Privacy Policy | Nolte Küchen

Data protection is important to our company. We assure our customers, business partners, and users of our websites the protection of personality rights. We assure that personal data is collected, stored, and used exclusively in accordance with data protection regulations. Your data, which is collected on our websites only to the technically necessary extent, will not be sold to third parties or passed on for law enforcement purposes only by court order. To provide you with security at this point, we inform you below about the type, scope, and purpose of the collection and use of personal data. You can access this information at any time on our websites. Information on how we handle your personal data and your rights (information according to Articles 13, 14, and 21 of the General Data Protection Regulation GDPR).

1. Definitions

The data privacy policy uses the terms that are also found in the General Data Protection Regulation (hereinafter referred to as GDPR). Since we strive for transparency and clarity, you will receive in advance an explanation of the terms used in our data privacy policy as they are also found in Article 4 of the GDPR (“Definitions”).

Personal data

“Personal data” means all information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing

“Processing” means any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Restriction of processing

“Restriction of processing” means the marking of stored personal data with the aim of limiting their future processing.

Controller

“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Processor

“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Recipient

“Recipient” means a natural or legal person, public authority, agency or another body, to which personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients. The processing of these data by the said public authorities shall be in compliance with the applicable data protection rules according to the purpose of the processing.

Third party

“Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

Consent

“Consent” of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Data Controller

32584 Löhne, Germany
Anni-Nolte-Straße 4
Nolte Küchen GmbH und Co. KG

E-Mail: privacy@nolte-kuechen.de
Tel.:+49 (0)5732 8990

Authorized representatives: Heiko Maibach, Rüdiger Schliekmann, Manfred Wippermann
these in turn represented by their managing directors, legally represented by the phG, the Nolte Geschäftsführungsgesellschaft mbH,

Data Protection Officer:

E-Mail: datenschutz@nolte-kuechen.de
Tel.:+49 (0)5732 899 8184
Stephanie Neitzel (lawyer)

3. Cookies

The websites use so-called cookies in part. Cookies do not harm your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit ends. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser the next time you visit.

You can configure your browser in such a way that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

4. Collection of access data / Server log files
The delivery and presentation of content via our website technically requires the collection of certain data. When you access our website, these so-called server log files are recorded by the provider (Nolte Küchen GmbH & Co. KG or a processor according to Article 28 GDPR) hosting the respective web service. These log files do not allow any conclusions to be drawn about specific persons.

The corresponding information consists of the name of the website, the file, the current date, the amount of data, the web browser and its version, the operating system used, the domain name of your internet provider, the referrer URL as the page from which you switched to our site, as well as the IP address concerned.

We use this data for the presentation and delivery of our content on your device and for statistical purposes. This information supports the provision and continuous improvement of our offer. A merger of the data in the server log files with other data does not take place. We reserve the right to subsequently check the data in server log files if there is suspicion of illegal use of our offer.

5. Encryption of data transfer
Our website uses SSL/TLS encryption. Thus, all user-related data from forms and similar input masks are securely transmitted.

6. Implemented tools
When visiting this website, personal data is processed. Categories of data processed: Data about the use of the website as well as logging clicks on individual elements. Purpose of processing: Analysis of user behavior, analysis of the effectiveness of online marketing measures and selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. Legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the independent controller Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (https://cloud.google.com/). The legal basis for the data transfer to Google Ireland Limited is your consent according to Art. 6 (1) a GDPR. This may also mean the transfer of personal data to a country outside the European Union. The transfer of data is based on your consent pursuant to Art. 6 para 1 lit a in connection with Art. 49 para 1 lit a GDPR. Before granting your consent, you were informed that the USA does not have a level of data protection corresponding to the EU standards. In particular, US intelligence services may access your data without informing you and without you being able to take legal action against it. Duration of processing: is variable and ends with the cessation of the processing purpose.

6.1. Facebook Pixel
Service description

This is a tracking technology offered by Facebook and used by other Facebook services, such as Facebook Custom Audiences.

Processing company

Facebook Ireland Limited
4 Grand Canal Square
Grand Canal Harbour
Dublin
D02
Ireland

Below you will find the email address of the data protection officer of the processing company: https://www.facebook.com/help/contact/540977946302970

Purposes of data processing

This list represents the purposes of data collection and processing:

Advertising
Analysis
Marketing
Retargeting
Tracking
Technologies used

This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels that are placed in the browser:

Cookies
Pixel
Collected data

This list contains all (personal) data that is collected by or through the use of this service.

Viewed ads
Browser information
Viewed content
Device information
Geographical location
HTTP header
Interactions with ads, services, and products
IP address
Clicked elements
Marketing information
Non-confidential custom data
Visited pages
Pixel ID
Referrer URL
Success of marketing campaigns
Usage data
User behavior
Facebook cookie information
Facebook user ID
Usage/click behavior
Legal basis

Below, the required legal basis for the processing of data is mentioned Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. Should the data also be processed in other countries, you will be informed separately: European Union

Duration of data storage

The retention period is the time span in which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes. The data will be deleted no later than after 720 days.

Transfer to third countries

This service may transfer the collected data to another country. Please note that this service may transfer data outside the European Union and the European Economic Area and to a country that does not provide an adequate level of data protection. If data is transferred to the USA, there is a risk that your data may be processed by US authorities for control and monitoring purposes, without you possibly having legal remedies. Below you will find a list of the countries to which the data is transferred. This can be for various purposes, such as storage or processing:

Singapore
United Kingdom
United States of America
Data recipient

Below, you will find a list of recipients of the collected data.

Facebook Inc.
Facebook Ireland Limited
Click here to withdraw on all domains of the processing company: https://www.facebook.com/ads/preferences/

Click here to read the data processor's privacy policy: https://www.facebook.com/policy.php

Click here to read the data processor's cookie policy: https://www.facebook.com/policies/cookies/

Storage information

Maximum limit for storing cookies: 1 year

Stored information

Name: _fbp; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: act; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: c_user; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: datr; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: fr; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: m_pixel_ration; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: pl; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: presence; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: sb; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: spin; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: wd; Duration: 1 year; Type: cookie; Domain: facebook.com

Name: xs; Duration: 1 year; Type: cookie; Domain: facebook.com

6.2. TikTok Pixel

We use TikTok Pixel on our website, a conversion tracking tool for advertisers. Service provider is the Chinese company TikTok. For the European region, TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 1380, Ireland) is responsible.

TikTok processes data from you, among other things, also in the USA. We point out that, according to the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfer to the USA. This may entail various risks regarding the legality and security of data processing.

As the basis for data processing for recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e., in particular in the USA), or a data transfer there, TikTok uses so-called standard contractual clauses (= Art. 46 para. 2 and 3 GDPR). Standard contractual clauses (Standard Contractual Clauses SCC) are templates provided by the EU Commission and are intended to ensure that your data still complies with the European data protection standards if it is transferred to and stored in third countries (such as the USA). With these clauses, TikTok undertakes to comply with the European data protection level when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses, among other places, here: https://eur-lex.europa.eu/eli/dec impl/2021 /914/oj?locale=de

More about the standard contractual clauses and the data that is processed by using TikTok Pixel can be found in the Privacy Policy
at https://www.tiktok.com/legg)Lpage/eea/privacy.:policy/de-DE or at https://ads.tiktok.com/i18n/offlcial/policy/contro11er-to-controller.

6.3. LinkedIn Insight Tag

Service description
This is a conversion tracking and retargeting service.

Processing company
LinkedIn Ireland Unlimited Company
Wilton Place, Dublin 2, Ireland
https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Below you will find the email address of the data protection officer of the processing company.
https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Purposes of data processing
This list represents the purposes of data collection and processing.
Analysis

Marketing

Retargeting

Technologies used

This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels that are placed in the browser.

Collected data

This list contains all (personal) data that is collected by or through the use of this service.

Browser information

Device information

IP address

Referrer URL

Timestamp

Legal basis

Below, the required legal basis for the processing of data is mentioned

Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. Should the data also be processed in other countries, you will be informed separately.

United States of America, Singapore, European Union

Duration of data storage

The retention period is the time span in which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The data will be deleted after 90 days.

Transfer to third countries

Singapore, United States of America

Data recipient

Below, you will find a list of recipients of the collected data.

LinkedIn Ireland Unlimited Company

Click here to withdraw on all domains of the processing company

https://www.linkedin.com/legal/privacy-policy?src=li-other&veh=www.linkedin.com

Click here to read the data processor's privacy policy

https://www.linkedin.com/legal/privacy-policy?src=li-other&veh=www.linkedin.com

Click here to read the data processor's cookie policy

https://www.linkedin.com/legal/cookie_policy?src=li-other&veh=www.linkedin.com

Storage information

Maximum limit for storing cookies: 6 months

Stored information

Name: LinkedIn Insight; Duration: 6 months; Type: cookie;

6.4. LinkedIn Ads

Service description

This is an advertising service.

Processing company

LinkedIn Ireland Unlimited Company

Wilton Place, Dublin 2, Ireland

https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Below you will find the email address of the data protection officer of the processing company.

https://www.linkedin.com/help/linkedin/ask/TSO-DPO

Purposes of data processing

This list represents the purposes of data collection and processing.

Advertising

Conversion Tracking

Optimization

Remarketing

Technologies used

This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels that are placed in the browser.

Website tags

Pixel

Collected data

This list contains all (personal) data that is collected by or through the use of this service.

Viewed ads

Advertising identifier

Viewed articles

Device identifier

Device information

IP address

Information about operating system

Visited pages

Search terms

Connections

Followers

Information provided on the profile

User-agent data

Viewed videos

Legal basis

Below, the required legal basis for the processing of data is mentioned

Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. Should the data also be processed in other countries, you will be informed separately.

European Union

Duration of data storage

The retention period is the time span in which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

Data will be deleted as soon as they are no longer needed for processing.

Transfer to third countries

Singapore, United States of America

Data recipient

Below, you will find a list of recipients of the collected data.

LinkedIn Ireland Unlimited Company

LinkedIn Inc

Click here to withdraw on all domains of the processing company

https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences?lang=en

Click here to read the data processor's privacy policy

https://www.linkedin.com/legal/privacy-policy

Click here to read the data processor's cookie policy

https://www.linkedin.com/legal/cookie_policy

Storage information

Maximum limit for storing cookies: 2 years

Stored information

Name: UserMatchHistory; Duration: 30 days; Type: cookie; Domain: linkedin.com

Name: li_oatml; Duration: 30 days; Type: cookie; Domain: linkedin.com

Name: lms_ads; Duration: 30 days; Type: cookie; Domain: linkedin.com

Name: li_fat_id; Duration: 30 days; Type: cookie;

Name: li_sugr; Duration: 2 months, 29 days; Type: cookie; Domain: linkedin.com

Name: _guid; Duration: 2 months, 29 days; Type: cookie; Domain: linkedin.com

Name: brwsr; Duration: 2 years; Type: cookie;

Name: ABSELB; Duration: 2 years; Type: cookie;

6.5. Pinterest Tags

Service description

This is a consent management platform for data processing services.

Processing company

Pinterest Inc.

651 Brannan Street, San Francisco, CA 94107, United States of America

privacy-support@pinterest.com

Data protection officer of the processing company

Below you will find the email address of the data protection officer of the processing company.

privacy-support@pinterest.com

Purposes of data processing

This list represents the purposes of data collection and processing.

Analysis

Conversion Tracking

Targeting

Measuring the success of marketing campaigns

Technologies used

This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels that are placed in the browser.

Website tags

Collected data

This list contains all (personal) data that is collected by or through the use of this service.

Viewed ads

Click path

Clicked ads

Cookie information

Crash data

Date and time of visit

Device identifier

Device information

Device operating system

Geographical location

IP address

Settings

Search terms

Information on third-party providers

Visited websites

Browser settings

Legal basis

The required legal basis for the processing of data is mentioned below

Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. Should the data also be processed in other countries, you will be informed separately.

European Union, United States of America

Retention period

The retention period is the time span in which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The data will be deleted as soon as they are no longer required for processing purposes.

Data recipient

Below, you will find a list of recipients of the collected data.

Pinterest Inc.

Click here to read the data processor's privacy policy

https://policy.pinterest.com/en-gb/privacy-policy

6.6. YouTube Video

Service description

This is a video player service.

Processing company

Google Ireland Limited

Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

https://support.google.com/policies/contact/general_privacy_form

Below you will find the email address of the data protection officer of the processing company.

https://support.google.com/policies/contact/general_privacy_form

Purposes of data processing

This list represents the purposes of data collection and processing.

Show videos

Technologies used

This list contains all technologies with which this service collects data. Typical technologies are cookies and pixels that are placed in the browser.

Cookies (if "Privacy-Enhanced" mode is not activated)

Collected data

This list contains all (personal) data that is collected by or through the use of this service.

Device information

IP address

Referrer URL

Viewed videos

Legal basis

Below, the required legal basis for the processing of data is mentioned

Art. 6 para. 1 sentence 1 lit. a GDPR

Place of processing

This is the primary place where the collected data is processed. Should the data also be processed in other countries, you will be informed separately.

European Union

Duration of data storage

The retention period is the time span in which the collected data is stored for processing. The data must be deleted as soon as they are no longer required for the specified processing purposes.

The data will be deleted as soon as they are no longer required for processing purposes.

Transfer to third countries

Worldwide

Data recipient

Below, you will find a list of recipients of the collected data.

Alphabet Inc.

Google LLC

Google Ireland Limited

Click here to withdraw on all domains of the processing company

https://safety.google/privacy/privacy-controls/

Click here to read the data processor's privacy policy

https://policies.google.com/privacy?hl=en

Click here to read the data processor's cookie policy

https://policies.google.com/technologies/cookies?hl=en

Storage information

Maximum limit for storing cookies: 10 years, 2 days

Stored information

Name: PREF; Duration: 10 years, 2 days; Type: cookie;

Name: VISITOR_INFO1_LIVE; Duration: 6 months; Type: cookie;

Name: use_hitbox ; Duration: Session; Type: cookie;

Name: YSC; Duration: Session; Type: cookie;

6.7. Google

When you visit this website, personal data is processed. Categories of data processed: Data about the use of the website as well as logging clicks on individual elements. Purpose of processing: Analysis of user behavior, analysis of the effectiveness of online marketing measures and selection of online advertising on other platforms, which are automatically selected using real-time bidding based on user behavior. Legal basis for processing: Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the independent controller Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (https://cloud.google.com/). The legal basis for the data transfer to Google Ireland Limited is your consent according to Art. 6 (1) a GDPR. This may also mean the transfer of personal data to a country outside the European Union. The transfer of data is based on your consent pursuant to Art. 6 para 1 lit a in connection with Art. 49 para 1 lit a GDPR. Before granting your consent, you were informed that the USA does not have a level of data protection corresponding to the EU standards. In particular, US intelligence services may access your data without informing you and without you being able to take legal action against it. Duration of processing: is variable and ends with the cessation of the processing purpose.

6.7.1 Google Signals

As an extension to Google Analytics 4, Google Signals can be used on this website to create cross-device reports. If you have activated personalized ads and linked your devices to your Google account, Google, subject to your consent for the use of Google Analytics according to Art. 6 para. 1 lit. a GDPR, may analyze your user behavior across devices and create database models, including for cross-device conversions. We do not receive any personal data from Google, only statistics. If you want to stop cross-device analysis, you can deactivate the "Personalized Advertising" function in the settings of your Google account.

Follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=de

For more information on Google Signals, see the following link: https://sup