How we treat your private data
This privacy policy is intended to inform the users of this website, in accordance with the German Data Protection Act (Bundesdatenschutzgesetz) and the Telemedia Act, as well as in compliance with the applicable data protection regulations including the provisions of the EU General Data Protection Regulation (hereinafter: GDPR), about the nature, scope, and purpose of the collection and use of personal data by the website operator:
Med & IT Trading GmbH
Klötzlmüllerstr. 154
84034 Landshut
Germany
Phone: +49 (0) 871 974 08 03
Mail: info@medit-trading.de
Med & IT Trading GmbH is responsible for the content of www.medit-trading.de.
The website operator takes your data protection very seriously and treats your personal data confidentially and in accordance with legal regulations. Please note that data transmission over the Internet may generally be subject to security vulnerabilities. Complete protection against access by third parties cannot be guaranteed.
Access data
The website operator or page provider collects data about accesses to the site and temporarily stores them as server log files. Legal basis: GDPR Art. 6(1)(f). The following data is logged:
- the IP address
- the date and time of access
- the name and URL of the retrieved file
- the website from which the access occurred (referrer URL)
- the browser you are using and, if applicable, the operating system of your Internet-enabled computer as well as the name of your access provider
The data collected is used solely for order processing (e.g., preparing quotes, invoicing, delivery notes, etc.) as well as for purely internal company statistical evaluations and for improving the website. However, the website operator reserves the right to retrospectively check the server log files if there are concrete indications of illegal use.
Data processing during registration
It is possible to register as a customer or supplier. A password-protected customer account is created. The data involved is determined from the input form that is completed during registration. This data is used exclusively for internal, permanent storage of your personal data in a password-protected customer account. The IP address, the date, and the time of registration are saved.
Furthermore, a check is carried out to determine whether the customer is not a consumer. This check serves to exclude consumers, as the platform is aimed exclusively at B2B customers. The legal basis for this data processing is Art. 6 (1) (b) GDPR.
Data processing in connection with the ordering process
The processing of data in the context of orders serves to handle all processes within the order. The legal basis for this is Art. 6(1)(b) GDPR. The type of data involved can be found in the input form that you fill out when placing the order.
The following data processing is required to execute the purchase contract:
Your email address is used to facilitate electronic communication regarding your order and its processing. The legal basis for this processing is Article 6(1)(c) of the GDPR.
In order to fulfill the contractual obligations, the order data is transmitted to the supplier (parcel service, freight forwarder, etc.) who delivers the goods or to specialized companies that provide the booked services, and the data is made available for use for this purpose. The legal basis for this processing is Article 6(1)(b) of the GDPR.
For the fulfillment of the contract, it may be necessary for the data to be forwarded to our payment service providers or to the commissioned credit institution. This depends on the chosen method of payment.
The following payment methods can be used:
- Payment in advance
- Invoice
- Paypal
- Western Union
Credit check
During the course of the ordering process, we reserve the right to check your creditworthiness for orders above a certain value. The credit check does not apply when paying in advance. For the purpose of the credit check, we transmit the necessary data (first and last name of the managing director, company, address data) to the following credit agencies:
a) Creditsafe Deutschland GmbH, Charlottenstr. 68-71, 10117 Berlin, Germany
b) Verband der Vereine Creditreform e.V., Hellersbergstraße 12, 41460 Neuss, Germany
c) Schufa Holding AG, Kormoranweg 5, 65201 Wiesbaden, Germany
Based on mathematical and statistical procedures, corresponding assessments are carried out. Your address data is also included in the calculation of the probability score. You may object to the transfer of your data to credit agencies at any time in text form, for example by email, fax, or letter.
The legal basis for the credit check is Article 6(1)(f) GDPR. Our legitimate interest lies in the fact that we want to advance payment for the respective payment method and keep our credit risk as low as possible.
Further data processing
Furthermore, data is collected and recorded that you explicitly provide to us yourself. For example, during individual customer contact via e-mail, telephone, or on the platform when you use the option to enter data (such as login registration, booking forms, inquiry forms). The data intended for collection will be communicated to you according to their type before the respective process, unless it is already evident from the nature of the upcoming process (such as name and password during login registration or in the user data form: phone and e-mail).
Furthermore, usage data is collected that you leave behind when using the platform (such as performed article searches) and/or that is provided by the respective Internet provider when using the platform (including the IP address of your computer) and/or generated through e-tracking. Usage data may include personal or company-related data or allow conclusions to be drawn about such data.
Without your registration or login, anonymous usage data, such as the type of browser and operating system you use and which pages you have visited on the website, are transmitted by your browser when accessing the platform. The data collected in this way is not used to identify you or your company.
The usage data is automatically stored in server log files. These are used to make the handling of the platform’s functions more attractive and to ensure and improve its performance.
This constitutes a legitimate interest for us and is therefore based on the legal grounds of Article 6(1)(f) GDPR.
Email campaigns
We send email campaigns (e.g. newsletters) only with the recipient’s consent in accordance with Art. 6(1)(a) GDPR. The data entered when registering for the MED & IT Trading information service is used exclusively for this purpose. By registering for the MED & IT Trading information service, you will receive information through various email campaigns about new and/or interesting products/articles for you, MED & IT Trading (e.g. e-procurement functionalities), webinars, competitions, and events. We pursue our own advertising purposes with this.
Subscribing to the newsletter takes place during online registration with a checkmark that approves the sending of the newsletter.
We record the receipt of the newsletter order.
The data is used exclusively for sending the newsletter and is not shared with third parties. Consent to receive email campaigns can be revoked at any time for the respective email campaign. The link to revoke consent can be found at the end of each email.
Cookies
This website uses cookies. These are small text files that are stored on your device. Your browser accesses these files. The use of cookies increases the user-friendliness and security of this website.
Insofar as the use of cookies constitutes the processing of personal data, the use of cookies is based on the legal ground of Art. 6(1)(f) GDPR. Our legitimate interest is derived from website optimization, enabling us to present our offer in a safer and more user-friendly manner. This allows us to tailor the content of our website more specifically to your needs and thereby improve our offer for you.
Common browsers offer the option to refuse cookies. Note: There is no guarantee that you will be able to access all functions of this website without restrictions if you make the appropriate settings.
The duration of cookie storage depends on their purpose and is not the same for all.
Google Analytics
Deletion of personal data
Data that we store will be blocked from further use when the corresponding authorization ceases, particularly after the purpose has been achieved, and will be deleted after the expiration of tax and commercial retention periods, unless you have explicitly consented to the continued use of your data or something else has been contractually agreed.
The webshop solution used by Med & IT Trading GmbH utilizes Google Analytics, a web analysis service from Google Inc. (“Google”), CA 94043, 1600 Amphitheatre Parkway, Mountain View, USA, for the purpose of designing and optimizing our website according to user needs.
Google Analytics uses so-called “cookies” that are stored on your computer. The use of cookies enables an analysis of the use of the website. The information generated by the cookies about your use of this website is usually transmitted to a Google server in the USA and stored there. The information generated by cookies is:
- Browser type
- Operating system
- the website from which the access occurred (referrer URL)
- IP address
- Date and time of the server request.
This website uses Google Analytics with the IP anonymization feature (‘anonymizeIp’).
In this process, your IP address is first truncated by Google within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and truncated there.
On behalf of MED & IT Trading, Google will use this information to evaluate your use of the website, to compile reports on website activities, and to provide other services related to website usage for market research and tailored design purposes to MED & IT Trading. The IP address transmitted from your browser to Google as part of Google Analytics will not be combined with other data from Google.
You can prevent the storage of cookies by selecting the appropriate settings in your browser software. However, please note that in this case you may not be able to use all functions of this website to their full extent. You can also prevent the collection of the data generated by the cookie and related to your use of the website, including your IP address, by Google, as well as the processing of this data by Google, by using the following link: https://tools.google.com/dlpage/gaoptout?hl=en (download and install browser-plugin). you can disable the collection of your data by Google Analytics when visiting this website.
The terms of use and privacy information can be found at https://www.google.com/analytics/terms/de.html an at
https://www.google.de/intl/de/policies/.
Data security
In order to protect your data against accidental or unlawful deletion, disclosure, access, manipulation, loss and other misuse, we take appropriate technical and organizational measures.
For your security, your data is encrypted using an SSL website certificate (Secure Socket Layer). SSL is an encryption standard that is also used, for example, in online banking. You can recognize a secure SSL connection by the added “s” in “http” — i.e. “https://…” — in your browser’s address bar, or by the padlock icon in your browser.
Please bear in mind that safety when using the Internet depends on various circumstances and cannot be guaranteed at all times without gaps.
Overview of your rights
- Right of access
You may request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage duration, the origin of your data, if it was not collected directly from you. - Right to rectification
You may request that inaccurate data be corrected or that correct data be completed. - Right to erasure
You may request the erasure of your personal data. - Right to data portability
You have the right to receive the personal data you have provided in a commonly used, machine-readable format and to request its transmission to another controller. - Right to lodge a complaint
You may contact the supervisory authority of your habitual residence or our competent supervisory authority. - Right to restriction of processing
You can exercise the right to restrict data processing if the accuracy of the personal data is contested, if processing is unlawful and the data subject opposes the erasure of the personal data and instead requests the restriction of their use, if the controller no longer needs the personal data for the purposes of the processing, but the data subject needs them to assert, exercise, or defend legal claims, or if the data subject has objected to processing pursuant to Art. 21 GDPR, as long as it has not yet been determined whether the legitimate reasons of the controller outweigh those of the data subject. - Right to object
The general right to object applies to all processing activities described here that are carried out on the basis of Article 6(1)(f) GDPR. Unlike the processing described under “Data processing for marketing purposes”, we are only obliged to comply with your objection if you provide grounds relating to your particular situation which are of overriding importance.