Data Privacy Statement

Data Protection Information

About us and our Website

We, Home Connect GmbH, Carl-Wery-Strasse 34, 81739 Munich, operate this website. Please use the contact information provided on the Company Information page to contact us.

If you get in touch with us, we will store and process the information you provide for the purpose of handling your enquiry and any follow-up questions. We are permitted to process data in this context by law (article 6(1b) of Regulation (EU) 2016/679). We will delete your information once your enquiry has been handled.

Our guiding principles

We take protecting your information very seriously. Your data is therefore processed with great care and in strict compliance with applicable data protection law. Organisational and technical security measures have been taken to protect all of our websites against the risks present in processing personal data. Our partners who support us in the provision of this website must comply with these provisions as well.

What we log as standard

You can use all the areas of our website that are not access-protected without disclosing your identity. We log every use of our website as standard in order to remedy faults and clarify security incidents. You can find more about our log data in the section "How we process your data".

Which permissions do we have to process your data

We respect your privacy. Consequently, we only process your data when we are permitted to do so. It goes without saying that you can also give us permission to process your data by opting in to data processing on our website. In other cases, we process your data because we are permitted to do so by law. If, for example, you place an order through our website, we are permitted to process your data in order to fulfil that contract. The same applies when you make use of other services on our website that require your data to be processed. We are also permitted to process your data when we have a legitimate interest in doing so. One example of this is the log data that we collect in order to ensure that our website can be operated without defects, amongst other things. In any case, we will inform you if any relevant processing of your data takes place, and your interests are taken into consideration each time that data is processed as a matter of course. In the event that you have cause for complaint, you can find your rights regarding the processing of your data in the latter section of this Data Protection Information.

The permissions we make use of, and when, are outlined in the following section. You can find more detailed information on how your data is collected, processed and used on our website (i.e. the type, scope and purpose of data processing) in the same section.

What else you should know:
Users below the age of 16 should only transmit personal data to us with the consent of their parent or legal guardian. The data protection law that applies may result in different age limits in this regard.

Our website may contain links to other websites. We have no influence over how your data is processed on these websites or their compliance with provisions on data protection. Please note any Data Protection Information they provide.

How we process your data (logs, cookies, tracking, etc.)

Log data

For technical reasons, each time your internet browser accesses our website it automatically sends information to our web server (i.e. log data). We store some of this information in log files, such as:

The operating system

  • The date of the access
  • The time of the access
  • The URL of the linking website
  • The files accessed
  • The volume of data transferred
  • The browser type and version
  • The IP address (anonymised)

Log data does not contain personal data. As a general rule, we only analyse log data in order to remedy faults in the operation of our website or clarify security incidents. We store this log data indefinitely.

It is sometimes necessary for us to collect additional personal information as well as log data in orderto remedy faults or preserve evidence relating to security incidents. In these cases, we are permitted to process the log data by law (article 6(1f) of Regulation (EU) 2016/679). We delete this data once the fault has been remedied or the security incident has been clarified in full, or if the original purpose of the processing no longer exists due to other factors. In the event of a security incident, we will transmit log data to the investigating authorities on a case-by-case basis, to the extent permitted.

We always store log data separately from other data collected that relates to the use of our website.

Registration on Developer Portal

You can register as a user on our website. Registration is required if you wish to access our services. We collect and process the following details as part of the registration process:

  • Username
  • First and last name
  • E-mail address
  • Password

Registration gives you access to the access-protected parts of the Developer Portal. With successful registration a developer account (basic level) will be created.

If you choose to upgrade your account to advanced level we collect in addition the following categories of personal data:

  • Credit Card Number
  • CVV
  • Expiration Date of your credit card

We use this information solely to verify your identity. No money will be debited from your credit card. We do not store your credit card number, CVV or expiration date. In case of a conducted verification we log the timestamp of the verification, your first name, last name and email address.

We are permitted to process your personal information in order to provide our services by law (article 6(1b) of Regulation (EU) 2016/679).  We store registered users' data until the user deletes their account. Users can delete their developer account at any time within the account area. The user account also allows users to update information.

It goes without saying that we will provide you with information about the data we hold about you on request. We will also be happy to correct inaccurate information or delete information we hold about you on request, provided that said deletion is not prohibited under the terms of our legal obligations to retain certain information. To request this, please use the contact information provided at the end of this Data Protection Information.

Newsletter

Our website provides the option of subscribing to our newsletter. We use a double opt-in process to verify whether the owner of an e-mail address has actually registered to receive the newsletter. The newsletter is only successfully subscribed to if the owner of the e-mail address has expressly confirmed the activation of the newsletter by clicking on the link in the confirmation e-mail. We log the completion of the individual stages of the double opt-in process for evidence purposes.

If you subscribe to receive our newsletter, and therefore consent to it being sent to you, your details are solely used in order to send you the newsletter. We are permitted to process your data in this context with your consent (article 6(1a) of Regulation (EU) 2016/679). You can withdraw this consent at any time. The relevant link is included in each copy of our newsletter. We will make a note of the fact that you have unsubscribed from the newsletter in our database

Cookies

We use cookies. Cookies are small text files, which we store on your device when you visit our website. These cookies are sent back to us every time you access our website subsequently. This allows us to recognise you, for example, or makes navigating our website easier for you thanks to the information stored in the cookies.

Cookies cannot be used to run programs or transfer viruses to a computer. Cookies can only be read by the web server they originate from.

We do not share the information stored in the cookies with third parties without your express permission.

You can also view our website without cookies. Internet browsers are often configured to accept cookies. To prevent your internet browser from using cookies, you can (1) opt out of the use of cookies when you access our website using the cookie layer (if available) or (2) disable cookie use via the settings in your internet browser. The help functions in your browser can show you how to disable and/or delete cookies in your internet browser. Please note that disabling/deleting cookies may result in individual functions on our website no longer working as expected.  Cookies that may be required for certain functions on our website are set out below. In addition, disabling/deleting cookies will only affect the internet browser used to do so. Disabling/deleting cookies must therefore be repeated for any other internet browsers accordingly.

Cookies that we use for specific functions, without references to individuals:

  • Cookies that store certain user preferences (e.g. search or language settings)

Cookies that we use for specific functions, with references to individuals:

  • Cookies that serve to identify or authenticate our users

We are permitted to process data in this context by law (article 6(1f) of Regulation (EU) 2016/679). We store this data until the cookie in question expires or until you delete it.

Any further processing of personal data using cookies is outlined in the relevant sections within this information.

Web analytics using pseudonymised user profiles

We use web analytics tools for various purposes on our website. You can find information on the web analytics tools we use below, including a description of the data processing in question, the purposes of that processing and how you can prevent the web analytics tool from collecting and processing your data.  Please note that placing opt-out cookies can only prevent the collection and processing of your data by web analytics tools to a limited extent. You can find more information about this in the section on cookies.

Web analytics tool: Adobe Analytics (Omniture)

In order to carry out marketing and market research and tailor our website (and potentially newsletter) appropriately, we use analytics cookies and/or JavaScript to collect and process usage data relating to your visit to our website and your use of links in the newsletter (if applicable). Your usage data is collected and a usage profile is generated from this data on a pseudonymised basis, using a cookie ID. Your IP address is either not recorded or is anonymised immediately after recording as part of this.

We use the Adobe Analytics service provided by Adobe Systems Software Ireland Ltd., 4-6 Riverwalk, Citywest Business Park, Dublin 24, Ireland ("Adobe") to collect the usage data and generate the usage profiles. The information relating to your use of our website is transferred to Adobe servers, analysed and solely returned to us as cumulative data. This data allows us to identify trends in how the website is generally used.

We do not conflate the resultant usage profiles with your name or any other details that could disclose your identity, such as your e-mail address. We are permitted to process data in this context by law (article 6(1f) of Regulation (EU) 2016/679). The usage data is stored by the service used for a maximum duration of 37 months from the date on which it was collected.

Opt-out: Please use Adobe's opt-out website if you wish to prevent your usage data being collected. You can find information about how Adobe Analytics cookies work and the opt-out option via the following link: http://www.adobe.com/de/privacy/opt-out.html.

Cases where we transmit your data

We work together with a number of service providers to implement and operate our website. We have chosen these service providers carefully and concluded a data protection agreement with each individual service provider to keep your information safe.

The service providers we use to implement and operate our website are:

  • Service provider for hosting services
  • Service provider for programming services
  • Service provider for hotline services
  • Service provider for identification verification services

We only transmit your data to other recipients where necessary to fulfil a contract with you, where we or the recipient has a legitimate interest in the disclosure of your data, or where you have given your consent to that transmission. These recipients include service providers and other companies within our corporate group. Furthermore, data may be transmitted to other recipients in the event that we are obliged to do so due to legal provisions or enforceable administrative or court orders.

Other recipients of your data are:

  • Forwarding agents for delivering/collecting products
  • Payment processing service providers
  • Receivables management service providers

Your rights

Should you have cause for complaint, you can find an outline of your rights below. To exercise your rights, please use the Customer Data Request Webform on https://datarequest.bsh-group.com

Your right to information about your data

We will provide you with information about the data we hold about you on request.

Your right to correct and complete your data

We will correct inaccurate information about you if you notify us accordingly. We will complete incomplete data if you notify us accordingly, provided this data is necessary for the intended purpose of processing your data.

Your right to delete your data

We will delete the information we hold about you on request. However, some data will only be deleted subject to a defined period of retention, for example because we are required to retain the data by law in some cases, or because we require the data to fulfil our contractual obligations to you.

Your right to have your data blocked

In certain legally determined cases, we will block your data if you would like us to do so. Blocked data is only further processed to a very limited extent.

Your right to withdraw consent

You can withdraw consent given for your data to be processed with effect for the future at any time. The legality of processing your data remains unaffected by this up to the point at which your consent is withdrawn.

Your right to object to the processing of your data

You can object to the processing of your data with effect for the future at any time, if we are processing your data on the basis of one of the legal justifications set out in article 6(1e or 1f) of Regulation (EU) 2016/679. In the event that you object we will cease processing your data, provided that there are no compelling and legitimate grounds for further processing. The processing of your data for the purposes of direct marketing never constitutes compelling and legitimate grounds for us.

Your right to appeal to a regulatory authority

You can lodge an appeal pertaining to data protection with a data protection authority. To do so, contact the data protection authority responsible for your place of residence or the data protection authority under whose jurisdiction we fall (named below).

Bavarian Data Protection Authority (BayLDA), www.baylda.de.

Your point of contact for all questions relating to data protection

If you have any questions relating to data protection or exercising your rights, you can use the following contact information to get in touch with our data protection officer directly:

BSH Hausgeräte GmbH
Data Protection Officer
Carl-Wery-Str. 34
81739 Munich, Germany

Data-Protection-DE@bshg.com

Changes to this Data Protection Information

This Data Protection Information reflects the current state of data processing on our website. In the event of changes to data processing, this Data Protection Information will be updated accordingly. We always provide the latest version of this Data Protection Information on our website so that you can find out about the scope of data processing on our website.

Valid from: 24.05.2018
Version: DPI_1.0.2_1.0