Beyer & Müller GmbH & Co. KG

Privacy Policy E-Series

To change the language, please scroll to the bottom of this page.

1. Data protection at a glance

General information

The following information provides a simple overview of what happens to your personal data when you use this app. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our privacy policy listed below this text.

Who is responsible for the data collection in this app?

The data processing of this app is carried out by the operator. You can find their contact details in the imprint of this website.

How do we collect your data?

Firstly, your data is collected when you provide it to us. This may, for example, be data that you enter in a contact form.

Other data is collected automatically or after your consent by our IT systems when you use the app. This is mainly technical data (e.g. operating system or time of use). This data is collected automatically as soon as you use this app.

What do we use your data for?

Part of the data is collected to ensure that the app is provided without errors. Other data may be used to analyse user behaviour.

What rights do you have regarding your data?

You have the right to receive information about the source, recipient and purpose of the personal data stored about you at any time and free of charge. You also have a right to request the rectification or erasure of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right to request that the processing of your personal data be restricted in certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You can contact us at any time with regard to this and other questions on the subject of data protection.

2. Hosting

External hosting

This app is hosted by an external service provider (host). The personal data collected in this app is stored on the host's servers. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, contractual data, contact data, names, app traffic and other data generated through an app.

The host is used for the purpose of contract fulfilment vis-à-vis our potential and existing customers (Art. 6 para. 1 (b) GDPR) and in the interest of a secure, fast and efficient provision of our online services through a professional provider (Art. 6 para. 1 (f) GDPR). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG (German Data Protection Act), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Our host will only process your data to the extent that this is necessary for the fulfilment of its service obligations and will follow our instructions with regard to this data.

We use the following host:

We have concluded an order processing agreement (OPA) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this company only processes the personal data of app users in accordance with our instructions and in compliance with the GDPR.

3. General notes and mandatory information

Data protection

The operators of this app take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection rules and this privacy policy.

The use of this app will result in the collection of various personal data. Personal data is all data by which you can be personally identified. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the Internet (e.g. communication by email) can have gaps in security. Complete protection of the data against access by third parties is not possible.

Information on the controller

The controller for this app is:

Beyer & Müller GmbH & Co. KG
Am Lindenkamp 55
D-42549 Velbert

Phone: +49 (0) 2051 4232-0
Email: info@beyer-und-mueller.de

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses or similar).

Storage period

Unless a more specific storage period is stated within this privacy policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you assert a justified request for erasure or revoke your consent to have your data processed, your data will be erased unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the data will be erased once these reasons no longer apply.

General information on the legal basis for data processing in this app

If you have consented to data processing, we will process your personal data on the basis of Art. 6 para. 1 (a) GDPR or Art. 9 para. 2 (a) GDPR if special data categories are processed in accordance with Art. 9 para. 1 GDPR. If explicit consent is given to the transfer of personal data to third countries, data processing will also be carried out on the basis of Art. 49 para. 1 (a) GDPR. If you have consented to the storage of cookies or to the access to information in your terminal device (e.g. via device fingerprinting), the data processing will also be carried out on the basis of Section 25 (1) TTDSG (German Data Protection Act). The consent can be revoked at any time. If your data is required for the performance of a contract or for the implementation of pre-contractual measures, we will process your data on the basis of Art. 6 para 1 (b) GDPR. Furthermore, we will process your data if this is necessary for the fulfilment of a legal obligation on the basis of Art. 6 para. 1 (c) GDPR. The data processing may also be based on our legitimate interest in accordance with Art. 6 para 1 (f) GDPR. Information on the relevant legal basis in each individual case is provided in the following paragraphs of this privacy policy.

Data Protection Officer

We have appointed a data protection officer for our company.

ER Secure GmbH
In der Knackenau 4
82031 Grünwald

Phone: +49 (0) 2051 4232-0
Email: datenschutz@beyer-und-mueller.de

Information on data transfer to the USA and other third countries

We use, among other things, tools from companies based in the USA or other third countries that are not secure under data protection law. When these tools are active, your personal data may be transferred to and processed in these third countries. We would like to point out that no level of data protection comparable to that in the EU can be guaranteed in these countries. For example, US companies are obliged to hand over personal data to security authorities without you as the data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) may process, evaluate and permanently store your data located on US servers for surveillance purposes. We have no influence over these processing activities.

Withdrawal of your consent to data processing

Many data processing operations are only possible with your explicit consent. You can revoke consent you have already given at any time. The legality of the data processing carried out until the withdrawal of consent remains unaffected by the withdrawal.

Right to object to the collection of data in specific cases and to direct marketing (Art. 21 GDPR)

If the data processing is based on Art. 6 para. 1 (e) or (f) GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this privacy policy. If you object, we will no longer process your respective personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims (objection under Art. 21 para. 1 GDPR).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data relating to you for the purpose of such marketing; this also applies to profiling insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection in accordance with Art. 21 para. 2 GDPR).

Right to lodge a complaint with the competent supervisory authority

In the event of infringements of the GDPR, data subjects shall have a right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or the place of the suspected infringement. The right to lodge a complaint shall be without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

SSL- or TLS-encryption

This app uses SSL or TLS encryption for security reasons and to protect the transfer of confidential content, such as orders or enquiries that you send to us as the app operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Encrypted payment transactions via this app

If you enter into a contract which requires you to send us your payment information (e.g. account number for direct debits), we will need this data to process your payment.

Payment transactions using common means of payment (Visa/MasterCard, direct debit) are made exclusively via an encrypted SSL or TLS connection. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

When communication is encrypted, the payment data you transmit to us cannot be read by third parties.

Information, erasure and rectification

Within the framework of the applicable legal provisions, you have the right at any time to obtain information free of charge about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, the right to rectify or erase this data. You can contact us at any time about this and any other questions you may have on the subject of personal data.

Right to restriction of processing

You have the right to request that the processing of your personal data be restricted. You can contact us at any time for this purpose. The right to restrict processing exists in the following cases:

If you dispute the accuracy of your personal data held by us, we will usually need time to verify this. For the duration of the review, you have the right to request that the processing of your personal data be restricted.
If the processing of your personal data happened/is happening unlawfully, you can request that the data processing be restricted instead of erased.
If we no longer need your personal data, but you require it for the exercise, defence or assertion of legal claims, you have the right to request that the processing of your personal data be restricted instead of erased.
If you have lodged an objection pursuant to Art. 21 para. 1 GDPR, a balancing of your interests and ours must be carried out. Until it is determined whose interests prevail, you have the right to request that the processing of your personal data be restricted. If you have restricted the processing of your personal data, such data may, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.

4. Data collection in this app

Cookies

Our app uses so-called "cookies". Cookies are small text files and do not cause any damage to your terminal device. They are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your terminal device. Session cookies are automatically deleted once you have finished using the app. Permanent cookies remain stored on your terminal device until you delete them yourself or until they are automatically deleted by your terminal device.

In some cases, cookies from third-party companies may also be stored on your terminal device when you enter our app (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).

Cookies have various functions. Many cookies are technically necessary, as certain app functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behaviour or display advertising.

Cookies that are necessary to carry out electronic communication, to provide certain functions you have requested (e.g. for the shopping cart function) or to optimise the app (e.g. cookies to measure web traffic) (necessary cookies) are stored on the basis of Art. 6 para. 1 (f) GDPR, unless another legal basis is specified. The app owner has a legitimate interest in storing necessary cookies to ensure that its services are provided without technical errors and in an optimised manner. If consent to the storage of cookies and comparable recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6 para. 1 (a) GDPR and § 25 para. 1 TTDSG (German Data Protection Act)); consent can be revoked at any time.

You can adjust your terminal device settings to notify you whenever cookies are being placed. Also, you can allow cookies on a case-by-case basis, you can exclude the acceptance of cookies for specific cases or in general, and you can activate the automatic deletion of cookies when you close the browser. If cookies are deactivated, the functionality of this app may be limited.

If cookies are used by third-party companies or for analysis purposes, we will inform you about this separately within the framework of this privacy policy and, if necessary, request your consent.

Consent with Cookiebot

Our app uses the consent technology of Cookiebot to request your consent for the storage of certain cookies on your terminal device or for the use of certain technologies and to document this in a manner that complies with data protection regulations. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (hereinafter "Cookiebot").

When you open our app, a connection is established to Cookiebot's servers so that your consent and other declarations regarding the use of cookies can be obtained. Cookiebot will then store a cookie on your terminal device in order to be able to allocate the consent you have given or its revocation. The data collected in this way will be stored until you request us to delete it, delete the Cookiebot cookie yourself or the purpose for storing the data no longer applies. Mandatory statutory retention obligations remain unaffected.

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for that is Art. 6 para. 1 (c) GDPR.

Contact form

If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you have provided there, will be stored by us for the purpose of processing the enquiry and any required follow-up questions. We do not pass on this data without your consent.

The processing of this data is based on Art. 6 para. 1 (b) GDPR, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective handling of the enquiries directed to us (Art. 6 para. 1 (f) GDPR) or on your consent (Art. 6 para. 1 (a) GDPR) if this has been requested; the consent can be revoked at any time.

We will retain the data you enter in the contact form until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry). Mandatory statutory provisions - in particular retention periods - remain unaffected.

Request by email, telephone or fax

If you contact us by e-mail, telephone or fax, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

The data you send to us via contact requests will remain with us until you request its erasure, revoke your consent to its storage or the purpose for storing the data no longer applies (e.g. after processing your request has been completed). Mandatory statutory provisions - in particular statutory retention periods - shall remain unaffected.

Communication via WhatsApp

We use the instant messaging service WhatsApp, among others, to communicate with our customers and other third parties. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

Communication takes place via end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from gaining access to the contents of the message. However, WhatsApp receives access to metadata that is created during the course of communication (e.g. sender, recipient and time). We would also like to point out that WhatsApp, according to its own statement, shares personal data of its users with its parent company Meta, which is based in the USA. Further details on data processing can be found in WhatsApp's privacy policy at: https://www.whatsapp.com/legal/#privacy-policy.

The use of WhatsApp is based on our legitimate interest in communicating as quickly and effectively as possible with customers, interested parties and other business and contractual partners (Art. 6 para. 1 (f) GDPR). If consent has been requested, the data will be processed exclusively on the basis of the consent; this can be revoked at any time with effect for the future.

The content of the communication exchanged between and on WhatsApp remains with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after we have completed processing your enquiry). Mandatory statutory provisions - in particular retention periods - remain unaffected.

Salesforce Sales Cloud

We use Salesforce Sales Cloud to manage customer data. The provider is salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich (hereinafter "Salesforce").

Salesforce Sales Cloud is a CRM system and enables us, among other things, to manage existing and potential customers as well as customer contact information and to organise sales and communication processes. The use of the CRM system also enables us to analyse our customer-related processes. Customer data is stored on Salesforce's servers. Personal data may also be transferred to salesforce.com Germany GmbH's parent company, salesforce.com inc., Salesforce Tower, 415 Mission Street, San Francisco, CA 94105, USA.

Details of the Salesforce Sales Cloud features can be found here: https://www.salesforce.com/de/products/sales-cloud/overview/.

The use of Salesforce Sales Cloud is based on Art. 6 para. 1 (f) GDPR. The app operator has a legitimate interest in providing the most efficient customer management and customer communication possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG (German Data Protection Act), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Salesforce has Binding Corporate Rules (BCR) that have been approved by the French data protection authority. These are binding internal company regulations that legitimise the internal transfer of data to third countries outside the EU and the EEA. You can find details here: https://www.salesforce.com/news/stories/salesforces-binding-corporate-rules-reflect-highest-data-protection-standards/.

For details, see the Salesforce privacy policy:

https://www.salesforce.com/company/privacy/

5. Analysis tools and advertising

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that allows us to embed tracking or statistics tools and other technologies into our app. Google Tag Manager itself does not create user profiles, does not store cookies and does not perform any independent analyses. It is only used for the administration and running of the tools integrated via it. However, Google Tag Manager does collect your IP address, which may also be transferred to Google's parent company in the United States.

The use of Google Tag Manager is based on Art. 6 para. 1 (f) GDPR. The app operator has a legitimate interest in a quick and uncomplicated integration and management of various tools in the app. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG (German Data Protection Act), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Google Analytics

This app uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the app operator to analyse the behaviour of app users. The app operator receives various usage data, such as page views, duration of stay, the operating system used and the origin of the user. This data is summarised in a user ID and assigned to the respective terminal device of the app user.

Furthermore, Google Analytics allows us to record your mouse and scroll movements and clicks, among other things. Furthermore, Google Analytics uses various modelling approaches to augment the collected data sets and employs machine learning technologies in its data analysis.

Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this app is usually transferred to a Google server in the USA and stored there.

The use of this service is based on your consent according to Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.

You can find more information on how Google Analytics handles user data in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl.

We have concluded an order processing contract with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Google Ads

The app operator uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). It also allows targeted advertisements to be displayed on the basis of user data held by Google (e.g. location data and interests) (target group targeting). As an app operator, we can quantitatively evaluate this data by analysing, for example, which search terms led to the display of our advertisements and how many ads resulted in corresponding clicks.

The use of this service is based on your consent according to Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:

https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/

Facebook Pixel

This app uses Facebook's visitor action pixel for conversion measurement. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the USA and other third countries.

This means that the behaviour of app users can be tracked after they have been redirected to the provider's app by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and to optimise future advertising campaigns.

The collected data is anonymous for us as the operator of this app, we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook, allowing a connection to the respective user profile and enabling Facebook to use the data for its own advertising purposes, in accordance with the Facebook Privacy Policy . This allows Facebook to display ads on Facebook pages as well as outside of Facebook. This use of data cannot be influenced by us as the app operator.

The use of this service is based on your consent according to Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

Insofar as personal data is collected in our app with the help of the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland shall share joint responsibility for this data processing (Art. 26 GDPR). The shared responsibility is limited exclusively to the collection of the data and its transfer to Facebook. Processing carried out by Facebook after forwarding is not part of the shared responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The wording of the agreement can be found under: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing privacy information when using the Facebook tool and for implementing the tool in our app in a manner that is secure from a data protection perspective. Facebook is responsible for the data security of Facebook products. You can assert data subject rights (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert data subject rights with us, we are obliged to forward this to Facebook.

You can find more information about protecting your privacy in Facebook's privacy policy: https://www.facebook.com/privacy/policy/.

You can also deactivate the "Custom Audiences" remarketing function in the Advertising Settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.

If you do not have a Facebook account, you can disable Facebook's use-based advertising on the European Interactive Digital Advertising Alliance website: https://www.youronlinechoices.com/uk/your-ad-choices/.

6. Plugins and Tools

Google reCAPTCHA

We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") in this app. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

The purpose of reCAPTCHA is to check whether the data entered on this app (e.g. in a contact form) is entered by a human or by an automated program. To do this, reCAPTCHA analyses the app user's behaviour on the basis of various characteristics. Analysis begins automatically as soon as the app user enters the app. In order to perform the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the user in the app or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analysis runs completely in the background. App users are not informed that an analysis is taking place.

The storage and analysis of the data is based on Art. 6 para. 1 (f) GDPR. The app operator has a legitimate interest in protecting its websites from abusive automated spying and SPAM. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 (a) GDPR and Section 25 para. 1 TTDSG (German Data Protection Act), insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

For more information about Google reCAPTCHA, please see the Google Privacy Policy and the Google Terms of Service at the following links: https://policies.google.com/privacy and https://policies.google.com/terms.

Zendesk

We use the CRM system Zendesk to process user enquiries. The provider is Zendesk, Inc., 1019 Market Street in San Francisco, CA 94103 USA.

We use Zendesk to quickly and efficiently process your enquiries. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 (f) GDPR.

You can send requests by just entering your email address and without giving your name.

The messages sent to us remain with us until you ask us to delete them or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory statutory provisions - in particular retention periods - remain unaffected.

Zendesk has Binding Corporate Rules (BCR) that have been approved by the Irish Data Protection Authority. These are binding internal company regulations that legitimise the internal transfer of data to third countries outside the EU and the EEA. Details can be found here: https://www.zendesk.de/blog/update-privacy-shield-invalidation-european-court-justice/.

If you do not agree to us processing your request through Zendesk, you can also communicate with us by email, phone or fax.

For more information, please see Zendesk's privacy policy: https://www.zendesk.de/company/customers-partners/privacy-policy/.