I. Data Privacy Policy for website.
As of: 10/2021
We process personal data (hereinafter referred to as ‘data’) of users only to the extent necessary to provide a functional and convenient website and our content and services.
‘Processing’ refers to the collection, use, disclosure and/or storage of data. According to the EU General Data Protection Regulation (hereinafter referred to as ‘GDPR’), ‘personal data’ generally refers to all data that can be used to identify a natural person. The precise definitions of the terms are set out in Art. 4 GDPR.
The following statements inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, the purposes and means of processing of which we decide alone or together with others, as well as about the third-party components we may use for optimization and quality of use, which process data on their own responsibility:
A. Information on the responsible
B. Rights of the user
C. Information on data processing
A. Information on the responsible
The responsible (hereinafter ‘provider’) within the meaning of the GDPR and other national data protection laws of the member states as well as other data protection regulations is:
Hans & Jos. Kronenberg GmbH
Kurt-Schumacher-Straße 1
D-51427 Bergisch Gladbach
T: +49 2204 / 207-0
E: datenschutz@kronenberg-gmbh.de
B. Rights of the user
With regard to the processing of his/her personal data as described below by the provider, the user has the right to
1. to obtain confirmation as to whether or not personal data concerning him or her is being processed and to obtain precise information about this data as well as further information and copies of the data in accordance with Art. 15 GDPR;
2. to demand the immediate correction of incorrect data concerning him/her or the completion of this data in accordance with Art. 16 GDPR;
3. to demand that the data concerning him/her be deleted immediately in accordance with Art. 17 GDPR, alternatively, if, for example, further processing is necessary in accordance with Art. 17 para. 3 GDPR, to demand a restriction on the processing of the data in accordance with Art. 18 GDPR;
4. to receive the data concerning him/her and provided by him/her in accordance with Art. 20 GDPR and to request its transmission to other responsible;
5. to lodge a complaint with the supervisory authority in accordance with Art. 77 GDPR if the user is of the opinion that the processing of his/her data by the provider violates the GDPR.
6. The user may, in principle, object at any time to the future processing of data concerning him/her by a responsible on the basis of Art. 6 para. 1 lit. f GDPR in accordance with Art. 21 GDPR. The objection may be made in particular against processing for direct advertising purposes.
7. The provider is also obliged to inform all recipients of the data to whom the data has been disclosed of any rectification or erasure of personal data or restriction of processing carried out on the basis of Article 16 GDPR, Article 17(1) GDPR and Article 18 GDPR. The obligation does not apply in the event that this notification proves impossible or involves a disproportionate effort. The user has the right to information about these recipients.
C. Information on data processing
Insofar as no detailed information is provided below on the individual data processing operations, the user’s data processed by the provider will be deleted or blocked as soon as the purpose of the storage no longer applies and the deletion does not conflict with any statutory retention obligations.
Server data
For communication and security reasons, the following data, which the user’s Internet browser transmits to the provider or its web space provider, is collected during the visit to the website (so-called server log files):
– Browser type and version;
– Operating system used;
– Website from which the user has switched to the provider’s website (referrer URL);
– Website visited by the user;
– Date and time of access;
– Internet Protocol (IP) address of the user.
The data is also stored temporarily. This data is not stored together with other personal data of the user. The legal basis for the temporary storage is Art. 6 para. 1 lit. f GDPR based on the legitimate interest in improving the stability, functionality and security of the website.
The data is deleted after seven days at the latest. Data whose further storage is required for evidentiary purposes is excluded from erasure until the respective incident has been finally clarified.
Cookies
a) Cookies
The provider uses so-called cookies on its website. Cookies are small text files or other storage technologies that the Internet browser used by the user stores and saves on the end device. These cookies process certain information of the user to an individual extent, such as browser and location data and IP address values.
Their use allows the provider to make its website more user-friendly, effective and secure.
The ‘persistent’ cookies allow the website to recognize the user via his/her browser when they visit the website again in the near future so that the user’s settings relating to cookies are not displayed or queried again.
The processing serves the legitimate interest of the provider in improving the functionality of the website as well as the fulfilment of legal requirements and is based on the legal basis of Art. 6 para. 1 lit. f GDPR.
The ‘session’ cookies are deleted when the user closes his/her browser. The ‘persistent’ cookies are automatically deleted after 12 months.
b) Cookies from third-party providers
Third-party cookies may also be used on the provider’s website. These third-party providers are partner companies with which the provider cooperates for the purpose of advertising, analyzing or the functionalities of the website. If this is the case, the purposes and legal bases of the corresponding processing are set out below.
c) Removal option
The user can prevent or restrict the installation of cookies by changing the browser settings accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented by the browser settings, but by the corresponding setting in the Flash player. If the user prevents or restricts the installation of cookies, this may mean that not all functions of the website can be used to their full extent.
| Cookie | Type | Duration | Description |
|---|---|---|---|
| _ga | 2 years | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | |
| _gid | 1 day | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. | |
| cookielawinfo_checbox_analytics | 0 | 11 months | This cookie is used to store the user’s consent for the cookies in the ‘Analytics’ category. |
| cookielawinfo_checkbox_functional | 0 | 11 months | The cookie is set by GDPR Cookie Consent to store the user’s consent for the cookies in the ‘Functional’ category. |
| cookielawinfo_checkbox_necessary | 0 | 11 months | This cookie is used to store the user’s consent for the cookies in the ‘Necessary’ category. |
| cookielawinfo_checkbox_performance | 0 | 11 months | This cookie is set by the GDPR Cookie Consent plugin. The cookie is used to store the user’s consent for the cookies in the ‘Performance’ category. |
| cookielawinfo-checkbox-other | 0 | 11 months | This cookie is set by the GDPR Cookie Consent Plugin. The cookie is used to store the user’s consent for the cookies in the ‘Other’ category. |
| Pll_language | 6 months | This cookie is used to set the language of the website. | |
| viewed_cookie_policy | 0 | 11 months | This cookie is used to check whether the user has consented to the use of cookies or not. It does not store any personal data. |
Cookie Manager
The provider uses a cookie manager to obtain consent for the use of technically unnecessary cookies on the website.
When the website is accessed, a cookie with the settings information is stored on the user’s end device so that the request for consent does not have to be made on a subsequent visit. This cookie has a lifespan of one month.
The cookie is required to obtain the user’s legally compliant consent.
The user can prevent or stop the installation of cookies by changing the settings in his/her browser. More on this above under ‘Cookies’.
Contact enquiries/returns form
If the user contacts us, e.g. by email, voice message or returns form, the personal data provided by the user on this occasion will be used to process the enquiry.
If the contact request serves the fulfilment of a contract or the implementation of pre-contractual measures, the legal basis is Art. 6 para. 1 lit. b GDPR.
The user’s data will be deleted if the user’s enquiry has been conclusively answered and there are no statutory retention obligations to the contrary, e.g. in the case of subsequent contract processing.
The legal basis may also be the user’s consent in accordance with Art. 6 para. 1 lit. a GDPR.
The user can revoke consent given for the contact enquiry at any time by notifying the provider in accordance with Art. 7 para. 3 GDPR. The data processed in this context will be deleted as soon as its processing is no longer necessary.
Direct advertising
The provider reserves the right to use the data collected on the occasion of an order for direct advertising by e-mail or post in accordance with § 7 para. 3 UWG if the user does not object to this use. The direct advertising only includes offers for similar products or services, such as the products or services already purchased by the user from the provider. The legal basis in this case is Art. 6 para. 1 lit. f GDPR. The provider’s legitimate interest lies in the economic interest of sales and improving its services.
Newsletter
If the user registers for the provider’s free newsletter, the data requested in the input mask (E-Mail-Address) will be transmitted to the provider. In addition, the IP address and the date and time of registration are stored. As part of the registration process, the user’s consent is obtained and the content is specifically described. At the same time, reference is made to this privacy policy. The data collected in this way is used exclusively for the purpose of receiving the newsletter. It will not be passed on to third parties
The legal basis is Art. 6 para. 1 lit. a GDPR. The user can revoke his/her consent to this at any time for the future in accordance with Art. 7 para. 3 GDPR by sending a message to the provider or using the unsubscribe link contained in the newsletter.
Job applications
In the case of job applications, the application data is collected and processed electronically by the provider for the purpose of handling the application process. This also includes forwarding the applicant profile to the third party named in the job offer if the provider advertises the position for a partner company.
The legal basis for the processing is § 26 para. 1 sentence 1 BDSG in conjunction with Art. 88 (1) GDPR.
If your application is followed by the conclusion of an employment contract, the transmitted data may be stored in the personnel file for the purpose of the usual organizational and administrative process, in compliance with the relevant legal regulations.
The legal basis for the processing is § 26 para. 1 sentence 1 BDSG in conjunction with Art. 88 para. 1 GDPR.
If the job application is rejected, the transmitted data will be deleted automatically two months after notification of the rejection. This does not apply if a longer storage period of up to four months or the conclusion of legal proceedings is required due to legal requirements (burden of proof under the General Equal Treatment Act, AGG).
The legal basis for this is Art. 6 para. 1 lit. f GDPR or § 24 para. 1 no. 2 BDSG.
The provider has a legitimate interest in legal defence.
If you have expressly consented to your data being stored for a longer period in a database of interested parties, the data will continue to be processed on the basis of your consent and will be deleted after 12 months at the latest.
The legal basis is Art. 6 para. 1 lit. a GDPR. Consent to this can be revoked at any time for the future in accordance with Art. 7 para. 3 GDPR by notifying the provider.
Google Tag Manager
The provider uses Google Tag Manager to integrate various functions on the website. Google Tag Manager is a product of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’. The sole function of the Google Tag Manager is to upload certain content to the provider’s website and to enable the provider to manage these functions on an interface provided by Google. When the website is accessed, the functions are therefore loaded from a Google server, which may also be located in the USA. The server must process the user’s IP address in order to transmit the functions. The corresponding functions are listed conclusively in the provider’s privacy policy. Any consents not granted by the user for these functions are also observed when using Google Tag Manager.
However, in the opinion of the data protection supervisory authorities, the USA does not currently have an adequate level of data protection. However, there are so-called standard contractual clauses between the provider and Google:
https://privacy.google.com/businesses/compliance/#!#gdpr
However, these are agreements under private law and therefore have no direct effect on the access options of the authorities in the USA.
Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’.
Google Analytics is used by the provider to analyze the use of the website. The legal basis for this is Art. 6 para. 1 lit. a GDPR. The user can revoke his/her consent to this at any time for the future in accordance with Art. 7 para. 3 GDPR by changing the cookie settings on the website.
Information such as the time, place and frequency of the user’s website visit, including his/her IP address, is transferred to a Google server in the USA and stored there.
However, in the opinion of the data protection supervisory authorities, the USA does not currently have an adequate level of data protection. However, there are so-called standard contractual clauses between the provider and Google:
https://privacy.google.com/businesses/compliance/#!#gdpr
However, these are agreements under private law and therefore have no direct impact on the access options of the authorities in the USA.
The provider uses Google Analytics with an anonymization function. In this case, this addition means that the IP address is already truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area.
Google will use the data collected in this way to analyze the user’s visit to the website and to compile reports on website activity for the provider. The data is also used to provide other services associated with the use of the website and the internet. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.
Google states that it will not associate the user’s IP address with any other data held by Google. Google offers further information, in particular on the options for preventing the use of data, at the following link:
https://www.google.com/intl/de/policies/privacy/partners
Google also offers a deactivation add-on for the most common browsers, which gives the user more control over what data Google collects about the website accessed by the user. The add-on informs the JavaScript (ga.js) of Google Analytics that no information about the website visit should be transmitted to Google Analytics. However, the deactivation add-on for browsers from Google Analytics does not prevent information from being transmitted to the provider or to other web analysis services that may be used by the provider and listed in this privacy policy. Further information on installing the browser add-on can be found at the following link:
Browser add-on to deactivate Google Analytics
YouTube
The provider uses a tool from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’, on the website to display video sequences.
The legal basis for this is Art. 6 para. 1 lit. a GDPR. The user can revoke his/her consent to this at any time for the future in accordance with Art. 7 para. 3 GDPR by changing the cookie settings on the website. The provider uses YouTube with the ‘extended data protection mode’ option offered by YouTube.
If the user visits a page that has an embedded video, a connection to the Google servers in the USA is established and the content is displayed on the website by notifying the user’s browser. For this purpose, Google processes at least the IP address, the date, the time and the page visited by the user. This also leads to a connection being established with the Google Double-Click advertising network. If the user is logged in to YouTube at the same time, the connection information is assigned to the user’s YouTube member account.
However, in the opinion of the data protection supervisory authorities, the USA does not currently have an adequate level of data protection. However, there are so-called standard contractual clauses between the provider and Google:
https://privacy.google.com/businesses/compliance/#!#gdpr
However, these are agreements under private law and therefore have no direct effect on the access options of the authorities in the USA.
According to Google, no information about users is stored on the website in ‘extended data protection mode’ unless they watch the embedded video.
If the user wants to prevent Google from assigning the collected information directly to his/her user account, the user must log out of YouTube before visiting the website. It is also possible to configure the user account accordingly.
Google also uses persistent cookies for functionality and analysis purposes.
If the user does not agree to this processing, it is possible to prevent the installation of cookies by setting the browser accordingly. More information on this can be found above under ‘Cookies’.
Further information on the collection and use of data by Google and on the rights and options for protecting the user’s privacy in this regard can be found in Google’s privacy policy:
https://policies.google.com/privacy
Google Fonts
To display the font on the website, the provider uses external fonts in the form of ‘Google Fonts’, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter ‘Google’.
When the provider’s website is accessed, a connection to the Google server is established to enable the font to be displayed or updated.
The legal basis for this is Art. 6 para. 1 lit. f GDPR. The provider’s legitimate interest lies in the optimization and economic operation of the website.
Through the connection, Google can recognize from which website a request is sent and to which IP address the display of the font is transmitted.
Google offers further information, in particular on the options for preventing the use of data, under the following links:
https://policies.google.com/privacy
https://adssettings.google.com/authenticated.
The legal basis for this is Art. 6 para. 1 lit. a GDPR. The user can revoke his/her consent to this at any time for the future in accordance with Art. 7 para. 3 GDPR by changing the cookie settings on the website. The provider uses YouTube with the ‘extended data protection mode’ option offered by YouTube.
If the user visits a page that has an embedded video, a connection to the Google servers in the USA is established and the content is displayed on the website by notifying the user’s browser. For this purpose, Google processes at least the IP address, the date, the time and the page visited by the user. This also leads to a connection being established with the Google Double-Click advertising network. If the user is logged in to YouTube at the same time, the connection information is assigned to the user’s YouTube member account.
However, in the opinion of the data protection supervisory authorities, the USA does not currently have an adequate level of data protection. However, there are so-called standard contractual clauses between the provider and Google:
https://privacy.google.com/businesses/compliance/#!#gdpr
However, these are agreements under private law and therefore have no direct impact on the access options of the authorities in the USA.
According to Google, no information about users is stored on the website in ‘extended data protection mode’ unless they watch the embedded video.
If the user wants to prevent Google from assigning the collected information directly to his/her user account, the user must log out of YouTube before visiting the website. It is also possible to configure the user account accordingly.
Google also uses persistent cookies for functionality and analysis purposes.
If the user does not agree to this processing, it is possible to prevent the installation of cookies by setting the browser accordingly. More information on this can be found above under ‘Cookies’.
Further information on the collection and use of data by Google and on the rights and options for protecting the user’s privacy in this regard can be found in Google’s privacy policy:
https://policies.google.com/privacy
The ‘Google Maps’ component of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’, is used to display the route to the registered office of the provider and its distributors.
When the ‘Google Maps’ component is used to display the map, a connection is established to a Google server to display the map. The connection allows Google to recognize the website from which a request is sent and the IP address to which the display is transmitted.
It cannot be excluded that external Google servers in the USA will be used.
The legal basis for this is Art. 6 para. 1 lit. a GDPR. The user can revoke his/her consent to this at any time for the future in accordance with Art. 7 para. 3 GDPR by changing the cookie settings on the website. It is possible to terminate the Google Maps service by deactivating JavaScript in the browser.
Please note that the map display will no longer be usable in this case.
However, in the opinion of the data protection supervisory authorities, the USA does not currently have an adequate level of data protection. However, there are so-called standard contractual clauses between the provider and Google:
https://privacy.google.com/businesses/compliance/#!#gdpr
However, these are agreements under private law and therefore have no direct impact on the access options of the authorities in the USA.
The use of ‘Google Maps’ and the information obtained via ‘Google Maps’ is subject to the Google Terms of Use and the additional terms and conditions for Google Maps.
Google offers further information, in particular on the options for preventing the use of data, under the following links:
https://policies.google.com/privacy
BootstrapCDN
The provider uses the BootstrapCDN (Content Delivery Network) service for the speed, design and presentation of the content offered on different end devices.
BootstrapCDN is an ‘open source CDN’ project of Prospect One Sp. z o.o., Ul. Krolewska 65A 1, 30-081 Krakow, Poland.
The service uses so-called libraries (collections of technical instructions) to deliver the content quickly. For this purpose, corresponding files are downloaded from the BootstrapCDN server or servers of co-operation partners. As a result, the server records the user’s IP address.
Further information on data protection from Prospect One:
https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net
The legal basis for this is Art. 6 para. 1 lit. f GDPR. The legitimate interest of the provider is to improve the quality of use and the loading speed of the website.
To prevent the execution of the JavaScript code altogether, the user can install a JavaScript blocker (e.g. www.ghostery.com). If the user prevents or restricts the execution of the JavaScript code, this may mean that not all functions of the website can be used to their full extent.
Integration of social media
The provider uses a link on the website to the social networks listed below.
The legal basis for this is Art. 6 para. 1 lit. f GDPR. The provider has a legitimate interest in improving the quality of use of the website.
The plugins are integrated via a linked graphic. Only by clicking on the corresponding graphic is the user redirected to the service of the respective social network.
Once the customer has been redirected, the respective network collects information about the user. This is initially data such as IP address, date, time and page visited. If the user is logged into his/her user account on the respective network during this time, the network operator may be able to assign the information collected about the user’s specific visit to the user’s personal account. If the user interacts via a ‘Share’ button of the respective network, this information can be stored in the user’s personal user account and published if necessary. If the user wants to prevent the collected information from being directly assigned to his/her user account, the user must log out before clicking on the graphic. It is also possible to configure the respective user account accordingly.
The following social networks are linked by the provider:
YouTube
Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA. Operator within the EU: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Privacy policy: https://policies.google.com/privacy?hl=de
LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085 USA. Operator within the EU: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
Privacy policy: https://www.linkedin.com/legal/privacy-policy
New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.
Privacy policy: https://privacy.xing.com/de/datenschutzerklaerung
Facebook Ireland
Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
Privacy policy: https://www.facebook.com/policy.php
II. Privacy policy for social media.
As of: 10/ 2021
We use social media platforms to advertise our products and services and to communicate with interested parties or customers.
The following statements inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data when you visit one of our company presentations on a social media platform or contact us via this platform.
‘Processing’ means the collection, use, disclosure and/or storage. According to the General Data Protection Regulation (hereinafter ‘GDPR’), ‘personal data’ generally refers to all data that can be used to identify a natural person. The precise definitions of the terms are set out in Art. 4 GDPR.
A. Information on the joint responsible
B. Rights of the user
C. Information on data processing
A. Information on the joint responsible
For all social media platforms mentioned below:
Hans & Jos. Kronenberg GmbH
Kurt-Schumacher-Straße 1
D-51427 Bergisch Gladbach
T: +49 2204/ 207-0
E: datenschutz@kronenberg-gmbh.de
– hereinafter referred to as ‘provider’ – jointly responsible with the platform operator named below within the meaning of Art. 26 GDPR.
On the social media platform ‘facebook’, the provider is jointly responsible with
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland
The data protection officer of facebook can be reached via a contact form:
https://www.facebook.com/help/contact/540977946302970
The joint responsible have regulated the respective obligations under the GDPR in an agreement. This agreement is available at the following link
https://de-de.facebook.com/legal/controller_addendum
B. Rights of the user
Regardless of the details of the agreement, you can assert your rights under the GDPR with and against each of the responsible.
The user has the right in relation to the processing of his/her personal data as described below by the responsible to
1. to obtain confirmation as to whether or not personal data concerning him or her is being processed and to obtain precise information about this data as well as further information and copies of the data in accordance with Art. 15 GDPR;
2. to demand the immediate correction of incorrect data concerning him/her or the completion of this data in accordance with Art. 16 GDPR;
3. to demand that the data concerning him/her be deleted immediately in accordance with Art. 17 GDPR, or alternatively, if, for example, further processing is required in accordance with Art. 17 para. 3 GDPR, to demand a restriction on the processing of the data in accordance with Art. 18 GDPR;
4. to receive the data concerning him/her and provided by him/her in accordance with Art. 20 GDPR and the further right to request its transmission to other responsible;
5. to lodge a complaint with the supervisory authority pursuant to Art. 77 GDPR if the user is of the opinion that the processing of his/her data by a provider violates the GDPR.
6. The user may, in principle, object at any time to the future processing of data concerning him/her by a responsible on the basis of Art. 6 para. 1 lit. f GDPR in accordance with Art. 21 GDPR. The objection may be made in particular against processing for direct advertising purposes.
7. The responsible is also obliged to communicate any rectification or erasure of personal data or restriction of processing carried out on the basis of Article 16 GDPR, Article 17 para.1 GDPR and Article 18 GDPR to each recipient to whom the personal data have been disclosed. The obligation does not apply in the event that this notification proves impossible or involves a disproportionate effort. The user has the right to information about these recipients.
C. Information on data processing
The provider operates a company presence on the following platform(s) to advertise its products and services and to communicate with interested parties or customers.
The legal basis for the processing of personal data that takes place as a result and is described below for each platform is Art. 6 para. 1 lit. f GDPR. The provider has a legitimate interest in analyzing, communicating, selling and advertising its products and services.
The legal basis may also be the user’s consent to the platform operator in accordance with Art. 6 para. 1 lit. a GDPR. The user can revoke this consent for the future at any time by notifying the platform operator in accordance with Art. 7 para. 3 GDPR.
When the provider’s online presence is accessed on the facebook platform, user data (e.g. personal information, IP address, etc.) is processed by Facebook Ireland Ltd. as the operator of the platforms in the EU. This user data is used by the provider for statistical information about the utilization of its company presence on ‘facebook’.
Facebook Ireland Ltd. uses this data in particular for market research and advertising purposes and to create user profiles. Using these profiles, Facebook Ireland Ltd. is able, for example, to advertise users within and outside of ‘facebook’ based on his/her interests. If the user is logged into his/her account on ‘facebook’ at the time of access, Facebook Ireland Ltd. can also link the data to the respective user account.
If the user contacts the provider via ‘facebook’, the user’s personal data entered on this occasion will be used to process the enquiry. The user’s data will be deleted by the provider if the user’s enquiry has been conclusively answered and there are no legal obligations to retain the data, e.g. in the case of subsequent contract processing.
Facebook Ireland Ltd. may also set cookies to process the data.
If the user does not agree to this processing, it is possible to prevent the installation of cookies by setting the browser accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented via the browser settings, but by the corresponding setting of the Flash player. If the user prevents or restricts the installation of cookies, this may mean that not all functions of facebook can be used to their full extent.
Further information on the processing activities, their prevention and the deletion of the data processed by Facebook Ireland Ltd. can be found in the ‘facebook’ data policy: