Data Protection Statement

Thank you for your interest in our website. We place great emphasis on the protection of your personal data. Your personal data is processed and used in compliance with the applicable data protection regulations. Our data protection provisions are based on the European General Data Protection Regulation (EU-GDPR), the Federal Data Protection Regulation (GDPR), and the Telemedia Act (TMA).

1.  Responsible Person and Service Provider

The responsible party for the collection, processing and use of your personal data within the meaning of Art. 4 Sect. 7 EU-GDPR and service provider within the meaning of § 2 No. 1 TMA is

Pätzkamp 4
49504 Lotte, Germany

Phone:  +49 5404 91779-0
Fax:  +49 5404 91779-20

Registration Court:  Local Court Steinfurt, HRB 13153
Sales tax ID number:  DE 811277653

Managing Directors: Claudia Wichmann, Kristina Wichmann-Raschdorf, Lars Christoph Schäfer

2.  Data Protection Officer

Alte Poststraße 19
49074 Osnabrück

3.  Data Collection, Use and Purposes of Processing

3.1 Website

When you visit our website, the only data collected is what your browser automatically transmits to our hosting provider.

  • IP address
  • Date and time of the call
  • Pages you have visited on our Website
  • Browser type
  • Browser Settings
  • When accessing the website via links from other websites, the web address of the referring website

A transmission of personal data for simply accessing our website is not required.
The log data is used without any assignment to your person for statistical evaluations to ensure the operation and optimisation of our Internet presence via a limited period of time. In case of any actual suspicion of illegal use, we reserve the right to check the stored log files.
These data are used and processed exclusively for the purpose of providing our website on the basis of Art. 6 Sect. 1 lit. f and Art. 28 EU-GDPR.

3.2 Cookies

Our website uses cookies only to enable user registration in the closed segment of our website. These cookies are not stored after the browser session is closed. Cookies do not track or store user actions on the website.

3.3 Contact via e-mail / contact form

You may contact us via our contact form or via the e-mail addresses provided. The personal data provided by you will be used by us exclusively for processing your request and will be archived in compliance with the legal retention periods. This is done on the basis of Art. 6 Sect. 1 lit. b,c EU-GDPR

3.4 Data collection for the fulfilment of contractual and pre-contractual obligations

The following personal data will be processed by us and stored in compliance with legal storage obligations:

  • Salutation, first name, surname
  • Telephone numbers
  • Fax numbers
  • E-mail address
  • Associated company

Processing is carried out on the basis of Art 6 Sect. 1 lit. b,c EU-GDPR

3.5 Data transmission to third parties

3.5.1 Hosting Providers

Our website is operated by a hosting provider. The services we use include the following:

  • Provision of the required server infrastructure
  • Internet connection of the website
  • Security services
  • Content Management System
  • Maintenance services

Our website is provided by our service provider:
avency GmbH, Kiebitzpohl 77, D-48291 Telgte, Germany
Data protection statement:
on the basis of Art 6 Sect. 1 lit. f. EU-GDPR

3.5.2 Credit assessment

We transmit to CRIF Bürgel GmbH, Radkoferstrasse 2, 81373 Munich, Germany, the personal data collected within the scope of a contractual relationship concerning the application for, implementation and termination of a business relationship as well as data concerning non-contractual or fraudulent behaviour.

The legal basis for these transfers is Art. 6 Sect. 1 lit. b and Art. 6 Sect. 1 lit. f EU-GDPR. Data transmissions pursuant to Art. 6 Sect. 1 lit. f EU-GDPR may only take place if necessary to protect the legitimate interests of our company or third parties and does not outweigh the interests or fundamental rights and freedoms of the data subject which require the protection of personal data. The data exchange with CRIFBÜRGEL also serves the fulfilment of legal obligations to carry out creditworthiness checks of customers (§ 505a and 506 German Civil Code).

CRIFBÜRGEL processes the data received and also uses them for the purpose of establishing profiles (scoring) in order to provide its contractual partners in the European Economic Area and in Switzerland and, if applicable, other third countries (provided that an adequacy decision of the European Commission exists for these) with information, inter alia, for assessing the creditworthiness of natural persons. Additional information on the activities of CRIFBÜRGEL can be found in the CRIFBÜRGEL information sheet or online at

4.  Storage duration

Your personal data will only be stored for as long as necessary to fulfil the purposes pursued, should your data be subject to tax, commercial or other legal storage obligations, your data will be archived taking into account the storage obligations.

5.  Your Rights as a Data Subject

According to the applicable laws, you have various rights regarding your personal data. If you wish to assert these rights, please send your request by e-mail or by post to the address specified in Section 1, clearly identifying yourself.

5.1 Right to confirmation and information

You have the right to clear information regarding the processing of your personal data.

You have the right to obtain confirmation from us at any time as to whether or not personal data relating to you will be processed. If this is the case, you have the right to request from us free of charge information about the personal data stored about you together with a copy of this data. Furthermore, there is a right to the following information:

  • the processing purposes;
  • the categories of personal data being processed;
  • the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular recipients in third countries or international organisations;
  • if possible, the planned duration for which the personal data will be stored or, if not possible, the criteria for determining this duration;
  • the existence of the right to have your personal data rectified or deleted or to have the data controller restrict or object to such processing;
  • the existence of the right of appeal to a supervisory authority;
  • if the personal data was not collected from you, all available information regarding the origin of the data;
  • the existence of any automated decision making, including profiling, in accordance with Art. 22 Sect. 1 and 4 EU-GDPR and, at least in these cases, meaningful information about the logic involved and the scope and intended effects of such processing for you.

If personal data are transferred to a third country or an international organisation, you have the right to be informed of the appropriate guarantees in accordance with Art. 46 EU-GDPR in connection with such transfer.

5.2 Right to correction

You have the right to request from us the immediate correction of any inaccurate personal data concerning you. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data by means of a supplementary statement.

5.3 Right to deletion ("Right to be forgotten")

In a number of cases we are obliged to delete personal data concerning you.

Pursuant to Art. 17 Sect. 1 EU-GDPR, you have the right to demand that we immediately delete personal data concerning you, and we are obliged to immediately delete personal data if one of the following reasons applies.

  • The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  • You revoke your consent on the basis of the processing pursuant to Art. 6 Sect. 1 lit. a EU-GDPR or Art 9 Sect. 2 lit. a EU-GDPR and there is no other legal basis for the processing.
  • You file an objection to the processing pursuant to Art 21 Sect. 1 EU-GDPR and there are no overriding legitimate reasons for the processing or you file an objection to the processing pursuant to Art 21 Sect. 2 EU-GDPR.
  • The personal data have been processed illegally.
  • The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which we are subject.
  • The personal data was collected in relation to information society services offered in accordance with Art. 8 Sect. 1 EU-GDPR.

If we have made personal data public and we are obliged to delete them pursuant to Art. 17 Sect. 1 EU-GDPR, we will also take appropriate measures of a technical nature, taking into account the available technology and the implementation costs, to inform those responsible for data processing who process the personal data that you have requested the deletion of all links to this personal data or of copies or replications of this personal data.

5.4 Right to restricted processing

You have the right to request us to restrict the processing if one of the following conditions is met:

  • The accuracy of the personal data is disputed by you for a time period that enables us to verify the accuracy of the personal data,
  • The processing is unlawful and you have refused to delete the personal data and have instead requested the restriction of the use of such personal data;
  • We no longer need the personal data for the purposes of processing, but you do need the data to assert, exercise or defend legal claims, or
  • You have filed an objection to the processing pursuant to Art. 21 Sect. 1 EU-GDPR, as long as it is not yet clear whether the justified reasons of our company outweigh yours.

5.5 Right to data transferability

You have the right to receive the personal data concerning you that you have provided to us in a regular, structured, and machine-readable format, and you have the right to transmit this data to another responsible party without our interference, provided that the processing is based on consent pursuant to Art. 6 Sect. 1 lit. a EU-GDPR or Art. 9 Sect. 2 lit. a EU-GDPR or on a contract pursuant to Art. 6 Sect. 1 lit. b EU-GDPR and processing is carried out using automated methods.

When exercising your right to data transferability in accordance with Section 1, you have the right to request that we transfer the personal data directly to another responsible party, if technically feasible.

5.6 Right to objection

You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you on the basis of Art. 6 Sect. 1 Sentence 1 lit. e or f EU-GDPR; this also applies to profiling based on these provisions. We no longer process personal data unless we can prove compelling grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If we process personal data for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling if associated with such direct marketing.

You have the right to object to the processing of your personal data, for scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Sect. 1 EU-GDPR, for personal reasons unless the processing is necessary to fulfil a task in the public interest.

5.7 Automatic decision including profiling

You have the right not to be subject to a decision based exclusively on automated processing - including profiling - that has legal effect against you or significantly impairs you in a similar manner. An automated decision making based on the collected personal data does not take place.

5.8 Right to revoke consent under the Data Protection Law

You have the right to revoke your consent to the processing of personal data at any time.

5.9 Right of appeal to a supervisory authority

You have the right of appeal to a supervisory authority, in particular in the Member State where you are staying, working or suspected of having infringed the law, if you believe that the processing of personal data concerning you is unlawful.

6.  Data security

We make every effort to ensure the security of your data in accordance with the applicable data protection laws and technical capabilities. To secure your data, we maintain technical and organisational security measures in accordance with Art. 32 EU-GDPR, which we constantly adapt to the state of the art.

7.  Forwarding of data to third parties, no data transfer to non-EU countries

In principle, we only use your personal data within our company. If and to the extent that we involve third parties in the performance of contracts (such as logistics service providers), these personal data are only transmitted to the extent to which the transfer is necessary for the corresponding service. In the event that we outsource certain parts of data processing ("contract processing"), we contractually oblige contractors to use personal data only in accordance with the requirements of data protection laws and to ensure the protection of the rights of the data subject. A data transmission to places or persons outside the EU outside the case mentioned in this statement in paragraph 3 neither takes place nor is it planned.