Privacy Statement
Introduction
Being the operator of this website, COR Sitzmöbel GmbH & Co. KG (hereinafter “we”) are the data controller in charge of processing personal data of any users of such website. You can find our contact details in the imprint of the website, while the contacts for questions concerning the processing of your personal data are provided directly in this Privacy Statement.
We are strongly committed to protecting your privacy and your private and personal data. We collect, save, and use your personal data strictly in accordance with the provisions of this Privacy Statement and the applicable data protection provisions, including without limitation the European General Data Protection Regulation (GDPR) and national data protection provisions.
With this Privacy Statement, we wish to inform you to what extent and for what purpose your personal data is processed in connection with the use of our website.
Personal data
Personal data is all information about an identified or identifiable individual. This includes information about your identity such as your name, your e-mail address, or your postal address. Any information that cannot be directly linked to your identity (e.g. statistical details such as the number of users of the website) is, however, not considered to be personal data.
You can essentially use our website without disclosing your identity and without providing any personal data. In that case, we will merely collect general information about your visit to our website. However, some of the services offered require you to provide certain personal data. As a rule, we will process such data only for purposes connected with the use of this online offering, including without limitation for the provision of the desired information. Whenever personal data is collected, you are only required to provide the data that is absolutely essential. Also, you may be asked to provide additional details, which are optional information provided voluntarily. We let you know in each case whether the input fields are for mandatory or optional details. More specific details are provided in the relevant section of this Privacy Statement.
There is no automated decision-making on the basis of your personal data in connection with the use of our website.
Processing personal data
We store the information provided by you on protected dedicated servers located within the European Union. Technical and organisational measures are taken to protect such servers against loss, destruction, access, modification, or dissemination of your data by unauthorized persons. Access to your data will be permitted only to a limited number of persons in charge of the technical, commercial, or editorial support of the servers. Notwithstanding regular controls, full protection against all risks cannot be provided.
Your personal data is transmitted over the Internet in encrypted form. We use SSL (Secure Socket Layer) encryption for transmission of data.
Disclosure of personal data to third parties
We use your personal information exclusively for providing the services that you have requested from us. Insofar as we use external service providers in performing the service requested such external service providers will also access the data exclusively for the purpose of performing the service. By taking the necessary technical and organisational measures we ensure compliance with data protection policies and we demand the same of our external partners.
Moreover, we will not disclose the data to any third parties, including without limitation for advertising purposes, without your express consent. We will disclose your personal data only if you have given your consent to disclosure of the data or insofar as we are entitled or obligated to do so under legal provisions and/or administrative or judicial orders. This may include, without being limited to, giving information for purposes of criminal prosecution, in order to avert danger, or in order to enforce intellectual property rights.
Legal basis of data processing
Insofar as we obtain your consent to processing your personal data, Article 6(1)(a) of the GDPR constitutes the legal basis for such data processing.
Insofar as we process your personal data because processing is necessary for the performance of a contract or is necessary under a quasi-contractual relationship with you, the lawfulness of data processing is based on Article 6(1)(b) of the GDPR.
Insofar as we process your personal data because processing is necessary for compliance with a legal obligation, the lawfulness of data processing is based on Article 6(1)(c) of the GDPR.
Furthermore, Article 6(1)(f) of the GDPR may constitute the legal basis for data processing, if processing of your personal data is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by your interests or your fundamental rights and freedoms which require protection of personal data.
Throughout this Privacy Statement, we refer to the legal basis on which we process your personal data.
Deletion of data and duration of storage
We invariably delete or block any personal data provided by you as soon as the purpose of storage of such data has ceased to apply. However, we may continue to store your personal data beyond that, if such storage is governed by legal provisions to which we are subject, including without limitation the legal obligation to retain business records and documentation. In such a case, we will delete or block the personal data after the prescribed period of time has expired.
Use of our online offering
Information relating to your computer
Every time you access our online offering, we will collect the following information relating to your computer, regardless of whether or not you have registered: the IP address of your computer, the inquiry of your web browser, and the time stamp of that inquiry. In addition, the status and the amount of data transmitted in the course of the inquiry are collected. We also collect product and version information about the web browser used and the operating system of the computer. Furthermore, we record the website from which our own website has been accessed. The IP address of your computer is stored only for the duration of your use of our online offering; afterwards, it is deleted or anonymised by truncation. The remaining data is stored for a limited period of time.
We use this data to operate the website, more specifically for troubleshooting, or in order to assess the degree of utilisation of the online offering, or to carry out adjustments or improvements thereof. Such purposes also constitute our legitimate interest in data processing in accordance with Article 6(1)(f) of the GDPR.
Use of cookies
Like many other websites, our website uses cookies. Cookies are small text files that are stored on your computer and store certain settings and data of your web browser for the exchange with our website. As a rule, a cookie contains the name of the domain from which the cookie file has been sent as well as information about the age of the cookie and an alphanumeric identifier.
Cookies enable us recognise your computer and make any default settings immediately available. Cookies help us to improve our online offering and to provide you with an even better service customised to meet your particular requirements. This also constitutes a legitimate interest in the processing of the data in accordance with Article 6(1)(f) of the GDPR.
The cookies we use are so-called session cookies that are automatically deleted after the end of the browser session. In individual cases, we may use cookies with a longer storage time so that your default settings and preferences may be considered when you visit our website the next time.
Most web browsers are set to accept cookies by default. However, you can disable the storage of cookies or set up your web browser to inform you when you receive a cookie. It is also possible to manually delete stored cookies in the browser settings. Please note that your use of our online offering may be limited or restricted if you refuse to save cookies or delete necessary cookies.
Google Analytics
We use Google Analytics for statistical evaluation. Google Analytics is a web analytics service provided by Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94034, USA (“Google”). Google Analytics uses so-called “cookies”, which are text files placed on your computer, to help the website analyse how you use the site. The information generated by the cookie about your use of this website will as a rule be transmitted to and stored by Google on servers in the United States. If IP anonymisation is activated on this website, Google will first truncate your IP address for Member States of the European Union or other parties to the Agreement on the European Economic Area. Only under exceptional circumstances is the complete IP address transmitted to a server of Google in the United States and truncated there. On behalf of the owner of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity, and providing other services relating to website activity and Internet usage for the website owner. Google will not associate the IP address transmitted by your browser in connection with Google Analytics with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser software; however, please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent the data generated by the cookie and based on your usage of this website (including your IP address) being sent to and processed by Google by downloading and installing the browser plug-in available at:
tools.google.com/dlpage/gaoptout.
For further details please visit
tools.google.com/dlpage/gaoptout
or (general information on Google Analytics and data protection). Please be advised that on our web pages, Google Analytics has been extended by the code “anonymizeIp();” in order to anonymise IP addresses by deleting the last octet.We believe that based on the protective measures taken (anonymisation and right to object) data processing for the purpose of improving our online offering must be considered as a legitimate interest in data processing in accordance with Article 6(1)(f) of the GDPR.
Retargeting and remarketing
Retargeting and remarketing are technologies which allow displaying customised advertising to visitors of a certain website even after they have left that website. For this purpose, a service provider needs to recognise Internet users beyond the scope of its own website, using cookies created by the service provider. In addition, the user’s previous usage behaviour is taken into consideration. For example, if a user looks at certain products, these or similar products may later be displayed as advertisements on other websites. This is personalised advertising which is customised to the requirements of the relevant user. Personalised advertising does not require identification of the user beyond such recognition. Therefore, we do not combine data used for retargeting and/or remarketing with other data.
We use such technologies to place advertisements on the Internet. We use the services of third party service providers for placement of advertisements. Among other things, we use Google services which allow the automatic display of products that may be interesting for Internet users. This function is implemented by cookies. For further information on this technology please refer to Google’s privacy policies at
. Installation of cookies for Google Remarketing and Google AdWords Conversion Tracking can be prevented by settings in the user’s web browser software, by going to and changing the relevant settings.Placing advertisements constitutes a legitimate interest in data processing in accordance with Article 6(1)(f) of the GDPR.
Google Conversion Tracking
As an AdWords customer, we also use Google Conversion Tracking, an analysis service provided by Google, on our homepage. Google will store an additional cookie on your computer ("conversion cookie") if you have accessed our online offer via a Google ad. This cookie expires after 30 days and is not used for personal identification. When you visit our site, Google and we can see if you clicked on an AdWords ad to be redirected to our site. Each AdWords customer receives a different cookie. Cookies cannot be traced through the websites of other AdWords customers. The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they will not receive any information that personally identifies users. We use this information to improve our online offering. This is our legitimate interest in data processing pursuant to Article 6(1)(f) of the GDPR.
If you do not wish to participate in the tracking process, you can also reject the setting of a cookie required for this - for example using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies provided by the "googleadservices.com" domain.
ADFORM
Our website uses the technology of ADFORM (Hovedvagtsgade 6, 1103 Copenhagen, Denmark). A cookie is stored on your computer to track user behaviour ("PostTracking"). This is recorded when you click on an ad or access this website via an ad. ADFORM does not store any personal data such as name, email addresses or other personal data by setting cookies. All information is anonymized and contains technical information such as the ad frequency and display date of advertising, the browser used or even the installed operating system. You can find further information about ADFORM at: http://site.adform.com/privacy-center/platform/. On this page you can also object to the collection of ADFORM.
The use of ADFORM serves to optimize our online offer. This is also our legitimate interest in data processing pursuant to Article 6(1)(f) of the GDPR.
Conversion measurement with the visitor action pixel provided by Facebook
We use the "visitor action pixel" provided by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook") within our Internet presence. This allows users' behaviour to be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This process is designed to evaluate the effectiveness of Facebook ads for statistical and market research purposes and may help to optimize future advertising efforts. We use this information to improve our online offering. This is our legitimate interest in data processing pursuant to Article 6(1)(f) of the GDPR.
The data collected is anonymous to us, so it does not give us any indication of the identity of the users. However, Facebook stores and processes the data so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook Data Usage Guidelines:
www.facebook.com/about/privacy/
. You can allow Facebook and its partners to serve ads on and off Facebook. A cookie may also be stored on your computer for these purposes.If you don't want to, you can change the settings for your Facebook profile here:
www.facebook.com/ads/preferences/
.Order processing
If you place an order, we will use your personal information only within our company and our affiliated companies and the enterprise appointed to process purchase orders.
Storage and disclosure of data upon placement of an order
For order processing, we work together with a number of enterprises which are in charge of payment processing and logistics. We make sure that our partners also comply with data protection provisions. For instance, we disclose your address data (name and address) to the relevant carrier who delivers the ordered products to you. In this case, Article 6 (1)(b) of the GDPR constitutes the legal basis for data processing. Processing of your personal data is necessary for performance of the contract made with you.
We store the data for the period required to perform the contract. In addition, we store such data for the legally prescribed period in order to meet any post-contract obligations and insofar as retention periods under commercial and tax law have to be complied with. This retention period normally is ten (10) years until the end of the relevant calendar year.
Communication with us
There are various ways of contacting us, including but not limited to the contact form on our website. In addition, we will be happy to inform you regularly by e-mailing you our newsletter.
Contact form / Catalogue Order
If you wish to use the contact form of our online offering or if you want to order a catalogue, we will collect the personal data that you provide in the contact form, including but not limited to your name, adress and e-mail address. In addition, we record the IP address and the date and time of the enquiry. We process any data transmitted through the contact form exclusively for the purpose of answering your enquiry or reacting to your concern.
It is up to you to decide what information you provide in the contact form. In accordance with Article 6(1)(a) of the GDPR, your consent constitutes the legal basis for processing your data.
After the matter has been dealt with, the data is stored for some time in case you have any further questions. Without prejudice to the relevant legal retention periods, you may request deletion of the data at any time, otherwise the data will be deleted once the matter has been conclusively dealt with.
Newsletter
If you subscribe to our newsletter, we will use your e-mail address for advertising purposes of our own until you unsubscribe from the newsletter. We will regularly send you information by e-mail on current topics as well as e-mails informing you of special occasions such as special offers. Such e-mails may be personalised and individualised on the basis of information we have about you.
Unless you have given us your consent in writing, we use the so-called double opt-in procedure for subscription to our newsletter, i.e. we will send you our newsletter by e-mail only once you have expressly confirmed that you want us to activate transmission of the newsletter. We will then send you a notification e-mail and ask you to confirm, by clicking on one of the links contained in that e-mail, that you wish to receive our newsletter.
If you have explicitly subscribed to our newsletter, your consent constitutes the legal basis for processing of your data in accordance with Article 6(1)(a) of the GDPR. Under the applicable legal provisions, we may send you our newsletter without having obtained your express consent based on the fact that you have ordered certain goods or services from us and we have therefore received your e-mail address and you have not objected to receiving information from us by e-mail. In this case, our legitimate interest in direct mailing constitutes the legal basis in accordance with Article 6(1)(f) of the GDPR.
If you do no longer wish to receive our newsletters, you can revoke your consent at any time with effect for the future and/or object to receiving the newsletter without incurring any costs other than the transmission costs in accordance with the basic tariffs. Simply use the unsubscribe link contained in every newsletter or send a message to us or our data controller.
Google Maps
Our website contains the mapping service Google Maps over API. Provider is Google inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. It is necessary to save your IP Adress to use Google Maps. The information will as a rule be transmitted to and stored by Google on servers in the United States. The provider of this site has no influence on this data transfer. The use of Google Maps is in the interest of a pleasing presentation of our online offers and an easy findability of the places we have indicated on the website. This is our legitimate interest in data processing pursuant to Article 6(1)(f) of the GDPR. For further information on this technology please refer to Google’s privacy policies at
Social Media
Our website contains links to the social networks Facebook, Instagram and Pinterest. The links are identified by the logo of their relevant providers.
Clicking on a link opens the relevant social media web pages; this Privacy Statement does not apply to such web pages. For further details on the provisions applicable on such web pages please refer to the relevant privacy statements of each of the providers; you can find them at:
Facebook:
www.facebook.com/policy.php
Instagram:
help.instagram.com/155833707900388
Pinterest:
policy.pinterest.com/en/privacy-policy
No personal information is forwarded to the relevant providers before clicking on the links. Calling up the linked website also constitutes the basis for data processing by the relevant website provider.
Your rights; contact
We are strongly committed to explaining how we process personal data and to inform you about your rights as transparently as possible. If you want more detailed information or wish to exercise your rights, you can contact us at any time so that we can take care of your concerns.
Rights of persons concerned
You have extensive rights with respect to the processing of your personal data. First of all, you have an extensive right to information and under certain circumstances may demand correction and/or deletion or blocking of your personal data. You can also demand restriction of processing and you have a right of objection. You also have a right to data portability with a view to personal data that you have transmitted to us.
If you wish to assert any of your rights and/or want more detailed information concerning your rights, please contact our customer service. Alternatively, you may contact our data protection officer.
Revocation of consent and objection
You may at any time revoke your consent with future effect. Revocation of the consent does not affect the legality of any processing performed on the basis of such consent given up until the revocation thereof. In such cases, too, please contact our customer service and/or our data protection officer.
Insofar as the processing of your personal data is not based on consent given by you but on another legal basis, you can object to the data processing. Your objection will lead to a review and, if necessary, to termination of the data processing. You will be informed of the outcome of the review and – if the data processing is to be continued after all – you will receive further information from us on why the data processing is admissible.
Data protection officer; contact
We have appointed an internal data protection officer who you can contact directly. If you have questions regarding our handling of personal data or if you require other information on data protection issues, please do not hesitate to contact our Data Protection Officer at datenschutz@cor.de
Complaints
If you are of the opinion that the processing of your personal data does not comply with this Privacy Statement or the applicable data protection provisions, you have the right to file a complaint with a supervisory authority. You can file a complaint with our data protection officer. Our data protection officer will review the matter and inform you of the outcome of the review.
Further information; amendments
Links to other websites
Our online service may contain links to other websites. Generally, these links are identified as such. We cannot control to what extent linked websites comply with the applicable data protection provisions. We therefore recommend that for other providers’ data protection statements, you refer to the information given on their respective websites.
Amendments of this Privacy Statement
Any revision of this Privacy Statement is identified by the date specified (see below). We reserve the right to amend this Privacy Statement at any time with effect for the future. Amendments will be made, among other things, in case of technical adjustments of the online offering or changes of the data protection laws. The Privacy Statement as amended from time to time is always made available directly through our online offering. We recommend obtaining information on any changes of this Privacy Statement on a regular basis.
This Privacy Statement was last revised in: May 2018
