Data Protection
Data Protection Declaration
Contents:
1. General information
2. Your rights
3. Purpose of processing
4. Duration of data storage
5. Website Security
6. Logfiles und access data
7. Contact via email
8. Use of advertisements on the Internet
9. Social media presence and directory entries
10. Cookies and skripts
1. General information
The privacy policy is intended to inform users of the website about the nature, scope and purpose of the collection and use of personal data by the operator. The operator takes your privacy very seriously and treats your personal data confidentially and in accordance with legal regulations.
This privacy policy applies to the following websites of the responsible body:
The operator of the website and the responsible entity for the website is:
Global Fruit Point GmbH
Management: S. Heinsohn, M. Neuel, G. Koch
Bahnhofstrasse 45
21614 Buxtehude
Phone: +49 4161 74 888 0
Email: info@frupo.de
The responsible entity has appointed a data protection officer:
Tobias Lange
External Data Protection Officer
Berner Heerweg 246
22159 Hamburg
Phone: 040 5700 3925
Email: info@tl-datenschutz.de
Changes in the operator’s organisation, further development of technologies and changes to the website or the operator’s entire Internet presence may lead to updates to this privacy policy at any time. We recommend that you review the privacy policy at regular intervals.
Definitions of the terms used (e.g. ‘personal data’ or ‘processing’) can be found in Art. 4 GDPR. In addition to the GDPR, the legal bases are also the new German Data Protection Act (BDSG), the requirements of Article 13 of the Telemedia Act and §25 of the Telecommunications, Digital Services and Data Protection Act (TTDSG).
In principle, it is possible to visit this website without providing any personal data. We have set the privacy settings of our website to be user-friendly so that no personal data are collected or processed without your express consent. The following applies to the use of social media icons on our website: Only when you decide to use these services (e.g. by clicking on the LinkedIn icon) may personal data be collected by the respective third-party provider. This is then no longer our responsibility.
The responsible entity works within a network with other associations, companies, service providers, lawyers, etc. Personal data will not be passed on unless this is required by law or consent has been given. We ensure that cooperation partners in the aforementioned sense comply with the current data protection regulations.
2. Your Rights
If you are a data subject within the meaning of Art. 4 No. 1 GDPR, you have the following rights regarding the processing of your personal data. The legal text of the rights listed below can be found here: DS-GVO-Gesetz
According to Art. 15 GDPR, you have the right to request confirmation from the responsible party as to whether personal data are being processed and to receive information free of charge about the personal data stored about you.
According to Art. 16 GDPR, you have the right to request the immediate correction of inaccurate personal data. You also have the right, with regard to processing, to request the completion of incomplete personal data.
According to Art. 17 GDPR, you have the right to request the responsible entity to have your personal data deleted immediately if one of the reasons specified in Art. 17 GDPR applies and further processing is no longer necessary.
According to Art. 18 GDPR, you have the right to request the restriction of processing if one of the conditions specified in Art. 18 GDPR applies.
According to Art. 20 GDPR, you have the right to receive your personal data in a structured, commonly used and machine-readable format, and you have the right, unless restricted by Art. 20 GDPR, to transmit these data to another responsible entity without hindrance from us.
You have the right to withdraw your consent to the processing of personal data at any time. The withdrawal only takes effect for the future. Please send your revocation to the contact details of the responsible entity specified above.
According to Art. 21 GDPR, you have the right to object to the processing of your personal data at any time. If the conditions for an effective objection are met, your personal data may no longer be processed.
In addition to other administrative or legal remedies, you have the right to lodge a complaint with a competent supervisory authority if you believe that the processing of your personal data violates the provisions of the GDPR. The complaint can be submitted online on the supervisory authority’s website. The competent supervisory authority would be:
Die Landesbeauftragte für den Datenschutz Niedersachsen (The State Commissioner for Data Protection of Lower Saxony)
Prinzenstrasse 5
30159 Hannover
Phone.: +49 511 / 120 45 00
Fax: 0511 / 120 45 99
Email: poststelle@lfd.niedersachsen.de
Website: www.lfd.niedersachsen.de
3. Purpose of processing
Personal data transmitted to us will only be processed for the purpose for which you provided the data. Processing, in particular transfer for other purposes, will not take place.
4. Duration of data storage
Personal data will be deleted as soon as they are no longer required for the fulfilment of the original purpose and there are no longer any legal retention periods. The final duration of the storage of personal data is determined by the statutory retention periods. After expiry of the statutory periods, the corresponding data will be deleted. If retention periods apply and there is no longer a purpose for processing the data, the processing of personal data will be restricted.
5. Website Security
The operator of the website provides it in accordance with current technical standards and updates the website regularly. Please note that absolute security against errors and unauthorised access, particularly in the case of criminal intent, cannot be guaranteed.
SSL encryption is used to protect the transmitted data as effectively as possible. You can recognise encrypted connections by the prefix ‘https://’ in the page link in your browser’s address bar.
The website is based on free programming and is hosted on Amazon AWS servers in Frankfurt, Germany. The technical administrator for hosting takes appropriate measures to update and secure the website.
6. Logfiles and access data
The website operator collects data about access to this website on the basis of a legitimate interest (see Art. 6 para. 1 lit. f. GDPR) and stores these data as ‘server log files’ on the website server.
The following data are stored:
• Name of the file accessed,
• Date and time of access,
• Amount of data transferred,
• Notification of successful access,
• Operating system used,
• Browser and browser type,
• The website from which you were redirected,
• Sites visited
• Requesting domain.
• IP addresses in anonymised form
IP addresses are anonymised before they are stored on the server and processed further. Complete, traceable IP addresses are neither collected nor processed. Once anonymised, website visitor can no longer be traced. The data stored in this way no longer refer to a natural person and, accordingly, the provisions of the GDPR are no longer applicable after anonymisation.
In special cases, IP addresses may be stored by the technical administrator for a short period of time, not exceeding 30 days, without anonymisation. The data is stored for security reasons, e.g. to investigate cases of misuse, for analysis purposes regarding the use of the website and to ensure proper functionality. The technical administrator protects access to such log files with appropriate technical and organisational measures to ensure data security. The responsible entity does not have access to such data unless permitted by law. Data will only be disclosed to third parties on a legal basis, for example in the event of a court order to disclose such data. If it is no longer necessary to store the log files, they will be irretrievably deleted.
7. Contact via email
We offer you the option of contacting us by email on our website. In this case, the information you provide will be stored for the purpose of processing your enquiry. It will not be passed on to third parties.
When using email services, personal data such as your IP address and email address are transmitted. This also includes the personal data you provide us with in your enquiry. We use SSL encryption for email correspondence and ensure the security of our email server in accordance with generally accepted standards. We have no influence on the security of your email service. We would like to point out that SSL encryption does not constitute end-to-end encryption and absolute security cannot be guaranteed.
If you contact us by email, we will only process the data you provide for the purpose you requested, will not pass it on to third parties and will delete it once the purpose has been fulfilled, provided that no retention periods apply.
We use Microsoft 365 services and operate an MS Exchange server for the technical processing of email communications. We have concluded standard contractual clauses with Microsoft to ensure that the email service and traffic are provided in a manner that complies with data protection regulations.
8. Use of advertisements on the Internet
We may use advertisements on Google, Bing or other search engines to promote our website. We also use advertisements on other third-party websites. For this purpose, we only use scripts from the respective third-party providers, which collect and process personal data for the purpose of analysing the advertisement if you have given your express informed consent to do so in advance. The terms of use and privacy policy of the respective third-party provider on whose website you find our advertisements apply to these advertisements. We endeavour to only place advertisements where the website operator ensures data protection in accordance with the GDPR. To this end, we regularly check the websites of third-party providers on which we place advertisements. However, we cannot accept any liability for the data protection of third-party websites.
9. Social media presence and directory entries
For presentation and advertising purposes, to communicate with you as a user, with our customers or with interested parties, and to inform you about the services we offer or to provide other services, we have a presence on social networks:
- Google Business
- Bing Business
The data protection provisions of the respective providers apply to the services. You use social media services and contact us via these services at your own risk. We are not responsible for the data protection of the respective providers.
When using social networks, data are usually processed outside the European Union (EU) and the European Economic Area (EEA). An equivalent level of data protection to that in the EU cannot be guaranteed in all countries outside the EU.
In this context, it may pose risks for you as a user if the data transmitted are processed in so-called third countries with an inadequate level of data protection. This makes it more difficult to enforce user rights. In addition, your data may not be processed by the provider in the third country in your interest.
The processing purposes pursued by social networks generally differ from ours. As a result, the data collected by you on social networks is usually processed for market research, advertising, creating user profiles and personalised advertising (e.g. Facebook, Google, Instagram, etc.).
To achieve this, cookies are used to record user behaviour and enable user profiling. Other tracking methods may also be used. A specific list of the purposes for which user data are processed can be found in the privacy policy of the respective provider. By adjusting the settings in your user account, you can restrict profiling, at least to a certain extent. For details on how to do this, please refer to the relevant provisions of the respective provider.
You may also find our company on social media services or databases other than those mentioned above. These presences were created automatically by the respective operators. We cannot accept any liability for such content and pages, nor can we make any statements regarding the data protection of these providers. In such cases, please refer to the respective pages for information on the data protection regulations of the corresponding responsible entity.
If you contact us via social media portals, we will store and process the data transmitted to us only for the purpose of establishing contact for which this data was transmitted, and in accordance with the provisions of the respective portals. If there is no longer a purpose for storing the relevant data, we will delete them. Deletion by us does not necessarily entail deletion by the respective social media portal. We have no influence on the latter.
10. Cookies and skripts
In principle, you can access our website without the use of cookies or scripts that collect and process personal data. Our site uses session and technical cookies where necessary to enable various functions. These cookies do not store or process any data outside the device you are using. Likewise, no personal data are collected and transferred to us or third parties. We only use such technically necessary cookies and scripts in compliance with Art. 25 of the Digital Services and Data Protection Act (TTDSG) if this is necessary to provide a function on our website that you have expressly requested.
We do not use tracking cookies on our website. However, cookies and scripts may also be used by third-party providers, such as social media platforms or other websites. We provide links to such media on our website. Please only click on these links or icons if you have read the relevant privacy policy of the respective provider beforehand. You use third-party websites at your own risk. We cannot accept any liability for data protection on third-party websites.