Arthur Krüger GmbH takes the protection of your personal data very seriously and we comply rigorously with the regulations of data protection legislation. Personal data is only gathered on this website to the extent that is technically required. Under no circumstances is the data we gather sold or passed on to third parties for any other reason. The policy below provides you with a summary of how we guarantee this protection and what type of data is collected for what purpose.
To safeguard the protection of your data, we have put in place technical, organisation and contractual measures which ensure that the specifications of data protection legislation are complied with both within our company and by our cooperation partners and service providers. Since technical progress and new or changed legal regulations can quickly lead to changes here, you should not stop at reading this data protection declaration once, but rather read it again from time to time. In the event of significant changes to our terms and conditions of data protection, we will notify you in good time.
For better understanding, please first read a few definitions of terms in accordance with Art. 4 of the General Data Protection Regulation (GDPR):
“Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as “data subject”); a natural person is regarded as identifiable, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier or one or more specific characteristics expressing the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This includes information such as your name, e-mail address, postal address or telephone number, in other words any information that may be associated with your identity.
“Processing” means any operation or set of operations which is carried out with or without the aid of automated means relating to personal data, such as collection, recording, organisation, sorting, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or association, restriction, deletion or destruction.
“Pseudonymisation” means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the provision of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures ensuring that the personal data is not attributed to an identified or identifiable natural person.
“Controller” means the natural or legal person, public authority, agency or other body which alone or jointly with others decides on the purposes and means of the processing of personal data; where the purposes and means of such processing are laid down by Union law or by the law of the Member States, the controller or the specific criteria for his designation may be laid down in Union law or in the law of the Member States.
“Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
“Third party” means a natural or legal person, public authority, agency or any other body, other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or the processor.
“Consent” of the data subject shall mean any voluntary statement of intention in a particular case, made in an informed and unambiguous manner, in the form of a statement or other unambiguous affirmative act, by which the data subject indicates his or her consent to the processing of his or her personal data.
The person responsible for the processing of your personal data in the sense of the GDPR and other German data protection legislation, as well as other relevant regulations of the EU Member States, is
Arthur Krüger GmbH
Managing Director: Nils Krüger
Altes Feld 1
Tel.: 70 -67052-0
- Contact details for the Data Protection Officer
Andreas Fischer (E-mail: firstname.lastname@example.org, Telefon: +49 (0)871 7804900 0)
Purpose and legal principles for the processing of data
Insofar as we obtain your consent for the processing of personal data, the legal basis for this is Art. 6 (1) lit. a of the GDPR. The legal basis for the processing of personal data necessary for the fulfilment of a contract concluded between us and for the implementation of pre-contractual measures is Art 6 (1) lit. b of the GDPR. If the processing of your personal data is necessary to fulfil a legal obligation to which we are subject, the legal basis is Art. 6 (1) lit. c of the GDPR. If the processing is necessary to safeguard our or a third party’s legitimate interest, the legal basis for the processing is Art. 6 (1) lit. f of the GDPR – unless your interests, fundamental rights and fundamental freedoms, which require the protection of personal data, predominate.
Insofar as we commission third parties to process personal data, this is done on the basis of an order data processing agreement pursuant to Art. 28 of the GDPR, which ensures that the order data processor subject to our instructions is subject to the same security standards as we are.
Duration of data storage
Your personal data will only be stored for as long as the respective purpose lasts, you do not revoke the respective consent and unless statutory storage obligations prescribe a longer storage period.
Data processing in relation to general use of our website
Each time you visit our website, data and information from the retrieving device is automatically recorded and stored in the log files of the server. These recordings may include
– The IP address (Internet Protocol address)
– The Internet service provider of the system making access
– The date and time at which the website is accessed
– The browser type and version used
– The operating system used by the system making access
– The website from which an accessing system makes contact with our website
– Other similar data and information which is required in the event of an attack on our online systems to defend the same. In order to be able to analyse attacks if necessary, the data listed above is stored for seven days and – insofar as it is not required any further for evidence purposes in legal proceedings – deleted or anonymised. The legal basis for the processing is Art. 6 (1) lit. f of the GDPR, as we have a legitimate interest in ensuring the problem-free functioning of our website. Your IP address is required during the connection in order to transfer the content of our website to your browser. The legal basis for processing and storing the IP address is a justified interest pursuant to Art. 6 (1) lit. f of the GDPR, since without the transfer of your IP address, our website content cannot be displayed. The justified interest in the temporary storage of the IP address arises from our security interests.
Sharing of data with third parties
Your data will only be passed on to third parties in accordance with the statutory provisions, i.e. only if this is necessary within the meaning of Art. 6 (1) lit. b of the GDPR for the establishment, execution or amendment of the contractual relationship or due to our legitimate interest in the economic and effective operation of our business within the meaning of Art. 6 (1) lit. f of the GDPR. The use of services and data transfer to third parties and third-party providers that are not based in the European Union or the European Economic Area only takes place if an appropriate level of data protection, legal permission or your consent is available. By order of the responsible authorities, we may provide information on inventory data in individual cases, insofar as this is necessary for the purposes of criminal prosecution, for averting danger by the police authorities of the States, for fulfilling the statutory duties of the Federal and State Offices for the Protection of the Constitution or for enforcing intellectual property rights. The legal basis in these cases is Art. 6 (1) lit. c of the GDPR.
Note: If you do not accept cookies, the functionality of our website may be restricted.
·Accounting documents, business mail
In order to fulfil our legal storage obligations (Section 257 (1) No. 2 HGB and Section 147 AO), we store accounting records for a period of ten years and business mail relating to the preparation, execution or reversal of contracts for a period of six years. The storage period begins at the end of the calendar year in which the business mail was received or sent or the accounting document was created. The legal basis is Art. 6 (1) lit. c of the GDPR.
If you contact us (by e-mail or contact form), personal data is collected. By clicking the “Send” button, you consent to the transmission of the personal data entered in the input mask to us. We use this data voluntarily transmitted by you to us exclusively for the processing and answering of your enquiry. The legal basis for the transfer of data is Art. 6 (1) lit. a of the GDPR. If it is clear that the enquiry has been dealt with and closed, any data you have provided to us in this context will be deleted.
If we receive your e-mail address in connection with the sale of a product or service and you have not objected to this, we reserve the right to send you offers for similar products to those already purchased from our range by e-mail. You can object to this use of your e-mail address at any time by sending a message to the link provided for this purpose in each advertising e-mail or by sending a short message in text form (e-mail, fax, letter) with future effect, without incurring any costs other than the transmission costs according to the basic tariffs.
Sharing of data with logistics partners and financial institutions
On the legal basis of Art. 6 (1) lit. b of the GDPR we share your e-mail address with our logistics partners for the execution of the contract as well as the delivery address stated by you in the order and – if you have given your express consent – in accordance with Art. 6 (1) lit. a of the GDPR for the agreement of a certain delivery date and for the announcement of delivery. You can revoke your consent with effect for the future at any time against us or DHL. In order to process payments, we pass on your payment data to the credit institution commissioned with the payment on the legal basis of Art. 6 (1) lit. b of the GDPR.
·Your rights as the data subject
You have the right at any time to obtain information free of charge about the origin, recipient and purpose of your stored personal data. You also have the right to demand the correction, restriction of processing, deletion or – insofar as the deletion is contrary to statutory storage obligations – blocking of this data and to revoke the consent you have given with effect for the future. You further have the right to have data which we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done as far as it is technically possible. If you have any further questions in this regard, you can contact our data protection officer at any time at the address given below. You also have the right to complain to the relevant supervisory authority. The responsible supervisory authority for data protection issues is the data protection officer of the federal state in which our company is based. A list of state data protection officers and their contact details can be found by clicking this link: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
You have the right at any time to revoke the consent you have given us regarding the processing of your personal data and the sending of advertising with effect for the future.
Use of Google Analytics
On our website, we make use of Google Analytics, a web analysis service provided by Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google is certified under the Privacy Shield Agreement, which guarantees that it complies with European data protection legislation. Google Analytics cookies are stored on the basis of Art. 6 (1) lit. f of the GDPR, as we have a legitimate interest in analysing user behaviour in order to optimise our website offerings and advertising. Google Analytics uses “cookies”, i.e. text files that are stored on your computer and which allow the analysis of your use of the website. The information generated by the cookie on your use of this website is generally transferred to a server operated by Google in the USA and stored there. However, if IP anonymisation is enabled on this website, Google will first truncate your IP address within Member States of the European Union or other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to analyse your use of the website with the aim of generating reports on website activities and providing the website operator with other services associated with website use and Internet use. The IP address transmitted by your browser in the context of Google Analytics is not combined with other data from Google. You can prevent the storage of cookies through an appropriate setting in your Internet browser software; we do point out, however, that doing so may prevent you from using all of the functions available on this website. You can also prevent the transfer of data generated through the cookie and your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available via the link below:
This website uses Google Analytics with the extension “anonymizeIP()“, so that the IP addresses are only processed shortened, in order to exclude a direct personal reference.
Further information on how Google Analytics handles user data can be found at:
Our website also makes use of the maps provided by “Google Maps” from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Further information can be found at https://www.google.com/policies/privacy/. Deactivation (opt-out) can be carried out at https://adssettings.google.com/authenticated.
Our website makes use of pixel code technology from wiredminds GmbH (www.wiredminds.de) to analyse visitor behaviour.
Data may be collected, processed and stored as part of this, and from this data usage profiles will be created under a pseudonym. Wherever possible and expedient to do so, these usage profiles will be recorded and evaluated for analytical purposes.
To disable tracking, please use the following link: Exclude from tracking
For further information, please also read the associated data protection declaration.
Your trust is important to us. This is why we are happy to answer any questions you may have regarding the processing of your personal data at any time. If you have any questions which this data protection declaration does not answer or if you would like more detailed information regarding a particular subject, please contact the Data Protection Officer at any time.
Last updated: 11/11/2019