// Legal notice
HEY PAL GmbH
Tel: +49 (0)221 9 59 30 800
Managing Directors: David Winter,
HRB Bonn 9737
The concept and design of this website, as well as all texts, graphics and programming, are protected by copyright. The use of even single elements on this website requires the express written permission of HEY PAL GmbH.
Liability disclaimer concerning external links:
Despite careful checking, we assume no liability for the content of external links. The operators of such linked sites bear sole responsibility for the content thereof.
I. WHO IS RESPONSIBLE AND HOW CAN I CONTACT THE DATA PROTECTION OFFICER?
The person responsible within the meaning of GDPR is
HEY PAL GmbH
Pützchens Chaussee 137
Tel: +49 (0)228 97734-0
Managing Director: David Winter
Commercial Register: HRB Bonn 9737
If you have any questions about the processing of your personal data by us or about data protection in general, please use the contact details given above.
II. Your rights as a data subject
Every data subject has the following rights:
– Right of access (Art. 15 GDPR)
– Right to rectification of inaccurate data (Art. 16 GDPR)
– Right to erasure or a right to be “forgotten” (Art. 17 GDPR)
– Right to restriction of processing of personal data (Art. 18 GDPR)
– Right to data portability (Art. 20 GDPR).
You may object to the processing of personal data for advertising purposes, including an analysis of customer data for advertising purposes, at any time without stating reasons.
In addition, the data subject also has a general right of objection (cf. Art. 21 Paragraph 1 GDPR). In this case, the objection to data processing must be justified. If the data processing is based on consent, your consent can be revoked at any time with effect for the future.
To exercise your rights as a data subject, the easiest way is to contact the address given in the legal notice or below datenschutz(at)heypal.de. You also have the right to complain to the competent data protection supervisory authority.
III. Processing of Personal Data by Hey Pal
Please find below an overview of how we ensure the protection of your personal data when you access our website as well as the types of personal data we process for which purposes and to what extent.
1. Processing of data when accessing our website – log files
When you access our website, information of a general nature is automatically collected. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your internet service provider. In addition, the IP address is transmitted and used for the service you requested. This information is technically necessary in order to correctly deliver the content of websites requested by you and is mandatory when using the internet.
This log file data is anonymised or deleted by us after the end of the usage process. The legal basis for data processing is Art. 6 Paragraph 1 Sentence 1f GDPR
2. Processing of data when using our website – your requests
If you send us an enquiry by e-mail or via the contact form, we collect the data you provide for processing and answering your request. We store this information for verification purposes for a period of up to two years. Legal basis for data processing: Art. 6 Paragraph 1 Sentence 1f GDPR.
3. Instructions for ensuring data security
We take technical and operational security precautions on our pages to protect personal data stored with us from being accessed by third parties, loss or misuse and to enable secure data transfer.
Nonetheless, we wish to point out that unsolicited data access by third parties may occur due to the structure of the internet. It is therefore also your responsibility to protect your data against misuse by encryption or in any other way. Without appropriate protective measures, unencrypted data, if sent by e-mail in particular, may be read by third parties.
4. Use of Google Maps
This website uses the product Google Maps provided by Google Inc. By using this website, you grant your consent to the collection, processing and use by Google – as well as by their representatives and other third parties – of the data collected by automated means. You can find the Google Maps Terms of Service here.
Our website uses so-called cookies. Cookies are small text files that are stored on your end device and saved by your browser. They make our offers more user-friendly, effective and secure. We use both so-called temporary cookies, which are automatically deleted when you close your browser (“session cookies”) and persistent (permanent) cookies.
You have the choice as to whether you wish the setting of cookies to be allowed. You can make changes in your browser settings. Basically, you have the choice of either accepting all cookies, being informed when cookies are set or rejecting all cookies. If you choose the latter, it is possible that you will not be able to use our services in full.
When using cookies, a distinction must be made between those that are absolutely necessary and those for more extensive purposes (i.e. measuring access numbers, advertising purposes).
2. Mandatory cookies when using the website
We use session cookies on our websites, which are mandatory for the use of our websites. These include cookies that enable us to recognise you while you are visiting the site during a single session.
Below, you will find an overview of the cookies used by us with your consent given at the start of visiting our website(s). You will also find an opt-out option explained for each cookie. These cookies record usage behaviour on our website and are used for advertising purposes.
The use of tracking cookies enables us to recognise users when they return to our website and thus to assign usage processes to an internally assigned code number (pseudonym). This enables us to record repeated access to our website and analyse it coherently.
The following tracking cookies are used specifically:
Tracking through Google Analytics
We use Google Analytics to analyse and regularly improve the use of our website. We are able to use the statistics obtained to improve our services and make it more interesting for you as a user. In exceptional cases where personal data is transferred to the USA, Google has agreed to comply with the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
The legal basis for the storage of the cookie is the consent given (Art. 6 Paragraph 1 Sentence 1a GDPR). The further evaluation of the data collected by Google Analytics will be carried out over a period of fourteen months on the basis of Art. 6 Paragraph 1 Sentence 1f GDPR.
More detailed information on this can also be found at http://tools.google.com/dlpage/gaoptout?hl=de or https://www.google.de/intl/de/policies/privacy/ (general information on Google Analytics and data protection).
Last updated: April 2020