Name and address of responsible data controller

The responsible data controller within the meaning of the general data protection regulation and other national data protection laws of the Member States as well as other legal provisions relating to data protection is:

Außenhandelsvereinigung des Deutschen Einzelhandels e.V. (AVE), Am Weidendamm 1A, 10117 Berlin, Telephone +49 (0)30 590099615, Telefax +49 (0)30 590099613, info@ave-intl.de

Scope of processing of personal data

Broadly speaking we process the personal data of our users only insofar as this is necessary for the provision of a functioning website as well as our content and services. Personal data of our users are regularly processed only with the user’s content. One exception applies in those cases where consent is not possible for factual reasons and processing of the data is allowed through legal provisions.

Legal basis for processing personal data

Insofar as we invite consent from the persons in question for processing of their personal data, article 6.1(a) of the European general data protection regulation (GDPR) serves as the legal basis.

For processing of personal data which is necessary for fulfilment of a contract whose contracting party is the person in question, article 6.1(b) GDPR serves as the legal basis. This also applies for processing operations which are necessary for implementation of precontractual measures.

Insofar as processing of personal data is necessary for fulfilment of a legal obligation binding on our undertaking, article 6.1(c) GDPR serves as the legal basis.

For cases where vital interests of the persons in question or another natural person make processing of personal data necessary, article 6.1(d) GDPR serves as the legal basis.

If processing is necessary to preserve a legitimate interest of our undertaking or a third party, and the interests, fundamental rights and fundamental freedoms of the person in question do not override the first-mentioned interest, article 6.1(f) GDPR serves as the legal basis for the processing.

Data erasure and duration of storage

The personal data of the person in question will be erased or blocked as soon as the purpose of the storage ceases to obtain. In addition, storage can take place if this has been provided for by the European or national legislator in EU regulations, laws or other legislative provisions binding on the responsible data controller. Data are also erased or blocked once a storage period stipulated in the said legal instruments comes to an end, unless there is a need for continuing storage of data for conclusion or fulfilment of a contract.

Data processing on this Internet site

1.           Description and scope of data processing

Every time our Internet page is visited, our computer automatically detects data and information from the computer system of the contacting computer.

The following data are collected in this exercise:

(1)          Information about the browser type and the version used

(2)          User’s operating system

(3)          User’s Internet service provider

(4)          User’s IP address

(5)          Date and time of access

(6)          Websites from which the user’s system arrive on our Internet page

(7)          Websites which the user’s system contacts via our website

Data are also stored in our system’s logfiles. These data are not stored together with the user’s other personal data.

2. Legal basis for data processing

The legal basis for temporary storage of data and logfiles is article 6.1(f) GDPR.

3. Purpose of data processing

Temporary storage of the IP address by the system is necessary to enable a delivery from the website to the user’s computer. For this, the IP address must remain stored for the duration of the session.

Storage in logfiles takes place in order to ensure the functionality of the website. In addition, the data help us to optimise the website and to ensure the security of our technical information systems. There is no evaluation of the data for marketing purposes in this connection.

Our legitimate interest in data processing in accordance with article 6.1(f) GDPR also lies in these purposes.

4. Duration of storage

The data are erased as soon as they are no longer necessary to serve the purpose for which they were collected. In the case of data collection for provision of the website, this is the case once the relevant session is terminated.

In the case of storage of data in logfiles, this is the case after at most seven days. Storage beyond this duration is possible. In that case, the users’ IP addresses are erased or pseudonymised so that it is no longer possible to identify the contacting client.

5. Objection and erasure possibility

Collection of data for provision of the website and storage of data in logfiles is absolutely necessary for operation of the Internet page. Consequently, the user has no possibility to object.

Use of cookies

The Internet pages use so-called cookies in several places. They serve to make our offer more user-friendly, more effective and more secure. Cookies are small text files which are placed on your computer and which your browser stores. Most of the cookies we use are so-called “session cookies”. They are erased automatically after the end of your session. Cookies are not harmful to your computer and do not contain viruses.

The user’s data collected in this way are pseudonymised through technical measures. It is therefore no longer possible to assign data to the contacting user. The data are not stored together with users’ other personal data.

When users visit our website, they are informed about the use of cookies via an info banner and referred to this data protection statement. This is followed by a message about how cookies can be disallowed in the browser settings:

By changing your browser settings, you can prevent cookies from being transferred when you use our website and being stored on your computer. For this, you can select “Don’t accept cookies” in your browser settings. Cookies which have already been stored can be erased at any time. This can also be done automatically. Deactivation of cookies can lead to restricting functioning of our website.

The legal basis for processing of personal data using cookies is article 6.1(f) GDPR.

You can object to the report of your activities on our website at any time using the web analysis software MATOMO/PIWIK. To do this, you have the following possibilities:

• Deactivate the possibility of websites installing cookies on your computer via the corresponding setting on your Internet browser. Please note that some of the services on our website may then become unavailable to you.

• Deactivate the checkbox in the subsequent dialogue. Please note that you can only use this possibility if you have allowed acceptance of cookies in your Internet browser and use cookies.

Use of Google Maps

This website uses Google Maps to show an interactive map on the “Contact and how to find us” page. Google Maps is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. When you use Google Maps, information about your use of this website including your IP address may be transferred to a Google server in the USA and stored there. As the operator of this website, AVE has no influence on this. For further information, please consult Google Maps Platform Terms of Service, for more detailed information Google Analytics Data Privacy and Security.

Google Web Fonts

This page uses so-called web fonts for a uniform presentation of typefaces made available by Google. When you visit this site, your browser loads the necessary web fonts into your browser cache in order to display texts and typefaces correctly.

For this purpose, the browser you are using must establish a connection with Google’s servers. As a result, Google receives the information that our website has been contacted via your IP address. Google web fonts are used with a view to a uniform and attractive presentation of our online offer. This constitutes a legitimate interest within the meaning of article 6.1(f) GDPR.

If your browser does not support web fonts, a standard typeface will be used on your computer.

You can find further information about Google web fonts at https://developers.google.com/fonts/faq and in the Google’s Data Privacy and Security  statement: https://www.google.com/policies/privacy/.

Contact requests

On our website, we only collect the personal data which you give us via a request through the contact form. We use the data you give us in this way exclusively to process your request. Data processing is based on your consent in accordance with article 6.1(a) GDPR and article 6.1(f) GDPR. Our legitimate interest is responding to your request. The data you give us are not passed on to third parties. The data are erased as soon as they are no longer needed for the purpose of processing. You have the right at any time to object to the use of your data for the purpose of sending you information material.

Links to other websites, to Xing and LinkedIn

Insofar as our website comprises links to websites of other providers, we have no influence over whether these providers comply with data protection provisions. These third-party providers are responsible exclusively.

Our website comprises links to the Xing and LinkedIn networks which can be recognised from the logos of the two networks. If you activate these links while you are logged into your Xing or LinkedIn account, these networks can identify you and log your use. As the provider of this website, AVE has no knowledge of what data are transferred to Xing or LinkedIn or how they are used. If you want to prevent Xing or LinkedIn from being able to assign your visit on our pages to your user account, please log out from your Xing or LinkedIn user account. You can find further information in the data protection statements of Xing and LinkedIn.

Security

We use appropriate technical and organisational measures to ensure that your data are protected against loss, damage or unauthorised access by third parties. 

Rights to information, rectification, blocking and erasure

When the statutory conditions obtain, you enjoy the rights set out in articles 15 to 22 GDPR. This includes rights to information, rectification, erasure, restrictions on processing and to data portability. In addition, you have the right in accordance with article 21 GDPR to object to processing operations based on our legitimate interests in accordance with article 6.1(f). Consents once given can be revoked for the future.

Furthermore, you have the right to lodge a complaint with a supervisory authority in accordance with article 77 GDPR.

If you have questions about the collection, processing or use of your personal data, or if you want to contact us for information, a rectification, erasure or blocking, please contact:

Außenhandelsvereinigung des Deutschen Einzelhandels e.V. (AVE)

Am Weidendamm 1 A

10117 Berlin