Privacy



- May 2021 -

With this data protection declaration, we would like to inform you about the scope, type and purpose of the data collection of personal data.
Definitions of the terms used (e.g. "personal data" or "processing") can be found in Art. 4 DSGVO.

General information on data protection
Thank you for visiting our website and for your interest in our company and products. We at cod.m are aware that the protection of your privacy when using our websites is important to you. Therefore, it goes without saying that we comply with the legal regulations on data protection. Furthermore, it is important to us that you, as a customer, know at all times when we store which data and how we use it. The legal basis for our data processing is Article 13 of the DSGVO. This data protection declaration explains in the following which data is collected and how it is used.

Data collection and storage
Your visit to our website is logged.

The IP address currently used by your terminal device or the public IP address of your router, the date and duration of your visit, the pages you view on our website and the volume of data transferred are recorded. Furthermore, it is logged whether the call or the retrieval of the content was successful. If your browser sends information about the browser type and the operating system of your end device as well as the web page from which you are visiting us, this information will also be recorded. As a rule, it is not possible for us to make a personal reference, nor is it intended to do so.

In summary, this is traffic and metadata, such as;

- Visited contents
- Time at the time of access
- Amount of data transferred
- Browser used
- Operating system used
- IP address from which access was made

This data is only collected for the purpose of operating the website, such as for error analysis or forensics on cyber attacks, as well as for optimising our website. The data is not analysed in any other way, except for statistical purposes. The collection of this data is based on our legitimate interest (see Art. 6 para. 1 DSGVO) data about access to the website and store them as log files on the servers used for the operation of the website.

In addition, personal data is only stored if you provide us with this data for processing, e.g. as part of a registration or for the performance of a contract. You will be informed in the respective input and contact forms about the purposes of the collection of the data collected there.

Your personal data will be stored and processed by us on servers located within the European Union.

Registration function
We offer you the opportunity to register on our website. The data entered in the course of this registration, which can be seen from the input mask of the registration form, are as follows:

Name, address, e-mail address
are collected and stored exclusively for the use of our offer. When you register on our site, we will also store your IP address and the date and time of your registration. This serves as a safeguard for us in the event that a third party misuses your data and registers on our site with this data without your knowledge.  Your data will not be passed on to third parties. The data collected in this way is also not compared with data that may be collected by other components of our site.

Contact option
On our website, we offer you the possibility of contacting us by e-mail and/or via a contact form. In this case, the information provided by the user will be stored for the purpose of processing the contact. The data will not be passed on to third parties. The data collected in this way is also not compared with data that may be collected by other components of our site.

Matomo
This website uses the open source web analysis service Matomo.

With the help of Matomo, we are able to collect and analyse data about the use of our website by website visitors. This enables us to find out, among other things, when which page views were made and from which region they came. We also collect various log files (e.g. IP address, referrer, browsers and operating systems used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6 para. 1 lit. f DSGVO. As the website operator, we have a legitimate interest in analysing user behaviour in order to optimise both our website and our advertising. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a DSGVO and § 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Use of PayPal as a payment method
If you decide to pay with the online payment service provider PayPal during the ordering process, your contact details will be transmitted to PayPal as part of the order process. PayPal is an offer of PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. PayPal assumes the function of an online payment service provider as well as a trustee and offers buyer protection services.

The personal data transmitted to PayPal are mostly first name, last name, address, telephone number, IP address, e-mail address, or other data required for order processing, as well as data related to the order, such as number of items, item number, invoice amount and taxes as a percentage, billing information, etc. This transmission is necessary for the processing of your order.

This transmission is necessary to process your order with the payment method you have selected, in particular to confirm your identity, to administer your payment and the customer relationship.

Please note, however, that PayPal may also disclose personal data to service providers, subcontractors or other affiliated companies to the extent necessary to fulfil the contractual obligations arising from your order or to process the personal data on your behalf.

Depending on the payment method selected via PayPal, e.g. invoice or direct debit, the personal data transmitted to PayPal will be transferred by PayPal to credit reference agencies. This transmission serves to check your identity and creditworthiness in relation to the order you have placed. You can find out which credit agencies are involved and which data is generally collected, processed, stored and passed on by PayPal in PayPal's data protection declaration at https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

Use and forwarding of data
The personal data that you provide to us via the website or by e-mail (e.g. your name and address or your e-mail address) will only be processed for correspondence with you and for the purpose for which you provided us with the data.

In addition, we will occasionally use this data to inform you about new products or services and other information that may be of interest to you. You are of course entitled to object to this use of your data at any time.

The information collected on this website will be forwarded to the appropriate unit within our company. We assure you that we will not pass on your personal data to third parties beyond this, unless we would be legally obliged to do so or you have given us your prior consent.

Insofar as we use service providers to carry out and handle processing operations, the contractual relationship between us and the service provider is governed by the provisions of the Federal Data Protection Act.

We commission other companies and individuals to perform tasks for us. Examples include parcel delivery, email and letter delivery, tax or accounting offices. These service providers have access to personal information needed to perform their tasks. However, they are not allowed to use it for other purposes. Furthermore, they are obliged to treat the information in accordance with this data protection declaration and the German data protection laws.

Consent and revocation
If you have provided us with personal data, you can have it deleted at any time. Data for billing and accounting purposes are not affected by a cancellation/revocation or deletion.

You can revoke your consent at any time for the future.

Rights of the user
As a user, you have the right to request information free of charge about what personal data has been stored about you. You also have the right to have inaccurate data corrected and to have processing of your personal data restricted or deleted. If applicable, you can also exercise your right to data portability. If you believe that your data has been processed unlawfully, you may lodge a complaint with the competent supervisory authority. (Art. 15 and 16 DSGVO).

Deletion of data
Unless your request conflicts with a legal obligation to retain data (e.g. data retention), you have a right to have your data deleted. Data stored by us will be deleted if it is no longer required for its intended purpose and there are no legal retention periods. If deletion cannot be carried out because the data is required for permissible legal purposes, data processing will be restricted. In this case, the data will be blocked and not processed for other purposes. (Art. 17 DSGVO)

Right of objection
Users of this website may exercise their right to object to the processing of their personal data at any time. (Art. 21 DSGVO)

Storage period
Personal data provided to us via our website are only stored until the purpose for which they were entrusted to us has been fulfilled. Insofar as retention periods under commercial and tax law are to be observed, the storage period of certain data may be up to 10 years.

If you no longer consent to the storage of your personal data or if this data has become incorrect, we will, on instruction, arrange for the deletion or blocking of your data or make the necessary corrections (insofar as this is possible under the applicable law). Upon request, we will provide you with information about all personal data we have stored about you.

Links to other websites
Our online offer contains links to websites of other providers. We have no influence on whether these providers comply with data protection regulations.

Web fonts
Integration of Google Web Fonts. In this context, Google servers in the USA are called up. Google is responsible for the processing. The appropriate level of data protection results from Google's participation in the Privacy Shield. Google's data protection declaration at:
https://policies.google.com/privacy?hl=de&gl=de

Use of cookies
Cookies are small text files that are stored locally in the cache of the site visitor's Internet browser. Their purpose is, for example, to control the connection during your visit to websites. They contain purely technical information, no personal data. Most browsers are set to accept cookies automatically. However, you can also deactivate the storage of cookies or set your browser to inform you about the placement of cookies. For the unrestricted use of our web applications and here in particular our blog, we recommend activating cookies.

Updating this privacy policy
Insofar as we introduce new functions or services, change Internet procedures or if security measures and precautions change, the data protection declaration must be updated. We therefore reserve the right to amend or supplement the statement as necessary. We will publish the changes here. You should therefore visit this website regularly to check the current status of the data protection declaration.

Security measures
We maintain the confidentiality and security of your personal information by ensuring that any personal information you provide to us through our website or email communications is only used to fulfil your request or concern.

Our systems are kept secure to an appropriate extent and in accordance with the current state of the art. Our systems will be regularly checked for security so that we can protect against any damage, loss or access to data held by us in the long term.

This is subject to Articles 25 and 32 of the DSGVO.

Liability
All information contained on this website has been checked with great care. However, we cannot guarantee that the content of our own website is correct, complete and up-to-date at all times.

Contact
If you are not satisfied with the data protection measures presented here or if you still have questions regarding the collection, processing and/or use of your personal data, we would be pleased to hear from you. We will endeavour to answer your questions as quickly as possible and to implement your suggestions.

Please direct your concerns to info@codm.de
Public Directory of Procedures
of cod.m GmbH with registered office in Haiger

1. name of the responsible body
cod.m GmbH

2. owner managing director
Patrik Mayer

3. address of the responsible entity
Allendorfer Street 56
35708 Haiger

4. purpose of data collection, processing or use
cod.m GmbH offers goods u in the field of small electrical appliances, as well as support and service offers for end customers for delivery and installation according to the corresponding technical specifications. The collection, processing and use of personal data is carried out on the basis of legal regulations or for the execution of the sales contracts concluded via the webshop as well as the associated tasks.  

5. affected groups of persons, data and data categories
Data of customers, interested parties, suppliers, consultants as far as these are necessary for the fulfilment of the purposes mentioned under point 4.

6. recipients or categories of recipients to whom the data may be disclosed
Public bodies in the event of overriding legal provisions, external contractors in accordance with DSGVO as well as external bodies and internal divisions of the company on the basis of the purposes stated under 4.

7. standard periods for the deletion of data
The statutory retention obligations and periods are complied with. The legislator has enacted a variety of retention obligations and periods, which essentially require a retention period of 10 years, but in some cases may be less. In addition, deviations may arise due to statutory or contractual retention periods. After expiry of these periods, the corresponding data is routinely deleted if it is no longer required for the fulfilment of contracts (e.g. contracts for work and services).
If data is not affected by this, it is deleted when the purpose no longer applies. 8.

8 Planned data transfer to third countries
Data will be transferred to third countries for the fulfilment of contractual purposes, a relationship of trust similar to a contract, for the provision of advice and support to the data subjects.

9. technical and organisational measures according to DSGVO
cod.m GmbH takes all technical and organisational measures in accordance with DSGVO to protect the stored personal data and information.