1. Data protection at a glance

General notes
The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data are all data with which you can be personally identified. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.

Data collection on our website

Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. His contact details can be found in the imprint of this website.

How do we collect your data?
On the one hand, your data is collected by you giving us this information. This can be data that you enter in a contact form, for example.
Other data is automatically collected by our IT systems when you visit the website. These are mainly technical data (e.g. internet browser, operating system or time of the page call). This data is collected automatically as soon as you enter our website.

What do we use your data for?
Part of the data is collected to ensure that the website is provided without errors. Other data can be used to analyse your user behaviour.

What rights do you have regarding your data?
You have the right to receive information free of charge about the origin, recipient and purpose of your stored personal data at any time. You also have the right to demand the correction, blocking or deletion of this data. For this purpose, as well as for further questions regarding data protection, you can contact us at any time at the address given in the imprint.
Furthermore, you have a right of appeal to the responsible supervisory authority.

Analysis tools and third-party tools
When you visit our website, your surfing behaviour can be statistically evaluated. This is mainly done with cookies and with so-called analysis programs. The analysis of your surfing behaviour is usually anonymous; the surfing behaviour cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You will find detailed information on this in the following data protection declaration.
You can contradict this analysis. We will inform you about the possibilities of objection in this privacy policy.

2. General notes and mandatory information

Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this data protection declaration.
When you use this website, various personal data is collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible.

Note on the responsible body
The person responsible for data processing on this website is:

Mohn Gerüstsysteme GmbH
Roger Mohn
Managing Director
Am Zeppelinpark 37
13591 Berlin

Contact
Fon:  +49 (0) 30/ 30 39 83 700
Fax: +49 (0) 30/ 30 39 83 709
Mobil: +49 (0) 170 2121 088
E-Mail:  roger.mohn@mohn-geruestsysteme.de
Web: www.mohn-geruestsysteme.de

(See also our Imprint.)

Responsible party is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke any consent already given at any time. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing carried out up to the time of revocation remains unaffected by the revocation.

Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the person concerned has a right of appeal to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the State Data Protection Commissioner of the federal state in which our company is based. A list of the data protection officers and their contact details can be found on the following link:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data transferability
You have the right to have data, which we process automatically on the basis of your consent or in fulfilment of a contract, handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only take place to the extent that it is technically feasible.

Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, a right to correct, block or delete this data. For this purpose, as well as for further questions regarding personal data, you can contact us at any time at the address given in the imprint.

3. Data collection on our website

SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognise an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Cookies
The Internet pages partly use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies enable us to recognize your browser the next time you visit us.
You can set your browser to inform you about the setting of cookies and to allow cookies only in individual cases, to exclude the acceptance of cookies for certain cases or in general and to activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website may be limited.
Cookies, which are necessary for the electronic communication process or for the provision of certain functions you require (e.g. shopping basket function), are stored on the basis of Art. 6 Para. 1 lit. f DSGVO. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimised provision of his services.
Insofar as other cookies (e.g. cookies for analysing your surfing behaviour) are stored, these are treated separately in this data protection declaration.

Server log files
The provider of the website automatically collects and stores information in server log files, which your browser automatically transmits. These are:

IP, directory protection user, date, time, accessed pages, logs, status code, data volume, referrer, user agent, accessed host name

The IP addresses are stored anonymously. For this purpose the last three digits are removed, i.e. 127.0.0.1 becomes 127.0.0.*. IPv6 addresses are also anonymized. The anonymized IP addresses are stored for 60 days. Information about the directory protection user used is anonymized after one day.
Error logs, which log incorrect page views, are deleted after seven days. In addition to the error messages, these logs contain the accessing IP address and, depending on the error, the website called up.
The mail logs for sending e-mails from the web environment are anonymized after one day and then retained for 60 days. During the anonymization process, all data about the sender/recipient etc. is removed. Only the data on the time of sending and the information on how the e-mail was processed (queue ID or not sent) remain.
Mail logs for sending via the mail server are deleted after four weeks. The longer retention period is necessary to ensure the functionality of the mail services and to combat spam.
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. The storage in log files is done to ensure the functionality of the website. In addition, the data serves to optimise the website and to ensure the security of the information technology systems.
This data is not merged with other data sources.
The basis for data processing is Art. 6 para. 1 letter f DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.

Contact form
If you send us enquiries via the contact form, your details from the enquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent.
The processing of the data entered in the contact form is thus exclusively based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. For this purpose, an informal notification by e-mail to us is sufficient. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent for storage or the purpose for which the data was stored no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

Limit Login Attempts Reloaded
The WordPress plugin “Limit Login Attempts Reloaded” is used to prevent brute force attacks. This stores all logged IP addresses in the WordPress database in encrypted form.
The use of “Limit Login Attempts Reloaded” is in the interest of protecting our website. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 lit. f DSGVO.