Data Privacy
Thank you for visiting our website zenner-me.com and for your interest in our company.
The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.
The purpose of this privacy statement is to inform you about the processing of your personal data that we collect from you when you visit our site. Our data protection practice is in accordance with the legal regulations of the EU’s General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.
1. Section 1 – General Information
1.1. Controller
The controller regarding this website within the meaning of Art. 4 (7) GDPR and other national data protection laws of the Member States and other provisions under the GDPR is:
ZENNER Middle East DWC-LLC
U-Bora Tower
Office 203 Al Abraj Street
Marasi Drive Dubai, Business Bay
Mail: info@zenner.ae
Phone: +971 (4) 3337788
We have named a data protection officer (DPO) within the meaning of Art. 37 GDPR. You can contact our data protection officer using the following contact details:
Herr Christian Motsch
Heinrich-Barth-Str. 29, 66115 Saarbrücken, Germany
Mail: datenschutz@zenner.com
Phone: +49 6819967630
Fax: +49 681996763100
Website: http://www.zenner.com/
1.2. Logfiles
Each time you access our website, our system automatically collects data and information of your accessing device. The processing of personal data carried out in this context is as follows:
Scope of the processing of personal data
(1) Information concerning the browser type and the browser version used; (2) The operating system of the accessing device; (3) The IP address of the accessing device; (4) Date and time of access; (5) Websites and resources (images, files, additional page content) which were accessed; (6) Websites which refers to our website and which directed the user’s device to our web-site (referrer tracking); (7) Message whether the retrieval was successful and (8) Amount of data transferred.
This data is stored in the log files of our system. This data is not stored together with personal da-ta of a specific user in such a way that individual users can be identified.
Legal basis for the processing of personal data
Art. 6 (1) (f) GDPR (legitimate interest). Our legitimate interest lies in the following, outlined purpose.
Purpose of data processing
The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.
Duration of storage
The aforementioned technical data is erased as soon as it is no longer required to achieve the aforementioned purposes, but at the latest 3 months following the use of our website.
Possibility to object and demand deletion
You may object to this processing according to Art. 21 GDPR and demand deletion of data according to Art. 17 GDPR by following the indications under point 9 of this Privacy Policy.
1.3. General notes on contacting us
Please note that in the case of unencrypted communication by e-mail, absolute data security cannot be guaranteed for transmission to our IT systems. We therefore expressly recommend using encrypted communication or the postal service for transmission of information requiring a high level of confidentiality. The following risks, among others, exist for transmission via e-mail:
- personal data may be disclosed to third parties due to incorrect entry of the e-mail address;
- information about the recipient is not available to you, e.g. which or how many employees have access to your e-mail;
- due to the transmission of data via several distributed intermediate points without encryption, it is generally possible for unauthorized third parties to gain access to the data.
2. Section 2 – Special information
2.1. Special functions
Our site offers different functions which collect personal data as follows:
Contact Form
- Scope of the processing of personal data
The data entered by you into our contact forms. Especially the data which you have entered into the input mask of the contact form. This includes your name, your e-mail address, the subject of the contact and everything you enter into the message field. - Legal basis for the processing of personal data
Art. 6 (1) (a) GDPR (consent by clear confirmatory act or conduct) - Purpose of data processing
We will use the data that you have provided via our contact form for the processing of the specific contact enquiry received only. Please note that in order to fulfil your contact request, we may also send you e-mails to the address provided. The purpose of this is to enable you to receive confirmation from us that your request has been correctly forwarded to us and to provide you with the proper answer to your request. However, the sending of this confirmation e-mail is not binding for us and is for your information only. - Duration of storage
After processing your request, the collected data will be deleted immediately, unless there is a legal retention period. - Right to withdraw consent and to erasure
You can withdraw your consent pursuant to Art. 7 (3) GDPR by following the indications in the lower part of this privacy policy. - Characteristics of the provision of personal data
The provision of personal data is neither a statutory nor a contractual requirement. It is also not a requirement necessary to enter into a contract. Furthermore, you are not contractually obliged to provide the personal data and it has no contractual consequences if you fail to provide such data. The only consequence is that you are not able to communicate with us over the contact form.
2.2. Statistical evaluation of visits to this website
When you access this website or individual files of this website we collect, process and store the following data: The IP address of the site visitor, website from which the file was downloaded, file name, date and time it was accessed, amount of data transferred and informations about the successful download of the website (Web-Log).
- Google
We use on our site the service Google of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
We use Google in order to be able to load further services from Google on the website. The service is used to provide further Google services, such as the data processing required for the provision of streams and fonts and relevant Google search content. It is technically required in order to be able to exchange the site visitor’s information already available to Google between the Google services and to be able to provide the site visitor with individual content adapted to his or her Google account.
For processing itself, the service or we collect the following data: Background data stored in the Google user account or at other Google services about the page visitor, background data for the provision of Google services such as streaming data or advertising data, data about the page user’s use of Google search, details of the terminal device used, the IP address and the user’s browser and other data from Google services for the provision of Google services related to our website.
If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States.
When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads and Google Fonts in accordance with the Google Privacy Policy.
You can view the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de. - Google Maps
We use on our site the service Google Maps of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
On our behalf, Google will use the information obtained via Google Maps to show you the map. Using Google Maps, you can find us faster and more accurately than with a simple non-interactive map. Likewise, the relevant data will be used to associate site visitors who view our Google Maps map, possibly with the aid of the Google advertising ID, and to link them with physical visits and calls to further contact information listed on Google. In this way, Google can make an assessment of the expected visitor flows. For processing itself, the service or we collect the following data: Data required for the visualisation and display of location data in the form of a map, such as in particular IP address, information from Google background services such as Google Apis, search terms, IP address, coordinates, start location and destination when using the route planner, location data, Google advertising ID, Android advertising ID.
We have concluded a joint processing agreement with Google with regard to Google Maps. You can find the content at https://privacy.google.com/intl/de/businesses/mapscontrollerterms/. If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. when using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be processed by the Google services Google Apis, Google Cloud and Google Fonts in accordance with the Google data protection declaration under Google’s responsibility under data protection law. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de - Gstatic
We use on our site the service Gstatic of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website. Gstatic is a background service used by Google to retrieve static content in order to reduce bandwidth usage and preload required catalogue files. In particular, the service loads background data for Google Fonts and Google Maps.
As part of the order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de. - Matomo (lokal)
We use on our site the service Matomo (lokal) of the company InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, e-mail: privacy@matomo.org, website: https://matomo.org/. Personal data is transmitted exclusively to servers in the European Union.
The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below. Matomo is hosted on our own server infrastructure and is configured by us in such a way that no data is transmitted to Matomo, InnoCraft Ltd. or other third parties. The purpose of collecting statistical data is to monitor the functionality and user-friendliness of our website and to optimise it by analysing anonymised user flows. This enables us to identify which content is relevant to our site visitors and users and to expand our offering in this regard. We can also create anonymous usage profiles and read out general statistical information from the data collected. The data collected in this context will not be merged with other personal data without separate consent.
For processing itself, the service or we collect the following data: Parts of your IP address in anonymised form, user activities (e.g. referrer links, the time spent on certain URLs, clickstream, shopping cart or order IDs), data about your browser settings, browser provider, browser version, screen resolution and the operating system used.
The data collection by our local Matomo instance is also set to be data protection-friendly. collected IP addresses are anonymised before collection and processing. we have also activated the “Do Not Track Preference” in Matomo. This ensures that a “Do Not Track” request from your browser is observed by Matomo when you visit our website and, regardless of our other measures, the page user is not recorded. You can prevent recording by Matomo at any time by activating the “Do Not Track” setting of the browser. With regard to the processing, you have the right to object as set out in Art. 21. You can find more information at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://matomo.org/faq/general/faq_18254/. - YouTube
We use on our site the service YouTube of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
Videos from the Youtube platform are integrated on our website via the Youtube service. Through the integration, we can show you videos directly on our website. In this way, visitors to our website can view information about our services without having to visit the Youtube platform. For processing itself, the service or we collect the following data: Data for displaying the stream, data on videos clicked on, playlists created, ratings and comments, information on the terminal device used, the IP address and the user’s browser and further data from Google services for providing the video in accordance with the Google privacy policy.
If YouTube is activated on our website and a video is played, our website establishes a connection to the servers of Google Ireland Limited and transmits the data required to display the stream or video. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en). The operator of the service is certified under the GDPR, so that the usual level of protection of the GDPR applies to the transfer. When YouTube videos are displayed on our website, YouTube may transmit and process information from other Google services in order to provide background services for the video, such as streaming data. For this purpose, data may also be transferred to the Google services Google Fonts, Google Apis, Google Video, Doubleclick. You can view the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
2.3. Integration of external web services and processing of data outside the EU
We use active content from external providers, so-called web services, on our website. By calling up our website, these external providers may receive personal information about your visit to our website. Processing of data outside the EU may be possible. You can prevent this by installing a corresponding browser plug-in or by deactivating the execution of scripts in your browser. This can lead to functional restrictions on the websites that you visit.
We use the following external web services:
- CloudFlare
On our site we use the service CloudFlare. The external provider is Cloudflare, Inc., 101 Townsend St, 94107 San Francisco, USA, Mail: support@cloudflare.com, Website: https://www.cloudflare.com/de-de/. Your personal data will also be transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework by the EU Commission pursuant to Art. 45 DSGVO (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ).
The provider of the service is certified according to the DPF, so that the standard level of protection set out in the DSGVO applies to the transfer.The legal basis for the transmission of personal data is our legitimate interest in the processing pursuant to Art. 6 (1) (f) GDPR. Our legitimate interest consists in achieving the purpose described below.
Cloudflare is a content delivery network (CDN) and DDoS mitigation company. A CDN allows us to to improve our website’s user experience. A geographically distributed network of interconnected servers delivers content closer to users, reducing website load times and increasing content availability. Cloudflare’s DDos protection services help us resist or mitigate the impact of distributed denial-of-service (DDoS) attacks in order to minimise website downtime.
You can view the certification of compliance pursuant to the EU-U.S. Data Privacy Framework at https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000GnZKAA0.You have the right to object set out in Art. 21 GDPR. You can find more information on your right to object at the end of this data protection declaration.
Further information on the handling of the transferred data can be found in the provider’s data protection declaration at https://www.cloudflare.com/privacypolicy/. - Google Cloud APIs
We use on our site the service Google Cloud APIs of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
We use Google APIs in order to be able to load additional services from Google on the website. Google Apis is a collection of interfaces for communication between the various Google services used on your website. The service is used in particular to display the Google Fonts fonts and to provide the Google Maps map.
For processing itself, the service or we collect the following data: IP address
If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. when using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Cloud, Google Maps, Google Ads and Google Fonts in accordance with the Google data protection declaration under Google’s responsibility under data protection law. You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de. - Google Fonts
We use on our site the service Google Fonts of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
We use the Google Fonts service to be able to integrate attractive fonts on our website in order to be able to show you our website in a visually better version. The service may also be used on our website if other Google services are reloaded on our website that require Google Fonts fonts to run. This is the case, for example, if our website uses Google services that require Google Fonts to run.
For processing itself, the service or we collect the following data: Data on fonts, IP address of the page visitor, statistics on the use of fonts and other data from Google services related to our website.If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. when using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Google Cloud and Google Ads in accordance with the Google Privacy Policy. You can view the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.
For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de. - Google reCaptcha
We use on our site the service Google reCaptcha of the company Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. Personal data is also transferred to the U.S. With regard to the transfer of personal data to the U.S., there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 of the GDPR (hereinafter: DPF – https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
If Google reCaptcha is activated on our website, the data determined by Google reCaptcha will be transmitted to servers of the company Google Ireland Limited. As part of the order processing, personal data may also be transmitted to the servers of the parent company Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. based on specific characteristics and an analysis of page behaviour, the service recognises whether the entries made are automated entries by means of a programme (so-called bot) or human. The service has three different levels. Either the service automatically recognises that the input is not automated by a bot or it lets the user select a captcha checkbox. A third option is the display of small image or voice tasks / text tasks that have to be solved by the site visitor. Google reCaptcha is a capcha service that is used on our website for security reasons to prevent bots (robot programs) from interacting with our website. Google reCaptcha verifies on our behalf that only humans and not bots can use our website. This enables us to protect the special functions of our website (e.g. contact forms or other input options such as the login area) from improper page access.
For processing itself, the service or we collect the following data: User behaviour (e.g. mouse gestures or input behaviour), IP address, browser data, computer information.
If you wish to use the input options protected by Google reCaptcha on our website, you must allow the use of Google reCaptcha and, if necessary, solve the corresponding captchas. If you do not fill in the captcha or do not allow the use of Google reCaptcha, you will not be able to use the form protected by the captcha. Alternatively, you can always use our other contact options (e.g. post or e-mail). You can access the provider’s certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can revoke your consent at any time. You will find more information on revoking your consent either with the consent itself or at the end of this privacy policy.For further information on the handling of transmitted data, please refer to the provider’s privacy policy at https://policies.google.com/privacy.
The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.
2.4. Information on the use of cookies
- Scope of the processing of personal data
On various pages, we and the web services integrate and use cookies to enable certain functions of our website and to integrate external web services. The so-called “cookies” are small text files that your browser can store on your accessing terminal device. These text files contain a characteristic string of characters that uniquely identifies the browser when you return to our site. The process of storing a cookie file is also called “setting a cookie”. Cookies may be set both by our website and by external web services. They are set to maintain full website functionality, improve user experience or for the purpose stated in your consent. Cookies also allow us to recognize individual visitors by pseudonyms, such as unique or random IDs, so that we can provide customized services to our users. Details are given in the table below. - Legal basis for the processing of personal data
Where processing of personal data is based on consent as set out in Art. 6 (1) (a) GDPR, this consent shall also be considered consent within the meaning of Section 25 subsection 1 TDDDG to the storage of information in the end user’s terminal equipment or access to it. Where processing of personal data is based on a different legal basis according to the GDPR (e.g. for the performance of a contract or the compliance with a legal obligation), the storage of information in the end user’s terminal equipment is based on Section 25 subsection 2 TDDDG. An exception pursuant to Section 25 subsection 2 TDDDG exists “if the sole purpose of storing information in the terminal equipment of the end user or the sole purpose of accessing information already stored in the terminal equipment of the end user is to carry out the transmission of a message via a public telecommunications network” or “if the storage of information in the terminal equipment of the end user or the access to information already stored in the terminal equipment of the end user is absolutely necessary in order for the provider of a digital service to provide a digital service expressly requested by the user”. Which legal basis is relevant can be seen from the cookie table in this privacy policy. - Purpose of data processing
Cookies may be set both by our website and by external web services. They are set to maintain full website functionality, improve user experience or for the purpose stated in your consent. Cookies also allow us to recognize individual visitors by pseudonyms, such as unique or random IDs, so that we can provide customized services to our users. - Duration of storage
Our cookies are stored in your browser until they are deleted or, in the case of a session cookie, until the session has expired. Details are given in the table below:
| Cookie-Name | Server | Provider | Purpose | Legal basis | Storage period | Type |
|---|---|---|---|---|---|---|
| _pk_id* | zenner-me.com | Matomo (self-hosted) | This cookie is used to recognize visitors (for example, if the visitor already has an active session) and to calculate the number of unique visitors. The cookie will assign a unique ID to the user to collect statistical data about the user’s visits to our website. | Legitimate Interests | About 13 months | Analytics |
| _pk_ses* | zenner-me.com | Matomo (self-hosted) | This cookie is used to calculate the number of visits by assigning an ID to each new visitor and uniquely assigning the visitor to a session. | Legitimate Interests | About 31 mins | Analytics |
| AEC | .google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | The cookie is used to protect our website. The cookie is used to take protective measures against SPAM / bot attacks and to prevent them. | Consent | About 6 months | Security |
| borlabs-cookie | zenner-me.com | Website operator | This cookie stores the individual consent choice the user made through the consent management platform. | Compliance with a legal obligation | About 12 months | Consent management |
| cookie | zenner-me.com | Zenner | This cookie allows us to save the settings you have chosen and store them for future site visits. | Consent | Session | Configuration |
| DV | www.google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | This cookie is used to assign a unique ID to the user and to collect statistical data about the user’s visits to our website. | Consent | About 30 mins | Analytics |
| gwcc | zenner-me.com | Zenner | This cookie allows us to save the settings you have chosen and store them for future site visits. | Consent | Session | Configuration |
| LAST_RESULT_ENTRY_KEY | www.youtube-nocookie.com | YouTube | This cookie stores the user’s video playback preferences for embedded YouTube videos. | Consent | Session | Convenience |
| nextId | www.youtube-nocookie.com | YouTube | This cookie allows us to save the settings you have chosen and store them for future site visits. | Consent | Session | Configuration |
| requests | www.youtube-nocookie.com | YouTube | This cookie allows us to save the settings you have chosen and store them for future site visits. | Consent | Session | Configuration |
| __Secure-ENID | .google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | The cookie is used to protect our website. The cookie is used to take protective measures against SPAM / bot attacks and to prevent them. | Consent | Session | Security |
| YSC | youtube.com | YouTube | The cookie is used to protect our website. The cookie is used to take protective measures against SPAM / bot attacks and to prevent them. | Consent | Session | Security |
| SOCS | .google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | This cookie is used to store your decision regarding the use of cookies. | Complianc with a legal obligation | 13 months | Consent management |
| PREF | .youtube.com | YouTube (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | YouTube uses this cookie to store information such as your preferred page configuration and playback preferences like explicit autoplay choices, shuffle content, and player size. | Consent | 24 months | Configuration |
| SNID | .google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | This cookie collects data for reporting and spam prevention. | Consent | 6 months | Analytics |
| NID | .google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Irland) | The ‘NID’ cookie is used to show Google ads in Google services for signed-out users. The cookie is also used to remember your preferences and other information, such as your preferred language, how many results you prefer to have shown on a search results page (for example, 10 or 20), and whether you want to have Google’s SafeSearch filter turned on. | Consent | 6 months | Marketing |
| VISITOR_INFO1_LIVE | .youtube.com | YouTube | The cookie is used to estimate how the videos on the website will be accepted by the site visitors. | Consent | 6 months | Analytics |
| VISITOR_PRIVACY_METADATA | .youtube.com | YouTube | The cookie collects various information about the user based on the user’s data protection settings. | Consent | 6 months | Analytics |
| _GRECAPTCHA | www.google.com | Google reCaptcha (Google Ireland Ltd., Gordon House, Barrow Street, 4 Dublin, Ireland) | The cookie is used to protect our website. The cookie is used to take protective measures against SPAM / bot attacks and to prevent them. | Consent | 6 months | Security |
| wordpress_ | zenner-me.com | Website operator | Using this cookie, WordPress recognizes that a user is logged in and assigns the user the individual rights to use the website. | Legitimate Interests | Session | Convenience |
| wordpress_logged_in | zenner-me.com | Website operator | This cookie is used to determine whether you have already logged in to WordPress and enables you to log in without entering your login data. | Art. 6 Abs. 1 lit. f DSGVO (berechtigte Interessen) | Session | Convenience |
| wordpress_sec_ | zenner-me.com | Website operator | This cookie is required to keep the user logged in to the WordPress site, if they so wish. This way, the user does not have to re-enter their login details. | Legitimate Interests | Session | Configuration |
| wordpress_test_cookie | zenner-me.com | Website operator | This cookie is used to check whether the user’s browser generally allows or rejects cookies on the WordPress login page. WordPress needs this information to determine whether a WordPress login is supported by the browser. | Legitimate Interests | Session | Cookie-Banner |
| wordpresspass_ | zenner-me.com | Website operator | The cookie ensures that it is detected whether a login attempt has been made with the necessary authentication features. | Legitimate Interests | Session | Security |
| wordpressuser_ | zenner-me.com | Website operator | This cookie is used to assign an individual ID to the site visitor. WordPress then records the page user’s interactions under this ID. | Legitimate Interests | Session | Configuration |
| wp-postpass | zenner-me.com | Website operator | The cookie checks whether cookies from WordPress or another website CMS are already present. | Consent | Session | Configuration |
| wp-settings | zenner-me.com | Website operator | This cookie is used to save the user settings of the respective WordPress site user. This allows the website to save the user’s individual settings. | Consent | Session | Convenience |
| wp-settings-time | zenner-me.com | Website operator | This cookie is used to save the user settings of the respective WordPress site user. This allows the website to remember individual user settings. | Consent | Session | Convenience |
- Possibility to object, withdraw consent and demand deletion
You can adjust your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on the acceptance of cookies on a case-by-case basis or accept cookies in principle. Cookies can be used for various purposes, e.g., to recognise that your accessing device has already been connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have given us express permission to process your personal data (Art. 6(1) (a) GDPR or Art. 9(2) (a) GDPR), you can withdraw it at any time. Please note that the lawfulness of the processing carried out on the basis of the consent up to the revocation is not affected by this.
2.5. Use of localStorage and sessionStorage
Web storage is a technical option for storing data and information on the users’ terminal devices, similar to cookies.
Generally data can be stored in two ways that differ in scope and lifetime. A distinction is made between permanent storage (localStorage) and storage that is limited to the “session” (sessionStorage). A session begins when the page is called up and ends when the page is exited (e.g. by closing the tab or the browser).
The localStorage or the sessionStorage is accessed via the scripts and web services used on the website.
We have created a table in which we explain the type of data placed in web storage and the purpose of the web storage objects.
| Name | Type | Purpose | Legal Basis |
|---|---|---|---|
| yt-remote-connected-devices | Configuration | The localStorage object is used to determine the optimal video quality based on the visitor’s device and network settings. | Consent |
| yt-remote-device-id | Configuration | Saves the user settings when retrieving a YouTube video. | Consent |
| ytidb::LAST_RESULT_ENTRY_KEY | Configuration | Saves the user settings when retrieving a YouTube video | Consent |
| yt-remote-fast-check-period | Session | Saves the user settings when retrieving an embedded YouTube video. | Consent |
| yt-remote-session-app | Session | Saves the user settings when retrieving an embedded YouTube video. | Consent |
| yt-remote-session-name | Session | Saves the user settings when retrieving an embedded YouTube video. | Consent |
| yt-player-bandwidth | Configuration | The localStorage object is used to determine the optimal video quality based on the visitor’s device and network settings. | Consent |
| yt-player-headers-readable | Configuration | The localStorage object is used to determine the optimal video quality based on the visitor’s device and network settings. | Consent |
| yt.inntertube::nextId | Configuration | Stores a unique ID to retain statistics of the videos that the user has watched. | Consent |
| yt.inntertube::requests | Configuration | Stores a unique ID to retain statistics of the videos that the user has watched. | Consent |
| yt-remote-cast-installed | Configuration | Saves the user settings when retrieving an embedded YouTube video. | Consent |
| yt-remote-cast-available | Configuration | Saves the user settings when retrieving an embedded YouTube video. | Consent |
| iU5q-!O9@$ | Configuration | Stores a unique ID to retain statistics of the videos that the user has watched. | Consent |
| rc::a | Security | Used by Google reCaptcha to enable us to distinguish between human and automated access to our website to ensure that only humans use forms on our website. | Consent |
| rc::f | Security | Used by Google reCaptcha to enable us to distinguish between human and automated access to our website to ensure that only humans use forms on our website. | Consent |
| rc::b | Security | Used by Google reCaptcha to enable us to distinguish between human and automated access to our website to ensure that only humans use forms on our website. | Consent |
| rc::c | Security | Used by Google reCaptcha to enable us to distinguish between human and automated access to our website to ensure that only humans use forms on our website. | Consent |
| _c;;i | Security | Used by Google reCaptcha for bot detection. | Consent |
| ds;;frib | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.pq | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.pq_tm_hp | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.qc | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.sc_pq | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.sr_di | Security | Used by Google reCaptcha for bot detection. | Consent |
| sb_wiz.zpc.gws-wiz-serp | Security | Used by Google reCaptcha for bot detection. | Consent |
| _grecaptcha | Security | Used by Google reCaptcha to ensure that only humans and not bots use our website by ensuring that input options on the website can only be used after successful verification. | Consent |
3. Section 3 – Your Rights
3.1. Right of access
You have the right to request confirmation as to whether we process your personal data. If this is the case, you have a right of access and information specified in Art. 15 (1) GDPR, provided that the rights and freedoms of other persons are not infringed (Art. 15 (1) GDPR). We will also be happy to provide you with a copy of the data.
3.2. Right to correction
Pursuant to Art. 16 GDPR, you have the right to have incorrectly stored personal data (such as address, name, etc.) corrected by us at any time.
3.3. Right to erasure
Pursuant to Art. 17 (1) GDPR, you have the right to demand that we delete the personal data collected about you, where one of the following grounds applies:
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
- the processing is based according to point (a) of Article 6 (1), or point (a) of Article 9 (2) GDPR, and there is no other legal ground for the processing
- you have objected to the processing pursuant to Article 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21 (2) GDPR
- the personal data have been unlawfully processed
- the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject
- the personal data have been collected in relation to the offer of information society services referred to in art. 8 (1) GDPR
Pursuant to Art. 17 (3) GDPR, the right does not exist insofar as the processing is necessary for the exercise of the right to freedom of expression and information. Moreover, it does not exist if it has been collected on the basis of a legal obligation, or if the data serve the assertion, ex-ercise or defence of legal claims.
3.4. Right to limitation of processing
According to Art. 18 (1) GDPR you have the right in individual cases to demand the restriction of the processing of your personal data.
This is the case if:
- the accuracy of the personal data is disputed
- the processing is unlawful
- the data are no longer required for the processing purpose but are used for the assertion, exercise or defence of legal claims
- an objection has been filed against the processing pursuant to art. 21 (1) GDPR and it is still unclear which interests predominate.
3.5. Right to withdraw consent
If you have given us express permission to process your personal data (Art. 6 (1) (a) GDPR or art. 9 (2) (a) GDPR), you can withdraw it at any time. Please note that the lawfulness of the pro-cessing carried out on the basis of the consent up to the revocation is not affected by this.
3.6. Right to object to data processing
Pursuant to Art. 21 GDPR, you may at any time object to the processing of your personal data if such processing is carried out on the basis of Art. 6 (1) (f) GDPR e.g. where the processing is carried out on the basis of the legitimate interests.
3.7. Right to data portability
You have the right to receive the personal data that you have transmitted to us in a structured, common and machine-readable format and transfer it to another data controller provided that: • the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or a contract pursuant Art. 6 (1) (b) GDPR; and • the processing is carried out by automated means. You can also request your personal data to be directly transferred to another controller, insofar as this is technically feasible. The exercise of this right shall not adversely affect the rights and free-doms of others.
3.8. How can I exercise my rights?
You can exercise your rights at any time by using the contact details below:
ZENNER Middle East DWC-LLC, U-Bora Tower Office 203 Al Abraj Street, Marasi Drive Dubai, Business Bay, Mail: info@zenner.ae, Phone: +971 (4) 3337788
3.9. Right to lodge a complaint to the competent supervisory authority
If you suspect that your data has been illegally processed on our site, you can take legal actions in order bring the problem to a judicial clarification. This option does not interfere with any other legal option you might have. Regardless of this, you have the option of contacting any other competent supervisory authority. You have the right to lodge a complaint to the competent supervisory authority in the EU Member State of your place of residence, workplace and/or place of alleged infringement, i.e. you can choose the supervisory authority to which you will be lodging a complaint in the above places. The supervisory authority to which the complaint was submitted will then inform you of the status and results of your complaint, including the possibility of a judicial remedy under Art. 78 GDPR.