Data Protection

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations of the EU General Data Protection Regulation and this Privacy Policy.
If you use this website, various personal data will be collected.
Personal data is information that personally identifies you. This Privacy Policy explains what data we collect and what we use it for. It also explains how and for what purposes this is done.
We point out that data transmission over the Internet can have security gaps (for example, when communicating via e-mail). A complete data protection against access of third parties is not possible.

1. Who is responsible for data processing and whom can I contact?

The controller is:

weeMarketplace AG
Burgstrasse 8
CH 8280 Kreuzlingen

contact person: Dr. Leo Thomas Schrutt
phone: 0041 71 688 68 63

You can contact our external data protection officer at:

Udo Wenzel

2. An overview of your rights

a) Revocation of your consent to data processing

Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. An informal message by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

b) Right to object to data collection in special cases and
direct marketing purposes (Article 21 GDPR)

If data processing is based on Art. 6 (1) lit. e or f GDPR, you have the right to object to the processing of your personal data for reasons that arise from your particular situation at any time; this also applies to profiling based on these provisions. The respective legal basis on which a processing is based on can be found in this privacy policy. If you object, we will cease processing your personal data unless we can demonstrate compelling legitimate interests for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of assertion, exercise or defence of legal claims (right to object according to Art. 21 (1) GDPR).

If your personal data is processed to operate direct marketing, you have the right to object at any time to the processing of personal data concerning you; this also applies to profiling insofar as it is associated with such direct marketing. If you object, your personal data will then no longer be used for direct marketing purposes (Right to object according to Art. 21 (2) GDPR).

c) The right to lodge a complaint with the authorities

In the case of infringements of the GDPR, the data subjects have the right to lodge a complaint with the authorities, in particular in the Member State of their habitual residence, their place of work or the place of the alleged infringement. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.

d) Right to data portability

You have the right to get data that we process on the basis of your consent or in fulfilment of a contract, delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of the data to another controller, this will only be done if it is technically feasible.

e) Access, blocking, erasure and rectification

Within the scope of the applicable legal provisions, you have the right of access to the data stored about you at any time, their origin and recipients, the purpose of the data processing and, if necessary, the right to rectification, blocking or erasure of this data. For further information on the subject of personal data, please contact us at any time using the contact details above.

f) Right to restriction of processing

You have the right to request the restriction of the processing of your personal data. You can always contact us using the contact details above. The right to restriction of processing exists in the following cases:

• If you deny the accuracy of your personal information stored with us, we usually need time to verify this. For the duration of the audit you have the right to request the restriction of the processing of your personal data.
• If the processing of your personal data is/has been unlawful, you may request the restriction of data processing instead of erasure.
• If we no longer need your personal data, but you need it for the purpose of assertion, exercise or defence of legal claims, you have the right to request the restriction of the processing of your personal data instead of erasure.
• If you have filed an objection under Art. 21 (1) GDPR, a balance must be made between your interests and ours. As long as it is not clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
• If you have restricted the processing of your personal data, these data may only be used (with the exception of their storage) with your consent or for the purposes of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for important public interests of the European Union or a Member State.

3. Data Security

a) SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as a site operator, this site uses an SSL or TLS encryption. An encrypted connection is indicated by the browser’s address bar changing from “http://” to “https://” and the lock icon in your browser bar.
If SSL or TLS encryption is enabled, third parties cannot read the data you submit to us.

4. Data collection on our website

a) Cookies
To some extent the websites make use of so-called cookies. Cookies do not harm your computer and do not contain viruses. Cookies are used to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.

You can set up your browser in such a way that you are informed about the setting of cookies and only allow cookies in individual cases, the acceptance of cookies for certain cases or generally exclude and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you wish to use are saved based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically correct and optimized provision of its services. If other cookies (e.g. cookies for the analysis of your surfing behaviour) are stored, they will be treated separately in this privacy policy.

b) Server log files

The provider of the websites automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

• Browser type und browser version
• The operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server request
• IP address

There is no merge of this data with other data sources.
The collection of this data is based on Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and the optimization of its website – for this purpose, the server log files must be recorded.

c) Request by e-mail or telephone

If you contact us by e-mail or telephone, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We will not share this information without your consent.

The processing of this data is based on Art. 6 (1) lit. b GDPR, if your request is related to the performance of a contract or is required to carry out pre-contractual action. In all other cases, the processing is based on your consent (Article 6 (1) lit. a GDPR) and / or on our legitimate interests (Article 6 (1) lit. f GDPR), since we have a legitimate interest in the effective processing of requests addressed to us.
The data sent by you to us via contact requests remain with us until you ask us to erase them, revoke your consent to the storage or the purpose for the data storage is omitted (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

5. Social Media

a) Sharing with Shariff

On our pages you can share content and also use social media.
To ensure privacy on our website, we use the sharing feature only with the so-called “Shariff” solution. This application prevents you from transferring data to it when you select to share posts, even when selecting the provider. It is left to your personal choice with whom you share and to whom you submit data.

6. Plugins and tools

a) YouTube with enhanced data protection

Our website uses plugins from the website YouTube. Site operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in an enhanced privacy mode. This mode, according to YouTube, means that YouTube does not store information about visitors to this site before they watch the video. However, sharing data with YouTube partners is not necessarily excluded by the enhanced privacy mode. So, regardless of whether you watch a video, YouTube connects to the Google DoubleClick network. Once you start a YouTube video on our website, it will connect to YouTube’s servers. It tells the YouTube server which of our pages you’ve visited. If you are logged in to your YouTube account, YouTube will allow you to associate your browsing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.
In addition, after launching a video, YouTube may store various cookies on your device. With the help of these cookies, YouTube can receive information about visitors to our website. This information is used, among other things, to capture video statistics, improve usability, and prevent fraud. The cookies remain on your device until you delete them.

7. Is there a duty to provide data?

In the context of our business relationship or the ordering of services, you must provide the personal data necessary to conduct the business relationship or to provide a service and to perform the related contractual obligations or to which law requires the collection. Without this data, we usually have to reject the conclusion of the contract or the execution of the order, or can no longer carry out an existing contract and must therefore end it if necessary.

8. Is there automated decision-making including profiling?

In principle, we do not use fully automated decision-making including profiling according to Article 22 of the GDPR.

9. Links to websites of other providers

Our website may contain links to other sites to provide additional information where we have no influence on the compliance with privacy and security regulations. Our privacy policy does not extend to these websites.

As of April 2019