Heinz Glas - Virtual Designer Information

Datenschutzerklärung

Privacy policy for the Vi.Designer app of HEINZ-GLAS GmbH & Co. KGaA

Welcome to our application. We take the protection of your personal data very seriously. We process your data in accordance with the applicable personal data protection legislation, in particular the EU General Data Protection Regulation (GDPR) and the country-specific implementation laws applicable to us. The purpose of this privacy policy is to inform you in detail about the processing of your personal data by HEINZ-GLAS GmbH & Co. KGaA and your rights in this regard.

Personal data is the information that makes it possible to identify a natural person. This includes, in particular, name, date of birth, address, telephone number, email address and also your IP address.

Data is anonymized if no personal reference to the user can be made.

Controller (provider/operator of the app) and data protection officer

Address:
Glashüttenplatz 1-7
96355 Kleintettau, Germany

Contact information:
www.heinz-glas.com
Tel.: +49 9269 77-0
Fax: +49 9269 77-333
info@heinz-glas.com

Data protection contacts:
data-protection@heinz-glas.com

Your rights as a data subject

First, we would like to inform you about your rights as a data subject. These rights are set out in Articles 15 - 22 of the EU General Data Protection Regulation (EU GDPR). This includes:

- Right of access (Article 15 GDPR)

- Right to erasure (Article 17 GDPR)

- Right to rectification (Article 16 GDPR)

- Right to data portability (Article 20 GDPR)

- Right to restriction of data processing (Article 18 GDPR),

- Right to object to data processing (Article 21 GDPR)

To exercise these rights, please contact: data-protection@heinz-glas.com. The same applies if you have questions about data processing in our company or with to withdraw your consent. You also have a right to lodge a complaint with a data protection supervisory authority.

Right to object

Please note the following in connection with your right to object:

If we process your personal data for the purpose of direct marketing, you have the right to object to this data processing at any time without providing justification. This also applies to profiling insofar as it is associated with direct marketing.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made informally, preferably to: data-protection@heinz-glas.com.

In the event that we process your data to protect legitimate interests, you may object to such processing at any time for reasons that arise from your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

Purpose and legal basis of data processing

When processing your personal data, we comply with the provisions of the EU GDPR and all other applicable data protection regulations. The legal basis for the data processing arises, in particular, from Article 6 EU GDPR.

We use your data for business initiation, offering products and services, as well as strengthening customer relationships, which may also include trend and market analysis for marketing purposes and direct advertising.

Your consent to data processing may also constitute a legal basis under which we process your data. Before giving your consent, we will inform you about the purpose of data processing and your right to withdraw your consent.

Disclosure to third parties

We will only pass on your data to third parties within the scope of statutory provisions or with the appropriate consent. Otherwise, no disclosure to third parties will occur unless we are legally obligated to do so due to mandatory regulations (disclosure to external entities such as supervisory authorities or law enforcement agencies).

Recipients of the data/categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfill the purpose and potential legal obligations.

In certain cases, service providers assist our departments in fulfilling their tasks. The necessary data protection contract was concluded with all service providers.

The service provider as developer of the app is the agency LOGAN FIVE GmbH, Medien und Kommunikation, Kellergasse 28, 96237 Ebersdorf bei Coburg (Germany).

Transfer to third countries/intention to transfer to third countries

A transfer of data to third countries (outside the European Union or the European Economic Area) only occurs if required by law, or if you have given us your consent to do so.

We do not currently transfer personal data to any service provider or group company outside the European Economic Area.

Retention period

We store your data as long as it is needed for the respective processing purpose. Please note that numerous retention periods require that data continues to be stored. This applies in particular to retention obligations under commercial or tax law (e.g. German Commercial Code, German Fiscal Code, etc.). Unless there are further retention requirements, data will be routinely deleted after use.

In addition, we may store data if you have given us your permission to do so or if there are any legal disputes and we use evidence within the legal period of limitation, which may be up to thirty years; the normal period of limitation is three years.

Secure transmission of your data

In order to best protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we employ appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.

The data exchange from and to our application is always encrypted. The encryption for secure data transmission is done using an SSL certificate. It is also possible to use alternative communication channels (e.g. the postal service).

Obligation to provide data

Various personal data is necessary for the establishment, implementation and termination of the contractual obligation(s) and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our application and the various functions it provides.

We have summarized the details for you in the above point. In certain cases, data must also be collected or made available due to legal regulations. Please note that it is not possible to process your request or execute the underlying contractual obligation without providing this data.

Categories, sources and origin of the data

Which data we process is determined by the respective context:

When you use our application, we collect and process the following data:

- Log file when executing the scripts (send mail, save statistics, leave configuration)

- Anonymized IP address

- Where applicable, location data (with access permission and only city/state)

- Browser type and version

- Operating system used

- Referrer URL

- Hostname of the accessing computer

- Time of server request/time stamp

Where the configuration is sent by the user:

- Anonymized IP

- Sender and recipient address (inserted by the user)

Where applicable: In the context of a contact request, we collect and process the following data:

- Surname, first name or username (selectable)

- Email address

- Information in the comment field/message field

When downloading the app, the necessary information is transferred to the app store operator. We have no influence over the collection of this data and we are not responsible for it. We process the data provided to us by the operator of the app store within the scope of our contractual relationship for the purpose of further developing our apps and services.

Granted access rights

For the app to work on your device, it is necessary to grant the app various permissions to access certain functions of the device. To do so, all devices, no matter what operating system they have, require the app to be granted certain permissions, which we call "basic permissions". Depending on the operating system of the device you are using, it may have additional features that require you to grant further permissions for the app to work. We list these at the end of the "basic conditions" by operating system (Android or iOS).

The required authorizations to use the app (Android/IOS and end device):

- Camera permission

Required to view and display AR content

- File storage of the end device (read/write)

Collection of configuration statistics; required for the email sharing function

The basic permissions (Android and iOS) are:

- Access Wi-Fi connections

This is required to ensure the functionality of the document download when using Wi-Fi

- Access network connections

This is required to ensure the functionality of the document download when using network connections other than Wi-Fi

- Disable screen lock (prevent stand-by mode)

This is necessary to ensure videos that are among the provided documents can be played directly in the app without interrupting playback by screen lock.

- Access to all networks

Access to all networks is required to ensure that documents can be downloaded.

- Disable sleep mode

This is necessary to allow videos located within the provided documents to be played directly in the app without interruption from the device entering sleep mode.

If you are using the app on an Android device, the following permissions are also required due to the operating system:

- Read USB storage content

This permission is necessary to read documents stored on the USB storage of the device.

- Modify or delete USB storage contents

This permission is necessary to modify, delete, or store documents on the USB storage of the device.

However, if you are using the app on an iOS (Apple) device, in addition to the basic permissions, the following permissions are also required due to the operating system:

- Access to insecure URLs

This permission is necessary to allow external links within the application to be accessed through an unencrypted HTTP connection if needed. While the content transmitted for the purposes of the app itself are encrypted via HTTPS, this is not possible for external links. No personally identifiable information is transmitted in this process.

- Mobile data/access to mobile data

If the user wants to download documents exclusively through Wi-Fi, they can adjust the corresponding setting in the app menu and disable the use of mobile data. Access to mobile data is required to ensure the functionality of disabling document downloads via mobile data.

Automated individual decisions

We do not use purely automated processing to make a decision.

Name	Purpose	Lifetime	Type	Provider
CookieConsent	Saves your consent to using cookies.	1 year	HTML	Website
fe_typo_user	Assigns your browser to a session on the server.	session	HTTP	Website

Name	Lifetime	Type	Provider
dpr	1 months	HTML	Facebook
bcookie	1 months	HTML	LinkedIn
bscookie	1 months	HTTP	LinkedIn
ccookie	1 months	HTML	LinkedIn
fid	1 months	HTML	LinkedIn
JSESSIONID	1 months	HTML	LinkedIn
lang	1 months	HTML	LinkedIn
li_cu	1 months	HTML	LinkedIn
lidc	1 months	HTML	LinkedIn
lissc	1 months	HTML	LinkedIn
rtc	1 months	HTML	LinkedIn
trkCode	1 months	HTML	LinkedIn
trkInfo	1 months	HTML	LinkedIn
1P_JAR	1 months	HTML	Google
ANID	1 months	HTML	Google
CONSENT	1 months	HTML	Google
NID	1 months	HTML	Google
__cfduid	1 months	HTML	LightWidget