The following data protection declaration applies to the use of our online service TRI GATE CONSULTING (hereinafter “website”).
We are committed to protecting your privacy. The collection and processing of your personal data takes place in compliance with the applicable data protection regulations, in particular the General Data Protection Regulation (GDPR).
We utilize personal data solely for the purpose of operating the website.
The hosting services used by us are intended for the provision of the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services, as well as technical maintenance services that we use for the purpose of operating the website.
We or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of clients, interested parties and visitors to this website on the basis of our legitimate interests in the efficient and secure provision of our website in accordance with Art. 6 Para. 1 S. 1 f) GDPR in connection with Art. 28 GDPR.
We collect information about you when you use this website. We automatically collect information about your usage patterns and your interaction with us, and we register information about your computer or mobile device. We collect, store and use data pertaining to each time you access our website (so-called server log files). This includes the following access data:
We use this log data without associating it with your person or other profiling for statistical evaluations for the purpose of operating, securing and optimizing our website, but also for anonymous recording of the number of visitors to our website (traffic) and for the scope and type of use of our website and services, as well as for billing purposes to measure the number of clicks received from cooperating partners. This information enables us to provide personalized and location-based content and to analyze traffic, troubleshoot and correct errors, as well as improve our services.
This also constitutes our legitimate interest according to Art. 6 Para. 1 S. 1 f) GDPR.
We reserve the right to subsequently check the log data if there is a justified suspicion of illegal use arising from concrete evidence. We store IP addresses in the log files for a limited period of time should this be necessary for security purposes or for the provision or billing of a service, e.g. if you use one of our offers. After the order process has been cancelled or payment has been received, we delete the IP address if it is no longer required for security purposes. We also store IP addresses if we have concrete grounds to suspect a criminal offense in connection with the use of our website. We also store the date of your last visit as part of your account (e.g. when registering, logging in, clicking links, etc.).
To optimize our website, we use so-called session cookies. A session cookie is a small text file that is sent by the respective servers upon visiting a website and stored temporarily on your hard drive. This file as such, contains a so-called session ID, which can be used to assign various requests from your browser to the joint session. This enables your computer to be identified when you return to our website. These cookies are deleted after you close your browser. They are used, for example, to enable the use of the shopping basket function across several pages.
To a limited extent, we also utilize persistent cookies (small text files stored on your end device) that remain on your end device and enable us to recognize your browser the next time you visit. These cookies are stored on your hard drive and are deleted automatically after the specified time. They have a lifespan ranging from 1 month to 10 years. This enables us to present our services to you in a more user-friendly, effective, and secure manner and, for example, to display information on the site that is specifically tailored to your interests.
Our legitimate interest in the use of cookies according to Art. 6 Para. 1 S. 1 f) GDPR is to make our website more user-friendly, effective, and secure
The following data and information are stored in the cookies:
Upon activation of the cookie, it is assigned an identification number and your personal data is not associated with this identification number. Your name, IP address or similar data that would enable the cookie to be linked to you will not be placed in the cookie. Only pseudonymous data, such as which pages of our shop have been visited, which products have been viewed, etc., are stored using the cookie technology.
You can configure your browser in such a way that you are informed in advance when cookies are installed and can decide on a case by case basis whether you wish to exclude the acceptance of cookies in specific cases or in general, or whether cookies are to be completely blocked. By doing so, it is possible that the functionality of the website may be restricted.
We process personal data that we need to satisfy our contractual obligations, such as name, address, e-mail address, products ordered, billing and payment data. The collection of this data is necessary for the conclusion of the contract.
The data will be deleted after the statutory retention terms and warranty periods have expired. Data linked to a user account (see below) will be retained in all cases for the duration of the account.
The legal basis for the processing of this data is Art. 6 Para. 1 S. 1 b) GDPR, as this data is required in order for us to be able to fulfill our contractual obligations under the contract with you.
You can create a user account on our website. If you wish to do so, the personal data requested during the registration process will be required. When you log in at a later date, only your email or user name and the password you have chosen will be needed.
New registrations require us to collect master data (e.g. name, address), communication data (e.g. e-mail address) and payment data (bank details), as well as access data (user name and password).
In order to ensure that you are logged in properly and to prevent unauthorized third-party logins, you will receive an activation link by email after submitting the registration form to activate your account. Only after successful registration do we permanently store the data you have entered in our system.
You can have us delete a user account once it has been created at any time, without incurring any costs other than the transmission costs in accordance with the standard rates. A message in text form to the contact data mentioned above in section 1 (e.g. e-mail, fax, letter) is sufficient. We will then delete your stored personal data unless we need to store it for the processing of orders or due to legal retention obligations.
The legal basis for processing this data is your consent pursuant to Art. 6 Para. 1 S. 1 a) GDPR.
To subscribe to the newsletter, the data requested during the subscription process is required. The subscription to the newsletter will be logged. After subscribing, you will receive a message at the specified email address asking you to confirm your subscription (“double opt-in”). This is necessary to prevent third parties from registering with your email address.
You can revoke your consent to receive the newsletter at any time and thus unsubscribe from the newsletter.
We store subscription data for as long as it is required for sending the newsletter. We store the logging of the subscription and the mailing address as long as there was an interest in the proof of the originally granted consent, and as a general rule, these are the statute of limitations for civil claims, therefore a maximum of three years.
The legal basis for sending the newsletter is your consent pursuant to Art. 6 Para. 1 S. 1 a) in conjunction with Art. 7 GDPR in conjunction with § 7 Para. 2 No. 3 UWG. Legal basis for the logging of the subscription is our justified interest in the proof that the mailing was made with your consent.
You can cancel the subscription at any time without incurring any costs other than the transmission costs according to the standard rates. A notification in text form to the contact data mentioned under section 1 (e.g. e-mail, fax, letter) is sufficient. Of course, in every newsletter you will also find a link to unsubscribe.
We regularly send you product recommendations by e-mail, independently of the newsletter. This will provide you with information about products we offer that may be of interest to you based on your most recent purchases of goods or services from us. We strictly adhere to the statutory requirements. You can object to this at any time without incurring any costs other than the transmission costs according to the standard rates. A message in text form to the contact data specified above in section 1 (e.g. e-mail, fax, letter) is sufficient. Of course, every e-mail will also contain an unsubscribe link.
The legal basis for this is the legal permission granted under Art. 6 Para. 1 S. 1 f) GDPR in conjunction with § 7 Para. 3 UWG.
If you contact us (e.g. via contact form or e-mail), we will use the details you provide to process your inquiry, as well as in the event that follow-up questions should arise.
If the data processing is executed to carry out pre-contractual measures, which take place at your request, or, in the case that you are already our client, to carry out the contract, the legal basis for this data processing is Art. 6 Para. 1 S. 1 b) GDPR.
Additional personal data will only be processed by us if you give your consent to do so (Art. 6 Para. 1 S. 1 a) GDPR) or if we have a legitimate interest in processing your data (Art. 6 Para. 1 S. 1 f) GDPR). A legitimate interest could, for example, be to reply to your e-mail.
Unless specifically stated, we will only store personal data for as long as is necessary to fulfill the purposes for which it was collected.
In some cases, the law provides for the retention of personal data, for example, under tax or commercial law. In these cases, the data will only be stored by us for these legal purposes, but will not be processed elsewhere and deleted after the expiry of the legal retention period.
Pursuant to applicable laws, you have several rights with respect to your personal information. If you wish to exercise these rights, please send your request by e-mail or by regular mail, clearly identifying yourself, to the address given in Section 1.
You will find an overview of your rights below.
You have the right to request clear information about the processing of your personal data.
Specifically:
You have the right at all times to receive confirmation from us as to whether or not we are processing any personal data pertaining to you. If this is the case, you have the right to request that we provide you with information free of charge about the personal data we have stored in connection with you, together with a copy of this data. Furthermore, you have the right to the following information:
Should personal data be transferred to a third country or to an international organization, you have the right to be informed of the appropriate safeguards pursuant to Art. 46 GDPR in connection with such transfer.
You have the right to demand that we rectify and, if necessary, complete your personal data
Specifically:
You have the right to demand from us the immediate rectification of incorrect personal data pertaining to you. Considering the purposes of the processing, you have the right to request the completion of incomplete personal data – also by means of a supplementary declaration.
In a number of cases, we may be required to delete personal information about you.
Specifically:
Pursuant to Art. 17 (1) GDPR, you have the right to demand that we delete personal data concerning you immediately, and we are obliged to delete personal data immediately if one of the following reasons applies:
If we have made the personal data public and we are obliged to delete them in accordance with Art. 17 para. 1 DSGVO, we shall take appropriate measures, including technical measures, considering the available technology and the implementation costs, to inform those responsible for data processing who process the personal data that you have requested them to delete all links to this personal data or copies or replications of this personal data.
In a number of cases, you have the right to ask us to impose limitations on the processing of your personal data.
Specifically:
You have the right to demand that we limit the processing of your personal data if one of the following conditions is met:
You have the right to receive, transfer or read personal data pertaining to you in a machine-readable format.
Specifically:
You have the right to receive any personal data you have provided to us in a structured, common and machine-readable format, and you have the right to transfer such data to another responsible person without our interference, provided that
When exercising your right to data transfer in accordance with paragraph 1, you have the right to obtain that the personal data is transferred directly by us to another responsible person, insofar as this is technically feasible.
6.6 Right to Object
You also have the right to object to the lawful processing of your personal data by us if this is justified by your particular situation and if our interests in the processing do not outweigh such.
Specifically:
You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data on the basis of Art. 6 Para. 1 S. 1 e) or f) GDPR; this also applies to profiling based on these provisions. We will no longer process the personal data unless we can demonstrate compelling reasons for the processing justifying protection which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If personal data is processed by us for the purpose of direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling, insofar as it is connected with such direct advertising.
You have the right to object to the processing of your personal data for scientific or historical research purposes or for statistical purposes pursuant to Art. 89 para. 1 GDPR for reasons arising from your particular situation, unless such processing is necessary for the performance of a task undertaken in public interest.
You have the right not to be subject to any decision based solely on automated processing, including profiling, that has any legal effect on you or otherwise significantly affects you.
There will be no automated decision-making based on the personal data collected.
You have the right to revoke your consent to the processing of personal data at any time.
You have the right to file a complaint with a regulatory authority, in particular in the member state where you reside, where you work or where the alleged infringement occurred, if you believe that the processing of your personal data may be unlawful.
We make every effort to ensure the security of your data within the framework of the applicable data protection laws and technical capabilities.
We transmit your personal data in encrypted form. This applies to your orders and also to the client login. We use the SSL (Secure Socket Layer) coding system, but point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, which we continually adapt to meet the latest technical standards.
Furthermore, we do not guarantee that our services will be available at certain times; disruptions, interruptions or failures cannot be ruled out. The servers we use are regularly and carefully backed up.
As a general rule, we only use your personal data within our company.
If and to the extent that we involve third parties in the performance of contracts (such as logistics service providers), we will only provide such third parties with personal data to the extent that the transmission is necessary for the corresponding service.
In the event that we outsource certain parts of the data processing (“order processing”), we contractually oblige order processors to use personal data only in accordance with the requirements of the data protection laws and to guarantee the protection of the rights of the person concerned.