MENU

Data Protection Declaration REMA TIP TOP AG

General

Article 13-Information

Artikel 13-Information Whistleblowing

Social Media


We take data protection seriously

The protection of your privacy when processing personal data is an important concern for us. When you visit our website, our web servers store the IP of your Internet service provider, the website from which you visit us, the web pages you visit on our site and the date and duration of the visit as standard. This information is absolutely necessary for the technical transmission of the web pages and secure server operation. A personalized evaluation of this data does not take place.

If you send us data via contact form, this data will be stored on our servers in the course of data backup. Your data will only be used by us to process your request. Your data will be treated strictly confidential. Your data will not be passed on to third parties.


Person responsible

REMA TIP TOP AG
Gruber street 65
85586 Poing, Germany
Head office: Phone +49 8121 707-10 100
E-mail: info@tiptop.de


Personal data

Personal data is data about your person. This includes your name, address and email address. You also do not have to disclose any personal data in order to visit our website. In some cases, we need your name and address as well as other information in order to provide you with the requested service.

The same applies in the event that we supply you with information material on request or when we answer your inquiries. In these cases, we will always point this out to you. In addition, we only store the data that you have transmitted to us automatically or voluntarily.

The same applies in the event that we supply you with information material on request or when we answer your inquiries. In these cases, we will always point this out to you. In addition, we only store the data that you have transmitted to us automatically or voluntarily.


Contact

When contacting us (e.g. by contact form, e-mail, telephone or via social media), the information of the inquiring persons is processed to the extent necessary to respond to the contact requests and any requested measures.

The response to contact requests in the context of contractual or pre-contractual relationships is made in order to fulfill our contractual obligations or to respond to (pre)contractual inquiries and otherwise on the basis of legitimate interests in responding to the inquiries.

  • Types of data processed: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. entries in online forms).
  • Affected persons: Communication partners.
  • Purposes of processing: contact requests and communication.
  • Legal basis: Contract fulfillment and pre-contractual requests (Art. 6 para. 1 lit. b. DSGVO), Legitimate Interests (Art. 6 para. 1 lit. f. DSGVO).


Automatically stored data

Server log files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Date and time of the request
  • Name of the requested file
  • Page from which the file was requested
  • Access status (file transferred, file not found, etc.)
  • Web browser and operating system used
  • Complete IP address of the requesting computer
  • Data volume transferred

This data is not merged with other data sources. The processing is carried out in accordance with Art. 6 para. 1 lit. f DSGVO on the basis of our legitimate interest in improving the stability and functionality of our website.  

For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short period of time. It is not possible for us to draw conclusions about individual persons on the basis of this data. After seven days at the latest, the data is anonymized by shortening the IP address at domain level, so that it is no longer possible to establish a link to the individual user. The data is also processed in anonymized form for statistical purposes; it is not compared with other data or passed on to third parties, even in excerpts.

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Tag Manager is a tool that helps us use tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not perform any independent analyses. It only serves to manage and play out the tools integrated via it. However, Google Tag Manager collects your IP address, which may also be transferred to Google's parent company in the United States.

The use of Google Tag Manager is based on Art. 6 (1) lit. f DSGVO. The Website operator has a legitimate interest in a fast and uncomplicated integration and management of various tools on its website. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

Google Analytics

This website uses functions of the web analytics service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as page views, duration of visit, operating systems used and origin of the user. This data is assigned to the respective end device of the user. An assignment to a device ID does not take place.

Furthermore, we can use Google Analytics to track your mouse and scroll movements and clicks, among other things. Furthermore, Google Analytics uses various modeling approaches to augment the collected data sets and employs machine learning technologies in data analysis.

Google Analytics uses technologies that enable the recognition of the user for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there.

The use of this service is based on your consent according to Art. 6 para. 1 lit. a DSGVO and 25 para. 1 TTDSG. The consent can be revoked at any time. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: privacy.google.com/businesses/controllerterms/mccs/.

We use Google signals. When you visit our website, Google Analytics records, among other things, your Location, search history and YouTube history, and demographic data (visitor data). This data can be used for personalized advertising with the help of Google Signal. If you have a Google account, the visitor data from Google Signal is linked to your Google account and used for personalized advertising messages. The data is also used to create anonymized statistics on the user behavior of our users.

We have concluded a contract on order processing (AV) in accordance with Art. 28 DSGVO with the above-mentioned provider. This is a contract required by data protection law, which ensures that the provider only processes the personal data of our website visitors according to our instructions and in compliance with the GDPR.

This website uses the "e-commerce measurement" function of Google Analytics. With the help of e-commerce measurement, the website operator can analyze the purchasing behavior of website visitors to improve its online marketing campaigns. This involves recording information such as orders placed, average order values, shipping costs and the time from viewing to purchasing a product. This data can be summarized by Google under a transaction ID, which is assigned to the respective user or his device.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising program of the Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Ads allows us to display advertisements in the Google search engine or on third-party websites. When the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be displayed on the basis of the user data available at Google (e.g. location data and interests) are played out (target group targeting). We as website operator can evaluate this data quantitatively by analyzing, for example, which search terms led to the playout of our ads and how many ads resulted in corresponding clicks.

The use of this service is based on your consent according to Art. 6 para. 1 lit. a DSGVO and 25 para. 1 TTDSG. The consent can be revoked at any time. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here:

policies.google.com/privacy/frameworks and

privacy.google.com/businesses/controllerterms/mccs/.

Nayoki CDN

We use the Content Delivery Network of Nayoki GmbH, Birkenleiten 41, 81543 Munich. The provider is Nayoki GmbH, Birkenleiten 41, 81543 Munich (hereinafter "Nayoki").

Nayoki CDN is a globally distributed content delivery network. Technically, the information transfer between your browser and our website is routed through the Content Delivery Network. This allows us to increase the worldwide accessibility and performance of our website.

The use of Nayoki CDN is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 para. 1 lit. f DSGVO).

Adobe Fonts

This website uses web fonts from Adobe for the uniform display of certain fonts. The provider is Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe).

When you call up this website, your browser loads the required fonts directly from Adobe so that they can be displayed correctly on your terminal device. In doing so, your browser establishes a connection to Adobe's servers in the USA. This enables Adobe to know that your IP address has been used to access this website. According to Adobe, no cookies are stored when the fonts are provided.

The storage and analysis of the data is based on Art. 6 para. 1 lit. f DSGVO. The

Website operator has a legitimate interest in the uniform presentation of the typeface on its website. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission.

Details can be found here:

www.adobe.com/de/privacy/eudatatransfers.html.

For more information about Adobe Fonts, visit:

www.adobe.com/de/privacy/policies/adobe-fonts.html.

You can find Adobe's privacy policy at:

https://www.adobe.com/de/privacy/policy.html


Cookies

When you visit our website, we may store information on your computer in the form of cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters by which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited Internet pages and servers to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

Through the use of session cookies, the controller can provide the users of this website with a user-friendly service that would not be possible without the cookie setting. Without consent, we only use technically necessary cookies on the legal basis of legitimate interest pursuant to Art. 6 (1) lit. f DSGVO.


Security

We have taken technical and administrative security measures to protect your personal data against loss, destruction, manipulation and unauthorized access. All our employees and service providers working for us are bound by the applicable data protection laws.

Whenever we collect and process personal data, it is encrypted before it is transmitted. This means that your data cannot be misused by third parties. Our security measures are subject to a continuous improvement process and our data protection statements are constantly being revised. Please make sure that you have the latest version.


Data subject rights

You have a right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.


Right to information:

You can request information from us as to whether and to what extent we process your data.


Right of rectification:

If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.


Right of deletion:

You can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate interests of protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.

Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory retention obligation to the contrary.


Right to restriction of processing

You may request us to restrict the processing of your data if

  • You dispute the accuracy of the data for a period of time that allows us to verify the accuracy of the data.
  • the processing of the data is unlawful, but you refuse erasure and request restriction of data use instead,
  • we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
  • You have objected to the processing of the data.


Right to data portability:

You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that

  • we process such data on the basis of consent given by you, which may be revoked, or for the performance of a contract between us, and
  • this processing is carried out with the aid of automated procedures.

If technically feasible, you may request that we transfer your data directly to another data controller.


Right to object:

If we process your data for legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. You may object to the processing of your data for the purpose of direct marketing at any time without giving reasons.


Right of appeal:

If you are of the opinion that we are violating German or European data protection law in the processing of your data, please contact us so that we can clarify any questions. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to exercise any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.


Changes to this privacy policy

We reserve the right to change our privacy policy if necessary due to new technologies. Please make sure that you have the latest version. If fundamental changes are made to this privacy policy, we will announce them on our website.

All interested parties and visitors to our website can contact us regarding data protection issues at:

Herrn Bernhard Brunner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
Phone:  0941 2986930
Fax:  0941 29869316
E-Mail: anfragen@projekt29.de
Internet: www.projekt29.de

The protection of your personal data is of particular concern to us. We therefore process your personal data (in short "data") exclusively on the basis of the statutory provisions. With this data protection declaration we want to inform you about the processing of your data in our company and the data protection claims and rights to which you are entitled comprehensively in the sense of Art. 13 of the European Data Protection Regulation (EU DS-GVO).


1. who is responsible for data processing and whom can you contact?


Responsible is

REMA TIP TOP AG
Gruber street 65
85586 Poing, Germany
Head office: Phone +49 8121 707-10 100
E-Mail:  info@tiptop.de


The company data protection officer is

Bernhard Brunner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
E-Mail: anfragen@projekt29.de
Tel.: 0941-2986930


2. which data are processed and from which sources do these data originate?

We process the data that we have received from you as part of the contract initiation or processing, on the basis of consent or as part of your application to us or as part of your employment with us.


Personal data includes:

Your master/contact data, for customers this includes e.g. first and last name, address, contact data (e-mail address, telephone number, fax), bank data.

In the case of applicants and employees, this includes, for example, first and last name, address, contact data (e-mail address, telephone number, fax), date of birth, data from curriculum vitae and references, bank data, religious affiliation.

In the case of business partners, this includes, for example, the designation of their legal representatives, company name, commercial registration number, VAT number, company number, address, contact person contact data (e-mail address, telephone number, fax), bank data.

In addition, we also process the following other personal data:

  • Information about the nature and content of contract data, order data, sales and document data, customer and supplier history, and consulting records,
  • Advertising and sales data,
  • Information from your electronic traffic with us (e.g. IP address, log-in data),
  • Other data that we have received from you in the course of our business relationship (e.g. in customer meetings),
  • data that we generate ourselves from master / contact data and other data, such as by means of customer demand and customer potential analyses,
  • documenting your consent to receive newsletters, for example.


3. for what purposes and on what legal basis are the data processed?

We process your data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act 2018, as amended:

  • for the fulfillment of (pre-)contractual obligations (Art. 6 para. 1lit.b DS-GVO):

The processing of your data takes place for the contract processing online or in one of our branches, for the contract processing of your staff in our company. In particular, the data is processed during business initiation and during the execution of contracts with you.

  • for the fulfillment of legal obligations (Art. 6 para. 1 lit.c DS-GVO):

Processing of your data is necessary for the purpose of fulfilling various legal obligations, e.g. from the German Commercial Code or the German Fiscal Code.

  • for the protection of legitimate interests (Art. 6 para. 1 lit.f DS-GVO):

Based on a balancing of interests, data processing may take place beyond the actual fulfillment of the contract to protect legitimate interests of us or third parties. Data processing for the protection of legitimate interests occurs, for example, in the following cases:

  • advertising or marketing (see No. 4),
  • measures for business management and further development of services and products;
  • Maintaining a group-wide customer database to improve customer service
  • in the context of legal prosecution.
  • within the scope of your consent (Art 6 para. 1lit.a DSGVO):

If you have given us consent to process your data, e.g. to send you our newsletter.


4. processing of personal data for advertising purposes

You may object to the use of your personal data for advertising purposes at any time, either in whole or in respect of individual measures, without incurring any costs other than the transmission costs in accordance with the basic rates.

We are entitled under the legal conditions of § 7 Abs.3 UWG to use the e-mail address that you provided when concluding the contract for direct advertising for our own similar goods or services. You will receive these product recommendations from us regardless of whether you have subscribed to a newsletter.

If you do not wish to receive such recommendations from us by e-mail, you can object to the use of your address for this purpose at any time without incurring any costs other than the transmission costs according to the prime rates. A message in text form is sufficient for this purpose. Of course, an unsubscribe link is always included in every e-mail.


5. who receives my data?

If we use a service provider in the sense of commissioned processing, we nevertheless remain responsible for the protection of your data. All commissioned processors are contractually obligated to treat your data confidentially and to process it only in the context of providing the service. The processors we commission receive your data insofar as they require the data to fulfill their respective service. These are, for example, IT service providers that we require for the operation and security of our IT system as well as advertising and address publishers for their own advertising campaigns.

Your data is processed in our customer database. The customer database supports the enhancement of the data quality of the existing customer data (duplicate cleansing, moved/deceased indicators, address correction), and enables the enrichment with data from public sources.

This data is made available to the Group companies to the extent necessary for contract processing. Customer data is stored separately on a company-by-company basis, with our parent company acting as a service provider for the individual participating companies.

In the event of a legal obligation and in the context of legal prosecution, authorities and courts as well as external auditors may be recipients of your data.

In addition, insurance companies, banks, credit agencies and service providers may be recipients of your data for the purpose of initiating and fulfilling contracts.


6. how long will my data be stored?

We process your data until the termination of the business relationship or until the expiry of the applicable statutory retention periods (such as from the German Commercial Code, the German Fiscal Code, the German Home Act or the German Working Hours Act); furthermore, until the termination of any legal disputes in which the data is required as evidence.


7. are personal data transferred to a third country?

In principle, we do not transfer any data to a third country. A transfer takes place in individual cases only on the basis of an adequacy decision of the European Commission, standard contractual clauses, appropriate guarantees or your express consent.


8. what data protection rights do i have?

You have a right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law.


Right to information:

You can request information from us as to whether and to what extent we process your data.


Right of rectification:

If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.


Right of deletion:

You can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate interests of protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.

Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory obligation to retain data in this respect.


Right to restriction of processing:

You may request us to restrict the processing of your data if

  • You dispute the accuracy of the data for a period of time that allows us to verify the accuracy of the data.
  • the processing of the data is unlawful, but you refuse erasure and request restriction of data use instead,
  • we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
  • You have objected to the processing of the data.


Right to data portability:

You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that

  • we process such data on the basis of consent given by you, which may be revoked, or for the performance of a contract between us, and
  • this processing is carried out with the aid of automated procedures.

If technically feasible, you may request that we transfer your data directly to another data controller.


Right to object:

If we process your data for legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. You may object to the processing of your data for the purpose of direct marketing at any time without giving reasons.


Right of appeal:

If you are of the opinion that we are violating German or European data protection law in the processing of your data, please contact us so that we can clarify any questions. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to exercise any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.


9. am I obliged to provide data?

The processing of your data is necessary for the conclusion or fulfillment of your contract entered into with us. If you do not provide us with this data, we will usually have to refuse to conclude the contract or will no longer be able to perform an existing contract and consequently have to terminate it. However, you are not obliged to give your consent to data processing with regard to data that is not relevant for the fulfillment of the contract or that is not required by law.

Table of contents

  • DATA PROTECTION INFORMATION FOR INFORMANTS ACC. ART. 13 GDPR
  • PURPOSES OF DATA PROCESSING
  • LEGAL BASIS
  • WHAT PERSONAL DATA IS PROCESSED?
  • RECEIVER
  • STORAGE PERIOD
  • YOUR RIGHTS AS DATA SUBJECT
  • RESPONSIBLE BODY FOR DATA PROCESSING
  • DATA PROTECTION OFFICER

DATA PROTECTION INFORMATION FOR NOTIFIERS ACC. ART. 13 GDPR

PURPOSES OF DATA PROCESSING

In the following, we would like to inform you about the collection, processing and use of personal data in the context of the whistleblower system. Please read this data protection information carefully before submitting a report. The purpose of data processing is to provide a secure and confidential channel for reporting compliance violations, in particular (suspected) violations of the law and serious violations of the guidelines of the controller named below. The internal reporting office of the responsible organization receives the report and investigates the reported case.

LEGAL BASIS

We process your personal data in accordance with Art. 6 para. 1, lit. b GDPR in order to comply with our obligations under the Whistleblower Directive (Directive (EU) 2019/1937) and its national implementations by receiving information about misconduct via a technically implemented reporting channel (by e-mail or telephone) in order to evaluate it and to fulfill our other obligations under the Whistleblower Directive and its national implementations. You have the right to object to the processing of your personal data.

WHAT PERSONAL DATA IS PROCESSED?

Type of data

The following data types/categories (list/description of data categories) may be subject to the processing of personal data

  • Personal master data (address data, date of birth, etc.)
  • Communication data (e.g. telephone, e-mail)
  • Contract data (contractual relationship, product or contractual interest), customer number
  • Usage data, purchasing behavior, customer history
  • Billing/payment data, bank data
  • Planning and control data, analysis data
  • Qualification data
  • Photos / Videos
  • Particularly sensitive data (in particular health data, trade union membership, religious beliefs)
  • Information (from third parties, e.g. credit agencies or public directories)
  • Particularly sensitive data (in particular health data, trade union membership, religious beliefs)
  • Information (from third parties, e.g. credit agencies or public directories)

Categories of affected persons

The categories of data subjects affected by the processing include:

  • Customers
  • Interested parties
  • Subscribers
  • Employees
  • Suppliers
  • Sales representative
  • Contact person

RECEIVER

In the event of a confidential report, your personal data will only be disclosed if this is absolutely necessary for the fulfillment of our contractual and legal obligations or if the internal organization requires the disclosure. This only applies to persons who are responsible for receiving reports or for taking follow-up measures, as well as persons supporting them in the fulfillment of these tasks (Art. 9 Whistleblower Directive). In addition, we use a service provider (processor in accordance with Art. 28 DSGVO), which we contractually oblige in accordance with the legal requirements of the DSGVO and whose compliance we monitor. This is a company from the IT service sector. Otherwise, personal data will not be passed on or otherwise transferred to third parties unless this is necessary for the purposes of criminal prosecution. If required by law or orders from government bodies, personal data may be disclosed to them.

STORAGE PERIOD

Personal data is stored for as long as is necessary for the clarification and final assessment of the notification and compliance with legal requirements. In the event that judicial and/or disciplinary proceedings are initiated, the data may be stored until the conclusion of the proceedings or until the expiry of the time limits for appeals. The duration of storage depends in particular on the severity of the suspicion and the possible breach of duty reported. This data is then deleted in accordance with the statutory provisions (3 years).

YOUR RIGHTS AS DATA SUBJECT

As the data subject, you are entitled to the following rights, provided the legal requirements are met:

  • Right to information, Art. 15 GDPR
  • Right to rectification, Art. 16 GDPR
  • Right to erasure, Art. 17 GDPR
  • Right to restriction of processing, Art. 18 GDPR
  • Right to data portability, Art. 20 GDPR,
  • Right to object, Art. 21 GDPR

If the data processing is based on a weighing of legitimate interests, you have the right to object to this processing of the data. There must be legitimate reasons for this arising from your particular situation. You also have the right to complain to the data protection supervisory authority about data processing.

RESPONSIBLE BODY FOR DATA PROCESSING

OWG Beteiligungs AG
Gruber Strasse 65
85586 Poing / Germany
Phone: +49 (0) 8121 707 - 17 100
Fax: +49 (0) 8121 707 - 12 116
E-Mail: info@owgag.de

DATA PROTECTION OFFICER

All interested parties and visitors to our website can contact us regarding data protection issues at:

Bernhard Brunner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
T +49 941 2986930
F +49 941 29869316
M anfrage@projekt29.de
W www.projekt29.de

Facebook

Welcome to the Facebook page of REMA Tip Top AG

Responsible bodies:

Meta Platforms Ireland Limited (hereinafter referred to as "Facebook")
4 Grand Canal Square
Grand Canal Harbour
Dublin 2
Irland

and

REMA TIP TOP AG
Gruber Straße 65
85586 Poing, Germany
Head office: Phone +49 8121 707-10 100
E-Mail: info@tiptop.de

Information about the Facebook page of: REMA TIP TOP AG

We use the technical platform and services of Meta Platforms Ireland Limited for the information service offered here.

We would like to point out that you use this Facebook page and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating). Alternatively, you can also access the information offered via this page on our website at www.rema-tiptop.de. When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used to provide us, as operators of the Facebook pages, with statistical information about the use of the Facebook page. Facebook provides more detailed information on this at the following link: de-de.facebook.com/help/pages/insights The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook describes in general terms what information it receives and how it is used in its data usage guidelines. There you will also find information on how to contact Facebook and on the settings options for advertisements.

The Data Use Policy is available at the following link:
de-de.facebook.com/about/privacy

Facebook's full data policy can be found here (login required):
de-de.facebook.com/full_data_use_policy

In what way Facebook uses data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties, is not conclusively and clearly stated by Facebook and is not known to us.
When you access a Facebook page, the IP address assigned to your terminal device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses). Facebook also stores information about the end devices of its users (e.g. as part of the "login notification" function); this may enable Facebook to assign IP addresses to individual users.
If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is stored on your end device. This enables Facebook to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons embedded in websites, it is possible for Facebook to record your visits to these website pages and assign them to your Facebook profile. Based on this data, content or advertising can be offered tailored to you.
If you want to avoid this, you should log out of Facebook or disable the "stay logged in" feature, delete the cookies present on your device, and exit and restart your browser. In this way, Facebook information through which you can be directly identified will be deleted. This will allow you to use our Facebook page without revealing your Facebook identifier. When you access interactive features of the page (like, comment, share, message, etc.), a Facebook login screen will appear. After any login, you will again be recognizable to Facebook as a specific user.
For information on how to manage or delete information about you, please visit the following Facebook support pages: de-de.facebook.com/about/privacy

We as the provider of the information service also collect and process no data from your use of our service. You can find the current version of this data protection declaration under "Data protection" on our Facebook page.

If you have any questions about our information services, you can reach us at info@tiptop.de.

The shared responsibility agreement according to Art. 26 GDPR (as of 21.8.2020) with Facebook can be found at:
www.facebook.com/legal/controller_addendum

Data subject rights of the users

Unfortunately, I/we cannot fulfill our information obligations according to Art. 13 GDPR, as only Facebook has full access to the user data. If you wish to exercise your data subject rights, please contact Facebook directly here. These rights include the following:

Right to information:

You can request information from us as to whether and to what extent we process your data.

Right of rectification:

If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.

Right of deletion:

You can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate interests of protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.
Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory retention obligation to the contrary.

Right to restriction of processing:

You may request us to restrict the processing of your data if

  • You dispute the accuracy of the data for a period of time that allows us to verify the accuracy of the data.
  • the processing of the data is unlawful, but you refuse erasure and request restriction of data use instead,
  • we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
  • You have objected to the processing of the data.

Right to data portability:

You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that

  • we process such data on the basis of consent given by you, which may be revoked, or for the performance of a contract between us, and
  • this processing is carried out with the aid of automated procedures.

If technically feasible, you may request that we transfer your data directly to another data controller.

Right to object:

If we process your data for legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. You may object to the processing of your data for the purpose of direct marketing at any time without giving reasons.

Right of appeal:

If you are of the opinion that we are violating German or European data protection law in the processing of your data, please contact us so that we can clarify any questions. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to exercise any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.

LinkedIn Ireland is solely responsible for the implementation of these rights pursuant to Articles 15-20 of the GDPR with regard to the data stored by LinkedIn Ireland after joint processing. You also have a right of objection and right of complaint, as described herein, against us.

If you need assistance with this or have any other questions, please feel free to contact us by email at info@tiptop.de. If you no longer wish to have the data processing described here in the future, then please cancel the connection of your user profile to our site by using the functions "I no longer like this page" and/or "Do not subscribe to this page".

If you have any questions about data protection, you can also contact our data protection officer at:

Herrn Bernhard Brunner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
Tel.:  0941 2986930
Fax:  0941 29869316
E-Mail: anfragen@projekt29.de
Internet: www.projekt29.de

LinkedIn

Welcome to the LinkedIn page of REMA Tip Top AG

Responsible bodies:

LinkedIn Ireland Unlimited Company
Wilton Place,
Dublin 2, Irland

and

REMA TIP TOP AG
Gruber Straße 65
85586 Poing, Germany
Head office: Phone +49 8121 707-10 100
E-Mail: info@tiptop.de

Information about the LinkedIn page of: REMA TIP TOP AG

We use the technical platform and services of LinkedIn Ireland Unlimited Company for the information service offered here.

We would like to point out that you use this LinkedIn page and its functions on your own responsibility. This applies in particular to the use of the interactive functions. Alternatively, you can also access the information offered via this page on our website at www.rema-tiptop.de.

When you visit our LinkedIn page, LinkedIn collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used to provide us, as the operator of the LinkedIn pages, with statistical information about the use of the LinkedIn page.

The data collected about you in this context is processed by LinkedIn and may be transferred to countries outside the European Union. What information LinkedIn receives and how it is used is described in general terms by LinkedIn in its data usage guidelines. There you will also find information on how to contact LinkedIn and on the settings options for advertisements.

The Data Use Policy is available at the following link:
www.linkedin.com/legal/privacy-policy

In what way LinkedIn uses the data from the visit of LinkedIn pages for its own purposes, to what extent activities on the LinkedIn page are assigned to individual users, how long LinkedIn stores this data and whether data from a visit to the LinkedIn page is passed on to third parties, is not conclusively and clearly stated by LinkedIn and is not known to us.
When you access a LinkedIn page, the IP address assigned to your end device is transmitted to LinkedIn. According to information from LinkedIn, this IP address is anonymized (for "German" IP addresses). LinkedIn also stores information about the end devices of its users (e.g. as part of the "login notification" function); LinkedIn may thus be able to assign IP addresses to individual users.
If you are currently logged in to LinkedIn as a user, a cookie with your LinkedIn ID is located on your end device. This enables LinkedIn to track that you have visited this page and how you have used it. This also applies to all other LinkedIn pages. Via LinkedIn buttons embedded in websites, it is possible for LinkedIn to record your visits to these website pages and assign them to your LinkedIn profile. Based on this data, content or advertising can be offered tailored to you.
If you want to avoid this, you should log out of LinkedIn or disable the "stay logged in" feature, delete the cookies present on your device, and exit and restart your browser. In this way, LinkedIn information through which you can be directly identified will be deleted. This allows you to use our LinkedIn page without revealing your LinkedIn identifier. When you access interactive features of the site (like, comment, share, news, etc.), a LinkedIn login screen will appear. After any login, you will again be recognizable to LinkedIn as a specific user.
For information on how to manage or delete information about you, please visit the following LinkedIn support pages: www.linkedin.com/legal/privacy-policy

We as the provider of the information service also collect and process no data from your use of our service:

You can find the current version of this data protection declaration under "Data protection" on our LinkedIn page.

If you have any questions about our information services, you can reach us at info@tiptop.de.

The shared responsibility agreement according to Art. 26 GDPR (as of 21.8.2020) with LinkedIn can be found at:
legal.linkedin.com/pages-joint-controller-addendum

Data subject rights of the users

Unfortunately, I/we cannot fulfill our information obligations according to Art. 13 GDPR, as only LinkedIn has full access to the user data. If you wish to exercise your data subject rights, please contact LinkedIn directly here. These rights include the following:

Right to information:

You can request information from us as to whether and to what extent we process your data.

Right of rectification:

If we process your data that is incomplete or incorrect, you can request that we correct or complete it at any time.

Right of deletion:

You can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate interests of protection. Please note that there may be reasons that prevent immediate deletion, e.g. in the case of legally regulated retention obligations.
Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory obligation to retain data in this respect.

Right to restriction of processing:

You may request us to restrict the processing of your data if

  • You dispute the accuracy of the data for a period of time that allows us to verify the accuracy of the data.
  • the processing of the data is unlawful, but you refuse erasure and request restriction of data use instead,
  • we no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or
  • You have objected to the processing of the data.

Right to data portability:

You may request that we provide you with the data you have provided to us in a structured, commonly used and machine-readable format and that you may transfer this data to another controller without hindrance from us, provided that

  • we process such data on the basis of consent given by you, which may be revoked, or for the performance of a contract between us, and
  • this processing is carried out with the aid of automated procedures.

If technically feasible, you may request that we transfer your data directly to another data controller.

Right to object:

If we process your data for legitimate interest, you can object to this data processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. You may object to the processing of your data for the purpose of direct marketing at any time without giving reasons.

Right of appeal:

If you are of the opinion that we are violating German or European data protection law in the processing of your data, please contact us so that we can clarify any questions. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to exercise any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.

LinkedIn Ireland is solely responsible for the implementation of these rights pursuant to Articles 15-20 of the GDPR with regard to the data stored by LinkedIn Ireland after joint processing. You also have a right of objection and right of complaint, as described herein, against us.

If you need assistance with this or have any other questions, please feel free to contact us by email at info@tiptop.de. If you no longer wish to have the data processing described here in the future, then please cancel the connection of your user profile to our site by using the functions "I no longer like this page" and/or "Do not subscribe to this page".

If you have any questions about data protection, you can also contact our data protection officer at:

Herrn Bernhard Brunner
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg
Tel.:  0941 2986930
Fax:  0941 29869316
E-Mail: anfragen@projekt29.de
Internet: www.projekt29.de