1. Data protection at a glance
Collection of data on this website
Who is responsible for collecting data on this website?
How do we collect your data?
We collect the data you supply us with, for example, such as the data you enter in a contact form. This data is processed to serve our legitimate interests pursuant to Article 6 (1) Sentence 1 (f) GDPR, i.e. to answer inquiries addressed to us. We erase data collected in this context when it is no longer necessary to store it for the intended purpose. Alternatively, where statutory retention periods apply, the processing of this data is restricted. Submission of this data is voluntary. However, if you choose not to enter your data, we may not be able to answer or process your inquiry.
Other data is collected by our IT systems automatically or subject to your consent when you visit our website. This primarily includes technical data (e.g. your Internet browser, your operating system and the time of page views). This data is collected automatically as soon as you access our website.
What do we use your data for?
Some of this data is collected to ensure that the website is displayed without errors. Other data can be used to analyze your user behavior.
What rights do you have with regard to your data?
You have the following rights with regard to personal data collected by VTG:
- The right of access pursuant to Article 15 GDPR
- The right to rectification or erasure pursuant to Articles 16 and 17 GDPR
- The right to restriction of processing pursuant to Article 18 GDPR
- The right to object to processing pursuant to Article 21 GDPR
- The right to data portability pursuant to Article 20 GDPR.
You also have the right to complain to a relevant data protection supervisory authority about our processing of your personal data.
Analytical tools and third-party tools
When you visit our website, your surfing patterns may be analyzed for statistical purposes. This happens above all with what are known as analytical programs.
This website is hosted by a third-party provider (“the Host”). The personal data collected on this website is stored on the Host’s servers and may contain such items as IP addresses, requests for contact, metadata and communication data, contractual data, contact data, names, website views and other data that is generated by a website.
The Host stores this data in the interests of our contractual performance toward potential and existing customers (Article 6 (1) b GDPR) and to guarantee the safe, fast and efficient delivery of our web offerings by a professional provider (Article 6 (1) f GDPR).
Our Host processes your data only insofar as this is necessary to the discharge of its contractual duties. The Host follows our instructions with regard to this data.
We work with the following Host:
DREILAUT UG (limited liability)
3. General information and compulsory disclosures
Please note that data transmission over the Internet (e.g. through e‑mail correspondence) may be exposed to security loopholes. Complete protection of your data against access by third parties is not possible.
Notes on the controller and the
Data Protection Officer
Pursuant to Article 4 (7) of the EU’s General Data Protection Regulation (GDPR), the controller of this website is: VTG AG, Nagelsweg 34, 20097 Hamburg, Germany, phone +49 40 2354-0, e‑mail: firstname.lastname@example.org. You can contact our Data Protection Officer by mailing us at email@example.com or by writing to the above address, adding the words “der Datenschutzbeauftragte” (“For the Data Protection Officer”).
The controller is the natural or legal person who alone or jointly determines the purposes and means of the processing of personal data (e.g. names and e‑mail addresses etc.).
Duration of data storage
Revoking your consent to data processing
Many aspects of data processing are permissible only subject to your explicit consent. You can revoke consent that you have previously granted at any time. The lawfulness of any and all data processing until you revoke your consent is not affected by said revocation.
Right to object to data collection in special cases and right to object to direct marketing (Article 21 GDPR)
If your personal data is processed for direct marketing purposes, you have the right at any time to object to the processing of your personal data for such marketing. This provision includes profiling to the extent that it is related to such direct marketing (right to object pursuant to Article 21 (2) GDPR).
SSL and TLS encryption
For security reasons and to protect the transmission of confidential content such as any orders or inquiries that you address to us, the website operator, this website uses SLS and TLS encryption. You will recognize an encrypted connection when the address line in your browser switches from “http://” to “https://” and when you see the lock symbol in your browser line.
When SSL or TSL encryption is activated, any data you send to us cannot be intercepted by third parties.
4. Data collection on this website
Our website uses what are known as “cookies”, small text files that do no harm to your device. Cookies are stored on your device either temporarily, for the duration of a visit to our website (session cookies), or permanently (permanent cookies). Session cookies are deleted automatically when you leave the website. Permanent cookies remain stored on your device until you actively delete them or until they are automatically deleted by your web browser.
In some cases, third-party cookies may be stored on your device when you access our website. These cookies enable you or us to use certain third-party services (e.g. to process payment transactions).
Cookies serve a variety of functions. Many of them are necessary for technical reasons, as certain website functions would not work without them (such as the shopping cart function or the ability to run videos). Other cookies are used to analyze user behavior or display advertisements.
Cookies that enable electronic communication processes (essential cookies), provide certain functions that you want to use (functional cookies such as the shopping cart function) or optimize the website (e.g. cookies to measure the web audience) are stored pursuant to Article 6 (1) (f) GDPR, insofar as no other legal basis is cited. The website operator has a legitimate interest in storing cookies to optimize its services and ensure their technically impeccable delivery. Where consent to the storage of cookies is requested, the cookies in question are stored solely on the basis of this consent (Article 6 (1) (a) GDPR). This consent can be revoked at any time.
You can set your browser in such a way that you are notified whenever cookies are stored. You can permit cookies in isolated cases, in certain defined cases or generally exclude them. You can also specify that cookies should be deleted automatically when you close your browser. Please note: Deactivating cookies may impair the functionality of this website.
Consent with Borlabs Cookie
Our website uses consent technology from Borlabs Cookie to elicit your consent to both the storage of certain cookies in your browser and the use of certain technologies, and to document your consent in compliance with privacy provisions. The provider of this technology is Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg (hereinafter “Borlabs”).
When you access our website, a Borlabs cookie is stored in your browser. Any consents you grant or the revocation of any such consent are stored in this cookie. This data is not passed on to the provider of Borlabs Cookie.
The collected data is stored until you request us to erase it, until the Borlabs cookie itself deletes it or until the purpose of data storage no longer applies. Binding statutory retention periods are not affected by these provisions. For details of how Borlabs Cookie processes data, please visit https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.
Server log files
The provider of this website automatically collects and stores information in what are known as server log files, which your browser automatically transmits to us. The following information is stored in these files:
- Browser type and version
- Operating system
- Referrer URL
- Host name of the computer establishing access
- Time of the server request
- IP address
This data is never merged with other data sources.
This data is collected pursuant to Article 6 (1) (f) GDPR. The website operator has a legitimate interest in storing cookies to optimize its website and ensure its technically impeccable display, for which purpose the server log files must be collected.
Last updated: September 2021
Data Protection Officer