DATA PROTECTION STATEMENT
Use of data for the processing of contracts
IFZI GmbH, as the data controller, takes the protection of personal data very seriously. We want our contractual partners to know when we store personal data and which personal data we store, and how we use them (obligatory notification in accordance with Article 13 GDPR). As a private company, we are subject to the provisions of the General Data Protection Regulation (GDPR) and of the German Federal Data Protection Act (BDSG).
Controller and data protection officer
The controller responsible for the processing is IFZI GmbH, Innere Laufer Gasse 24, 90403 Nuremberg, Germany, Tel: +49 911 34746-24, email: email@example.com. You can contact our data protection officer by writing to IFZI GmbH, Anne Monnier, Innere Laufer Gasse 24, 90403 Nuremberg, Germany, or by sending an email to firstname.lastname@example.org.
Use of personal data for the processing of contracts
If you place an order, we will process your personal information so that we can perform the contract (legal basis: Article 6 (1) (b) GDPR), and to store the data in accordance with our legal obligations according to the German Medical Device Ordinance (Art. 6 (1) (c) GDPR, § 4 (3) of the German Medical Device Ordinance). We store your data in accordance with the legal requirements following completion of an order in accordance with the aforementioned legal requirements, and delete these data as soon as we no longer need them to comply with our legal obligation to demonstrate our compliance with the legal requirements. Service providers, transport and shipping companies, and credit institutions help us fulfil a contract. If you do not provide your data, the order cannot be completed, and other contract-related enquiries cannot be processed.
Credit check and debt collection
In order to help us make decisions about establishing, performing or ending a contractual relationship, in the event that we assume a risk of non-payment, we can also request and use probability values regarding your solvency and willingness to pay obtained from credit agencies, calculated using your data and your address data.
We may transmit personal data regarding any unpaid and undisputed receivables to credit agencies four weeks after the receipt of the first written demand in which we inform you of a potential consideration of receivables data by credit agencies, who will provide these data to other companies for credit checks if there is a legitimate interest. With the same requirements, we may transmit your corresponding data to a debt collection agency for collection on our behalf (debt collection) in the event of unpaid receivables.
Use of personal data for postal advertising
We will also use your name and address to provide you with more information about interesting products and services (Article 6 (1) (f) GDPR). We have a legitimate interest in promoting the sale of our products. For the sending of postal advertising, your data will be transmitted to a lettershop who will send the mail. We will process your data for advertising purposes until you object to its use for this purpose. The provision of your data for these purposes is not required legally or contractually, nor is it required for the conclusion of a contract. Your data will not be transmitted to third parties for advertising purposes.
You can, of course, object to the processing of your data for advertising purposes at any time. You can obtain further information on data protection from our website www.bredent-medical.com/de/medical/content/privacy or from us on request.
Use of personal data for email marketing
We will process your personal data for email advertising if you give consent to this processing (article 6 (1) (a) GDPR). You can withdraw your consent at any time. We will process your data until you withdraw your consent. You are not legally or contractually obliged to provide your data, nor is it required for the performance of a contract.
We will process your personal data obtained through an existing customer relationship with you for the purposes of email advertising. The legal basis for this is the balancing of interests according to Article 6 (1) (f) GDPR in conjunction with §7 (3) UWG (German Act Against Unfair Competition). Our legitimate interest is the advertising of our products that are similar to the product purchased in accordance with § 7 (3) UWG. We will process the personal data obtained through our existing customer relationship with you until you object to this processing. The provision of your data for this purpose is not required for legal or contractual purposes, nor is it required for the conclusion of a contract. You can object to the processing of your personal data for email advertising at any time. Raising such an objection will not generate any costs beyond the basic cost of transmission.
You have the right to request information from us regarding your personal data, and the right to rectification or deletion of the data, the right to restrict processing and the right to data portability. In the case of processing in accordance with Article 6 (1) (e) and (f) GDPR; you also have the right to object to the processing. If you have given us consent to process your personal data, you can withdraw this at any time with future effect. You have the right to lodge a complaint with a supervisory authority.
This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
Server log files
The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
browser type and browser version
Operating system used
Host name of the accessing computer
Time of the server request
This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of illegal use.
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
The purpose of reCAPTCHA is to verify whether data entry on this website (e.g. in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent by the website visitor on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run entirely in the background. Website visitors are not notified that an analysis is taking place.
The storage and analysis of the data is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its web offers from abusive automated spying and from SPAM. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO; the consent can be revoked at any time.
We have integrated Wordfence on this website. The provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter Wordfence).
Wordfence serves to protect our website from unwanted access or malicious cyberattacks. For this purpose, our website establishes a permanent connection to Wordfence’s servers so that Wordfence can match its databases with the accesses made to our website and block them if necessary.
The use of Wordfence is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in protecting its website as effectively as possible against cyberattacks. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO; the consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.wordfence.com/help/general-data-protection-regulation/.