website, it may become necessary to process personal data. If it is necessary to process personal data and there is no legal basis for such processing, we generally obtain the consent of the person concerned.
Pureflow GmbH, as the entity responsible for processing, has implemented numerous technical and organizational measures in order to ensure that the personal data processed via this website is protected as thoroughly as possible. Nevertheless, Internet-based data transmissions can generally have security gaps, so absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us by alternative means, for example by telephone.
- (a) personal data Personal data means any information relating to an identified or identifiable natural person (hereafter ‘data subject’). An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- (b) Person concerned Person concerned means any identified or identifiable natural person whose personal data are processed by the controller.
- (c) ProcessingProcessing is any operation or set of operations, performed upon personal data, whether or not by automatic means, such as collection, recording, organisation, organisation, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- (d) Restriction of processing Restriction of processing is the marking of stored personal data with a view to limiting their processing in the future.
- e) ProfilingProfiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to productivity, economic situation, health, personal preferences, interests, reliability, conduct, location or change of location of that natural person.
- f) PseudonymisationPseudonymisation is the processing of personal data in such a way that the personal data can no longer be attributed to a specific person concerned without the use of additional information, provided that this additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person.
- (g) ‘controller’ controller shall mean the natural or legal person, public authority, agency or any other body which alone or jointly with others determines the purposes and means of the processing of personal data Where the purposes and means of such processing are specified by Union law or by the law of the Member States, provision may be made for the controller to be designated in accordance with specific criteria laid down by Union law or by the law of the Member States.
- (h) “Contractor” Contractor means any natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller
- (i) recipient The recipient is a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether a third party or not However, authorities which may receive personal data in the context of a specific investigation mandate under Union or national law shall not be considered as recipients.
- j) Third party Third party means any natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons who, under the direct authority of the controller or the processor, are authorized to process the personal data.
- (k) Consent Consent shall mean any freely given specific and informed indication of the data subject’s wishes in an unequivocal and unambiguous manner, in the form of a statement or any other unequivocal affirmative act by which the data subject signifies his or her consent to the processing of personal data relating to him or her.
2. the name and address of the controller
The person responsible within the meaning of the Basic Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions of a data protection is
Pure Flow Filtersysteme GmbH
Kirchenlamitzer Straße 97
Phone: +49 9251 3081
Fax: +49 9251 3893
Authorized representative managing director: Ludwig Künzel
The person concerned can prevent the setting of cookies by our website at any time using the settings in the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, it is possible that not all functions of our website can be fully used.
4. collection of general data and information
The website of Pureflow GmbH collects a number of general data and information with each visit of the website by a person concerned or an automated system. This general data and information is stored in the log files of the server. Can be captured (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites that are accessed via an accessing system on our website, (5) the date and time of an access to the Internet site, (6) an Internet Protocol address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information which serve to prevent danger in the event of attacks on our information technology systems.
When using this general data and information, Pureflow GmbH does not draw any conclusions about the person concerned. This information is rather required to (1) deliver the contents of our website correctly, (2) optimize the contents of our website as well as the advertising for it, (3) ensure the permanent operability of our information technology systems and the technology of our website as well as (4) to provide law enforcement agencies with the information necessary for criminal prosecution in case of a cyber attack. These anonymously collected data and information are therefore statistically evaluated by Pureflow GmbH on the one hand and furthermore with the goal to increase data protection and data security in our company, in order to ultimately ensure an optimal protection level for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by an concerned person.
5. registration on our website
The concerned person has the possibility to register on the website of the controller by providing personal data. The personal data transmitted to the data controller is determined by the respective entry form used for registration. The personal data entered by the person concerned shall be collected and stored solely for internal use by the controller and for his own purposes. The controller may arrange for the transfer to one or more contractors, such as a delivery service provider, who will also use the personal data exclusively for an internal use attributable to the controller.
By registering on the controller’s website, the IP address assigned to the person concerned by the Internet Service Provider (ISP), the date and time of registration are also stored. The storage of this data takes place because this is the only way to prevent the misuse of our services and, if necessary, to enable the clarification of criminal offences committed. In this respect, the storage of these data is necessary to protect the data controller. As a matter of principle, this data is not passed on to third parties, unless there is a legal obligation to pass it on or the passing on serves criminal prosecution.
The registration of the person concerned under voluntary disclosure of personal data serves the purpose of the controller to provide the data subject with content or services which, by their very nature, can only be offered to registered users. Registered persons are free to modify the personal data provided during registration at any time or to have them completely deleted from the database of the data controller.
The controller shall at any time upon request provide any person concerned with information as to which personal data relating to the data subject are stored. Furthermore, the controller shall correct or delete personal data at the request or indication of the person concerned, unless otherwise required by law. The entire staff of the controller shall be available to the person concerned as contact points in this context.
6. contact possibility via the website
Due to legal regulations, the website of Pureflow GmbH contains information, which enables a quick electronic contact to our company as well as a direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). Where a person concerned contacts the controller by e-mail or via a contact form, the personal data transmitted by the person concerned are automatically stored. Such personal data transmitted on a voluntary basis from a person concerned to the controller are stored for the purposes of processing or for contacting the person concerned. This personal data will not be passed on to third parties.
7. data processing when opening a customer account and for contract processing
Under Article 6. section 1 b GDPR, personal data will continue to be collected and processed if you provide us with such data for the execution of a contract or when opening a customer account. Which data is collected can be seen from the respective registration forms. A deletion of your customer account is possible at any time and can be done by sending a message to the above mentioned address of the responsible person. We store and use the data provided by you for the processing of the contract. After full implementation of the contract or deletion of your customer account, your data will be blocked with regard to tax and commercial retention periods and deleted at the end of these periods, unless you have expressly consented to further use of your data or a legally permitted further use of data was reserved by us, about which we inform you accordingly below.
8. data processing for order processing
- 8.1 In order to process your order, we work together with the following service provider(s), who support us in whole or in part in the execution of concluded contracts. In accordance with the following information, certain personal data will be transmitted to these service providers The personal data collected by us will be transmitted to the transport company commissioned with the delivery within the framework of the contract processing, insofar as this is necessary for the delivery of the goods. We pass on your payment data within the scope of the payment processing to the assigned credit institute, if this is necessary for the payment. If payment service providers are used, we provide explicit information about this below. The legal basis for the transfer of data is Article 6. section 1 b GDPR
- 8.2 To fulfill our contractual obligations towards our customers, we work together with external shipping partners. We give your name as well as your delivery address exclusively for the purpose of the goods delivery Art. 6 section 1 b GDPR to a shipping partner selected by us.
- 8.3Use of payment service providers (payment service providers).
If you choose the payment method paydirekt, the payment will be processed by the payment service provider paydirekt GmbH, Hamburger Allee 26-28, 60486 Frankfurt am Main. Your payment data (e.g. payment amount, details of the payee) as well as your confirmation that the payment data is correct will be used by paydirekt GmbH to execute the paydirekt payment in accordance with Art. 6 section 1 b GDPR is collected, processed and transmitted to your bank. Such processing shall be carried out only to the extent that it is actually necessary for the execution of the payment. Then paydirekt GmbH authenticates the payment using the authentication procedure deposited for you at your bank. Further information on the transfer and processing of your data can be found in the paydirekt data protection declaration, which can be viewed at the following link: https://www.paydirekt.de/agb/index.html
If you have chosen the payment services “payolution invoice”, “payolution hire purchase” or “payolution direct debit” of payolution GmbH, Am Euro Platz 2, 1120 Vienna, Austria (“payolution”) as your payment option, you agree during the ordering process to the transmission of your data for the purpose of credit assessment and account number verification to payolution. Personal data (first name, surname, address, e-mail, telephone number, date of birth, IP address, gender) are used for the processing of these payment methods, together with data required for the transaction processing (article, invoice amount, interest, instalments, due dates, total amount, invoice number, taxes, currency, order date and time) in accordance with Art. 6 section 1. transmitted to payolution in accordance with GDPR
The transmission of this data takes place so that payolution can assess whether the payment option selected by you can be granted with regard to payment and/or bad debt risks. payolution obtains further information by transmitting the provided data to the following credit agencies for the purpose of identity and credit assessment
– CRIF GmbH, Diefenbachgasse 35, A-1150 Wien
– CRIF AG, Hagenholzstrasse 81, CH-8050 Zürich
– CRIF GmbH, Dessauerstraße 9, 80992 München
– SCHUFA Holding AG, Kormoranweg 5, D-65201 Wiesbaden
– KSV1870 Information GmbH, Wagenseilgasse 7, A-1120 Wien
– CRIF Bürgel GmbH, Gasstraße 18, D-22761 Hamburg
– Creditreform Boniversum GmbH, Hellersbergstr. 11, D-41460 Neuss
– infoscore Consumer Data GmbH, Rheinstraße 99, D-76532 Baden-Baden
– ProfileAddress Direktmarketing GmbH, Altmannsdorfer Strasse 311, A-1230 Wien
– Deutsche Post Direkt GmbH, Junkersring 57, D-53844 Troisdorf
– payolution GmbH, Am Euro Platz 2, A-1120 Wien
The credit report can contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Your personal data will also be used for the purpose of identity verification in accordance with art. 6 section 1 a GDPR transmitted to the SCHUFA (SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden) Schufa will then inform payolution of the degree to which the personal data stored by Schufa matches the data provided by you in percentage values and, if applicable, a reference to a passport-based legitimacy check carried out by Schufa or another contractual partner. Payolution can thus recognize by the transmitted match rates whether a person is stored in the database of the Schufa at the address you provided.
You can revoke your consent at any time by sending a message to the person responsible for data processing or to payolution. However, payolution may still be entitled to process your personal data, if this is necessary for the contractual payment processing.
If you decide on a payment method of the payment service provider PAYONE, the payment will be processed by the payment service provider BS PAYONE GmbH, Lyoner Straße 9
60528 Frankfurt/Main, to whom we send your information provided during the ordering process together with the information about your order in accordance with Art. 6 section 1 b GDPR pass on. The passing on of your data takes place exclusively for the purpose of payment processing with the payment service provider PAYONE and only insofar as it is necessary for this.
When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment by instalments” via PayPal, we will pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as “PayPal”) within the framework of the payment processing. The information shall be passed on in accordance with Article 6 section 1 b GDPR and only to the extent that this is necessary for the handling of payments.
You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for payment processing in accordance with the contract.
9. use of social media: videos
Use of Youtube videos
This website uses the Youtube embedding function to display and play videos from the provider “Youtube”, which belongs to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
Irrespective of any playback of the embedded videos, each time this website is accessed, a connection to the Google network “DoubleClick” is established, which may trigger further data processing operations without our influence.
Google LLC, based in the USA, is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU.
Use of Google AdWords conversion tracking
This website plans to use the online advertising program “Google AdWords” and, in the context of Google AdWords, the conversion tracking of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). We then use the Google Adwords service to draw attention to our attractive offers on external websites with the help of advertising material (so-called Google Adwords). In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. In this way, we pursue the interest in showing you advertising that is of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising costs.
The conversion tracking cookie is set when a user clicks on an AdWords ad served by Google. Cookies are small text files that are stored on your computer system. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not expired, Google and we may recognize that the user clicked on the ad and was directed to that page. Every Google AdWords customer receives a different cookie. Cookies can therefore not be tracked via the websites of AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted in to conversion tracking. Customers know the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive information that can be used to identify users personally. If you do not wish to participate in tracking, you can block this use by disabling the Google Conversion Tracking cookie on your web browser under User Preferences. You will then not be included in the conversion tracking statistics. We use Google Adwords because of our legitimate interest in targeted advertising in accordance with. Article 6 section 1 f GDPR
Google LLC, based in the USA, is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU.
You can permanently deactivate cookies for advertising preferences by choosing an appropriate setting in your browser software or by downloading and installing the browser plug-in available under the following link:
Use of Mouseflow
This website uses Mouseflow, a web analysis tool from Mouseflow ApS, Flaesketor-vet 68, 1711 Copenhagen, Denmark. When you visit our website, this information is collected by Mouseflow:
- Clicks, mouse movements, hovering, scrolling
- Device (Desktop/Tablet/Mobile)
- Operating system
- Screen resolution
- Visit duration
- Navigation (URLs)
- Page content (HTML)
- ISP & location (city, state/region, country)
- keystrokes (only for non-EU/EEA data subjects in non-EU/EEA accounts and never for passwords, numbers or excluded fields
- Type of visitor (first visitor/returner)
- Individual tags or variables
The data is stored for 6 months.
The data processing serves the purpose of analysing this website and its visitors. Data is collected and stored for marketing and optimization purposes. User profiles can be created from this data under a pseudonym. Cookies can be used for this purpose. Mouseflow records randomly selected individual visits (only with anonymous IP address). This creates a log of mouse movements and clicks with the intention of randomly replaying individual website visits and deriving potential improvements for the website. The data collected with Mouseflow will not be used to personally identify the visitor of this website and will not be merged with personal data about the bearer of the pseudonym without the separately given consent of the person concerned. The processing is carried out on the basis of Article 6. Secton 1 f) GDPR from the justified interest in direct customer communication and in the design of the website in line with requirements. You have the right, for reasons arising from your particular situation, to appeal at any time in accordance with Art. 6, Secton 1 f) GDPR processing of personal data concerning you. To do this, you can deactivate a recording on all websites that use Mouseflow globally for the browser you are currently using by clicking on the following link: https://mouseflow.de/opt-out/. By using the opt-out, a corresponding cookie is set on your device until it is deleted.
General information on data protection at Mouseflow can be found at https://mouseflow.de/gdpr
Facebook Custom Audience on the pixel method
This website uses the “Facebook pixel” of Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). If explicit consent is given, this allows the behavior of users to be tracked after they have seen or clicked on a Facebook advertisement. This process is used to evaluate the effectiveness of Facebook Ads for statistical and market research purposes and may help to optimize future advertising efforts.
The collected data is anonymous for us, so we cannot draw conclusions about the identity of the users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook Data Usage Guidelines (https://www.facebook.com/about/privacy/). You may enable Facebook and its partners to serve ads on and off Facebook. A cookie may also be stored on your computer for these purposes. Such processing operations shall be carried out only if explicit consent is given in accordance with Article 6 section 1 a GDPR.
Consent to use the Facebook Pixel may only be given by users who are older than 13 years of age. If you are younger, please ask your legal guardian for permission.
Facebook Inc. with headquarters in the USA is certified for the US-European data protection agreement “Privacy Shield”, which guarantees compliance with the data protection level applicable in the EU.
Newsletter and mass communication
We send newsletters, e-mails and other electronic notifications (hereinafter “newsletters”) only with the consent of the recipients or a legal permission. Insofar as the contents of the newsletter are specifically described in the context of a registration for the newsletter, they are decisive for the consent of the users. In addition, our newsletter contains information about our services and us.
To subscribe to our newsletters, it is generally sufficient to provide your e-mail address. However, we may ask you to provide a name, for the purpose of personalized contact in the newsletter, or other information if this is necessary for the purposes of the newsletter.
Double opt-in procedure: The registration to our newsletter is always done in a so-called Double-Opt-In-Procedure. This means that after registration you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that nobody can register with other email addresses. Newsletter registrations are logged in order to be able to prove the registration process according to the legal requirements. This includes saving the registration and confirmation time as well as the IP address. Changes to your data stored by the shipping service provider are also logged.
Deletion and restriction of processing: We may store the unsubscribed e-mail addresses for up to three years on the basis of our legitimate interests before deleting them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defence against claims. An individual request for cancellation is possible at any time, provided that the former existence of a consent is confirmed at the same time. In case of obligations to continuously observe inconsistencies, we reserve the right to store the e-mail address in a blacklist solely for this purpose.
The registration procedure is recorded on the basis of our legitimate interests for the purpose of proving that it has been carried out properly. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure sending system.
Information on legal bases: The dispatch of newsletters is based on the consent of the recipients or, if consent is not required, on our legitimate interests in direct marketing, if and to the extent permitted by law, e.g. in the case of advertising to existing customers. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests. The registration process is recorded on the basis of our legitimate interests to prove that it has been carried out in accordance with the law.
Contents: Information about us, our services, actions and offers.
Performance measurementThe newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened, or, if we use a mailing service provider, from their server. Within the scope of this retrieval, technical information such as information on the browser and your system, as well as your IP address and the time of the retrieval, is initially collected.
This information is used for the technical improvement of our newsletter on the basis of the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined by means of the IP address) or the access times. This analysis also includes determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our intention nor that of the shipping service provider, if used, to monitor individual users. The evaluations rather serve us to recognize the reading habits of our users and to adapt our contents or to send different contents according to the interests of our users.
The evaluation of the newsletter and the measurement of success are carried out, subject to the express consent of the users, on the basis of our legitimate interests for the purpose of using a user-friendly and secure newsletter system, which both serves our business interests and meets the expectations of the users.
A separate revocation of the performance measurement is unfortunately not possible, in this case the entire newsletter subscription must be cancelled or must be objected to.
- Data types processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), meta/communication data (e.g. device information, IP addresses), usage data (e.g. websites visited, interest in content, access times)
- Persons concerned: Communication partner.
- Purposes of processing: direct marketing (e.g. by e-mail or by post).
- Legal basis: Consent (GDPR Art. 6 sect. paragraph a), legitimate interests GDPR (Art. 6 sect 1 paragraph f.)
- Possibility of objection (Opt-Out): You can cancel the receipt of our newsletter at any time, i.e. revoke your consent or object to further receipt. You will find a link to cancel the newsletter either at the end of each newsletter or you can use one of the above mentioned contact options, preferably e-mail.
Used services and service providers:
- Mailchimp: e-mail marketing platform; service provider: “Mailchimp” – Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA; website: https://mailchimp.com; privacy statement: https://mailchimp.com/legal/privacy/; Privacy Shield (ensuring level of data protection when processing data in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active.
11. routine deletion and blocking of personal data
The controller shall process and store personal data relating to the person concerned only for the period of time necessary to achieve the purpose of storage or where provided for by the European Directive and Regulation or by any other law or regulation to which the controller is subject.
If the purpose of storage ceases to apply or if a storage period prescribed by the European Directive and Regulation Giver or another competent legislator expires, the personal data will be blocked or deleted as a matter of routine and in accordance with the statutory provisions.
12. rights of the person concerned
- (a) Right to obtain confirmation Any data subject shall have the right to obtain from the controller confirmation as to whether personal data relating to him or her are being processed, as provided for by the European Directives and Regulations. If a person concerned wishes to exercise this right of confirmation, he or she may at any time contact an employee of the controller.
- b) Right of access Any person affected by the processing of personal data has the right granted by the European Directives and Regulations to obtain, at any time and free of charge, from the controller, information on the personal data relating to him/her and a copy thereof. Furthermore, the European Directive and Regulation maker has granted the person concerned access to the following information:
- the processing purposes
- the categories of personal data processed
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular to recipients in third countries or international organisations
- if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration
- the existence of a right of rectification or erasure of personal data relating to them or of a right of objection to their processing by the controller
- the existence of a right of appeal to a supervisory authority
- if the personal data are not collected from the person concerned: All available information on the origin of the data
- the existence of automated decision-making, including profiling, in accordance with Article 22(1) and (4) of the GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended impact of such processing on the person concerned
The person concerned shall also have the right to obtain information as to whether personal data have been transferred to a third country or to an international organisation. Where this is the case, the person concerned shall also have the right to be informed of the appropriate guarantees relating to the transfer.
If a person concerned wishes to exercise this right of access, he or she may at any time contact an employee of the controller.
- (c) Right of rectification Any person concerned by the processing of personal data has the right granted by the European legislator to request the rectification without delay of inaccurate personal data concerning him. Furthermore, the person concerned shall have the right to obtain the completion of incomplete personal data, including by means of a supplementary declaration, having regard to the purposes of the processing.
If a person concerned wishes to exercise this right of rectification, he or she may at any time contact an employee of the controller.
- d) Right of cancellation (right to be forgotten)Any person affected by the processing of personal data has the right, granted by the European Directives and Regulations, to obtain from the controller the immediate erasure of personal data relating to him/her, where one of the following reasons applies and where the processing is not necessary:
- (1) paragraph
- (a) the personal data are no longer necessary for the purposes for which they were collected or otherwise processed
- (b) the person concerned withdraws the consent on which the processing was based pursuant to Article 6(1)(a) or Article 9(2)(a) and there is no other legal basis for the processing
- (c) the person concerned raises an objection to the processing in accordance with Article 21(1) and there are no legitimate legitimate grounds overriding the processing, or the person concerned raises an objection to the processing in accordance with Article 21(2).
- (d) the personal data were processed unlawfully
- (e) deletion of the personal data is necessary to comply with a legal obligation under Union or national law to which the controller is subject
- (f) the personal data have been collected in relation to Information Society services provided in accordance with Article 8(1)
- Where the controller has made the personal data public and is obliged to delete them pursuant to paragraph 1, he shall take reasonable measures, including technical measures, taking into account available technology and implementation costs, to inform data controllers who process the personal data that a person concerned has requested them to delete all links to those personal data or copies or replications thereof.
- 3. Paragraphs 1 and 2 shall not apply where processing is necessary
- (a) to exercise the right to freedom of expression and information
- (b) to comply with a legal obligation requiring processing under Union or national law to which the controller is subject or in the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
- (c) on grounds of public interest relating to public health, in accordance with Article 9(2)(h) and (i) and Article 9(3)
- (d) for archival, scientific or historical research purposes in the public interest or for statistical purposes referred to in Article 89(1), in so far as the law referred to in paragraph 1 is likely to make it impossible or seriously hinder the achievement of the purposes of such processing; or
- (e) to assert, exercise or defend legal claims
- (1) paragraph
13. RIGHT OF OBJECTION
IF WE PROCESS YOUR PERSONAL DATA IN THE CONTEXT OF A BALANCING OF INTERESTS DUE TO OUR PREDOMINANT LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME, FOR REASONS ARISING FROM YOUR SPECIAL SITUATION, TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, WE RESERVE THE RIGHT TO FURTHER PROCESSING IF WE CAN PROVE COMPELLING REASONS FOR PROCESSING WORTHY OF PROTECTION, WHICH OUTWEIGH YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS.
IF YOUR PERSONAL DATA IS PROCESSED BY US FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING. YOU MAY EXERCISE THE RIGHT OF OPPOSITION AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.
14. duration of the storage of personal data
The duration of the storage of personal data is determined by the respective legal retention period (e.g. commercial and tax law retention periods). After expiry of this period, the corresponding data is routinely deleted if it is no longer required for the fulfillment or initiation of the contract and/or we have no justified interest in further storage.
PureFlow Filtersysteme GmbH
Kirchenlamitzer Str. 97
CEO: Herr Ludwig Künzel
Telefon: +49 9251 – 3081
Telefax: +49 9251 – 3893
or contact our data protection officer Mr Künzel E-Mail: firstname.lastname@example.org Phone +49 9251 3081
Your company PureFlow Filtersysteme GmbH