Telephone support and advice at: +49 9571/94990 

Data Privacy Statement

(Stand: 05/2018)

Below we provide information about the processing of personal data when our online platforms are used. This online data privacy statement applies to our website www.friedrich-motorsport.de and our social media profiles.

Personal data includes all information that can be related to you personally, for example, name, address, email, IP address, and also usage behaviour, etc.

With regard to certain terms used such as „processing“, „controller“, and „data subject“, reference is made to the definitions in Art. 4 of the GDPR. In particular, the following information is contained there:

„Personal data“ means any information relating to an identified or identifiable natural person („data subject” or „affected person”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person (Art. 4 no. 1 of the GDPR).

„Processing“ means any operation or set of operations which is performed on personal data, whether aided by computer technology or not, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction (Art. 4 no. 2 of the GDPR).

„Controller“ (or „responsible authority“) means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data (Art. 4 no. 7 of the GDPR).

„Processor“ means a natural or legal person, public authority, agency, or other body, which processes personal data on behalf of the controller (Art. 4 no. 8 of the GDPR).

In particular, the terms „processing“ and „personal data“ have very broad definitions, meaning that almost every type of data handling can be covered.

 

 

01. Who is the responsible authority?

We are responsible for the processing of your data:

Friedrich Motorsport
Dirk Friedrich
Bamberger Str. 129
96215 Lichtenfels
Germany
Phone: +49 (0) 9571 - 9499-0
Fax: +49 (0) 9571 - 9499-18
E-Mail: This email address is being protected from spambots. You need JavaScript enabled to view it.

02. How can our data protection officer be contacted?

You can contact our data protection officer as follows:
by post at our address:

Marc Oliver Thoma Irisweg 43
53773 Hennef (Sieg)
Germany
Phone: +49 (0171) 5309434 as well as via e-mail This email address is being protected from spambots. You need JavaScript enabled to view it.

03. Who is affected by data processing?

If you e.g. visit our online platforms (e.g. our website or social media profiles) as an interested party, customer, supplier, service provider, or any other type of visitor, your personal data will be processed in the context of statutory regulations or this statement. All visitors to our online platforms are grouped under the term „user".

04. What data do we collect from you and for what purposes, or on what legal basis do we process this data?

If you visit our online platforms without registering or communicating information to us in another way, only the personal data transmitted to our server by your browser will be processed. Accordingly, to the best of our knowledge, the details listed below, among others, which are technically required to display our online presence and to ensure its stability and security, will be processed:

  • IP address of requesting computer
  • date and time of query
  • name and URL of file accessed
  • access status/HTTP status code
  • volume of data transmitted
  • website from which the request originates (referrer URL)
  • browser used
  • operating system

Furthermore, if you communicate personal data to us, e.g. when registering or when sending a query to us by email or using our contact form, we will then also process the following data:

  • user-related data (e.g. name, address)
  • contact data (e.g. email address, telephone number)
  • content data (e.g. text entries, photos, videos)
  • usage data (e.g. sites visited, access times)
  • communication data/metadata (e.g. device information, IP addresses)

In addition, we also process the following personal data for the purposes of performing contractual duties, services, customer maintenance, and marketing/advertising:

  • contractual data (e.g. subject matter of the contract, term, customer number)
  • payment data (e.g. bank details, credit card details, payment history)

We process your personal data when you visit our online presence for the following purposes:

  • to provide functions and content of our online offer
  • to ensure a smooth connection to our website
  • to ensure comfortable use of our website
  • to evaluate and ensure system security and stability plus general security measures
  • to respond to any contact queries or to communicate with you
  • other administrative purposes
  • to provide contractual services
  • customer service
  • marketing/advertising

Unless we mention a specific legal basis in the context of this data privacy statement, the following applies to the processing of your personal data: The legal basis for obtaining consent is provided by Art. 6 par. 1 letter a, Art. 7 of the GDPR. Art. 6 par. 1 letter b of the GDPR applies as the legal basis for data processing in terms of fulfilling our services and implementing (pre-)contractual measures and in terms of responding to any queries. Art. 6 par. 1 letter c of the GDPR is the legal basis for data processing in terms of fulfilling legal obligations. In the event that data processing is required in the vital interest of the data subject or another natural person, the legal basis is provided by Art. 6 par. 1 letter d of the GDPR. Data processing for the safeguarding of our legitimate interests is carried out on the basis of Art. 6 par. 1 letter f of the GDPR. Our legitimate interest is derived from the data collection purposes listed above.

If, when processing your personal data, we disclose or communicate this information to third parties or grant them access to this data in some other way, this will only be done on the basis of legal permission, provided that you have consented to this, we are legally obligated to do so, or on the basis of our legitimate interests. Legal permission applies in particular if the forwarding of data is required for the fulfilment of contractual obligations (e.g. in the case of payment or shipping providers). A legitimate interest can then apply if we use data for direct advertising or to prevent fraud or also if you are a customer of ours. Similarly, a legitimate interest can apply e.g. when using web or email hosting partners, cloud providers, or the aforementioned service providers. Such service providers are often assigned as so-called "processors” on the basis of a corresponding contract. They are also obligated to observe the relevant data protection requirements and also ensure contractual compliance to them. The legal basis for such processing relationships is Art. 28 of the GDPR.

05. To whom do we transmit your data?

We regularly work with the following recipients:

  • shipping providers
  • email hosting partners
  • banks
  • payment providers
  • newsletter providers

We carefully select our external service providers. In the case of processing relationships (Art. 28 of the GDPR), these companies are contractually bound to our instructions and are regularly inspected by us. More information on this is available in the following descriptions of the individual services.

The legal basis for transmitting your personal data is specified above under point 04.

06. Is your data transmitted to locations outside the EU?

Your personal data is only transmitted to third countries (i.e. outside the EU or EEA) or to international organisations in certain exceptional cases. More information is available in the following descriptions of the individual services.

If we process your personal data in a third country or allow a third party to process this data, this shall only be done in order to fulfil our (pre-) contractual obligations or on the basis of your consent, a legal commitment, or our legitimate interest. Your personal data will only be processed in a third country if particular prerequisites from Art. 44 ff. of the GDPR apply, unless legal or contractual permissions are valid in individual cases. This means that data processing takes place e.g. based on special guarantees, such as the officially recognised level of data protection in accordance with the European Union (e.g. the so-called „EU-US Privacy Shield” for the USA) or observance of officially recognised specific contractual obligations (in particular the so-called „EU standard contractual clauses”).

07. For how long do we process your data?

The length of storage of your personal data is regularly measured according to existing legal retention periods (e.g. according to commercial or tax law). Unless stipulated differently below, your personal data will be routinely deleted after a relevant deadline has expired, if it is no longer required to initiate or fulfil a contract, if we no longer have a legitimate interest in its continued storage, and/or you have not consented to a period of storage beyond the original agreement.

In Germany, there are special retention periods in the following areas, among others:

  • in accordance with commercial law (six years e.g. for opening balance sheets, annual accounts, posting documents, or similar)
  • in accordance with tax law (10 years for all documents relevant for tax law)
  • in accordance with the General Act on Equal Treatment (AGG) (six months for documents belonging to rejected applicants)
08. What are your rights?

With regard to the processing of your personal data, you have the following rights vis-à-vis us:

  • right of access (lists are possible)
  • right to rectification
  • right to erasure
  • right to restriction of processing
  • right to data portability
  • right to object
  • right to withdraw your given consent
  • right to file a complaint

The last three rights are explained in more detail below.

If you have any questions concerning your rights, do not hesitate to get in touch with us or our data protection officer. Contact details are available in the sections above relating to the responsible authority or data protection officer.

09. When and how can you object to data processing?

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 Par. 1 (1) letter f of the GDPR, you have the right to object to this processing at any time. Following this, we shall no longer be permitted to process your personal data going forward unless we can demonstrate compelling, legitimate grounds for its processing that override your interests, rights, and freedoms or for the establishment, exercise, or defence of legal claims.

The right to object shall only apply if there are reasons arising from your particular situation or if your objection relates to direct advertising. In the latter case, you have a general right of objection, which is honoured by us without the need to specify any particular situation.

If you would like to make use of your right to object, simply send a message to our postal address or by email (see point 01 above).

10. When and how can you revoke your consent?

You can revoke your consent given to us at any time. Following this, we shall no longer be permitted to process your personal data based on this consent in future.

If you would like to make use of your right of revocation, simply send a message to our postal address or by email (see point 01 above).

11. To whom can you submit a complaint?

With respect to the processing of your personal data by us, you have the right to submit a complaint to a data protection supervisory authority.

12. When and why is the provision of your data required?

You provide us with your personal data (e.g. name, postal address, email address) when registering, using our contact form, or sending support queries by email.

The provision of your personal data is in part required by law (e.g. by tax law provisions). It may also be required to implement (pre-)contractual measures. Failure to provide personal data will mean that the contract cannot be concluded with you or your query cannot be answered.

The following data must be provided in order to implement contracts or pre-contractual measures or to communicate with us:

  • first and last name
  • address
  • email address
  • telephone number if necessary (e.g. follow-up or response to customer queries)

Unless specified otherwise in this data privacy statement, all other information is voluntary.

You can also get in touch with our data protection officer before providing us with your personal data; his contact details are listed above under point 02. You can ask him specific questions about whether the provision of personal data in this case is legally or contractually required or is necessary to conclude a contract, whether there is an obligation to provide personal data, and what the consequences might be if personal data is not provided.

13. Does automated decision-making (e.g. profiling) take place?

Automated decision-making, including profiling, does not take place.

14. How can you get in touch with us?

You can contact us by post, fax, phone, or email. You can find our contact details above under the information about the responsible authority.

If you contact us e.g. by email or by using our contact form, we will save the personal data communicated voluntarily to us by you automatically for the purposes of processing your query or getting in touch with you. We do not forward this data to third parties.

15. How do we safeguard our website?

Taking into account the state of the art, the costs of implementation, and the nature, scope, context, and purposes of processing, as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, the controller and the processor shall implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk (Art. 32 of the GDPR). These measures include in particular ensuring the confidentiality, integrity, and availability of data. In addition, in our company we have established business processes that ensure the protection of the data subject's rights, the deletion of data, and also the response to data breaches. Furthermore, we observe the principles of data protection legislation, including privacy by design and privacy by default (Art. 25 of the GDPR).

For reasons of security and protection, we use encryption via SSL certificates on our website to transfer your personal data and other confidential contents. You can recognise this from your browser's address line where „https“ (and not „http“) is used and a lock icon in different colouring appears.

16. What is the situation with our profiles in social networks?

We operate the profiles listed below in social networks in order to get in contact with users who are active there and to give them information about the services we provide. When accessing the respective networks, the respective terms and conditions and data protection information of the respective operators apply. Unless specified otherwise in our data privacy statement, we process users’ data only if these individuals make contact with us within the social networks, i.e. by posting on our profile pages or sending us messages.

Our social media profiles:

17. How and for what purpose do we use Font Awesome?

We use so-called web fonts and icons on our website (provider: Fonticons, Inc.). When you call up a page, your browser loads the required contents to temporary storage (cache) in order to display our website correctly. If your browser does not support web fonts, a standard font will be used by your computer.

Zur Darstellung der Inhalte auf unserer Website nimmt Ihr Browser Verbindung zu den Servern des Anbieters auf, wodurch dieser Kenntnis über Ihre IP-Adresse erlangt. Die Nutzung von Web Fonts erfolgt für die Darstellung unserer Internetseite in anschaulicher und endgeräte-unabhängiger Weise. Die Verarbeitung Ihrer Daten (IP-Adresse) stellt daher ein berechtigtes Interesse gem. Art. 6 Abs. 1 lit. f DSGVO dar.

For more information on Font Awesome, please visit www.fontawesome.com or refer to the provider’s data privacy statement at www.fontawesome.com/privacy.

18. How do we process your data if you use our contact form?

If you get in touch with us by email or using our contact form, the personal data communicated by you will be saved automatically. Such personal data that you transmit voluntarily will be processed for the purpose of handling your query or making contact. We do not forward this data to third parties without your consent. The legal basis for using the contact form is Art. 6 par. 1 (1) letter f of the GDPR.

19. What are cookies and how do we use them?

So-called transient (also known as temporary) cookies are automatically deleted once you close your browser. These include session cookies in particular. These save a specific identifier (the so-called session ID), through which your device can be recognised again, should you return to our site in the future. As a result, for example the content of the virtual shopping cart of an online shop or the user’s login status can be saved. The session cookies are deleted once you log out or close the browser.

So-called persistent (also known as permanent) cookies are automatically deleted after a certain period of time; the length of storage differs depending on the cookie. As a result, for example user information relating to reach measurements or marketing purposes, or even a login status, can be saved for an extended period.

A distinction must be made between so-called first-party cookies and third-party cookies in the case of both temporary and permanent cookies. The former are set by the responsible authority, the latter by third-party providers.

You can use the security settings in your browser to delete cookies at any time or also, for example, to reject the use of third-party cookies. In general terms, if you want to object to the placement of cookies used for purposes of online marketing, then you can do so with various services or providers, e.g. via the American site www.aboutads.info/choices or the European site www.youronlinechoices.com. Please note, however, that as a result you may not be able to use all the functions on our website.

We also use so-called flash cookies. These are not collected by your browser, but rather by additional software, the so-called flash plug-in which may also be present in your end device. We also use HTML5 storage objects which are stored on your device. These objects save the required data irrespective of the browser you use and do not have an automatic expiry date. To disable the processing of flash cookies, you must install a corresponding browser add-on, e.g. “Better Privacy” for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using private mode in your browser. In addition, you can manually delete your cookies and browser history in your browser on a regular basis.

The legal basis for using cookies is Art. 6 par. 1 (1) letter f of the GDPR.

20. How do we process your data if you subscribe to our newsletter?

You can subscribe to our newsletter. We require your express consent for this. In our newsletter, we provide you with regular information about our products, our company, and/or current offers. Refer to the declaration of consent for more details.

After you register for our newsletter, we will send an email to the email address you specified, in which we ask you to click an activation link for the purposes of confirmation. If you do not confirm your registration as set out above within a 72-hour window, your information will be blocked and automatically deleted after three weeks. Furthermore, we will save your IP address and the time of registration plus your confirmation if you have done so. The purpose of this so-called double-opt-in procedure is to be able to verify your registration and investigate any potential misuse of your personal data.

You just need to provide your email address to receive the newsletter; this is the only mandatory entry. The submission of additional, separately marked data is voluntary and is used for the purpose of personal contact. After your confirmation, we will use your email address and any other data provided voluntarily exclusively for the purpose of sending and managing our newsletter.

The legal basis for the management and dispatch of the newsletter, plus the associated performance measurement, is Art. 6 par. 1 (1) letter a, Art. 7 of the GDPR in conjunction with Section 7 par. 2 no. 3 of the Unfair Competition Act (UWG) or on the basis of exemption stipulations pursuant to Section 7 par. 3 of the UWG. The registration procedure is recorded on the basis of our legitimate interest, among other things for the purposes of providing proof (Art. 6 par. 1 letter f of the GDPR).

You can revoke your consent to receiving our newsletter at any time with future effect. You can declare your wish to revoke your consent by clicking the unsubscribe newsletter contained in every newsletter

We use Newsletter2Go as our newsletter software Newsletter2Go. Your data is transmitted to Newsletter2Go GmbH, Köpenicker Str. 126, 10179 Berlin. Newsletter2Go is prohibited from selling your data or using it for anything other than sending newsletters. Newsletter2Go is a certified German provider which has been selected according to the requirements of the EU’s General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). More information is available here: www.newsletter2go.de/informationen-newsletter-empfaenger. The data protection measures are constantly subject to technical innovations; for this reason, we ask you to regularly keep yourself informed of the data protection measures of Newsletter2go by inspecting our data privacy statement.

Newsletter2go is assigned on the basis of our legitimate interests in accordance with Art. 6 par. 1 letter f of the GDPR and a contract for commissioned data processing in terms of Art. 28 par. 3 (1) of the GDPR.

21. How and for what purpose do we use newsletter tracking?

We evaluate your usage behaviour when sending our newsletter. For this purpose, the individual newsletters contain so-called web beacons or tracking pixels („1-pixel image files”) that are saved on our website or, if applicable, on the website of a newsletter provider commissioned by us. They are retrieved from there whenever you open the newsletter. Here, technical information (e.g. information about your browser or system) is then collected along with your IP address and the time of retrieval.

Such data is collected in pseudonymised form only; i.e. it is not linked to any other data relating to you; direct reference to you is therefore excluded.

This information is used to technically improve our services and to customise our offering where applicable.

You can object to this tracking at any time by clicking the special link provided in every email or by informing us, e.g. in a separate email. The information will be saved for as long as you are subscribed to the newsletter. After you have unsubscribed, we will save this data anonymously and purely for statistical purposes.

Furthermore, we would like to point out that this tracking is not possible if you deactivate the display of images by default in your email programme. However, this will mean that our newsletter cannot be displayed in full and not all of the functions can be used.

22. What is contained in the declaration of consent given by you for receiving our newsletter?

If you have agreed to receiving our newsletter, then you have declared your consent according to the following text:

I would like to receive regular information and offers from Friedrich Motorsport by email. My email address will only be used to send the newsletter and will not be disclosed to third parties. I may revoke my consent to the use of my email address for promotional purposes at any time with effect for the future by clicking the unsubscribe link included in each newsletter or by using the unsubscribe function on this page.

23. How and for what purpose do we use YouTube contents?

On our website, we use contents and plug-ins from the video portal YouTube (operator: YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA) that are saved on http://www.YouTube.com and can be played directly from our website. The legal basis for using YouTube is Art. 6 par. 1 (1) letter f of the GDPR.

Here, we use the option „extended data protection mode“ provided by YouTube. According to YouTube, in this mode you will only transmit data to YouTube (e.g. which of our web pages you have visited) if you view the respective video. We have no influence over this data transmission.

If you call up one of our web pages equipped with this, a connection to the YouTube servers will be established. Here, the YouTube server is informed about which of our pages you have visited. If you have a YouTube account and are logged in, you enable YouTube to directly associate your browsing behaviour with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube processes your data for purposes of advertising, market research, and/or optimising the design of its web pages. Such an evaluation is carried out in particular (also for users not logged in) in order to provide needs-based advertising and to inform other YouTube users about your activities on our website. You have a right to object to this type of data processing. If you would like to exercise your right to object, please contact YouTube directly.

For more information about this, please refer to the data privacy policy of the YouTube platform (www.google.de/intl/de/policies/privacy). Google also processes your personal data in the USA and is subject to the EU-US Privacy Shield (www.privacyshield.gov/EU-US-Framework).

24. How and for what purpose do we use SoundCloud?

On our website, we use various sound files (so-called SoundCloud widgets) via the SoundCloud service (provider: SoundCloud Ltd., Rheinsberger Str. 76/77, 10115 Berlin). The individual files are saved on the provider’s platform and played back from there. SoundCloud widgets are a type of software with options such as those that allow you, the user of our website, to play back the corresponding sound files. Here, SoundCloud can measure which files are being listened to and how frequently. The information obtained is processed in pseudonymous form for statistical or business purposes. To this end, cookies can be saved in your browser and used to create user profiles (e.g. to display advertisements that may match your interests). If you have a SoundCloud user account and are logged in there, your data will be assigned directly to your account. To avoid this, you need to log out of your SoundCloud user account. Utilisation is based on our legitimate interests to ensure a secure and efficient provision, analysis, and optimisation of our audio offering in accordance with Art. 6 par. 1 letter f of the GDPR.

More information about the provider or its data privacy statement is available at https://soundcloud.com/pages/privacy. Information about the cookies set by the provider is available at https://soundcloud.com/pages/cookies.

 

 

Service Hotline

Telephone support and advice at:
+49 9571/94990
Mo. - Fr. from 7:00 AM - 12:00 PM and from 1:00 PM - 4:30 PM
Sa. from 9:00 AM - 12:00 PM

Social

    

We are a member of VDAT

VDAT ohne ev web

 

Our partners

fms logo

schropp logo

 logo schweiz

Friedrich Logo at mit Rot

 

Back to top