Privacy policy

The term personal data is defined in the General Data Protection Regulation (hereinafter "GDPR"). Accordingly, "personal data" means any information relating to an identified or identifiable natural person. This includes, for example, your civil name, your address, your telephone number or your date of birth. Information about how you use this or other websites may also be personal data.

Contact details of the data controller:

reifencom GmbH
Südfeldstr. 16
30453 Hanover

We are available for you by telephone from Monday to Friday in the time from 10:00 to 15:00:

Tel.: 022730961

Important information:
Unfortunately, we cannot accept orders by fax, letter or email for technical reasons!

E-mail: info.be@rubbex.com

Contact details of the data protection officer:

You can contact the data protection officer of the data controller at

reifencom GmbH
Data protection
Südfeldstr. 16
30453 Hanover

or by e-mail: datenschutz@reifen.com

When using the website for information purposes only, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security:

• IP address, date and time of the request, content of the requested page, access status/HTTP status code, amount of data, website (from which our web store was accessed), browser, operating system, interface (resolution), language and browser version.

The collection of log files serves to log averted or malicious website accesses, to ensure forensic activities and the security and stability of our website. The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is usually the case after one month at the latest.

Legal basis

The legal basis is Art. 6 (1) (1) (f) GDPR. The aforementioned purposes also constitute the legitimate interest in data processing within the meaning of Art. 6 (1) (1) (f) GDPR.

Insofar as data is collected to the extent described, this is absolutely necessary for securing and operating the website. There is therefore no possibility to object.

Insofar as we obtain your consent for the processing of personal data, Art. 6 (1) (1) (a) GDPR serves as the legal basis for the processing of your personal data.

When processing your personal data to fulfil a contract between you and intersoft Reifencom GmbH, Art. 6 (1) (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the performance of pre-contractual measures.

Insofar as the processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Art. 6 (1) (1) (c) GDPR serves as the legal basis.

If the processing is necessary to protect a legitimate interest of our company or a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Article 6 (1) (1) (f) GDPR serves as the legal basis for the processing.

Your personal data will be deleted or blocked as soon as the purpose of storage no longer applies. In addition, storage may take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the data controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a necessity for the continued storage of the data for the conclusion or fulfilment of a contract.

When you register and place orders, the following personal data is collected from you:

• Company, title, first name, surname, address, postcode, city, country, e-mail address, telephone number, date of birth, password and connection data (IP address, date and time of request)

This data is required to create your customer account, to process an order and to be able to clearly identify you in case of enquiries. In addition, we store the connection data for abuse prevention. Our legitimate interest in data processing also lies in this purpose.

The data necessary for the business transaction will be stored and processed by us and, if necessary, transmitted to affiliated companies, payment service providers for the processing of payments (credit card, PayPal, AmazonPay, Klarna, payment pause and purchase on account), parcel service providers or to other third parties within the scope of the order processing, insofar as this is necessary for the order processing. Payment service providers may process your data for their own purposes in addition to pure payment processing, in particular for abuse and fraud prevention. For more information, please read the privacy policy of your chosen payment service provider. For the majority of payment methods (in particular credit card payment), we use payment services of Concardis GmbH to process or forward the transactions. Please find out for yourself about the data processing by Concardis GmbH at www.concardis.com

Legal bases

The legal basis for data processing is Art. 6 (1) (1) (b) GDPR for an order, Art. 6 (1) (1) (f) GDPR for abuse prevention, as well as your consent pursuant to Art. 6 (1) (1) (a) GDPR for registration and creation of a customer account. You can revoke your consent at any time.

The legal basis for the data processing within the scope of the business transaction is Art. 6 (1) (1) (b) GDPR. The processing of your data is necessary to execute the contract concluded with you. As a matter of principle, we store your data for as long as is necessary for the performance of the contract concluded with you and until the expiry of statutory warranty periods and legally prescribed retention periods.

6.1 Dispatch of orders

In order to carry out the aforementioned orders, we directly commission other companies and/or individuals to perform tasks. Examples include parcel delivery, sending letters or e-mails. These service providers have access to personal information they need to perform their tasks. However, you may not use them for any other purpose. Furthermore, they are obliged to treat the information in accordance with this privacy policy and the applicable data protection laws.

Legal bases

The legal basis for this data transfer is Art. 6 (1) (1) (b) GDPR if the data processing is necessary for the performance of the contract with you or Art. 6 (1) (1) (f) GDPR if we have a legitimate interest in the data transfer and your interests worthy of protection do not outweigh this. This is particularly the case when your e-mail address is passed on to parcel service providers so that they can inform you of the exact delivery time. We assume that this is also in your interest. If you wish to have your e-mail address blocked by the parcel service provider, please send us an informal objection stating your name, address and the e-mail address to be blocked to datenschutz@reifen.com. We will forward your request to the parcel service provider. In addition, the dispatch service providers are subject to special data protection obligations to maintain postal secrecy, so that there is no indication of overriding interests worthy of protection that could conflict with the disclosure of the e-mail address.

6.2 Order as a guest

You also have the option to shop with us as a guest, without creating a customer account. In this case, we likewise process the following personal data relating to you: if applicable, company name, title, first name, last name, address, post code, town/city, country, email address, telephone number, date of birth and connection details (IP address, date and time of the query). This data is required in order to process an order and to be able to clearly identify you in case of queries.

Legal bases

The legal basis for data processing is Art. 6 (1) (1) (b) GDPR. If you have already placed an order as a guest, we will match your address in order to check whether we can offer you other payment methods, e.g. purchase on account or by direct debit. This is also where our legitimate interest lies. The legal basis for this is Art. 6 (1) (1) (f) GDPR.

6.3 PAQATO

We use the service provided by PAQATO GmbH, Johann-Krane-Weg 6, 48149 Münster, Germany, to enable you to track your shipment after you have placed your order.

PAQATO sends dispatch notifications and delivery status updates on our behalf. To this end, we pass on data in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in effective and informative customer communication and in transparent and reliable dispatch processing, which is also in the customer's interest.

Upon the dispatch of your goods, the order header data for tracking the shipment and identifying problem cases in accordance with Art. 6 para. 1 lit. b. (within the context of contractual/pre-contractual relationships), Art. 6 para. 1 lit. f. (other enquiries) GDPR is processed. The user's details are stored and processed within the PAQATO shipping analysis system operated by PAQATO GmbH in order to deliver the goods faster and without errors and to ensure smooth communication (legitimate interest pursuant to Art. 6 para. 1 lit. f. GDPR). We delete the data if it is no longer required. We review the necessity every two years; furthermore, statutory archiving obligations apply.

We have concluded an order processing contract with PAQATO in which we oblige PAQATO to protect your data in accordance with the applicable legal requirements.

You can view PAQATO's privacy policy via the following link: https://www.paqato.com/datenschutzerklaerung/

In order to select an advantage offer that is currently of interest to you regionally, we will transmit your title, year of birth, country, postcode, hash value of the e-mail address and your IP address to Sovendus GmbH, Moltkestr. 11, 76133 Karlsruhe (Sovendus) in a pseudonymised and encrypted form. The IP address is used by Sovendus exclusively for data security purposes and is usually anonymised after seven days. For further information on the processing of your data by Sovendus, please refer to the online data protection information at https://online.sovendus.com/en/online-privacy-notice/.

The collection and storage of data only takes place after explicit consent according to Art. 6 (1) (1) (a) GDPR. This consent can be revoked at any time with effect for the future.

In order to select a voucher offer that is currently of interest to you, we transmit the hash value of your e-mail address and your IP address to Sovendus GmbH, Moltkestr. 11, 76133 Karlsruhe (Sovendus) in a pseudonymised and encrypted form.

The collection and storage of data only takes place after explicit consent according to Art. 6 (1) (1) (a) GDPR. This consent can be revoked at any time with effect for the future.

The IP address is used by Sovendus exclusively for data security purposes and is usually anonymised after seven days.

In addition, we transmit the order number, order value with currency, session ID, coupon code and time stamp to Sovendus for billing purposes. If you are interested in a voucher offer from Sovendus, if there is no advertising objection to your e-mail address and if you click on the voucher banner that is only displayed in this case, we will transmit your title, name and e-mail address in encrypted form to Sovendus for the preparation of the voucher (Art. 6 (1) (1) (b) GDPR). For further information on the processing of your data by Sovendus, please refer to the online data protection information at https://online.sovendus.com/en/online-privacy-notice/

When you participate in prize draws, we collect data that is necessary to carry out the prize draw. These are usually an individual prize draw entry (e.g. a comment or a photo), as well as name and contact details. We may pass on your details to our prize draw partners, e.g. to send you the prize. Data processing and data transfer may vary depending on the prize draw and is therefore specifically described in the respective conditions of participation. Participation in the prize draw and the associated data collection is of course voluntary.

In the case of surveys, we will generally make your personal data anonymous so that it can no longer be traced back to you personally, unless we have your express consent to process your data on a personal basis. In the case of a prize draw, it may be necessary for us to pass on your data to third parties involved in the prize draw, such as parcel service providers, tour operators or hotels, in order to distribute the prizes.

Your data may be processed by IT service providers or prize draw partners should this be necessary for the implementation of the prize draw or the distribution of prizes.

Legal basis

The legal basis for the data processing is your consent according to Art. 6 (1) (1) (a) GDPR. We only process your data to carry out the prize draw and/or the survey. We will delete your data after the prize draw has been carried out, the prize has been distributed and any statutory warranty obligations have expired. In the case of a survey, your data is usually anonymised.

You have the option of revoking your consent to data processing or objecting to data processing at any time. If the data is required for the performance of a contract or for the implementation of pre-contractual measures, early deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion. If you subscribe to our newsletter as part of the prize draw, we will also collect your e-mail address for the purpose of sending you the newsletter. Participation is voluntary. The legal basis in each case is your consent, Art. 6 (1) (1) (a) GDPR. You can revoke your consent at any time by sending a message to datenschutz@reifen.com.

If you choose one of our express payment methods (PayPal, Amazon Pay and Klarna), the respective provider will send us the data required for processing the order (name, delivery address, postcode, e-mail address). We only use this data to process your order. The payment data deposited with the provider (bank or credit card data) is not transmitted to us. We transmit the value of your shopping basket to the supplier so that they can arrange payment. The respective provider is responsible for data processing within the scope of payment processing. By using the service you have selected, you accept the terms of use and data protection of the respective provider with whom you are registered. For more information on how your data is used by the provider, please read the privacy policy of the provider you have chosen:

Amazon Pay: https://pay.amazon.co.uk/help/201212490
PayPal: https://www.paypal.com/en/webapps/mpp/ua/privacy-full?locale.x=en_EN
Klarna: https://www.klarna.com/en/

When you contact us by e-mail or via a contact form, the data you provide (your e-mail address, name and telephone number, if applicable) will be stored by us in order to answer your questions and process your requests.

The legal basis in this respect is Art. 6 (1) (1) (f) GDPR. Insofar as we request input via our contact form that is not required for contacting us, we have always marked this as optional. We use this information to specify your request and to improve the processing of your request. Any communication of this information is expressly on a voluntary basis and with your consent, Art. 6 (1) (1) (a) GDPR. Insofar as this involves information on communication channels (e.g. e-mail address, telephone number), you also consent to us contacting you via this communication channel, if necessary, in order to answer your request. Of course, you can revoke this consent at any time for the future.

Your data, which we have received in the course of contacting you, will be deleted as soon as it is no longer required to achieve the purpose for which it was collected, your request has been fully processed and no further communication with you is necessary or desired by you.

As the data controller, our company has implemented numerous technical and organisational measures to ensure the most complete protection of personal data processed through this website. Nevertheless, internet-based data transmissions can always have security gaps. Absolute protection cannot be guaranteed; in any case, sending unencrypted e-mails is not secure. We therefore ask you not to send sensitive data by unencrypted e-mail, but to use either encrypted communication channels (e.g. our contact form) or the postal service.

Cookies are data that are stored on your computer by a website you visit and enable your browser to be reassigned. Cookies transmit information to the entity that sets the cookie. Cookies can store various information, such as your language setting, the duration of your visit to our website or the entries you have made there. This avoids, for example, that you have to re-enter required form data every time you use it. The information stored in cookies can also be used to recognise preferences and to target content according to areas of interest.

There are different types of cookies: Session cookies are sets of data that are only temporarily held in the working memory and are deleted when you close your browser. Permanent or persistent cookies are automatically deleted after a predefined period of time, which may differ depending on the cookie. With this type of cookie, the information can also be stored in text files on your computer. However, you can also delete these cookies at any time via your browser settings.

First-party cookies are set by the website you are currently visiting. Only this website is allowed to read information from these cookies. Third-party cookies are set by organisations that do not operate the website you are visiting. These cookies are used by marketing companies, for example.

The legal basis for possible processing of personal data by means of cookies and their storage period may vary. If you have given us your consent, the legal basis is Art. 6 (1) (1) (a) GDPR. If the data processing is based on our overriding legitimate interests, the legal basis is Art. 6 (1) (1) (f) GDPR. The stated purpose then corresponds to our legitimate interest.

We use cookies to ensure the proper operation of the website, to provide basic functionality, to measure reach and – with your consent – to tailor our services to preferred areas of interest.

Here you can access and edit the cookie administration.

You can delete cookies already stored on your end device at any time. If you want to prevent cookies from being saved, you can do this via the settings in your internet browser. Instructions for popular browsers can be found here: Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Google Chrome mobile, Microsoft Edge Browser, Safari, Safari mobile. Alternatively, you can also install ad blockers. Please note that individual functions of our website may not work if you have deactivated the use of cookies.

When accessing our website, all users of our website are also informed by an information banner about our use of cookies and referred to this data protection notice. In doing so, you as a user will also be asked for your consent to the use of certain cookies, in particular those relevant for the personalisation of services and for marketing measures. Once you have given your consent, you can revoke it at any time with effect for the future by calling up and editing the cookie administration here.

We use the services of The Reach Group GmbH (Am Karlsbad 16, 10785 Berlin) on our website to customise our web campaigns to you.

The Reach Group designs display campaigns for partner programmes. The advertising measures are dynamically and individually adapted to the user within their customer journey. Performance and native ads campaigns as well as retargeting campaigns are used for this purpose.

The Reach Group GmbH sometimes uses cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files which are stored on your computer by your browser.

Most of the cookies used by The Reach Group GmbH are "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device for a short, clearly defined period of time. You can delete them at any time in your browser settings.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

Here you can access and edit the cookie administration.

The Reach Group GmbH cookie has an expiry date of 90 days maximum.

The services of the Reach Group GmbH are provided on the basis of Art. 6 (1) (1) (a) GDPR. If you no longer agree to the use of your data, you have the option of revoking your consent at https://hal9000.redintelligence.net/privacy/8lcfmzhxc8d6/.

We use the performance advertising network of AWIN AG, Eichhornstraße 3, 10785 Berlin on this website. As part of its tracking services, AWIN stores cookies for the documentation of transactions (e.g. of leads and sales) on end devices of users who visit or use websites or other online offers of its customers (e.g. register for a newsletter or place an order in an online shop). These cookies serve the sole purpose of correctly assigning the success of an advertising medium and the corresponding billing within the framework of its network. AWIN's cookies collect the following data:

• IP address (shortened) and IP hash, online identifiers (e.g. advertiser ID, publisher ID, ad media ID, product ID, group ID), click/network reference, GeoIP, product data (e.g. product name, product category, price, quantity), device data (e.g. browser type, referrer, time zone), email addresses (hashed) if applicable.

In a cookie, only the information about when a particular advertising medium was clicked on by an end device is placed. In the AWIN tracking cookies, an individual sequence of numbers is stored, which cannot be assigned to the individual user, and with which the partner programme of an advertiser, the publisher and the time of the user's action (click or view) are documented. In this context, AWIN also collects information about the end device from which a transaction is carried out, e.g. the operating system and the calling browser.

The legal basis for the data processing is Art. 6 (1) (1) (a) GDPR. You can revoke your consent at any time here.

If you generally do not wish cookies to be stored in your browser, you can do this by setting your browser accordingly. You can deactivate the storage of cookies in your respective browser under Extras/Internet options, restrict them to certain websites or set your browser to notify you as soon as a cookie is sent. Please note, however, that in this case you must expect a restricted display of the online offers and a restricted user guidance. You can also delete cookies at any time. In this case, the information stored therein will be removed from your end device. You can find further information on AWIN's data processing and another option to object to the setting of cookies by AWIN here: https://www.awin.com/gb/privacy

If you have given your consent, this website uses Google Analytics, a web analytics service provided by Google LLC. The responsible party for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

Scope of processing

Google Analytics uses cookies that enable an analysis of your use of our websites. The information collected by means of cookies about your use of this website is generally transferred to a Google server in the USA and stored there.

We use the User ID function. The User ID allows us to assign a unique, persistent ID to one or more sessions (and the activities within those sessions) and to analyse user behaviour across devices.

In Google Analytics 4, the anonymisation of IP addresses is activated by default. Due to IP anonymisation, your IP address will be truncated by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser as part of Google Analytics shall not be merged with other Google data.

During your visit to the website, your user behaviour is recorded in the form of "events". Events can be:

• Page accesses
• First visit to the website
• Start of the session
• Your "click path", interaction with the website
• Scrolls (whenever a user scrolls to the end of the page (90%))
• Clicks on external links
• Internal searches
• Interaction with videos
• Ads seen / clicked

It also records:

• Your approximate location (region)
• Your IP address (in shortened form)
• Technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
• Your internet provider
• The referrer URL (via which website/advertising medium you came to this website)

Purposes of processing

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, and compiling reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website.

Recipient

Recipients of the data are/could be

• Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as data processor according to Art. 28 GDPR)
• Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
• Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

It cannot be ruled out that US authorities will access the data stored by Google.

Third country transfer

Where data is processed outside the EU/EEA and there is no level of data protection equivalent to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transmission of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. If applicable, you have no legal remedies against access by the authorities.

Storage period
The data sent by us and linked to cookies are automatically deleted after 2 OR 14 months. The deletion of data whose retention period has been reached takes place automatically once a month.

Legal basis

The legal basis for this data processing is your consent pursuant to Art.6 (1) (1) (a) GDPR.

Revocation

You can revoke your consent at any time with effect for the future by accessing the cookie settings here and changing your selection there. The lawfulness of the processing carried out on the basis of the consent until revocation shall remain unaffected.

Alternatively, you can prevent the storage of cookies from the outset by setting your browser software accordingly. However, if you configure your browser to reject all cookies, you may experience limited functionality on this and other websites. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by:

1. Not giving your consent to the setting of the cookie or
2. Downloading and installing the browser add-on to disable Google Analytics here.

You can find more information on the terms of use of Google Analytics and on data protection at Google at https://marketingplatform.google.com/about/analytics/terms/us/

and at https://policies.google.com/?hl=en

We use the marketing and remarketing services (in short "Google marketing services") of the provider Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, to optimise and economically operate our online offer. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

Google's marketing services allow us to display advertisements for our website in a more targeted way to only present you with ads that potentially match your interests. If, for example, advertisements for our services are displayed to you on other websites, this is referred to as "remarketing". For these purposes, when our website and other websites on which Google marketing services are active are called up, a code is executed directly by Google and (re)marketing tags (invisible graphics or code, also referred to as "web beacons") are integrated into the website. With their help, an individual cookie, i.e. a small file, is stored on your device (comparable technologies can also be used instead of cookies).

The cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites you have visited, which content you are interested in and which offers you have clicked on, as well as technical information on the browser and operating system, referring websites, time of visit and other information on the use of the online offer. Your IP address is also recorded, whereby we inform you within the scope of Google Analytics that the IP address is shortened within member states of the European Union or in other contracting states of the Agreement on the European Economic Area and only in exceptional cases is transmitted in full to a Google server in the USA and shortened there.

The IP address will not be merged with your data within other Google offerings. The above information may also be combined by Google with information from other sources. When you subsequently visit other websites, you can be shown ads tailored to your interests.

We process your data pseudonymously as part of the Google marketing services. I.e. Google does not store and process your name or email address, for example, but processes the relevant data on a cookie basis within pseudonymous user profiles. The information collected about users by Google marketing services is transmitted to Google and stored on Google's servers in the USA.

The Google marketing services we use include the online advertising programme "Google Ads" (formerly: "Google AdWords"). In the case of Google Ads, each Ads client receives a different "conversion cookie". Cookies can therefore not be tracked via Ads clients' websites. The information obtained with the help of the cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. Ads clients learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.

Where data is processed outside the EEA, where there is no level of data protection equivalent to the European standard, we have concluded EU standard contractual clauses with the service provider to establish a secure level of data protection.

For more information on Google's use of data for marketing purposes, please visit the overview page: https://policies.google.com/technologies/ads?hl=en, Google's privacy policy is available at https://policies.google.com/privacy?hl=en.

The collection and storage of data only takes place after explicit consent according to Art. 6 (1) (1) (a) GDPR. This consent can be revoked at any time with effect for the future.

For reasons of transparency, we would like to point out that we use the Google Tag Manager of the provider Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

The Google Tag Manager itself does not collect any personal data. The Google Tag Manager makes it easier for us to integrate and manage our tags. Tags are small pieces of code that are used to measure traffic and visitor behaviour, track the impact of online advertising and social channels, set up remarketing and targeting, and test and optimise websites, among other things. We use the Tag Manager for the Google Analytics service. If you have made a deactivation, this deactivation will be taken into account by the Google Tag Manager. For more information on the Google Tag Manager, see: https://marketingplatform.google.com/intl/en/about/analytics/tag-manager/use-policy/.

This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. We have opted for the offline variant, whereby the Google Fonts are stored locally on our web server. The fonts can then be managed - by means of CSS - as with any other font family. The IP address and other data are not transmitted to Google.

Google Web Fonts are used in the interest of the uniform and appealing presentation of our web pages, taking efficiency and cost-saving considerations into account. This constitutes a legitimate interest within the meaning of Art. 6 (1) p. 1 lit. f) DSGVO. If your browser does not support web fonts, a standard font is used by your computer.

For more information on Google Web Fonts, see https://developers.google.com/fonts/faq and Google's privacy policy: https://www.google.com/policies/privacy/

We use the service of trbo GmbH, Leopoldstr. 41, 80802 Munich ("Trbo") on our website. Trbo is a tracking tool that helps us to design our website in the best possible way. The use of trbo enables us to control and improve our online offers by measuring the use of our online offers and the effectiveness of our online advertising. This helps us to understand which pages and products interest our customers most and which individual offers we should make to our website users in each case.

Technically, the tracking tool used uses in particular "cookies" ("marketing cookies") and "web beacons" to collect the following information:

Which pages are visited when, how often and in which order, which products are searched for, which links or offers are clicked on and which orders are placed. The data collected from you and used in this context is always stored only under a pseudonym (e.g. a random identification number) and is not merged with personal data about you (e.g. name, address, etc.). Insofar as the external service providers gain access to the data, this is done exclusively on our behalf and under our control.

The legal basis for the use of trbo tracking tool is consent according to Art. 6 (1) (1) (a) GDPR. You can revoke your consent at any time here.

You can find more information about trbo's data protection here: https://www.trbo.com/privacy-policy/.

We use services from YouTube, LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, a subsidiary of Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, USA, on our website. For users who are habitually resident in the European Economic Area or Switzerland, Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland is the data controller for your data.

In order to protect your personal data, we use the extended data protection option provided by YouTube. If you access a page in which a YouTube video is embedded, a connection is established to the YouTube servers and the content is displayed on the website by informing your browser. According to YouTube's information, however, data is only transmitted to the YouTube server in "extended data protection mode" if you actively start the video. If you are logged in to YouTube at this time, the information about the videos you have viewed will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website. Insofar as data is processed outside the European Economic Area / the EU, where there is no level of data protection corresponding to the European standard, Google states that it uses standard contractual clauses.

Further information on YouTube's data protection is provided by Google at the following link: https://policies.google.com/privacy?hl=en&gl=en

We use the SmartMaps service on this website to show you maps directly and interactively on the website. The operator of SmartMaps is YellowMap AG, CAS-Weg 1-5, 76131 Karlsruhe, Germany.

In order for the service to run correctly, SmartMaps collects your IP address. This constitutes personal data. Your IP address is stored for a few minutes, but deleted again after a few minutes.

As a matter of principle, only information that is necessary for cooperation and system security is collected. There is no logging of the data displayed on the map and no tracking, storage, evaluation or forwarding of your data or the data of your customers and users takes place. With SmartMaps, IP addresses are only processed for the delivery of information to the user. The IP address is not stored permanently unless there is a security problem such as mass, non-human server requests by a single IP address.

The legal basis for data processing is Art. 6 (1) (1) (f) GDPR. There is a legitimate interest in presenting our online offer as attractively as possible and also in offering you an integrated map function on our website. The map function cannot be offered without use of this data. The processing of your personal data is therefore also technically required.

We use Friendly captcha on our website. Friendly captcha is a service provided by Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany.

Friendly Captcha helps prevent fraudulent automatic entries in web forms and thus protects the host's technical systems. We use it for this purpose and this is also our legitimate interest, Art. 6 (1) (1) (f) GDPR. There is no right to object, as our legitimate interest in protecting our web forms from spam and misuse outweighs your interest in protecting your personal data. This result is achieved in particular by taking into account the fact that the IP address is anonymised and it is not possible to draw any conclusions about your person.

If you call up one of our web pages into which Friendly Captcha is integrated, a connection to Friendly Captcha will be established.

Friendly Captcha stores an anonymised counter per IP address to dynamically scale puzzle difficulty on the Edge network to detect malicious users and minimise blocking of legitimate users. This data is stored separately from the rest of the data and cannot be associated with specific websites. Friendly Captcha anonymises the IP addresses via one-way hashing so that they cannot be personally identified. The IP addresses are only processed during the anonymisation process. No cookies are used.

In addition, Friendly Captcha records the following log data:

• The request header's user-agent, origin, and referrer.
• The puzzle itself, which contains information regarding the account and the website key to which the puzzle refers.
• The version of the widget.
• A time stamp (date/time of the request).

Friendly Captcha does NOT ask for other personal information, such as your name, email address and online profiles.

Insofar as data is processed outside the European Economic Area / EU, where there is no level of data protection corresponding to the European standard, Friendly Captcha implements standard contractual clauses in accordance with its own statements.

You can find the privacy information of Friendly Captcha
here: https://friendlycaptcha.com/en/legal/privacy-end-users/ and
here: https://friendlycaptcha.com/en/privacy/gdpr/

If you have already purchased goods from us, we will occasionally send you e-mails of an advertising nature in connection with our web shop and the goods we sell through it. For this purpose, we process your email address, and sometimes your first name, last name, gender and postcode. We process your email address so that our emails reach you. We process your first or last name, your gender and your postcode in order to be able to tailor our emails to you individually. If you do not want us to process the aforementioned personal data in order to send you e-mails of an advertising nature, you can object to this use at any time.

For this purpose, it is sufficient to send an informal message by e-mail to: datenschutz@reifen.com or to click on the unsubscribe link contained in every e-mail of an advertising nature. The legal basis for processing your personal data for this purpose is Art. 6 (1) (1) (f) GDPR. Our legitimate interest is to inform you about our goods and services in the best possible way, to find out whether you are satisfied with us and our service, and also to be able to adapt our service if necessary according to your feedback.

We process your personal data for the purpose of sending you promotional e-mails as long as you have not objected to this type of data processing. In the event of your objection to this processing of your personal data, we will block your e-mail address to ensure that you do not receive any further e-mails of a promotional nature from us. We will then store your name, gender and postcode at most in connection with your customer account, but will no longer use them in connection with the sending of e-mails of an advertising nature.

Usercentrics is a consent management platform that enables websites to protect user privacy and comply with the GDPR when it comes to cookies and tracking. "Usercentrics" is an offer of the provider Usercentrics GmbH, Rosental 4, 80331 Munich, Germany, hereinafter referred to as "Usercentrics".

Through the "Usercentrics" function, we inform our website visitors about the use of cookies on our website and allow them to make a decision about their use.

If the visitor gives their consent to the use of cookies, the following data is automatically logged:

• The IP number of the user
• Date and time of consent
• User agent of the end user's browser
• The URL of the provider
• An anonymous, random and encrypted key

The encrypted key and the cookie status are stored by means of a cookie on the user's terminal device in order to establish the corresponding cookie status when the page is called up in the future. This cookie automatically deletes after 12 months.

The legal basis for storing the data is Art. 6 (1) lit. f GDPR. Our legitimate interest for the use of Usercentrics lies in the fulfilment of the requirements of the German Telecommunications-Telemedia Data Protection Act.

The user can prevent or terminate the installation of the cookie and its storage, and thus their cookie consent, at any time by changing the settings of their browser.

Further information on Usercentrics can be found at:
https://usercentrics.com/privacy-policy/

If you have given your consent, this website uses Microsoft Clarity, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, which records the behaviour of visitors to our website.

Scope of data processing:

Microsoft Clarity uses cookies that enable an analysis of your use of our websites. Microsoft Clarity records your behaviour on our website, tracks your click behaviour and creates overviews based on the information collected to improve the customer experience. The information collected by means of cookies about your use of our website is usually transferred to a Microsoft server in the USA and stored there. Information transferred to Microsoft Clarity may include, but is not limited to, the following:

• Usage data (e.g. internet presentations visited, interest in content, access times).
• Meta/communication data (e.g. device information, IP addresses), location data (information on the geographical position of a device or a person).
• Movement data (mouse movements, scroll movements, click path) in pseudonymised form.
• Faulty interaction with buttons (dead clicks).

According to Microsoft, the information collected can also be used for advertising purposes.

For more information on the data processed by Microsoft Clarity, please visit https://docs.microsoft.com/en-us/clarity/clarity-data. An overview of the cookies used can be found at https://docs.microsoft.com/en-us/clarity/cookie-list.

Microsoft also processes data in the USA, among other places, where there is no level of data protection that corresponds to the European standard. This can be associated with data protection risks because data subjects there do not have the same rights as within the EU/EEA. Where data is processed outside the EU/EEA, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection.

The cookies used by Microsoft Clarity are stored for a maximum of one year.

Legal basis and possibility of revocation:

The legal basis for this data processing is your consent pursuant to Art. 6 (1) (1) (a) GDPR. You can revoke your consent at any time with effect for the future by calling up the cookie settings here and changing your selection there. Further information on data processing by Microsoft can be found at https://privacy.microsoft.com/en-us/privacystatement.

We will be happy to provide you with information on whether personal data relating to you is being processed; if this is the case, you have a right to information on this personal data and to the information listed in detail in Art. 15 GDPR. In addition, you have the right to rectification (Art. 16 GDPR), the right to restriction of processing (Art. 18 GDPR), the right to erasure (Art. 17 GDPR) and the right to data portability (Art. 20 GDPR) under the respective legal conditions.

You have the right to object to the processing under the legal conditions (Art. 21 GDPR).

To exercise your above rights, please contact us by e-mail at datenschutz@reifen.com or by post to the company address. The exercise of your above rights is free of charge for you.

Without prejudice to these rights and the possibility of seeking any other administrative or judicial remedy, you may at any time exercise your right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes data protection rules (Art. 77 GDPR).

The supervisory authority responsible for us is the State Commissioner for Data Protection in Lower Saxony (https://lfd.niedersachsen.de/startseite/).

To protect the security of your information during transmission, we use Secure Socket Layer software (SSL). This software encrypts the information you submit. We do not disclose your credit card number when confirming an order. Of course, we transfer the complete credit card number to the responsible credit card company in the course of order processing.
We maintain physical, electronic and procedural safeguards in connection with the collection, storage and disclosure of our customers' personal information. These security measures include occasionally asking you to provide proof of identity before we disclose personal information to you.

It is important for you to protect yourself against unauthorised access to your password and your computer. If you share your computer with others, be sure to log off after each session.