RGPD

RGPD

Data Policy

Trust is the foundation of our company. Heitz System believes that the trust of our customers in the protection of company and personal data (data protection) is invaluable. Heitz System therefore complies with all data protection laws and constantly strives to improve data protection.
This data protection policy informs you about the processing of your personal data in connection with the website https://www.heitzsystem.com.

1. Data controller

Heitz System is responsible for the processing of your personal data.

What are personal data?

Personal information is information that relates to an identified or identifiable natural person, such as your name, e-mail address, telephone number, mailing address or the IP address of your computer.

3. What personal data is processed?

3.1 Data you have entered

If you conclude contracts with us, fill in registration fields or give us your consent, we process the personal data you have provided us with, in particular the data defined in section 2.

3.2 Automatically stored data

In order to provide you with the information you need on our website, we also process the following data:

  • The address of the page you are visiting on our website.
  • The address of the website you visited immediately before (the "close")
  • The date and time of your visit
  • The properties of your device, in particular the operating system, the browser used and the size of your browser window.
  • The IP address of your device
  • The identification numbers we store on your device. With this identification number, we can recognize your device on the website.

Technically, these identification numbers are stored in cookies or eTags.

  • Device IDs that consist of the individual features of your mobile device. Based on these device IDs, we can also recognise your device on the website. Examples of such device identifiers are as follows
  • The "Ad-ID" of the Apple iOS operating system
  • The "advertising ID" of the Android operating system

4. When do we process your data?

4.1 Conclusion of Contracts

We process your personal data when you create your personal user account, when you order products via our website or when you subscribe to our newsletter. Unless otherwise stated in the following provisions, the legal basis for this data processing is Art. 6 Para. 1 b) GDPR (performance of contract).

4.2 Operation of the website

On the other hand, we process your personal data in order to be able to offer you the best products, offers and content tailored to your needs on https://www.heitzsystem.com and to make your visit to our site as informative and enjoyable as possible. Unless otherwise stated in the following provisions, the legal basis for this data processing is Art. 6 Para. 1 f) GDPR (balancing of interests, based on our interest in offering you the most attractive website possible).

5. Purpose of data processing

5.1 Newsletter / Newsletter

We offer all users of our community (users of https://www.heitzsystem.com) the possibility to receive newsletters or newsletters. To register, the user can register with his e-mail address on the registration page. Subsequently, the user receives an activation link to the specified e-mail address, which the user must visit to complete the registration. In this way, the user agrees to receive the newsletter. (double opt-in procedure)

The user may revoke his consent at any time and without giving reasons. The easiest way is to click on the "Unsubscribe" link, which is included in every newsletter. The legal basis for this process described above is Article 6, paragraph 1. 1 a) GDPR (consent).

5.2 Contact via the form

If you send us enquiries using the contact form, we will process the information you provide, including your contact details, in order to deal with the enquiry. In the event of further enquiries, this data will also be stored by us. The legal basis for this is Art. 6 Art. 1 b) GDPR (contract execution - processing of user data is necessary for the execution of the contract in order to answer your questions or requests) or Art. 6 Para. 1 f) GDPR (balancing of interests - depending on our interest in dealing with the requests of the users of our website).

6. Tracking tools for website analysis

6.1 In general

We would like to design our websites in the best possible way. This is why we use "tracking" tools to technically improve our web offers. Tracking tools allow us to measure the use of our web offers. In particular, we use tracking tools to collect the following information:

  • What links do online users click on from other websites to reach https://www.heitzsystem.com?
  • Which of our pages are visited when, how often and in what order?
  • What information do users look for on our website?
  • What links or offers do users of our website click on?
  • From this information, we compile statistics that help us understand the following issues:
  • Which pages are particularly attractive to users of our website?
  • Which articles are of most interest to our users?
  • What services should we offer our users?

In particular, we use the automatically collected data mentioned in section 3.2 above. The data is only stored under a pseudonym. The legal basis for this is your consent within the meaning of Art. 6 para. 1 a) GDPR and Art. 6 para. 1 f) GDPR (balancing of interests, based on our interest in adapting the website as well as possible to the interests and needs of users).

6.2 Google analytics

This website uses Google Analytics, a web analysis service of Google Inc. ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website will be transferred to a Google server in the USA and stored there. However, if the anonymisation of intellectual property is activated on this website, Google will first reduce your IP address in the Member States of the European Union or in other countries that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there. Google will use this information on behalf of the website operator to evaluate your use of the website, to compile reports on website activity and to provide the website operator with further services relating to the use of the website and the Internet.

The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

You may refuse the use of cookies by selecting the appropriate settings on your browser, but please note that if you do so, you may not be able to use the full functionality of this website. You may also prevent Google from collecting the information generated by the cookie about your use of the website (including your IP address) and from processing this information by Google by downloading and installing the browser plug-in available under the following link (http://tools.google.com/dlpage/gaoptout?hl=fr).

This website uses Google Analytics. Consequently, IP addresses are processed in abbreviated form, so that a personal relationship can be excluded. Insofar as the data collected about you is personal data, it will be immediately excluded and the personal data will be immediately deleted.

We use Google Analytics to analyse and improve the use of our website on a regular basis. We can improve our offer and make it more interesting for you as a user. For exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacy-shield.gov/EU-US-Framework. Your data will be processed within the framework of Google Analytics in order to protect the legitimate interests of Intervox.

Objection to data collection
You can prevent the collection and transmission of data relating to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=fr.

6.3 Google Adwords / Remarketing

We also use the remarketing feature in Google AdWords of Google Inc, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). The remarketing function allows Heitz System to present ads according to the interests of the users of the site on other sites in the Google advertising network (i.e. on Google itself, the so-called "Google ads" or on other sites). For this purpose, user interaction on our website is analysed, in particular that which offers the user who was interested, in order to be able to display targeted advertising to users even after visiting our website on other pages. To do this, Google stores cookies in the browsers of users who visit certain Google services or websites in the Google display network. The visits of these users are recorded via this cookie. This number is used to uniquely identify a web browser on a particular computer and not to identify a person; personal data is not stored. The user can oppose the registration of cookies by configuring his browser software. The user can also deactivate the use of cookies by Google by following the following link and installing the plug-in provided for this purpose: www.google.com/settings/ads/plugin. For more information on Google Adwords and Google's privacy policy, please visit: www.google.com/privacy/ads.

Data processing
We have entered into a contract with Google for data processing, agreed with the French data protection authorities. Google Adwords / Conversion Tracking

In addition, we also use Google AdWords conversion tracking from Google Inc, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). When you click on a Google ad, a conversion tracking cookie is placed on your computer. These cookies expire after 30 days, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and Heitz System can recognize that you have clicked on the ad and been redirected to this page. Each Google AdWords client receives a different cookie. Therefore, cookies cannot be tracked on the websites of AdWords clients. The information collected using the conversion cookie is used to generate conversion statistics for AdWords clients who have opted to track conversions. Adwords clients see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that personally identifies users. The user can oppose the registration of cookies by configuring his browser software. The user can also disable the use of cookies by Google by following the following link and installing the plug-in provided for this purpose: www.google.com/settings/ads/plugin. For more information on Google Adwords and Google's privacy policy, please visit: www.google.com/privacy/ads.

6.4. Doubleclick by Google

In case we have to use Doubleclick by Google. Doubleclick by Google is a service of Google Inc, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google"). Doubleclick by Google is designed to present ads that are relevant to you. These ads appear on our site and on third-party sites that also work with Google.
Our website stores a "cookie" with a pseudonymous identification number (ID) in your browser for Google. Google uses this cookie to recognize your browser when you visit our website (or other websites whose providers also use double-click by Google). In this way, Google tries to collect the following information :

  • What web pages have you visited?
  • Which Google ads have been posted?
  • Which one of these ads did you click on?

Based on this information, Google selects the ads that Google shows you. You can manage the display of such ads by Google here. For more information about Google advertising, click here. For more information about Google's privacy practices, click here.
Google operates its servers in the United States, which is a third country outside the EU. Google's DoubleClick service transmits your data to those servers. The European Commission has not yet decided that the US generally provides an adequate level of protection. However, Google has adopted the EU-US privacy framework, which provides appropriate and reasonable safeguards. For more information, please click here.
The legal basis for Google's integration of Double-click described in this section is Art. 6 para. 1 f) GDPR (balancing of interests, based on our interest in marketing the website for advertising purposes). Google collects and processes the resulting data on its own responsibility.

6.5. Facebook plugins

We also use the features of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. By clicking on the corresponding Facebook plug-in, a connection is established between your browser and the Facebook servers. You can therefore use the various functionalities of Facebook. The legal basis for this is Art. 6 Para. 1 b) GDPR (contract execution and pre-contractual measures). By clicking on the Facebook plug-in, you transfer the data from your browser to Facebook in the USA. At present, the European Commission has not decided that the US generally offers an adequate level of data protection. However, Facebook is committed to respecting the EU-US Privacy Shield Agreement issued by the US Department of Commerce on the collection, use and retention of personal data from EU Member States. More information can be found here: https://fr-fr.facebook.com/about/privacyshield.
If you have a Facebook account, the data transmitted by your browser can be linked to your Facebook account. If you do not want this data to be assigned to your Facebook account, please log out of Facebook before clicking on the Facebook plug-in. Interactions, in particular the use of a comment function or clicking on a "Like" or "Share" button, are also shared with Facebook. For more information, visit https://fr-fr.facebook.com/about/privacy.

6.6. Personalized audiences on Facebook

We use personalized audiences on our Facebook website. To do so, Facebook pixels are embedded on our websites. This is Javascript code. These pixels generate a checksum (hash value) from your usage data, which is transmitted to Facebook, e.g. browser information. If available, the Facebook cookie is also addressed and your Facebook ID is transmitted. If you have a Facebook profile and log in, the data transmitted by the pixels can be used to present you with targeted and individualized advertising for Heitz System products and offers. Data from users who do not have a Facebook profile will be rejected and will not be used by Facebook. For more information on the purpose and scope of data collection, processing and use of data by Facebook, as well as the setting options to protect your privacy, please refer to Facebook's data protection guidelines at https://fr-fr.facebook.com/privacy/explanation.
If you do not want the corresponding data collection, you can object under the following link and deactivate the data collection: https://fr-fr.facebook.com/help/769828729705201/.

6.7 Youtube plugins

Our website displays content from the YouTube page operated by Google. The site is operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA, a subsidiary of Google. When you visit one of our YouTube content pages, your browser connects directly to YouTube's servers and retrieves the content for you to view. The legal basis for this is Art. 6 Para. 1 f) GDPR (balancing of interests, based on our interest in offering a website with the most interesting and attractive content possible).
When integrating YouTube content, your browser communicates with a YouTube server in the USA, which can record the corresponding content retrieval by your browser. At present, the European Commission has not decided that the US generally offers an adequate level of data protection. However, YouTube (as a subsidiary of Google) is committed to complying with the EU-US Privacy Agreement issued by the US Department of Commerce on the collection, use and storage of personal data from EU Member States. More information can be found here: https://support.google.com/analytics/answer/7105316?hl=fr.
If you are logged into your YouTube account, you allow YouTube to link your browsing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account before visiting our website.
For more information on how user data is handled, please see the YouTube Privacy Policy (as a Google subsidiary) at https://www.google.fr/intl/de/policies/privacy.

6.8. Vimeo plugins

We also use video integration from the provider Vimeo. Vimeo is operated by Vimeo, LLC, headquartered at 555 West 18th Street, New York, New York 10011. When you visit one of our Vimeo content sites, your browser connects directly to Vimeo's servers and retrieves the content for display to you. The legal basis for this is Art. 6 Para. 1 f) GDPR (balancing of interests, based on our interest in offering a website with the most interesting and attractive content possible).
When integrating Vimeo, your browser communicates with a Vimeo server in the USA, which can record the corresponding content retrieval by your browser. At present, the European Commission has not decided that the United States generally offers an adequate level of data protection. However, Vimeo is committed to complying with the EU-US Privacy Shield Agreement issued by the US Department of Commerce on the collection, use and storage of personal data from EU Member States.
Once logged into your Vimeo account, you authorize Vimeo to associate your browsing behavior with your personal profile. This assignment can be avoided by logging out of your Vimeo account and deleting the corresponding Vimeo cookies before using our website. For more information about Vimeo's data processing and privacy policy, please visit https://vimeo.com/privacy.

7. Storage period

Personal data will only be kept for as long as necessary to achieve the purposes stated herein or as required by law. Data entered by you within the meaning of Article 3.1 will therefore be deleted no later than six years after the expiry of any retention period under commercial and tax law. Automatically stored data as defined in section 3.2 will therefore be deleted or made anonymous after 14 months.

8. Your Rights

You have the following rights with regard to your personal data:

  • Right to information,
  • Right of correction or deletion,
  • Right to limitation of treatment,
  • Right to data transferability.

You also have the right to complain to a data protection supervisory authority about the processing of your personal data.

9. Questions

If you have general questions or suggestions regarding data protection, please contact our data protection officer by email: rgpd@heitzsystem.com.