General
As the operator of this website and as a company, we come into contact with your personal data. This refers to all data that says something about you and with which you can be identified. In this privacy policy, we would like to explain to you in what way, for what purpose, and on what legal basis we process your data.
The following entity is responsible for data processing on this website and in our company:
Spedition Hahne GmbH
Am Güterbahnhof 10-12
38690 Goslar / Vienenburg
Germany
Phone: 0 53 24 / 77 36 – 0
E-mail: info@hahne-spedition.de
General Information
SSL or TLS encryption
When you enter your data on websites, place online orders, or send emails via the Internet, you must always expect that unauthorized third parties may access your data. Complete protection against such access does not exist. However, we make every effort to protect your data as best as possible and to close security gaps as far as it is possible for us.
An important protection mechanism is the SSL or TLS encryption of our website, which ensures that data you transmit to us cannot be read by third parties. You can recognize the encryption by the lock icon in front of the entered Internet address in your browser and by the fact that our Internet address begins with https:// and not with http://.
How long do we store your data?
In some places in this privacy policy, we inform you about how long we or the companies that process your data on our behalf store your data. If such information is missing, we store your data until the purpose of data processing ceases to apply, you object to the data processing, or you revoke your consent to data processing.
In the event of an objection or revocation, however, we may continue to process your data if at least one of the following conditions is met:
- We have compelling legitimate grounds for continuing the data processing that override your interests, rights, and freedoms (only in case of objection to data processing; if the objection is directed against direct marketing, we cannot invoke any legitimate grounds).
- The data processing is necessary for the establishment, exercise, or defense of legal claims (does not apply if your objection is directed against direct marketing).
- We are legally obliged to retain your data.
In this case, we will delete your data as soon as the condition(s) cease(s) to apply.
Data transfer to the USA
We also use tools from companies on our website that transmit your data to the USA and store and possibly process it there. The European Commission has adopted an adequacy decision for the EU-US Data Privacy Framework. This establishes that the USA ensures an adequate level of protection for personal data transferred from the EU to US companies. This decision is based on new guarantees and measures introduced by the USA to meet data protection requirements. The adequacy decision includes, among other things, restrictions and guarantees regarding US intelligence services’ access to the data. Binding guarantees have been introduced to limit US intelligence services’ access to what is necessary and proportionate to protect national security. Enhanced oversight of US intelligence activities has also been established to ensure compliance with surveillance activity restrictions. Additionally, an independent redress mechanism has been set up to process and resolve complaints from European citizens regarding access to their data. The EU-US Data Privacy Framework thus allows European companies to transfer data to certified US companies without having to introduce additional data protection guarantees. You can view a list of all certified companies at the following link: https://www.dataprivacyframework.gov/s/participant-search
A change in the European Commission’s decision cannot be ruled out.
Data Protection Officer
We have appointed a Data Protection Officer for our company.
Bornemann Consulting
Im Fliegerhorst 10
38642 Goslar
E-mail address: dsb@bornemann.net
Phone number: 0511 / 16592321
Your Rights
Objection to Data Processing
IF YOU READ IN THIS PRIVACY POLICY THAT WE HAVE LEGITIMATE INTERESTS IN PROCESSING YOUR DATA AND THEREFORE BASE THIS ON ART. 6 PARA. 1 SENTENCE 1 LIT. F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THIS ACCORDING TO ART. 21 GDPR. THIS ALSO APPLIES TO PROFILING BASED ON THE AFOREMENTIONED PROVISION. THE PREREQUISITE IS THAT YOU STATE REASONS FOR THE OBJECTION ARISING FROM YOUR PARTICULAR SITUATION. NO JUSTIFICATION IS REQUIRED IF THE OBJECTION IS DIRECTED AGAINST THE USE OF YOUR DATA FOR DIRECT MARKETING.
THE CONSEQUENCE OF THE OBJECTION IS THAT WE MAY NO LONGER PROCESS YOUR DATA. THIS ONLY DOES NOT APPLY IF ONE OF THE FOLLOWING CONDITIONS IS MET:
- WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS.
- THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS.
THE EXCEPTIONS DO NOT APPLY IF YOUR OBJECTION IS DIRECTED AGAINST DIRECT MARKETING OR AGAINST PROFILING THAT IS ASSOCIATED WITH IT.
Additional Rights
Revocation of Your Consent to Data Processing
Many data processing operations are carried out on the basis of your consent. You give this, for example, by ticking a corresponding box in online forms before sending the form, or by allowing certain cookies when you visit our website. You can revoke your consent at any time without giving reasons (Art. 7 Para. 3 GDPR). From the time of revocation, we may then no longer process your data. The only exception: We are legally obliged to retain the data for a certain period of time. Such retention periods exist in particular in tax and commercial law.
Right to Lodge a Complaint with the Competent Supervisory Authority
If you believe that we are in violation of the General Data Protection Regulation (GDPR), you have the right to lodge a complaint with a supervisory authority according to Art. 77 GDPR. You can contact a supervisory authority in the Member State of your habitual residence, place of work, or place of the alleged infringement. The right to lodge a complaint exists in addition to administrative or judicial remedies.
Right to Data Portability
Data that we process automatically based on your consent or in fulfillment of a contract must be provided to you or a third party in a common machine-readable format if you request it. We can only transfer the data to another controller to the extent that this is technically feasible.
Right to Data Information, Deletion, and Correction
According to Art. 15 GDPR, you have the right to obtain free information about what personal data we have stored about you, where the data comes from, to whom we transmit the data, and for what purpose it is stored. If the data is incorrect, you have the right to rectification (Art. 16 GDPR), and under the conditions of Art. 17 GDPR, you may request that we delete the data.
Right to Restriction of Processing
In certain situations, you can request that we restrict the processing of your data according to Art. 18 GDPR. The data may then – apart from storage – only be processed as follows:
- With your consent
- For the assertion, exercise, or defense of legal claims
- To protect the rights of another natural or legal person
- For reasons of important public interest of the European Union or a Member State
The right to restrict processing exists in the following situations:
- You have disputed the accuracy of your personal data stored with us, and we need time to verify this. Here, the right exists for the duration of the review.
- The processing of your personal data is unlawful or was unlawful in the past. Here, the right exists as an alternative to deleting the data.
- We no longer need your personal data, but you need it to exercise, defend, or assert legal claims. Here, the right exists as an alternative to deleting the data.
- You have objected according to Art. 21 Para. 1 GDPR, and now your interests and ours must be weighed against each other. Here, the right exists as long as the result of the weighing is not yet determined.
Hosting and Content Delivery Networks (CDN)
External Hosting
Our website is hosted on a server of the following internet service provider (host):
IONOS SE
Elgendorfer Str. 57
56410 Montabaur
How do we process your data?
The host stores all data of our website. This also includes all personal data that is automatically collected or entered by you. This may include in particular: Your IP address, pages accessed, names, contact details and inquiries, as well as meta and communication data. In processing the data, our host adheres to our instructions and processes the data only to the extent necessary to fulfill the service obligation towards us.
On what legal basis do we process your data?
Since we address potential customers through our website and maintain contacts with existing customers, the data processing by our host serves to initiate and fulfill contracts and is therefore based on Art. 6 Para. 1 lit. b) GDPR. Furthermore, it is our legitimate interest as a company to provide a professional internet presence that meets the necessary requirements for security, speed, and efficiency. In this respect, we also process your data on the basis of Art. 6 Para. 1 lit. f) GDPR.
Data Collection on this Website
Use of Cookies
Our website places cookies on your device. These are small text files that serve various purposes. Some cookies are technically necessary for the website to function at all (necessary cookies). Others are needed to perform certain actions or functions on the site (functional cookies). For example, without cookies, it would not be possible to use the benefits of a shopping cart in an online shop. Still other cookies are used to analyze user behavior or optimize advertising measures. When we use third-party services on our website, e.g., for processing payment transactions, these companies may also leave cookies on your device when you visit the website (so-called third-party cookies).
How do we process your data?
Session cookies are stored on your device only for the duration of a session. As soon as you close the browser, they disappear on their own. Permanent cookies, on the other hand, remain on your device if you don’t delete them yourself. This can lead, for example, to your user behavior being analyzed permanently. You can influence how your browser handles cookies through its settings:
- Do you want to be informed when cookies are set?
- Do you want to exclude cookies generally or for certain cases?
- Do you want cookies to be automatically deleted when closing the browser?
If you deactivate or do not allow cookies, the functionality of the website may be limited.
If we use cookies from other companies or for analysis purposes, we will inform you about this within this privacy policy. We also ask for your consent in this regard when you visit our website.
On what legal basis do we process your data?
We have a legitimate interest in ensuring that our online offerings can be used by visitors without technical problems and that all desired functions are available to them. The storage of necessary and functional cookies on your device is therefore based on Art. 6 Para. 1 lit. f) GDPR. We set all other cookies on the basis of Art. 6 Para. 1 lit. a) GDPR, provided you give us appropriate consent. You can revoke this at any time with effect for the future. If you have consented to the placement of necessary and functional cookies when asked for consent, these cookies are also stored exclusively on the basis of your consent.
Cookie Consent with Borlabs Cookie
[borlabs-cookie type=”btn-consent-preferences” title=”Cookie-Einstellungen anpassen”/]
What is Borlabs Cookie?
Cookie plugin for GDPR and ePrivacy compliance
Who Processes Your Data?
Only we, not the provider of Borlabs Cookie
Where can you find more information about data protection at Borlabs Cookie?
How do we process your data?
We use Borlabs Cookie to obtain your consent for storing cookies on your device. When you visit our website and close the Borlabs Cookie window with the consent query, a Borlabs cookie with the following content is stored in your browser:
- Cookie duration
- Cookie version
- Domain and path of the website
- Consents
- A randomly generated ID
This data is not transmitted to the provider of Borlabs Cookie.
We store the data for as long as the purpose of data storage exists, until you delete the Borlabs Cookie, or until you request us to delete the data. This does not apply if we are legally obligated to retain the data.
On what legal basis do we process your data?
We are legally obligated to obtain the consent of our website visitors for the use of certain cookies. To fulfill this obligation, we use Borlabs Cookie. The legal basis for data processing is therefore Art. 6 Para. 1 lit. c) GDPR.
Server log files
Server log files record all requests and accesses to our website and record error messages. They also include personal data, especially your IP address. However, this is anonymized by the provider after a short time, so that we cannot assign the data to your person. The data is automatically transmitted by your browser to our provider.
How do we process your data?
Our provider stores the server log files to trace the activities on our website and to identify errors. The files contain the following data:
- Browser type and version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of server request
- IP address (possibly anonymized)
We do not combine this data with other data, but only use it for statistical evaluation and to improve our website.
On what legal basis do we process your data?
We have a legitimate interest in ensuring that our website runs without errors. It is also our legitimate interest to have an anonymized overview of the accesses to our website. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f) GDPR.
Social media plugins
Use of social media plugins
Privacy-compliant use
We use social media plugins on our website. You can recognize these by the logos of the social networks. Thanks to the plugins, you can easily share the content on our website on social networks. Which plugins we use in detail can be found in the list at the end of this section. Here you will also find the privacy-relevant information of the networks.
How do we process your data?
Normally, the plugins work in such a way that simply visiting the website where they are embedded is sufficient to establish a connection to the servers of the social networks. The providing companies learn in this way that the relevant website has been visited via your IP address. All networks except Xing store the IP address. Additional personal data may be added. In this case, your data is usually transferred to servers in the USA. If this is the case, you can find out on what basis this happens in each case from the information provided below about the networks.
To better protect your personal data, we exclusively use privacy-compliant social media buttons. They replace the usual buttons of social networks with ones that only communicate with the servers of the social networks when you click on them. Nevertheless, you can still easily share information with others.
Even when using privacy-compliant social media buttons, your surfing behavior can be associated with your personal profile on a social network if you are logged into your account there when you click the button. If you do not want this, you must log out of your account before continuing to surf the internet.
On what legal basis do we process your data?
By activating the button, you consent to a connection being established with the affected social network, your IP address and possibly other data being transmitted, and your surfing behavior being tracked by the social media company. Thus, the data processing is lawful according to Art. 6 Para. 1 lit. a) GDPR. You can revoke your consent at any time. From the time of revocation, we may no longer process your data.
Which social media plugins do we use?
What is Instagram?
Social network
Who Processes Your Data?
Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Where can you find more information about data protection on Instagram?
https://instagram.com/about/legal/privacy
On what basis do we transfer your data to the USA?
Based on the adequacy decision of the European Commission and the corresponding certification of the company.
Analysis Tools and Advertising
We use the following tools to analyze the behavior of our website visitors and to show you advertisements.
Matomo Analytics (Locally Installed)
You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.
How do we process your data?
We are always interested in optimizing our web offerings for users and placing advertising optimally. Matomo Analytics, an open-source tool that analyzes user behavior and thus provides us with the necessary data basis for adjustments, helps us with this. Matomo uses cookies, device fingerprinting, and other technologies that enable cross-page recognition of the user to analyze user behavior. Matomo records page views, which region they come from, the IP address, referrer, browsers and operating systems used. The tool can also measure whether our website visitors perform certain actions (e.g., click on links or make purchases). After anonymizing your IP address, the collected data is stored exclusively on our server.
On what legal basis do we process your data?
As website operators, we have a legitimate interest in anonymously analyzing user behavior for the purpose of optimizing our web offering and the advertising placed there. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f) GDPR. In the event that you have, for example, consented to the storage of cookies or otherwise consented to data processing, Art. 6 Para. 1 lit. a) GDPR is the sole legal basis. You can revoke your consent at any time with effect for the future.
Plugins and Tools
Google Fonts (local hosting)
We use fonts from the US company Google on our website. We have installed the fonts locally, so no connection to Google servers is established when you visit our website.
You can find more information about Google Fonts at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=en.
Font Awesome (Local Hosting)
We use icons from the Font Awesome icon library on our website. The library is offered by Fonticons Inc. We have installed the icons locally, so no connection to the company’s servers is established when you visit our website.
You can find more information about Font Awesome at https://fontawesome.com/ and specifically in their privacy policy: https://fontawesome.com/privacy.
Google reCAPTCHA
What is Google reCAPTCHA?
Test tool for distinguishing between humans and computers by Google Ireland Ltd.
Who Processes Your Data?
Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
Where can you find more information about data protection at Google?
https://policies.google.com/privacy?hl=de
On what basis do we transfer your data to the USA?
Based on the adequacy decision of the European Commission and the corresponding certification of the company.
How do we process your data?
With Google reCAPTCHA, we check whether data entered into forms on our website comes from a human or a computer. For you, this means that the test tool analyzes your behavior as a visitor to our website based on various characteristics. The analysis begins not only when you use the test tool, but already when you visit our website. Various data is collected, e.g., the IP address, the time spent on our website, and mouse movements made. The data is forwarded to Google.
On what legal basis do we process your data?
As a company, we have a legitimate interest in protecting our web offerings from spam and abusive spying. The data processing is therefore lawful according to Art. 6 Para. 1 lit. f) GDPR.
If you have consented to data processing, we process your data exclusively on the basis of Art. 6 para. 1 lit. a) GDPR. You can revoke your consent at any time. From the time of revocation, we are no longer allowed to process your data.
Use of Chats and Chatbots
You have the option to communicate with us via chat or chatbot on our website. Chatbots can respond to communication without human assistance.
How do we process your data?
If you ask a question or make any kind of input in the chat window, the chatbot analyzes, in addition to your inputs, other data to provide appropriate answers (e.g., names, email addresses and other contact details, customer numbers and other identifiers, orders and chat histories). Additionally, your IP address, log files, location information, and other metadata may be collected via the chatbot. This data is generally stored on the servers of the chatbot provider.
User profiles can be created based on the collected data. Furthermore, if other legal requirements are met (especially your consent), the data can be used to display interest-relevant advertising. For this purpose, the chatbots may be linked with analysis and advertising tools.
The collected data can also be used to improve our chatbots and their response behavior (machine learning).
How long do we store your data?
We delete your data as soon as one of the following occurs:
• Your request has been fully processed.
• You request us to delete the data.
• You revoke your consent to storage.
This does not apply if we are legally obligated to retain the data.
On what legal basis do we process your data?
If our exchange via chatbot is related to our contractual relationship or serves to carry out pre-contractual measures, we process your data on the basis of Art. 6 Para. 1 lit. b) GDPR. If corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. In all other cases, the use is based on our legitimate interest in the most effective customer communication possible (Art. 6 Para. 1 lit. f GDPR).
Salesforce Chatbot
What is the Salesforce Chatbot?
Salesforce Chatbot is an artificial intelligence-based chatbot that is part of the Salesforce Customer Service product portfolio. It enables customer support teams to provide automated, personalized, and quick responses to customer inquiries. With Salesforce Chatbot, companies can improve their customer interactions by offering faster response times and freeing up resources by automating standard tasks. Additionally, Salesforce Chatbot provides tools for monitoring and analyzing customer feedback to improve the effectiveness of chatbots and customer satisfaction.
Who Processes Your Data?
salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich
Where can you find more information about data protection at Salesforce?
On what basis do we transfer your data to the USA?
Based on the adequacy decision of the European Commission and the corresponding certification of the company.
How do we process your data?
As part of the communication with you, Salesforce processes all entered data as well as log data (browser device, etc.), your IP address, and other available data, such as contact information (e.g., email address and phone numbers), order data, order histories, previous customer inquiries, and customer numbers and other identifiers. Furthermore, an analysis of user behavior takes place.