DEEN
Verbrauchsmaterial_EN-EN
Drucker, Scanner & Multifunktionsgeräte
Telekommunikation
Netzwerktechnik
Elektro & Installation
Audio, Video & Hifi
Service & Support
Server & Storage
PC Systeme
Zubehör
PC Komponenten
Displays & Projektoren
Foto & Video
DEEN
Privacy Policy
The protection of your data is particularly important to us. Below, we will inform you in detail about the processing and handling of your data.
I. General Information on Data Protection & Data Subject Rights
§1 General Information
Data protection is an important issue. Below, we provide information about the collection and processing of personal data. Personal data includes all data that can be related to you personally.
Controller pursuant to Art. 4(7) GDPR
think about IT GmbH
Authorized representative: Dipl. jur. Peter Rados
Gesundheitscampus-Süd 19
44801 Bochum
Phone: 0234/3253247
Email: info@think-about.it
Data Protection Officer
You can reach the appointed Data Protection Officer of our company at the following address:
Mr. Patrick Grihn
grihn@dsb.ruhr
DSB Ruhr
℅ nextindex GmbH & Co. KG
Grabenstr. 12
44787 Bochum
If you have questions about the processing, security, or requests for information, you can directly and confidently contact him. §2 General Overview of Data and Processing Activities We aim to provide you with the required clarity in accordance with Art. 12 GDPR. Therefore, here is an overview of the processing activities: Types of processed data: • Usage or communication data (e.g., when accessing a website, IP address, device information, access time, etc.) • Contact data when registering or entering information • Master data (name, company, address) • Communication data (possibly metadata about calls, emails) • Content data (especially when sending emails and using the contact form) Additionally (internally), the following data for our customers, prospects, suppliers, and business partners for providing services in the areas of offers, contracts, service, marketing, direct advertising, and customer care: • Contract data • Customer master data (CRM) • Supplier data • Payment data • Order and invoice data Data subjects (categories): • Users of this website (also referred to as visitors) • Customers • Suppliers Purposes: • Operating the website and providing information • Ensuring the operation of the website and our systems (e.g., firewall) • Communication with our customers • Responding to inquiries • Optimizing and analyzing the website • Providing information to our (potential) customers
§3 Your Rights You have the following rights concerning your personal data processed by us: Summary: • Right to access, • Right to rectification or erasure, • Right to restrict processing, • Right to object to processing, • Right to data portability, • Right to lodge a complaint with the data protection supervisory authority regarding the processing of your personal data by us. Detailed rights: • Pursuant to Art. 15 GDPR, you have the right to request information about your personal data processed by us. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if not collected by us, as well as the existence of automated decision-making, including profiling, and, where applicable, meaningful information about its details • Pursuant to Art. 16 GDPR, you have the right to demand the immediate correction of inaccurate or completion of your personal data stored by us • Pursuant to Art. 17 GDPR, you have the right to request the erasure of your personal data stored by us, unless the processing is necessary for exercising the right to freedom of expression and information, for fulfilling a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims • Pursuant to Art. 18 GDPR, you have the right to request the restriction of the processing of your personal data, provided the accuracy of the data is contested by you, the processing is unlawful but you oppose its erasure, and we no longer need the data, but you need it for the establishment, exercise, or defense of legal claims, or you have objected to the processing pursuant to Art. 21 GDPR • Pursuant to Art. 20 GDPR, you have the right to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, or to request the transfer to another controller • Pursuant to Art. 7(3) GDPR, you have the right to withdraw your consent at any time. This means that we will no longer continue the data processing based on this consent in the future and • Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority. You can usually contact the supervisory authority of your habitual residence or workplace, or the authority responsible for our office location. The right to erasure does not exist insofar as processing is necessary: • for exercising the right to freedom of expression and information • for fulfilling a legal obligation that requires processing under the law of the Union or the Member States to which the controller is subject, or for performing a task carried out in the public interest or in the exercise of official authority vested in the controller • for reasons of public interest in the area of public health pursuant to Art. 9(2)(h) and (i) as well as Art. 9(3) GDPR • for archiving purposes in the public interest, scientific or historical research purposes, or for statistical purposes in accordance with Art. 89(1) GDPR, insofar as the right referred to in section (a) is likely to render impossible or seriously impair the achievement of the objectives of this processing or • for the establishment, exercise, or defense of legal claims.
§4 General Legal Bases When processing personal data necessary for the performance of a contract to which the data subject is a party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations required for pre-contractual measures. If the processing is necessary for safeguarding a legitimate interest of our company or a third party, and if the interests, fundamental rights, and freedoms of the data subject do not override the former interest, Art. 6(1)(f) GDPR serves as the legal basis for the processing. Where the processing of personal data is required to fulfill a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis. In the event that the vital interests of the data subject or another natural person necessitate the processing of personal data, Art. 6(1)(d) GDPR serves as the legal basis. Where we obtain the consent of the data subject for processing operations involving personal data, Art. 6(1)(a) GDPR serves as the legal basis. Summary: • Right to access, • Right to rectification or erasure, • Right to restriction of processing, • Right to object to processing, • Right to data portability, • Right to lodge a complaint with the data protection supervisory authority regarding the processing of your personal data by us. II. Website §5 Websites and Domains (Scope of Application) This privacy policy applies to the following online shops operated by Think about IT GmbH: • www.mynotebook.de • www.myeducation.de • www.myvoice.de §6 Provisions for Users of the Website General Data When Accessing the Website: When you use the website purely for informational purposes, i.e., if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server in order to display our website and to ensure stability and security. The processing is based on Art. 6(1)(f) GDPR (Legitimate Interest). Log Files Storage in log files occurs to ensure the functionality of the website. The data is also used to optimize the website and ensure the security of our information technology systems. The processing is based on Art. 6(1)(f) GDPR (Legitimate Interest). The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. If the data is stored in log files, this is the case after a maximum of seven days. Further storage is possible. In this case, the IP addresses of the users are deleted or anonymized so that the calling client can no longer be assigned. Cookies In addition to the aforementioned data, cookies may be stored on your computer when you use our website. Cookies are small text files that allow us to receive certain information. We use technically necessary cookies for security purposes and to implement the website. The processing is based on Art. 6(1)(f) GDPR (Legitimate Interest). These cookies are usually deleted after you log out or close your browser. We also use cookies for the purpose of analyzing user behavior or for marketing purposes. These cookies are deleted after a predefined period. Unless otherwise stated in this privacy policy, the processing is based on Art. 6(1)(f) GDPR (Legitimate Interest). Otherwise, it is based on consent pursuant to Art. 6(1)(a) GDPR. You can delete cookies stored on your computer at any time in your browser settings. Furthermore, you can configure your browser to delete cookies upon closing or to generally refuse cookies. Please note that some functions of our website may not work properly without cookies.
| List of all cookies in use | Cookie name | Cookie type | Cookie description |
|---|---|---|---|
| SIDCC | Marketing | This cookie carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website. | |
| APISID | Marketing | This DoubleClick cookie is generally set through the site by advertising partners, and used by them to build a profile of the website visitor's interests and show relevant ads on other sites. This cookie works by uniquely identifying your browser and device. | |
| DSID, FLC, AID, TAID, and exchange_uid, IDE, ANID, NID, OTZ | Marketing | Google uses one or more cookies for advertising they serve across the web. One of the main advertising cookies on non-Google sites is named ‘IDE‘ and is stored in browsers under the domain doubleclick.net. Another is stored in google.com and is called ANID. More info. | |
| datr, reg_fb_gate, reg_fb_ref and reg_fb_ext, wd, c_user, lu, sct, xs, x-referer, presence, p, locale, lsd, _e_*, fr, sub, etc | Marketing | Facebook advertiser cookies are used for reporting on social campaigns, troubleshooting campaign set up and building aggregated pools of audiences for targeting based on behaviour trends on and off the Nouryon campaign sites. | |
| amz_auth_err | Essential | Used if Enable Login with Amazon is enabled. | |
| amz_auth_logout | Essential | Used if Enable Login with Amazon is enabled. | |
| form_key | Essential | A security measure that appends a random string to all form submissions to protect the data from Cross-Site Request Forgery (CSRF). | |
| guest-view | Essential | Stores the Order ID that guest shoppers use to retrieve their order status. Guest orders view. Used in "Orders and Returns" widgets. | |
| login_redirect | Essential | Preserves the destination page the customer was loading before being directed to log in. Used in mini cart for logged in customers if the Display Shopping Cart Sidebar configuration option is set to Yes. | |
| mage-cache-sessid | Essential | The value of this cookie triggers the cleanup of local cache storage. When the cookie is removed by the backend application, the Admin cleans up local storage, and sets the cookie value to true. | |
| mage-cache-storage | Essential | Local storage of visitor-specific content that enables ecommerce functions. | |
| mage-cache-storage-section-invalidation | Essential | Forces local storage of specific content sections that should be invalidated. | |
| mage-messages | Essential | Tracks error messages and other notifications that are shown to the user, such as the cookie consent message, and various error messages. The message is deleted from the cookie after it is shown to the shopper. | |
| mage-translation-storage | Essential | Stores translated content when requested by the shopper. Used when Translation Strategy is configured as “Dictionary (Translation on Storefront side)”. | |
| mage-translation-file-version | Essential | Tracks the version of translations in local storage. Used when Translation Strategy is configured as Dictionary (Translation on Storefront side). | |
| persistent_shopping_cart | Essential | Stores the key (ID) of persistent cart to make it possible to restore the cart for an anonymous shopper. | |
| product_data_storage | Essential | Stores configuration for product data related to Recently Viewed / Compared Products. | |
| recently_compared_product | Essential | Stores product IDs of recently compared products. | |
| recently_compared_product_previous | Essential | Stores product IDs of previously compared products for easy navigation. | |
| recently_viewed_product | Essential | Stores product IDs of recently viewed products for easy navigation. | |
| recently_viewed_product_previous | Essential | Stores product IDs of recently previously viewed products for easy navigation. | |
| section_data_ids | Essential | Stores customer-specific information related to shopper-initiated actions such as display wish list, checkout information, etc. | |
| store | Essential | Tracks the specific store view / locale selected by the shopper. | |
| searchReport-log | Essential | Used to collect log information about searching. | |
| stf | Essential | Records the time messages are sent by the SendFriend (Email a Friend) module. | |
| X-Magento-Vary | Essential | Configuration setting that improves performance when using Varnish static content caching. | |
| __Secure-3PAPISID, __Secure-HSID, NID, HSID, __Secure-SSID, SID, APISID, __Secure-APISID, SSID, SAPISID, __Secure-3PSID, __Secure-HSID, ANID, __Secure-3PAPISID, __Secure-APISID, HSID, __Secure-3PSID, SAPISID, 1P_JAR, __Secure-SSID, SID, SIDCC, NID, APISID, SSID, _ga, GoogleAdServingTest | Marketing | Google Analytics Cookies: Login Functionality, Analytics and Performance, More info. | |
| Temporary and persistent cookies (abc_switch_cross_paypal, AKDC, Apache, c, cookie_check, feel_cookie, flow_back_cookie, JSESSIONID, LANG, login_email, navcmd, s_sess, s_vi, SEGM, ts, X-PP-K, x-pp-p, x-pp-s, X-PP-SILOVER, cookies with random names, etc) | Essential | Browsing session management, Web analytics, Technical, Authentication, User preferences, Tracking, Advertising, Location, Security, Transfer data outside the EU. | |
| gdpr_ckie | Preferences | Set allowed cookies list. | |
| gdpr_show_popup | Preferences | Check if cookie popup was shown. | |
| NID | Preferences | The NID cookie contains a unique ID Google uses to remember your preferences and other information. For more information: More info. | |
| Temporary and persistent cookies (abc_switch_cross_paypal, AKDC, Apache, c, cookie_check, feel_cookie, flow_back_cookie, JSESSIONID, LANG, login_email, navcmd, s_sess, s_vi, SEGM, ts, X-PP-K, x-pp-p, x-pp-s, X-PP-SILOVER, cookies with random names, etc) | Preferences | Protected users data against unauthorized access. For more information: More info, Paypal (PayPal (Europe) S.à r.l. et Cie, S.C.A.) / Paypal, Inc. | |
| gtm_debug, gtm_auth, gtm_preview | Statistics | Google Tag Manager. These cookies collect analytical data about site usage. For more information: More info. | |
| __utma, __utmb, __utmc, __utmt, __utmv, __utmz, _ga, _gid, _gat_, etc | Statistics | Google Analytics. These cookies let us know how you use our website and how you found our website. For more information: More info. | |
| private_content_version | Essential | Private content, which is stored in the browser local storage, More info. | |
| SEARCH_SAMESITE | Statistics | This cookie is used to prevent the browser from sending this cookie along with cross-site requests. | |
| PHPSESSID | Essential | PHP session cookie associated with embedded content from this domain. | |
| _biz_flagsA, _biz_nA, _biz_pendingA, _biz_sid, _biz_uid | Essential | Cloudflare. These cookies are placed in order to secure the website. | |
| mt_mop, mt_mop, uuidc, uuid | Marketing | Google (MediaMath) Used for targeting purposes to optimise ad relevance by utilising visitor data from multiple websites provided by the MediaMath ad-exchange and Google. | |
| uid, cid, DigiTrust.v1.identity, C, TPC, GCM, CM, CM14, token, otsid, adtrc, SR, CT, EBFCD, EBFC, CFFC | Marketing | Cookies set by Adform More info. | |
| box, AWSALBCORS, AWSALB | Essential | Heidelpay payment method cookie, more info More info. |
§7 Third-Party Services
We use third-party services to make our online offering more user-friendly, effective, and secure overall. This also includes the use of analytics tools. We use analytics tools to analyze user behavior in order to optimize our online offering. Unless otherwise stated in this privacy policy, the use of analytics tools is based on the legal grounds of legitimate interest pursuant to Art. 6(1)(f) GDPR. This is particularly the case when the service collects data only in pseudonymized form and the respective service does not use the data for its own purposes.
Google Services
We use services provided by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland, a company registered and operated under Irish law (registration number: 368047). The use of Google's services only occurs with your informed consent, based on Art. 6(1)(a) GDPR, unless otherwise stated. In connection with the services and features, Google may use cookies that can be stored on your device. The information generated by the cookies (e.g., about your use of the website) may be transmitted to a server in the USA and stored there. This may also include your IP address. As a rule, your IP address is stored in anonymized form. When data is transmitted to the USA, an adequate level of data protection cannot be guaranteed. In particular, access by U.S. authorities cannot be ruled out. The transfer is based on Art. 49(1)(a) GDPR (consent).
We use the following Google services and features:
Google Analytics
We use Google Analytics to analyze the use of our website and regularly improve it. The statistics we gain allow us to improve our offering and make it more interesting for you as a user. We use Google Analytics with the "_anonymizeIp()" extension. This ensures that IP addresses are processed in shortened form, which excludes any direct personal identification. If any data collected about you is personally identifiable, it is immediately excluded, and the personal data is deleted without delay.
Google Tag Manager
We use Google Tag Manager. This service enables the efficient management of so-called "tags" (small code elements on the website). Among other things, this service allows us to more easily use other Google services.
Google reCAPTCHA
We also use the reCAPTCHA function from Google on this website. This function primarily serves to differentiate whether an input is made by a natural person or abusively through automated and mechanical processing. The service involves sending the IP address and, where applicable, other data required by Google for the reCAPTCHA service to Google and is based on Art. 6(1)(f) GDPR on the grounds of our legitimate interest in determining individual responsibility on the internet and preventing abuse and spam.
Possibilities of objection
You have several options to object to or restrict the collection and processing of your data by Google:
- You can prevent the storage of cookies by setting your browser software accordingly (not all functions of the website may be usable as a result).
- You can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de (Only applies to data collected and processed by Google Analytics).
- You can revoke your consent to the processing of data by Google services at any time. You can do this by deleting the cookies in your browser and not giving your consent the next time you visit our website.
- If you have a Google account, you can make settings for the type, scope and storage of data by Google in the account management under the menu item ‘Data & personalisation’.
Further information on the purpose and scope of data collection and processing can be found in Google's privacy policy https://policies.google.com/privacy?hl=de&gl=de.
EHI seal of approval
We use the ‘EHI Geprüfter Online-Shop’ seal on our website, a widget of the EHI Retail Institute GmbH, Spichernstraße 55, 50672 Cologne (‘EHI’). When you visit our website, dynamic content (current rating of the shop, certificate, etc.) is loaded into the widget from EHI servers. Your IP address, the previously visited website, the date and time of access, the amount of data transferred, the browser type and version, the operating system you are using and the requesting provider (referrer data) are transmitted to the EHI servers. Processing is carried out for the purpose of presenting customer reviews on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest). Further information on data protection at EHI can be found at: www.ehi-siegel.de/datenschutz
eKomi seal
The eKomi seal of approval is integrated on this website to display our eKomi seal of approval. The seal of approval and the services advertised with it are an offer of the rating platform eKomi Ltd, Markgrafenstraße 11, 10969 Berlin. Processing is carried out for the purpose of presenting customer reviews on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest). When you access the seal of approval, the web server automatically saves a so-called server log file, which contains, for example, your IP address, the date and time of access, the amount of data transferred and the requesting provider (access data) and documents the access. This access data is not analysed and is automatically overwritten no later than seven days after the end of your visit to the site.
III. Newsletter subscribers
§10 Terms and conditions for the newsletter
We offer a newsletter that you can subscribe to on our website. The newsletter informs you about current news and offers. We process your name and your e-mail address for the purpose of sending the newsletter and to address you personally. We only send the newsletter with your express consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent to the sending of the newsletter at any time. The cancellation can be made by clicking on the link provided in every newsletter email or in the account settings on our website if you have created a customer account with us. We would like to point out that we evaluate your user behaviour when sending the newsletter. For this analysis, the emails sent contain so-called web beacons or tracking pixels, which are one-pixel image files stored on our website. We use the data obtained in this way to create a user profile in order to tailor the newsletter to your individual interests. The user profile is created and analysed on the legal basis of the legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR for the optimal and customer-oriented design of the newsletter.
IV Status of the privacy policy
The privacy policy is amended from time to time to reflect changes in the business process and the legal situation. You will always find the latest version on the website. Status: April 2021