Privacy Policy
1. Overview of data protection
General information
The following information provides you with an easy-to-understand overview of what happens to your personal data when you visit this website. The term "personal data" includes all data that can be used to personally identify you. Detailed information on the subject of data protection can be found in our privacy policy set out below.
Data collection on this website
Who is responsible for data collection on this website (i.e. the “controller”)?
The data on this website is processed by the website operator. Its contact details can be found in the section “Information about the responsible party” in this privacy policy.
How do we collect your data?
We collect your data when you provide it to us. This may, for example, include information you enter into our contact form.
Other data is collected automatically by our IT systems, or after you consent to its collection during your website visit. This data primarily consists of technical information (e.g. web browser, operating system, or the time the website was accessed). This information is collected automatically when you access this website.
What do we use your data for?
Some of the information is generated to ensure the error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipients, and purpose of your stored personal data at any time and free of charge. You also have the right to request the correction or deletion of your data. If you have consented to data processing, you may revoke this consent at any time with effect for the future. Furthermore, under certain circumstances, you have the right to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the competent supervisory authority.
Please feel free to contact us at any time if you have questions about this or any other data protection issues.
2. Hosting
We host the contents of our website with the following provider:
All-Inkl
The provider is ALL-INKL.COM - Neue Medien Münnich, owner: René Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany (hereinafter “All-Inkl”). For details, please refer to All-Inkl’s privacy policy: https://all-inkl.com/datenschutzinformationen. The use of All-Inkl is based on Art. 6(1)(f) GDPR. We have a legitimate interest in ensuring our website is presented as reliably as possible. If corresponding consent has been obtained, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and Section 25(1) TTDSG, to the extent the consent includes the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.
Data processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract required under data protection law that ensures personal data of our website visitors is processed only in accordance with our instructions and in compliance with the GDPR.
3. General information and mandatory information
Data protection
The operators of this website take the protection of your personal data very seriously. We therefore treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is any data by which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose the data is collected.
Please note that data transmission over the internet (e.g. when communicating by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.
Information about the responsible party
The party responsible for data processing on this website is:
COMERCUS GmbH
HerrenstraĂźe 18
76133 Karlsruhe
Phone: +49 7249 387152
Email: hello@comercus.com
The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g. names, email addresses, etc.).
Storage period
Unless a more specific storage period is stated in this privacy policy, your personal data remains with us until the purpose for which it was collected no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, deletion will occur once those reasons no longer apply.
General information on the legal basis for data processing on this website
If you have consented to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR if special categories of data are processed in accordance with Art. 9(1) GDPR. In the event of express consent to the transfer of personal data to third countries, data processing is also based on Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or to access to information on your end device (e.g. via device fingerprinting), data processing is additionally based on Section 25(1) TTDSG. Consent can be revoked at any time. If your data is required to fulfill a contract or to carry out pre-contractual measures, we process your data on the basis of Art. 6(1)(b) GDPR. Furthermore, if your data is required to fulfill a legal obligation, we process it on the basis of Art. 6(1)(c) GDPR. Data processing may also be carried out on the basis of our legitimate interest pursuant to Art. 6(1)(f) GDPR. Information on the relevant legal basis in each individual case can be found in the following sections of this privacy policy.
Revocation of your consent to data processing
Many data processing operations are possible only with your express consent. You may revoke consent you have already given at any time. The lawfulness of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to the collection of data in special cases; right to object to direct advertising (Art. 21 GDPR)
IF DATA IS PROCESSED ON THE BASIS OF ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, TO THE PROCESSING OF YOUR PERSONAL DATA. THIS ALSO APPLIES TO ANY PROFILING BASED ON THOSE PROVISIONS. THE RESPECTIVE LEGAL BASIS FOR PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS ASSOCIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).
Right to lodge a complaint with the competent supervisory authority
In the event of violations of the GDPR, data subjects are entitled to lodge a complaint with a supervisory authority, in particular in the member state of their habitual residence, place of work, or the place where the alleged violation occurred. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedies.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent technically feasible.
Information about, correction, and deletion of data
Within the scope of applicable statutory provisions, you have the right at any time to obtain information free of charge about your stored personal data, its origin and recipients, and the purpose of data processing, and, if applicable, a right to correction or deletion of this data. You can contact us at any time if you have further questions on the subject of personal data.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. You may contact us at any time for this purpose. The right to restriction of processing exists in the following cases:
- If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the verification, you have the right to request restriction of the processing of your personal data.
- If the processing of your personal data was or is unlawful, you may request restriction of data processing instead of deletion.
- If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request restriction of processing instead of deletion.
- If you have lodged an objection pursuant to Art. 21(1) GDPR, your interests and ours must be weighed against each other. As long as it has not yet been determined whose interests prevail, you have the right to request restriction of the processing of your personal data.
If you have restricted the processing of your personal data, such data may—apart from storage—only be processed with your consent or for the assertion, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.
SSL and/or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the website operator, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the browser address line changing from “http://” to “https://” and by the lock icon in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4. Recording of data on this website
Requests by email, telephone, or fax
If you contact us by email, telephone, or fax, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of handling your inquiry. We do not pass this data on without your consent.
This data is processed on the basis of Art. 6(1)(b) GDPR if your request is related to the fulfillment of a contract or is necessary for carrying out pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries addressed to us (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if this has been requested; consent can be revoked at any time.
The data you send to us via contact requests remains with us until you request deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (e.g. after your inquiry has been processed). Mandatory legal provisions—especially statutory retention periods—remain unaffected.
5. Plug-ins and tools
Google Fonts (local embedding)
This website uses so-called Google Fonts provided by Google to ensure the uniform use of fonts on this website. These Google Fonts are installed locally, so no connection to Google’s servers is established in connection with this application.
For more information about Google Fonts, please follow this link: https://developers.google.com/fonts/faq and consult Google’s privacy policy at: https://policies.google.com/privacy?hl=en.