Privacy Policy

Use of our website generally does not require disclosure of any personal data. To the extent that personal data is collected on our websites, we process this data only in accordance with the requirements of the General Data Protection Regulation (Reg. (EU) 2016/679; GDPR). Personal data is processed only in accordance with this privacy policy. This privacy policy applies to the use of the website at https://trak-catering.com. The privacy policy stored on the linked website applies to linked contents from other providers.

We note that data transfer via the internet can have security flaws which cannot be prevented by the technical design of this website. Complete protection of personal data when using the internet is not possible.

Party responsible

Responsible for processing personal data in the context of using this website:

Hupfer Metallwerke GmbH & Co. KG, managing directors: Manfred Pohlschmidt, Helmut Schumacher

Dieselstr. 20

PO Box 1463

D-48653 Coesfeld

Phone: +49 2541 805-0

Fax: +49 2541 805-111

Email: info@hupfer.de


Data protection officer

As data protection officer we have appointed:

Mr Olaf Tenti

GDI Gesellschaft für Datenschutz und Informationssicherheit mbH

Fleyer Straße 61, 58097 Hagen (NRW)

Phone: +49 2331 356832-0

Email: datenschutz@gdi-mbh.eu

Internet: www.gdi-mbh.eu

Hosting

Our website is hosted by servers of UKFast.Net Ltd, UKFast Campus, Birley Fields, Manchester, M15 5QJ

When you access our web pages, data is collected automatically and stored in log files on our host’s servers. This data can refer to persons. Data that is collected includes:

– Name of the website accessed

– Date and time of the access

– Transmitted data volume

– Notification of successful retrieval

– Type of internet browser

– Version of the internet browser

– The operating system and patch level underlying the browser

– Previously visited website

– Requesting provider

– IP addresses

The host uses the data collected to operate the website and ensure IT security. If there are concrete indications in the log data, some data might be analysed subsequently.

When you use our website, personal data is transmitted to third parties.

Basis of data processing

The basis of data collection as per Art.6 para. 1 s. 1 GDPR is: any consent you have given to the processing (point a); any processing of information that is necessary for the performance of a contract or steps taken prior to entering into a contract (point b), any processing that is necessary for compliance with a legal obligation (point c). To the extent that processing is necessary for the purposes of the legitimate interests pursued our company (point f), this is to be indicated separately in the context of the individual process.

Cookies

We use cookies to provide our website Cookies are small text files that are stored on your device and make it possible to recognise your device. Cookies are used to make the services of our web pages technically available. To do this, we use session cookies that enable recognition during a visit of our web pages. After your visit, the set cookies are automatically deleted by your browser. We also use cookies to recognise your device across sessions. The cookies stored on your device for this purpose are not deleted after an individual session. You can prevent the use of cookies by overriding your browser’s default settings and preventing the setting of cookies. We note that this might result in you not being able to use individual functions of our website.

Contact options (form)

Our website offers the option of contacting us via a contact form. In this context, your personal data is stored and processed for the purpose of communication. The data collected for this purpose (name, address, phone number, fax number, email address, IP address) is not forwarded to third parties. This data is not merged with other data collected on this website.

The basis of data collection as per Art.6 para. 1 s. 1 GDPR is: any consent you have given to the processing (point a); any processing of information that is necessary for the performance of a contract or steps taken prior to entering into a contract (point b), any processing that is necessary for compliance with a legal obligation (point c) as well as the legitimate interests our company has in the communication initiated by you (point f).

The data is deleted as soon as the objective of the communication has been achieved.

Newsletter

Our website lets you subscribe to a newsletter that is sent via email. Sending to your email address takes place based on your personal registration with subsequent confirmation (double opt-in), with which you consent to the newsletter being sent to you. We store your email address as well as your first and last name and the lists to which you have subscribed in order to send the newsletter. The data is forwarded to our service provider CleverReach for the purpose of sending the newsletter. Our newsletter system has a function that allows us to track at which time which recipients have opened the newsletter. This data is stored and used for analysing the reach of individual campaigns.

Withdrawal of consent

You can withdraw your consent to the use of your data with future effect at any time. You will find an option to unsubscribe from the newsletter at the end of every newsletter email or in your login area on our website.

In addition to that, we forward personal data on regulatory and/or judicial orders. Personal data is not forwarded in any way beyond that stated in this privacy policy.

Your rights and assertion of rights

You have the rights listed below. You can assert these towards us. To assert these, please use the data provided above or send an email to: datenschutz@gdi-mbh.eu.

Right to information

You have the right to be informed regarding whether we process any of your personal data, for which purposes we process the data, which categories of your personal data we process, to whom data has been forwarded, if applicable, how long the data is to be stored and what rights you have.

Right to correct data

You have the right to have corrected any incorrect personal data relating to you which we have stored. You also have the right to have any incomplete data record that we store completed.

Deletion

You can demand to have personal data relating to you deleted if (1) the data has been processed unlawfully, (2) the objective for which the data was collected has been achieved, (3) you have withdrawn your consent to data processing and there is no other legal basis for processing, (4) we have a legal obligation to delete the data, (5) you are less than 16 years old (6) or you have objected to processing and we have no overriding legitimate grounds for processing.

Right to restriction of processing

You can demand that we restrict processing in the following cases. In these cases, we will put a restriction note on your data and not process it any further. (1) If you are contesting the correctness of the data, this applies until the check has been completed. (2) If you have requested the deletion of the data and we are unable or not allowed to delete it. (3) If you require the data to assert claims but we would otherwise be obliged to delete the data because the processing purpose has been achieved. (4) If you have objected to processing and no final decision has been made yet.

Objection to processing

If the processing of personal data relating to you supports our legitimate interests, you can object to processing for reasons arising from your specific situation.

Right to data portability

You have the right to request that we provide you with the data that you have made available in the context of a contract or on the basis of consent and that is processed automatically in a common machine-readable format (data record).

Withdrawal of consent given

If you have given us consent to process your personal data, you can withdraw this consent at any time. Please address this withdrawal to the address specified above or send an email to: datenschutz@gdi-mbh.eu.

Right to lodge complaint with data protection authority

You have the right to lodge a data protection complaint with the supervisory authorities. The supervisory authority responsible for us is the State Data Protection and Freedom-of-Information Officer North-Rhine Westphalia. Irrespective of who is responsible, you can submit the claim to any supervisory authority.