Privacy policy
1. Data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. Detailed information on data protection can be found in our privacy policy below this text.
Data collection on this website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find the contact details of the operator in the “Note on the responsible party” section of this privacy policy.
How do we collect your data?
Your data is collected in part by you providing it to us. For example, this may include data that you enter into a contact form.
Other data is collected automatically or with your consent when you visit the website through our IT systems. These are primarily technical data (e.g., internet browser, operating system, or the time of the page view). The collection of this data occurs automatically as soon as you access this website.
What do we use your data for?
Some of the data is collected to ensure the website is provided without errors. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to obtain, at any time and free of charge, information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can withdraw this consent at any time for the future. Additionally, you have the right, under certain circumstances, to request the restriction of the processing of your personal data. Furthermore, you have the right to file a complaint with the competent supervisory authority.
For these matters and any further questions regarding data protection, you can contact us at any time.
2. Hosting
We host the content of our website with the following provider:
ALL-INKL
The provider is ALL-INKL.COM – Neue Medien Münnich, Hauptstraße 68 | D-02742 Friedersdorf (hereinafter referred to as “ALL-INKL”). When you visit our website, ALL-INKL collects various log files, including your IP addresses.
For more information, please refer to the privacy policy of ALL-INKL: https://all-inkl.com/datenschutzinformationen/
The use of ALL-INKL is based on Article 6(1)(f) of the GDPR. We have a legitimate interest in ensuring the most reliable presentation of our website. If consent has been requested, the processing will be based solely on Article 6(1)(a) of the GDPR and Section 25(1) of the TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) as defined in the TDDDG. The consent can be revoked at any time.
3. General information and mandatory information
Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data refers to data that can be used to identify you personally. This privacy policy explains which data we collect and how we use it. It also explains how and for what purpose this data is collected.
We would like to point out that data transmission over the internet (e.g., communication via email) may have security vulnerabilities. A complete protection of data from access by third parties is not possible.
Note on the responsible party
The responsible party for data processing on this website is:
Mittex Germany GmbH
Managing Director: Mgrdich Balaban, Hagop Balaban
Johann-Georg-Schlosser-Str. 18
76149 Karlsruhe
Johann-Georg-Schlosser-Str. 18
76149 Karlsruhe
Contact
Phone: 0152 / 29900337
Mail: contact@mittexgermany.de
Mail: contact@mittexgermany.de
The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Retention period
Unless a more specific retention period is mentioned within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or revoke your consent for data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, deletion will occur once these reasons no longer apply.
General information on the legal basis for data processing on this website
If you have consented to data processing, we process your personal data based on Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR if special categories of data are processed under Article 9(1) of the GDPR. In the case of explicit consent for the transfer of personal data to third countries, data processing also takes place based on Article 49(1)(a) of the GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), data processing also takes place based on Section 25(1) of the TDDDG. Consent can be revoked at any time. If your data is necessary for the performance of a contract or for taking pre-contractual steps, we process your data based on Article 6(1)(b) of the GDPR. Furthermore, we process your data if it is necessary to fulfill a legal obligation based on Article 6(1)(c) of the GDPR. Data processing may also take place based on our legitimate interest under Article 6(1)(f) of the GDPR. The relevant legal bases for data processing are further explained in the following sections of this privacy policy.
Recipients of personal data
As part of our business activities, we work with various external entities. In some cases, it is necessary to transfer personal data to these external parties. We only share personal data with external parties if this is required for the fulfillment of a contract, if we are legally obligated to do so (e.g., sharing data with tax authorities), if we have a legitimate interest under Article 6(1)(f) of the GDPR in sharing the data, or if another legal basis permits the data transfer. When using processors, we only transfer personal data of our customers based on a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded.
Withdrawal of your consent to data processing
Many data processing operations are only possible with your explicit consent. You can withdraw any consent you have already given at any time. The legality of the data processing that took place prior to the withdrawal remains unaffected by the withdrawal.
Right to object to data collection in specific cases and to direct marketing (Article 21 GDPR)
If the data processing is based on Article 6(1)(e) or (f) of the GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. You can find the relevant legal basis for the processing in this privacy policy. If you object, we will no longer process your affected personal data, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims (objection under Article 21(1) of the GDPR).
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing purposes; this also applies to profiling, insofar as it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Article 21(2) of the GDPR).
Right to lodge a complaint with the competent supervisory authority
In the event of violations of the GDPR, individuals have the right to lodge a complaint with a supervisory authority, particularly in the member state of their usual residence, their place of work, or the location of the alleged violation. The right to file a complaint is without prejudice to other administrative or judicial remedies.
Right to data portability
You have the right to receive data that we process automatically based on your consent or in the fulfillment of a contract, in a commonly used, machine-readable format, and to transfer it to yourself or to a third party. If you request the direct transfer of data to another controller, this will only be done to the extent that it is technically feasible.
Access, correction, and deletion
You have the right, at any time and in accordance with the applicable legal provisions, to obtain free information about your stored personal data, its origin, recipients, and the purpose of the data processing, and, if necessary, the right to correction or deletion of this data. For this and any further questions regarding personal data, you can contact us at any time.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this. The right to restriction of processing applies in the following cases:
- If you dispute the accuracy of your personal data stored with us, we generally need time to verify this. During the verification process, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data was unlawful, you may request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you need it for the exercise, defense, or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
- If you have filed an objection under Article 21(1) of the GDPR, a balance must be struck between your and our interests. As long as it is not yet clear whose interests outweigh, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, that data – aside from its storage – may only be processed with your consent, or for the assertion, exercise, or defense of legal claims, or to protect the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address bar of your browser changes from “http://” to “https://” and by the padlock symbol in your browser’s address bar.
When SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.
Objection to advertising emails
The use of contact data published as part of the legal notice for the purpose of sending unsolicited advertising and informational materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.
4. Data collection on this website
Cookies
Our websites use so-called “cookies.” Cookies are small data packets and do not harm your device. They are either temporarily stored for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after you end your visit. Persistent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser.
Cookies can be from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services from third-party companies within websites (e.g., cookies for payment services).
Cookies have various functions. Many cookies are technically necessary, as certain website features would not work without them (e.g., shopping cart functionality or video display). Other cookies can be used to analyze user behavior or for advertising purposes.
Cookies that are required for the electronic communication process, to provide certain functions you have requested (e.g., for the shopping cart), or to optimize the website (e.g., cookies for measuring web traffic) are stored based on Article 6(1)(f) of the GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies to provide his services error-free and optimized. If consent is requested for storing cookies and similar recognition technologies, the processing is solely based on this consent (Article 6(1)(a) of the GDPR and § 25(1) TDDDG); consent can be revoked at any time.
You can configure your browser to be notified when cookies are set and allow cookies only on a case-by-case basis, exclude the acceptance of cookies for specific cases or generally, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
You can find which cookies and services are used on this website in this privacy policy.
Consent with Borlabs Cookie
Our website uses the consent technology of Borlabs Cookie to obtain your consent for the storage of certain cookies in your browser or the use of specific technologies, and to document this in compliance with data protection regulations. The provider of this technology is Borlabs GmbH, Rübenkamp 32, 22305 Hamburg (hereinafter referred to as Borlabs).
When you enter our website, a Borlabs cookie is stored in your browser, which contains the consents you have given or the withdrawal of those consents. This data is not shared with the provider of Borlabs Cookie.
The collected data is stored until you request its deletion, delete the Borlabs cookie yourself, or the purpose for data storage no longer applies. Mandatory legal retention periods remain unaffected. For more details on data processing by Borlabs Cookie, please refer to https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.
The use of the Borlabs Cookie consent technology is implemented to obtain the legally required consents for the use of cookies. The legal basis for this is Article 6(1)(c) of the GDPR.
Server log files
The provider of the website automatically collects and stores information in so-called server log files, which your browser transmits to us automatically. These include:
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
These data will not be merged with other data sources.
The collection of this data is based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in ensuring the technically error-free presentation and optimization of the website – for this, server log files must be collected.
Contact form
If you send us inquiries via the contact form, your information from the inquiry form, including the contact details you provide, will be stored by us for the purpose of processing the request and in case of follow-up questions. We do not share this data without your consent.
The processing of this data is based on Article 6(1)(b) of the GDPR, if your inquiry is related to the fulfillment of a contract or necessary for taking pre-contractual steps. In all other cases, the processing is based on our legitimate interest in effectively handling the inquiries directed to us (Article 6(1)(f) of the GDPR) or on your consent (Article 6(1)(a) of the GDPR), if such consent was requested; consent can be revoked at any time.
The data you enter in the contact form will remain with us until you request its deletion, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal requirements – particularly retention periods – remain unaffected.
Inquiries via email, phone, or fax
If you contact us via email, phone, or fax, your inquiry, including any personal data arising from it (name, request), will be stored and processed by us for the purpose of handling your concern. We do not share this data without your consent.
The processing of this data is based on Article 6(1)(b) of the GDPR, if your inquiry is related to the fulfillment of a contract or necessary for taking pre-contractual steps. In all other cases, the processing is based on our legitimate interest in effectively handling the inquiries directed to us (Article 6(1)(f) of the GDPR) or on your consent (Article 6(1)(a) of the GDPR), if such consent was requested; consent can be revoked at any time.
The data you send to us via contact inquiries will remain with us until you request its deletion, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal requirements – particularly legal retention periods – remain unaffected.
Communication via WhatsApp
For communication with our customers and other third parties, we use the instant messaging service WhatsApp. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Communication is conducted via end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from accessing the content of the communication. However, WhatsApp has access to metadata that arises during the communication process (e.g., sender, recipient, and timestamp). We also want to point out that, according to WhatsApp, it shares personal data of its users with its parent company Meta, based in the USA. For more details on data processing, please refer to WhatsApp’s privacy policy at: https://www.whatsapp.com/legal/#privacy-policy.
The use of WhatsApp is based on our legitimate interest in ensuring fast and effective communication with customers, prospects, and other business and contractual partners (Article 6(1)(f) of the GDPR). If consent has been requested, data processing will only take place based on the consent; this consent can be revoked at any time with effect for the future.
The communication content exchanged between you and us on WhatsApp will remain with us until you request its deletion, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions – particularly retention periods – remain unaffected.
The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States, aimed at ensuring compliance with European data protection standards when processing data in the USA. Any company certified under the DPF commits to adhering to these data protection standards. For more information, you can visit the provider’s page at the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt00000011sfnAAA&status=Active.
5. Plugins and tools
Google Maps
This website uses the Google Maps service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can embed map material on our website.
In order to use the features of Google Maps, it is necessary to store your IP address. This information is typically transferred to a Google server in the USA and stored there. The provider of this site has no influence over this data transfer. When Google Maps is enabled, Google may use Google Fonts to ensure consistent font display. When accessing Google Maps, your browser loads the necessary web fonts into its browser cache to display texts and fonts correctly.
The use of Google Maps is in the interest of providing an appealing presentation of our online offerings and making it easier to locate the places we list on the website. This constitutes a legitimate interest in the sense of Article 6(1)(f) of the GDPR. If consent has been requested, the processing is solely based on Article 6(1)(a) of the GDPR and Section 25(1) of the TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) as defined by the TDDDG. The consent can be revoked at any time.
The data transfer to the USA is based on the Standard Contractual Clauses of the EU Commission. You can find more details here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
For more information on how user data is handled, please refer to Google’s privacy policy: https://policies.google.com/privacy?hl=de.
The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Any company certified under the DPF commits to adhering to these data protection standards. For more information, you can refer to the provider’s page at the following link: https://www.dataprivacyframework.gov/participant/5780.
Ninja Firewall
We have integrated Ninja Firewall on this website. The provider is NinTechNet Limited, Unit 1603, 16th Floor, The L. Plaza 367 – 375 Queen’s Road Central, Sheung Wan, Hong Kong (hereinafter referred to as Ninja Firewall).
Ninja Firewall is used to protect our website from unauthorized access or malicious cyberattacks. For this purpose, Ninja Firewall collects the IP address, request, referrer, and time of the page access. Ninja Firewall is integrated on our own servers and does not transmit personal data to the provider of the tool or any other third parties.
We have enabled IP anonymization with Ninja Firewall, so the tool only collects the IP address in a shortened form.
The use of Ninja Firewall is based on Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in providing the most effective protection for the website against cyberattacks.
