Privacy Policy

1. Overview

The protection of personal data and the responsible handling of information entrusted to us are important and special concerns to us. Gutzmann GmbH (Gutzmann) processes personal data only in accordance with legal regulations. These regulations primarily include the EU General Data Protection Regulation (GDPR) and the German Bundesdatenschutzgesetz (BDSG).

With this data privacy statement, we inform you about how, to what extent, and for what purposes we process personal data when using our website.

2. Controller and Data Protection Officer

Controller within the meaning of data protection law is

Gutzmann GmbH
Parkstr. 60, 23568 Lübeck, Germany

You can find details in our Legal Notice.

You can contact our Data Protection Officer at:

Gutzmann GmbH
Datenschutzbeauftragter
Parkstr. 60, 23568 Lübeck, Germany
datenschutz@gutzmann.com

3. Processing of Your Personal Data

The subject of data protection is personal data. These are pieces of information that can be attributed to a specific or identifiable individual, such as name, address, email address, and telephone number.

In principle, the use of this website does not require the processing of personal data. Data collection and processing occur if you voluntarily provide your personal data. We explain this in sections 3 and 4.

3.1. Data Processing to Enable Website Usage

When you visit our website, we collect the necessary data to enable your usage (usage data). This includes your IP address and data about the beginning, end, and subject of your website usage, as well as, if applicable, data for identification (e.g., your login details if you log into your personal account). Additionally, this includes technical data transmitted by your browser, such as browser type/version, the previously visited website (referrer URL), screen resolution, operating system, and possibly device information (e.g., device type), etc. We process this usage data to provide and customize this website according to your needs, within our legitimate interest (Art. 6 Para. 1 S. 1 lit. f GDPR).

These usage data are generally deleted as soon as they are no longer needed.

3.2. Cookies

When you visit our website, it is possible that information in the form of a cookie is stored on your computer. Cookies are small text files sent by a web server to your browser and stored on your computer’s hard drive. This allows us to recognize you upon your repeated visits to the website. We use cookies to ensure the functionality of the website. Most browsers are set to automatically accept cookies. You can disable the storage of cookies in your browser and also have the option to delete them from your hard drive at any time. We would like to point out that using our offerings on the website without cookies might be limited.

4. Contact via Email

If you send us an inquiry via email, we will store your information and process it to handle your request. The legal basis for this data processing depends on the subject matter of your message, which could be the permissibility of processing in the context of contract initiation, an existing contract, or our legitimate interest in processing your inquiry (Art. 6 Paragraph 1 lit. b or f GDPR).

5. Transmission to Third Parties - Recipients of Personal Data

For the purposes mentioned here, personal data will be forwarded to service providers who work for us and particularly support us in providing services. In addition to their legal obligation to comply with all data protection regulations, these service providers are bound by us to further contractual data protection specifications. This regularly includes an obligation as a data processor according to Art. 28 Paragraph 3 GDPR.

Furthermore, we only transmit personal data to third parties if there is a legal permission for it or if you have given your prior consent. A granted consent can be revoked at any time with effect for the future. We only provide your data to public authorities within the scope of legal obligations or based on an official order or court decision, and only to the extent that it is permissible under data protection regulations.

6. Transmission to Countries Outside the EU

For the purposes mentioned here, a transmission to countries outside the EU and the EEA (third countries) is generally not necessary and therefore does not take place. In other cases, we only transfer data to third countries when it is ensured that the recipient of the data guarantees an adequate level of data protection as defined in Chapter V of the GDPR and no other legitimate interests oppose the data transfer. To ensure an adequate level of protection for data recipients, we particularly use the model contracts issued by the European Commission for the transfer of personal data to third countries.

7. Deletion

We will delete your personal data as soon as they are no longer required for the purposes of the processing described here and provided that there are no legal retention obligations. German commercial and tax law, in particular, contains retention periods of six years (for business letters in any form) and ten years (for booking-relevant transactions).

8. Data Security

We have implemented the necessary technical and organizational measures to protect the personal data you provide from loss, destruction, manipulation, and unauthorized access.

Our employees and all individuals involved in data processing are obligated to comply with the GDPR, BDSG, and other data protection laws, as well as to treat personal data confidentially. Our employees receive appropriate training. Both internal and external audits ensure compliance with all data protection processes at Gutzmann.

To protect the personal data of our users, we use a secure online transmission method known as “Secure Socket Layer” (SSL) transmission. You can recognize this by the addition of “s” to the http:// part of the web address (“https://”) or by a green closed padlock icon displayed in the browser. By clicking on the icon, you can access information about the SSL certificate being used. SSL encryption ensures the secure and complete transmission of your data.

9. Your Rights

Data protection law grants you a range of rights regarding data concerning your person (known as data subject rights). These generally include:

Whether and to what extent these rights apply in individual cases and under what conditions is determined by the GDPR and the BDSG. You also have the right to lodge a complaint with a data protection supervisory authority. If you have questions or complaints about data protection at Gutzmann or if you want to exercise your rights, we recommend that you initially contact our Data Protection Officer (see section 1).

10. No Automated Individual Decision-Making

We do not use your personal data for automated individual decision-making as defined in Art. 22 Paragraph 1 GDPR.

11. Changes to the Data Privacy Statement

New legal requirements, business decisions, or technological developments may require changes to our data privacy statement. The data privacy statement will be adjusted accordingly. You will always find the most up-to-date version on our website.

Last Updated: January 2024