Data Protection
logo
logo

1. Data protection at a glance

General information
The following information represents a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be taken from our data protection policy provided below this text.

Data collection on our website
Who is responsible for data collection on this website?
Data processing on this website is undertaken by the website operator. You will find the operator’s contact data in the imprint of this website.

How do we collect your data?
Your data will be collected when you provide us with the data. This may be data you enter in a contact form.

Other data is automatically collected by our IT systems when visiting the website. This is mainly technical data (e.g. the Internet browser, operating system or time of site access). This data is automatically collected when you enter our website.

What is your data used for?
Some of the data is collected to guarantee fault-free provision of the website. Other data can be used for analysis of your user behaviour.

Which rights do you have with regard to your data?
You have the right to receive free information about the source, recipients and purpose of your saved personal data. You also have the right to ask for correction, blockage or deletion of this data. Should you have any questions about the subject of data protection, you are welcome to contact us at any time at the address provided in the imprint. Furthermore, you have the right to lodge a complaint with the responsible supervisory authority.

Analysis tools and third party provider tools
Your surf behaviour can be statistically analysed when visiting our website. This primarily takes place using Cookies and so-called analysis programs. The analysis of your surf behaviour is generally anonymous; the surf behaviour cannot be traced back to you. You can appeal against this analysis or prevent certain tools by non-use. Detailed information can be found further below in this data protection policy.

You can appeal against this analysis. We will inform you about the appeal options in this data protection policy.

 

2. General information and mandatory information

Data protection
The operators of this site take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with the statutory data protection regulations and this data protection policy.

Various personal data is collected when you use this website. Personal data is data with which you can be personally identified. This data protection policy explains which data we collect and what it is used for. It also explains how this takes place and for which purpose.

Please note that data transmission via the Internet (e.g. communication by e-mail) may involve security loopholes. It is not possible to fully protect data against access by a third party.

Information on the responsible party
The responsible party for data processing on this website is:

Hörmann KG Antriebstechnik
Michaelisstraße 1
33803 Steinhagen

Telephone: 05204 922-0
E-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.

The responsible party is the individual or legal person, who decides alone or with others about the purposes and means of processing personal data (e.g. names, e-mail addresses, or similar).

Withdrawal of consent for data processing
Many data processing transactions are only possible with your explicit consent. You can withdraw your given consent at any time. An informal message to us via e-mail shall suffice for this. The legitimacy of data processing undertaken up until withdrawal remains unaffected by the withdrawal.

Right to lodge a complaint with the responsible supervisory authority
In case of breaches against data protection laws, the affected person has the right to lodge a complaint with the responsible supervisory authority. The responsible supervisory authority for data protection issues is the Data Protection Commissioner of the federal state in which our company headquarters are located. A list of data protection officers and their contact data can be found under the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability
You have the right to receive the data we have automatically processed based on your consent or in fulfilment of a contract, in a structured, commonly used and machine-readable format or request that a third party receives it. If you request direct transmission of the data to another responsible party, this shall only take place if technically feasible.

SSL or TLS encryption
This site uses an SSL or TLS encryption due to security reasons and to protect the transmission of confidential contents, such as orders or requests which you send to us as the site operator. You can recognise an encrypted connection when the browser address line changes from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, data you transmit to us cannot be read by third parties.

Information, blockage and deletion
You have the right to free of charge information at any time about your saved personal data, its origin, recipients, and the purpose of data processing, and also have the right to amend, block or delete this data if necessary, within the scope of the valid legal regulations. Should you have any questions on the subject of personal data, you are welcome to contact us at any time at the address provided in the imprint.

Appeal against advertising e-mails
The use of contact data published as part of the mandatory imprint to send advertising and information materials not explicitly requested is hereby rejected. The operators of the sites explicitly reserve the right to take legal action in case of unrequested sending of advertising information, such as spam e-mails.

 

3. Data protection officer

Legally stipulated data protection officer
We have appointed a data protection officer for our company.

Jens Paul
Nemesis Consulting GmbH
Carl-Schurz-Str. 21-23
66953 Pirmasens

E-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.

 

4. Data collection on our website

Cookies
The Internet site partially uses so-called Cookies. Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve the purpose of making our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the Cookies we use are so-called “Session Cookies”. They are automatically deleted after the end of your visit. Other Cookies remain stored on your end device until you delete them. These Cookies allow us to recognise your browser again on your next visit.

You can set your browser so that you are informed about the placement of Cookies and only allow Cookies in the individual case, exclude the acceptance of Cookies for certain cases or in general, and activate automatic deletion of Cookies when closing the browser. The functions of this website may be restricted if Cookies are deactivated.

Cookies that are required to carry out the electronic communication process or to provide certain functions you have requested (e.g. the shopping cart function) are stored on the basis of Art. 6 sec. 1 lit. f GDPR. The website operator has a legitimate interest to store Cookies for a technically fault-free and optimised provision of its services. If other Cookies (e.g. Cookies that analyse your surfing behaviour) are saved, these will be handled separately in this data protection policy.

Server log files
The provider of the pages automatically collects and saves information in so-called server log files, automatically transmitted by your browser to us. These are:
• Browser type and browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of server request
• IP address
• MAC address
• Gateway control commands
• System internal database requests

This data is not compiled with other data sources.

The basis for data processing is Art. 6 sec. 1 lit. b GDPR, which allows processing of data to fulfil a contract or pre-contractual measures.

Contact form
If you send us your requests by contact form, this can be found under FAQs on this website; your details from the enquiry form, including the contact data provided by you, will be stored by us for the purpose of processing the request and in case of any follow-up questions. We do not pass on this data without your consent.

Processing of the data entered in the contact form therefore takes place exclusively on the basis of your consent (Art. 6 sec. 1 lit. a GDPR). This consent can be revoked at any time. An informal message to us via e-mail shall suffice for this. The legitimacy of data processing transactions undertaken up until withdrawal remains unaffected by the withdrawal.

The data you have entered in the contact form remains with us until you request deletion or withdraw your consent to storage, or until the purpose of data storage no longer exists (e.g. after the processing of your request is completed). Compulsory legal regulations – especially retention periods – remain unaffected.

Registration on this website
You can register on our website to use additional functions on the site. We only use the data you have entered for the purpose of use of the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full, otherwise the registration will be rejected.

For any important changes, such as to the scope of the offer or in case of necessary technical changes, we will use the e-mail address you provided for registration in order to inform you.

Processing of the data entered during registration takes place exclusively on the basis of your consent (Art. 6 sec. 1 lit. a GDPR). You can withdraw your given consent at any time. An informal message to us via e-mail shall suffice for this. The legitimacy of data processing already undertaken remains unaffected by the withdrawal.

The data collected during registration will be stored by us, as long as you are registered on our website, and will then be deleted. Legal retention periods remain unaffected.

Processing data (customer and contract data)
We only collect, process and use personal data if necessary for the justification of, content-related design of, or change to legal relationships (inventory data). This takes place on the basis of Art. 6 sec. 1 lit. b GDPR, which allows processing of data for fulfilment of a contract or pre-contractual measures. Personal data about the utilisation of our Internet sites (usage data) is only collected, processed and used by us if necessary to allow the user to utilise the service or for billing purposes.

The collected customer data will be deleted after completion of an order or the end of the business relationship. Legal retention periods remain unaffected.

 

5. Data processing in the gateway, app and online portal

Processing of data, including personal data, is necessary for the use of the services in the gateway, app and online portal. Processing takes place on the basis of the contract concluded with you (Art. 6 sec. 1 lit. b GDPR) or on the basis of additionally obtained consent (Art. 6 sec. 1 lit. a GDPR).

Data transfer: gateway – server – app
With the connection of the gateway to the public network, product IDs and the respective switching operations are transmitted to the central online portal.

When using the app, individual switching operations are linked to the mobile end device (device ID) and the user (user ID), and are transmitted to the central online portal.

The following data is stored within the respective components and can be viewed/read out in service cases by service technicians of Hörmann KG or a subcontractor. Customer administrators still retain access when using central portal administration.

Data processing in the gateway
• Radio code
• Status information for individual device operators on feedback-capable systems
• Identification number of the device
• Unique identification of the gateway (MAC addresses of the gateway)
• Network configuration of the local network
• User administration/assignment of permissions

Data processing in the online portal
• Status information for individual devices on feedback-capable systems
• Gateway ID
• MAC address of gateway
• Log file for switching commands
• User master data (users and administrators)
• Assignment of users to gateways and mobile end devices
• Administrator contact data (e-mail, phone, postal address)
• Registered mobile end devices
• Rights concept/access matrix
• Evaluations

Data processing within the app
• Device ID and password for login to the portal
• The MAC address of all gateways which the app accesses or controls
• IP addresses of the gateways which the app accesses or controls
• The user name of the gateways which the app accesses or controls
• Optional: The password to login to the gateway or gateways
• The scenarios created by the user in the app
• The options set by the user in the app
• System notifications (message text), and whether they have been read

 

Data logs and use
The scope of log data available to the customer can be individually defined by the administrator. The log period can be set from 0 to 90 days.

Hörmann KG recommends coordinating the scope of log data and the use of evaluations with the respective works committee and data protection officer of the company.

Hörmann KG stores all log data during the estimated product lifecycle for service-related use (on average 5-7 years). Whenever technically feasible, all personal references are removed from the data (assignment of switching operations to individual operator units, but not to the controlling user).

The log data is aggregated for statistical purposes (e.g. average number of switching operations per operator). All personal identifiers related to the individual switching operations are removed.