Privacy Statements

DATA PROTECTION DECLARATION

This privacy policy has been compiled to better serve those who are concerned with how their ‘Personally identifiable information’ (PII) is being used online. PII, as used in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

As the protection of your personal data is very important to us, we strictly adhere to the statutory provisions as set forth in the Data Protection Act and the EU GDPR when collecting and processing your personal data.

In the following, we inform you in detail on the scope and purpose of our data processing as well as your rights as data subject. Therefore, please read our Data Protection Declaration thoroughly before you continue using our websites and provide your consent to data processing if applicable.

A. PROCESSING OF PERSONAL DATA WITHIN OUR WEBSITES

1. PERSONAL DATA

In general, you can use our website without disclosing any personal data. However, the use of individual services can be subject to deviating provisions which we point out to you separately.

Thus, regardless of the cookies described in detail hereinafter, we generally only collect and store such data which you provide to us yourself by entering them into our input screen or through any other active interaction with our website.

Personal data is any information relating to an identified or identifiable natural person. For example, this includes your name, address, telephone number or your date of birth, but also your IP address or geolocation data which can allow for conclusions about your identity.

2. USE OF COOKIES

a. To the extent you use our website for informative purposes only, i.e. if you do not register for a service or otherwise provide us with information – e.g. in a contact form – we will only collect the personal data that your browser transmits to our server. So, if you wish to visit our website, we will collect the following data which is technically necessary for us to display our website to you and to ensure its stability and security in accordance with Art. 6 (1) sentence 1 point (f) EU GDPR:

· IP address
· date and time of the request
· time zone difference to the Greenwich Mean Time (GMT)
· content of the request
· access status / http status code
· data volume transferred in each instance
· website from which the request originates
· browser used
· operating system and its interface
· language and version of the browser software

b. In addition to the abovementioned data, first and third-party cookies are stored on your computer when you use our website; these are small text files that are stored on your hard disk allocated to the browser used by you. The entity that places a cookie (here, this is performed by us and the third parties set forth below) receives certain information as a result. On the one hand, we need these cookies to recognize you as a user of the website and on the other hand, to be able to make the use of our services transparent. Finally, we use cookies for marketing purposes to analyze your user behavior and to provide you with targeted advertising as applicable.

In general, you can differentiate between first-party cookies, third-party cookies and third-party requests.

· First-party cookies

First-party cookies are stored by us or our website itself in your browser to provide you with the best possible user experience. In particular, these are functional cookies such as shopping basket cookies.

· Third-party cookies

Third-party cookies are stored in your browser by a third-party provider. These are mostly tracking or marketing tools that, on the one hand, evaluate your user behavior, and on the other hand, enable the third-party provider to recognize you on other websites you visit. In general, for example, retargeted marketing is based upon the function of such cookies.

· Third-party requests

Third-party requests are all inquiries that you as a website users make to third parties via our website – for example, if you interact with plugins of social networks or use the offer of a payment provider. In such a case, no cookies are stored in your browser, but it cannot be excluded that personal data are sent to such third-party providers through such interaction. For this reason, we also provide you with detailed information in our Data Protection Declaration about the tools & applications used by us.

c. Our website(s) use(s) the following types of cookies the scope and functionality of which are explained in the following:

· Transient cookies

Transient cookies are automatically deleted when you close your browser. These include, in particular, session cookies. Such cookies store what is referred to as the “session ID”, with which various requests from your browser can be assigned to the shared session. This will allow your computer to be recognized if you return to our website. These session cookies are erased as soon as you log out or close your browser.

· Persistent cookies

Persistent cookies are automatically deleted after a set period of time, which may differ depending on the cookie. However, you can delete the cookies yourself at any time via our browser settings.

d. You have the option to change your browser settings in a way in which you, for example, reject the acceptance of third-party cookies or of all cookies. However, we have to notify you that in such a case, you may not be able to use all functions of our website.

e. We also use cookies to be able to identify you when you visit our website again if you have an account with us – otherwise, you have to log on again for every visit.

3. COLLECTION AND PROCESSING OF PERSONAL DATA

We collect information from you when you register on our site, place an order, subscribe to a newsletter, respond to a survey or enter information on our site.

4. STORAGE DURATION

In general, we store data which you provided us only for customer support or for marketing and information purposes until the expiry of three years after our last communication. However, we will erase your data before the expiry of such period if you request this to the extent this is not prevented by applicable statutory provisions.

In the event of contract initiation or conclusion, we will process your personal data after full contract processing until the expiry of the guarantee, warranty, limitation and statutory retention periods to which we are subject, and until the conclusion of any legal disputes for which we need the data as legal evidence.

YOUR RIGHTS

If you are a European resident, you have the right to access the personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident we note that we are processing your information in order to fulfil contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

How do we protect visitor information?

Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.

We do not use Malware Scanning.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

Google

Google’s advertising requirements can be summed up by Google’s Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en 

California Online Privacy Protection Act

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require a person or company in the United States (and conceivably the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy. – See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA we agree to the following:
Users can visit our site anonymously
Once this privacy policy is created, we will add a link to it on our home page, or as a minimum on the first significant page after entering our website.
Our Privacy Policy link includes the word ‘Privacy’, and can be easily be found on the page specified above.

Users will be notified of any privacy policy changes:
      • On our Privacy Policy Page
Users are able to change their personal information:
      • By emailing us
      • By logging in to their account

How does our site handle do not track signals?
We honor do not track signals and do not track plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

Does our site allow third-party behavioural tracking?
It’s also important to note that we do not allow third-party behavioural tracking

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under 13.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to complying with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via email
      • Within 7 business days
We will notify the users via in-site notification
      • Within 7 business days

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.

CAN-SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:

To be in accordance with CANSPAM we agree to the following:

If at any time you would like to unsubscribe from receiving future emails, you can email us at
and we will promptly remove you from ALL correspondence.

Contacting Us

If there are any questions regarding this privacy policy you may contact us using the information below.

Email: info@infowinghier.com