Thank you for visiting our website www.thermisol.de („Website“) and for your interest in our company. On the occasion of your visit to our website, we also process personal data within the meaning of Art. 4(1) GDPR („Data“) from you. We are aware of the importance of the data entrusted to us. The protection of your privacy when processing your data is an important concern for us, which we take into account in our business processes. The handling of your data is in accordance with the legal requirements for data protection.
1. Controller and data protection officer
The controller under Art. 4(7) GDPR for the processing of your data in connection with this website is:
Thermisol GmbH („Thermisol“ oder „wir“)
Tel.: +49 (0)6233 / 7378-0
Fax: +49 (0)6233 / 7378-20
E-Mail: [email protected]
You can reach Thermisol’s data protection officer as follows:
Mr. Roland Mons
my-dsb.com UG (haftungsbeschränkt)
Neue Mainzer Straße 6-10
60311 Frankfurt am Main
Tel.: +49 (0) 69 – 2474 532 00
E-Mail: [email protected]
2. Purpose of data processing, legal basis, storage period, recipients and third country transfer
Depending on the processing purpose, the processing of your data may be based on a different legal basis. In the operation of our website, we are partly supported by processors who process your data on our behalf and on our instructions and are thus recipients of your data („service providers“). In addition, your data may also be disclosed to other companies.
In the following, we name the different purposes for which your data may be processed on our website, stating the relevant legal basis, as well as an indication of the storage period. In addition, we will inform you whether this company is a service provider and whether a transfer of your data outside the European Economic Area („EEA“) takes place.
a. Access to our website and server logfile
In order to display our website on your terminal device, it is technically necessary for our web server, on which our website is hosted, to process data from you. For this purpose, we process your IP address together with the date and time of the retrieval, name and URL of the retrieved file, referrer URL (website from which the access is made), the amount of data transferred and loading time in a server log file.
The legal basis for storing information in form of cookies or in the server log file on your terminal device or accessing this information in your terminal device is Sec. 25 para. 2 No. 2 TTDSG.
The processing of your data takes place according to Art. 6(1)(f) GDPR. The processing of your IP address is necessary to protect our legitimate interests in the retrievability and correct presentation of our website. The additional storage of your data in a server log file serves to protect our legitimate interests in operating our website securely and error-free and to be able to detect, limit and eliminate malfunctions and errors.
Your data in our server log file will be automatically deleted 7 days after visiting our website.
We use a service provider for the hosting of our website. This service provider is located within the EU.
On our website, we give you the opportunity to contact us on various topics.
If you contact us using our contact form, the mandatory information you must provide is marked as such. This information is required in order to process your request. All other information is voluntary and only serves to answer your inquiry more precisely. In addition, you can contact us by telephone, e-mail or mail. The data we process from you in this context may vary depending on the communication channel, but will regularly include your first and last name, address, telephone number and e-mail address.
If your contact is directed towards the conclusion of a contract or is related to a contract, we process your data on the basis of Art. 6(1)(b) GDPR. If your contact is of a general nature, we process your data pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interests in answering your inquiry about our company and/or our offers individually and in the best possible way.
We delete your data, if they are in connection with a contractual relationship, if necessary only after the expiry of commercial or tax retention obligations, which can be up to 6 years from the end of the year in which you contacted us. We delete all other data when your inquiry has been finally clarified and we are not subject to any legal obligation to retain the corresponding data.
c. Communication by mail
If you contact us with a view to concluding a contract or in connection with a contract, we may subsequently use the data you have provided to us to contact you by post.
The processing of your data is based on Art. 6(1)(b) GDPR.
If necessary, we will delete your data only after the expiration of commercial or tax retention obligations, which can be up to 6 years from the end of the year in which you contacted us.
d. Technically essential cookies
Cookies are small files that are sent by us to the browser of your terminal device during your visit to our website and stored there. On our website, we use technically essential cookies to ensure basic functions of our website. The cookies contain a so-called session ID, which can be used to assign various requests from your end device during your visit to our website.
The legal basis for storing information in the form of cookies or in local storage on your terminal device or accessing this information in your terminal device is Sec. 25 para. 2 No. 2 TTDSG.
The legal basis for the associated processing of your data is Art. 6(1)(f) GDPR. The use of technically essential cookies is necessary to protect our legitimate interests in the retrievability, correct display and ensuring the full functionality of our website.
Technically essential cookies delete themselves at the latest after you have closed the browser you are using.
If you do not wish cookies to be set on your end device, you can control this centrally via the browser you use. You can also delete cookies via your browser.
However, blocking or deleting cookies may result in the usability of our website being noticeably restricted for you.
e. Consent management – Usercentrics
We use cookie consent technology provided by Usercentrics GmbH, Rosental 4, 80331 Munich, Germany („Usercentrics“). Usercentrics is used to obtain your consent to the storage of certain cookies on your terminal device or to the use of certain technologies and to document this in accordance with data protection law.
When you enter our website, the following data is transferred to Usercentrics:
- Your consent(s) or the revocation of your consent(s).
- Your IP address
- Information about your browser
- Information about your terminal device
- Time of your visit to the website
Usercentrics stores the data collected in this way in your Local Storage. The data is kept for 3 years unless you delete your local storage beforehand.
The legal basis for this storage of information on your terminal device and access to it is Sec. 25 para. 2 No. 2 TTDSG. The associated processing of your data is based on Art. 6(1)(f) GDPR and serves our legitimate interest in enabling you to use our website as pleasantly as possible.
We use the web analysis system SalesViewer® of SalesViewer GmbH, Huestraße 30, 44787 Bochum („SalesViewer“) on our website.
- technical properties of the Internet browser
- http referrer, URL of the previously visited website
- interaction with the website
- IP address of the website visitor
The data collected using this technology is encrypted using a non-reversible one-way function (known as hashing). The data is immediately pseudonymized and not used to personally identify the visitor to this website. These online identifiers are matched by the provider with a database limited to company-related data.
The data stored as part of Salesviewer will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.
The legal basis for the processing of your data is Art. 6(1)(f) GDPR. The processing of your data is based on our legitimate interests for marketing, market research and optimization purposes.
You can object to the collection and storage of data at any time with effect for the future by please clicking on this link https://www.salesviewer.com/opt-out to prevent the collection by SalesViewer within this website in the future. In doing so, an opt-out cookie for this website will be placed on your device. If you delete your cookies in this browser, you must click this link again.
g. Google Analytics
We use the Google Analytics tool of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland („Google Ireland“) on our website.
Google Analytics enables us to analyze and evaluate the use of our website in order to compile reports on the website activities of our visitors based on this information. Google Analytics also creates pseudonymized usage profiles of website visitors. By using Google Analytics, technically non-essential cookies as well as online identifiers (including cookie identifiers), IP addresses and your device identifiers are used. We use Google Analytics exclusively with the „Anonymize-IP“ extension, which deletes part of your IP address before it is transmitted to Google. Google Ireland is a service provider in the context of the use of Google Analytics.
We have also enabled the Google Analytics „Demographic Characteristics“ advertising features. This allows us to analyze visitors to our website by age (18-24, 25-34, 35-44, 45-54, 55-64, 65+), gender (male, female), affinity categories (lifestyle similar to TV audiences, e.g., tech enthusiasts, sports fans, and hobby cooks), segments with ready-to-buy audiences (interested in buying products), and other categories, and create remarketing audiences based on these. According to Google Ireland (https://support.google.com/analytics/answer/2799357?hl=en#zippy=%2Cthemen-in-diesem-artikel%2Cin-this-article), this data comes from DoubleClick third-party cookies, an Android advertising ID or iOS Identifier for Advertisers (IDFA). We cannot assign which visitor exactly belongs to a specific group mentioned above. We do not know whether Google Ireland can identify you personally.
If you agree to the use of Google Analytics, cookies will be set on your terminal device. The legal basis for this is Sec. 25 para. 1 TTDSG. Subsequent processing of data is based on your consent given to us in accordance with Art. 6(1)(a) GDPR.
The cookies used by Google Analytics have a lifespan of between one minute and two years and are used to reduce the request rate, to differentiate between users, to identify the user and to display personalised advertising to the user.
The information collected through the use of Google Analytics is deleted after 9 or 18 months (https://policies.google.com/technologies/ads). When Google Analytics is used, Google Ireland acts as a service provider. You can access the order processing contract that also applies to Google Analytics at the following link: https://business.safety.google/adsprocessorterms. Should Google Ireland offer a shared responsibility contract in the future, we will conclude it
The use of Google Analytics may result in a transfer of your data to the USA. There is no adequacy decision of the European Commission for data transfers to the USA. The data transfer takes place, among other things, on the basis of standard contractual clauses as appropriate guarantees for the protection of personal data, which we have concluded with Google Ireland in the contract for order processing.
You can also prevent the transmission of data to Google Ireland by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
3. Third country transfer
The use of the company mentioned under 2. g. may result in a transfer of your data to a third country and thus outside the EEA. Details can be found in the representation.
4. Recipients of the data
Recipients of your data on the occasion of your visit to our website are initially only the previously named service providers and companies. In addition, service providers engaged by us support us in the maintenance, care and further development of our website, who process your data only on our instructions and on our behalf. For internal administrative purposes, your data may also be passed on to other companies associated with us.
Your data will only be passed on beyond this on the basis of a legal obligation, such as to authorities or for the defense, assertion, exercise or defense of legal claims.
5. Necessity of the data collection
6. Rights of the data subject
According to the GDPR, you have the following rights and claims against the controller:
- Right of access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
You have the right to revoke consent given to us at any time with effect for the future. This also applies to consent for cookies and other technologies.
7. Right of objection of the data subject under Art. 21 GDPR
Pursuant to Art. 21 GDPR, the data subject has the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her which is carried out on the basis of Art. 6(1)(f) GDPR, with effect for the future.
The controller shall then no longer process the personal data of the data subject, unless the controller can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
The data subject may object to processing of the data for the purpose of direct marketing at any time with effect for the future. In the event of an objection, the controller shall refrain from any further processing of the data for the purpose of direct marketing.
8. Right of complaint to a supervisory authority
The data subject has the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR. According to this provision, any data subject may, without prejudice to any other administrative or judicial remedy, lodge a complaint with a supervisory authority, in particular in the Member State of his or her residence, place of work or the place of the alleged infringement, if the data subject considers that the processing of personal data relating to him or her infringes the GDPR.
The following data protection supervisory authority is responsible for Thermisol:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz
Hintere Bleiche 34
Tel.: +49 (0) 6131 8920-0
Fax: +49 (0) 6131 8920-299
E-Mail: [email protected]
Das Online-Beschwerdeformular finden sie unter dem folgenden Link: