Our privacy statement for this website conformable Article 13 EU General Data Protection Regulation (EU GDPR)

Thank you for your visit to our website and your interest in our development of exceptional designs for card and paper products and gifts. We takes the protection of your personal data very seriously and we want you to feel safe and comfortable when visiting our website. In the following text, we provide you with comprehensive information on how we handle your data.

Collection, processing and utilisation of user data from our website

You can basically use our website without disclosing your identity. For the purpose of providing and ensuring the security of our internet service, each time you access our website the so-called user data is transmitted by your browser to the server of our internet provider (1&1 Internet SE) at a location in Germany. The following data is collected during an ongoing connection for communication between your internet browser and our web server:

• Date and time of access
• URL of the referring website
• File retrieved
• Volume of data sent
• Browser type and version
• Operating system
• IP address

For technical security reasons, particularly to prevent attempts to attack the web server, this data is logged for a short time by the internet provider in compliance with data protection regulations: the data is stored for a time period of 7 days.

It is not possible for us to assign this user data to a specific person; the data will not be merged or compared with other data sources. In general, the logged user data is not forwarded to third parties, not even in excerpts, unless this has been ordered by a court or is necessary for legal or criminal prosecution in the event of attacks on our IT infrastructure.

As the operator of the website, b.sonders GmbH has concluded an agreement for order data processing (ODP) with 1&1 Internet SE; 1&1 Internet SE certifies the secure and conscientious handling of personal data in their computer centres in Germany. This guarantees a legally compliant implementation of the legal requirements on data protection pursuant to Art. 28 EU General Data Protection Regulation (EU GDPR).

Collecting further data

No further data will be collected. If you contact us by email or telephone, we will collect, process and use your personal data solely for the purpose of processing your inquiry.

In short: b.sonders GmbH collects personal data provided voluntarily by interested parties and customers, such as name, company/authority, email address and telephone, exclusively for responding to pre-contractual enquiries or for the rendering of services and processing of our contractual relationship as well as for invoicing purposes, and the fulfilment of legal obligations (cf. Art. 6 para. 1 lit. b. and c. EU GDPR). After the complete processing of a contract, the data will be blocked (for the purpose of complying with of tax and commercial retention periods) and deleted after expiry of these periods.

Disclosure of personal data to third parties

When disclosing personal data to third parties, we naturally observe the legality of data processing (Recital 40 EU GDPR). This means, for example, that we disclose the data of our customers on the basis of Art. 6 para. 1 lit. b. EU GDPR to a supplier or external partner, provided that this is necessary for the fulfilment of a contract; however, no further data is transmitted unless you have expressly agreed to the transmission (cf. Art. 4 para. 11 and Art. 7 EU GDPR).

Privacy policy for applicant data

If you contact us by email as part of the application procedure or send us a written application by post, we record the personal data you have provided exclusively for a specific purpose (applicant management); a confirmation of receipt with the necessary information about the purpose of data collection and the duration of data retention in accordance with Art. 13 EU-GDPR will be sent to you; written procedural documentation accompanies the entire application process. As a matter of principle, no transfer of applicant data to third countries (say, for storage in a cloud) takes place.The data submitted by applicants will only be made available to those persons who are directly involved in the recruitment process and whose participation is necessary. The recorded data of rejected candidates will be retained on the basis of the General Equal Treatment Act (AGG) for a maximum of six months after the end of the application procedure and then deleted.

Use of cookies / Opt-out solution

For technical reasons, this website uses a common method for displaying web page content on your device: the accessed website stores cookies, i.e. small text files, on your requesting terminal in a folder provided for it, the browser cache. The cookies placed by this website do not cause any damage to your computer, smartphone, tablet etc. and they do not contain any viruses or personal data. Most of the cookies used here are so-called performance cookies that measure error messages and load times, as well as function cookies that document your priorities with respect to display size and/or font size. However, this website does not use advertising cookies, the so-called "evercookies" or non-erasable cookie successors (canvas fingerprinting). The cookies used by this website can be deleted without any problems from the browser cache, the cache memory of the web browser; furthermore you can prevent cookies from being stored at any time through a corresponding setting in your browser software.

Web tracking process (range measurement)

No analysis programs or other techniques designed to analyse your user behaviour are used on this website.

Secure data transmission

Our website is hosted in a data centre at 1&1 Internet SE location in Germany. All data is thus subject to the German Data Protection Law. The data transmission itself is SSL-encrypted. You can identify an encrypted connection when the address line of your browser has “https://” or a lock symbol is displayed in front of our domain. We recommend that you keep your internet browser up to date – this will ensure that your data is transmitted securely.

Right to information and other rights of affected persons in accordance with Art. 15 ff EU GDPR

At your request, we will inform you in writing, and in accordance with the applicable law, whether we have stored any of your personal data and, if so, what data in particular. Along with the right to information (Art. 15 EU GDPR), you have the following further rights as data subjects, as applicable:

• Right of correction (Art. 16 EU GDPR)
• Right of objection (Art. 21 EU GDPR)
• Right of deletion (Art. 17 EU GDPR)
• Right of limitation of processing (Art. 18 f. EU GDPR)
• Right of data portability (Art. 20 EU GDPR)

For all these matters, please contact:
b.sonders GmbH
Britta Frankenhauser
Am Scheidt 31
40629 Düsseldorf
Germany
Tel.: +49 211 92967770
Email: info@b-sonders.com

We will respond to your legitimate requests for information within one month of receipt of your request, after carefully reviewing the legalities applicable to us.

If you consider that the processing of your personal data is not lawful, you are also entitled to contact your national Data Protection Authority (DPA), Web: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm, or raise a complaint with the relevant data protection supervisory authority (NRW Commissioner for Data Protection and Freedom of Information (LDI NRW), postal address: Postfach 20 04 44, 40102 Düsseldorf, Tel.: +49 211 38424-0, Web: www.ldi.nrw.de).

Links to websites of other providers

Our online service contains links to other providers. We have no influence on whether these providers comply with the currently applicable data protection provisions.

Final note

We herewith explicitly object to the use of contact data published on this website by third parties to send unsolicited advertising and information material. b.sonders GmbH specifically reserves the right to take legal recourse in the event of unsolicited advertising information being sent (through spam mails, etc.).