The protection of your personal data is very important to us. In order that all the data processing procedures on our website and in our offers are transparent and comprehensible to you as a visitor and visitor to our website, we explain in this Privacy Statement the type, scope and purpose of the processing of your personal data on our website. The terms used should be read within the meaning of Art. 4 of the EU General Data Protection Regulation (hereinafter “GDPR”).
You can save or print out the Privacy Statement by either choosing the commands “print” or “save page” in your browser.
Timeliness and changes to this Privacy Statement
This Privacy Statement is currently valid and is so as of June 2021. By continuing to develop our website and offers or due to changed legal or official requirements, it may be necessary to change this Privacy Statement. You can retrieve and print out the current Privacy Statement at any time on our website under the Data Protection tab.
The following is responsible for processing personal data on this website:
Aux Pieds de la Tour Eiffel GmbH
St. Johanner Markt 5
Tel.: + 49 - (0)681 - 38 38 191
Tel.: + 49 - (0)681 - 38 38 192
Data protection enquiries
Please direct all enquiries about the processing of your personal data or the exercising of your rights referred to below by e-mail, fax or post to firstname.lastname@example.org.
General information on the processing of personal data
Types of data processed
We collect and process inventory data on our website (e.g. names, addresses), contact details (e.g. e-mail addresses, telephone numbers, fax numbers, postal address), usage data (e.g. websites visited, links clicked, interest in content, access times, access locations) content data (e.g. comments, text entries, photos, videos) and meta and communication data (e.g. device information, browser information, IP addresses).
Categories of the persons concerned
Those affected by the processing of personal data are all visitors and visitors to our website.
Purpose of processing
We collect and process the personal data of visitors to our website in order to pass them on to you and provide them with information (e.g. contact and other enquiries, Newsletter) and, if necessary, carry out statistics, range measurement and analyses (e.g. using marketing and analytical tools) so that we can design and optimise content and functions more effectively for managing and optimising the website technically and to close security loopholes.
Bases for processing personal data on this website
We only process personal data if we are entitled to do so based on a legal basis. These legal bases are referred to individually below. Otherwise we are always entitled to process personal data if the data subject has consented (see Art. 6(1) clause 1(a), Art. 7 GDPR) or if we are obliged to fulfil contractual or pre-contractual obligations (see Art. 6(1) clause 1(b), if we have to fulfil legal obligations (see Art. 6(1) clause 1(c) GDPR) or if we protect our legitimate interests (see Art. 6(1) clause 1(f) GDPR).
Recipient of personal data
We transfer some personal data to processors or other third parties (e.g. hosting agencies etc.) with whom we cooperate. We are entitled to do so if the data subject has consented (see Art. 6(1) clause 1(a), Art. 7 GDPR) or if we, in so doing, fulfil contractual or pre-contractual obligations (see Art. 6(1) clause 1(b) GDPR), if we in so doing fulfil a legal obligation (see Art. 6(1) clause 1(c) GDPR) or if we are protecting our legitimate interests (see Art. 6(1) clause 1(f) GDPR). We conclude what is referred to as a processing agreement with processors pursuant to Art. 28 GDPR or agree to apply the standard contractual clauses issued by the European Commission pursuant to Art. 46(2)(c) GDPR according to which they also undertake to comply with data protection.
Inclusion of services and contents of third parties
We use within our website based on our legitimate interest, i.e. interest in analysing, optimising and running our website cost-effectively pursuant to Art. 6(1) clause 1(f) GDPR, content or service offers from third-party providers to incorporate their content and services such as, for example, videos or fonts (hereinafter designated as “Contents”.
This always assumes that third-party providers of this content see the IP address of visitors since they could not send the content to their browser without the IP address. The IP address is therefore required to display this content. We endeavour to use only that content, the respective providers of which use the IP address merely for delivering the content. Third-party providers may also use the so-called pixel tags (invisible graphics, also designated as “Web Beacons”) for statistical or marketing purposes. Information such as visitor traffic to the pages of this website can be evaluated by the pixel tags. Pseudonym information can also be stored in cookies on the visitors’ device and, inter alia, contain technical information on the browser and operating system, reference websites, length of visit and other details on the use of our online offer, as well as being connected with such information from other sources.
Processing in third countries
If data are transferred by us to a third country because we hire e.g. service providers there, we are entitled to do so if the data subject has consented (see Art. 6(1) clause 1(a), Art. 7 GDPR) or if we in so doing fulfil contractual or pre-contractual obligations (see Art. 6(1) clause 1(b) GDPR), if we in so doing fulfil a legal obligation (see Art. 6(1) clause 1(c) GDPR) or if we are protecting our legitimate interests (see Art. 6(1) clause 1(f) GDPR). A third country is any country outside the European Union (EU) or the European Economic Area (EEA). When transferring data to third countries, we make sure we comply with Art. 44 ff. GDPR, with existing guarantees or findings of the EU on an appropriate level of data protection in the third country, as well as on the conclusion, where appropriate, of the necessary agreements, e.g. standard contractual clauses.
Encrypted transfer of your data
All personal data that you enter on our website and send us are transferred encrypted to our website using state-of-the-art technology. Furthermore, we secure our website and the associated EDP systems through technical and organisational measures against loss, destruction, access, change or dissemination of your personal data by unauthorised persons.
This website is hosted on the servers of OVH GmbH, St. Johanner Str. 41-43, 66111 Saarbrücken. The hosting services we use provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security deposits and technical maintenance services which we use for the purposes of running this website. Legal basis for the use of hosting services is the safeguarding our legitimate interests in the analysis, optimisation and the economical and safe operation of our website (see Art. 6(1) clause 1(f) GDPR).
Our hosting provider hereby processes personal data. The data are stored for as long as there is a purpose to doing so. The data are subsequently deleted unless legal statutory retention requirements stand in the way.
Collection of access data and webserver log files
We collect the following data on the basis of our legitimate interests in the analysis, optimisation and economical operation of our website pursuant to Art. 6(1) clause 1(f) GDPR every time our website is accessed (known as web server log files):
- Visitor’s IP address
- Name of the website accessed
- File, date and time accessed
- volume of data transferred (Body Bytes Sent)
- Notification of successful retrieval
- Browser type and version
- Visitor hit access
- Domain names of the Internet Service Provider making the enquiry
- URL/lower surface called up
- Protocol (e.g. http 2.0)
- URL referrer (previously visited website)
- Our agent
- Visitor’s operating system
The data are used for statistical evaluations for the purpose of operation, security and optimisation of the website. The data are held within the framework of legal regulations for security reasons (e.g. for clarifying cases of fraud and abuse). If longer retention is required for the purposes of evidence, the data are not deleted until after the matter is finally clarified.
Deletion/blocking of your personal data
We store your personal data only for as long as this is necessary to achieve the purposes stated here. In addition, we only save your data if this is required by statutory retention requirements (e.g. 6 years pursuant to Section 257(1) German Commercial Code (HGB) and 10 years pursuant to Section 147(1) Taxation Regulation (AO) for commercial and business letters, accounts, offers, etc.). After the end of the respective purpose and/or expiry of these notice periods, the relevant data are blocked according to the statutory provisions or deleted pursuant to Art. 17, 18 GDPR.
Your rights as a data subject
You have the right to receive information and a copy of your personal data stored by us at any time free of charge see Art. 15 GDPR).
You have the right to correct or complete any incorrectly stored data (see Art. 16 GDPR).
You also have the right to restrict the processing of your data (see Art. 18 GDPR) and the right to delete your data (see Art. 17 GDPR). You cannot delete your data if we are obliged to continue to save the data for processing the agreement or due to other statutory retention requirements. Instead of deleting it, we will block your data.
You also have the right to request the data we have stored about you and to transfer them to another company or have them transferred by us (see Art. 20 GDPR).
You also have the right to object to the future processing of the data concerning you (see Art. 21 GDPR).
You also have the right to cancel consents given for the future (see Art. 7(3) GDPR).
To exercise the aforementioned rights, please contact the person mentioned above for any data protection enquiries.
You can also make a complaint to the competent data protection authority (see Art. 77 GDPR):
Independent data protection centre in Saarland
Fritz-Dobisch-Straße 12, 66111 Saarbrücken
Tel: 0681 947810
Fax: 0681/94781 29
Cookies are also stored on your computer when you use our website. Cookies are small text files that make it possible to store specific, device-related information on the visitor's access device (PC, Smartphone). They are used to make websites visitor friendly (e.g. storage of login data), to produce statistical data on website use and for analysis for the purpose of improving the website. Cookies cannot run programs or transmit viruses to your computer.
This website uses transient (temporary) persistent (permanent) cookies.
Transient cookies are deleted automatically when you close or log out from the browser. These include the session cookies in particular. These store what is referred to as an ID session with which various requests from your browser can be assigned to the joint session. This means that your computer can be recognised when you return to our website.
Persistent cookies are automatically deleted after a specified period, which may be different for each cookie. You can delete cookies at any time in the security settings of your browser.
Both types of cookies may originate from us (first-party cookies) or from third parties (third-party cookies).
The necessary cookies are required on the basis of our legitimate interest in the operation and presentation of our website pursuant to Art. 6(1) clause 1(f) GDPR. The visitor may provide consent via the cookie banner in processing the data of unnecessary cookies, for marketing purposes, for example, so that data are processed on the basis of Art. 6(1) clause 1(a) GDPR. An overview of the cookies used can be found in the cookie banner.
Deactivation of cookies
You can prevent all or only certain cookies being stored by setting your browser accordingly in the security settings. Cookies already stored can be deleted in the browser. In these cases, however, use of the website may be restricted. These options apply to all the cookies listed below which we use on our website.
Making contact/contact form
When you contact us by e-mail, fax, telephone or post or by our other contact forms, the data passed on by you (e.g. e-mail address, name, telephone number, address) are processed by us for answering your enquiries or sending you information. We are entitled to do so pursuant to Art. 6(1) clause 1(b) GDPR. Visitors’ data can also be stored in a Customer Relationship Management System (CRRM System) or in similar databases.
We delete all data after storage is no longer required or limit processing if there are statutory retention requirements.
We offer a Newsletter on our website in which we regularly provide information about our products and our company. We collect and process personal data for sending out the Newsletter and which we use solely for this purpose. By subscribing to our Newsletter, you are stating that you consent to your data being processed. The legal basis is the consent given pursuant to Art. 6(1) clause 1(a) GDPR.
Subscribers can also be informed by e-mail about circumstances that are relevant to the service or registration (e.g. changes to the Newsletter offer or technical reasons).
We use Mailjet, a service by Mailjet GmbH Alt-Moabit 2, 10557 Berlin, to run the Newsletter.
Your e-mail address is all you need to register for the Newsletter (required field). You may also state your name to receive a personalised Newsletter.
We use the double opt-in procedure in order to check that a registration has actually been made by the owner of the registered email address. You will receive a confirmation e-mail from us for this after sending us your e-mail address in which you must confirm that you have registered to receive the Newsletter by clicking on a link. Only after confirming will you be stored on the Newsletter mailing list. As proof for us, we log the registration for the newsletter, for sending the confirmation e-mail and receipt of the confirmation requested. The time of registration and confirmation and your IP address are then stored. Changes to your data stored by the shipping service provider are also logged. Other data are not collected. All data collected are processed solely for sending out the Newsletter.
The data are stored for the subscription period of our Newsletter and deleted after unsubscribing from the Newsletter, unless statutory retention requirements make longer storage necessary. We may also keep the data for a further three years at most after unsubscribing from the Newsletter for the purpose of proving that consent has been given. Prior deletion is possible on request provided that you also confirm the existence of a previous consent at the same time. These processes are also logged.
The legal basis for sending out the Newsletter is your consent pursuant to Art. 6(1) clause 1(a), Art. 7 GDPR in conjunction with Section 107(2) Telecommunications Act (TKG) or on the basis of the statutory authorisation pursuant to Section 107(2) and (3) Telecommunications Act (TKG). The legal basis for the logging of the aforementioned data is the safeguarding of our legitimate interests in the analysis, optimisation and the economical operation of our website (see Art. 6(1) clause 1(f) GDPR).
Cancellation for Newsletter registration
You may cancel consent to store your personal data and to use them for sending out the Newsletter at any time for the future. There is a corresponding unsubscribe link in every Newsletter. You can also unsubscribe directly on this website at any time or let us know what you want on the aforementioned contact option.
We provide a webshop on this website. Orders can be placed as a guest. Alternatively, a customer account can be created. As part of the order, we collect customer contact, invoice and delivery data (e.g. name, delivery address, billing address, e-mail address, delivery service, company name, department, VAT ID) and recipients’ address details at a different delivery address. When creating a customer account, we also record the date of birth.
The legal basis for collecting data is the fulfilment of pre-contractual or contractual measures pursuant to Art. 6(1) clause 1(b) GDPR.
All data are encrypted and transmitted using state-of-the-art technology.
The data are stored for the purposes of processing the agreement and for warranty and guarantee claims. In addition, the data may be stored longer for the purposes of compliance with other legal provisions. The legal basis for this is the fulfilment of legal obligations pursuant to Art. 6(1) clause 1(c) GDPR.
Forwarding data to third parties
For the purpose of processing the agreement, e.g. for payment, billing and shipment, the data collected are forwarded to parcel and postal service providers (e.g. DHL, UPS), payment service providers (e.g. PayPal) and to credit reference services (e.g. Credit Reform). The legal basis for this is the fulfilment of pre-contractual or contractual measures pursuant to Art. 6(1) clause 1(b) GDPR or the safeguarding of our legitimate interests pursuant to Art. 6(1) clause 1(f) GDPR.
All data are encrypted and transmitted using state-of-the-art technology.
The data are stored for the purposes of processing the agreement and for warranty and guarantee claims. In addition, the data may be stored for longer if necessary for the purposes of compliance with other legal provisions. The legal basis for this is the fulfilment of legal obligations pursuant to Art. 6(1) clause 1(c) GDPR.
You may also delete your account at any time. You are responsible for backing up the data contained therein before deleting the account.
After the account has been deleted, we are nevertheless authorised to continue to keep contractual documents to fulfil legal obligations pursuant to Art. 6(1) clause 1(c) GDPR. The data will then be blocked.
We maintain an online presence on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economical operation of our online offer within the meaning of Art. 6(1) clause 1(f) GDPR) within social networks and platforms in order to be able to communicate with the customers, interested parties and visitors active there and inform them about our services. The Links may refer to our online presence or present interactive elements or content (e.g. videos, graphics or text contributions) and are recognisable from the corresponding logos. When calling up the respective networks and platforms, their respective operators’ terms and conditions and the data processing guidelines shall apply. We therefore have no influence on the scope of the data which the social network collects and we therefore inform visitors according to our latest findings.
Only if a visitor calls up a function of this online offer and is forwarded to the website of the social network does their device establish a direct connection with the social network’s servers. Visitors’ user profile may then be created from the processed data. If the visitor is logged in to a social network, this can assign the visit to their account. If a visitor is not a member of the social network, they may still be able to find out and store their IP address.
The purpose and scope of the data collection and the further processing and use of the data by the social network as well as the related rights and settings options for protecting the privacy of visitors can be found in the data protection guidelines information given below for the privacy notices.
We maintain an online presence on the following social media channels: