Go to homepage

What are you looking for?

€0.00*

Data Protection

General explanation

As a user of our website, you will receive all the necessary information in this privacy policy about how, to what extent and for what purpose we or third-party providers collect data from you and process it. Your data is collected and used strictly in accordance with the legal requirements, in particular the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). We are particularly committed to the confidentiality of your personal data and therefore work strictly within the limits set by the legal requirements. Personal data is processed on a voluntary basis if this is possible for us. We also only pass this data on to third parties with your express consent. We ensure a high level of security for particularly confidential data, such as in payment transactions or with regard to your enquiries to us, by using SSL encryption. However, we would like to take this opportunity to draw your attention to the general dangers of using the Internet, over which we have no control. Particularly in e-mail traffic, your data is not secure without further precautions and may be collected by third parties.

1. Name and contact details of the data controller

IAB Reinraum-Produkte GmbH
Erzberg 5
38126 Braunschweig
Phone: +49 531 28484-0
Email: info@iab-bs.de

Managing Director: Karoline Matzi

2. Contact details of the data protection officer

Kämmer Consulting GmbH
Telephone number: +49 531 702249-0
Email: dsb-team@kaemmer-consulting.de

3. Scope of the processing of personal data

In general, it is possible to use this website without entering and processing personal data. However, it may be necessary for you to provide us with data in order to process certain transactions, for example via the contact or order form. In this case, we may collect the following categories of data:

  • Personal data (name, address)
  • Contact details (e-mail address, telephone number)
  • Company data (company, address, position, department)
  • Payment data (bank details)

This data is provided on a voluntary basis. However, if you do not provide us with the required personal data, we may not be able to process your request.

4. Collection of access data

The delivery and presentation of content via our website technically requires the collection of certain data. When you access our website, these so-called server log files are recorded by us or the provider of the web space. These log files do not allow any conclusions to be drawn about you and your person. The corresponding information consists of the

  • Name of the website,
  • the current date
  • the web browser and its version
  • the operating system used
  • the referrer URL as the page from which you switched to our site,
  • and the corresponding IP address. We use this data in anonymised form to display and deliver our content and for statistical purposes.

The information supports the provision and continuous improvement of our offer and is stored separately from other personal information on secure systems. We reserve the right to check the aforementioned data retrospectively if there is any suspicion of unlawful use of our website.

5. Purpose of the processing of personal data

Your personal data is processed for the following purposes

  • Processing of enquiries resulting from the contact form
  • Establishment and fulfilment of contractual relationships
  • Sending the newsletter
  • Server log files: Display and delivery of the content of our website; statistical purposes.

We process your personal data in accordance with the following legal bases

  • Art. 6 para. 1 lit. a): You have given us your consent.
  • Art. 6 para. 1 lit. b): You have concluded a contract with us or we have to carry out pre-contractual measures.
  • Art. 6 para. 1 lit. c): We must fulfil a legal obligation.
  • Art. 6 para. 1 lit. f): Our legitimate interests outweigh your interests worthy of protection.

We process personal data in the context of data avoidance and data minimisation only to the extent and for as long as is necessary for the use of our website or as required by law.

If the purpose or legal basis for data processing ceases to apply and the end of the statutory retention period is reached, the data collected will be deleted or blocked if the statutory retention period still applies. Your personal data will not be disclosed to third parties without your express consent or a legal basis.

The data collected will not be used for automated case-by-case decisions, profiling or scoring.

6. Your rights as a data subject

You can obtain information free of charge at any time (Art. 15 EU GDPR) about the personal data we have stored about you as well as the origin, recipient and purpose of the data processing. You also have the right to request the rectification (Art. 16 EU GDPR), blocking (Art. 18 EU GDPR) or erasure (Art. 17 EU GDPR) of your data. This does not apply to data that is stored due to legal regulations or is required for proper business processing. You have the right to object to the processing of your data (Art. 21 EU GDPR) and the right to data portability (Art. 20 EU GDPR).

Right to object

Pursuant to Art. 21 (1) GDPR, you have the right to object to the processing of your personal data at any time, unless this serves to fulfil a contract, a legal obligation or to protect vital interests.

You have the right to withdraw your consent to the processing of personal data at any time with effect for the future. Processing that took place before the revocation is not affected by this.

If data is not covered by a statutory archiving obligation, we will delete your data at your request. If the archiving obligation applies, we will block your data.

For all questions and concerns regarding the correction, blocking or deletion of personal data, please contact our data protection officer using the contact details in this privacy policy or at the address given in the legal notice.

If you believe that your rights have not been fully respected in the handling of your personal data, you have the right to lodge a complaint with the supervisory authority responsible for you.

7. Contact form/email contact

We provide a contact form on our website that can be used to contact us electronically. If you use this option, the data entered in the input mask will be transmitted to us and processed. These data are

  • Your name,
  • Your e-mail address,
  • Your address,
  • Company,
  • Position,
  • Department,
  • Telephone number,
  • Subject,
  • Message.

The following data is also stored when the message is sent

  • Date and time of sending the form.

Before sending your contact enquiry, you will be referred to this privacy policy and must confirm receipt of the information by ticking a box. Alternatively, you can contact us via the email address provided. In this case, the user's personal data transmitted with the e-mail will be processed.

The data will not be passed on to third parties in this context. The data is used exclusively for processing the contact enquiry. Once your enquiry has been processed, the personal data from the input screen will be deleted immediately. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest. At your request, we will delete your personal data immediately. However, if you request the deletion of the personal data processed as part of your enquiry (via contact form or e-mail), it may no longer be possible to process your request.

8. User/customer account

When registering for a user/customer account, it is necessary to enter certain mandatory information. These include

  • Name,
  • Billing and delivery address,
  • Telephone number,
  • a valid e-mail address,
  • a password (this password gives you access to your data and allows you to update it or have it deleted),
  • Company data (company, department, VAT number),
  • Payment information.

Setting up a user/customer account is voluntary. This makes it easier for you to use our services, which go beyond the general content of our website, also in the future. The personal data entered by you and stored by us will only be used for the purposes stated above and to maintain our customer database and will be deleted or blocked if you decide to deactivate or delete your user/customer account and there are no statutory retention periods to the contrary. The personal data of your user/customer account will be processed to fulfil the contract or to carry out pre-contractual measures. If your user/customer account is deleted, it may no longer be possible for us to provide a service.

In order to be able to process and deliver your order, we only pass on your data to the delivery service commissioned with the delivery. We save the text of the contract and send you the order data by e-mail.

9. Shipping

Your address will be passed on when dispatching with our dispatch service provider. Your personal data will only be stored by the shipping service provider for as long as it is required to fulfil the contract or for statutory retention periods.

10. Processing of personal data for advertising purposes

In addition to processing your data for the above-mentioned purposes, we also use your data in accordance with Art. 6 para. 1 lit. f) GDPR, regardless of your consent to a newsletter, to communicate with you about your orders, certain products or marketing campaigns and to recommend products or services that may be of interest to you.

You can object to the use of your personal data for advertising purposes as a whole or for individual measures at any time. A message in text form to the contact details stated in the legal notice or in this privacy policy (e.g. e-mail, letter) is sufficient for this. Alternatively, you can use the unsubscribe link contained in an advertising e-mail.

11. Processing of payment transactions

As we process your payment ourselves, the processing of data for the handling of payment transactions is carried out exclusively by us.

12. Security

We have taken technical and organisational security measures to protect your personal data from loss, destruction, manipulation and unauthorised access. All of our employees and all persons involved in data processing are obliged to comply with the EU GDPR, the Federal Data Protection Act (new) and other laws relevant to data protection and the confidential handling of personal data.

13. SSL encryption

Our website uses SSL encryption when it comes to the transmission of confidential or personal content of our users. This encryption is activated, for example, when processing payment transactions and for enquiries that you send to us via our website. Please make sure that SSL encryption is activated on your side for corresponding activities. The use of encryption is easy to recognise: The display in your browser line changes from "http://" to "https://". Data encrypted via SSL cannot be read by third parties. Only transmit your confidential information if SSL encryption is activated and contact us if in doubt.

14. Content and services from third-party providers

The content on our website may also include content, services and benefits from other providers that supplement our offering. Examples of such services include maps from Google Maps, YouTube videos or third-party graphics. Accessing these third-party services regularly requires the transmission of your IP address. This enables these providers to recognise your user IP address and store it. We make every effort to include only those third-party providers who use IP addresses solely for the delivery of content. However, we have no influence on which third-party provider may store the IP address. This storage may be used for statistical purposes, for example. If we become aware of storage processes by third-party providers, we will inform our users of this fact immediately. In this context, please also note the special data protection declarations for individual third-party providers and service providers whose services we use on our website. You will also find them in this privacy policy.

15. Cookies

We use cookies on our website. These small text files are stored on your PC from our server. They support the display of our website and help you to move around our website. Cookies collect data about your

  • IP address,
  • your browser,
  • Your operating system and your internet connection.

We do not link this information to personal data and do not pass it on to third parties. Under no circumstances do we use cookies to install malware or spyware on your computer. You can also use our website without the use of cookies, which may mean that some of the displays and functions of our website only work to a limited extent. If you wish to deactivate cookies, you can do so via special settings in your browser. Please use the browser's help function to make the appropriate changes. You can manage online ad cookies via the following links: http://www.aboutads.info/choices for the USA http://www.youronlinechoices.com/uk/your-ad-choices for Europe.

16. Matomo (Piwik)

On this website, data is collected and stored using the web analysis service software Matomo (www.matomo.org), a service provided by InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, ("Matomo") on the basis of our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes in accordance with Art. 6 para. 1 lit. f GDPR. Pseudonymised user profiles can be created and evaluated from this data for the same purpose. Cookies can be used for this purpose. Cookies are small text files that are stored locally in the cache of the website visitor's internet browser. Among other things, cookies make it possible to recognise the Internet browser. The data collected using Matomo technology (including your pseudonymised IP address) is processed on our servers.

The information generated by the cookie in the pseudonymised user profile is not used to personally identify the visitor to this website and is not merged with personal data about the bearer of the pseudonym.

If you do not agree to the storage and analysis of this data from your visit, you can object to its storage and use at any time by clicking below. In this case, a so-called opt-out cookie will be stored in your browser, which means that Matomo will not collect any session data. Please note that the complete deletion of your cookies means that the opt-out cookie will also be deleted and may have to be reactivated by you.

You can customise your consent to tracking here: Cookie settings

17. YouTube

Our website uses plugins from the Google-operated YouTube site. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. When you visit one of our pages equipped with a YouTube plugin, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited.

If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

Further information on the handling of user data can be found in YouTube's privacy policy at https://www.google.de/intl/de/policies/privacy.

18. Google Web Fonts

This site uses so-called web fonts provided by Google for the standardised display of fonts. When you access a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

For this purpose, the browser you are using must connect to Google's servers. This informs Google that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR.

If your browser does not support web fonts, a standard font will be used by your computer. Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com/policies/privacy/.

19. Google reCAPTCHA

We use "Google reCAPTCHA" (hereinafter referred to as "reCAPTCHA") on our websites. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). The purpose of reCAPTCHA is to check whether the data input on our websites (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place. Data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM.

Further information about Google reCAPTCHA and Google's privacy policy can be found at the following links

20. Google Tag Manager

Type and scope of processing

We use the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager is used to manage website tags via an interface and enables us to control the precise integration of services on our website. This allows us to flexibly integrate additional services in order to analyse user access to our website.

Purpose and legal basis

The use of Google Tag Manager is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG. We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where no adequacy decision of the European Commission exists (including US companies that are not certified under the EU-U.S. DPF), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of third country transfers, there may be risks that are unknown in detail (e.g. data processing by security authorities in the third country, the exact scope and consequences of which for you we do not know, over which we have no influence and of which you may not become aware).

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Tag Manager: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/ .

21. Google Analytics 4

We use the web analysis service Google Analytics from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of analysing this website and its visitors as well as for marketing and advertising purposes. For this purpose, Google will use the information obtained on behalf of the operator of this website to analyse your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator.

The following information may be collected: IP address, date and time of the page view, click path, information about the browser and device you are using, pages visited, referrer URL (website from which you accessed our website), location data, purchase activities. Your data may be linked by Google with other data, such as your search history, your personal accounts, your usage data from other devices and all other data that Google has about you. The IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.

Google uses technologies such as cookies, web storage in the browser and tracking pixels that enable your use of the website to be analysed. The use of cookies or comparable technologies takes place with your consent on the basis of § 25 para. 1 sentence 1 TDDDG i.V.m. Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. We also use the Google Signals service in this context. Google Signals enables cross-device tracking. Your data can therefore be analysed across devices if you have activated "personalised advertising" in your account settings and your end devices are linked to your Google account. This makes it possible to recognise on which device you are searching for products and later return to complete purchases on another device, such as a tablet.

The cross-device reports created in this context only contain aggregated data. We therefore only receive statistics generated on the basis of Google Signals. To prevent Google Signals from collecting and storing data across devices, you can deactivate the "personalised ads" function in the settings of your Google account. You can find more information on this at https://support.google.com/ads/answer/2662922?hl=en . You can find more information on data processing and data protection for Google Signals at https://support.google.com/analytics/answer/7532985?hl=en .

We use the extended implementation of the consent mode (Advanced Consent Mode). In this case, user data is transmitted to Google in the form of "pings" even if consent has not been given. These pings may contain the following information, among others IP address to derive the IP country (no logging of the IP address takes place), date and time of the page view, URL of the pages visited, user agent, referrer URL (website from which our website was accessed) or information about the triggering of website events such as a conversion. On the basis of this information, Google models user data in order to be able to carry out a comprehensive usage analysis despite the refusal of consent.

The information generated about your use of this website is usually transferred to a Google server in the USA and stored there. An adequacy decision by the EU Commission is in place for the USA, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has therefore undertaken to comply with European data protection principles. Both Google and US government authorities have access to your data.

You can find more information on terms of use and data protection at https://policies.google.com/technologies/partner-sites and at https://policies.google.com/privacy?hl=en&gl=en .

Google Opt-Out - Browser add-on to deactivate Google Analytics 4: https://tools.google.com/dlpage/gaoptout?hl=en

22. Use of Doofinder

We use the "Doofinder" search function of DooFinder S.L. (Madrid 28037, Rufino González 23 bis, 1º 1, Spain; "Doofinder") on our website. The purpose of data processing is to make it easier to find the information contained on our website and to make it more user-friendly. When you use the search function on our website, the following information is processed, among others IP address, information about the device you are using (e.g. device type, model and version), anonymised user ID.

Your personal data is processed on the basis of Art. 6 para. 1 lit. f GDPR due to our overriding legitimate interest in making our website as user-friendly as possible. You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Article 6(1)(f) GDPR.

You can find more information on data protection at Doofinder at https://www.doofinder.com/en/privacy-policy.

23. Changes to this privacy policy

We will update this policy to protect your personal data from time to time. You should check this policy from time to time to keep up to date with how we are protecting your data and improving the content of our website. If we make significant changes to the processing of the personal data you provide to us, we will notify you by means of a clear and visible notice on the website. By using the website, you declare that you agree to the terms of this privacy policy on the protection of personal data.

If you have any questions about these data protection provisions, please contact our data protection officer named above.