privacy policy

Data Protection – Privacy Policy

Thank you for your visit and for your trust!

We are very pleased that you are visiting our boutique (https://boutique.grossmann-uhren.com). In this data protection declaration (privacy policy), we provide you with answers to your questions on the subject of data protection in our company.

It includes the linked websites, external online presences, and “social media” presences, such as Instagram and Facebook.

To make it easier to read, Grossmann Uhren GmbH (Data Controller) will be referred to as GROSSMANN, WE, or OUR hereinafter.  The content of this website addresses women and men equally. For better readability and comprehension, the masculine form of speech is mainly used.

With regard to the terms used, such as “processing” or “controller”, we mainly refer to the definitions in Article 4 of the EU General Data Protection Regulation 2016/679 (GDPR) and in exceptional cases to Section 46 of the German Federal Data Protection Act (BDSG).

AT GROSSMANN, DATA PROTECTION MEANS MUTUAL TRUST AND CUSTOMER LOYALTY.

For GROSSMANN, it is a matter of course to protect the customer data entrusted to us when it comes to safeguarding your privacy.

The protection of your personal data, hereinafter referred to as “data”, is a top priority for us and is very close to our hearts. This data protection declaration shows you what data we process or collect about you, how we use the data and how you can view, change or delete it.

If you have any questions about this, we will of course be happy to help you. You will find our contact offers, including the contact to our data protection officer, at the end of this statement.

If you find anything confusing or do not understand the following explanations, please contact us immediately.

THE DATA CONTROLLER

All data that you provide to us via our website will be processed by

Grossmann Uhren GmbH.
Uferstraße 1
01768 Glashütte
Germany

E-Mail: info@grossmann-uhren.com
Telephone: +493505332000

GROSSMANN is therefore the “responsible party” within the meaning of the German Federal Data Protection Act (BDSG) and therefore legally responsible for the protection and processing of your data. Our obligation to you is to handle your data with care.

FOR WHAT PURPOSES DOES GROSSMANN PROCESS YOUR PERSONAL INFORMATION?

Purchase and delivery of products and services.

We use your personal information to take and process orders, deliver products and services, process payments, and communicate with you about orders, products, services, and promotional offers.

Provide, troubleshoot and improve our services.

We use your personal information to provide features, analyze performance, troubleshoot and improve the usability and effectiveness of our services.

Ensuring Information Security.
In order to ensure the proper operation of our services, we process personal information in the course of your online visit. For example, inventory data (e.g., names, addresses), contact data (e.g., email, phone numbers), content data (e.g., text entries, photographs, videos), usage data (e.g., web pages visited, interest in content), access times and meta/communication data (e.g., device information, IP addresses).

Catalogue order and subscription.
We need your name and address in order to send our brochures to you. In case there are problems with the dispatch, we would also be grateful if you could provide us with your telephone number or e-mail address. This information is voluntary, and we will explicitly ask you if we may call or e-mail you. Following the dispatch of our catalogue, your data will be deleted immediately, unless otherwise required by law. In the case of a subscription, we will delete the data if you let us know.

User profile at GROSSMANN.
You can also use our online offers by using a profile. This profile consists of username, password, address, first name, surname, telephone number and e-mail address. Furthermore, you can provide voluntary information.
Your data can be deleted upon request, unless there is another legal regulation that requires us to store and process it. Please take care to keep your password secret to prevent misuse and ensure that your data is up to date in your own interest. You are responsible for all actions initiated under your username due to your fault. Creating a profile is purely voluntary as long as no purchase is made. If you do not wish to create a profile, we ask that you contact us (e.g., by telephone) in order to fulfil your wishes.

However, creating a profile simplifies the ordering process.
We will only use your profile information to process orders, provide additional services you have requested, and process payments. You can also view the record of your past purchase and – if possible – retrieve paid services. Unless you have otherwise consented to us informing you of other offers, we will only communicate with you by telephone or email for the above purposes. We delete your data in the profile at the latest when you delete the profile yourself or inform us that your profile should be deleted, unless applicable law obliges or entitles us to store it.

Competitions and promotions.
If you take part in competitions, surveys or promotions organized by GROSSMANN, we may ask for your data which is necessary for carrying out the competition. This data will only be stored for as long as is necessary to carry out the respective competition, after which it will be deleted.

Market analysis and surveys.
When you use our offers, we may ask you which items you prefer, why you buy this or that item, or what your lifestyle habits are. We do this to find out more about your needs and to be able to tailor our offers even better to your requirements. This information is purely voluntary, and you can use our other offers even if you do not answer these questions.

Contact form.
We offer you the possibility on our websites to send us a message directly. To do this, fill in the fields in the corresponding contact form on our website. In order for us to contact you, we need your full name, e-mail and/or telephone number, and the reason for your request. This data will only be used to answer your questions as thoroughly as possible and to fulfil your wishes. Once everything is done and your wishes have been fulfilled, we delete your data.

DISCLOSURE AND CONTROL OF DATA

Information about our customers’ wishes is an important part of our business. However, it is not part of our business to sell our customers’ personal information. Protecting your data is very important to us.

We only share customers’ personal information to the extent described below. In doing so, we ensure that recipients of your information are either subject to this Privacy Policy or implement measures that provide at least as much protection as those described in this Privacy Policy.

Possible third parties are:

Third party service providers: we engage other companies and individuals to perform tasks for us. Examples include, but are not limited to, fulfilling orders for products and services, delivering packages, sending letters or emails, maintaining our customer lists, analyzing our databases, assisting with promotional activities, processing payments (credit card, direct debit and purchase on account), transmitting content, evaluating and managing credit risk, and providing customer service. These third-party service providers have access to personal information needed to perform their tasks. However, they are not allowed to use it for other purposes. In addition, they are required to treat the information in accordance with this privacy policy and relevant data protection laws.

We disclose customer accounts and personal information about customers when we are required to do so by law or when such disclosure is necessary to enforce our terms and conditions, other agreements, or to protect the rights of GROSSMANN. This includes sharing data with companies to prevent and minimize abuse and credit card fraud and to enforce our legal rights.
Otherwise, we will not share your information with third parties without your consent or will inform you in advance if personal information is to be shared with third parties. This gives you the opportunity to decide that you do not want your information to be shared with third parties.

What information can you view yourself?
You can view your information in the “My Account” section of our boutique (boutique.grossmann-uhren.com). This information includes your name, address, payment options, profile information, alternative delivery address, and your past orders.

LEGAL BASIS FOR PROCESSING

We process your data on the following legal bases:

For the performance of a contract (Art. 6 para. 1 lit. b GDPR), when we provide you with a product or service, or communicate with you in relation to it. This includes the processing of your personal information for the acceptance and processing of orders, delivery of products and services, payment processing and the processing of pre-contractual measures. It may be necessary to clarify details with you before a contract is formed.

With your consent (Art. 6 para. 1 lit. a GDPR), if we ask for your consent to process your personal information for a specific purpose communicated to you. If you consent to us processing your personal information for a specific purpose, you can withdraw your consent at any time, and we will then no longer process your data for that purpose.

In order to comply with legal obligations (Art. 6 para. 1 lit. c GDPR), we need to process your personal information. For example, we process your data within the framework of the German Fiscal Code (AO) in order to fulfil all obligations under tax law.

On the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) if, for example, this enables us to maintain a secure permanent operation and ensure a consistent appearance as well as optimize our websites and services. Please note your right to object in accordance with Art. 21 GDPR:

Right to object to the processing of your personal data on the basis of legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the case of direct advertising, you have a general right of objection, which we implement without specifying a particular situation.

INFORMATION SECURITY – GROSSMANN PROTECTS YOUR DATA

We have taken various organizational and technical measures to protect your data against unauthorized disclosure, unlawful use, alteration and destruction. To this end, we maintain physical, electronic, and procedural security measures. For example, our servers are protected by firewalls and virus protection. Backup and recovery as well as role and authorization concepts are a matter of course for us. To increase the security of your data, we always use encryption procedures (e.g., SSL/TLS for transmission via the Internet). Our employees are bound to data secrecy and must observe the regulations of the GDPR and the Federal Data Protection Act (BDSG) when handling data. All companies that receive data from us, regardless of whether they process data under our control, or we pass data on to them, must also undertake to maintain data secrecy and to comply with certain organizational and technical data protection requirements. This is checked by GROSSMANN at the start of the contract and regularly thereafter to ensure that they meet their obligations in practice and that your data is always protected.

USE OF COOKIES

We use cookies on our websites. Unfortunately, they are not biscuits that you can eat. Website cookies are used to make it easier for visitors to navigate the website and to simplify the registration process. The shopping cart can also be realized with the help of a cookie. Cookies are text files that are placed on your hard disk by an Internet server. A browser is part of your computer. These browsers are usually set to accept cookies automatically. However, the settings can usually also be adjusted to reject cookies. If you have concerns about cookies, you can change the settings of your internet browser accordingly. However, we would like to point out that you may not be able to use all the functions of the website without cookies. However, the cookies we use in no way allow us to draw conclusions about your identity.

We use this information to determine the number of visitors to our websites and to improve the user value of our websites. This enables us to personalize our websites, e.g., to recognize you as a repeat visitor to our offers. If you have an existing record with us, the new data can in many cases be associated with that record.

We also use cookies that are deleted after you leave our website. The cookies are only used to recognize your language setting, etc.

Cookies – service provider, purpose, type, and storage period

Necessary cookies – Art. 6 para. 1 lit f. GDPR

Name Borlabs Cookie

Provider Owner of this website

Purpose Stores visitor preferences selected in the cookie box by Borlabs Cookie.

Cookie Name borlabs-cookie

Cookie duration 1 year

 

Name WP Cerber Security

Provider Owner of this website

Purpose For many purposes. Some cookies are used by the anti-spam algorithm, others prevent the user from being accidentally locked out. The plug-in uses randomly generated values for the cookies and does not store any personal, user-related or sensitive data in the cookies.

Protect the website from hackers, cyber criminals, spammers and bots.

Privacy Policy https://my.wpcerber.com/privacy-policy/

Cookie Name _wp_cerber_plugin*, cerber_groove*.

Cookie duration 14 days

 

Statistical cookies after consent according to Art. 6 para. 1 lit. b GDPR.

Name Google Analytics

Provider Google LLC

Purpose Cookie from Google for website analyses. Generates statistical data on how visitors use the website. If cookies are missing from the list, you can find them here: https://policies.google.com/technologies/types?hl=de

Privacy policy https://policies.google.com/privacy

Host(s) admob.com, adsensecustomsearchads.com, adwords.com, doubleclick.net, google-analytics.com, google.com, googleadservices.com, googleapis.com, googlesyndication.com, googletagmanager.com, googletagservices.com, googletraveladservices.com, googleusercontent.com, gstatic.com, urchin.com, youtube.com, ytimg.com

Cookie name _ga,_gat,_gid, __utma, __utmt, __utmb, __utmc, __utmz, __utmv

Cookie duration 2 years

External cookies on the basis of legitimate interest according to Art. 6 para. 1 lit. f GDPR.

Name Google Maps

Provider Google

Purpose   it is used to unblock Google Maps content.

Privacy policy https://policies.google.com/privacy

Host(s) .google.com

Cookie Name NID

Cookie duration 6 months

 

Accept

Name YouTube

Provider YouTube

Purpose   it is used to unlock YouTube content.

Privacy policy https://policies.google.com/privacy

Host(s) google.com

Cookie Name NID

Cookie duration 6 months

NEWSLETTER

With the following information we would like to inform you about the contents of our Newsletter as well as the registration, dispatch, and statistical evaluation procedure and your rights of objection. By subscribing to our Newsletter, you agree to receive it and to the procedures described.

Content of the newsletter: We send newsletters, e-mails and other electronic notifications with promotional information (hereinafter Newsletter) only with the consent of the recipients or a legal permission. If the contents of the Newsletter are specifically described in the course of registration, they are decisive for the consent of the users. Apart from that, our newsletters contain information about our services and us.

Double opt-in and logging: Registration for our Newsletter takes place in a so-called double opt-in procedure. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other people’s e-mail addresses. The registrations for the Newsletter are logged, in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Likewise, changes to your data stored with the dispatch service provider are logged.

Registration data: To register for the Newsletter, it is sufficient to enter your e-mail address. Optionally, we ask you to enter a name for the purpose of addressing you personally in the Newsletter.

The Newsletter is sent, and its success measured on the basis of the recipients’ consent (double opt-in; confirmation email).

The logging of the registration process is based on our legitimate interests in accordance with Art. 6 Para. 1 lit. f GDPR. Our interest is directed towards the use of a user-friendly as well as secure newsletter system that serves our business interests as well as the expectations of the users and furthermore allows us to prove consent.

Cancellation/revocation – You can cancel your subscription to our Newsletter at any time, i.e., revoke your consent. You will find a link to cancel the subscription at the end of each Newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them to prove that consent was previously given. We store all unsubscribed email addresses for up to 3 years.

The storage is necessary in order to be able to prove that consent has been given. You can object to this storage if you inform us in writing. A documented individual solution will then be found.

NEWSLETTER – DISPATCH SERVICE PROVIDER

The Newsletter is sent using MailChimp (Newsletter tracking) Attn. Privacy Officer 675 Ponce de Leon Ave NE, Suite 5000 Atlanta, GA 30308 USA.

The dispatch service provider may use the recipients’ data in pseudonymous form, i.e., without assigning it to a user, to optimize or improve its own services, e.g., to technically optimize the dispatch and presentation of the Newsletter or for statistical purposes. However, the dispatch service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.

ONLINE PRESENCE IN SOCIAL MEDIA

We maintain external online presences within social networks and platforms in order to be able to communicate with the customers, interested parties and users active there and to inform them about our services there. When calling up the respective networks and platforms, the terms and conditions and data processing guidelines of their respective operators apply.

Unless otherwise stated in our privacy policy, we process the data of users if they correspond with us within the social networks and platforms, e.g., write posts on our online presences or send us messages. We and the platform operators are jointly responsible within the meaning of Art. 26 GDPR. The separation is basically as follows:

The platform operators are responsible for the technical provision, technical evaluation, use, user data and security.

GROSSMANN is responsible for content and communication.

We operate presences in social media with the following platform operators:

Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland).
Instagram (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
Twitter (Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02AX07, Ireland)
LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)
Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany)
YouTube (Google Ireland Ltd., Gordon House, Barrow St, Dublin 4, Ireland)

You use these platforms and their functions on your own responsibility. This applies in particular to the use of interactive functions (e.g., commenting, sharing, rating). Please note that your data may be processed outside the European Union. You can find more detailed information in the data protection declarations of the respective platform operators.

As we do not have full access to your personal data there, you should contact the providers of the social media directly when asserting your rights. Only the platform operators themselves have access to the personal data of their users and can take appropriate measures and provide information.

INTEGRATION OF THIRD-PARTY SERVICES AND CONTENT

We use content or service providers within our online offer on the basis of our legitimate interests (i.e., interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Para. 1 lit. f. GDPR) to integrate content or services offered by third-party providers, such as videos or fonts (hereinafter uniformly referred to as “content”).

This always requires that the third-party providers of this content are aware of the IP address of the user, as without the IP address they would not be able to send the content to their browser. The IP address is therefore necessary for the display of this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer, as well as being linked to such information from other sources.

In detail, these are:

GOOGLE FONTS. We integrate the fonts (“Google Fonts”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

GOOGLE reCAPTCHA. We integrate the function for the recognition of bots, e.g., for entries in online forms (“ReCAPTCHA”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

GOOGLE MAPS. We integrate Google Maps of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

GROSSMANN ONLY STORES YOUR DATA FOR AS LONG AS NECESSARY.

We adhere to the principles of data avoidance and data economy. This means that we only collect the data from you that is necessary to achieve the respective purposes and only store it for as long as necessary, for as long as you have allowed us to do so, or for as long as the retention and storage periods provided for by law require. Your data will then be blocked or deleted in accordance with the statutory provisions.

YOU HAVE THE RIGHT TO INFORMATION, CORRECTION, DELETION AND OBJECTION.

Right of revocation, objection and correction

If you have provided us with personal data, you may delete it at any time, unless we are required by law to retain it for a certain period of time, for example for tax or accounting purposes. In this case, we will delete the data immediately after the storage period has expired. Furthermore, you can of course have any incorrectly recorded data corrected at any time.

You can exercise your right of revocation and correction by contacting the following address:

Grossmann Uhren GmbH
Uferstraße 1
01768 Glashütte
Germany
Telephone number: +49 35053 32 00 0
Fax number: +49 35053 32 00 99
E-Mail: info@grossmann-uhren.com

In your user profile, you can cancel your user account in the “Delete account” section.

Furthermore, you have the right to information, correction and deletion.

CHILDREN

Persons under the age of 18 should not transmit any personal data to us without the consent of their parents or legal guardians. GROSSMANN does not offer products for purchase by minors. Our products for children can also only be purchased by adults. If you have not yet reached the age of 18, you may only use our offers together with a parent or guardian. If we suspect that we have received data from a minor, we will delete all data immediately.

LINKS TO OTHER WEBSITES

Our online offer contains links to other websites. We have no influence on whether their operators comply with data protection regulations. Before we included the links to other sites in our web pages, we checked whether their web pages were basically trustworthy.

However, it happens that websites are redesigned, renewed or supplemented. We have no influence or control over these changes.

Please inform us if something does not fit.

DO YOU HAVE SOMETHING ON YOUR MIND? CONTACT GROSSMANN AND OUR DATA PROTECTION OFFICER.

You can reach us at the following address:

Grossmann Uhren GmbH
Uferstraße 1
01768 Glashütte
Germany

Telephone number: +49 35053 32 00 0
Fax number: +49 35053 32 00 99
E-Mail: info@grossmann-uhren.com

Questions about data protection?

If you have any questions about this data protection declaration, general questions about data protection, or would like to claim your rights, please contact our data protection officer:

Armin Fimberger
– Data Protection Officer-

Kathreinweg 33
81827 München
Germany

E-Mail: datenschutz@digitaleserbe.net

Our security measures require that we ask you to provide proof of your identity before we disclose your data. This serves to protect your data, as it prevents just anyone from gaining access to your data.

In order to verify the relevant identity, we usually require a copy of an identification document (identity card or passport).

Please black out everything except your first and last name, your address and your date of birth. Even if sending this information is an inconvenience for you, this is the only way we can ensure that we at GROSSMANN actually provide the person making the enquiry with legally admissible information.

Please understand that we cannot provide information or accept applications by telephone. Please contact us in writing – by post (letter) or by e-mail.

COMPETENT SUPERVISORY AUTHORITY – RIGHT OF COMPLAINT

You have a right of complaint. If you wish to exercise this right, you can contact the following supervisory authority:

Data Protection Supervisory Authority Saxony (Aufsichtsbehörde)
Bernhard-von-Lindenau-Platz 1
01067 Dresden
Germany

GROSSMANN CHANGES THIS DATA PROTECTION DECLARATION FROM TIME TO TIME.

The rapid development of the Internet makes it necessary to make adjustments to our data protection declaration from time to time. You will be informed of any changes at this location. This is necessary to ensure that it always complies with the current legal requirements and covers all our offers.

Your legal rights to information, correction, blocking, deletion, and objection remain unaffected by such a change.

Status: 09-February-2021