Privacy policy Maier Sports GmbH

Preamble

Maier Sports GmbH is pleased that you are visiting our website. Data protection and data security when using our website are very important to us. We would therefore like to inform you at this point which of your personal data we collect when you visit our joint website and for what purposes it is used. Since changes in the law or changes in our internal company processes may make it necessary to adapt this data protection declaration, we ask you to read it regularly. The data protection declaration applies to the Internet offering of Maier Sports, which can be accessed under the domain https://www.maier-sports.com.

1. Name and address of the responsible party

 The responsible party and service provider is Maier Sports GmbH, Nürtinger Str. 27. 73257 Köngen (hereinafter referred to as "Maier Sports").

2. Names and addresses of the data protection officers

Our data protection officer is Sebastian Meyer, Schwanweg 1, 90562 Heroldsberg. You can also contact our data protection officer at any time with any questions concerning data protection. The best way to do this is by e-mail to: datenschutz@schwan-stabilo.com

3 General information on data processing

As a matter of principle, we collect and use personal data of our users only to the extent that this is necessary for the provision of a functional website as well as our content and services.

3.1 Personal data

Personal data is any information that relates to an identified or identifiable natural person. This includes, for example, information such as your name, age, address, telephone number, date of birth, e-mail address, IP address or user behavior. Information for which we cannot (or can only with a disproportionate effort) establish a link to your person, e.g. by anonymizing the information, is not personal data.

3.2 Processing of personal data

Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

3.3 Legal basis for the processing of personal data

The collection and use of personal data of our users is regularly carried out only with the consent of the user. Insofar as we obtain the consent of the data subject for processing operations involving personal data, the legal basis is Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR).

An exception applies in those cases where obtaining consent in advance is not possible for factual reasons and the processing of the data is permitted by legal regulations. When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b DSGVO is the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

If processing of personal data is necessary for compliance with a legal obligation to which we are subject, Art. 6 (1) c DSGVO is the legal basis.

If the processing is necessary to protect a legitimate interest of the controller or a third party and the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest, Art. 6 (1) f DSGVO is the legal basis.

4. Data processing operations

Personal data is collected via this website if you provide it to us of your own accord, e.g. by filling out forms or sending e-mails. We use this data for the purposes stated in each case or resulting from the inquiry, for example, providing your e-mail address in order to contact you. Data is only transmitted to third parties if this is expressly permitted by law or if you have consented to the transmission in the course of an active business relationship.

4.1 Informational use of the website

You can visit our website without providing any information about yourself. If you only use our website for informational purposes, i.e. you do not provide us with any information about yourself, we do not process any personal data, with the exception of the data that your browser transmits to enable you to visit the website. For the purpose of the technical provision of our website, it is necessary that we process certain automatically transmitted information from you so that your browser can display our website and you can use the website. This information is automatically collected each time you visit our website and stored in our server log files. This information relates to the computer system of the calling computer. The following information is processed:

- Host

- IP address of the user

- Date and time of access

- Method of access (Get/Post)

- request

- Protocol (e.g. https)

- Status (e.g. error messages)

- Amount of data retrieved

- Referrer

- Browser and operating system of the user

Art. 6 para. 1 lit. f DSGVO serves as the legal basis for the aforementioned data processing. The processing of the aforementioned data is necessary for the provision of a website and thus serves to protect a legitimate interest of our company.

As soon as the aforementioned data is no longer required to display the website, it will be deleted. The collection of data for the provision of the website and the (temporary) storage of the data in log files is mandatory for the operation of the website. Further storage may take place in individual cases if required by law.

In addition to the purely informational use of our website, you can also actively use our website, for example, to contact us. In this case, we process the following personal data from you in addition to the aforementioned processing:

4.2 Registration (customer account and service account) and registration process

On our website, we offer users the opportunity to register for the purpose of a customer account in the Maier Sports online store by providing personal data. The data is entered into an input mask and transmitted to us and stored. In principle, the data will not be passed on to third parties unless this is absolutely necessary for the fulfillment of a contract.

The following personal data is collected during the registration process:

- First and last name, address, e-mail address, telephone number and a password chosen by you. The password is not visible to Maier Sports.

In addition, the following personal data is collected:

- IP address

- Date and time of registration

With the processed data, we create a customizable user account for you, with which you can use certain content and services, such as the Maier Sports online store on our website.

As soon as the registration on our website is cancelled or modified, the data processed during the registration process is deleted. Further storage may take place in individual cases if required by law.

As a user, you have the option to cancel the registration at any time. To do so, send us an e-mail with your request to the e-mail address: info@maier-sports.de.

You can have the data stored about you changed in the customer account at any time.

The processing of the personal data presented serves according to Art. 6 para. 1 lit. b DSGVO the implementation of pre-contractual measures or the fulfillment of a contract.

4.3 Ordering process in the Maier Sports online shop

For the processing of orders in the Maier Sports online store, we require the following information about you: first and last name, address, e-mail address, telephone number, date of birth and, if applicable, your gender and size. It is your free decision whether you provide us with this data. However, we cannot process your order without this information.

We would like to point out that we use third-party companies to process data. The data collected in the course of an order and return are forwarded to our partner - Storer Handels GmbH, Karlstr. 28 in 89129 Langenau - for processing or shipping.

In the Maier Sports online store we work with Payone GmbH, Lyoner Straße 9, 60528 Frankfurt am Main, to provide you with a convenient option for payment over the Internet.

The personal data transmitted to PayOne are regularly first name, last name, address, e-mail address, IP address or other data necessary for payment processing. Also necessary for the processing of the purchase contract are such personal data that are related to the respective order (such as number of items, item number, invoice amount and taxes and other billing information).

This is in line with our legitimate interest in offering an efficient and secure payment method (Art. 6 para. 1 lit. f DSGVO). In this context, we share the aforementioned data with PayPal to the extent necessary for the performance of the contract (Art. 6 para. 1 lit b DSGVO).

In some cases, we may also be legally obliged to transfer the data relating to you (implementation of strong customer authentication in accordance with Directive EU 2015/2366 (PSD 2) or Payment Services Supervision Act (ZAG). Insofar as we are legally obligated to transfer, Art. 6 (1) lit. c DSGVO in conjunction with the corresponding regulations of Directive EU 2015/2366 (PSD 2) or the Payment Services Supervision Act (ZAG) will be used as the legal basis.

PayOne may pass on your personal data to affiliated companies and service providers or subcontractors, insofar as this is necessary for the fulfillment of contractual obligations or the data is processed on behalf.

The personal data transmitted to PayOne may be transmitted by PayOne to credit agencies. The purpose of this transmission is to check identity and creditworthiness. PayPal uses the result of the credit check, taking into account the statistical probability of non-payment, for the purpose of deciding on the provision of the respective payment method. The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, these have their basis in a scientifically recognized mathematical-statistical procedure. 

The privacy policy of PayOne can be found at https://www.payone.com/DE-de/dsgvo.

Your personal data transmitted to the service provider as part of the billing process will be deleted by the service provider after 24 months. Following the deletion, the service provider keeps backups of this data and deletes them after a further 12 months. Further storage may take place if required by law, for example due to retention periods under tax and commercial law.

We only pass on personal data to third-party companies if an appropriate contract (e.g. an order processing contract, if required by law) exists. Personal data is only ever passed on to the smallest extent necessary for the respective purpose. The companies concerned must comply with applicable data protection law, treat your personal data confidentially and may not use it for their own business purposes under any circumstances.

4.4 Shipping

Delivery is made by the following shipping companies: DHL Paket GmbH.

For the fulfillment of the contract pursuant to Art. 6 para. 1 p. 1 lit. b DSGVO, your data will be passed on to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.

If you have given us your express consent for the purpose of delivery notification or coordination during or after your order, we will pass on your e-mail address and telephone number to the selected shipping service provider on the basis of this in accordance with Art. 6 para. 1 p. 1 lit. a DSGVO, so that they can contact you before delivery for the purpose of delivery notification or coordination.

The consent can be revoked at any time by sending a message to the contact option described above or directly to the shipping service provider at the contact address listed below:
 

DHL Paket GmbH
Sträßchensweg 10
53113
Bonn

After revocation, we will delete the data you have provided for this purpose, unless this is contrary to statutory retention obligations.

4.5 Active use of the website - newsletter

In order to be able to subscribe to our e-mail newsletter, we require, in addition to your consent, at least your e-mail address to which the newsletter is to be sent. It is your free decision whether you provide us with this data. Without this information, however, we may not be able to send our newsletter to you.

We would like to point out that we currently work together with the company InxMail GmbH, Wentzingerstraße 17, 79106 Freiburg, Germany, when sending the newsletter. This company processes your data on our behalf and ensures that the e-mails are sent correctly. Your data will not be passed on to third parties in connection with the newsletter dispatch.  Further information about InxMail GmbH as well as your corresponding data protection rights and setting options for protecting your privacy can be viewed at: https://www.inxmail.de/datenschutz.

In order to optimize or personalize the newsletter and if you have additionally consented, we look at how often it is opened by readers and which links the readers click (analysis of usage behavior). By using the newsletter software, personal recipient responses can be accessed. By subscribing to our newsletter, you agree to the tracking permission and the processing of personal responses. You can revoke the tracking permission at any time via the link at the end of each newsletter and thereby cancel it.

For the newsletter dispatch, we use the so-called double opt-in procedure, i.e. we will only send you the newsletter if you first confirm your registration via a confirmation e-mail sent to you for this purpose by means of a link contained therein. In this way, we want to ensure that only you, as the owner of the e-mail address provided, can register for the newsletter. Your confirmation must be made promptly after receipt of the confirmation e-mail, otherwise your newsletter registration will be automatically deleted from our database.

The legal basis for the processing of the data after the user has registered for the newsletter is Art. 6 (1) lit. a DSGVO if the user has given his consent.

When registering for the newsletter, your e-mail address will be used for our own advertising purposes until you unsubscribe from the newsletter. To unsubscribe and revoke your consent for the future, you can either send us an informal e-mail to service@maier-sports.de at any time and without giving any reasons or cancel via the link at the end of the newsletter.

Your data will be stored as long as you have subscribed to the newsletter. After unsubscribing from the newsletter, your data will be deleted. Further storage may take place in individual cases if required by law.

4.6 Contact form

If you make use of the possibility to send us inquiries via our contact form, we process your first and last name and your e-mail address. Furthermore, you can send us an individual message via the message field. It is your free decision whether you provide us with this data. Without this information, however, we will not be able to fulfill your contact request or not fully.

The information of your e-mail address serves the purpose to assign your request and to be able to answer you. When using the contact form, your personal data will not be passed on to third parties.

The legal basis for the processing of data transmitted in the course of contacting you is Art. 6 (1) lit. f DSGVO.  In the case of contact, the necessary legitimate interest in the processing of the data lies in the processing of your request. If the e-mail contact aims at the conclusion of a contract, the legal basis for the processing is Art. 6 (1) lit. b DSGVO.

As soon as the request you have made has been dealt with and the relevant matter has been conclusively clarified, the personal data processed by you via the contact form will be deleted. Further storage may take place in individual cases if this is required by law.

4.7 Other contact

Our website also contains our e-mail address info@maier-sports.de and our postal address. You can send us a message via the e-mail address provided or by post. In this case, we process your first and last name and the personal data transmitted with the message and, in the case of an e-mail, your e-mail address. Furthermore, you can send us an individual message via the message field. In addition, you can call us; we will then process the data you have provided. It is your free decision whether you provide us with this data. Without this information, however, we may not be able to fulfill your contact request or not fully.

In this context, the data will not be passed on to third parties. The data is used exclusively for processing the conversation.

The legal basis for the processing of data transmitted in the course of contacting us is Art. 6 (1) lit. f DSGVO.  In the event of contact, the necessary legitimate interest in the processing of the data lies in the processing of your request.

If the e-mail contact aims at the conclusion of a contract, the legal basis for the processing is Art. 6 (1) lit. b DSGVO.

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. The conversation is ended when it can be inferred from the circumstances that the facts concerned have been conclusively clarified. Further storage may take place in individual cases if this is required by law.

4.8 Sweepstakes

If you would like to participate in our competitions, we require your name, address and e-mail address. Depending on the prize in the competition, we may also ask you for your height and gender. As a matter of principle, we collect and process personal data of the participants in the sweepstakes only to the extent that this is necessary for participation in the sweepstakes. This information is used solely for the purpose of notifying you of the prize and sending you the prize. It is your free decision whether you provide us with this data. Without this information, however, we will not be able to consider your participation in the competition.

Your personal data will not be transmitted to third parties. Your personal data will only be passed on to third parties or otherwise transferred if

- we are legally obligated to do so due to official or court order,

- or we are entitled to do so, e.g. because this is necessary for the prosecution of criminal offences or for the exercise and enforcement of our rights.

The legal basis for the processing of data after the user has registered for the competition is Art and necessary to protect the legitimate interests of our company.

As soon as a competition has ended, the winners have been drawn and notified and any non-winners have also been informed, your personal data processed via the competition form will be deleted. Relevant statutory retention periods from the Commercial Code or the Tax Code remain unaffected by this. During the statutory retention period, your personal data will be blocked and will not be used for any other data processing.

4.9 Applicant management

If you are interested in one of our job offers listed on the website, you can submit your application on our website. You can also send your application at any time to the email address specified in the job offer or send it by post to the following address: Maier Sports GmbH, Nürtinger Str. 27. 73257 Köngen. We process your first and last name, your email address, your telephone number, your individual message and all the information you provided in the attachments. Here you can upload your CV or other references and certificates as file attachments and send them to us. It is your free decision whether to provide us with this data.

We assure you that we will only process the personal data you provide for the purpose of carrying out the application process.

The legal basis for the processing of the personal data presented is Article 6 Paragraph 1 Sentence 1 Letter b GDPR in conjunction with Section 26 Paragraph 1 Sentence 1 BDSG-new.

The storage period is 6 months after completion of the application process in order to defend against any claims under the General Equal Treatment Act (AGG).

In the event that your application cannot be considered at the moment, you also have the option of agreeing that we will store the documents submitted by you as part of this application and other data provided by you in our applicant database in accordance with Art 6 Paragraph 1 lit. a GDPR so that we can contact you in the future if a position that matches your application profile is available. You must explicitly agree to the appropriate use of your application details when submitting an application at the appropriate point. You can revoke your consent to the storage of your application data for a maximum period of 12 months at any time with effect for the future. All you need to do is send an email to the email address: info@maier-sports.de

4.10 Participation in Maier Sports Events

 On our website we offer you the opportunity to register online to take part in various Maier Sports events (e.g. product tests). In this case, we need the following data: first and last name, email address, telephone number (voluntary) and possibly other information, such as address, photo(s), clothing size or gender. For more detailed information, please refer to the respective conditions of participation.

It is your free decision whether to provide us with this data. Without this data we may not be able to take your registration or participation into account.

The legal basis for the processing of data after the user has registered for a Maier Sports event is Art Necessary to fulfill a contract and to protect the legitimate interests of our company.

As soon as the event in question has taken place, your personal data processed via the contact form will be deleted. Further storage can take place in individual cases if this is required by law.

4.11 Dealer search

a)    Component of OUTTRA

For the dealer search function, we use the OUTTRA component from 81 MEDIA GmbH, Ziegelbrennerstr. 5, 73074 Stuttgart. In order to display this function, the component requires the visitor's IP address to be requested. The component initially only uses the IP address to send the browser or visitor relevant information. The IP address is therefore required to display this function.

For the dealer search function, the visitor's IP address is anonymized on OUTTRA's server. The anonymized IP address is used to query the database, which allows a rough localization of the visitor based on the non-anonymized part of the IP address. As a result, the visitor is shown the local dealers on the website.

The legal basis for the above processing of personal data is Article 6 (1) (f) GDPR. Our legitimate interest lies in the sale and promotion of products and services as well as the related functionality of the website.

If the retrieval of the availability of goods serves to initiate a contract, the legal basis is Article 6 (1) (b) GDPR.

In principle, you can object to the future processing of your data, which is based on Article 6 Paragraph 1 Letter f of the GDPR, at any time in accordance with Article 21 of the GDPR. The objection can in particular be made against processing for direct advertising purposes.

After the visitor ends the browser session, no personal data is stored by the component, by 81 MEDIA GmbH or by Maier Sports.

b) GOOGLE MAPS

The “Google Maps” component from Google LLC., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereinafter “Google”, is used to display the location of the stationary retailers.

When the dealer locations are displayed through the “Google Maps” component, Google sets cookies in order to process user settings and data when displaying the map and the associated functions. Further information on this data processing can therefore be found in our cookie policy .

4.12 Product Reviews

 On our website we offer you the opportunity to submit product ratings and publish reviews of Maier Sports products. In this case we need the following data:

• E-mail address

• Name/nickname

• Star rating

• individual opinion

The email address and name/nickname will not be published with the rating and review.

It is your free decision whether to provide us with this data. Without providing the above-mentioned data, you cannot submit a product rating or review.

The data processing described above for the purpose of submitting a product review is based on your consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke this at any time without giving reasons with future effect. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent before its revocation. All you need to do is send an email to Datenschutz@schwan-stabilo.com or a written notification to ORTOVOX Sportartikel GmbH, Rotwandweg 5, 82024 Taufkirchen.

The data will be stored for as long as the purpose of the review is met and you have not withdrawn your consent.

4.13 Direct mail marketing

We process your name, first name, and address for the purpose of sending you direct mail marketing through the postal system. The legal basis for this is our legitimate interest in providing commercial information as defined by article 6 paragraph 1 letter f, GDPR. You have the right to object to receiving such marketing materials via direct mail at any time, based on article 21 paragraph 2 GDPR.

We keep your personal information only for as long as is necessary for the purpose of direct mail marketing.

5. Transfer of personal data to third parties

In principle, your personal data will not be transmitted. Your personal data will only be passed on or otherwise transmitted to third parties if

• we are legally obliged to do so due to an official or court order,

• we are entitled to do so, e.g. because this is necessary to prosecute criminal offenses or to exercise and enforce our rights or,

• if you have previously consented.

6. Cookies and external services

Cookies are small files that make it possible to store specific device-related information on the user's access device (PC, smartphone, etc.). They serve to make websites and therefore users more user-friendly. Some functions of our website cannot be offered without the use of technically necessary cookies. In addition, they can be used to collect statistical data about website usage and analyze it in order to improve the website. Users can influence the use of cookies. For more information about the use of cookies on our website and for individual cookie settings, please click on “Cookie Settings” in the footer of the website.

6.1. Meta Pixel

This Website uses the Meta Pixel from „Meta“ (Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland). Meta displays ads to users who have visited our websites and online services and are interested in a specific offer. Through the Meta Pixel on our Website a direct connection to the servers of  take place. Meta uses cookies for this analysis. Meta receives the information, that you have visited our website and assigns this information to your personal Meta account. We have no influence on the scope and type of information including your personal data, which is transmitted to Meta. For more information regarding your rights and possibilities to protect your data, please visit the Meta Privacy policy at: www.facebook.com/about/privacy/. We alone do not transfer this data to Meta. For more information please visits: www.facebook.com/policy.phpwww.facebook.com/help/186325668085084 .

6.2. Social Plugins (Meta, Google+, Twitter and YouTube)

On our Website we use social plugins of the social networks “Meta” (Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland), “Google +” (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland), “Instagram” (Instagram Inc., 1601 Willow Rd Menlo Park CA 94025 USA) and “Twitter” (Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA) and “Youtube” (YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066 USA) These services are offered by the respective companies (“providers”). As part of our online presence, the social plugins are marked by the respective buttons belonging to the service. Based on the data transmitted via the social plugins to the respective service, this can assign certain personal data you to your Meta, Google+, Twitter and/or Instagram account. In order to increase the protection of your data on our website, the social plugins are integrated on our website by means of the so-called “2-click-Solution”. This ensures that when you call a page of our website that contains such social plug-ins, no automatic connection to the servers is made by the respective providers.

The function of the respective social plug-in is activated in two stages. To activate a social plug-in, you have to click on the link on our website. This activates the social plug-in and your browser connects to the servers of the respective provider. With a second click you can now interact with the social plug-in and, for example, submit your recommendation. If you are already logged in to one of the social networks of the providers, the providers can directly assign the visit to this website to your profile. If you interact with the social plugins by clicking on them, the corresponding information is also transmitted directly to a server of the provider and stored there. The information may also be published to the social network and displayed under your contacts. If you would like to prevent such direct assignment of your data collected via our website to your profile, you must unsubscribe from your account of the respective provider before you visit our web pages.

The scope and purpose of the data collection by the respective service as well as the further processing and use of your data, please refer to the data protection information directly from the website of the service. You will also receive further information about your privacy rights and setting options to protect your privacy.

a) Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland www.facebook.com/policy.php www.facebook.com/help/186325668085084

b) Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland https://www.google.com/policies/privacy/partners/?hl=de

c) Twitter Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA Https://twitter.com/privacy?lang=de

e) Instagram Inc., 1601 Willow Rd Menlo Park CA 94025 USA help.instagram.com/155833707900388

f) Youtube 600 Amphitheater Parkway, Mountain View, California 94043, USA www.youtube.com/t/privacy

6.3. Matomo

To tailor our website to your needs, we use the web analytics tool "Matomo". During this process, information about the use of our website is collected and transmitted to our server for analysis and storage. Your IP address is only processed in a shortened form during this process, thereby anonymizing it. If you do not want your usage of our website to be analyzed, you have the right to object to the processing of your data at any time. To do so, an opt-out cookie will be placed in your browser, which does not contain any usage data and causes Matomo not to collect any session data.

7. Fan pages on Facebook, Instagram, YouTube, Kununu

We operate fan pages on the social networks Facebook, Instagram, YouTube and Kunununu. As operators of these fan pages, we are responsible together with the operators of these networks within the meaning of Art. 4 No. 7 GDPR. If you visit one of our fan pages, personal data will be processed by those responsible. As the person responsible for the fan pages, we have made agreements with the social networks which, among other things, regulate the conditions for using these pages. We have integrated this data protection declaration into the corresponding fan pages, from which you can find further information or on www.maier-sports.com:

8. Security measures to protect the data we store

We are committed to protecting your privacy and keeping your personal information confidential. In order to avoid loss or misuse of the data we store, we take extensive technical and organizational security precautions that are regularly checked and adapted to technological progress. However, we would like to point out that due to the structure of the Internet it is possible that the data protection rules and the above. Security measures taken by other people or institutions that are not our responsibility are not observed. In particular, data disclosed unencrypted - even if this is done via email - can be read by third parties. We have no technical influence on this. It is the user's responsibility to protect the data they provide against misuse through encryption or in any other way.

9. Hyperlinks

Our website contains so-called hyperlinks to websites of other providers. When you activate these hyperlinks, you will be redirected from our website directly to the other providers' websites. This can also be the company websites of Maier Sports partners. You will recognize this, among other things: at the change of URL. We cannot accept any responsibility for the confidential handling of your data on other websites. Please find out more about how your personal data is handled on other websites directly on the respective websites.

10. External service providers

We use service providers to provide services and process your data relating to our services. The service providers process the data exclusively in accordance with our instructions and are obliged to comply with the applicable data protection regulations. All processors have been carefully selected and only receive access to your data to the extent and for the period required to provide the services or to the extent to which you have consented to the data processing and use.

In this context, personal data may be transferred to countries outside the EU/EEA, in particular to the USA. In order to be able to guarantee adequate protection of your personal data in the event of the transfer of personal data to such so-called third countries, we have concluded so-called EU-US standard contractual clauses with our service providers. The USA is assessed by the European Court of Justice as a country with an inadequate level of data protection according to EU standards. Due to the lack of an adequacy decision and without appropriate guarantees, there is a particular risk that your data may be processed by US authorities for control and surveillance purposes, possibly without any legal remedy. In addition, if possible, we communicate with the provider to ensure the protection of your personal data with additional measures if necessary.

11. Storage period

Your personal data will be deleted as soon as the respective purpose for processing has been achieved or has subsequently ceased to exist.

In order to fulfill contractual obligations, data collected from you may be retained for as long as the contract exists and, depending on the scope of the contract, for 6 or 10 years beyond that, to comply with legal retention obligations and to respond to any inquiries or claims that may arise after the contract has expired to clarify.

If, at our discretion, data is necessary to examine or defend against claims against us or to initiate criminal prosecution or make claims against you, us or third parties, we may retain it for as long as appropriate proceedings could be initiated.

For customer service purposes, the data collected from you may be retained for 3 to 10 years after collection, unless you request this data to be deleted and there are no contractual or legal retention obligations that conflict with this request for deletion.

Relevant proof and storage obligations arise, among other things, from the Commercial Code and the Tax Code.

In this case, the legal basis for processing is the respective legal regulations in accordance with. V. m. Art. 6 Paragraph 1 Letter c GDPR.

If a contract is not concluded, we will delete your data after 3 years at the end of the statutory limitation period.

12. Rights of those affected

12.1 Right to information, Art. 15 GDPR

You have the right to request information from us at any time about the data we have stored about you, as well as its origin, recipients or categories of recipients to whom this data is passed on and the purpose of storage.

12.2 Right of withdrawal, Art. 7 Para. 3 GDPR

If you have given your consent to the use of data, you can revoke it at any time without giving reasons with future effect. The revocation of consent does not affect the lawfulness of the processing carried out based on the consent before its revocation. All you need to do is send an email to datenschutz@schwan-stabilo.com or a written notification to Maier Sports GmbH, Nürtinger Str. 27. 73257 Köngen.

12.3 Right to rectification, Art. 16 GDPR

You can request the correction of incorrect data or the completion of your data stored by us.

12.4 Right to deletion and blocking, Articles 17 and 18 GDPR

You have the right to block and delete the personal data we have stored about you. If deletion contradicts statutory retention requirements or other legally enshrined reasons, your data can only be blocked instead of deleted.

12.5 Data transfer right, Art. 20 GDPR

If you request the personal data you have provided to us, we will, if you request, release or transmit the data to you or another person responsible in a structured, common and machine-readable format. The latter, however, only if this is technically possible.

12.6 Right to object, Art. 21 GDPR

You have the right to object to the processing of personal data concerning you at any time for reasons arising from your particular situation within the framework of the requirements of Art. 21 GDPR, provided that the data processing is based on our legitimate interests in accordance with Art. 6 Para. 1 lit. f GDPR takes place.

12.7 Contact to assert the rights of those affected

To assert the rights of those affected, you can contact us by email at datenschutz@schwan-stabilo.com - or by post to Maier Sports GmbH, Nürtinger Str. 27. 73257 Köngen.

When you contact us, we will store the data you provide (your email address, if applicable your name and telephone number) in order to answer your questions or respond to your concerns. We delete the data arising in this context after storage is no longer necessary or restrict processing if there are statutory retention requirements.

13. Right to lodge a complaint with the supervisory authority, Art. 77 GDPR

You have the right to lodge a complaint with the responsible supervisory authority against the processing of your personal data if you feel that your rights under the GDPR have been violated.

14. Data transfer to affiliated companies

For operational reasons and to ensure IT operations and IT security, data may be transmitted to affiliated companies of the Schwan-STABILO Group.

15. Automated decision making/profiling

We do not use automated decision-making or profiling (an automated analysis of your personal circumstances).

 

As of October 2023

 

Supplement to the data protection declaration

Data protection information for the cooperation between Maier Sports and Storer

Storer takes over the sale and shipping of the goods we offer. We transmit your personal data to Storer in order to conclude and execute the purchase contract for the ordered goods. We have concluded a data protection agreement with Storer on joint responsibility within the meaning of Art. 26 GDPR.

1. APPOINTMENT OF JOINTLY RESPONSIBLE PERSONS

The following are jointly responsible for processing your personal data:


Maier Sports GmbH,
Nürtinger Straße 27,
D-73257 Köngen

Email: info@maier-sports.de

and

Storer Handels GmbH,
Karlstrasse 28,
D-89129 Langenau,
Email: info@storer-shop.de

 

2. RESPONSIBILITY REGARDING THE PROCESSING OF PERSONAL DATA

 Those responsible are jointly responsible for your personal data. Your personal data provided on the Maier Sports website will be transmitted by Maier Sports to Storer to the extent necessary for sales and shipping. In addition, Storer is integrated into some of Maier Sports' processes in order to ensure that complaints are processed and processed in addition to your order.

Maier Sports assumes the necessary information obligations, e.g. Art. 13 GDPR. The rights of those affected can be asserted against Maier Sports, e.g. right to information Art. 15 GDPR, right to object Art. 21 GDPR. Maier Sports also ensures the technical and organizational measures for data processing.

Regardless of this agreement between those responsible, you can of course also assert your rights under the GDPR directly against Storer. Your request will be forwarded to us immediately.

3. LEGAL BASIS FOR PROCESSING

The processing of your personal data serves the purpose of carrying out pre-contractual measures or fulfilling a contract on the basis of Art. 6 Para. 1 lit. b GDPR.

4. PERSONAL DATA

With regard to the data to be processed, reference is made in particular to paragraphs 4.X. and 4.X referenced in this data protection declaration.

5. STORAGE

Your personal data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. If the data collected is not used to conclude a contract with you, this will be the case for the data collected during the registration process if the registration on our website is canceled or changed.

With regard to data collected during the ordering process to fulfill a contract or to carry out pre-contractual measures, this is the case when the data is no longer required to carry out the contract. Even after the contract has been concluded, it may be necessary to store the contractual partner's personal data in order to comply with contractual or legal obligations, such as those arising from the limitation periods for warranty claims or from tax retention obligations.

6. RIGHTS OF SUBJECTS

In principle, you have the following rights:

Right to information (Article 15 GDPR)

Right to rectification (Article 16 GDPR)

Right to object (Art. 21 GDPR)

Right to deletion (Article 17 GDPR)

Right to restriction of processing (Art. 18f. GDPR)

Right to data portability (Art. 20 GDPR)

You have the right to revoke your consent once given at any time with effect for the future, without this affecting the lawfulness of the processing carried out based on your consent before its revocation.

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority.