NOTE: All orders received by 9 a.m. on 25 March will be dispatched on 27 March. The dispatch day on 29 March is cancelled due to the public holiday. Orders received by 9 a.m. on 27 March will be dispatched on 3 April. All later orders will be dispatched on 5 April. We wish you a happy Easter!

PRIVACY POLICY

 

Responsible for data processing is:
Autoform Carbox GmbH
Justus-von-Liebig-Str. 7-9
28832 Achim
Phone: 04202/9697-0
Email: info@carbox.de

Thank you for your interest in our online shop. The protection of your privacy is very important to us. Below we inform you in detail about how we handle your data.

1. Access data and hosting

You can visit our website without providing any personal information. Each time you visit a website, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the request, the amount of data transferred and the requesting provider (access data) and documents the request.

This access data is evaluated solely for the purpose of ensuring trouble-free operation of the site and improving our services. In accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO, this serves to protect our legitimate interests in the correct presentation of our offer, which outweigh our interests in the context of a balancing of interests. All access data is deleted at the latest seven days after the end of your visit to the site.

Hosting services by a third-party provider
As part of processing on our behalf, a third-party provider provides hosting and website presentation services for us. This serves to protect our legitimate interests in the correct presentation of our offer, which are outweighed by a balance of interests. All data collected in the course of using this website or in forms provided for this purpose in the online shop as described below are processed on its servers. Processing on other servers only takes place within the framework explained here.

This service provider is located within a country of the European Union or the European Economic Area.

2. data collection and use for contract processing, contacting

We collect personal data when you provide it to us as part of your order or when you contact us (e.g. by e-mail). Mandatory fields are marked as such, as we need the data in these cases to process the contract or to process your contact and you cannot complete the order or send the contact without providing it. Which data is collected can be seen from the respective input forms. We use the data you provide in accordance with Art. 6 Para. 1 S. 1 lit. b DSGVO for the purpose of processing the contract and dealing with your enquiries. After complete processing of the contract, your data will be restricted for further processing and deleted after expiry of any retention periods under tax and commercial law, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

3. data transfer

For the fulfilment of the contract in accordance with Art. 6 para. 1 p. 1 lit. b DSGVO, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. Depending on which payment service provider you select in the ordering process, we pass on the payment data collected for this purpose to the credit institution commissioned with the payment and, if applicable, to payment service providers commissioned by us or to the selected payment service. In some cases, the selected payment service providers also collect this data themselves if you create an account with them. In this case, you must register with the payment service provider with your access data during the ordering process. In this respect, the data protection declaration of the respective payment service provider applies.

Data transfer to shipping service providers
If you have given us your express consent during or after your order, we will pass on your e-mail address and telephone number to the selected shipping service provider in accordance with Art. 6 Para. 1 Sentence 1 lit. a DSGVO so that they can contact you before delivery for the purpose of delivery notification or coordination.

You can revoke your consent at any time by sending a message to the contact option described below or directly to the shipping service provider at the contact address listed below. After revocation we will delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use your data in a way that goes beyond this, which is permitted by law and about which we inform you in this declaration.

DPD Deutschland GmbH
Wailandtstrasse 1
63741
Aschaffenburg

Hellmann Worldwide Logistics SE & Co. KG
Elbestraße 1
49090
Osnabrück

4. postal advertising

Postal advertising and your right to object
In addition, we reserve the right to use your first and last name as well as your postal address for our own advertising purposes, e.g. to send you interesting offers and information about our products by post. This serves to protect our legitimate interests in addressing our customers in an advertising manner in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO.

5 Integration of the Trusted Shops trust badge

The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops seal of approval and any ratings collected, as well as to offer Trusted Shops products to buyers after they have placed an order.

This serves to protect our legitimate interests in optimal marketing by enabling secure shopping in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO, which prevail in the context of a balancing of interests. The trust badge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne. The Trustbadge is provided by a CDN provider (Content Delivery Network) within the framework of order processing. Trusted Shops GmbH also uses service providers from the USA. An appropriate level of data protection is ensured. Further information on the data protection of Trusted Shops GmbH can be found here.

When the Trustbadge is called up, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of the call-up, the amount of data transferred and the requesting provider (access data) and documents the call-up. Individual access data are stored in a security database for the analysis of security anomalies. The log files are automatically deleted 90 days after creation at the latest.

Further personal data is transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or if you have already registered to use them. The contractual agreement between you and Trusted Shops applies. For this purpose, personal data is automatically collected from the order data. Whether you as a buyer are already registered for product use is automatically checked using a neutral parameter, the email address hashed by cryptological one-way function. The e-mail address is converted into this hash value, which cannot be decrypted by Trusted Shops, before it is transmitted. After checking for a match, the parameter is automatically deleted.

This is necessary for the fulfilment of our and Trusted Shops' overriding legitimate interests in the provision of the buyer protection linked to the specific order in each case and the transactional evaluation services in accordance with Art. 6 para. 1 p. 1 lit. f DSGVO. Further details, including objections, can be found in the Trusted Shops privacy policy linked above and in the Trustbadge.

6 Cookies and web analysis

In order to make the visit to our website attractive and to enable the use of certain functions, to display suitable products or for market research, we use so-called cookies on various pages. This serves to protect our legitimate interests in an optimised presentation of our offer in accordance with Art. 6 Para. 1 S. 1 lit. f DSGVO. Cookies are small text files that are automatically stored on your terminal device. Some of the cookies we use are deleted at the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your end device and enable us to recognise your browser on your next visit (persistent cookies). You can find out how long they are stored in the overview in the cookie settings of your web browser. You can set your browser in such a way that you are informed about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find this for each browser under the following links:
Internet Explorer™: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Safari™: https://support.apple.com/de-de/guide/safari/sfri11471/12.0/mac/10.14
Chrome™: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en
Firefox™ https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Opera™ : https://help.opera.com/de/latest/web-preferences/#cookies

If cookies are not accepted, the functionality of our website may be limited.

Use of Google (Universal) Analytics for web analysis
Insofar as you have given your consent in accordance with Art. 6 (1) p. 1 lit. a DSGVO, this website uses Google (Universal) Analytics for the purpose of website analysis. The web analytics service is provided by Google Ireland Limited, a company incorporated and operated under the laws of Ireland, with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. (www.google.de). Google (Universal) Analytics uses methods that enable an analysis of your use of the website, such as cookies. The information automatically collected about your use of this website is generally transferred to a Google server in the USA and stored there. By activating IP anonymisation on this website, the IP address is shortened before transmission within the Member States of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The anonymised IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. After the end of the purpose and the end of the use of Google Analytics by us, the data collected in this context will be deleted.

Insofar as information is transferred to Google servers in the USA and stored there, the American company Google LLC is certified under the EU-US Privacy Shield. A current certificate can be viewed here. Based on this agreement between the USA and the European Commission, the latter has determined an adequate level of data protection for companies certified under the Privacy Shield.

You can revoke your consent at any time with effect for the future by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de. This will prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google.

As an alternative to the browser plugin, you can click this link to prevent the collection by Google Analytics on this website in the future. This will place an opt-out cookie on your terminal device. If you delete your cookies, you will be asked again to give your consent.

7. online marketing

Google Ads Remarketing
We use Google Ads to advertise this website in Google search results and on third-party websites. For this purpose, the so-called remarketing cookie is set by Google when you visit our website, which automatically enables interest-based advertising by means of a pseudonymous CookieID and on the basis of the pages you have visited. This serves to protect our legitimate interests in optimal marketing of our website, which outweigh our interests in the context of a balancing of interests in accordance with Art. 6 para. 1 p. 1 lit. f DSGVO. After the end of the purpose and the end of the use of Google Ads Remarketing by us, the data collected in this context will be deleted.

Further data processing will only take place if you have consented to Google linking your web and app browsing history to your Google Account and using information from your Google Account to personalise the ads you see on the web. In this case, if they are logged into Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, your personal data will be temporarily linked by Google with Google Analytics data in order to form target groups.

Google Ads is an offering of Google Ireland Limited, a company incorporated and operated under the laws of Ireland with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.de).
Insofar as information is transferred to Google servers in the USA and stored there, the American company Google LLC is certified under the EU-US Privacy Shield.
A current certificate can be viewed here. Based on this agreement between the USA and the European Commission, the latter has determined an adequate level of data protection for companies certified under the Privacy Shield.

You can deactivate the remarketing cookie via this link. In addition, you can obtain information from the Digital Advertising Alliance about the setting of cookies and make settings in this regard.

Our online presence on Facebook, Google, Instagram
Our presence on social networks and platforms serves to improve active communication with our customers and interested parties. We provide information there about our products and ongoing special promotions.
When visiting our online presences on social media, your data may be automatically collected and stored for market research and advertising purposes. So-called usage profiles are created from this data using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that presumably correspond to your interests. Cookies are generally used on your terminal device for this purpose. Visitor behaviour and user interests are stored in these cookies. This serves according to Art. 6 Para. 1 lit. f. DSGVO, this serves to protect our legitimate interests in an optimised presentation of our offer and effective communication with customers and interested parties, which prevail in the context of a balancing of interests. If you are asked by the respective social media platform operators for consent (agreement) to data processing, e.g. by means of a checkbox, the legal basis for data processing is Art. 6 (1) lit. a DSGVO.
Insofar as the aforementioned social media platforms have their headquarters in the USA, the following applies: For the USA, there is an adequacy decision of the European Commission. This goes back to the EU-US Privacy Shield. A current certificate for the respective company can be viewed here.
For detailed information on the processing and use of data by the providers on their sites, as well as a contact option and your rights and setting options in this regard to protect your privacy, in particular opt-out options, please refer to the data protection notices of the providers linked below. Should you still require assistance in this regard, you can contact us.
Facebook: https://www.facebook.com/about/privacy/

Data processing is carried out on the basis of an agreement between jointly responsible parties pursuant to Art. 26 DSGVO, which you can view here:
https://www.facebook.com/legal/terms/page_controller_addendum

Google/ YouTube: https://policies.google.com/privacy
Instagram: https://help.instagram.com/519522125107875

Possibility to object (opt-out):
Facebook: https://www.facebook.com/settings?tab=ads
Google/ YouTube: https://adssettings.google.com/authenticated
Instagram: https://help.instagram.com/519522125107875

8. contact options and your rights

As a data subject, you have the following rights:

    Pursuant to Art. 15 DSGVO, the right to request information about your personal data processed by us to the extent specified therein;

    pursuant to Art. 16 DSGVO, the right to demand the correction of incorrect or incomplete personal data stored by us without delay;

    in accordance with Article 17 of the GDPR, the right to request the erasure of your personal data stored by us, unless further processing is necessary for the exercise of the right to freedom of expression.
    - for the exercise of the right to freedom of expression and information;
    - to comply with a legal obligation;
    - for reasons of public interest; or
    - for the assertion, exercise or defence of legal claims; or
    is necessary;

    in accordance with Art. 18 DSGVO, the right to request the restriction of the processing of your personal data, insofar as
    - the accuracy of the data is disputed by you;
    - the processing is unlawful, but you object to its erasure;
    - we no longer need the data, but you need them to assert, exercise or defend legal claims, or
    - you have objected to the processing in accordance with Art. 21 DSGVO;

    pursuant to Art. 20 DSGVO, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller;

    pursuant to Art. 77 DSGVO, the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.

If you have any questions regarding the collection, processing or use of your personal data, for information, correction, restriction or deletion of data, as well as revocation of consent given or objection to a particular use of data, please contact us directly using the contact details in our imprint.

Data protection officer:
Peter Lasthaus
Justus-von-Liebig-Str. 7-9
28832 Achim
04202/9697-0
info@carbox.de

 


Right of objection
Insofar as we process personal data as explained above in order to protect our legitimate interests which prevail within the framework of a balance of interests, you may object to this processing with effect for the future. If the processing is carried out for direct marketing purposes, you can exercise this right at any time as described above. If the processing is carried out for other purposes, you only have the right to object on grounds relating to your particular situation.

After you have exercised your right to object, we will no longer process your personal data for these purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.

This does not apply if the processing is for direct marketing purposes. Then we will not further process your personal data for this purpose.

Carbox. Everything fits.
© 2024 Carbox