Privacy
We appreciate your interest in our online store. The protection of your privacy is very important to us. Below we inform you in detail about the handling of your data.
You can find the contact details of us as the responsible party as well as the contact details of our data protection officer here:
WEGMANN automotive GmbH, Rudolf-Diesel-Straße 6, 97209 Veitshöchheim, e-mail: info@wegmann-automotive.com is the responsible party under data protection law. You can reach our data protection officer as follows: datenschutz@wegmann-automotive.com.
The protection of your personal data is important to us!
In the following, we therefore explain to you which personal data we process from you in what way when you use our online store. If you have any questions, please feel free to contact us.
1. Data collection when visiting the online shop
Below we inform you which of your personal data will be processed by us when you visit the online store or contact us via the online store.
Definition: personal data
Personal data is any information relating to an identified or identifiable natural person. An identifiable person is one natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
This includes, for example, information such as your name - also as a representative of your company, for example, which orders goods from us via the online store -, your address, your telephone number, your language, your e-mail address, or for example your date of birth.
Definition: processing of personal data
When processing data, we handle your personal data responsibly and confidentially. Therefore, your personal data will of course be processed in compliance with the applicable national (in particular BDSG) and European data protection regulations (EU General Data Protection Regulation, hereinafter also referred to as "DSGVO").
A processing of personal data in this regard exists in any operation or series of operations performed with or without the aid of automated processes in connection with personal data. A data processing is to be seen in particular in the collection, the recording, the organization, the arrangement, the storage, the adaptation, the change, the reading out, the query, the use, the disclosure by transmission, the spreading or in another form of the provision, the comparison or the linkage, the restriction, the deletion or the destruction of personal data.
2. collection of personal data
when you visit our website.
In the case of merely informational use of our website [http://shop.wegmann-automotive.com], i.e. if you do not register or otherwise transmit information to us or create contact forms or an account, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security:
- IP address
- date and time of request
- time zone difference from Greenwich Mean Time (GMT)
- content of the request (concrete page)
- access status/HTTP status code
- amount of data transferred
- identifier of the source from which the request came
- browser -Operating system and its interface
- Language and version of the browser software.
The legal basis for this is Art. 6 para. 1 sentence 1 lit. f DSGVO.
3. use of cookies
In addition to the previously mentioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive assigned to the browser you are using and through which the body that sets the cookie (here by us), certain information flows. Cookies cannot execute programs or transfer viruses to your computer. They serve to make the Internet offer as a whole more user-friendly and effective.
This website uses the following types of cookies, the scope and functionality of which are explained below:
- Transient cookies
- Persistent cookies
Transient cookies are automatically deleted when you close the browser. These include in particular the so-called session cookies. These store a so-called session ID, with which various requests of your browser can be assigned to the common session. This allows your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close the browser.
Persistent cookies are deleted automatically after a specified period of time, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
We continue to use cookies to identify you for subsequent visits if you have a customer account with us. Otherwise, you will have to log in again for each visit if you reject these cookies.
You can find the cookies we use, as well as other cookie details, here:
| name | vendor | Purpose | Process | Type |
|---|---|---|---|---|
| Mandatory | ||||
| PHPSESSID | PHP's default session identifier (only relevant for administrators) | To end of session | Transient cookie | |
| csrf[frontend.account.register.save] | shop.wegmann-automotive.com | Session | Transient cookie | |
| ApplicationGatewayAffinityCORS | shop.wegmann-automotive.com | session | Transient cookie | |
| ApplicationGatewayAffinity | shop.wegmann-automotive.com | session | Transient cookie | |
| session- | shop.wegmann-automotive.com | session | Transient cookie | |
| csrf[frontend.checkout.switch-language] | shop.wegmann-automotive.com | Session | Transient cookie | |
| csrf[frontend.store-api.proxy] | shop.wegmann-automotive.com | Session | Transient cookie | |
| timezone | shop.wegmann-automotive.com | 1 month | Persistent cookie | |
| csrf[frontend.account.login] | shop.wegmann-automotive.com | Session | Transient cookie | |
| Performance | ||||
| _ga | Used to distinguish users | 2 years | Persistent cookie | |
| _gat | Used to reduce query rate | 1 minute | Persistent cookie | |
| _gid | Registers a unique ID that is used to generate statistical data about how the visitor uses the website | 1 day | Persistent cookie | |
| Advertising/tracking | ||||
| NID | These cookies are used to store website display information on our websites, such as your preferred language or region. | 6 months | Persistent cookie |
In the cookie banner of this website, which is automatically opened during the visit, it is ensured for the non-technically necessary cookies by corresponding click window that these cookies are not activated without your consent. You can therefore activate individual cookies in the cookie banner and deactivate them again at any time. If you activate a cookie, this constitutes your consent (Art. 6 para. 1 lit. a DSGVO) that this cookie collects and processes the personal data designated in the above table for the purpose there. Furthermore, you will be informed about the storage period in this table.
If a cookie is deactivated in the cookie banner, this constitutes a revocation of the consent given (Art. 7 (3) DSGVO), which means that the collection and processing of personal data by this cookie will cease from the time of deactivation. We would like to point out that in the event that you reject individual cookies, you may not be able to use all the functions of this website.
4. data processing in data collection and use for contract execution
4.1. data processing when contacting and registering as a customer
We collect company data as well as personal data (e.g. contact person in your company to process the order), if you voluntarily provide us with these in the course of your registration to prepare an order or when contacting us by e-mail.
Compulsory fields when registering or contacting us are marked as such, because in these cases we need the data mandatory for contract execution, or to process your contact and we can not send the order or contact without their specification. Which data is collected during registration or contacting is evident from the respective input forms. This data is required in the case of an order for contract processing within the meaning of Art. 6 para. 1 lit. b DSGVO and in the case of an establishment of contact for answering; legal basis is then Art. 6 para. 1 lit. a DSGVO.
4.2. Data processing when opening a customer account
You can open a customer account with us. Insofar as you have given your consent to this in accordance with Art. 6 (1) p. 1 lit. a) DSGVO by deciding to open a customer account, we will use your data for the purpose of opening a customer account and maintaining the customer account. These are exclusively at the opening of the customer account queried data.
After complete execution of the contract for the order or deletion of your customer account, your personal data will be restricted for further processing and deleted after the expiry of the tax and commercial retention periods, unless you have expressly consented to further use of your data or we reserve the right to further data use, which is permitted by law and about which we inform you in this statement.
The deletion of your customer account is possible at any time and can either by a message to the contact option described below.
5. Data Sharing
5.1. Sharing with Shopware eCommerce Software
Our webshop is a Shopware eCommerce solution. Shopware stores cookies in your browser to ensure the basic functions of the store. On the basis of the cookies, for example, the shopping cart content, the login state and also the CSRF protection is enabled. Without having allowed these cookies in the browser, Shopware cannot be used. Shopware stores only IDs in your browser, the assignment to the respective information are made in the application area.
On the basis of the session cookie, Shopware decides whether you have an active shopping cart and whether you are logged in. So this serves as identification between your browser and the server. No other information is stored in the browser except for the session ID.
In addition, Shopware generates an individual CSRF cookie when you visit the store, so that you can operate the individual areas of the store.
In addition, an SLT cookie is set, which allows us to recognize you when you return to our online store, even if the session has already expired. The SLT cookie can be deactivated in the basic settings of your browser.
When you put a product on the notepad, a cookie with the name "sUniqueID" is created for this purpose in order to save the contents of the notepad. The saved products are stored.
In the Local Storage of the browser, the information about the "last viewed items" is also stored. More information about Shopware can be found here:
shopware AG, Ebbinghoff 10, 48624 Schöppingen, https://www.shopware.com/de/datenschutz/
5.2. Transfer to shipping service providers
For contract fulfillment pursuant to Art. 6 para. 1 p. 1 lit. b) DSGVO, we pass on your data necessary for shipping to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. The delivery of the goods is carried out by the transport service provider DPD (DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, Germany).
We only pass on the name of the recipient and the delivery address to the service provider for the purpose of delivery in accordance with Art. 6 (1) lit. b DSGVO.
Details on the data protection of the shipping service provider commissioned by us and its privacy policy can be viewed on the DPD website at "https://www.dpd.com/de/de/datenschutz/".
5.3. Transfer to the service provider Proclane
We use a special service provider that hosts the webshop operated by us via software provided for this purpose.
This is done via the service provider "Proclane" (responsible entity is PROCLANE Commerce GmbH, Willy-Brandt-Straße 57, 20457 Hamburg). Name, address and, if applicable, other personal data will be passed on to Proclane in accordance with Art. 6 Para. 1 lit. b DSGVO exclusively for the purpose of processing the online order. Your data will only be passed on to the extent that this is actually necessary for processing the order. Details of Proclane's data protection and Proclane's privacy policy can be viewed on Proclane's website at "www.proclane.com/datenschutz".
6. integration of the Trusted Shops Trustbadge / other widgets
If you have given your consent in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO, Trusted Shops widgets are integrated on this website to display the Trusted Shops services (e.g. seal of approval, collected ratings) after an order.
The Trustbadge and the services advertised with it are an offer of Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne, Germany Phone: 0221 - 77 53 66, Fax: 0221 - 7 75 36 89, E-Mail: info@trustedshops.de ("Trusted Shops"), with whom we are jointly responsible for data protection according to Art. 26 DSGVO. Within the scope of this data protection notice, we inform you in the following about the essential contractual contents pursuant to Art. 26 (2) DSGVO. The essential further contractual contents can be found on the website of Trusted Shops.
In the context of the joint responsibility existing between us and Trusted Shops, please contact Tröstend Shops preferably in the event of data protection questions and to assert your rights using the contact options specified in the data protection information. Irrespective of this, however, you can always contact the responsible person of your choice. If necessary, your request will then be forwarded to the other controller for a response.
6.1 Data processing when integrating the trust badge/other widgets
The trust badge is provided by a US CDN provider (content delivery network). An adequate level of data protection is ensured by standard data protection clauses and other contractual measures.
When the trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of the call-up, the amount of data transferred and the requesting provider (access data) and documents the call-up. The IP address is anonymised immediately after collection so that the stored data cannot be assigned to you personally. The anonymised data is used in particular for statistical purposes and for error analysis.
6.2 Data processing after order completion
If you have given your consent, the trustbadge accesses order information stored in your terminal device (order total, order number, product purchased if applicable) and e-mail address after order completion and your e-mail address is hashed using a cryptological one-way function. The hash value is then transmitted to Trusted Shops with the order information in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO. This serves to check whether you are already registered for Trusted Shops services. If this is the case, further processing will take place in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services or do not give your consent to automatic recognition via the Trustbadge, you will subsequently be given the opportunity to register manually for the use of the services or to complete the protection within the scope of your possibly already existing user agreement.
For this purpose, the Trustbadge accesses the following information after completion of your order, which is stored in the terminal device used by you: Order total, order number and email address. This is necessary so that we can offer you buyer protection. The data is only transmitted to Trusted Shops if you actively decide to take out buyer protection by clicking on the correspondingly designated button in the so-called trust card. If you decide to use the services, further processing is based on the contractual agreement with Trusted Shops in accordance with Art. 6 Para. 1 lit. b DSGVO, in order to be able to complete your registration for buyer protection and secure the order, as well as to be able to subsequently send you rating invitations by e-mail if necessary.
Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal basis is Art. 6 para. 1 lit. f DSGVO for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the case of the USA by standard data protection clauses and further contractual measures and in the case of Israel by an adequacy decision. Further information is available here.
7. integration of third-party providers
Through our website, the following third-party providers are used, whereby for certain third-party providers a data protection processing of your data only takes place if you also use this third-party provider yourself in the context of visiting our website.
We currently use the following third-party providers:
Google Universal Analytics, Google Analytics 4 and Matomo Cloud.
If you do not agree with the collection, you can prevent this via the corresponding deactivation on our cookie banner.
Only if you activate the corresponding services in the cookie banner, the third-party provider receives the information that you have accessed the corresponding web page of our online offer. In addition, the data mentioned above in this statement will be transmitted. By activating the marked field, personal data of you will therefore be transmitted to the respective plug-in provider and stored there (in the case of US providers in the USA).
We have no influence on the collected data and data processing operations, nor are we aware of the full scope of data collection, the purposes of processing, the storage periods. We also have no information on the deletion of the collected data by the third-party provider.
For more information on the purpose and scope of data collection and its processing by the third-party provider, please refer to the privacy statements of these providers, which are communicated below. There you will also receive further information about your rights in this regard and setting options for protecting your privacy.
7.1. notices regarding Google (Universal) Analytics and Google Analytics 4
This website uses Google (Universal) Analytics and Google Analytics 4, web analytics services provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland ("Google").
Google (Universal) Analytics and Google Analytics 4 use methods that enable an analysis of your use of the website, such as so-called "cookies", i.e. text files that are stored on your computer. The information generated about your use of this website is usually transmitted to a Google server in the USA and stored there.
We use Google (Universal) Analytics and Google Analytics 4 to analyze and regularly improve the use of our website. Through the statistics obtained, we can improve our offer and make it more interesting for you as a user. In addition, we receive information about the functionality of our site.
To the extent that Google processes data outside the EU / EEA in the context of website analysis and there is no European standard level of data protection, we have concluded EU standard contractual clauses with Google to establish an adequate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. If applicable, you are not entitled to legal remedies against access by authorities.
The data sent by us and linked to cookies will be automatically deleted after 14 months. The deletion of data whose retention period has been reached takes place automatically once a month.
The legal basis for this data processing is your consent pursuant to Art.6 para.1 p.1 lit.a DSGVO.
You can revoke your consent at any time with effect for the future by calling up the cookie settings and changing your selection there. The legality of the processing carried out on the basis of the consent until the revocation remains unaffected.
You can also prevent the storage of cookies from the outset by selecting the appropriate settings on your browser software. However, if you configure your browser to refuse all cookies, you may experience limitations in functionality on this and other websites. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by
a. Not giving your consent to the setting of the cookie or
b. downloading and installing the browser add-on to deactivate Google Analytics HERE.
For more information on Google Analytics' terms of use and Google's privacy policy, please visit https://marketingplatform.google.com/about/analytics/terms/de/ and https://policies.google.com/?hl=de.
7.2. Notes on Matomo Cloud
We continue to use the "Matomo" service, which is offered by InnoCraft Ltd (150 Willis St, 6011 Wellington, New Zealand, NZBN 6106769), to optimize and analyze our online offering. Matomo also uses "cookies" - text files that are stored on your terminal device. The information collected by the cookies is usually sent to a Matomo server in Germany and stored there, so that technically no third country transfer takes place. Insofar as a data transfer to InnoCraft's company headquarters takes place outside the EEA, this is secured by an EU adequacy decision for New Zealand.
We have set Matomo so that IP addresses are only processed in abbreviated form in order to limit direct personal reference. Through IP anonymization, the end of your IP address is replaced by zeros immediately after collection.
Under the terms of the commissioned data agreement, which we as website operators have concluded with Matomo, the latter uses the information collected to create an evaluation of website use and website activity and provides services associated with Internet use.
The data collected by Matomo on our behalf is used to evaluate the use of our online offering by individual users, for example, to create reports on website activity in order to improve our online offering.
The legal basis for this data processing is your consent pursuant to Art.6 para.1 p.1 lit.a DSGVO.
You can revoke your consent at any time with effect for the future by calling up the cookie settings and changing your selection there. The legality of the processing carried out on the basis of the consent until the revocation remains unaffected.
You can also prevent the storage of cookies from the outset by configuring your browser software accordingly. However, if you configure your browser to refuse all cookies, you may experience limitations in functionality on this and other websites.
Here you can find more information about data usage by Matomo Cloud: https://matomo.org/matomo-cloud-privacy-policy/
8. Duration of data processing
The maximum duration of processing depends on the purpose for which the data processing serves. The duration of storage depends on the period for which processing is necessary to fulfill the purpose or (in the event of an objection) is permissible. The statutory retention obligations remain unaffected. Personal data will be stored for their duration if they are subject to such a retention obligation.
9. Recipients of personal data
We transmit personal data to the specialist departments of our company.
10. Place of data processing
All processing of your personal data by our website takes place either in Germany or in member states of the European Union. We do not transfer your personal data to countries outside the member states of the European Union (so-called third countries) or other international organizations. Excluded is the transmission of data to third countries (USA and New Zealand) insofar as you have consented to the use of web analytics services on the part of the third party providers presented.
11. Security / Technical and organizational measures
We take all necessary technical and organizational measures, taking into account the requirements of Art. 24, 25 and 32 DSGVO, to protect your personal data against loss, destruction, access, alteration or dissemination by unauthorized persons and against misuse.
So we observe the legal requirements for pseudonymization and encryption of personal data, for confidentiality, integrity, availability and resilience of systems and services related to processing, for the availability of personal data and the ability to restore it quickly in the event of a physical or technical incident, and for the establishment of procedures for regular
review, assess and evaluate the effectiveness of technical and organizational measures to ensure the security of processing.
Furthermore, we also comply with the requirements of Art. 25 GDPR with regard to the principles of "privacy by design" (data protection through technology design) and "privacy by default" (data protection through privacy-friendly default settings).
12. Your rights
You have a right to free information about your personal data and, if the legal requirements are met, a right to rectification, blocking and deletion of your data, to restriction of processing, to data portability and a right of objection.
You also have the possibility to complain to the competent supervisory authority:
Bayerisches Landesamt für Datenschutzaufsicht
Promenade 18,
91522 Ansbach,
Germany
Telephone: +49 (0) 981 180093-0
Telefax: +49 (0) 981 180093-800
E-mail: poststelle@lda.bayern.de
If you have any questions about the processing of your personal data and questions relating to the above rights as well as suggestions, please contact us or our data protection officer:
Data protection officer of WEGMANN automotive GmbH:
Mrs. Susanne Kamm
Dr. Dornbach Consulting GmbH
Anton-Jordan-Strasse 1
56070 Koblenz
E-mail: datenschutz[at]wegmann-automotive.com
September 2022