Privacy Policy

Thank you for visiting our website. We take the security of your personal data seriously and would like to provide you with our online data protection principles. 

AT Zweirad GmbH considers the protection of your privacy to be of the utmost importance. Therefore, compliance with the legal provisions on data protection is a matter of course for us. Furthermore, it is important to us that you know at all times how we store which data and how we use it.

As a rule, it is possible to use our website without providing personal data. In the case of purely informational use of our website - i.e. if you do not register anywhere and do not send us any data - we only collect the data that your browser transmits to us for technical reasons. This includes, for example, your IP address. Insofar as additional personal data (e.g. name, address or e-mail addresses) is collected on our pages, this is always done on a voluntary basis as far as possible. This data will not be passed on to third parties without your express consent.

Table of contents

1. Information about the collection of personal data
2. Your rights
3. Collection of personal data when visiting our website
4. Further functions and offers of our website
5. Objection to or revocation of the processing of your data
6. Data maintenance
7. Sicherheit 
8. Matomo
9. Freshdesk
10. Google Maps
11. Application management d.vinci 
12. Special regulations for social media

§ 1 Information about the collection of personal data

(1) In the following, we inform you about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, user behaviour.

(2) The following applies to the web shop via configurator.velo-de-ville.com: If you would like to place an order in our web shop, it is necessary for the conclusion of the contract that you provide your personal data, which we require for the processing of your order. Mandatory data required for the processing of contracts are marked separately, other data are voluntary. We process the data you provide to process your order. For this purpose, we may pass on your payment data to our house bank. The legal basis for this is Art. 6 para. 1 p. 1 lit. b DS-GVO.

You can voluntarily create a customer account, which allows us to store your data for future purchases. When you create an account, the data you provide will be stored revocably. You can always delete all further data, including your user account, in the customer area.

We may also process the data you provide to inform you about other interesting products from our portfolio or to send you e-mails with technical information.

(3) When you contact us by e-mail or via a contact form, the data you provide (your e-mail address and name) will be stored by us in order to answer your questions. We delete the data accruing in this context after the storage is no longer necessary or restrict the processing if there are statutory retention obligations.

(4) Due to commercial and tax law requirements, we are obliged to store your address, payment and order data for a period of ten years. However, we will restrict processing after two years, i.e. your data will only be used to comply with legal obligations.

(5) To prevent unauthorised access by third parties to your personal data, in particular financial data, the ordering process is encrypted using SSL technology.

(6) The responsible party pursuant to Art. 4 (7) EU General Data Protection Regulation (DS-GVO) is AT Zweirad GmbH, Zur Steinkuhle 2, 48341 Altenberge, e-mail: info@velo-de-ville.com. Phone: +49 (0) 2505 9305 0. You can reach our data protection officer at datenschutz@at-zweirad.de.

§ 2 Your rights

(1) You have the following rights regarding your personal data:

- Right to information, Art. 15 DSGVO
- Right to rectification or erasure, Art. 16, 17 DSGVO
- Right to restriction of processing, Art. 18 DSGVO
- Right to object to processing, Art. 21 DSGVO
- Right to data portability, Art. 20 DSGVO.

(2) You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us. The authority responsible for us is the State Commissioner for Data Protection of North Rhine-Westphalia, Kavalleriestr. 2-4, 40213 Düsseldorf.

§ 3 Collection of personal data when visiting our website

(1) When you use our website, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security (legal basis is Art. 6 para. 1 p. 1 lit. f DS-GVO):

- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status/HTTP status code
- Amount of data transferred in each case
- Website from which the request came
- browser
- Operating system and its interface
- Language and version of the browser software. 
- Type of access: website from which the user is directed here (in the case of external links),: Google/other search engines, search terms are transmitted depending on the user's data protection settings (in most cases not) ; direct access 
- Duration of the visit
 
(2) In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive in relation to the browser you are using and which provide the party setting the cookie (in this case, us) with certain information. Cookies cannot execute programmes or transfer viruses to your computer. They serve to make the Internet offer as a whole more user-friendly and effective.

(3) Use of cookies:

(a) This website uses the following types of cookies, the scope and functionality of which are explained below:

- Transient cookies (for this purpose b)
- Persistent cookies (see c).

b) Transient cookies are automatically deleted when you close the browser. These include, in particular, session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close the browser.

c) Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.

(4) We use the following cookies:

Name: _pk_ses****
Category: Necessary cookies
Purpose: Matomo / Piwik cookie, short-lived cookies used to cache data for the visit.
Expiration: 30 min

Name: _pk_id*****
Category: Necessary cookies
Purpose: Matomo / Piwik cookie, which stores some details about the user, e.g. the unique visitor ID.
Expiration: 30 min

Name: MATOMO_SESSID
Category: Necessary cookies
Purpose: Matomo cookie that stores some details about the user, e.g. the unique visitor ID.
Expiry: Session

Name: Drupal.visitor.store_country
Category: Necessary cookies
Purpose: This cookie stores your country settings for this website. 
Expiration: 30 days

Name: cookiefirst-id
Category: Necessary cookies
Purpose: This cookie contains your unique ID so that CookieFirst can identify unique visitors to this website.
Expiration: 1 year

Name: cookiefirst-consent
Category: Necessary cookies
Purpose: This cookie stores your cookie settings for this website. You can change these at any time or withdraw your consent.
Expiration: 1 year

§ 4 Further functions and offers of our website

(1) In addition to the purely informational use of our website, we offer various services that you can use if you are interested. For this purpose, you usually have to provide further personal data which we use to provide the respective service and for which the aforementioned data processing principles apply.

(2) In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly monitored.

§ 5 Objection to or revocation of the processing of your data

(1) If you have given your consent to the processing of your data, you may revoke it at any time. Such revocation will affect the permissibility of the processing of your personal data after you have expressed it to us.

(2) Where we base the processing of your personal data on the balance of interests, you may object to the processing. This is the case if the processing is not necessary, in particular, for the fulfilment of a contract with you, which is shown by us in each case in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will review the situation and either discontinue or adapt the data processing or show you our compelling legitimate grounds on the basis of which we will continue the processing.

(3) Of course, you can object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your objection to advertising using the following contact details: AT Zweirad GmbH, Zur Steinkuhle 2, 48341 Altenberge, e-mail: info@velo-de-ville.com, telephone: +49 (0) 2505 9305 0. 

§ 6 Data maintenance

We correct and complete stored data as soon as we become aware of a change. If necessary, we also inform data recipients of this. We delete stored data via an automated procedure when the legal or contractual retention period has expired or if the data is no longer required.

§ 7 Security

If you call up pages and files within this offer and are asked to enter data about yourself, we would like to point out that this transmission via the Internet is secured using SSL encryption. This data protection declaration does not apply to the contents of other websites that you can access via links. We assume no responsibility for this.

§ 8 Matomo

Our website uses Matomo, an open source web analysis tool, to collect and store data for marketing and optimisation purposes. This data is available to AT Zweirad GmbH and is not passed on to third parties. Usage profiles can be created from this data under a pseudonym. Cookies can be used for this purpose. Cookies are small text files that are stored locally in the cache of the site visitor's internet browser. The cookies enable the recognition of the internet browser. The data collected with Matomo will not be used to personally identify the visitor to this website without the separately granted consent of the person concerned, nor will it be merged with personal data about the bearer of the pseudonym.

You can delete existing cookies via the security settings of your browser or completely disable the storage of cookies there. Preventing the storage of cookies may lead to restrictions in the usability of our website.

§ 9 Freshdesk

You have various ways of contacting us (e.g. by e-mail or telephone). In this context, we process your contact data exclusively for communicating with you. Without this data, communication with you is not possible. The legal basis for this data processing is Art. 6 para. 1 p. 1 lit. b DSGVO. 
  
To process customer enquiries, we use Freshdesk, a customer service platform of Freshworks, Inc, 1250 Bayhill Drive, Suite 315, San Bruno, CA 94066, USA. This collects the customer enquiry data and your contact details so that we can process your contact enquiry. If you have general or specific questions or problems about our products, the website or our company, you can send us a message via Freshdesk. Your request will usually be processed within 48 hours during our business hours. In this context, we process the data exclusively for the purpose of communication. The legal basis for this data processing is Art. 6 para. 1 lit. b, f DSGVO. You can find out more about the DSGVO measures at freshworks here. 

Service data is collected when using Freshdesk. This is any electronic data, text, messages or other material, including personal data of end users. Freshdesk also uses cookies and similar technologies. Data collected in this context may be transferred to and stored on a Freshworks server. Freshworks stores the collected data in the EU Data Centre. Freshworks is committed to cooperating with the EU Data Protection Authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) and adheres to the recommendations of these authorities with respect to personnel data transferred from the EU and Switzerland in the context of employment relationships. 
  
You can prevent the installation of cookies by selecting the appropriate settings in your browser software. However, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can find more information on this under "Cookies". 
  
You can find more information about Freshdesk in the Freshdesk privacy policy. 

§ 10 Google Maps

(1) On this website, we use the Google Maps service. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently.

(2) By visiting the website, Google receives the information that you have called up the corresponding sub-page of our website. In addition, the data mentioned under § 3 of this declaration will be transmitted. This occurs regardless of whether Google provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact Google to exercise this right.

(3) For further information on the purpose and scope of data collection and its processing by the plug-in provider, please refer to the provider's privacy policy. There you will also find further information on your rights in this regard and setting options for protecting your privacy: https://policies.google.com/privacy?hl=en-GB. Google also processes your personal data in the USA.

§ 11 Application management d.vinci 

We are pleased that you are interested in us and that you are applying or have applied for a position in our company. We would like to provide you below with information on the processing of your personal data in connection with your application.

(1) What data of yours do we process? And for what purposes?

We process the data you have sent us in connection with your application in order to assess your suitability for the job (or other open positions in our companies, if applicable) and to carry out the application process. What is the legal basis for this?

The primary legal basis for the processing of your personal data in this application procedure is Section 26 of the German Federal Data Protection Act (BDSG) in the version applicable from 25.05.2018. According to this, the processing of data required in connection with the decision on the establishment of an employment relationship is permissible. 

Should the data be required for legal prosecution after completion of the application process, if applicable, data processing may be carried out on the basis of the requirements of Art. 6 DSGVO, in particular to safeguard legitimate interests pursuant to Art. 6 para. 1 lit. ) DSGVO. Our interest then consists in the assertion or defence of claims.

(2) How long is the data stored?

Data of applicants will be deleted after 6 months in case of rejection. In the event that you have agreed to further storage of your personal data, we will transfer your data to our applicant pool. There, the data will be deleted after two years. If you have been awarded a position during the application process, the data from the applicant data system will be transferred to our personnel information system.

(3) To which recipients is the data passed on?

We use a specialised software provider for the application process. This provider acts as a service provider for us and may also receive knowledge of your personal data in connection with the maintenance and care of the systems. We have concluded a so-called order processing agreement with this provider, which ensures that the data processing is carried out in a permissible manner. After receiving your application, your applicant data will be viewed by the HR department. Suitable applications are then forwarded internally to the person responsible for the respective open position. The further procedure is then coordinated. In principle, only those persons in the company have access to your data who need this for the proper course of our application procedure.

(4) Where is the data processed?

The data is processed exclusively in data processing centres in the Federal Republic of Germany.

(5) Your rights as a "data subject"

You have the right to information about the personal data we process about you. In the case of a request for information that is not made in writing, we ask for your understanding that we may then require evidence from you to prove that you are the person you claim to be. Furthermore, you have a right to correction or deletion or to restriction of processing, insofar as you are entitled to this by law. Furthermore, you have a right to object to processing within the scope of the law. The same applies to a right to data portability. You have the right to complain about the processing of personal data by us to a supervisory authority for data protection.

§ 12 Special regulations for social media

(1) Use of the Facebook button

On our website you will find Facebook buttons that serve the purpose of acting as a passive solution in order to protect your private sphere. The buttons do not establish direct contact between Facebook and yourself until you actively click on the share/ like button. This way, we prevent you from leaving a digital trace on the social network just by visiting our website, thereby improving the protection of your data.

If you press the share button, as with any normal link, your IP address will be transferred to Facebook as well as the information that you have just read on our website. If you click on the Facebook like button whilst you are logged into your Facebook account, you can link content from our website to your Facebook profile. As a result, Facebook can assign your visit to our website to your user account. We wish to point out that we, as the provider of the website, are not aware of the content of the data transferred, nor about how this is used by Facebook. For more information, please refer to Facebook’s privacy statement.

You can find Facebook’s data protection policy and more information about the collection and use of data by Facebook, your rights and the settings available to protect your privacy here. Facebook is also subject to the EU-US Privacy Shield data protection agreement.

(2) Use of the Twitter button

On our website you will find Twitter buttons that serve the purpose of acting as a passive solution in order to protect your private sphere. The buttons do not establish direct contact between Twitter and yourself until you actively click on a button. This way, we prevent you from leaving a digital trace on the social network just by visiting our website, thereby improving the protection of your data.

If you press the share button, as with any normal link, your IP address will be transferred to Twitter as well as the information that you have just read on our website. In addition, if you’re logged in to your Twitter account, Twitter may link this information to your Twitter profile. Especially if you use the Retweet feature, Twitter links your Twitter account to the websites you visit. This information will be passed on to other Twitter users, in particular your followers, as well as to Twitter.

As the provider of our website, Twitter does not inform us about the content of the data transferred or how this is data is used. You can find more information by clicking on the following link: Twitter's data protection policy.

Please note, however, that you are able to change your privacy settings on Twitter in your local account settings in the settings available to protect your privacy.

(3) Use of YouTube button

On our website you will find YouTube buttons that serve the purpose of acting as a passive solution in order to protect your private sphere. The buttons do not establish direct contact between YouTube and yourself until you actively click on a button. This way, we prevent you from leaving a digital trace on the social network just by visiting our website, thereby improving the protection of your data

If you press the share button, as with any normal link, your IP address will be transferred to YouTube as well as the information that you have just read on our website. If you click on the YouTube like button whilst you are logged into your YouTube account, you can link content from our website to your YouTube profile. As a result, YouTube can assign your visit to our website to your user account. We wish to point out that we, as the provider of the website, are not aware of the content of the data transferred, nor about how this is used by YouTube. For more information, please refer to YouTube's privacy policy statement.

(4) Use of the Pinterest button

On our website you will find Pinterest buttons that serve the purpose of acting as a passive solution in order to protect your private sphere. The buttons do not establish direct contact between Pinterest and yourself until you actively click on the share/ like button. This way, we prevent you from leaving a digital trace on the social network just by visiting our website, thereby improving the protection of your data.

If you press the share button, as with any normal link, your IP address will be transferred to Pinterest as well as the information that you have just read on our website. If you click on the Pinterest like button whilst you are logged into your Pinterest account, you can link content from our website to your Pinterest profile. As a result, Pinterest can assign your visit to our website to your user account. We wish to point out that we, as the provider of the website, are not aware of the content of the data transferred, nor about how this is used by Pinterest. For more information, please refer to Pinterst privacy policy statement.

Here, you find more information about the EU-US Privacy Shield data protection agreement. 

This data protection declaration applies to all web presences under the URL: www.velo-de-ville.com