PROMOTION: Save 25% on BBS wheels! Learn more »

Expert advice Free shipping * Competence since 1995
Select vehicle
Service & Information
EN | EN EN
Toggle Nav
Service & information
EN | EN EN
My Cart

Controller

Company: DTS GmbH

Street / no.: Aspachweg 14

Postcode, town/city, country: 74427, Fichtenberg, Germany

Commercial register / no.: Registered at Stuttgart District Court, HRB 571445

Managing director: Michael Hekele

Telephone: +49 (0) 7971/ 979 0

Email: info@DTSshop.de

Revoking your consent for data processing. There are many data processing activities that can only be done with your express consent. You can revoke the consent you have given at any time. An informal email to us will suffice. Revoking your consent does not render illegal any data processing done up to that point.

Date: 20.02.2020

 

1. Basic information on data processing and legal basis

1.1. This data privacy declaration clarifies the type, scope and purpose of personal data processing within our online service and the web pages, features and contents connected with them (hereafter collectively referred to as ‘website’). The data privacy declaration applies regardless of which domains, systems, platforms and devices are used to view the website (such as desktop or mobile).

1.2. The terms used, such as ‘personal data’ and their ‘processing’, are defined in Art. 4 of the General Data Protection Regulation (GDPR).

1.3. Users’ personal data processed on this website include inventory data (such as names and addresses of customers), contract data (such as services used, names of consultants, payment information), usage data (such as the pages of our website visited, interest in our products) and content data (such as entries in the contact form).

1.4. The term ‘user’ covers all categories of data subject. These include our business partners, customers, prospective customers and other visitors to our website. The terms used, e.g. ‘user’, are to be understood as gender-neutral.

1.5. We always process users’ personal data in compliance with the relevant data privacy regulations. This means that user data will only be processed if legal permission has been granted. This applies, in particular, when data processing is necessary for the provision of our contractual services (such as processing orders) and online services; or when it is required by law; or when users have provided consent; or when it is done on the basis of our legitimate interests (i.e. our interest in analysing, optimising and operating our website economically securely as described in Art. 6 (1) f GDPR, in particular in measuring reach, creating profiles for advertising and marketing purposes, collecting access data and using the services of third parties.

1.6. Please note that the legal basis of consent is Art. 6 (1) a and Art. 7 GDPR, the legal basis of processing for the purpose of fulfilling our services and performing contractual activities is Art. 6 (1) b GDPR, the legal basis of processing for the fulfilment of our legal obligations is Art. 6 (1) c GDPR, and the legal basis of processing to pursue our legitimate interests is Art. 6 (1) f GDPR.

 

2. Security measures

2.1. We take the latest organisational, contractual and technical steps to ensure that the provisions of data privacy law are upheld, and thus to protect the data we process against accidental or intentional manipulation, loss, destruction or access by unauthorised persons.

2.2. These security measures include in particular the encrypted transmission of data between your browser and our server.

 

3. Transferring data to third parties and third party providers

3.1. Data will only be passed on to third parties in compliance with legal regulations. We only pass user data on to third parties if it is necessary for contractual purposes, e.g. on the basis of Art. 6 (1) b GDPR or on the basis of our legitimate interest in the economic and effective running of our business operations, as defined in Art. 6 (1) f GDPR.

3.2. If we use subcontractors to provide our services, we take appropriate legal precautions as well as appropriate technical and organisational steps to ensure that personal data is protected in accordance with the relevant legal provisions.

3.3. If content, tools and other instruments from other providers (hereafter collectively referred to as ‘third-party providers’) are used within the scope of this data privacy declaration, and their registered offices are located in third countries, then it should be assumed that data is transferred to the countries in which the third-party providers are based. Third countries are countries in which the GDPR is not directly applicable law, which basically means countries outside the EU or the European Economic Area. Data is transferred to third countries if an appropriate level of data privacy exists, the user has given consent, or other legal permission exists.

 

4. Provision of contractual services

4.1. We process inventory data (such as names and addresses and the contact details of users) and contractual data (such as services used, names of contact persons, payment information) for the purpose of fulfilling our contractual obligations and services in accordance with Art. 6 (1) b GDPR.

4.2. Users can create an optional user account, which is used especially for viewing orders. Users are told which data are mandatory during the registration process. User accounts are not public and cannot be indexed by search engines. If a user terminates their account, their data relating to that account is deleted, unless retention is required under commercial or tax law in accordance with Art. 6 (1) c GDPR. It is the responsibility of the user to save their data before the end of the contract if the contract is terminated. We are entitled to irretrievably delete any user data stored during the term of the contract.

4.3. We save the user’s IP address and the time of a user’s activity during registration, logging in and the use of our online services. Saving this information is based on our legitimate interests, as well as the user’s need for protection against misuse and other unauthorised use. This data is not passed on to third parties unless doing so is necessary to exercise our rights or there is a legal obligation to do so in accordance with Art. 6 (1) c GDPR.

4.4. We process usage data (such as website pages visited, interest in our products) and content data (such as contact form and user profile entries) in a user profile for advertising purposes, in order to show the user product information and similar based on the services they have used so far.

 

5. Making contact

5.1. When a user contacts us (by contact form or email), their details are processed for the purpose of handling and responding to the contact request in accordance with Art. 6 (1) b GDPR.

 

6. Collection of access data and log files

6.1. On the basis of our legitimate interests as described in Art. 6 (1) f GDPR, we collect data about every access to the server on which this service is located (‘server log files’). Access data includes the name of the accessed website, file, date and time of access, data volume transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited site), IP address and requesting provider.

6.2. For security reasons (such as to investigate abuse or fraud), log file information is stored for a maximum period of 14 days and then deleted. Any data which needs to be kept for evidence purposes will not be deleted until the particular case has been fully resolved.

 

7. Cookies & reach measurement

7.1. Cookies are information that is transferred from our web server or third-party web servers to the web browsers of users and stored there for later retrieval. Cookies can be small files or other types of information storage.

7.2. We use ‘session cookies’, which are stored only for the duration of your current visit to our website (enabling us to record your login status and provide a shopping basket function, which is what allows you to use our website). A unique, randomly generated identification number known as a session ID is stored in a session cookie. A cookie also contains information about its origin and storage period. These cookies cannot store other data. Session cookies are deleted when you finish using our website, such as by logging out or closing your browser.

7.3. This data privacy declaration informs users about the use of cookies as part of pseudonymous reach measurement.

7.4. If you do not want cookies to be stored on your computer, deactivate the appropriate option in the system settings of your browser. Stored cookies can be deleted in your browser’s system settings. Blocking cookies can restrict the features of this website.

7.5. You may opt out of the use of cookies for reach measurement and advertising purposes by visiting the Network Advertising Initiative’s opt-out page (http://optout.networkadvertising.org/), or the US website (http://www.aboutads.info/choices), or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

 

8. Google analytics

8.1. We use Google Analytics, a web analysis service provided by Google Inc. (‘Google’), on the basis of our legitimate interests (i.e. our interest in analysing, optimising and operating our website economically as described in Art. 6 (1) f GDPR). Google uses cookies. The information generated by the cookie concerning the user’s use of the website is generally sent to a Google server in the USA and stored there.

8.2. Google is certified under the Privacy Shield agreement and thus guarantees compliance with European data privacy law. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

8.3. Google uses this information on our behalf to evaluate the use of our website by users, to compile reports on activities on this website, and to provide us with other services associated with the use of this website and the Internet. This may involve creating pseudonymous user profiles from the data processed.

8.4. We use Google Analytics in order to show advertisements placed within Google’s and its partners’ advertising services only to those users who have shown an interest in our website, or who exhibit certain characteristics (such as an interest in certain topics or products, ascertained on the basis of websites visited), which we send to Google (known as ‘remarketing audiences’ or ‘Google Analytics audiences’). We use remarketing audiences to ensure that our advertisements match the potential interest of users and are not perceived as annoying.

8.5. We only use Google Analytics with activated IP anonymisation. This means the user’s IP address is truncated by Google inside the member states of the European Union and in other states that are signatories to the European Economic Area treaty. The full IP address is only sent to a Google server in the US and truncated there in exceptional cases.

8.6. The IP address transmitted by the user’s browser is not linked to any other data held by Google. Users can prevent the storage of cookies by adjusting their browsers; users can also prevent the transfer to Google of data generated by the cookie and relating to their use of the website, and the processing of that data by Google, by downloading and installing the browser plug-in available here: http://tools.google.com/dlpage/gaoptout?hl=de.

8.7. You will find more information about Google’s data use, and the settings and objection options open to you, on Google’s websites: https://www.google.com/intl/de/policies/privacy/partners (‘Data use by Google when you use our partners’ websites and apps’), http://www.google.com/policies/technologies/ads (‘Data use for advertising purposes’), http://www.google.de/settings/ads (‘Manage information that Google uses to show you advertising’).

 

9. Google re/marketing services

9.1. The legal basis for processing personal data using marketing and remarketing services (‘Google Marketing Services’ for short) provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (‘Google’) for analysis and advertising purposes is our legitimate interest pursuant to Art. 6 (1) a GDPR.

9.2. Google is certified under the Privacy Shield agreement and thus guarantees compliance with European data privacy law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

9.3. Google marketing services allow us to display ads for and on our website in a more targeted manner, so that users only see ads that potentially match their interests. For example, if users are shown advertisements for products they have been interested in on other websites, this is called ‘remarketing’. For this purpose, when you access our and other websites on which Google marketing services are active, a code is executed by Google and ‘(re)marketing tags’ (invisible graphics or code, also known as ‘web beacons’) are embedded in the website. They allow an individual cookie, i.e. a small file, to be stored on your device (other similar technologies can be used instead of cookies). These cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com and googleadservices.com. This file records which websites you have visited, what content you are interested in and which offers you have clicked on, as well as technical information about your browser and operating system, referring websites, visiting time and other information about the use of the website. Your IP address is also recorded, although we would like to point out that as part of Google Analytics, your IP address is truncated within member states of the European Union or in other states that are party to the Agreement on the European Economic Area; only in exceptional cases is it transmitted in full to a Google server in the USA and truncated there. The IP address is not combined with user data in other Google services. Google may combine the aforementioned information with information from other sources. If you subsequently visit other websites, ads tailored to your interests may be shown to you.

9.4. User data is processed pseudonymously as part of Google marketing services. This means, for example, that Google does not store or process a user’s name or email address, but instead processes the relevant data in relation to cookies, within pseudonymous user profiles. This in turn means that, from Google’s point of view, ads are not managed or displayed for a specifically identified person, but instead for a cookie holder, regardless of who that cookie holder might be. This does not apply if a user has expressly permitted Google to process their data without pseudonymisation. Information about users collected by Google marketing services is transmitted to Google and stored on Google’s servers in the USA.

9.5. The Google marketing services we use include the online advertising programme ‘Google AdWords’. With Google AdWords, each AdWords customer receives a different ‘conversion cookie’. This means that cookies cannot be tracked via the websites of AdWords customers. The information collected using the cookie is used to compile conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers are told about the total number of users who have clicked on their ad and been redirected to a page with a conversion tracking tag. But they do not receive any information that can be used to identify users personally.

9.6. We may also use the ‘Google Optimizer’ service. Google Optimizer allows us to track the effects of various changes to a website (such as changes to input fields, design and so on) in what is known as ‘A/B testing’. Cookies are stored on users’ devices for these test purposes. Only pseudonymous user data is processed.

9.7. We may also use the ‘Google Tag Manager’ to integrate Google’s analysis and marketing services into our website and manage them.

9.8. For more information about Google’s use of data for marketing purposes, please visit the overview page: https://www.google.com/policies/technologies/ads; Google’s privacy policy is available at https://www.google.com/policies/privacy.

9.9. If you wish to opt out of interest-based advertising through Google marketing services, you can use the settings and opt-out options provided by Google: http://www.google.com/ads/preferences.

 

10. Facebook social plugins

10.1. We use social plugins (‘plugins’) provided by the social network facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (‘Facebook’), on the basis of our legitimate interests (i.e. our interest in analysing, optimising and operating our website economically as described in Art. 6 (1) f GDPR). These plugins can display interactive elements and content (such as videos, graphics and articles) and can be recognised by one of the Facebook logos (white ‘f’ on a blue tile, the term ‘like’ and the ‘thumbs up’ sign) or are labelled ‘Facebook Social Plugin’. You can view the list of Facebook social plugins, and their appearance, here: https://developers.facebook.com/docs/plugins/.

10.2. Facebook is certified under the Privacy Shield agreement and thus guarantees compliance with European data privacy law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

10.3. If you select a feature of this website that contains one of these plugins, your device establishes a direct connection with Facebook’s servers. The content of the plugin is transmitted by Facebook directly to your device, which integrates it into the website. This may involve creating user profiles from the data processed. We therefore have no influence on the extent of the data that Facebook collects using this plugin, and can only tell you what we know.

10.4. An integrated plugin tells Facebook that you have visited that particular page of our website. If you are logged into Facebook, Facebook can assign your visit to your Facebook account. If you interact with the plugins – by pressing the Like button or making a comment, for instance – this information is transmitted directly from your device to Facebook and stored there. If you are not a member of Facebook, it is still possible for Facebook to discover your IP address and save it. According to Facebook, only an anonymised IP address is saved in Germany.

10.5. The purpose and scope of data collection and the further processing and use of data by Facebook, as well as the relevant rights and setting options for protecting the privacy of users, can be found in Facebook’s data privacy information: https://www.facebook.com/about/privacy/.

10.6. If you are a Facebook member but do not want Facebook to collect data about you via this website and link it with your membership data stored on Facebook, you must log out of Facebook before using our website and delete your cookies. Other settings and ways of objecting to the use of data for advertising purposes are available within Facebook’s profile settings: https://www.facebook.com/settings?tab=ads or, on the US page, http://www.aboutads.info/choices/ or, on the EU page, http://www.youronlinechoices.com/. Settings are platform-independent, meaning they are applied to all devices, such as desktop and mobile devices.

 

11. Incorporating third-party services and content

11.1. On the basis of our legitimate interests (i.e. our interest in analysing, optimising and operating our website economically as described in Art. 6 (1) f GDPR), our website utilises third-party content and service offerings in order to integrate their content and services, such as videos and fonts (hereafter referred to collectively as ‘content’). This always requires third-party providers of this content to know your IP address, since without it they would not be able to send content to your browser. The IP address is therefore required in order for this content to be displayed. We strive to only use such content whose providers use IP addresses solely for the purposes of delivering the content. Third-party providers may also use ‘pixel tags’ (invisible graphics, also known as ‘web beacons’) for statistical and marketing purposes. Pixel tags allow information such as visitor traffic on the pages of this website to be evaluated. Pseudonymous information may also be stored in cookies on your device and may contain, among other things, technical information about your browser and operating system, referring websites, visiting times and other details of how you use our website; it may also be able to be linked to similar information from other sources.

11.2. The following offers an overview of third-party providers and their content, together with links to their data privacy declarations, which contain further information on the processing of data and options for objecting (opting out), some of which have already been mentioned.

  • If our customers use third-party payment services (such as PayPal and instant transfers), the terms and conditions and data privacy statements of those third-party providers shall apply; these can be accessed on their websites or transaction applications.
  • External fonts from Google, Inc., https://www.google.com/fonts (‘Google Fonts’). Google Fonts are integrated by accessing a server at Google (usually in the USA). Data privacy statement: https://www.google.com/policies/privacy/, opt out: https://www.google.com/settings/ads/.
  • Google Maps are provided by the third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Data privacy statement: https://www.google.com/policies/privacy/, opt out: https://www.google.com/settings/ads/.
  • Videos on the YouTube platform run by third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Data privacy statement: https://www.google.com/policies/privacy/, opt out: https://www.google.com/settings/ads/.
  • Features of the Google+ service are incorporated into our website. This feature is provided by the third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. If you are logged into your Google+ account, you can click the Google+ button and link the content of our website to your Google+ profile. This allows Google to link your visit to our website to your user account. We would like to point out, as the provider of this website, that we have no knowledge of the data transferred or how it is used by Google+. Data privacy statement: https://www.google.com/policies/privacy/, opt out: https://www.google.com/settings/ads/.
  • Features of the Instagram service may be incorporated into our website. These features are integrated by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can click the Instagram button and link the content of our website to your Instagram profile. This allows Instagram to link your visit to our website to your user account. We would like to point out, as the provider of this website, that we have no knowledge of the data transferred or how it is used by Instagram. Data privacy statement: http://instagram.com/about/legal/privacy/.
  • Features of the Twitter service may be incorporated into our website. These features are provided by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. When you use Twitter and the ‘re-tweet’ feature, the websites you visit are linked to your Twitter account and made known to other users. This involves data being sent to Twitter. We would like to point out, as the provider of this website, that we have no knowledge of the data transferred or how it is used by Twitter. Twitter data privacy statement: http://twitter.com/privacy. You can change your data protection settings with Twitter in your account settings at http://twitter.com/account/settings.
  • External code belonging to the ‘jQuery’ JavaScript framework provided by the third-party provider jQuery Foundation, https://jquery.org.
  • Features of the SnapEngage service are incorporated into our website. These features are provided by SnapEngage, LLC, at 1722 14th St., Suite 220, Boulder, CO 80302, USA. This allows us to advise you on our website using the SnapEngage chat service. We would like to point out, as the provider of this website, that we have no knowledge of the data transferred or how it is used by SnapEngage. Data privacy statement: https://snapengage.com/privacy-policy/
  • The ‘OWAPro’ web analysis and online marketing controlling system provided by Hurra Communications GmbH (‘hurra.com’) is used for web analysis and optimising online marketing activities on our website. OWAPro is provided by Hurra Communications GmbH, Wollgrasweg 27, 70599 Stuttgart, Germany. Web analytics is mainly used to analyse user flows on this website and optimise online marketing campaigns. The following personal data may be processed by OWAPro: online identifiers, including cookie IDs, IP addresses, device identifiers(?), customer identifiers, referrers, transaction data. These data can also be used to measure and optimise the success of advertising campaigns and analyse their cost-effectiveness, in order to obtain information about which products visitors order and which other actions they perform (‘conversion tracking’). For this purpose, cookies may be used that allow Internet browsers to be recognised when they visit again. Unique online identifiers (‘cookie IDs’) can be stored in these cookies on your device. OWAPro generally only processes pseudonymised data, which hurra.com itself cannot assign to any identifiable natural person. IP addresses are automatically anonymised by OWAPro by default. Further information on the type and scope of the personal data processed by hurra.com in OWAPro, and the cookies they may use, can be found in the hurra.com privacy policy at: http://www.hurra.com/privacy You can object to the future collection and processing of data by hurra.com services for this website at any time by opting out: http://ssl.hurra.com/opt-out?cid=568&ln=de.

 

12. Users’ rights

12.1. Users have the right to request free information about their personal details that are stored by us.

12.2. Users also have the right to have inaccurate data corrected; to have its processing restricted; to have their personal data deleted; to exercise their rights to data portability, if applicable; and, if unlawful data processing is suspected, to lodge a complaint with the competent supervisory authority.

12.3. Users can also revoke their consent with immediate effect.

 

13. Deletion of data

13.1. Data stored with us is deleted as soon as they are no longer required for their intended purpose and there is no longer any legal obligation to retain them. If user data are not deleted because they are required for other, legally permissible purposes, their processing is restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to user data that must be retained for commercial or tax law reasons.

13.2. In accordance with legal requirements, storage is for six years in accordance with § 257 (1) HGB (German Commercial Code; commercial books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents etc.) and for ten years in accordance with § 147 (1) AO (German Fiscal Code; books, records, management reports, accounting documents, commercial and business letters, documents relevant to taxation etc.).

 

14. Right to object

Users can object to the future processing of their personal data at any time, in accordance with the legal requirements. Objection may be made in particular to processing for the purposes of direct marketing.

 

15. Changes to the data privacy statement

15.1. We reserve the right to amend this data privacy declaration in line with changes to the law and changes to our services and data processing. But this only applies with regard to declarations on data processing. Changes will only be made with the consent of the users if and to the extent that user consent is required, or components of the data privacy declaration contain terms regulating the contractual relationship with users.

 


Users are asked to keep themselves updated about what our data privacy declaration says.