Privacy Policy of the Company
IFAM GmbH Erfurt
Gustav-Weißkopf-Straße 9
D-99092 Erfurt

1. General Information

The protection of your privacy is of great importance to us. We therefore ask you to read the following information regarding data collection by our web service www.ifam.com carefully.. The privacy policy set out here is intended to explain the nature, scope and purpose of the collection of personal data by the website operator IFAM GmbH Erfurt. The collection and transfer of data comply with the requirements of the GDPR and the BDSG. Changes and corresponding updates to the privacy policy cannot be ruled out, which is why we recommend that you review this privacy policy regularly. We assure you that this data is used exclusively for the functioning, statistical analysis and improvement of our services. In accordance with applicable regulations, this data is stored only for as long as is necessary for the purposes described. Exceptions apply where the GDPR provides for longer storage periods. The legally applicable data erasure regulations are observed. We take the protection of your data seriously and treat it confidentially. Should you nevertheless have any concerns or questions regarding the collection of your data, you will find the relevant contact details of the responsible contact persons at the end of this text.

2. Personal Data

Personal data is processed exclusively for the commercial and logistical processing of orders. This website collects and uses personal data. The data collection carried out here corresponds to a legitimate interest pursuant to Article 6(1)(f) of the GDPR, taking into account Section 7(3) of the Unfair Competition Act (UWG). Furthermore, we are partly dependent on information from our users to provide our services.

We have received your personal data (see list below) from you in connection with enquiries, consultations and/or the sale of goods or services (e.g. project management, development tasks). In order to act in pursuit of a legitimate interest, it may be necessary to make this data available to other specialist staff within our company.

There is a legitimate interest in the internal transfer of the relevant personal data, provided that the transfer is related to the interests of the sender and is used exclusively for this purpose.

You may object to the use of your email address at any time. To do so, please send an email to our contact details.

Data is collected, processed and passed on to third parties only to the extent permitted by law and/or where users have given their consent. As the operator, we may only store personal data for longer periods, disclose it or access it retrospectively to the extent permitted by law (e.g. in the event of suspected unlawful activities). By visiting and using our website, various personal data may be collected in accordance with Article 4 of the GDPR, which is listed under ‘Access data’. You may also use our services without disclosing any further personal information. As a rule, however, we will still store your anonymised access data without any reference to a specific individual.

Access Data

LA log file is created as part of the automatic logging process of the processing computer system. This means that information about the device you are using is recorded as log files on a server. When you access our website, we collect such data, which is stored as server log files. This is done for security reasons. Server log files are stored for a maximum of 14 days and then deleted. The personal data collected in this way includes:

• Date, time and frequency of access
• Referring website (source/referrer)
• Amount of data transmitted
• Browser type and version
• IP address

Contact via Forms and Comments

When you contact us (via the contact form, the comments function, email, etc.), your name, email address and IP address are usually collected. We also have a legitimate interest in this, for example, if your comment violates applicable law. Furthermore, we reserve the right to delete comments containing inhuman, defamatory, homophobic or similar inflammatory content and, if necessary, to report them to the authorities.

Data Collected via Sales Service

If you use our sales service, the data collected is not visible to other users. This includes:

1. Company
2. General company email
3. Street, house number
4. Postcode
5. Town
6. Country
7. Title
8. Title
9. First name of purchaser
10. Surname of purchaser
11. Street and house number of the delivery address
12. Postcode of delivery address
13. Town of delivery address
14. Country of delivery address
15. Alternative billing address
16. Business telephone number
17. Fax
18. Your company email address

Data Collected via Ticket Service

If you use our ticket service, the data collected is not visible to other users. This data includes:

1. Company
2. General company email
3. First name
4. Surname
5. Business telephone number
6. Subject
7. Your message
8. Category
9. BMA
10. Order number

The data from the ticket will be stored for at least as long as is necessary to fulfil the purpose. Upon completion, IFAM has a legitimate interest in storing the data. You may request deletion at any time.

Third-Party Services

Personal data may be collected from the following institutions:

• Usercentrics GmbH, Germany (Privacy Policy)
• rapidmail GmbH, Germany (Privacy Policy)
• YouTube, Google Ireland Limited (Privacy Policy)

3. Disclosure of Data to Third Parties

As a general rule, we do not pass on your data to third parties. Furthermore, we take appropriate measures and carry out regular checks to ensure that the data we collect cannot be viewed or accessed by external third parties.

We transfer your data to the following third parties:

• Service providers, e.g. freight forwarders such as DACHSER, DHL, etc. (these organisations use your data to fulfil delivery orders to customers)
•  Usercentrics GmbH, rapidmail GmbH

We assure you that the transfer of this data complies with legal requirements and that data is only sent to these third parties. If you have any concerns regarding this, you may contact the data controllers.

4. Cookies

This website uses cookies. These are small text files that are stored in your browser. This allows your browser and device to be recognised the next time you log in. As a result, settings you have already made and other changes you have carried out can be restored on your next visit. We use cookies to

• personalise our service and thus make it more user-friendly
• prevent fraud attempts and ensure security
• display interest-based advertising
• carry out pseudonymised audience measurement

You can block the setting of cookies at any time and delete cookies that have already been set in your browser. In such cases, we must point out that certain features on the site may no longer work, or may only work to a limited extent. If you do not wish cookies to be used for audience measurement by a specific provider, you can adjust the relevant settings on our website.

5. Newsletter und Abonnement

Upon registration, we send newsletters to the email addresses provided by our users, in which we provide information about new developments, industry news and current events at IFAM GmbH Erfurt. Our newsletters are sent via the mailing service provider “rapidmail GmbH”. For this purpose, your email address will be stored by rapidmail GmbH (Privacy Policy) for the duration of your use of their service. If you no longer wish to receive these, you can unsubscribe at any time via the unsubscribe link in the newsletter.

6. Web analytics services

To analyse access and usage data, this website uses the service provided by Usercentrics GmbH, Germany (Privacy Policy).

7. Social media plugins

On our website, we offer the option to share content on social networks or via email via external links. We do this using social bookmarks. These are buttons that can be recognised by the logo of the respective social network. The plugin establishes a connection between your browser and the servers of the respective provider. If you use these social bookmarks, you will usually be redirected to the providers’ websites and the relevant user information will be passed on. If you are logged into one of these social networks with your account whilst using our site and wish to share our content, this information will be linked to your respective account.

Furthermore, there is a possibility that your IP address may be recorded. As the operator, we have no influence over the data transmitted to the relevant servers via these plugins. For further information on how your data is handled, please refer to the privacy policy of the respective provider.
Instagram: https://privacycenter.instagram.com/policy
LinkedIn: https://de.linkedin.com/legal/privacy-policy
Xing: https://privacy.xing.com/de/datenschutzerklaerung
YouTube: https://policies.google.com/privacy

8. Your rights

Naturally, you have rights regarding the collection of your data. Under current law, we are obliged to inform you of these rights. Exercising and implementing these rights is free of charge for you.

Right to object (Art. 21 GDPR)

You have the right to withdraw your consent to the collection of data at any time. This does not affect the lawfulness of the processing carried out on the basis of your consent prior to withdrawal. Please contact those responsible for data collection.

Right to data portability

You have the right to request that we transfer your data to another organisation.

Right of access (Art. 15 GDPR)

You have the right to request confirmation from us as to whether and how we collect personal data from you. This right is realised through this privacy policy. In addition, you may request information electronically.

Right to rectification, erasure or restriction (Articles 16, 17, 18 GDPR)

You have the right to have your data rectified, erased or restricted. The latter applies where the legal situation does not permit erasure.

Right to lodge a complaint (Art. 77 GDPR)

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data infringes the GDPR. Further information on this can be obtained directly from the competent supervisory authority in your country.

9. Data controller

For any questions, requests for information, applications, complaints or feedback regarding our data protection practices, please contact the following:
IFAM GmbH Erfurt
Gustav-Weißkopf-Straße 9
99092 Erfurt

Legally represented by:
Stefan Winter

10. Amendments to the Privacy Policy

As the data controller, we reserve the right to amend the privacy policy at any time in accordance with applicable data protection regulations.

---

IRAS basic² Privacy Policy App

Here you will find our privacy policy for the "IRAS basic²" app.