Data Protection
Data protection
We appreciate your interest in our Beyond Beer and our website! Below we inform you in detail about the handling of your personal data. The protection of your privacy and your data is very important to us.
Responsible party for data protection legislation:
Responsible party for data processing
Ronald Siemsglüss
Brausturm Bierverlag GmbH
Jochim-Klindt-Str. 5
22926 Ahrensburg
Germany
(hereinafter, "Beyond Beer")
Contact person is Ronald Siemsglüss.
1. Information about the data collected by Beyond Beer for the contract, the payment process, for customer accounts and for the Beyond Beer newsletter
1.1. Contract processing: Title, name, address, if necessary, a different delivery address, and e-mail address.
We use this data to process contracts with our customers. You are required to identify yourself as a contractual partner of Beyond Beer beyond any doubt and to ensure the smooth handling of your order. The legal basis for collecting the data is Article 6 (1), first subparagraph, point (b) of the EU General Data Protection Regulation. The recipients of this data are Beyond Beer and Host Europe GmbH (hereinafter "Host Europe").
The data is stored electronically on a server. This belongs to Host Europe. Host Europe is a German-based company. Beyond Beer has entered into a contract processing contract with Host Europe to protect your privacy and comply with data protection regulations. Host Europe is therefore the recipient of the data in the order.
For fulfillment of the contract, we also pass on your data to the shipping company responsible for the delivery, if delivery of the goods ordered is required. These companies are also recipients of the data and are subject to postal secrecy. In order to fulfill our commercial and fiscal obligations, we retain this data for up to ten years (more precisely: until the end of the tenth year, which follows the year of the conclusion of the contract with you). Then we delete the data. Please note that the ten years start with each new order with us. Providing this information is required to enter into a contract with us. If you do not provide this information, we will not be able to contract with you and provide you with our delicious craft beers.
1.2. Payment process: Your transaction data.
The payment of orders by credit card, by SOFORT transfer, via PayPal and Giropay via the German-based BS PAYONE GmbH (hereinafter "PAYONE"), which is certified according to the Payment Card Industry Data Security Standard (PCI DSS). The legal basis for collecting the data is Article 6 (1), first subparagraph, point (b) of the EU General Data Protection Regulation. The recipient of this data is PAYONE. Your credit card details are collected and processed directly by PAYONE. We do not save this data.
When paying by SOFORT Uberweisung, the online payment system of the SOFORT GmbH, the online banking data (PIN and TAN), which you enter in the course of the order process in the provided by the SOFORT GmbH digital transfer form, encrypted by the SOFORT GmbH Your bank submitted to execute the transfer. Your online banking data is neither stored by us nor by SOFORT GmbH.
When paying with PayPal, the deposited by you at PayPal bank data from PayPal will be used for payment. We do not have access to this data. When paying via Giropay, you will be connected directly to your savings bank or bank and log in as usual with your PIN. Again, we have no access. Details on privacy at PAYONE and PAYONE's privacy policy are available on the PAYONE website at https://www.payone.com/.
Specifying your transaction data in one of these ways is required to enter into a contract with us. If you do not provide this information, we will not be able to contract with you and provide you with our delicious craft beers.
1.3. Account. Salutation, name, address, if necessary. different delivery address and e-mail address as well as further data for the use of the customer account:
If you decide to create a customer account in our web shop, we store the aforementioned data. Creating a customer account is voluntary and not a prerequisite for ordering products on our website. By creating a customer account, however, we simplify for you and us the handling of several, not simultaneous orders and can inform you about our events and offers to your favorite beers. If you create a customer account with us, we also store other data that we can assign to your person. We store (i)which shop you use (German or international), (ii) the number and times of your logins, (iii) the date of your customer account, (iv) which items you ordered and (v ) which payment method you have chosen. The legal basis for the collection of these data is Article 6 (1) (a), (b) and (f) of the EU General Data Protection Regulation. The processing of your data is necessary because of our legitimate interests for marketing and administrative purposes. The recipient of the data is Beyond Beer and Host Europe GmbH, on whose server we store your data (see above under 1.1).
We store your customer data in your customer account for three years after your last activity. Then we will delete your data automatically. However, we will inform you in advance by e-mail. You then have the opportunity to prevent the deletion. Of course you can ask us at any time before the end of the three years that we delete your data. Please note, however, that we may need to keep your email address longer in case of an order (see above under 1.1). Cancellation: You can revoke your consent to the storage and processing of your data in the context of a customer account at any time by either (i) deleting your customer account, or (ii) write us an email to datenschutz@beyondbeer.de with the request to delete your customer account. We will delete your data immediately.
1.4. E-Mail-Newsletter. E-Mail- und IP-Adresse:
We offer you several options to sign up for our e-mail newsletter: on the one hand when registering for the customer account by ticking the box "Yes, I would like to receive the free Beyond Beer Newsletter.", On the other hand by entering an e-mail Address on the homepage. In both cases you will receive from us an e-mail to the given address, with which we ask you to confirm your registration. Only then will your registration take effect. This procedure (so-called double-opt-in) is required so that nobody can use foreign e-mail addresses. From time to time, we also send a newsletter to our customers who have an account with us about offers that match their previous orders with us.Every sign up to the email newsletter will be saved so that we can prove that we have received your confirmation. We also save the login and confirmation time and the IP address. If you are then effectively logged in, we will use your email address to send you news and information about the world of craft beers and Beyond Beer in an email newsletter. The legal basis for the processing of this data is Article 6 (1) subparagraph 1 (a) and (f) of the EU General Data Protection Regulation (consent and our legitimate interest in marketing our beer and Beyond Beer). The recipients of the data are Beyond Beer and MailChimp (for MailChimp see below). We store your e-mail address for this purpose until you delete your customer account with us or otherwise revoke your consent to the storage and use (for the revocation options see below). Please note that we may need to keep your email address longer in case of an order (see 1.1 above). Our e-mail newsletter is sent via the technical service provider The Rocket Science Group, LLC d / b / a MailChimp, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA (http: //www.mailchimp.com/) (hereinafter referred to as "MailChimp") to which we will pass on your e-mail address provided when you sign up for the newsletter. MailChimp is therefore also the recipient of the mentioned data. This disclosure is made in accordance with Article 6 (1) (f) of the EU Data Protection Regulation and serves our legitimate interest in the use of a promotional, secure and user-friendly newsletter system. Please note that your data is usually transmitted to and stored by a MailChimp server in the USA. MailChimp may, in accordance with Article 6 (1) subparagraph 1 (f) of the EU Data Protection Regulation, use its own legitimate interest to design and optimize its service as well as for market research purposes, for example, to determine from which countries the recipients will come. However, MailChimp does not use your data to send your own e-mails, but may pass on data to subcontractors. For details and general protection of your information, see the Model Data Processing Agreement ("Data Processing Agreement"), which was drafted on the basis of the standard contractual clauses of the European Commission. If you are interested, this model data processing contract can be viewed at the following link: http://mailchimp.com/legal/forms/data-processing-agreement/. Beyond Beer has entered into an agreement with MailChimp to facilitate the transfer of your personal information to MailChimp. In it, Mailchimp assures that it processes received data only in accordance with EU data protection law. MailChimp is certified under the US-EU privacy shield Privacy Shield and is committed to complying with EU privacy rules. You can view the privacy policy of MailChimp here: https://mailchimp.com/legal/privacy/.
Cancellation Policy: You can unsubscribe from our e-mail newsletter at any time by either (i) removing the tick in "Yes, I would like to receive the free Beyond Beer Newsletter" in your customer account, or (ii) in a newsletter e-mail. Mail on the link "End newsletter subscription" at the end of the e-mail, or (iii) send us an e-mail to datenschutz@beyondbeer.de with the request to take you out of the newsletter mailing list.
1.5. E-Mail-Newsletter II. Data collected in connection with the use of the e-mail newsletter (time of retrieval, IP address, browser type, operating system, statistical data on user behavior, location).
MailChimp uses certain data for the statistical evaluation of the use of e-mail newsletters by the addressees on our behalf (performance measurement). The emails sent contain so-called web beacons or tracking pixels. These are one-pixel image files stored on our website. This will determine whether a newsletter message has been opened and, if so, which links have been clicked on. In addition, technical information is collected (e.g., time of retrieval, IP address, browser type, operating system, usage statistics, location). The data is for statistical analysis of newsletter campaigns only. The results of these analyzes can be used to better tailor future newsletters to the interests of the recipient.The legal basis for the storage and use of this data is Article 6 (1) subparagraph 1 (a) of the EU General Data Protection Regulation (Consent). We also process the data based on our legitimate interest in effective newsletter campaigns. The legal basis for processing the data is therefore also Article 6 (1), first subparagraph, point (f) of the EU General Data Protection Regulation. If you do not want your data to be analyzed according to statistical evaluation purposes, you can unsubscribe from the newsletter at any time (see the note under 1.4 on the possibility of revocation). There are cases when we direct the newsletter recipients to the MailChimp websites. For example, our newsletters contain a link through which the newsletter recipients can subsequently correct or supplement their data, such as the e-mail address. You can view the privacy policy of MailChimp here: https://mailchimp.com/legal/privacy/.
In this context, we point out that on the websites of MailChimp cookies are used and thus personal data processed by MailChimp, their partners and service providers used (for example, Google Analytics). We have no influence on this data collection. For more information, please refer to the Privacy Policy of MailChimp.
2. Information about the data collected by Beyond Beer during your visit to our websites
2.1. Visit our website. Storage of access data in server log files:
You can visit our websites without actively providing information about yourself. However, your browser automatically sends personal data (such as your IP address) to our server to establish a connection. We only store access data in so-called server log files. Specifically, these are the time of the access, the amount of data sent in bytes, the source or reference from which you came to the page, the browser used, the operating system used, the requesting provider and the IP address used. Address. We use this data solely to ensure trouble-free operation of the site and evaluate it to improve our offerings. The data does not allow us to conclude on your person. In particular, the IP address is anonymized, so no conclusions on the visitors of our website are possible. The log files are stored for a maximum of 60 days.
2.2. Use of cookies
Cookies are small files that are stored on your data carrier and that store certain settings and data for exchange with our system via your browser. There are several types of cookies: on the one hand so-called session cookies, which are deleted as soon as you close your browser; on the other hand, temporary / permanent, so-called comfort cookies, which are stored for a longer period or unlimited on your data medium. This storage helps us to customize our websites and offers for you and makes it easier for you to use, for example, by storing such products that you have added to the shopping cart for the duration of your visit to our website, so that you are free You can continue to browse our website and add more products to your shopping cart before placing your order. Most browsers accept cookies automatically. If you do not want cookies to be stored, you can prevent this by setting your browser software accordingly. However, you may not be able to access all functions of this website (such as the shopping cart). In your browser, you can also set that a storage of cookies is accepted only if you agree.
2.3. Third-party cookies
Our service providers and partners also use cookies when you visit our site. If you only want to accept the Beyond Beer cookies but not the cookies of our service providers and partners, you can choose the setting in your browser "Block third-party cookies". Usually you will be shown in the menu bar of your web browser via the help function, how you can reject new cookies and turn off already received ones.
2.4. Use of Google Analytics
Like many other websites, we use Google Analytics, a web analytics service provided by Google LLC ("Google"), 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Google Analytics also uses "cookies". The Google Analytics cookie contains information about the operating system you use, the IP address (but only anonymized, see below), the browser type, the web page where you came to our website, and the time of your visit transferred to a Google server (usually in the US) and stored there. The IP address will not be merged with other data provided by Google. We use the code "anonymizeIP" when using Google Analytics on this website. This will make your IP address anonymous, so that all data will be collected anonymously. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
Google uses this information on our behalf to evaluate your use of our website, to compile reports on website activity and to provide us with other services related to website usage and internet usage. The legal basis for the storage and use of this data is Article 6 (1) subparagraph 1 (f) of the EU General Data Protection Regulation. Our legitimate interest lies in the fact that the analyzes of Google Analytics, for example, help us with market research and the improvement of our website. The personal data will be deleted after 14 months. If you do not want cookies to be stored, you can prevent this by setting your browser software accordingly. However, you may not be able to access all features of this website. In addition, you can prevent the data generated by the cookie and related to your use of the website (including your anonymized IP address) from being transmitted to Google and processed by Google. For this you have to download and install the browser plugin available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
In particular, if you use a browser on a mobile device, you can prevent the use of Google Analytics by clicking on the opt-out link below. Then an opt-out cookie is set and the future capture of your data is prevented. The opt-out cookie is only valid in this browser and only for our website and will be stored on your device.
Click here to opt-out of Google Analytics
If you delete the cookies in this browser, you must reactivate the opt-out cookie. Finally, we also use Google Analytics to analyze data from AdWords for statistical purposes. If you do not want this, you can disable it through the Ads Preferences Manager (http://www.google.com/settings/ads/onweb/?hl=en).
2.5. Google AdWords with conversion tracking
In our website, we use the advertising component Google AdWords and the so-called conversion tracking. This is a service of Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereafter referred to as "Google." Through EU-US Privacy Shield certification, https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active, Google guarantees that EU data protection regulations will also apply to the processing of data be respected in the US.
We use the conversion tracking for the targeted application of our offers. The legal basis is Art. 6 para. 1 f) GDPR. Our legitimate interest lies in the analysis, optimization and economic operation of our website. If you click on an ad served by Google, the conversion tracking we use will save a cookie on your device. These so-called conversion cookies lose their validity after 30 days and do not contain your personal identification. If the cookie is still valid and you visit a certain page of our website, both we and Google can evaluate that you have clicked on one of our ads placed on Google and that you have subsequently been redirected to our website.
Google uses the information gathered in this way to provide us with statistics about visiting our website. It also gives us information about the number of users who have clicked on our ad (s) as well as the subsequently accessed pages of our website. Neither we nor third parties who also use Google AdWords will be able to identify you in this way. By the appropriate settings of your Internet browser, you can also prevent or restrict the installation of cookies. At the same time, you can delete previously saved cookies at any time. However, the necessary steps and measures depend on your specific internet browser. For questions please use the help function or documentation of your Internet browser or contact the manufacturer or support. Google also has the following:
https://services.google.com/sitestats/en.html
http://www.google.com/policies/technologies/ads/
http://www.google.com/policies/privacy/
to serve as further information on this topic and in particular on the possibilities of preventing the use of data.
2.9. Using Facebook Remarketing ("Facebook Pixel")
This website uses the remarketing feature "Custom Audiences" from Facebook. This function serves to present to visitors of this website, as part of their visit to the social network Facebook, interest-based advertisements ("Facebook Ads"). For this purpose, Facebook's remarketing tag was implemented on this website ("Pixel"). Through this tag, a direct connection to the Facebook servers (usually in the US) is made when visiting the website. It is transmitted to the Facebook server that you have visited this website and Facebook assigns this information to your personal Facebook user account. The legal basis for the storage and use of this data is Article 6 (1), first subparagraph, point (a) of the EU General Data Protection Regulation (Consent).
For more information on the collection and use of data by Facebook and your rights in this regard and ways to protect your privacy can be found in the privacy policy of Facebook at https://www.facebook.com/about/privacy/. Alternatively, you can disable the remarketing feature "Custom Audiences" at https://www.facebook.com/settings/?tab=ads#_=_. For this you have to be logged in to Facebook.
If you do not want Facebook to associate your visit to our pages with your Facebook user account, please log out of your Facebook user account. In particular, if you use a browser on a mobile device, you can prevent the use of the Facebook pixel by clicking on the link below "Disable Facebook Pixel".
2.7. Google Maps
This site uses the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the features of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored on a Google server in the United States. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.
More information on how to handle user data can be found in the Google Privacy Policy: https://www.google.com/intl/en/policies/privacy/.
2.8. Using the Google Tag Manager:
Google Tag Manager is a solution that manages site tags through a single interface. The Tag Manager tool itself is a cookie-free domain and does not collect personally identifiable information. The tool triggers other tags, which may collect data. Google Tag Manager does not access this data. If disabled at the domain or cookie level, it will remain in effect for all tracking tags implemented with Google Tag Manager. http://www.google.de/tagmanager/use-policy.html
2.9. Google AdWords Remarketing
We also use Google Remarketing on our website. Google Remarketing uses cookies (see 2.2 above). The information generated by the cookie about your use of our website (including the IP address) will be transmitted to and stored by Google on servers in the United States. In addition, we have entered into a contract processing agreement with Google for the use of Google AdWords. By this contract, Google assures that they process the data in accordance with the Data Protection Regulation and ensure the protection of the data subject's rights. The IP address is then shortened by Google for the last three digits, a clear assignment of the IP address is therefore no longer possible. Google uses this information to evaluate your use of the website, to compile reports on the activities on the website for us and to provide other services related to the use of the website and internet usage. The data processing is based on our legitimate interest in accordance with Article 6 Paragraph 1 sentence 1 letter f) of the EU Data Protection Declaration on the optimization of our online offer, our website and the delivery of advertisements.
Google may also transfer this information to third parties if required by law or as far as third parties process this data on behalf of Google. Third parties, including Google, place ads on websites on the Internet. Third parties, including Google, use stored cookies to serve ads based on previous visits by a user to this site. Google will never associate your IP address with other Google data. The data collection and storage can be contradicted at any time with effect for the future.
You can disable Google's use of cookies by visiting the Google Ads Disabling page https://adssettings.google.com/authenticated?hl=en
Further information on how Google uses cookies to personalize advertising can be found at
http://www.google.com/policies/technologies/ads/
http://www.google.de/policies/privacy/
3. Registration for events via Doo
You can register for events on our website. When you register for and participate in an event, we will process your personal data collected as part of the registration process and in connection with your participation in the respective event for the purpose of processing your registration and providing for your participation in the event. As part of the registration and participation in an event, we will send information by post and / or e-mail to the contact details you provided. Legal basis for this is Art. 6 para. 1 lit. b GDPR, i.e. the fulfillment of the contract for participation in the respective event or the implementation of pre-contractual measures, which are carried out at your request.
We use the service provider doo GmbH, St.-Martin-Str. 58-68, 81541 Munich, Germany, for event registrations and event
management. Please find detailed information on data processing and data protection at doo in the doo privacy policy:
https://doo.net/en/data-protection.html
4. Applications
We collect and process personal data of applicants for the purpose of processing the application process. If an applicant submits his application documents electronically to us, this processing is done electronically. If we conclude an employment contract with a candidate, the data transmitted for the purpose of carrying out the employment relationship will be processed in compliance with legal requirements. If no employment contract is concluded with the applicant, the application documents will be deleted immediately after the end of the application process, provided that deletion does not constitute a legitimate interest, such as the defense of claims or a safeguarding of evidence under the General Equal Treatment Act (AGG).
5. Your Rights
The EU Data Protection Regulation gives you the following rights, which you can exercise free of charge:
• Right to information
In accordance with Article 15 (1) of the EU General Data Protection Regulation, you have the right to inform you about your personal data collected from us.
• Right to correct and complete data
In accordance with Article 16 of the EU General Data Protection Regulation, you have the right to demand rectification of incorrect personal data relating to you as well as the completion of incomplete personal data, including by means of a supplementary declaration.
• Right to delete data
In accordance with Article 17 (1) of the EU General Data Protection Regulation, you have the right to demand deletion of your data from us if the purpose of the data processing no longer exists or we do not need to keep the data for legal reasons.
• Right to limit the processing of the data
In accordance with Article 18 (1) of the EU Data Protection Regulation, you have the right to demand that we restrict the processing of your data.
• Right to complain to a supervisory authority
Under Article 77 (1) of the EU General Data Protection Regulation, you have the right to appeal to a supervisory authority, in particular the EU Member State of your habitual residence, employment or the place of alleged infringement, without prejudice to any other administrative or judicial remedy believe that the processing of personal data concerning you is contrary to the EU General Data Protection Regulation.
• General right of objection
In accordance with Article 21 (1) of the EU Data Protection Regulation, you have the right, at any time, to process personal data relating to you under Article 6 (1) (e) or (f) of the EU for reasons of your particular situation Basic Data Protection Act the right to object. Please note that for privacy reasons, we must require that you identify yourself unambiguously when you assert your rights. We want to ensure that your personal information is not disclosed to third parties.
You can assert your rights at any time. Please send us an e-mail to datenschutz@beyondbeer.de or by post to Brausturm Bierverlag GmbH, Eduardstraße 48, 20257 Hamburg.