Privacy Policy
How do we handle personal data?
We attribute great importance to the protection and security of personal data. Your personal data is processed by us in connection with this website with respect to the relevant data protection regulations. In particular, we are subject to the provisions of the European General Data Protection Regulation (GDPR), insofar as we process personal data.
We would like to bolster the trust placed by our users in our offer, and, for this reason, we would like to explain the handling of personal data and inform you in detail about the processing of your data and your rights in accordance with Art. 12, 13, 14 and 21 of the GDPR. This website-specific data protection information explains which personal data is collected when you use this website at partners.mewa-service.com and how we handle this data and information.
Who is responsible for data processing and whom can you contact?
The data controller responsible for data processing within the meaning of the GDPR and other data protection regulations is:
MEWA Textil-Service SE & Co. Management OHG
John-F.-Kennedy-Straße 4
65189 WiesbadenTelephone for Headquarters: +49 611 7601-0
Fax: +49 611 7601-361
E-mail: info@mewa.de
Contact form also available on our website: https://www.mewa.deMEWA Textil-Service SE & Co. Management OHG is part of the Mewa Group with locations in Germany as well as in other European countries.
Our company Data Protection Officer can be reached at:
Mewa Textil-Service SE & Co. Management OHG
Data Protection Officer
John-F.-Kennedy-Straße 4
65189 WiesbadenE-mail: datenschutzbeauftragter@mewa.de
What is personal Data?
Personal data is data and information that relates to an identified or identifiable natural person.
For which purposes do we process your personal data? On which legal basis does this take place?
We process personal data for defined purposes, which we explain in detail below for your information. The extent to which (and the manner in which) your data is specifically processed depends, in particular, on which services, range of functions and offers of our website you utilise in detail. In particular, we process data so that ...
you can visit and view our website and we can protect our website and other systems from security risks;
- you can contact us (contact form/e-mail enquiries);
you can use our supplier extranet;
we optimise our website content and make it user-friendly and needs-based.
Any further processing of your personal data other than that specified in this Privacy Policy shall only take place in cases where we are expressly authorised (or obliged) to do so by law, or where you have explicitly consented to the processing of your personal data. We will inform you accordingly about any changes in purpose, taking into account legal requirements.
(1) Visiting and Viewing our Website
You may visit our website for informational purposes only, without further communication of personal information. In this case, on your visit to our website, only the technical access data transmitted by your browser, i.e. the name of your Internet service provider, the page from which you visit us, the date and time of your visit and the identification data of the browser/operating system as well as the network IP address you are using will be stored automatically. In addition, we use cookies, in order to be able to provide you with our website in an optimised way that is tailored to your needs, even for purely informative usage (for the details and your corresponding configuration options, see below under “Using cookies and related functions/technologies”). Access data is not merged with other data sources, and an evaluation of the data for marketing purposes does not ensue.
The storage of the aforementioned access data takes place within the framework of so-called server log files on our web/application servers and is necessary for technical reasons to provide a functional website and to ensure system security. In addition to the above purposes, we use access data solely for the needs-based design and optimisation of our website in a strictly statistical manner and without being traced back to you.
If you visit our website to find out about our supplier requirements, conditions and other services or to use them, the temporary storage of access data and log files takes place on the basis of Art. 6 para. 1 lit. b GDPR (legal basis), in particular for the implementation of pre-contractual measures. In addition, Art. 6 (1) point f of the General Data Protection Regulation serves as the legal basis for the temporary storage of access data and log files. Our legitimate interest is to provide you with a technically-functioning and user-friendly website and to ensure the security of our systems.
The access data obtained through the use of our website is retained only for the period in which this data is needed to achieve the above purposes. The regular storage period is 5 weeks. The network IP address is stored on our web/application servers for a maximum of 7 days.
(2) Contact Form/Enquiries
Personal data is collected and stored by us if you enter it in the contact form provided for this purpose on our website and send it to us or if you contact us in any other way (e.g. by e-mail). It is up to you to decide whether and what information you provide to us when making contact requests. If you contact us by e-mail, we shall store the data you provide in this respect. When you use the contact form on our website, we collect the data you enter in the input mask (e.g. first name, surname, address, your individual message). The data marked with an asterisk (*) is mandatory information that we need to properly respond to your request. The additional voluntary information allows us to better assign and process your request. When using the contact form on our website, the following technical access data will also be stored at the time of despatch: Date and time of sending your request and your IP address.
If you contact us as part of an existing contractual relationship or contact us in advance for information, the data and information you provide will be processed for the purpose of processing and responding to your contact enquiry in accordance with Art. 6 para. 1 lit. b GDPR (legal basis). The storage of the technical access data recorded during the sending process takes place for the purpose of technical provision of the contact options, as well as to ensure system security on the basis of Art. 6 (1) point f of the General Data Protection Regulation (legal basis) and serves to safeguard legitimate interests.
We store the personal data collected in connection with your contact for the purpose and for the duration of processing your request. The technical access data stored in this context is retained only for the period for which this data is needed for technical reasons, in particular, for the functional provision of the contact options and to ensure system security. In this case, your IP address will be stored on our web server for a maximum of 7 days.
(3) Supplier extranet
As a Mewa supplier, you can log in to our password-protected supplier extranet via our website. You will receive the corresponding access data (user name, password) separately as part of the existing supply relationship. Within your supplier account, you can independently manage your company's supplier profile, in particular change your access data, edit the supplier database and provide further company-specific supplier information via a supplier data sheet. The data stored on the supplier extranet is above all purely company-related data about your company's supply operations, which is required to organise the supply processes and provides us with an insight into your production sequences and processes for our own quality assurance. Personal data may be stored in the supplier extranet in relation to contact persons and other individual contact persons.
Insofar as we store and process personal data on the supplier extranet, this is done within the framework of the existing supplier relationship on the basis of Art. 6 para. 1 lit. b GDPR (legal basis). We also process data in accordance with Art. 6 para. 1 lit. c GDPR (legal basis) in order to fulfil legal obligations that apply to us in connection with the supply relationship. In particular, this includes retention periods under commercial, trade or tax law. We also process data in accordance with Art. 6 para. 1 lit. f GDPR (legal basis) to safeguard legitimate interests in order to assert our rights and enforce our legal claims and to defend ourselves against any legal claims.
We store your personal data to the extent necessary for the ongoing supply relationship. In addition, we may store your personal data until the expiry of any legal claims arising from our relationship with you, in order to use such for evidential purposes, if applicable. We delete your personal data when the limitation period expires, unless there is a legal obligation to retain it, for example under commercial or tax law. Under German law, these retention obligations can generally be three to ten years or, in exceptional cases, up to 30 years.
(4) Use of Cookies and Related Functions/Technologies
In order to make the visit to our website attractive and to enable the use of certain functions, we use cookies in some areas. Cookies are files that are stored on your hard drive or in the cache of your Internet browser when you visit our website. In addition, we also refer to web beacons and other similar storage technologies for tracking user activity as “cookies”. Web beacons are mostly transparent graphics/picture elements, typically no larger than 1 x 1 pixels, that are incorporated into the website and that can be used to detect cookies on your devices.
Cookies are used by us for the storage of session-relevant information within the website. These cookies expire at the end of the browser session (so-called transient cookies) and are not stored permanently. Other cookies remain on your computer beyond the respective browser session, and enable us to recognise your computer upon your next visit (so-called persistent cookies). Persistent cookies are automatically deleted after a specified period, which may vary depending on the type of cookie.
Cookies can be divided into the following categories/cookie types, in particular:
Necessary cookies
Cookies for the necessary execution of specific website functionalities
Of course, you can visit our website without the use of cookies. You can disable the use of cookies on your computer by changing the browser settings for cookies. The procedure for disabling cookies can be obtained regularly via the “Help” function of your Internet browser. Please note, however, that these settings may impair the full availability and functionality of our website. For further details regarding the setting and deactivation of cookies, please refer to the individual explanations below for the specific cookies used during a visit to our website and the associated functions/technologies.
Some of the cookies we use on our website come from third parties, and these help us to analyse the impact of our website content and our visitors’ interests, to measure the service and performance of our website, to provide appropriate advertising and other content on our website or others, or to communicate with you. As part of our website, we set both first-party cookies (only visible from the domain you are visiting) and third-party cookies (visible across domains and set regularly by third parties). Details:
↓ Tomcat
| Cookie type | Cookie name | Description / explanations | Validity |
|---|---|---|---|
| Necessary cookies | JSESSIONID | This cookie is automatically created by the application server (Tomcat) to store session status information. Here, for instance, it is stored whether a user is logged in, what authorisations they have or what data they have entered in multi-page forms. The cookie is deleted when the browser is closed. | Session |
| Necessary cookies | cookielayer | The cookie enables the website visitor’s consent to be obtained and stored regarding the use of cookies and/or comparable technologies. | 1 year |
The storage of information on your end device (e.g. PC, smartphone) and, if applicable, access to information stored in your end device is carried out on the basis of Section 25 (2) No. 2 of the Telecommunications Telemedia Data Protection Act (abbreviated in German as TTDSG), insofar as the processing of the information is absolutely necessary to enable the use of our website expressly requested by you. Any further storage of information on your end device is based on your consent in accordance with Section 25 (1) TTDSG. The data processing described in this Privacy Policy and its legal basis apply exclusively to the further processing of personal data, insofar as the data was obtained by storing (or accessing) information on your end device.
Further data processing of the personal data obtained via cookies is carried out on the basis of Art. 6 para. 1 lit. f GDPR (legal basis) to protect our legitimate interests. Our legitimate interests lie in particular in being able to provide you with a technically optimised, user-friendly and needs-based website and to ensure the security of our systems.
How do we protect your data?
We take precautions to ensure the security of your personal information and protect our website and other systems through appropriate technical and organisational measures. Your data will be specifically protected against loss, destruction, falsification, manipulation and alteration by unauthorised persons, as well as against unauthorised access and unauthorised disclosure or distribution. In addition, any information you provide through our website will be encrypted and transmitted via SSL over the Internet.
Who receives your data and is it sent to a third country or an international organisation?
Initially, only our employees who are involved with technical, commercial or editorial support will be aware of your personal data. For these purposes, your data may also be forwarded to employees of other companies in the Mewa Group, insofar as this is necessary for ensuring the corresponding support (e.g. to answer your enquiry).
In addition, we use external service providers as part of the data processing described above or, if necessary, commission them with corresponding services. As far as service providers receive your personal data as data processors, they are strictly bound by our instructions when handling your personal data. Below, we list the categories of external recipients in detail:
IT service providers, e.g. in the context of administration and hosting of our website or individual services/functionalities as well as for website analysis/measurement
When using the service providers, data such as IP addresses may be transferred to the USA. This is always done in an abbreviated/masked form. The respective data transfer is based on the EU-U.S. Data Privacy Framework of 10 July 2023. To the extent that adequacy decisions for US data transfers based on the aforementioned framework do not exist or are not applicable, the respective data transfer is based on other appropriate safeguards, such as standard contractual clauses issued by the European Commission and concluded with the service provider. Otherwise, we do not transfer your personal data to countries outside the EU or the EEA or to international organisations within the meaning of Art. 4 (26) (a) GDPR.
What rights do you have as a data subject?
As a data subject and at any time you are entitled to assert the following rights accordingly in written form or electronically to us or our Data Protection Officer at the specified contact addresses (see above "Who is responsible for data processing and whom can you contact?"):
Right to revoke an issued data protection consent at any time with effect for the future (Art. 7 [3] of the GDPR),
Right of access (Article 15 of the GDPR),
Right to rectification (Art. 16 of the GDPR),
Right to erasure (Art. 17 of the GDPR; if data must be retained by Mewa for legal reasons, it will be blocked in accordance with data protection regulations),
Right to restriction of processing (Art. 18 of the GDPR),
Right to data portability (Art. 20 of the GDPR),
Right to object (Art. 21 of the GDPR; for data processing based on our legitimate interest),
Right to lodge a complaint with a supervisory authority (Art. 77 of the GDPR)
Is there an obligation to make data available?
In order to provide you with our website and to enable you to use the relevant services/functionalities (such as the contact form, online orders, etc.), you must provide the personal data required for this purpose. Without this data it is not possible to access our website content or to use the corresponding services/functionalities.
Is your data used in automated decision making / profiling?
As a basic principle, you have the right not to be subjected to a decision based solely on automated processing, including profiling, which will have a legal effect concerning you, or similarly significantly affect you. In particular, these decisions may not be based on specific categories of personal data under Art. 9 (1) of the GDPR. We would like to point out that we do not use corresponding decision-making processes within the framework of our website and the associated data processing.
8 Can this privacy notice change?
The further development of our Internet offering and our website may also affect our data protection information. We hereby reserve the right to change this website-specific Privacy Policy from time to time in the future, in order that it complies with current legal requirements, or in order to reflect additions or changes to our website. Your visit is subject to the current version of this data protection notice, which you can access in the headline on each page under the "Privacy Policy" link.
Zugang für MEWA Lieferanten