Data Protection Information
About us and our Website
We, Home Connect GmbH, Carl-Wery-Strasse 34, 81739 Munich, operate this website. Please use the contact information provided on the Company Information page to contact us.
If you get in touch with us, we will store and process the information you provide for the purpose of handling your enquiry and any follow-up questions. We are permitted to process data in this context by law (article 6(1b) of Regulation (EU) 2016/679). We will delete your information once your enquiry has been handled.
Our guiding principles
We take protecting your information very seriously. Your data is therefore processed with great care and in strict compliance with applicable data protection law. Organisational and technical security measures have been taken to protect all of our websites against the risks present in processing personal data. Our partners who support us in the provision of this website must comply with these provisions as well.
What we log as standard
You can use all the areas of our website that are not access-protected without disclosing your identity. We log every use of our website as standard in order to remedy faults and clarify security incidents. You can find more about our log data in the section "How we process your data".
Which permissions do we have to process your data
We respect your privacy. Consequently, we only process your data when we are permitted to do so. It goes without saying that you can also give us permission to process your data by opting in to data processing on our website. In other cases, we process your data because we are permitted to do so by law. If, for example, you place an order through our website, we are permitted to process your data in order to fulfil that contract. The same applies when you make use of other services on our website that require your data to be processed. We are also permitted to process your data when we have a legitimate interest in doing so. One example of this is the log data that we collect in order to ensure that our website can be operated without defects, amongst other things. In any case, we will inform you if any relevant processing of your data takes place, and your interests are taken into consideration each time that data is processed as a matter of course. In the event that you have cause for complaint, you can find your rights regarding the processing of your data in the latter section of this Data Protection Information.
The permissions we make use of, and when, are outlined in the following section. You can find more detailed information on how your data is collected, processed and used on our website (i.e. the type, scope and purpose of data processing) in the same section.
What else you should know:
Users below the age of 16 should only transmit personal data to us with the consent of their parent or legal guardian. The data protection law that applies may result in different age limits in this regard.
Our website may contain links to other websites. We have no influence over how your data is processed on these websites or their compliance with provisions on data protection. Please note any Data Protection Information they provide.
How we process your data (logs, cookies, tracking, etc.)
For technical reasons, each time your internet browser accesses our website it automatically sends information to our web server (i.e. log data). We store some of this information in log files, such as:
The operating system
- The date of the access
- The time of the access
- The URL of the linking website
- The files accessed
- The volume of data transferred
- The browser type and version
- The IP address (anonymised)
Log data does not contain personal data. As a general rule, we only analyse log data in order to remedy faults in the operation of our website or clarify security incidents. We store this log data indefinitely.
It is sometimes necessary for us to collect additional personal information as well as log data in orderto remedy faults or preserve evidence relating to security incidents. In these cases, we are permitted to process the log data by law (article 6(1f) of Regulation (EU) 2016/679). We delete this data once the fault has been remedied or the security incident has been clarified in full, or if the original purpose of the processing no longer exists due to other factors. In the event of a security incident, we will transmit log data to the investigating authorities on a case-by-case basis, to the extent permitted.
We always store log data separately from other data collected that relates to the use of our website.
Registration on Developer Portal
You can register as a user on our website. Registration is required if you wish to access our services. We collect and process the following details as part of the registration process:
- First and last name
- E-mail address
Registration gives you access to the access-protected parts of the Developer Portal. With successful registration a developer account (basic level) will be created.
If you choose to upgrade your account to advanced level we collect in addition the following categories of personal data:
- Credit Card Number
- Expiration Date of your credit card
We use this information solely to verify your identity. No money will be debited from your credit card. We do not store your credit card number, CVV or expiration date. In case of a conducted verification we log the timestamp of the verification, your first name, last name and email address.
We are permitted to process your personal information in order to provide our services by law (article 6(1b) of Regulation (EU) 2016/679). We store registered users' data until the user deletes their account. Users can delete their developer account at any time within the account area. The user account also allows users to update information.
It goes without saying that we will provide you with information about the data we hold about you on request. We will also be happy to correct inaccurate information or delete information we hold about you on request, provided that said deletion is not prohibited under the terms of our legal obligations to retain certain information. To request this, please use the contact information provided at the end of this Data Protection Information.
Our website provides the option of subscribing to our newsletter. We use a double opt-in process to verify whether the owner of an e-mail address has actually registered to receive the newsletter. The newsletter is only successfully subscribed to if the owner of the e-mail address has expressly confirmed the activation of the newsletter by clicking on the link in the confirmation e-mail. We log the completion of the individual stages of the double opt-in process for evidence purposes.
If you subscribe to receive our newsletter, and therefore consent to it being sent to you, your details are solely used in order to send you the newsletter. We are permitted to process your data in this context with your consent (article 6(1a) of Regulation (EU) 2016/679). You can withdraw this consent at any time. The relevant link is included in each copy of our newsletter. We will make a note of the fact that you have unsubscribed from the newsletter in our database
Cookies cannot be used to run programs or transfer viruses to a computer. Cookies can only be read by the web server they originate from.
We do not share the information stored in the cookies with third parties without your express permission.
Cookies that we use for specific functions, without references to individuals:
- Cookies that store certain user preferences (e.g. search or language settings)
Cookies that we use for specific functions, with references to individuals:
- Cookies that serve to identify or authenticate our users
We are permitted to process data in this context by law (article 6(1f) of Regulation (EU) 2016/679). We store this data until the cookie in question expires or until you delete it.
Any further processing of personal data using cookies is outlined in the relevant sections within this information.
Web analytics using pseudonymised user profiles
We use web analytics tools for various purposes on our website. You can find information on the web analytics tools we use below, including a description of the data processing in question, the purposes of that processing and how you can prevent the web analytics tool from collecting and processing your data. Please note that placing opt-out cookies can only prevent the collection and processing of your data by web analytics tools to a limited extent. You can find more information about this in the section on cookies.
Web analytics tool: Adobe Analytics (Omniture)
We use the Adobe Analytics service provided by Adobe Systems Software Ireland Ltd., 4-6 Riverwalk, Citywest Business Park, Dublin 24, Ireland ("Adobe") to collect the usage data and generate the usage profiles. The information relating to your use of our website is transferred to Adobe servers, analysed and solely returned to us as cumulative data. This data allows us to identify trends in how the website is generally used.
We do not conflate the resultant usage profiles with your name or any other details that could disclose your identity, such as your e-mail address. We are permitted to process data in this context by law (article 6(1f) of Regulation (EU) 2016/679). The usage data is stored by the service used for a maximum duration of 37 months from the date on which it was collected.
Opt-out: Please use Adobe's opt-out website if you wish to prevent your usage data being collected. You can find information about how Adobe Analytics cookies work and the opt-out option via the following link: http://www.adobe.com/de/privacy/opt-out.html.
Cases where we transmit your data
We work together with a number of service providers to implement and operate our website. We have chosen these service providers carefully and concluded a data protection agreement with each individual service provider to keep your information safe.
The service providers we use to implement and operate our website are:
- Service provider for hosting services
- Service provider for programming services
- Service provider for hotline services
- Service provider for identification verification services
We only transmit your data to other recipients where necessary to fulfil a contract with you, where we or the recipient has a legitimate interest in the disclosure of your data, or where you have given your consent to that transmission. These recipients include service providers and other companies within our corporate group. Furthermore, data may be transmitted to other recipients in the event that we are obliged to do so due to legal provisions or enforceable administrative or court orders.
Other recipients of your data are:
- Forwarding agents for delivering/collecting products
- Payment processing service providers
- Receivables management service providers
Should you have cause for complaint, you can find an outline of your rights below. To exercise your rights, please use the Customer Data Request Webform on https://datarequest.bsh-group.com
Your right to information about your data
We will provide you with information about the data we hold about you on request.
Your right to correct and complete your data
We will correct inaccurate information about you if you notify us accordingly. We will complete incomplete data if you notify us accordingly, provided this data is necessary for the intended purpose of processing your data.
Your right to delete your data
We will delete the information we hold about you on request. However, some data will only be deleted subject to a defined period of retention, for example because we are required to retain the data by law in some cases, or because we require the data to fulfil our contractual obligations to you.
Your right to have your data blocked
In certain legally determined cases, we will block your data if you would like us to do so. Blocked data is only further processed to a very limited extent.
Your right to withdraw consent
You can withdraw consent given for your data to be processed with effect for the future at any time. The legality of processing your data remains unaffected by this up to the point at which your consent is withdrawn.
Your right to object to the processing of your data
You can object to the processing of your data with effect for the future at any time, if we are processing your data on the basis of one of the legal justifications set out in article 6(1e or 1f) of Regulation (EU) 2016/679. In the event that you object we will cease processing your data, provided that there are no compelling and legitimate grounds for further processing. The processing of your data for the purposes of direct marketing never constitutes compelling and legitimate grounds for us.
Your right to appeal to a regulatory authority
You can lodge an appeal pertaining to data protection with a data protection authority. To do so, contact the data protection authority responsible for your place of residence or the data protection authority under whose jurisdiction we fall (named below).
Bavarian Data Protection Authority (BayLDA), www.baylda.de.
Your point of contact for all questions relating to data protection
If you have any questions relating to data protection or exercising your rights, you can use the following contact information to get in touch with our data protection officer directly:
BSH Hausgeräte GmbH
Data Protection Officer
81739 Munich, Germany
Changes to this Data Protection Information
This Data Protection Information reflects the current state of data processing on our website. In the event of changes to data processing, this Data Protection Information will be updated accordingly. We always provide the latest version of this Data Protection Information on our website so that you can find out about the scope of data processing on our website.
Valid from: 24.05.2018