We, Marantec Marienfeld GmbH & Co. KG, are the data controller for our website and the associated data processing within the meaning of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG), as well as other data protection regulations. Comprehensive information about our company can be found in the imprint.

 

Marantec Marienfeld GmbH & Co. KG
Remser Brook 11
33428 Marienfeld
Germany
Tel.: 05247 705 0
Email: shop@marantec.com

Our data protection officer can be reached at the following contact details:

 

Marantec Marienfeld GmbH & Co. KG

- to the Data Protection Officer -

Remser Brook 11
33428 Marienfeld
Germany

Email address: dsb@marantec.com

3.1. Description and scope of data processing
Each time our website is accessed, our system, i.e., the web server, automatically collects information from the user's accessing computer system or device, which may allow for identification. The following data is collected by us:

IP address
Timestamp (date and time)
Request protocol
Requested URL path
Status code
Bytes sent
Referrer
User-Agent

 

3.2. Purpose of data processing
The temporary storage of the user's IP address by our system is necessary to enable the website to be delivered to the user's computer. The IP address of the user must necessarily remain stored for the duration of the session. The storage of the above-mentioned data in the log files is conducted to ensure the functionality of our website. In addition, this data serves us for optimizing the website and ensuring the security of our information technology systems (e.g., for detecting attacks).

 

3.3. Legal basis for data processing
The legal basis for the temporary storage of this data and the log files is Article 6(1)(f) GDPR (our legitimate interests as the responsible website operator). The processing of personal data for the purposes mentioned under 3.2 also constitutes our legitimate interest in the processing of the specified personal data.

 

3.4. Duration of storage
The data is deleted as soon as it is no longer necessary for achieving the purpose of its collection. In the case of data collection for providing the website, this is done when the respective session is ended.

In the case of storage of data in log files, they will be deleted after 7 days. No backups are made from the log files.

Only the provider, as a telecommunications provider, is legally obligated under § 113b TKG to store the following data:

The Internet protocol address assigned to the participant for an Internet use,
A unique identifier of the connection over which the Internet use occurs, and an assigned user ID,
Date and time of the start and end of Internet use under the assigned Internet protocol address, indicating the underlying time zone,
For a duration of ten weeks. Further storage may be possible in the pursuit of administrative offenses or criminal offenses.

 

3.5. Categories of recipients of the personal data
The website is hosted by our carefully selected service provider. The hoster receives the above-mentioned data as a processor.

4.1. Description and scope of data processing
We can be contacted via our contact form and the provided email address. In this case, the personal data of the sender, i.e., the user, transmitted with the inquiry, is stored. To be able to contact you in the event of further communication, we collect the following personal data via our contact form:

Name
Email address
Telephone number (optional)
Comment
If you contact us by email via our email address (shop@marantec.com), we collect the personal data provided to us in the email, particularly:

Email address
Subject
Message and message content

 

4.2. Purpose of data processing
Personal data you provide us via email or the contact form of this website is only processed for correspondence with you, or only for the purpose you have provided the data to us.

 

4.3. Legal basis for data processing
The legal basis for the processing of personal data submitted in the course of an inquiry is Article 6(1)(f) GDPR (our legitimate interests as the responsible entity). The processing of personal data for the purposes mentioned under 4.2 also constitutes our legitimate interest in the processing of the specified personal data.

 

4.4. Duration of storage
The above-mentioned data will be deleted as soon as it is no longer required for achieving the purpose of its collection. For personal data that was transmitted via email or the contact form, this is the case when the respective conversation with the user is ended. The conversation is deemed ended when the circumstances indicate that the relevant matter has been conclusively clarified.

 

4.5. Categories of recipients of the personal data
The website is hosted by our carefully selected service provider. The hoster receives the above-mentioned data as a processor.

5.1. Description and scope of data processing
We offer users the opportunity to register on our website by providing personal data. The data is entered into an input mask and transmitted to us. This data is not transferred to third parties.

The following data is collected during the registration process:

First name and last name
Email address
Password
Telephone number
Company
VAT ID (optional)
Street and house number
Postal code, city, and country
Marantec customer number or proof of business
The following data is collected during the login process:

Username in the form of the email address provided during registration
Password
At the time of registration and login, the following data is also stored:

The IP address of the user
Date and time of login

 

5.2. Purpose of data processing
The processing of personal data in connection with registration and login serves the purpose of opening or providing a customer account for the online shop and providing the online shop with its functions to the user.

 

5.3. Legal basis for data processing
The legal basis for processing personal data is Article 6(1)(b) GDPR (performance of pre-contractual measures or performance of a contract with the user or the data subject as a contract party), or Article 6(1)(f) GDPR (our legitimate interests as the responsible entity), as the processing of personal data is necessary for opening a customer account for the online shop and using the functions of the online shop. The processing of personal data for the purposes mentioned under 5.2 also constitutes our legitimate interest in the processing of the specified personal data.

 

5.4. Duration of storage
The above-mentioned data will be deleted as soon as they are no longer necessary for achieving the purpose of their collection. This is, for example, the case when the data is no longer required for the execution of pre-contractual measures or for the fulfillment of a contract, or when the user or data subject wishes to terminate the business relationship or their customer account, unless legal retention obligations oppose the deletion or statutory limitation periods apply.

 

5.5. Categories of recipients of your personal data
The website is hosted by our carefully selected service provider. The hoster receives the above-mentioned data as a processor.

6.1. Description and scope of data processing
We offer users the opportunity to purchase our products and use our services in our access-protected online shop after successful registration. We process the following personal data:

Salutation
First name and last name
Email address
Telephone number
Company details
Department
VAT ID
Billing and delivery address (if different)
Street and house number
Additional address information
Postal code, city, and country
Marantec customer number
Proof of business
Payment method
Shipping method
Purchased item, quantity, invoice amount, potential discount

 

6.2. Purpose of data processing
We process your personal data to the required extent and for specific purposes to fulfill the contract and for the provision and execution of our service duties as well as for technical administration. The purposes of the necessary data processing are determined by the contract agreed with the user (including our general terms and conditions and, if applicable, service-specific terms or conditions) or the services requested by the user. The purposes, in particular, are:

The execution of purchase contracts and customer service including shipping and payment processing, claims management, as well as handling returns, complaints, and warranty cases.
Non-promotional communication with you on technical, security, and contract-related topics (e.g., fraud warnings, account suspension, or contract changes).

 

6.3. Legal basis for data processing
If processing is necessary for fulfilling a contract or pre-contractual measures in direct relation to you as the data subject, we process your data in accordance with Article 6(1)(b) GDPR. If we do not process your personal data to fulfill a contract or pre-contractual measures, processing is performed under Article 6(1)(f) GDPR. Our legitimate interest lies in the handling and execution of the services and tasks ordered by you or your employer. The processing of personal data for the purposes mentioned under 6.2 also constitutes our legitimate interest in the processing of the specified personal data.

 

6.4. Duration of storage
We store the data collected for the contract handling for the duration of the contract and until the expiration of statutory or potential contractual warranty and guarantee rights. After this period, we retain the contract relationship information required under commercial and tax law for the legally established periods. During this period, the data will only be processed if needed for review by the financial administration.

 

6.5. Categories of recipients of your personal data
To the extent necessary, we transmit your personal data to one or more of the specified purposes to processors and the following other recipients:

External service providers and carriers (such as UPS, etc.)
Payment service providers
The website is hosted by our carefully selected service provider. The hoster receives the above-mentioned data as a processor.
Credit agencies (e.g., information on payment delays, failures, or other irregularities which may be relevant for your credit report).

7.1. Description and scope of data processing
We process your personal data to fulfill legal obligations. The specific scope of processed data depends on the respective legal obligation.

 

7.2. Purpose of data processing
The processing of personal data to fulfill legal obligations involves the following purposes, in particular:

Participation in proceedings (including legal proceedings) conducted by government authorities, particularly to clarify, investigate, and prosecute unlawful acts.
Prevention, detection, and containment of unlawful acts (e.g., fraud, money laundering, and terrorism financing).
Ensuring the information security of our services.
Retention and storage of personal data to fulfill specific retention obligations.
Management of data protection-related data subject rights.

 

7.3. Legal basis for data processing
If the processing is required to fulfill legal obligations, we process your data under Article 6(1)(c) GDPR.

 

7.4. Duration of storage

Your data will be deleted as soon as it is no longer necessary for the purposes it was collected or processed. As far as necessary, we will process your personal data for as long as we are legally obliged to do so. Specific retention periods result from the purposes of processing described under 7.2.

 

7.5. Categories of recipients of your personal data
To the extent necessary, we transmit your personal data to one or more of the specified purposes to processors and the following other recipients:

To law enforcement agencies, courts, and other governmental bodies
Third parties involved in legal proceedings, provided they present us with a legal order, court decision, or equivalent legal provision.
The website is hosted by our carefully selected service provider. The hoster receives the above-mentioned data as a processor.

8.1. Description and scope of data processing
We process your personal data to pursue our legitimate interests, provided your interests or fundamental rights and freedoms do not prevail.

 

8.2. Purpose of data processing
Prevention, detection, containment, and investigation of fraud, security breaches, and other prohibited or unlawful activities, including risk assessment (e.g., using Captcha)
Sending direct mail advertising, as legally permissible without explicit consent.
Contacting you via electronic mail (e.g., email) or phone where legally permissible without explicit consent, to provide vouchers, discounts, or special offers, conduct opinion polls, and inform you about our services. If you do not wish to receive marketing communications from us, you can unsubscribe using the link in the email received. Technical reasons may cause a delay in implementation.

 

8.3. Legal basis for data processing
If processing is necessary to protect our legitimate interests and your interests and fundamental rights and freedoms do not prevail, we process your data under Article 6(1)(f) GDPR. The processing of personal data for the purposes mentioned above also constitutes our legitimate interest in the processing of the specified personal data.

 

8.4. Categories of recipients of your personal data
To the extent necessary, we transmit your personal data to one or more of the specified purposes to processors, e.g., service providers for sending emails.

9.1. Description and scope of data processing
Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. If a user accesses a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string of characters that enables precise identification of the browser upon a subsequent visit to the website.

 

9.2. Purpose of data processing
We use cookies to make our web shop functional. Some elements of our website require that the calling browser can also be identified after a page change, enabling, for example, the use of the shopping cart functionality. The following data is stored and transmitted in the cookies:

Log-in information
Products in the shopping cart and wish list
Consent to the use of cookies

 

9.3. Legal basis for data processing
The legal basis for processing personal data using cookies is Article 6(1)(f) GDPR (our legitimate interests as the responsible website operator).

 

9.4. Duration of storage
Most of the cookies we use are so-called "session cookies," which are automatically deleted after your visit ends. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser upon a subsequent visit and restore your wish list.

Session cookie: Until session end
Cookie for wish list: 1 year
Cookie for consent to cookie usage: 6 months

10.1. Description and scope of data processing
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland"). Google Analytics uses cookies, which are text files stored on your computer, enabling analysis of your use of the website. The data generated by the cookie regarding your website use is usually transmitted to and stored on a Google server in the United States.

When individual pages of our website are accessed, the following data is stored:

The IP address, except for the last three digits, of the user's accessing system (anonymized IP address)
The accessed web page
Your behavior on the pages
Your approximate location (country and city)
The website from which the user accessed a page on our website (referrer)
The subpages accessed from the visited page
The duration of stay on the website
The frequency of page visits
The software is configured so that the IP addresses are not fully stored, only the last three digits are masked (e.g., 192.168.79.***). This way, it is no longer possible to assign the shortened IP address to the calling computer or device of the user for Marantec Marienfeld GmbH & Co. KG.

 

10.2. Purpose of data processing
The processing of the user's personal data with the help of Google Analytics allows us to analyze user surfing behavior. By evaluating the obtained data, we can gather information on the use of our website's individual components. This helps us continually improve our website and its user-friendliness.

 

10.3. Legal basis for data processing
The legal basis for processing personal data is the user's consent (Article 6(1)(a) GDPR), which can be revoked at any time with future effect.

 

10.4. Duration of storage
The data stored through tracking is deleted as soon as it is no longer needed for the purposes mentioned under point 2. The maximum storage period is 14 months.

 

10.5. Recipients and transfer to third countries
The data processed by Google Analytics is processed in third countries. Google Inc. ensures that the parent company of the Google Group, Google LLC, remains certified under the Privacy Shield principles for itself and its fully-owned US subsidiaries, and the scope of the Privacy Shield certification covers the customer's personal data.

 

10.6. Opt-out option
If you wish to disable Google Analytics, you can download and install a browser add-on. The browser add-on to deactivate Google Analytics is compatible with common versions of Chrome, Internet Explorer, Safari, Firefox, and Opera. The add-on must be correctly loaded and executed in the browser for it to work.

For more information, visit the following link: https://tools.google.com/dlpage/gaoptout?hl=de

Your personal data is securely transmitted to us via encryption. This applies to your order and customer login. We use the coding system SSL (Secure Socket Layer). Furthermore, we secure our websites and other systems with technical and organizational measures against loss, destruction, access, alteration, or distribution of your data by unauthorized persons.

When personal data of a user is processed, the user is considered a "data subject" within the meaning of the GDPR. They are entitled to the following rights against us as the data controller:

Right to information
Right to rectification
Right to restriction of processing
Right to erasure
Right to be informed
Right to data portability
Right to object
Right to withdraw consent under data protection law
Right to lodge a complaint with a data protection supervisory authority
Note on withdrawal of consent
A data subject has the right to withdraw their consent under data protection law at any time. However, this does not affect the lawfulness of processing based on consent before its withdrawal.

Note on complaints to a supervisory authority
Without prejudice to any other administrative or judicial remedy, a data subject has the right to complain to a supervisory authority, in particular in the member state of the user's place of residence, workplace, or place of the alleged infringement, if the user believes that the processing of their personal data by us violates the GDPR.

13.1. You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data concerning you, which is based on Article 6(1)(f) GDPR (data processing on the basis of a legitimate interest). If you object, Marantec will no longer process your personal data unless Marantec can demonstrate compelling legitimate grounds for processing that override your interests, rights, and freedoms, or the data processing serves the establishment, exercise, or defense of legal claims.

 

13.2. In individual cases, Marantec processes your personal data, for direct marketing purposes. You have the right to object at any time to the processing of your personal data for such advertising purposes. If you object to processing for direct marketing purposes, Marantec will no longer process your personal data for these purposes. The objection can be made informally and should preferably be directed to:

 

Marantec Marienfeld GmbH & Co. KG
Remser Brook 11
33428 Marienfeld
Germany
Tel.: 05247 705 0
Email: shop@marantec.com