Privacy Policy

Status January 2021

 

Here you can change your Privacy Settings.

 

1. General information

The german Basic Data Protection Regulation (DS-GVO) contains some obligations for companies with regard to the processing of personal data. When using this website and its functions, various personal data is getting processed. In accordance with Art. 13 DS-GVO, you as a data subject have the right to be informed about certain aspects of processing at the time your personal data is collected. For this reason you will receive the following information.


1.1 Personal data

The subject of data protection is personal data. This is all information relating to an identified or identifiable natural person. This includes information such as name, address, profession, e-mail address, health status, income, marital status, genetic characteristics, telephone number and, if applicable, user data such as the IP address.


1.2 Processing of personal data

Processing means any operation relating to personal data, such as collection, recording, organization, sorting, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.


1.3 Responsible person

The person responsible for processing your personal data in connection with the use of the website www.wimo.com (hereinafter website) is WiMo Antennen und Elektronik GmbH (hereinafter operator or person responsible). You can contact the responsible person at the address Am Gaexwald 14, 76863 Herxheim, the telephone number +49 (0) 7276 - 9668 0, the fax number +49 (0) 7276 - 9668 11 and the e-mail address [email protected] The responsible person is represented by the managing directors Volkmar Junge and Markus Viertel.


1.4 Data protection officer

The responsible person has appointed an external data protection officer. This can be contacted at the address MORGENSTERN consecom GmbH, Große Himmelsgasse 1, 67346 Speyer, Germany, and the telephone number +49 (0) 6232 - 100 119 44.


2. Details on data processing


2.1 Access and use of the website

Every time the website and its sub-pages are accessed, usage data is transmitted by the respective Internet browser and stored in log files (server log files). The data records stored in this process contain the following data: Date and time of access, name of the subpage accessed, IP address, referrer URL (the URL from which you came to the website), amount of data transferred and product and version information of the browser used.
The permissibility of this processing is governed by Art. 6 Para. 1 b), f) DS-GVO (relationship of use, legitimate interest). The legitimate interest of the operator lies in the provision of a website with information, the offering of services to customers, the online processing of contracts and the optimization of the website operation. The data processed by the operator is required to enable you to use the website. Your IP address will be deleted or made anonymous after the end of use. In the case of anonymization, the IP addresses are changed in such a way that they can no longer be assigned to a specific or determinable or identified or identifiable natural person, or only with a disproportionate expenditure of time, cost and manpower.


2.2 Order

In order to place an order with the operator, you must provide the following data in a customer account: E-mail address, first name, surname, street, house number, postal code, city and payment method and payment data (card company, card number, validity, card check digit). You also have the option of voluntarily providing the following information: Company, telephone number, state, TAX / VAT number and call sign. The operator uses address validation here to correct errors in the entry of addresses. Without a correct address of the orderer an order cannot be accepted. The permissibility of this processing is based on Art. 6 para. 1 b) DS-GVO (contract or pre-contractual measures). Your data will be used by the operator to process and deliver the order you have placed. The provision of mandatory data is necessary for the conclusion of a contract with the operator. Failure to provide this information means that you cannot place an order with the operator. The storage of your personal data is in accordance with the statutory storage obligations.


2.3 Contact form and e-mail on click

If you would like to contact the operator, a contact form is available for this purpose. Within this form you can provide the following information: contact reason, name, e-mail address and request. In some places on the website you have the possibility to open an e-mail addressed to the operator with just one click. In this case, the e-mail address that is linked to your e-mail program is automatically used as the sender. If you do not want your e-mail address to be retrieved in this way, you can change this in the settings of your respective e-mail program. The permissibility of this processing is governed by Art. 6 para. 1 b) DS-GVO (contract or pre-contractual measures). It is necessary to provide the data, otherwise you will not be able to send a message to the operator. Your inquiry will be stored as long as the operator has a legitimate interest in this.


2.4 Advertising

If a legal provision permits, the operator will use your data for advertising purposes. The permissibility of this processing is based on Art. 6 Par. 1 f) DS-GVO (legitimate interest). The operator is dependent on actively presenting its services to new and existing customers. The personal data processed for advertising purposes will be deleted, unless the person responsible has a legitimate interest in further storage.


2.5 Contact via WhatsApp Business

You have the possibility to contact us via WhatsApp. Your cell phone number is required for this. We use WhatsApp Business to be able to communicate with our customers in a modern way. This is also our legitimate interests according to Art. 6 para. 1 f) DS-GVO. The data processing via WhatsApp is necessary to be able to use this communication option. You are not obliged to contact us via WhatsApp. If you do not wish to use WhatsApp, you can contact us by another means (e.g. phone, email). When using WhatsApp Business, your phone number and name are transmitted to WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. WhatsApp Ireland Limited may forward this data to WhatsApp LLC, which is based in the USA. This is a third country transfer within the meaning of Art. 44 et seq. DS-GVO. This third-country transfer takes place lawfully with the inclusion of the standard data protection clauses pursuant to Art. 46 para. 2 c) DS-GVO. Further information can be found here.

 

2.6 Newsletter

To receive more information about the services of the operator, you can subscribe to an e-mail newsletter. The so-called double opt-in procedure is used to send the newsletter, i.e. you will only receive a newsletter by e-mail if you have previously expressly confirmed that the newsletter service is to be activated. After you have activated the newsletter, you will receive a notification e-mail with an activation link. Only by clicking this link you will receive the newsletter. You can deactivate the newsetter at any time. For this purpose please use the unsubscribe link provided in every newsletter. In addition, your interactions with the newsletter content are evaluated in the form of reports. Here, key figures of the following interactions with the newsletter are used to evaluate how successful the newsletter was: Open rate, click rate, unsubscribes, bounce rate, geo- and email client analysis, unsubscribed. Based on this information, the operator will optimize the newsletter content. For more information, please click here. In addition, conversion tracking is carried out as part of this evaluation using Google Analytics. You can find more information here. The permissibility of this processing is based on Art. 6 para. 1 a) DS-GVO (consent). Your data will be deleted after revocation of your consent, unless the person responsible has a legitimate interest in further storage. This may be the case if the operator must continue to store your data due to a contract with you.


2.7 Use of Cookies

The operator uses so-called cookies. These are small data packages, usually consisting of letters and numbers, which are stored on a browser when you visit certain websites. Cookies do not contain any data that identifies you personally, but the information stored by the operator about you can be associated with the data received from and stored in the cookies. Cookies, which are technically necessary for the operation of the website, are used, for example, to improve user-friendliness, optimize the display, prevent fraud and ensure the security of the website. The permissibility of this processing is based on Art. 6 Par. 1 f) DS-GVO (legitimate interest). The legitimate interest of the operator lies in the optimized presentation of the website. If you do not accept the cookies necessary for the operation of the website or delete them, this may lead to functional restrictions. Two types of cookies are used: temporary cookies are automatically deleted when you close your browser (session cookies). Permanent cookies are stored longer on your device.


2.8 Payment options and payment services

The Operator offers various payment options. If you purchase goods on the website, the operator processes the payment information collected in this context for the purpose of processing the payment and the purchase contract (Art. 6 para. 1 b) DS-GVO, contract performance).
In this regard, the operator offers the following payment options:

  • Pre-payment
  • Credit card (Mastercard, Visa)
  • SOFORT transfer, GiroPay
  • iDEAL, Bancontact
  • Payment via a payment service provider (Amazon Pay, PayPal)
  • Invoice or installment payment

When making your payment with these payment methods, the respective payment service or banking institution is basically responsible for the processing of your personal data under data protection law. The operator only processes your personal data as a data protection controller if it passes on information about the payment method you have chosen and your purchase to the respective payment service or if it carries out credit checks to prevent payment defaults. After payment, the operator receives, among other things, information about the means of payment you used and whether the payment was successful. Depending on the payment method, the operator forwards your payment information to third parties (for example, in the case of credit card payment to your credit card provider or payment). The provision of your data is necessary so that your online payment can be processed securely.
Below you will find information on what additional details you need to provide when using the various payment options and where you can obtain further information on the processing of your personal data by the respective provider.

Credit card (Mastercard, Visa) If you wish to pay by credit card (Mastercard, Visa), you must enter your personal credit card data (credit card number, verification code and validity data) at the end of the ordering process. For information on the processing of your personal data, please contact your credit card provider.

SOFORT (Klarna), GiroPay For payment via SOFORT or GiroPay, access to online banking at a participating bank is required. If you choose SOFORT or GiroPay, you will be redirected to the online portal of SOFORT GmbH (company of the Klarna Group) or Paydirekt GmbH at the end of the order process. There you can log into your account for your online banking to initiate the payment to us. This requires you to provide your access data for online banking. Further information on the processing of personal data by SOFORT can be found in the Privacy Policy of SOFORT GmbH, Theresienhöhe 12, 80339 Munich. Further information on the processing of personal data by GiroPay can be found in the Data Protection Provisions of Paydirekt GmbH, Stephanstr. 14-16, 60313 Frankfurt am Main.

iDEAL, Bancontact Customers with accounts at a Dutch bank can pay with iDEAL. Customers who have a Bancontact card at a participating Belgian bank can pay with Bancontact. If you select iDEAL as your payment method, you will need an account and access to online banking at a participating Dutch bank. If you select Bancontact as your payment method, all you need is a bank account at a Belgian bank and a smartphone or card reader.
If you select iDEAL or Bancontact, you will be redirected directly to your bank's payment page at the end of the checkout process. Here you can make a transfer of payment as usual. After the transaction is completed, you will be redirected back to the operator's website.
When choosing these payment methods, the operator only receives the information about whether the payment was successful or not.
For more information on the processing of personal data by iDEAL, please refer to the Privacy Policy of Currence B.V., Gustav Mahlerplein 33-35, Amsterdam, Noord-Holland 1082 MS, NL. For more information on the processing of personal data by Bancontact, please refer to the Privacy Policy of Bancontact Payconiq Company NV/SA, Rue d'Arlon 82, 1040-Brussels, Belgium.

Amazon Pay and PayPal If you select the aforementioned payment methods Amazon Pay or PayPal, the payment will be processed via the respective payment service provider. You will be redirected to your user account with the selected payment service provider. The operator transmits under certain circumstances in the context of the ordering process your information together with the details of your order to the respective payment service provider to process the payment. The payment service provider does not transmit any payment data from you to the operator. Through the use of a payment service provider, the operator may have access to certain personal data, in particular your name or the name of the recipient, e-mail addresses, cell phone numbers and shipping addresses.
The permissibility of this processing is based on Art. 6 (1) f) DS-GVO (legitimate interest). The operator is dependent on offering economically reasonable solutions for payment processing and must also take into account the habits of its customers. The integration of well-known payment service providers increases the customers' sense of security when processing online purchases and relieves the operator. The outsourcing of payment processing is now common practice. The transfer of your personal data takes place exclusively for the purpose of payment processing with the payment service provider, if this is necessary.
For more information on the processing of personal data by payment service providers, please refer to their privacy policies:
Amazon Payments Europe S.C.A., 5 Rue Plaetis, L-2338 Luxembourg
PayPal (Europe) S.a.r.l. et Cie, S.C.A. ideal, 22-24 Boulevard Rocal, L-2449 Luxembourg

Bonfidence check for payment by invoice and installment purchase
To enable secure payment by invoice or installment, we work with REAL Solution Factoring GmbH, Normannenweg 32, 20537 Hamburg. This is done for the purpose of checking your creditworthiness and credit standing in order to avoid payment defaults. Payment default risks exist for the operator, in particular, if he makes advance payments and an unreasonable disadvantage could result from the transfer of goods to you. In the case of the payment methods "installment purchase" and "purchase on account", the operator sends you the goods before he has received a payment, which makes these payment methods more uncertain. Therefore, before the operator enables you to use one of these insecure payment methods, he usually transmits the following data to REAL Solution GmbH: first and last name, date of birth and address. REAL Solution GmbH may transmit your data to SCHUFA Holding AG, Kormoranweg 5, 65201 Wiesbaden.
Further information on the processing of your personal data by REAL Solutions Factoring GmbH can be found here.
The permissibility of this processing is based on Art. 6 (1) f) DS-GVO (legitimate interest). The operator has a legitimate interest in securing its payments in transactions with financial default risk. The performance of a credit check serves to protect the operator from losses and also protects you from over-indebtedness when paying in installments. At the same time, it enables you to act with more financial flexibility. The provision of your data is necessary to enable the operator to process payments safely. If you do not provide your data, you will have to choose one of the other payment methods to pay for your goods. Your data will be stored by the operator at least for the duration of the contractual relationship. unless the responsible party has a legitimate interest in the further storage.

Ingenico The Operator uses the payment service provider Ingenico Payment Services GmbH, Daniel-Goldbach-Str. 17-19, 40880 Ratingen, Germany, to create a statement when using the payment methods credit card, Sofort, Giropay, iDeal and Bancontact. The payment service provider controls the creation of the statements for the operator. The transfer of the payment information collected in this context is for the purpose of processing the payment and the purchase contract (Art. 6 para. 1 b) DS-GVO, contract performance).


2.9 Use of Tracking Tools

To improve the interaction with you, the operator uses a Java-Script plugin from uptain GmbH, Obergrünewalder Str. 8 a, 42103 Wuppertal. This allows the operator to analyze your use of the website and to improve the customer approach (e.g. through a dialog box). For this purpose, the operator collects information about your usage behavior, i.e. cursor movement, length of stay, links clicked on and any information provided. The permissibility of this processing is based on Art. 6 para. 1 a) DS-GVO (consent). The provision of your personal data is voluntary. You will not suffer any disadvantages if you do not give your consent. Your data will be deleted or made anonymous immediately after leaving the website.



2.9.1 Google Analytics

The operator uses the web analytics service Google Analytics of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This uses the cookies described above to collect, for example, information about your operating system, your browser, your IP address, the website you visited previously, and the date and time of your visit to the operator's website. The information generated by the cookies about the use of the website is transmitted to a Google server in Ireland and stored there. If necessary, the data may also be transferred to the USA. The transfer of your personal data to Google takes place using standard data protection clauses in accordance with Article 46 (2) c) DS-GVO, which were issued by the European Commission in accordance with Article 93 (2) DS-GVO. Information on the standard data protection clauses can be found on the website of the European Commission. For more information about Google's privacy practices, please here. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. If required by law or if third parties process this data on Google's behalf, Google will also pass this information on to these third parties. This use is anonymized or pseudonymized. You can find more information about this directly at Google. When using Google Analytics, no direct personal data is stored, only the Internet protocol address. The permissibility of this processing is based on Art. 6 (1) a) DS-GVO (consent). The personal data collected in the context of the use of tracking tools will be deleted unless the controller has a legitimate interest in their continued retention. In any case, only those data will continue to be stored that are actually absolutely required to achieve the corresponding purpose. As far as possible, personal data will be anonymized. The provision of the data is neither legally nor contractually required. Without the provision, Google Analytics cannot be used. In the course of using Google Analytics, we also use the Google Ads service and in particular the remarketing function. This allows us to present users of our website with advertisements based on their interests on other websites within the Google advertising network. For this purpose, the interaction of users on our website is analyzed, e.g. which offers the user was interested in, in order to be able to display targeted advertising to users on other sites even after they have visited our website. For this purpose, Google stores cookies on the end devices of users who visit certain Google services or websites in the Google display network. These cookies are used to record the visits of these users. The cookies are used to uniquely identify a web browser on a particular end device and not to identify a person.


2.10 Cloudflare (Content Delivery Network)

The Operator uses the Cloudflare Content Delivery Network (CDN) service provided by Cloudflare, Inc. 101 Townsend St., San Francisco, CA 94107, USA) to improve the website's usability, optimize its display and ensure its security. The CDN is a regionally and globally distributed group of servers that allows Internet content such as HTML pages, JavaScript files, stylesheets, and images to be delivered quickly to website users. To do this, Cloudflare caches a static copy of the website on its servers. This reduces server load and bandwidth requirements for the operator, DDoS attacks can be handled, and your page load times and latency are reduced when the website is accessed. Cloudflare can also thereby analyze the traffic between you and the website, for example, to detect and prevent attacks on the website. For this purpose, the operator processes your connection data, content you upload to the operator's website that may contain personal data (e.g. email address, message content in the contact form), contact information, IP addresses, security fingerprints, DNS log data and website performance data derived from your browser activity. The permissibility of this processing is based on Art. 6 (1) f) DS-GVO (legitimate interest). The legitimate interest of the operator lies in the optimized presentation and faster as well as more secure design of the website. The personal data processed by the operator is required to provide you with a fast and secure website. Your personal data processed for the purpose of website optimization and improvement of website security will be deleted, unless the responsible party has a legitimate interest in its further retention. When visiting the website, Cloudflare also places the following cookies for load balancing purposes to make the website more secure by identifying malicious website visitors, filtering web traffic and reducing the likelihood of blocking legitimate website visitors:

  • cflb cookie (for Cloudflare Load Balancer session affinity): this cookie is a session cookie that is stored anywhere from several seconds to 24 hours.
  • _cf_bm cookie (for Cloudflare Bot Management): this cookie is a session cookie that is valid for up to 30 minutes from the time the website user connects to the website.
  • _cfduid cookie (for identifying individual visitors privately)
  • cf_ob_info and cf_use_ob cookie (for Cloudflare Always Online)

These cookies do not contain data that personally identifies you, but the information about you stored by the operator can be associated with the data obtained from and stored in the cookies. The permissibility of this processing is based on Art. 6 (1) f) DS-GVO (legitimate interest). The legitimate interest of the operator lies in the optimized presentation and faster as well as safer design of the website. The provision of your personal data is voluntary. If you do not accept the cookies required for the use of Cloudflare's services or delete them, this may lead to functional restrictions.
For more information about Cloudflare's cookies, please here. Cloudflare, Inc. is a service based in the USA. The transfer of your personal data is based on standard contractual clauses (Art. 46 para. 2 c) DS-GVO). You can access standard contractual clauses on the website of the European Commission (https://ec.europa.eu/info/index_de). For more information on data protection at Cloudflare, please see here and here.


2.11 Search engine service (Algolia)

The Operator uses on the Website the search engine service of Algolia SAS ("Algolia"), 55 Rue d'Amsterdam, 75008 Paris, France, to optimize the search on the Website. The Algolia search enables a better accessibility as well as faster and easier finding of the online offers of the Operator. When using the search engine service, the following personal data will be processed by you: Time of the search, search term and IP address. These data are transmitted to a server of Algolia in Europe and stored there for statistical purposes. If necessary, data may also be transferred to the USA. The transfer of data to a third country, such as the USA, is permitted under the conditions of Art. 46 DS-GVO and on the basis of the standard contractual clauses agreed with Algolia, Inc, 301 Howard St., 3rd floor, San Francisco, CA 94105 (USA). These have been approved by the European Commission and guarantee you adequate protection of your personal data. Standard Contractual Clauses can be found on the website of the European Commission (https://ec.europa.eu/info/index_de). For more information about Algolia's privacy practices, please see here. The permissibility of this processing is based on Art. 6 (1) f) DS-GVO (legitimate interest). The legitimate interest of the operator lies in the optimized presentation and faster as well as safer design of the website. The personal data processed by the operator are required for the website search to function properly. Your search data will be deleted automatically after 90 days.


3. Rights of persons concerned

You are entitled to the following rights: You have the right to information (Art. 15 DS-GVO), correction (Art. 16 DS-GVO), deletion (Art. 17 DS-GVO), restriction of processing (Art. 18 DS-GVO) and data transfer (Art. 20 DS-GVO). We make every effort to process inquiries quickly. If your personal data is processed on the basis of Art. 6 Para. 1 f) DS-GVO, you have the right to object, provided there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising (Art. 21 DS-GVO). If you object to direct advertising, we will no longer send you any advertising messages. You have the right to complain to a supervisory authority at any time.


4. Revocation of your consent

If you have given your consent to the processing of your personal data and revoke it, the processing that has taken place up to the time of this revocation remains unaffected.


5. Recipient

The data collected when you access and use the website and the information you provide when contacting us will be transmitted to the operator's server and stored there. In addition, your data may be passed on to the following categories of recipients: Persons at the operator (production, customer service), order processors (computer center, IT service provider, provider of analysis tools) and contractual partners of the operator (e.g. shipping service provider, payment service provider). It is also possible that documents relevant to tax law, such as invoices and orders from auditors, tax consultants and authorities, can be viewed. In this context, the possibility that personal data may be accessed cannot be excluded.


6. Links to third party sites

When you visit the website, content may be displayed that is linked to the websites of third parties. The operator has no access to the cookies or other functions used by third parties, nor can the operator control them. Such third party sites are not subject to the Operator's privacy policy.