By operating our website with the URL www.goki.eu (hereinafter referred to as "website"), we process personal data. These are treated confidentially by us and processed in accordance with the applicable laws - in particular the German Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). With these data protection provisions, we want to inform you about what personal data we collect from you, for what purposes and on what legal basis we use it and, if applicable, to whom we disclose it. In addition, we will explain to you what rights you have to protect and enforce your data protection.
Responsible for data processing is:
Company: Gollnest & Kiesel GmbH & Co KG ("we")
Legal representative: Gerhard Gollnest (GmbH Managing Director)
Address: Hauptstraße 13-16, 21514 Güster
Phone: 04158 8822-0
Fax: 04158 8822-55
We have appointed an external data protection officer for our company. You can reach him under:
Name: Reinher Karl
Address: HABEWI GmbH & Co KG, Palmaille 96, 22767 Hamburg
Phone: 040/ 46008966
Fax: 040/ 46008977
III. Processing frame
Within the framework of the website, we process the personal data of you listed in detail below in section IV. We only process data from you that you actively provide on the website (e.g. by filling out forms) or that you automatically provide when using our offer.
Your data will be processed exclusively by us and will not be sold, lent or passed on to third parties. If we use the help of external service providers for the processing of your personal data, this is done within the framework of a so-called order processing, in which we as the client are authorized to issue instructions to our contractors. For the operation of our website, we use external service providers for hosting, as well as for maintenance, further development and care. We host our website with the external provider DSISoft GmbH, Münzstraße 9, 38100 Braunschweig in the data centre location Germany. If further external service providers are used for individual processing operations listed in section IV, they will be named there.
As a matter of principle, we do not transfer data to third countries and do not plan to do so. We will provide information about exceptions to this principle in the processing operations described below. Any data transfer to third countries will then take place on the basis of the so-called EU standard contractual clauses.
These are also stored in the so-called log files of our system. The temporary storage of your IP address by the system is necessary in order to be able to deliver our website to the end device of a user. For this purpose, the user's IP address must remain stored for the duration of the session. Your IP address is also recorded in the log files for security reasons to defend against attacks on our website (especially so-called DDos attacks) and for fraud prevention.
As a registered user, you can shop faster and more conveniently on our website by storing your billing and delivery addresses in your user profile. This means that you do not have to re-enter your personal data for subsequent (further) purchases.
However, our profiles within the social networks represent data processing. If you are logged in to the respective social network when you visit such a profile, this information will be assigned to your user account there. If you interact with our profile, e.g. comment, "share", "like" or "retweet" a post, this information will also be stored in your user account. As a rule, your interactions with our profile can also be viewed by us.
On the social network Facebook, we have the possibility to obtain statistical data about the use of our Facebook page via the so-called "Insights" function. These statistics are provided by Facebook. The "Insights" function cannot be disabled. We cannot decide to turn this feature on or off. It is available to all Facebook Fan Page operators, whether or not you use Facebook's Insights feature. Facebook Insights provides us with the following data for a selectable period of time regarding fans, subscribers, people reached, and people interacting: Total page views, "likes" including origin, page activity, post interactions, reach, post reach (broken down into organic, viral, and paid interactions), comments, shared content, replies, and demographics, i.e. country of origin, gender, and age. Insights statistics do not allow us to identify subscribers and fans of our site and view their profiles.
On the social networks Facebook and Instagram, we have the possibility to obtain statistical data about the use of our Facebook page or our Instagram profile via the so-called "Insights" function. These statistics are provided by Facebook and Instagram respectively. The "Insights" feature is not opt-out. We cannot decide to turn this feature on or off. It is available to all Facebook Fan Page operators and all Instagram business account operators, whether or not you use the Insights feature.
We are provided with the following data via Facebook Insights for a selectable period of time in anonymized form with regard to fans, subscribers, people reached and people interacting: Total page views, "likes" including origin, page activity, post interactions, reach, post reach (broken down into organic, viral, and paid interactions), comments, shared content, replies, and demographic analysis, i.e. country of origin, gender, and age. Insights statistics do not allow us to identify subscribers and fans of our site and view their profiles.
Furthermore, we receive anonymous data about the development and reach of our Instagram profile, as well as the posts, stories and videos we post there. We also receive statistical information about the place of origin, gender and age of the subscribers of our Instagram profile in the Instagram insights.
The social networks with which you communicate store your data using pseudonyms as usage profiles and use them for advertising purposes and market research. For example, you may be shown advertisements within the social network and on other third-party websites that match your presumed interests. For this purpose, cookies are usually used, which the social network stores on your terminal device. You have the right to object to the creation of these user profiles, for the exercise of which you must contact the social networks directly.
The social networks also process your personal data in the USA.
When displaying our website, the standard fonts of your terminal device are replaced by fonts. This is done to make the text on our customer portal easier to read and more aesthetically pleasing to display. When replacing fonts, we have opted for a privacy-friendly solution. We do not integrate external services such as Google Fonts or Adobe Fonts. Instead, we store the fonts to be replaced locally on our server. This has the advantage that when you call up our site, no request is made by your browser to external font replacement services and thus no data, in particular not your IP address in connection with the address of our website, is transmitted to third parties.
To protect your personal data from unauthorized access, we have provided our website with an SSL or TLS certificate. SSL stands for "Secure Sockets Layer" and TLS for "Transport Layer Security" and encrypts the communication of data between a website and the end device of the user. You can recognize the active SSL or TLS encryption by a small lock logo that is displayed on the far left in the address bar of the browser.
With regard to the data processing by our company described above, you are entitled to the following data subject rights: