Site notice

Hofer Straße 80
95145 Oberkotzau
Germany

Tel.: +49 - 92 86 / 77-0
Fax: +49 - 92 86 / 77-22 22
E-mail: info@gealan.de
Website: www.gealan.de
Commercial register: AG Hof, HRB 702
Managing Directors: Ivica Maurović, Tino Albert

External links from www.gealan.de to third-party websites lead to content owned or managed by the respective provider and are not the responsibility of www.gealan.de. These links are either discernible as such from the context or are separately indicated. We have no influence over the content provided on these websites and make no effort to claim ownership of said content. In particular we accept no responsibility for the statements contained therein. Responsibility can only be established if we had knowledge of breaches of law and were technically able and could be reasonably expected to prevent use of such websites (Section 5 Paragraph 2 of the German Teleservices Act (TDG)/German Legal Framework for Electronic Media (MDStV)). We have checked the external content to a reasonable extent for possible breaches of the law. Breaches of copyright, trademark rights and personal rights and infringements against competition law on third-party websites were not apparent, nor were we aware of any criminal offences.

GEALAN Fenster-Systeme GmbH, as the operator of this site, takes the protection of your personal data very seriously. We treat your personal data confidentially and in compliance with the EU General Data Protection Regulation (GDPR), the local legislation applicable in your country, the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG).

This Data Privacy Statement clarifies the type, scope and purpose of the collection and use of data belonging to visitors and users of the GEALAN Fenster-Systeme GmbH website. If you have questions regarding data protection, please contact our data protection officers via email under datenschutz@gealan.de or the address entered below.

GEALAN Fenster-Systeme GmbH
Hofer Str. 80
D-95145 Oberkotzau, Germany
Phone: +49(0)9286 77-0
Fax: +49(0)9286 77-2222
Website: www.gealan.de
Email: info@gealan.de

Our data protection officer
Data protection officer
GEALAN Fenster-Systeme GmbH
Hofer Str.80
D-95145 Oberkotzau, Germany
Email: datenschutz@gealan.de

• the transfer to third parties which we commission for the fulfilment of contractual and supply relationships, for instance to banks or payment service providers handling payments as well as to forwarding agents/shipping companies handling the deliveries;
   
• the transfer to third parties which we commission for the marketing and advertising of our own products and services, e.g. marketing service providers and printing companies;
   
• the transfer to specialised service providers (contract processors), e.g. IT service providers who render services for us upon our instructions and under our responsibility in the framework of the above-mentioned purposes

• the forwarding within the group of companies in the framework of the small-scale intra-group exemption (justified interest according to article 6, para. 1, lit. f. GDPR)
   
• the transfer to third parties which falls under our statutory obligations, e.g. to the financial authorities or other statutory authorities;
   
• the transfer to third parties for the fulfilment of our obligations under commercial and fiscal law, e.g. to our tax consultant.
   

• Right to withdraw consent: You are entitled to withdraw your consent granted to us at any time. In such case, the data processing which is based on the withdrawn consent may not be continued.
• Right to information: You have the right to request information about your personal data processed by us. In particular, this applies to the purposes of data processing, the categories of personal data, if applicable to the categories of recipients, the duration of storage, if applicable to the  origin of the data as well as to the existence of automated decision-making including profiling and, if applicable, meaningful information on their details.
• Right to rectification: You are entitled to demand the rectification of incorrect data or the completion of your personal data retained with us.
• Right to deletion: You are entitled to demand the deletion of your personal data stored with us, unless its processing is necessary for exercising the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.
• Right to restriction of processing: You are entitled to demand the restriction of processing of your personal data if you dispute the correctness of the data or if such processing is unlawful but you oppose the erasure of said data. You are furthermore entitled to this right if we no longer need the data but require them for the establishment, exercise or defence of legal claims. You are furthermore entitled to this right if you have opposed the processing of your personal data.
• Right to data portability: You are entitled to demand that we transfer your personal data which you have provided to us in a structured, compatible and machine-readable format to you. Alternatively, you may demand the direct transmission of your personal data provided to another responsible person, if this is possible.
• Right to lodge a complaint: You are entitled to lodge a complaint with a data protection supervisory authority if you believe that we process your personal data in an unlawful manner.

Our offer is expressly not directed at minors.
All data received and processed within this online offer will be treated confidentially in accordance with the EU-DSGVO and not passed on to third parties.

Data Privacy Statement for the Google Analytics web analytics service
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies, text files which are placed on your computer for the purpose of analysing your use of the website. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. We have activated IP anonymisation. On this website, your IP address will therefore be truncated by Google within an EU member state or other EEA state before being transmitted to the US. Only in exceptional situations will your full IP address be transmitted to Google servers in the United States and truncated there. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing them with other services relating to website activity and internet usage. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting information (including your IP address) relating to your use of the website which is generated by the cookie, and from processing this information, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout. An opt-out cookie is set to prevent your data being recorded when you visit this website in future
Further information on the terms of service and data protection can be found at https://www.google.com/analytics/terms/gb.html or https://policies.google.com/.
Please note that on this website, Google Analytics has been extended with the “anonymizeIp” code in order to guarantee that IP addresses are recorded anonymously (IP masking).

Google Tag Manager
Google Tag Manager is a Google Inc. (“Google”) service which is used to add, update and manage tags.
Tags are small code elements on our website which help measure traffic and visitor behaviour and monitor the impact of online advertising and social media.
When you visit our website, the current tag configuration is sent to the user’s browser. This contains instructions on which tags should be enabled. The tool itself does not record personal data. The tool does however ensure that other tags which may record data are enabled.
More information on how Google Tag Manager works can be found here: https://support.google.com/tagmanager/ and in the use policies: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.

Data Privacy Statement for “Google Remarketing” and “Similar Audiences” function of Google Inc.
This website uses the Remarketing or “Similar Audiences” function of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“). You can therefore be targeted by advertising so that personalised and interest-based advertisements are displayed when you visit other websites in the “Google Display Network”. “Google Remarketing” and “Similar Audiences” use cookies, text files which are stored on your computer and which allow your use of the website to be analysed. These text files document your visit and collect anonymised data regarding your use of the website. Personal data is therefore not retained. If you visit another website in the “Google Display Network” you will see pop-up ads which should reflect product and information areas previously accessed on our website. You can block the “Google Remarketing” or “Similar Audiences” function by refusing the use of cookies by setting your browser software accordingly. Please note however that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the information generated by the cookie relating to your use of the website and from processing this information by downloading the browser plugin available at the following link and installing it: https://www.google.com/settings/ads/plugin?hl=de. You can also deactivate the use of cookies by third-party suppliers, by opening the Network Advertising Initiative site at http://www.networkadvertising.org/choices/ and implementing the detailed instructions given there concerning opt-outs. The Google Data Privacy Statement regarding remarketing with further information can be found here: www.google.com/privacy/ads/.

Data privacy statement for Google Inc. “Google AdWords Conversion Tracking”
This website uses the “Google AdWords Conversion Tracking” function of Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”). Google AdWords Conversion Tracking uses cookies, text files which are stored on your computer and which allow an analysis of your use of the website when you click on a Google ad. Cookies are valid for a maximum of 90 days. Personal data is therefore not retained. As long as the cookie is valid, we as the website operator, and Google, can see that you have clicked on an ad and have accessed a certain landing page (e.g. order confirmation page, newsletter subscription). These cookies cannot be tracked across multiple websites by different AdWords participants. Conversion statistics are compiled by the cookie in “Google AdWords”. These statistics record the number of users who have clicked on one of our ads. In addition, the number of users who have accessed a landing page which contains a “conversion tag” is counted. The statistics do not however include any data which can used to identify you. You can refuse the use of cookies on your hard drive by selecting “Do not accept cookies” in your browser settings (in MS Internet Explorer under “Tools > Internet Options > Privacy > Settings; in Firefox under “Options > Privacy & Security > Cookies”); please note however that if you do this, you may not be able to use the full functionality of this website. By using this website, you agree to the processing of the data on you collected by Google in the manner described above, and for the aforementioned purpose. More information on how Google Conversion Data is used, and the Google Data Privacy Statement can be found at: https://support.google.com/adwords/answer/93148?ctx=tltp,http://www.google.de/policies/privacy/.

YouTube
Our website uses plug-ins provided by YouTube, a site operated by Google, in order to display YouTube videos on our website. The site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you access one of our pages equipped with the YouTube plug-in, a link to the YouTube servers will be created. In this process, information as to which of our pages you have visited will be communicated to the YouTube server. In addition, YouTube may save various cookies on your device. These cookies enable YouTube to receive information about visitors to our website. This information is used for purposes including recording video statistics, increasing ease of use, and preventing attempted fraud. The cookies remain on your device until you delete them. If you are logged into your YouTube account, YouTube is able to directly assign your current activity to your personal profile. You can prevent this from happening by logging out of your YouTube account. YouTube is used to make our website presentation appealing. This represents a legitimate interest as defined by point (f) Article 6(1) GDPR. Additional information on how user data is handled is available in the YouTube privacy policy at https://policies.google.com/privacy.

Information about the newsletter and consent

The following information explains the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures and your rights of objection. By subscribing to our newsletter, you agree to receive it and to the procedures described.

Newsletter content:
We send newsletters and emails with promotional information (hereinafter "newsletter") only with the consent of the recipients or a legal permission. The contents circumscribed in the context of a registration for the newsletter are decisive for the consent of the users.

Double-Opt-In and Logging:
Registration for our newsletter is carried out in a so-called double opt-in process, i.e. after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Changes to your data stored at sendinblue are also logged.

Use of the shipping service provider "Sendinblue.com":
This website uses Sendinblue to send newsletters. The provider is Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Sendinblue is a service that can be used, among other things, to organize and analyze the sending of newsletters. Sendinblue is a German, certified provider, which was selected in accordance with the requirements of the General Data Protection Regulation and the Federal Data Protection Act. You can find more information here: de.sendinblue.com/information-newsletter-receiver. The data you enter for the purpose of receiving the newsletter will be stored on Sendinblue's servers in Germany.

If you do not want Sendinblue to analyze your data, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in each newsletter message.

You can view Sendinblue's privacy policy here: https://de.sendinblue.com/legal/privacypolicy/

Registration data:
To sign up for the newsletter, it is sufficient to provide your email address. In addition, we use other data such as name and surname, country and customer group. This information is only used for personalization and segmentation of the newsletter.

Statistical collection and analyses:
The newsletters contain a so-called "web-beacon", i.e. a pixel-sized file that is retrieved from Sendinblue's server when the newsletter is opened. Within the scope of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of the retrieval are initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times.

The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our nor Sendinblue's intention to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Online Calling and Data Management:
There are cases where we direct newsletter recipients to Sendinblue's websites. For example, our newsletters contain a link that newsletter recipients can use to access the newsletters online (e.g., in case of display problems in the email program). Furthermore, newsletter recipients can only view Sendinblue's privacy policy on their site.
In this context, we would like to point out that cookies are used on Sendinblue's websites and that personal data is thus processed by Sendinblue, its partners and service providers used (e.g. Google Analytics). We have no influence on this data collection. For more information, please refer to Sendinblue's privacy policy. We additionally draw your attention to the options for objecting to the collection of data for advertising purposes on the websites http://www.aboutads.info/choices/ and http://www.youronlinechoices.com/ (for the European region).

Cancellation/revocation:
You can cancel the receipt of our newsletter at any time, i.e. revoke your consents. At the same time, your consent to the sending of the newsletter via Sendinblue and the statistical analyses will expire. A separate cancellation of the sending via Sendinblue or the statistical analysis is unfortunately not possible.

You will find a link to cancel the newsletter at the end of each newsletter.

Storage period

The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of Sendinblue after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.

After you have unsubscribed from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist to prevent future mailings. The data from the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with the legal requirements for sending newsletters (legitimate interest within the meaning of § 6 para. 1 lit. g KDG). The storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interest.

For more details, please refer to the data protection provisions of Sendinblue at: https://de.sendinblue.com/datenschutz-uebersicht.

Conclusion of a contract for commissioned data processing

We have concluded a contract with Sendinblue in which we oblige Sendinblue to protect our customers' data and not to pass it on to third parties. This contract can be viewed at the following link: https://de.sendinblue.com/wp-content/uploads/sites/3/2021/04/AV_Muster_DE_18.02.2021.pdf

Legal basis Data Protection Regulation:
In accordance with the requirements of the Basic Data Protection Regulation (DSGVO) applicable as of May 25, 2018, we inform you that the consent to send newsletters to the registered email addresses is based on Art. 6 para. 1 lit. a, 7 DSGVO and § 7 para. 2 No. 3, or para. 3 UWG. The use of the dispatch service provider Sendinblue, performance of statistical surveys and analyses as well as logging of the registration process, are carried out on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f DSGVO. 
We would also like to point out that you can object to the future processing of your personal data in accordance with the legal requirements pursuant to Art. 21 DSGVO at any time. The objection can be made in particular against the processing for purposes of direct advertising.

Our social media presence

Data processing by social networks
We have a number of public profiles on social networks. You can find details of the social networks we use further below. Social networks such as Facebook can generally analyse your user behaviour in detail when you visit their website, or a website with integrated social media content (e.g. “Like” buttons or banner advertisements). Visiting our social media webpages triggers numerous processing operations that are relevant in terms of data protection. In detail: If you are logged into your social media account and visit our social media webpage, the operator of the social media portal may associate this visit with your user account. Under certain circumstances, however, your personal data may also be recorded if you are not logged in or if you have no account with the social media portal in question. In such cases, this data is collected using cookies stored on your end device or by storing your IP address, for example. Social media portal operators can use the data they collect in this manner to create user profiles in which your preferences and interests are recorded. This enables them to show you interest-based advertising, both on and off the respective social media webpage. If you have an account with the respective social network, this interest-based advertising can be displayed on all devices on which you are logged in or have previously been logged in. Please note also that we are unable to track all processing operations on social media portals. As such, depending on the provider, it is possible that further processing operations may be performed by the operators of the social media portals. Please see the terms of use and data protection provisions of the respective social media portals for further details.

Legal basis
Our social media webpages are intended to give us as extensive an internet presence as possible. This constitutes a legitimate interest as described in Article 6(1) point f GDPR. Analytical processes initiated by the social networks may be founded on different legal bases which the social network operators must disclose (e.g. consent as described in Article 6(1) point a GDPR).

Controller and exercising of rights
When you visit one of our social media webpages (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered by this visit. However, our responsibility and related ability to provide information are limited exclusively to the content we have created. In principle, you can exercise your rights (information, rectification, erasure, restriction of processing, data portability and complaints) both against us (with regard to content) and against the operator of the respective social media portal (e.g. Facebook). Please note that, despite our shared responsibility with the social media portal operators, we do not have complete control over the data processing operations of the social media portals. Our capabilities are limited by the company policy of the respective provider.

Storage period
We cannot influence the period for which personal data pertaining to you is stored by the social network operators for their own purposes. Information can be obtained directly from the social network operators (e.g. in their data protection information, see below).

Individual social networks

Facebook
We have a profile on Facebook. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. According to Facebook’s statement the collected data will also be transferred to the USA and to other third-party countries.
We have signed an agreement with Facebook on shared responsibility for the processing of data (Controller Addendum). This agreement determines which data processing operations we or Facebook are responsible for when you visit our Facebook Fanpage. This agreement can be viewed at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
You can customize your advertising settings independently in your user account. Click on the following link and log in: https://www.facebook.com/settings?tab=ads.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381. Details can be found in the Facebook privacy policy: https://www.facebook.com/about/privacy/.

Instagram
We have a profile on Instagram. The provider is Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/566994660333381.
For details on how they handle your personal information, see the Instagram Privacy Policy: https://help.instagram.com/519522125107875.

Pinterest
We have a profile at Pinterest. The operator is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. Details on how they handle your personal data can be found in the privacy policy of Pinterest: https://policy.pinterest.com/de/privacy-policy.

XING
We have a profile on XING. The provider is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany. Details on their handling of your personal data can be found in the XING Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung.

LinkedIn
We have a LinkedIn profile. The provider is the LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies. If you want to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa und https://www.linkedin.com/legal/l/eu-sccs.
For details on how they handle your personal information, please refer to LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

YouTube
We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland. For details on how they handle your personal information, please refer to Youtube's privacy policy: https://policies.google.com/privacy?hl=de.

Use of the live chat function (LiveChat)
On this website, GEALAN Fenster-Systeme GmbH uses real-time chat software from the provider LiveChat, Inc., One International Place, Suite 1400 , Boston, USA, MA 02110-2619 on the basis of an order processing agreement according to Art. 28 para. 3 p. 1 DSGVO. LiveChat, Inc. has undertaken to comply with the European data protection regulations (DSGVO). LiveChat uses cookies. The information generated by the cookie about the use of our website is transmitted to a server of LiveChat and stored there. The servers of the company hosting our chat services are located in Frankfurt am Main, Germany and Amsterdam, Netherlands. No personal data is stored or transmitted to unsafe third countries.

You can use the live chat to chat in near real time with our service staff. When you start the chat, the following data is transmitted:
- IP address, type of browser and operating system used.
- Date and time of the call
- URL of the previously visited website
- log-in data provided

Depending on the course of the conversation, further personal data may be collected in the chat and entered by you. The nature of this data depends largely on your request. All our employees have been and will be trained on the subject of data protection and taught how to handle customer data safely and confidentially.

When you call up the gealan.de website, the chat widget is loaded in the form of a JavaScript file. The chat widget represents the technical source code that is executed on your computer and enables the chat. In addition, LiveChat stores the history of live chats for as long as is necessary to process the chat request. This serves the purpose of sparing you extensive explanations of the history of your enquiry in certain circumstances. If you do not wish this, you are welcome to inform us of this at datenschutz@gealan.de. Stored live chats will then be deleted by us immediately.

You can find more information on data processing by LiveChat in the LiveChat privacy policy at www.livechatinc.com/legal/privacy-policy. 

Updating this data privacy statement
From time to time this data privacy statement may have to be updated, for example by new legal provisions or official requirements, and new offers on our website. We will notify you of this. In general, we recommend that you open this data privacy statement regularly to check whether there are changes. Changes can be identified e.g. by an updated issue status at the bottom of the document.

Printing and saving this data privacy statement
This data privacy statement can be printed and saved directly, for example using the Print or Save function in your browser.