Provider and responsible body in terms of the Data Protection Act
NOVAFON – Elektromedizinische Geräte GmbH
Area of validity
With this data protection declaration, users receive information about the type, scope and purpose of the collection and use of their data by the responsible provider.
The General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG) form the legal framework for data protection.
Collection of general information
Every time this web presence is accessed, information is automatically collected by us or by the web space provider. This information, also known as server log files, is of a general nature and does not allow any conclusions to be drawn about your person.
Information gathered includes: name of the website, file, date, data volume, web browser and web browser version, operating system, the domain name of your Internet provider, the referrer URL (the page from which you accessed our website) and the IP address.
Without these data, it would not be technically possible to deliver and display the contents of the website. In this respect, the collection of data is absolutely essential. In addition, we use this anonymous information for statistical purposes. This helps us to optimize our web presence and technology. We also reserve the right to subsequently check the log files in the event that we suspect illegal use of our web presence.
Dealing with personal data
Definition: Personal data are defined as all information permitting the unambiguous identification of a person. These are thus data that can be traced back to an individual person.
These personal data include first name and surname, telephone number and email address. Personal data also include information about hobbies, memberships and preferences as well as websites that have been visited.
Such data are only collected, used and where applicable passed on by the provider if this is explicitly permitted by law or if the user agrees to the collection, processing, use and transmission of these data.
Registration on our website
When you register on our website to use personalised services, personal data will be collected. These include name and address as well as telephone number and email address as contact and communication data.
Registration permits access to services and contents reserved exclusively for registered users. If required, registered users have the opportunity at any time to change or delete data collected as part of the registration. Upon request, we will naturally inform you about which personal data we have collected and stored. In addition, we will correct or delete data on request but for any obligation under law to preserve records. Please use the contact details provided in this data protection declaration for your requests to correct or delete data.
When comments and other contributions are written and published on our website, we store IP address, user name and the date and time of creating. These data are collected for security reasons as the provider can be held liable for illegal content (forbidden propaganda, insults etc.), even for those created by third parties. In such instances, the data are used to establish the identity of the author.
Users of this website subscribing to follow-on comments receive a confirmation email. With this email, we make sure that the user is actually the owner of the stated email address. You may at any time terminate your subscription to such follow-on comments. Information about the process is provided in your confirmation email.
When you subscribe to our newsletter, we use the data you entered exclusively for this purpose or to inform you about any relevant circumstances regarding this service or your registration. We do not pass these data to third parties.
To receive the newsletter, a valid email address is required. In addition, the IP address is stored from which you register for the newsletter and the date of your registration for the newsletter. These data serve as proof in case of misuse, should a foreign email address be registered for this service. To further ensure that an email address is not misused by third parties on our mailing list, we work in compliance with the law using the “double opt-in procedure”. Within the framework of this process, the order of the newsletter, sending of the confirmation email and receipt of registration confirmation are all logged.
You have the opportunity at any time to revoke your consent to the storage of the data, your email address, and its use for sending the newsletter. To enable you to revoke your consent, we will provide you with a link in every newsletter and on the website. In addition, you can inform us of your wish to cancel your subscription using the contact details mentioned in this document.
If you contact us via the online form or by email, we store the information you have provided to enable us to answer your enquiry and ask possible follow-up questions.
Integration of third-party services and content
Our web presence may include the content, services and deliverables of other providers. These might include maps provided by Google Maps and videos from YouTube, as well as graphics and images from other websites. In order for this data to be called up and displayed in the user’s browser, the transmission of the IP address is absolutely necessary. The providers (hereinafter referred to as “third-party providers”) will thus be aware of the IP address of the respective user.
Although we make every effort only to use third-party providers who need the IP address solely to deliver content, we have no influence on whether the IP address may be stored. If this occurs, it may be used for statistical purposes. If we are aware that the IP address is stored, we point this out to our users.
This website uses “cookies”. These are text files that are stored on your computer from the server. They contain information about the browser, the IP address, the operating system and the internet connection. These data will not be passed on to third parties or linked by us to personal data without your consent.
Cookies have two main functions. They help us to make it easier for you to navigate through our website and to display it correctly. They are not used to plant viruses or start programmes.
Users can access our website without cookies. To do this, the relevant browser settings have to be changed. Please use the help function of your browser to find out how to deactivate cookies. However, we would like to point out that doing so may result in some functions of this website being impaired and the convenience of use reduced. The pages http://www.aboutads.info/choices/ (USA) and http://www.youronlinechoices.com/uk/your-ad-choices/ (Europe) allow you to manage online ad cookies.
On this page we use the tracking technology of Linkster GmbH, Geschwister-Scholl-Straße 52, 20251 Hamburg, to measure and visualize insights into partnerships and advertising channels. This is a function for measuring the efficiency of the corresponding advertising measures. Furthermore, the information enables us to assign advertising successes for billing with corresponding advertising partners. If you click on an advertising integration, cookies are set in your browser, which are read out in the event of a transaction. At every touch point, your browser sends an HTTP request to the Linkster server with which certain information is transmitted. This information includes the URL of the
website on which advertising material is placed (referrer URL), the browser identifier (user agent) of your end device (including information about the device type and the operating system), the IP address of the end device (This IP address is anonymized and hashed by us before storage), HTTP header (data packet automatically transmitted by your browser with various technical information), the time of the request and, if previously saved on the device, the cookie with its Content.
A cookie is a small data packet that is exchanged between your browser and the server. The information relevant to the web application can be stored and transmitted in this data package, e.g. the content of a virtual shopping cart.
The tracking technology stores cookies on your end device to document actions. A 24-digit, anonymous ID is stored in the cookie. Linked to this ID, the data is encrypted in our database on the server.
This contains information about the last touch points (i.e. when a particular advertising material was displayed or clicked on by a device). The stored touch points can, if necessary, be combined to form a sequence chain (user journey).
With an action request, the order number and the shopping cart value of your order are usually also transmitted and saved by us.
The cookies saved by Linkster GmbH are deleted after 30 days at the latest. The information transmitted to us and the cookies only serve the purpose of correctly assigning the success of an advertising medium and the corresponding billing and is in line with our legitimate interests in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR.
If you do not want cookies to be stored in your browser, you can do this by setting your browser accordingly. You can deactivate the storage of cookies in your browser under Extras / Internet options, restrict them to certain websites or set your browser so that it notifies you as soon as a cookie is sent. Please note, however, that in this case you will have to reckon with a limited display of online offers and limited user guidance. You can also delete cookies at any time. In this case, the information stored in it will be removed from your device.
The collection and processing of tracking data can also be deactivated by clicking on this tracking optout
Viewing your data:
The following overview shows which cookies are used by our tracking technology:
|Unique, 24-digit identifier (ID) for tracking partnerships. This cookie is stored in
the client browser and identifies database records that contain the touchpoint
|Fallback cookie with the rudimentary touchpoint data for tracking partnerships.
This cookie contains all touchpoint data encrypted on the client browser.
|When you click on the tracking opt-out link, a special cookie is written, which
deactivates tracking in the current web browser of the end device. However,
tracking is reactivated as soon as you delete the tracking opt-out cookie.
Use of Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses “cookies”, i.e. text files that are stored on your computer and that permit an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, due to the activation of IP anonymisation on these webpages, your IP address will be shortened prior to forwarding by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases the full IP address will be transmitted to a Google server in the USA and shortened there.
Under contract from the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide the website operator with further services associated with website and internet use. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. You can prevent the storage of cookies by selecting the appropriate settings on your browser. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
You can also prevent Google from collecting and processing the data generated by the cookie and data relating to your use of the website (including your IP address) by downloading and installing the browser plug-in available under the following link: Browser add-on to disable Google Analytics.
This website uses the services of MailChimp for sending newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.
MailChimp is a service with which, among other things, the sending of newsletters can be organised and analysed. If you enter data for the purpose of receiving newsletters (e.g. email address), this data is stored on MailChimp's servers in the USA.
With the help of MailChimp, we can analyse our newsletter campaigns. When you open an email sent with MailChimp, a file contained in the email (known as a web beacon) connects to MailChimp's servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. In addition, technical information is recorded (e.g. time of retrieval, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
If you do not want any analysis by MailChimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message.
The data processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide us with for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://mailchimp.com/eu-us-data-transfer-statement/ and https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.
After you have unsubscribed from the newsletter distribution list, your email address will be stored by us or the newsletter service provider in a blacklist if necessary to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.
On our website you have the possibility to make appointments with us. We use the tool "Calendly" for booking appointments. The provider is Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter "Calendly").
The data you enter will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected.
The legal basis for data processing is Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in making it as uncomplicated as possible to arrange appointments with interested parties and customers. Insofar as a corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://calendly.com/pages/dpa.
The website operator uses Google Ads. Google Ads is an online advertising programme of Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be played on the basis of the user data available at Google (e.g. location data and interests) (target group targeting). As the website operator, we can evaluate this data quantitatively by analysing, for example, which search terms have led to the display of our advertisements and how many advertisements have led to corresponding clicks.
The use of Google Ads is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in marketing its service products as effectively as possible.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.
This website uses the visitor action pixel from Facebook to measure conversions. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Facebook, the data collected is also transferred to the USA and other third countries.
In this way, the behaviour of page visitors can be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of the Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimised.
The data collected is anonymous for us as the operator of this website, we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage policy. This allows Facebook to serve advertisements on Facebook pages as well as outside of Facebook. This use of data cannot be influenced by us as the site operator.
The use of Facebook Pixel is based on Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in effective advertising measures including social media. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Facebook, we and Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Facebook. The processing by Facebook that takes place after the forwarding is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the data protection information when using the Facebook tool and for the data protection-secure implementation of the tool on our website. Facebook is responsible for the data security of the Facebook products. You can assert data subject rights (e.g. requests for information) regarding the data processed by Facebook directly with Facebook. If you assert the data subject rights with us, we are obliged to forward them to Facebook.
You can also deactivate the "Custom Audiences" remarketing function in the ad settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you must be logged in to Facebook.
If you do not have a Facebook account, you can disable usage-based advertising from Facebook on the European Interactive Digital Advertising Alliance website: http://www.youronlinechoices.com/de/praferenzmanagement/.
Use of SalesViewer® technology
This website uses SalesViewer® technology from SalesViewer® GmbH on the basis of the website operator’s legitimate interests (Section 6 paragraph 1 lit.f GDPR) in order to collect and save data on marketing, market research and optimisation purposes.
The data stored by Salesviewer will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them.
The data recording and storage can be repealed at any time with immediate effect for the future, by clicking on https://www.salesviewer.com/opt-out in order to prevent SalesViewer® from recording your data. In this case, an opt-out cookie for this website is saved on your device. If you delete the cookies in the browser, you will need to click on this link again.
Integration of the Trusted Shops Trustbadge
The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops Trustmark and the collected reviews as well as to offer Trusted Shops products to buyers after an order.
This is necessary to safeguard our legitimate prevailing interests in an optimal marketing by ensuring the safety of your purchase according to Article 6 (1) f GDPR. The Trustbadge and the services advertised with it are an offer of the Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, _Germany. The Trustbadge is made available by a CDN provider (Content-Delivery-Network) as part of order processing. The Trusted Shops GmbH uses also service provider from the USA. An adequate level of data protection is guaranteed. Further information to the data security of the Trusted Shops GmbH can be found here: https://www.trustedshops.co.uk/imprint/
When the Trustbadge is called up, the web server automatically saves a server log file which contains, for example, your IP address, the date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call. Individual access data are stored in a security database for the analysis of security problems. The log files are automatically deleted 90 days after creation at the latest.
Further personal data will be transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or have already registered for use. The contractual agreement made between you and Trusted Shops applies. For this purpose personal data is automatically collected from the order data. Whether or not you are already registered as a Trusted Shops customer is automatically checked by means of a neutral parameter, the e-mail address hashed by cryptological one-way function. The e-mail address is converted to this hash value, which cannot be decrypted by Trusted Shops before it is transmitted. After checking for a match, the parameter is deleted automatically.
In order to offer you Klarna’s payment methods, we might in the checkout pass your personal data in the form of contact and order details to Klarna, in order for Klarna to assess whether you qualify for their payment methods and to tailor those payment methods for you. Your personal data transferred is processed in line with Klarna’s own privacy notice.
Your rights to information, correction, blocking, deletion and objection
You have the right, upon request and free of charge, to request information about the personal data stored by us and/or to request correction, blocking or deletion. Exceptions: mandatory data storage for business transactions or data subject to the legal obligation to store.
Please contact our data protection officer for any of these actions (contact details can be found at the end of this data protection declaration).
To be able to consider a data lock at any time, it is necessary to keep the data in a lock file for control purposes. If there is no legal archiving obligation, you can also request the deletion of the data. Otherwise, we will block the data if you so desire.
Changes to our data protection declaration
To ensure that our data protection declaration always complies with current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the data protection declaration needs to be adapted due to new or revised services, for example new service provision. The new data protection declaration will then take effect the next time you visit our website.
Contact for data protection
For any questions on the collection, processing or use of your personal data, for requests for information, correction, blocking or deletion of data as well as revoking previously given consent, please contact: