The following data protection information applies to our data processing on this website and our downstream business processes. Should offers of third parties be accessible from our website via hyperlinks, our data protection information does not affect these linked offers.
The company named in the imprint is responsible for the processing of your personal data within the meaning of data protection law.
If you have any questions regarding the processing of your personal data, please contact our data protection officer at the e-mail address firstname.lastname@example.org.
Processing of personal data within the framework of basic functions of the website
In order to enable you to call up the web pages at all, to administer the Internet offer and to guarantee information security, usage data is automatically logged on the web server (including IP address, time of call, file called up, data volume transferred, other connection data). To control the Internet connection during your visit and to provide functions of our website, we store cookies via the browser on the hard disk of your computer. Some browsers already allow cookies in their default settings. If you do not wish to receive them, you can change the setting of your browser. Please refer to the browser manufacturer's instructions on how to do this. If you decide against cookies, it is possible that parts of our internet offer cannot be used. In the aforementioned cases we have a legitimate interest (Article 6 Paragraph 1 f) DSGVO) in processing the data.
If cookies are also required for functions with which contracts between you and us are established, data processing is carried out in accordance with Article 6 Paragraph 1 b) DSGVO. In addition, selected records are kept to fulfil the obligations of proof under data protection law in accordance with Article 5 Paragraph 2 DSGVO.
Login area including recommendation and personalization
For our business relationship, you only need to provide us with the personal data required for the establishment, implementation and termination of the business relationship or which we are legally obliged to collect. Mandatory information in the forms is marked with an asterisk. Without this data we cannot grant you a login area and associated special offers. All other personal data is always provided on a voluntary basis and serves to optimise our business relationship.
In a profile within the framework of our Internet offer, the following information in particular can be stored: e-mail address, password, name, date of birth, postcode (company location), declarations of consent, e.g. for newsletter registration, interests.
The access to your respective profile is protected by a password and not accessible to third parties without knowledge of your login data.
If you create a profile on our website, a contract is concluded between us for the storage and provision of the respective profile. The processing of your personal data is therefore legitimised in accordance with Art. 6 para. 1 b) DSGVO. An independent deletion or modification of your personal data stored in a profile by us does not take place in principle. You have the possibility at any time to change individual data in your profile or to instruct us to delete the created profile completely, whereby all personal data stored there will be deleted at the same time.
The business model of MIVO is based on the provision of special offers for our registered users. Our goal is to understand the customer's needs as well as possible and to provide you with tailor-made offers. In order to determine which offers might be of interest to you, we analyse the user behaviour of registered users on our website, e.g. which advantage offers were clicked on.
In addition, we receive information from the websites of our partner network (e.g. affiliate partners). Our partners are the companies that provide offers on our website. As soon as you are redirected by MIVO to a partner website, we receive information about the time of the redirection and the completion of the purchase, the voucher used, the purchase amount and any existing cashback claims. We link this information to your user profile in order to display other suitable offers and provide you with cashback benefits. We also use the information to measure the success of our promotions and to calculate commissions on our promotions with our partner network. We will only share information with our partners if you take advantage of the appropriate benefit/cashback offer.
Processing operations pursuant to legal provisions
We carry out processing which we are obliged to carry out on the basis of legal requirements or which is carried out in the public interest (Article 6 paragraph 1 c DSGVO). This includes the fulfilment of control, documentation and reporting obligations under tax and commercial law.
Processing operations based on a balancing of interests
In addition to the above-mentioned data processing, we process data to protect legitimate interests of ourselves or third parties in accordance with Article 6 Paragraph 1 f DSGVO in the following cases:
- Processing of your enquiries via forms on the website for the purpose of correspondence with us.
- Publication of your comments on our blog.
- Transmission of your name and e-mail address to corporate customers in order to prevent unauthorised use of customer portals through data matching. The transmission is only carried out in the case of customer portals with restricted access, which only certain groups of persons of the corporate customer are entitled to use.
- Processing of contact data of contact persons of our corporate customers to ensure a smooth business process.
- Sending of product/service information for advertising purposes, for market and opinion research as well as sending on special occasions, unless you have objected
- Assertion of legal claims and defence in legal conflicts.
- Ensuring the information security and IT operation of our company.
- Prevention and investigation of criminal offences.
- Measures for building and plant security as well as for the safeguarding of property rights.
Any processing of your personal data going beyond the scope of this data protection notice will only take place if you have given us your consent in accordance with Art. 6 Para. 1 a) DSGVO. Within the scope of the consent, you will be provided with further information on the processing of your data.
Google Web Fonts
External fonts, Google Fonts, are used on these Internet pages. Google Fonts is a service of Google Inc. ("Google"). The integration of these Web Fonts is done by a server call, usually a Google server in the USA. This transfers to the server which of our Internet pages you have visited. The IP address of the browser of the end device of the visitor to these Internet pages is also stored by Google. You will find more detailed information in the Google data protection information, which you can download here:
Passing on your data
Within our company, only those departments that need access to your data to fulfil our contractual and legal obligations are granted access. In addition, processors employed by us may receive data for these purposes. These companies are usually assigned from the following sectors: IT services, logistics, printing services, telecommunications, debt collection, consulting, marketing and sales, as well as maintenance and supply, if applicable.
Data will only be passed on to recipients outside our company if required by law, if you have given your consent or if the passing on of data is explained in this data protection notice. Under these conditions, recipients of personal data may be, for example, authorities, credit agencies, business partners or social networks. Your data will not be sold to third parties.
Storage period of your data
We process your personal data for the initiation, implementation and handling of our business relationship. Furthermore, we are subject to various storage and documentation obligations arising from the German Commercial Code, the German Fiscal Code, the German Value Added Tax Act or the German Civil Code. The retention periods defined in these regulations are 6 or 10 years, although individual cases may differ. We will delete your data after the reasons for storage have ceased to apply.
We run a company profile on the social network Facebook. Facebook is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. We want to use the site (hereinafter: "Fanpage") to exchange information with our customers, interested parties and users and to present our services. Facebook and we are jointly responsible for the data processing that takes place when visiting our fan page in accordance with Art. 26 Para. 1 DSGVO. The resulting obligations are regulated in an agreement between Facebook and us, the so-called "Page Insights Supplement regarding the person responsible". This agreement can be viewed here: https://www.facebook.com/legal/terms/page_controller_addendum
In order to evaluate how you have used our fan page, Facebook provides us with extensive statistics, the so-called "Facebook Insights", which however do not contain any personal data. As the operator of the fan page we have no access to personal data. We can neither view nor query the data collected during your visit to Facebook. We cannot identify any persons on the basis of our data and furthermore, we do not create profiles for individual users.
We use the user statistics to optimize our fan page, which is done for various purposes. Possible purposes include improving the customer experience and market research and advertising purposes. In order to enable the statistical evaluation, we use the storage of cookies on the users' computers. According to Facebook, the cookies are only used to be able to recognize them and to make it easier for you to surf the fan page. Facebook agrees to delete or make anonymous the cookies and the data collected on them within 90 days. To the best of our knowledge, entries on the local computers of non-facebook members are not made.
We process your personal data, which is collected when you visit our Facebook fan page, on the basis of a legitimate interest (Art. 6 para. 1 lit f DSGVO) to effectively inform users and communicate with you. However, data processing is also carried out outside the EU or EEA, in particular on Facebook servers in the USA. This gives rise to increased data protection risks. The enforcement of the rights of the persons concerned is considerably more difficult in the USA. Nevertheless, data transfers to the USA are subject to an Adequacy Decision of the EU Commission (No. 2016/1250), which applies to companies that can guarantee an adequate level of protection, also known as the "EU-US Privacy Shield". Facebook is subject to the Privacy Shield and thus undertakes to ensure an adequate level of protection. If data is transferred to the USA in joint responsibility with Facebook, this is done on the basis of Art. 45 DSGVO.
We have jointly determined in the agreement concluded with Facebook that Facebook assumes primary responsibility for the processing of Insights data and fulfils all obligations arising from the DSGVO with regard to the processing of Insights data. Facebook is therefore primarily responsible for complying with the information obligations in accordance with Art. 13, 14 DSGVO and for safeguarding your rights as a data subject. Requests for information and the assertion of other rights of data subjects can be obtained most quickly from Facebook itself, since, as described, access to the users' data is only available there. We recommend that the users of our Facebook fan page exercise their rights according to Art 12 ff. DSGVO, rights to deletion according to Art. 17 DSGVO, to limitation of processing according to Art. 18 DSGVO, to objection according to Art. 21 DSGVO and to information according to Art. 15 DSGVO at https://www.facebook.com/about/privacy. Should you need assistance in this regard, please feel free to contact us using the contact details published on this page.
You can find further information on the processing and use of data by Facebook at https://www.facebook.com/about/privacy/ and especially for the fan page insights at https://www.facebook.com/legal/terms/information_about_page_insights_data. You can find the setting options for the protection of your privacy as well as options for objection, see Opt-Out, at https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com.
In accordance with Art. 15-20 of the DSGVO, you have the right of access to your personal data processed by us, as well as rights to data transferability, correction, deletion and to limit the processing of your personal data. In addition, you have the right of appeal to a data protection supervisory authority in accordance with Art. 77 DSGVO in conjunction with §19 BDSG.
You have the right to object at any time to the processing of personal data concerning you, which is carried out on the basis of Article 6 paragraph 1e DSGVO (data processing in the public interest) and Article 6 paragraph 1f DSGVO (data processing based on a weighing of interests). In individual cases, we process your personal data on the basis of your consent in order to carry out direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising, without incurring any costs other than the transmission costs according to the basic tariffs; this also applies to profiling, insofar as it is connected with such direct advertising. You can revoke all consents granted at any time.
If you object, we will no longer process your personal data unless we can prove compelling reasons for processing that are worthy of protection and outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims. The legality of the processing carried out on the basis of the consent until revocation remains unaffected.
The assertion of all rights mentioned is basically free of charge for you and can be carried out without any formality. To exercise your rights, please contact the company listed in the imprint.