Data protection notice
K-fee System (hereafter „K-fee“ or „we“) is committed to protecting your privacy. The collection and processing of your personal data is therefore carried out by our company exclusively within the framework of the existing data protection regulations. On this page, we inform you about the collection and processing of your personal data in accordance with Art. 13, 14 of the General Data Protection Regulation (GDPR).
Data controller is
K-fee System GmbH
51469 Bergisch Gladbach
Phone: +49 (0)2202/105-0
Our data protection officer is
PricewaterhouseCoopers Legal AG Rechtsanwaltsgesellschaft
Moskauer Straße 19
During your visit of this website www.k-fee-system.com (including its subpages) and the use of the various offers, we process your personal data as described in detail below.
We use so-called cookies on our website (including its subpages). These are small text files which are transferred via your web browser from our web server to your computer and stored on the permanent memory (hard drive, fixed memory, etc.) of your computer. The information stored in cookies (e.g. IP address, date and time of the request, web browser used and operating system) is read by us. Below you will find further information on individual cookies used by us.
a) Functional Cookies
We currently make use of the following functional cookies:
|k-fee-system.com||pil_language||1 year||Language settings, navigation on website||https://www.k-fee-system.com/en/data-protection-notice/|
|k-fee-system.com||cookie_notice_accepted||1 month||Agreement to Cookies||https://www.k-fee-system.com/en/data-protection-notice/|
|k-fee-system.com||wordpress_test_cookie||session||Verifying whether the user’s browser supports the cookies||https://www.k-fee-system.com/en/data-protection-notice/|
b) Marketing Cookies
We currently make use of the following marketing cookies:
|google.com||_ga||2 years||records a unique ID to raise data on how the user navigates on the website||https://policies.google.com/privacy|
|google.com||_gid||1 day||records a unique ID to raise data on how the user navigates on the website||https://policies.google.com/privacy|
|google.com||_gat||10 minutes||Reduces query rates||https://policies.google.com/privacy|
|google.com||NID||6 months||individualizes advertisement in google products such as e.g. google search or google maps.||https://policies.google.com/privacy|
|youtube.com||GPS||1 day||Records a unique ID on mobile devices for location tracking i.e. GPS tracking.||https://policies.google.com/privacy|
|youtube.com||PREF||8 months||Records a unique ID which is used by Google to raise statistics on website user’s action at YouTube.||https://policies.google.com/privacy|
|youtube.com||VISITOR_INFO1_LIVE||179 days||Estimation of user range on websites with integrated YouTube video||https://policies.google.com/privacy|
|youtube.com||YSC||session||Records a unique ID to raise statistics on YouTube videos which the user has clicked||https://policies.google.com/privacy|
Each time you visit our website, your browser automatically transmits your IP address, identification (manufacturer, version, operating system) and language settings of your web browser, the time of your visit and visited sub-pages of our website, your referrer URL (i.e. the URL of the page from which you are visiting us), as well as the volume of data generated during your visit to our website (hereinafter “access data“). We process your access data in order to guarantee system security (e.g. to defend against hacker attacks) and to compile usage statistics. These processes are carried out on the basis of our legitimate overriding interest (Art. 6 para. 1 s. 1 lit. f) GDPR). You have neither a legal nor a contractual obligation to provide your access data, nor is this necessary for the conclusion of a contract. However, you must provide us with your access data to be able to access our website and use the offers and services provided on it.
3. Google Analytics
a) Data categories subject to processing, recipients, processing purposes
In general, no personal data is processed when using Google Analytics. Your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases the full IP address is transmitted to a Google server in the USA and shortened there (for these cases Google has submitted to the EU-US Privacy Shield, available at https://www.privacyshield.gov/EU-US-Framework); we point out that on our web pages Google Analytics was extended by the Plug-In “AnonymizeIP”, in order to guarantee an anonymized collection of your IP address also in these exceptional cases, so that your data are not referable to your person.
The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google.
b) Legal basis, retention period
The legal basis for the use of Google Analytics is Art. 6 para. 1 lit. f) GDPR. Sessions end regularly after 30 minutes of inactivity and campaigns end after six months; campaign data can be stored for a maximum of two years.
c) Right to object
If Google Analytics processes your data in personal form, you can object to this at any time – in this case this processing will be stopped immediately.
In particular, you can send your informal objection to our data protection officer:
firstname.lastname@example.org, Krüger GmbH & Co. KG, Legal Department, Senefelderstraße 44, 51469 Bergisch Gladbach, Germany.
You can also exercise your right of objection in particular by preventing the storage of cookies used by Google Analytics by configuring your browser software accordingly (further information on this can be found here); however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en
Please note that you are leaving our website by doing so.
d) Information of Google
Google Dublin, Google Ireland Ltd.
Gordon House, Barrow Street, Dublin 4, Ireland
Fax: +353 (1) 436 1001.
4. Google Maps
On this website we use the services of Google Maps. This enables us to display interactive maps directly on the website and enables you to use the map function conveniently.
By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. This is necessary due to technical reasons, i.e. to embed the map functions. We do not have information if Google merges your google maps data with any other data.
We have a legitimate interest (improvement and user friendliness of our website) in using the Google maps service within the meaning of Art. 6 para. 1 s. 1 lit. f) GDPR.
You have neither a legal nor a contractual obligation to provide your access data, nor is this necessary for the conclusion of a contract. However, you must provide us with your access data to be able to access our website and use the offers and services provided on it. We store your access data only during your visit of the Google Maps subpage to be able to embed the Google maps service.
5. Contact and customer complaints
You have the option of contacting us directly via a contact form provided on our website. In this case, you must provide your name, e-mail address and a subject for your request. We also offer you the opportunity to contact us directly via e-mail. If you click on the “E-Mail” button on our website, your e-mail program will open and you can send us a message to our pre-entered e-mail address. If you contact us via e-mail or web form, we will also collect your IP address and the time at which you send us your message. We use the information you send us via contact form or e-mail exclusively to process your request.
You are neither legally nor contractually obliged to provide us with your data, without providing such data though, we cannot deal with your query. The legal basis for this processing is Art. 6 para. 1 s. 1 lit. b) GDPR. We process your IP address and the time of your request in order to identify and defend against automated access and hacker attacks. The legal basis for this processing is Art. 6 para. 1 s. 1 lit. f) GDPR. In principle, we delete this data at the end of one week after your request has been answered or otherwise dealt with; in individual cases, however, we keep this data for longer if we are legally entitled or obliged to do so (e.g. by virtue of commercial or tax retention periods).
6. Facebook Fanpage
For further information on K-fee, our products, and special offers, please visit also our Facebook fanpage https://www.facebook.com/Kfeesystem/ hereafter „fanpage“).
We are using the Facebook service “Insights“ for evaluation of our Facebook fanpage. When you visit our fanpage, we are processing your data in joint controllership with Facebook provided via the Facebook service „Insights“. Such data includes information on your action and interaction on and in connection with our fanpage, thus the collected data can be personal data.
Please note that we do not have information on Facebook’s data processing. Thus, when visiting our fanpage or when sharing and linking our fanpages with other users and fanpages, Facebook might track your actions and collect your personal data for its own purposes
7. Data subject rights
In the following we would like to inform you about the further rights to which you are entitled as a data subject according to Art. 15-21 and Art. 77 para. 1 GDPR. In order to assert these rights, you can contact our data protection officer email@example.com by e-mail in particular.
a) Right of access:
Pursuant to Art. 15 GPDR, you have the right to obtain information on data processing and a copy of the data processed. Within this context you also have the right to receive a copy of your personal data processed by us in accordance with Art. 15 para. 3-4 GDPR.
b) Right to rectification:
In accordance with Art. 16 GDPR, you have the right to demand that we correct or complete your personal data.
c) Right to erasure:
In accordance with Art. 17 para. 1 GDPR you have the right to demand that we erase your personal data. If we have published your personal data, you also have the right, in accordance with Art. 17 para. 2 GDPR, to request that we inform other controllers of your request to delete all links to and/or copies or replications of your personal data.
d) Right to restriction of processing:
In accordance with Art. 18 para 1-3 GDPR, you have the right to demand that we restrict the processing of your personal data.
e) Right to data portability:
Pursuant to Art. 20 GDPR, you have the right to receive the personal data about yourself that you have provided to us in a structured, commonly used and machine-readable format and to request the transfer of this data to another controller.
f) Right to withdraw consent:
If you have given us your consent to process your personal data, you can withdraw this consent at any time, in its entirety or with regard to individual processing purposes, in each case without giving reasons.
Please note that a lawful processing of your personal data, which has taken place until the time of your revocation, will not be retroactively unlawful by this.
You may withdraw your consent in particular by send a respective e-mail to firstname.lastname@example.org.
In the event of withdrawal of your consent given for a specific service, you can no longer use the corresponding service; beyond that, you will not suffer any disadvantages.
g) Right to object:
Pursuant to Art. 21 GDPR, you have the right to object to the processing of your personal data by us insofar as this is carried out for the purpose of direct advertising and/or on the basis of a “legitimate interest” within the meaning of Art. 6 para. 1 s. 1 lit. f) GDPR.
h) Lodging a complaint with a supervisory authority:
According to Art. 77 para. 1 GDPR, you have the right to lodge a complaint with a supervisory authority against the processing of your personal data by us if you are of the opinion that the processing of your personal data violates data protection regulations.
The competent supervisory authority for the federal state of North Rhine-Westphalia (Nordrhein-Westfalen) is the:
Landesbeauftragte für Datenschutz und Informationsfreiheit
Postfach 20 04 44
Additionally, you have the option of asserting other legal remedies to which you are entitled (e.g. with courts or authorities).
date: July 2019