DATA PROTECTION
Responsible Authority
We are happy about you visiting our website. We would like to introduce you to the responsible authority in terms of data protection law as applicable:
HiTec Beverage Solutions GmbH
represented by the Manager
Natalia Wagner
Christopher Noll
Trothengasse 5
93047 Regensburg
Phone: + 49 1511 574 65 80
E-mail: info@beverage-solutions.de
General Information
Pursuant to our statutory obligations, we would like to inform you about the collection and use of your personal data.
When you use our website, personal data about you will be collected. This may happen by you entering the data yourself, for example your e-mail address. But our system also collects your data automatically, for example whenever you visit our website. This happens irrespective of the device or the software that you use to visit our website.
All data that you enter in our app is provided voluntarily; there are no disadvantages to you if you do not provide data. But without certain data, we are unable to provide services or to conclude contracts. Whenever such information is necessary, we will point it out to you.
On this website, the user’s personal data is only collected within the framework of the existing data-protection law, in particular the General Data Protection Regulation (GDPR). The legal terms used in the text are defined in Art. 4 of the GDPR.
The GDPR allows data processing in three cases in particular:
- in accordance with Art. 6 para. 1 (a) and 7 GDPR, when you have consented to us processing your data; in this Privacy Policy and in the cases of consent pursuant to Art. 4 no. 11 GDPR, we will inform you in detail and each time for what purposes and under what circumstances your data will be processed by us;
- in accordance with Art. 6 para. 1 (b) GDPR, when processing your personal data is necessary for negotiating, concluding or performing a contract;
- in accordance with Art. 6 para. 1 (f) GDPR, if the balancing of interests leads to the conclusion that the processing is necessary to protect our legitimate interests; this means in particular our interests to analyse, optimise and secure the offers on our website – meaning primarily the analysis of user behaviour, setting up profiles for advertisement purposes and storage of access data as well as the use of third-party providers.
Inventory Data
We collect inventory data as far as it is necessary to establish, negotiate or amend a contract (including one without remuneration) between us and the user. This can be: customer data (for example name, address), contact data (for example e-mail address, phone number), service data (for example services ordered, duration, payment). Upon establishing the user relationship, we will ask you for this data (for example name, address and e-mail address) and will also tell you which of the information is required to establish the user relationship.
Usage Data
We also collect usage data to allow users to use the services on our website. These may consist of: usage information (for example visited websites or parts, duration of visit, interest in services), content data (for example data, text, images, sounds, videos entered or uploaded by you), meta data (for example identity of your device, location, IP address).
We will only combine usage data if and insofar as it is necessary for billing purposes. Otherwise, we will only put together usage data pseudonymously and only insofar as you have not objected. You may send this objection to the address indicated in the “About Us” section or the responsible authority indicated in this Privacy Policy at any time.
The legal basis for this data processing are our legitimate interests pursuant to Art. 6 para. 1 (f) GDPR in analysing the website and your use, possibly also the statutory permission to store data as part of the negotiation of a contract pursuant to Art. 6 para. 1 (b) GDPR.
Hoster
Lobenstein CrossMedia
Our Website is presented in the Internet by a service provider. We use the service Lobenstein CrossMedia, Edwin Kederer, Nürnberger Straße 192c, 93059 Regensburg. We have concluded a data processing agreement with our provider. With this contract, our provider is obliged to process the data according to our instructions. You can find more information on data processing at our provider in his privacy policy at https://www.lobenstein-crossmedia.de/Datenschutz.php. The legal basis for this data processing is on the one hand our legitimate interest in a technologically perfect online offering and its design and optimization in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR, and, on the other hand, our contractual or pre-contractual legal relationship in accordance with Art. 6 para. 1 (b) GDPR.
Furthermore, our provider stores information, the so-called server log files, each time the website is used; this is information which is automatically transferred by your browser. In detail, this data consists of:
- your IP address
- type and version of your browser
- host name
- time of visit
- the page from which you came to our page
- name of the page opened
- exact time of usage as well as
- the amount of data transferred
This data will only be used for statistical purposes and do not allow us to identify you as a user.
Advertisements
Before sending you advertisements, we will ask for your explicit consent pursuant to Art. 4 no. 11 GDPR, except in cases of advertisements for similar products to the one you already acquired. This will happen in particular when you grant us consent to mail our newsletter or when you fill out a contact form. You may withdraw your consent at any time in accordance with the subsequent section “Consent”.
INSOFAR AS WE USE YOUR PERSONAL DATA FOR DIRECT MARKETING, YOU MAY ALSO OBJECT TO THE USE OF YOUR DATA FOR THAT PURPOSE AT ANY TIME. THIS MAY BE DONE THROUGH ANY OF OUR MEANS OF CONTACT, PARTICULARLY BY E-MAIL TO THE E-MAIL ADDRESS LISTED IN THE “LEGAL NOTICE” SECTION WITHOUT ANY FORMAL REQUIREMENTS. WE WILL THEN NO LONGER USE YOUR DATA FOR DIRECT MARKETING.
First Contact through Electronic Request
If you contact us in electronic form (for example by mail, fax, phone, messenger, etc.), we store and process the data which you have given us (for example name, contact information, content of the request). This is based on our legitimate interest in an effective communication with customers in accordance with Article 6 para. 1 (a) GDPR and, as far as it concerns a request to enter into or to perform a contract, also with Article 6 para. 1 (b) GDPR.
We will only pass on this data to third parties as far as required for the performance of the contract (in accordance with Article 6 para. 1 (b) GDPR), by the overwhelming interest in effective services (in accordance with Article 6 para. 1 (f) GDPR) or based on your consent (in accordance with Article 6 para. 1 (a) GDPR) or if there is another legal permission or obligation.
You may ask us at any time and without any cost to provide information about the purpose of the processing, the origin and the recipient, if any, of your data. You may also request that we correct, delete or limit the processing of your personal data. You may object against the (further) processing of your data at any time and you have a right for the data to be made transferable as well as the right to file a complaint with the competent supervisory agency.
In general, your data will only remain stored as long as required by the purpose of the respective data processing. A longer storage is an option, in particular when required in order to pursue our rights, for other legitimate interests of ours or when there is a statutory duty to keep the data longer (for example record-keeping under tax law, statute of limitations).
Consent
Whenever we ask you for your consent for the processing of your data, we will inform you in clear language and in an easily accessible way about the cases for which you will be granting your consent. Any consent that we ask you for is voluntary. Any advantage that you wish to gain by granting consent is also available without consent; simply ask us.
Regarding any consent, you have the right to revoke any consent given to us for the processing of your personal data at any time. You just need to contact us without any particular formal requirement, for example through our contact form, an e-mail to the e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered by us). Your withdrawal has no effect on the legality of the data processing carried out up to that point.
Storage Period
Generally, your data will only remain stored as long as required by the purpose of the respective data processing. Storage beyond that is possible in particular if it is still required for pursuing our rights or for other legitimate interests of ours.
For your inventory data which were necessary to perform a contract (including one without remuneration), this means that we store this data until the complete performance or termination of the contractual relationship plus the limitation period (which is generally 2 or 3 years) plus an adequate extra time for potential interruptions of the limitation period.
For your usage data which was collected in the course of your use of the website, this means that we will store it only for the time still required for the proper functionality of our website and as long as we still have a legitimate interest. Statistical information will be primarily stored by us in pseudonymous form.
Beyond that, we still store your data for as long as we are required to do so by law. This concerns in particular the tax-law requirements to keep records, usually for 6 or even 10 years.
Cookies
Essential Cookies
Based on our legitimate interest in a flawlessly functioning online offer and its economic and efficient design and optimization according to Article 6 para. 1 (f) GDPR, our website uses cookies and where required technologies with a similar target bearing, like pixel, web-beacons or tags, in order to allow you to use our offer better, more effectively and in a more secure way. A cookie is a record of information that is stored on your terminal device (computer, tablet, smartphone, etc.). These can be “session cookies”, which are automatically deleted when you leave our website. Other cookies are stored on your computer permanently until you delete them. That allows us to recognize your browser when you visit our website again and to provide you with features or offers according to your previous usage.
Our website only uses cookies which are necessary for the use of our website and in particular no external tracking or advertising cookies.
Your browser allows you to prevent the use of cookies in general or in specific cases. Please check the instructions for your browser to find out more about this. You can also delete cookies following these instructions which we have listed for you:
for Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=en
for Safari: https://support.apple.com/en-gb/guide/safari/sfri11471/mac
for Firefox: https://support.mozilla.org/en-US/kb/clear-cookies-and-site-data-firefox
for Edge: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies
for Internet Explorer: https://support.microsoft.com/en-gb/help/278835/how-to-delete-cookie-files-in-internet-explorer
Blocking cookies may limit the functionality of our website and of other websites visited by you.
More information on this topic, in particular how you can administer, limit or completely disable third-party cookies and technologies with a similar purpose, can be found at:
https://www.aboutads.info/choices
https://www.youronlinechoices.eu
https://www.networkadvertising.org/choices
Transfer of data
Transfer to Third Parties
We dislike spam as much as you do. We will therefore not transfer your data to third parties, unless permitted by law.
Transfer of customer data may either
- be required for the performance of a contract and in that case be permitted according to Art. 6 para. 1 (b) GDPR, or
- be permitted based on our legitimate interest in an effective service structure pursuant to Art. 6 para. 1 (f) GDPR, or
- covered by your consent pursuant to Art. 6 para. 1 (a) GDPR, or
- become necessary if we will be legitimately asked by a government or an agency to hand over your data pursuant to Art. 6 para. 1 (c) GDPR.
If your data are transferred to third parties, this is mentioned in this privacy policy.
Transfer to other countries, particularly USA
Our website uses external providers located outside of the EU for different features. In particular, the use of cookies, active Java scripts and other technology can lead to processing and storage of your data outside of the EU. But we will not transfer your data to a third country, unless the EU Commission has determined that there is a similar level of data protection as in the EU or unless you have provided us with your informed consent or we have agreed on the standard contractual clauses for the protection of your data with the provider.
Users‘ Rights
You may request us anytime to provide information about the personal data stored about you free of charge. To avoid misuse, this will require personal identification.
Deletion, Correction, Limitation
You may at any time demand from us that we correct (or complete) incorrect data as well as a limitation of the processing of data or deletion of your data. This applies in particular if the reason for processing the data is no longer valid, if a required consent has been revoked and there is no other legal basis or if our data processing is unlawful. We will then correct, block or even delete your personal data without delay as far as permitted by law.
Objection
The right to object to advertisement is governed by our text regarding consent:
Regarding any consent, you have the right to revoke any consent given to us for the processing of your personal data at any time. You just need to contact us without any particular formal requirement, for example through our contact form, an e-mail to the e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered by us). Your withdrawal has no effect on the legality of the data processing carried out up to that point.
Data Transfer
You may request us to transfer the data stored about you in machine-readable form.
Complaint
If you feel that our data processing has violated any of your rights, you may file a complaint with the competent regulatory agency (here you find a list of the agencies).
Changes to the Privacy Policy
If and when factual or legal reasons will compel us to amend the Privacy Policy, we will update this page accordingly. This will not change the consent provided by the user.
Data Entry
Encryption of Data Entry
When you enter data on our website, whether in a contact form, during the registration process, when you log in or for payment purposes, the website, where you enter the data, is encrypted. Thus, third parties can not read what you enter. You will recognise the encryption by the lock symbol in your browser and by the URL beginning with “https“ instead of “http“.
Contact Forms
General contact form
When you fill out a contact form or when you send us an e-mail or another electronic message, your information will be stored for the processing of the request, for possible follow-up questions or for other related questions and will only be used to follow up with the request.
Your data will be transferred in an encrypted manner, preventing third parties from reading your data while it is being entered.
Basis for this storage is the safeguarding of our legitimate interests in regard to communication with interested users pursuant to Art. 6 para. 1 (f) GDPR and in the case of inquiries prior to entering into a contract also the performance of a contract pursuant to Art. 6 para (b) GDPR.
Your data remains stored for as long as the processing of the request requires, in particular as long as the storage is still necessary to perform the contract, to pursue our rights or for our other legitimate interests or we are compelled by law to keep your data stored (for example based on tax-law requirements to maintain files).
Offer
On our website, you find a contact form, through which you may request a specific offer for our goods and services. We will ask for for the necessary data as in the form, so we can prepare the offer.
Your data will be entered in an encrypted manner, so that third parties cannot read your data while being entered.
The legal basis for this storage is our legitimate interest in communication with interested users in accordance with Art. 6 para. 1 (f) GDPR and in case of contractual requests also the storage of contractual data in accordance with Art. 6 para. 1 (b) GDPR.
These data remain saved until you will terminate your access by sending an e-mail to the e-mail address listed in the "About Us" section. After that, they will remain stored in connection with the necessary performance of the contract (see the section on user/contract data).
Return Call
On our service page, you can ask for a call from one of our customer service agents.
We will ask for
– your first name, because we like to address your personally,
– your phone number, so we can call you, and
– your e-mail address, because we will e-mail you to confirm your request.
Your data will be entered in an encrypted manner, so that third parties cannot read your data while being entered.
The legal basis for this storage is our legitimate interest in communication with interested users in accordance with Art. 6 para. 1 (f) GDPR and in case of contractual requests also the storage of contractual data in accordance with Art. 6 para. 1 (b) GDPR.
We will only use this data for your specific request and will save it for 6 months after the request has been completed, so we can refer to the results already achieved in the case of subsequent service requests.
Job Applications
If you send us a job application, we will process the personal data from your application. This includes all of your application documents. We will in particular store your contact information, the information about your schooling and training, internships, work experience as well as certificates.
We ask you not to send any information which tells us about race, ethnic origin, gender, religion or worldview, disability, age, illnesses, physical or mental health, pregnancy, political views, philosophical or religious convictions, membership in a union, sexual identity or sexual life, because we evaluate applications independent of such information.
Applications are subject to our strict internal rights management. Only employees who are part of the application process will receive access to the application, usually only the HR department as well as the management, if applicable. All of our employees are ordered to maintain confidentiality.
The processing of your application information is based on Art. 88 GDPR in connection with § 26 BDSG, according to which employees' personal data may be processed for the purpose of the employment if this serves to establish an employment contract.
If you will be hired based on the application, your information will be stored in your personnel file in accordance with the separate privacy policy for employees' data. If your application will not be successful, we will delete your information completely within 3 months from the rejection, unless you have declared your specific consent to use your information for future applications. You may revoke this consent at any time, upon which we will immediately delete your application information.
Videoconferences, Webinare and Onlinemeetings
Microsoft Teams
We use external communication providers (third-party providers or platforms for our video conferences, audio conferences, webinars or other online meetings and online communications), here Microsoft Teams, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA.
This is done either
- within the framework of our contractual or pre-contractual legal relationships according to Art. 6 para. 1 lit. b GDPR,
- within the scope of your consent, provided that we have obtained this in advance (such as for a recording) in accordance with Art. 6 para. 1 lit. a GDPR or otherwise
- in the context of our legitimate interest in a technically flawless online offer and its economically efficient design and optimization acc. Article 6 (1) lit. f GDPR.
Every time you use our external communication provider, you enter or display all the data that you provide during communication (in particular inventory data such as name and email, usage data such as the browser used, websites visited, length of stay, referrer URL and your IP address, content data such as audio and video communication and / or recording, chat history, shared screen contents) to the external communication provider and saved by it. We ourselves use settings that are as privacy-friendly as possible, you can also take such precautions. You can register with alias names or unique email addresses, for example, or deactivate your audio and video transmission (in part).
This will forward your data to the United States. However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. Furthermore this provider is certified according to the EU-US Data Privacy Framework. This means that the transfer of data to the USA is possible in a legally secure manner on the basis of the adequacy decision concluded on 10.07.2023.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
Your data will remain stored insofar as it is still necessary for the purposes of your consent, for contract fulfillment / processing, for legal prosecution by us or for our other legitimate interests or if we are legally required to keep your data.
We and the external communication provider will not pass on your data to third parties. An exception can be an evaluation of the usage data for service and backup purposes as well as for marketing purposes by the external communication provider. For further use of your data by the external communication provider, we refer to their privacy policy
https://privacy.microsoft.com/de-de/privacystatement
and the associated additional safety information
https://www.microsoft.com/de-de/trust-center.
If the external communication provider stores cookies or other trackers for you, we also refer to our general presentation in this data protection declaration for the general handling and deactivation of cookies.
Skype
We use external communication providers (external providers or platforms for our video conferences, audio conferences, webinars or other online meetings and online communication), in this case the provider Skype, the Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA. This is based either
- on our contractual or pre-contractual legal relationship in accordance with Art. 6 para. 1 (b) GDPR,
- on your consent if we have obtained that before (for example for a recording) in accordance with Art. 6 para. 1 (a) GDPR or
- on our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR.
Each time you use our external communication provider, any data that you enter, indicate or show during the communication (in particular contractual data like name and e-mail, usage data like the browse used, visited websites, duration of the visit, referrer URL and your IP address, content data like audio and video communication and/or recordings, chat protocols, shared screen content) will be transmitted to the external communication provider and stored by them. We use settings that guarantee as much privacy as possible, and you can be careful about your privacy as well. For example, you can register with alias names or with one-time e-mail addresses or (partially) deactivate your transfer of audio and video.
This means that your data will be transmitted to the USA.
However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. Furthermore this provider is certified according to the EU-US Data Privacy Framework. This means that the transfer of data to the USA is possible in a legally secure manner on the basis of the adequacy decision concluded on 10.07.2023.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
Your data will remain stored as long as necessary for the purposes of your consent, for performing the contract, to pursue our legal rights or for other legitimate interests of ours or as long as we are required by law to keep your information.
Neither we nor the external communication provider will pass on your data to third parties. Exceptions may be made for analysing the user date for service and security purposes as well as for marketing purposes of the external communication provider. Regarding the further processing of your data by the external communication provider, we refer you to the provider's privacy policy.
https://privacy.microsoft.com/de-de/privacystatement
and the corresponding additional security information
https://www.microsoft.com/de-de/trust-center.
If the external communication providers place cookies or other trackers on your computer, we refer you to our general information about dealing with cookies and deactivating them in this privacy policy.
Zoom
We use external communication providers (external providers or platforms for our video conferences, audio conferences, webinars or other online meetings and online communication), in this case the provider ZOOM Video Communications Inc., San Jose Office, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. This is based either
- on our contractual or pre-contractual legal relationship in accordance with Art. 6 para. 1 (b) GDPR,
- on your consent if we have obtained that before (for example for a recording) in accordance with Art. 6 para. 1 (a) GDPR or
- on our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR.
Each time you use our external communication provider, any data that you enter, indicate or show during the communication (in particular contractual data like name and e-mail, usage data like the browse used, visited websites, duration of the visit, referrer URL and your IP address, content data like audio and video communication and/or recordings, chat protocols, shared screen content) will be transmitted to the external communication provider and stored by them. We use settings that guarantee as much privacy as possible, and you can be careful about your privacy as well. For example, you can register with alias names or with one-time e-mail addresses or (partially) deactivate your transfer of audio and video.
When using this provider, it may happen that your data is transferred to the USA. However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. This applies in particular since the US Presidential Decree of 07.10.2022.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
Your data will remain stored as long as necessary for the purposes of your consent, for performing the contract, to pursue our legal rights or for other legitimate interests of ours or as long as we are required by law to keep your information.
Neither we nor the external communication provider will pass on your data to third parties. Exceptions may be made for analysing the user date for service and security purposes as well as for marketing purposes of the external communication provider. For the further use of your data by the external communication provider, we refer you to their terms and conditions https://zoom.us/terms and the associated privacy policy https://zoom.us/privacy
Insofar as external communication providers store cookies or other trackers on your device, we refer you to our general information about dealing with cookies and deactivating them in this privacy policy.
Security systems
reCAPTCHA
Based on our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR, we use the reCAPTCHA tool provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google“).
The reCAPTCHA tool provided by Google checks if the entries on our website are made by a human or are due to fraudulent automated machine processing and is therefore mainly used in connection with forms. The reCAPTCHA tool uses the following data points to determine that an action was taken by a human and not by an automated bot: IP address of the device used, identification of the browser and the operating system, date and duration of the visit as well as user behaviour, for example mouse movements or other information. The procedure only serves the purpose of fending off spam, DDoS attacks and similar automated attacks. The transmitted IP address will only be connected with information from your Google account if you are logged into your Google account at the time of using Google reCAPTCHA. If you don't want your data to be transmitted, you simply log out from Google before.
When using Google reCAPTCHA, personal data can be transferred to a server of Google in the USA.
However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. Furthermore this provider is certified according to the EU-US Data Privacy Framework. This means that the transfer of data to the USA is possible in a legally secure manner on the basis of the adequacy decision concluded on 10.07.2023.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
You can find more information about the use of your data by Google in the privacy policy of Google https://www.google.de/intl/de/policies/privacy/.
If you don't want your data to be transmitted, you can deactivate Java scripts in your browser or install a blocker which will prevent Java scripts from being executed (for example https://noscript.net). We do however want to point out that this can impair the use of our or other websites.
Fonts
Google Fonts
Based on our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR, we use Google Fonts, online font libraries provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google“), to display fonts on our website. External font libraries especially capable of an even, fast and secure presentation.
For the use of the online fonts, no cookies or other trackers are stored in your browser. The font files (CSS, fonts) are requested from the provider of the font libraries. But, as with any data transfer on the internet, your usage data like your IP address, the browser used, the website visited previously as well as your user behaviour will be transmitted to the provider of the fonts.
Google points out that all requests concerning the CSS and fonts are absolutely separated from all other Google services. They will not be attributed to your account and will only be stored by Google for a short time. Google uses the data only in pseudonymous form for statistical evaluations. You can find detailed information about Google Web Fonts at https://developers.google.com/fonts/faq.
By using Google Fonts, your data will be sent to Google servers in the USA and will be stored there. You can find more information about the use of your data by Google in the privacy policy of Google:
https://policies.google.com/privacy?hl=de&gl=de
This is our current valid privacy policy from 03.12.2024