+45 78 770087
Helpline + orders
FAQ & help
search

Cart

All products
Brands / Products
New products SolidHub TecMaschin wipeket
Service
Shipping Self collection Payment methods Shelf assembly Rack inspection
Company
News & Press Sustainability About us Our mission statement Career Discounts & offers Warehouses Quality

Privacy Policy

Table of contents

  1.  Name and address of the responsible party 
  2.  Contact details of the data protection officer 
  3.  General information on data processing 
  4.  Rights of the data subject 
  5.  Provision of the website and creation of the log files 
  6.  Use of cookies 
  7.  Registration 
  8.  Webshop 
  9.  Payment options 
  10.  Credit assessment 
  11.  Newsletter 
  12.  E-mail contact 
  13.  Contact form 
  14.  Application by e-mail 
  15.  Use of company presences in social networks 
  16.  Use of company presences in job-oriented networks 
  17.  Used Plugins 

1. Name and address of the responsible party

The responsible party within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States as well as other data protection provisions is:

TOPREGAL GmbH
Industriestr. 3
70794 Filderstadt
Germany

+49(0)7158 9181500
info@topregal.com
www.topregal.com

2. Contact details of the data protection officer

The data protection officer of the data controller is:

DataCo GmbH
Dachauer Straße 65
80335 Munich
Germany

+49 89 7400 45840
www.dataguard.de

3. General information on data processing

3.1 Scope of the processing of personal data

As a matter of principle, we process personal data of our users only insofar as this is necessary for the provision of a functional website including webshops as well as our content and services. The processing of of personal data of our users is regularly carried out only after the user has given his or her consent. An exception applies in those cases where it is not possible to obtain prior consent for factual reasons and the processing of the data is required by legal regulations.

3.2 Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing operations of personal data, Art. 6 (1) p. 1 lit. a GDPR serves as the legal basis.

When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) p. 1 lit. b GDPR serves as the legal basis. This also applies to Processing operations that are necessary for the implementation of pre-contractual measures.

Insofar as processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) p. 1 lit. c GDPR serves as the legal basis.

In the event that vital interests of the data subject or another natural person make processing of personal data necessary, Art. 6 (1) p. 1 lit. d GDPR serves as the legal basis.

If processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest, Art. Art. 6 (1) sentence 1 lit. f GDPR serves as the legal basis for the processing.

3.3 Data deletion and storage period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if this is required by the European or national legislator in Union regulations, laws or other regulations to which the responsible party is subject. Blocking or deletion of the data will also take place if a storage period prescribed by the aforementioned norms expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

4. Rights of the data subject

If personal data is processed by you, you are a data subject within the meaning of the GDPR and you are entitled to the following rights against the controller:

4.1 The right to information (Art. 15 GDPR).

You have the right to request confirmation from us as to whether personal data concerning you is being processed.

If this is the case, you have a right of access to this data and to the following information:

  • Purposes of processing
  • Categories of personal data
  • Recipients or categories of recipients
  • Planned storage period or the criteria for determining this period
  • The existence of the rights of rectification, erasure or restriction or opposition
  • Right of appeal to the competent supervisory authority
  • If applicable, origin of the data (if collected from a third party)
  • If applicable, existence of automated decision-making including profiling with meaningful information about the logic involved, the scope and the effects to be expected
  • If applicable, transfer of personal data to a third country or international organization.

4.2 Right of rectification (Art. 16 GDPR).

If your personal data is inaccurate or incomplete, you have the right to request that the personal data be corrected or completed without delay.

4.3 Right to restriction of processing (Art. 18 GDPR).

If one of the following conditions is met, you have the right to request restriction of the processing of your personal data:

  • You dispute the accuracy of your personal data for a period of time that allows us to verify the accuracy of the personal data.
  • In the context of unlawful processing, you object to the erasure of the personal data and instead request the restriction of the use of the personal data.
  • We no longer need your personal data for the purposes of processing, but you need your personal data for the assertion, exercise or defense of your legal claims or
  • after you have objected to the processing, for the duration of the examination as to whether our legitimate reasons outweigh your reasons.

4.4 Right to erasure ("right to be forgotten") (Art. 17 GDPR).

If one of the following reasons applies, you have the right to request immediate erasure of your personal data:

  • Your data is no longer necessary for the processing purposes for which it was originally collected.
  • You withdraw your consent and there is no other legal basis for the processing.
  • You object to the processing and there are no overriding legitimate grounds for the processing or you object pursuant to Article 21(2) of the GDPR.
  • Your personal data is processed unlawfully.
  • Erasure is necessary for compliance with a legal obligation under Union law or the law of the member state to which we are subject.
  • The personal data was collected in relation to information society services offered in accordance with Art. 8 (1) GDPR.

Please note that the above reasons do not apply insofar as the processing is necessary:

  • To exercise the right to freedom of expression and information;
  • For compliance with a legal obligation or for the performance of a task carried out in the public interest to which we are subject.
  • For reasons of public interest in the area of public health.
  • For archival, scientific or historical research purposes in the public interest or for statistical purposes.
  • For the assertion, exercise or defense of legal claims.

4.5 Right to data portability (Art. 20 GDPR).

You have the right to receive your personal data, in a structured, common and machine-readable format or to request the transfer to another controller.

4.6 Right to object to certain data processing (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) p. 1 lit. e or f GDPR, to object. This also applies to profiling based on these provisions.

If the personal data concerning you is processed for the purpose of direct marketing, you have the right to object at any time to the processing of the personal data concerning you for the purpose of such marketing This also applies to profiling, insofar as it is associated with such direct advertising.

4.7 Right to complain to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of your personal data violates the GDPR. The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR. A list of the supervisory authorities with local jurisdiction in Germany can be found on the website of the Federal Commissioner for Data Protection at the following link:  https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html 

5. Provision of the website and creation of log files

5.1 Description and scope of data processing

Each time our website is called up, our system automatically collects data and information from the computer system of the calling computer.

The following data is collected in this context:

  • Information about the browser type and the version used.
  • The operating system of the user
  • The IP address of the user
  • Date and time of access

This data is stored in the log files of our system. This data is not stored together with other personal data of the user.

5.2 Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the IP address of the user must remain stored for the duration of the session.

The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. A evaluation of the data for marketing purposes does not take place in this context.

These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 p. 1 lit. f GDPR.

5.3 Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 p. 1 lit. f GDPR.

5.4 Duration of storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

5.5 Possibility of objection

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. The user can object to this. Whether the objection is successful is to be to be determined within the framework of a balancing of interests.

6. Use of cookies

6.1 Description and scope of data processing

When you visit our website, we use technical tools for various functions, in particular cookies, which can be stored on your terminal device. When you call up our website and at any time later, you have the choice whether to generally allow cookies to be set or which individual additional functions you would like to select. You can make changes in your browser settings or via our Consent Manager. Cookies are Text files or information in a database that are stored on your hard drive and assigned to the browser you are using so that certain information can flow to the entity that sets the cookie. Below we describe what kind of cookies we use:

  • Language settings
  • Items in the shopping cart
  • Log-in information
  • Use of website functions
  • Session information (UTM parameters)

We use cookies on our website that are not technically necessary. Technically unnecessary cookies are text files that are not solely used for the functionality of the website, but also collect other data. By setting technically non-essential cookies, the following data is processed:

  • Shopping cart
  • Adoption of language settings
  • Currency and country of delivery

6.2 Purpose of data processing

The use of technically unnecessary cookies is for the purpose of improving the quality of our website, its content and thus our reach and profitability. Through the setting of these cookies, we learn how the website is used and can thus constantly optimize our offer. In particular, these cookies serve us for the following purposes:

  • Personalized advertising
  • Collection of usage data for customer-oriented optimization of the website.

6.3 Legal basis for data processing

Where cookies are used that are not technically necessary, this is done on the basis of your express consent, which you can give via the cookie banner. The basis for the storage and access to information in this case is § 25 para. 1 TTDSG in conjunction with. Art. 6 para. 1 lit. a), Art. 7 GDPR. You can revoke your consent at any time with effect for the future or subsequently grant it again by configuring your settings to cookies accordingly. Alternatively, you can prevent the storage of cookies by making appropriate settings in your browser software. Please note that the browser settings you make will only affect the browser used. If personal data is processed following the storage of and access to the information on your terminal equipment, the provisions of the GDPR are relevant. Information on this can be found in the following sections of this privacy policy.

7 Registration

7.1 Description and scope of data processing

On our website, we offer users the opportunity to register by providing personal data. The data is entered in an input mask and transmitted to us and stored. A passing on of the data to third parties does not take place. The following data is collected during the registration process:

  • E-mail address
  • Name
  • First name
  • Address
  • Telephone / mobile phone number
  • Date and time of registration
  • Company name, VAT ID

As part of the registration process, the user's consent to the processing of this data is obtained.

7.2 Purpose of data processing

Registration of the user is necessary for the fulfillment of a contract with the user (order execution ) or for the implementation of pre-contractual measures (offer processing).

7.3 Legal basis for data processing

The legal basis for the processing of data is Art. 6 para. 1 p. 1 lit. a GDPR if the user has given his consent.

If the registration serves the fulfillment of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of the data is Art. 6 para. 1 p. 1 lit. b GDPR.

7.4 Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected.

This is the case for data collected during the registration process for the fulfillment of a contract or for the implementation of pre-contractual measures when the data is no longer required for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to fulfill contractual or legal obligations.

7.5 Possibility of revocation

As a user, you have the option to cancel your registration at any time. You can have the data stored about you changed at any time.

Change and deletion of customer data in the customer area possible.

If the data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, early deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

8. webshop

We offer a webshop on our website. For this purpose, we use the following webshop software from the provider:

OXID eSales AG
Bertoldstrasse 48
79098, Freiburg,
Germany
(Hereafter referred to as OXID eShop).

You can find more information in the privacy policy of the provider:  https://www.oxid-esales.com/datenschutz/  . The website and the webshop are hosted on external servers by a service provider commissioned by us.

Our service provider is:

Hetzner Online GmbH
Industriestr. 25,
91710 Gunzenhausen,
Germany

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The information stored is:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Date and time of server request
  • IP address

This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website - for this purpose, the server log files must be collected.

We have concluded an order processing contract with the relevant service provider, in which we oblige the relevant service provider to protect user data and not to disclose it to third parties.

The location of the server of the website is geographically in Germany.

9. Payment options

9.1 Description and scope of data processing

We offer our customers various payment options for processing their orders. For this purpose, we forward customers to the platform of the corresponding payment service provider, depending on the payment option. After completion of the payment process, we receive the payment data of the customers from the payment service providers or our house bank and process them in our systems for the purpose of invoicing and accounting.

  • Payment via Klarna

It is possible to process the payment transaction with the payment service provider Klarna. Klarna is a payment service provider that enables the purchase on account or an installment payment.

The European operating company of Klarna is:

Klarna Bank AB (publ)
Sveavägen 46
111 34 Stockholm
Sweden

If you select "Purchase on account" or "Installment purchase" as a payment option during the transaction via Klarna, your personal data will be automatically transmitted to Klarna. The personal data transmitted to Klarna are in particular

  • First name
  • Last name
  • Address
  • Date of birth
  • Gender
  • E-mail address
  • IP address
  • Telephone/mobile phone number
  • Bank details
  • Credit card number incl. expiry date and CVC code
  • Item number
  • Item number
  • Data on goods and/or services
  • Transaction amount and tax charges

The purpose of the transmission of the data is in particular identity verification, payment administration and fraud prevention. The personal data exchanged between Klarna and us may be transmitted by Klarna to credit reporting agencies.

The purpose of this transmission is to check identity and creditworthiness. Klarna may also disclose the personal data to affiliated companies (Klarna Group) and service providers or subcontractors to the extent that this is necessary to fulfil contractual obligations or the data is to be processed on behalf.

For more information on the processing of your data by Klarna, please refer to Klarna's privacy policy at:
 https://www.klarna.com/de/datenschutz/  can be retrieved.

  • Payment by credit card

It is possible to complete the payment process by credit card.

If you have selected payment by credit card, payment data will be passed on to payment service providers for payment processing. All payment service providers comply with the requirements of the "Payment Card Industry (PCI) Data Security Standards" and have been certified by an independent PCI Qualified Security Assessor.

In the context of payment by credit card, the following data is regularly transmitted:

  • Purchase amount
  • Date and time of purchase
  • First name and surname
  • Address
  • E-mail address
  • Credit card number
  • Credit card expiration date
  • Security code (CVC)
  • IP address
  • Telephone number / mobile phone number

Payment data will be passed on to the following payment service providers:

Mollie

You can find more information about the privacy policy as well as revocation and removal options vis-à-vis the payment service providers here:
 https://www.mollie.com/de/privacy 

  • Payment via PayPal

There is the possibility to handle the payment process with the payment service provider PayPal. In addition to a direct payment method, PayPal also offers purchase on account, direct debit, credit card and installment payment.

The European operating company of PayPal is the:

PayPal (Europe) S.à.r.l. & Cie. S.C.A.
22-24 Boulevard Royal
2449 Luxembourg

If you choose PayPal as a payment method, your data required for the payment process will be automatically transmitted to PayPal.

This involved in particular the following data:

  • Name
  • Address
  • E-mail address
  • Telephone / mobile phone number
  • IP address
  • Bank details
  • Card number
  • Expiry date and CVC code
  • Item number
  • Item number
  • Goods and services data
  • Transaction amount and tax charges
  • Information on previous purchase behavior

The data transmitted to PayPal may be transmitted by PayPal to credit agencies. The purpose of this transmission is to check your identity and creditworthiness.

PayPal may also pass on your data to third parties if this is necessary for the fulfillment of contractual obligations or if the data is to be processed on behalf of PayPal. When transferring your personal data within companies affiliated with PayPal, the Binding Corporate Rules approved by the relevant supervisory authorities apply. You can find them here:  https://www.paypal.com/de/webapps/mpp/ua/bcr  . Other data transfers may be based on contractual protection provisions. For more information, please contact PayPal.

All PayPal transactions are subject to PayPal's privacy policy. You can find this under:  https://www.paypal.com/de/webapps/mpp/ua/privacy-full/  .

Payment data is passed on to the following payment service providers:

Mollie

You can find more information about the privacy policy as well as revocation and removal options vis-à-vis the payment service providers here:
 https://www.mollie.com/de/privacy 

  • Payment in advance

If you have chosen payment in advance, no data will be processed by our side except the data transmitted by your bank. These will only be used to verify the receipt of payment.

  • Further payment options

Furthermore we offer a payment with the following possibilities:

  • Invoice
  • iDeal
  • Payment on pickup
  • Cash payment on delivery
  • Leasing

9.2 Purpose of data processing

The transmission of payment data to payment service providers serves to process the payment, e.g. when you purchase a product and/or use a service.

9.3 Legal basis for data processing

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. b GDPR, as the processing of the data is necessary for the processing of the concluded purchase contract.

9.4 Duration of storage

All payment data and data on any chargebacks are stored only as long as they are needed for the payment processing and a possible processing of chargebacks and debt collection as well as for the combating misuse. Furthermore, payment data may be stored beyond this period if and as long as this is necessary to comply with statutory retention periods or to prosecute a specific case of misuse. case of misuse.

Your personal data will be deleted upon expiry of the statutory retention periods, i.e. after 10 years at the latest.

9.5 Discontinuation of the legal basis

The payment service provider used remains entitled to process your payment data if and as long as this is necessary for the contractual processing of payments. If necessary, there are also legal retention periods.

10 Determination of creditworthiness

10.1 Description and scope of data processing

To determine the creditworthiness of our customers, including an analysis of payment behavior and credit default risk, we may use the services of rating agencies and credit agencies.

We use the services of the following providers of credit reports:

  • ALBIS Leasing Group

10.2 Purpose of data processing

We transmit the data for the purpose of checking the creditworthiness of our customers. This serves to reduce the default rate and to protect against credit risks.

10.3 Legal basis for data processing

The legal basis for the processing of the data for the purpose of checking the creditworthiness of the customer by the responsible party is Art. 6 para. 1 p. 1 lit. a GDPR if the user has given his consent.

10.4 Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.

11. Newsletter

11.1 Description and scope of data processing

It is possible to subscribe to a free newsletter. In doing so, the following data is processed on a regular basis:

  • E-mail address
  • Titlr
  • Name
  • First name

If you purchase goods or services on our website and enter your e-mail address, this may subsequently be used by us to send you a newsletter. In such a case, the newsletter will only be used to send direct advertising for our own similar goods or services.

No data will be passed on to third parties in connection with the processing of data for the dispatch of newsletters. The data is used exclusively for sending the newsletter.

11.2 Purpose of data processing

The collection of the user's e-mail address is used to deliver the newsletter.

11.3 Legal basis for data processing

The legal basis for sending the newsletter as a result of the sale of goods or services is Article 7 (3) UWG.

11.4 Duration of storage

The other personal data collected during the registration process is usually deleted after a period of seven days.

11.5 Possibility of revocation

The subscription to the newsletter can be cancelled by the affected user at any time. For this purpose, a corresponding link can be found in each newsletter.

12. E-mail contact

12.1 Description and scope of data processing

On our website, it is possible to contact us via the e-mail address provided. In this case, the user's personal data transmitted with the e-mail will be stored.

The data is used exclusively for processing the conversation.

12.2 Purpose of data processing

In the case of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.

12.3 Legal basis for data processing

The legal basis for processing the data transmitted in the course of sending an e-mail is Art. 6 (1) lit. f GDPR. Our legitimate interest is to respond to your request sent by e-mail, to answer optimally. If the e-mail contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) lit. b GDPR.

12.4 Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

12.5 Possibility of objection

If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

The right of revocation or objection can be exercised by e-mail to  info@topregal.dk  be made use of.

All personal data stored in the course of contacting us will be deleted in this case.

13 Contact form

13.1 Description and scope of data processing

Contact forms are available on our website, which can be used for electronic contact. If a user makes use of this option, the data entered in the input mask is transmitted to us and stored. and stored.

At the time the message is sent, the following data is stored:

  • E-mail address
  • Name
  • First name
  • Telephone / mobile phone number
  • IP address of the calling computer
  • Date and time of registration
  • Company name

For the processing of data, your consent is obtained during the submission process and reference is made to this privacy policy.

Alternatively, it is possible to contact us via the e-mail address provided. In this case, the user's personal data transmitted with the e-mail will be stored.

The data will be used exclusively for processing the conversation.

13.2 Purpose of the data processing

The processing of the personal data from the input mask serves us solely to process the contact. In the case of contact by e-mail, this also constitutes the required legitimate interest in the processing of the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

13.3 Legal basis for data processing

The legal basis for the processing of data transmitted in the course of sending a contact form is Art. 6 (1) p. 1 lit. f GDPR. Our legitimate interest is to optimally respond to your request that you send to us via contact form to us in the best possible way. If the contact via the contact form aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 p. 1 lit. b GDPR.

13.4 Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when it is clear from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

13.5 Possibility of objection

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.

The right of revocation or objection can be exercised by e-mail to  info@topregal.dk 

All personal data stored in the course of contacting us will be deleted in this case.

14 Application by e-mail

14.1 Scope of the processing of personal data

You can send us your application by e-mail. In doing so, we collect your e-mail address and the data you provide in the e-mail.

  • Title
  • First name
  • Name
  • Address
  • Telephone / mobile phone number
  • E-mail address
  • Salary requirement
  • Information about education and schooling
  • Language skills
  • Curriculum vitae
  • Testimonials
  • Photo

Your data will not be passed on to third parties. The data will be used exclusively for processing your application.

14.2 Purpose of data processing

The processing of the personal data from your application e-mail serves us solely to process your application.

14.3 Legal basis for data processing

The legal basis for the processing of your data is the contract initiation which takes place at the request of the data subject, Art. 6 para. 1 p.1 lit. b Alt. 1 GDPR and § 26 para. 1 p. 1 BDSG.

14.4 Duration of storage

After completion of the application process, the data will be stored for up to six months. At the latest after the expiration of the six months, your data will be deleted. In the event of a legal obligation, the data will be stored within the scope of the applicable regulations.

15. Use of company appearances in social networks

Use of company appearances in social networks

Instagram: Instagram, Part of

Meta Platforms Ireland Ltd.
4 Grand Canal Square Grand Canal Harbour
Dublin 2
Ireland

On our company page, we provide information and offer Instagram users the opportunity to communicate. If you perform an action on our Instagram company page (e.g. comments, posts, likes, etc.), you may disclose personal data (e.g. your full name or a photo of your user profile) to the public. However, since we usually or to a large extent have no influence on the processing of your personal data by Instagram, which is jointly responsible for the TOPREGAL GmbH corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the corporate presence for:

The corporate presence is used for purposes of product marketing and publication of new & current information from the company.

In this context, publications via the corporate presence may contain the following content:

  • Information about products
  • Information about services
  • Sweepstakes
  • Advertising

Every user is free to publish personal data through activities.

Insofar as we process your personal data in order to evaluate your online behavior, offer you sweepstakes or conduct lead campaigns, this is done on the basis of your express declaration of consent, Art. 6 Para. 1 S. 1 lit. a, Art. 7 GDPR. The legal basis for processing personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 p. 1 lit. f GDPR. In this context, our legitimate interest is in answering your inquiry in the best possible way or in order to be able to provide the requested information. If the purpose of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6. Paragraph 1 lit. b GDPR.

The data generated by the company website is not stored in our own systems.

For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c GDPR. A copy of the standard data protection clauses can be requested from us.

You can object at any time to the processing of your personal data that we collect in the course of your use of our Instagram corporate presence and assert your data subject rights set out in IV. of this privacy policy. To do so, send us an informal email to info@topregal.dk; datenschutz@dataguard.de. For the processing of your personal data by Instagram and the corresponding objection options, you can find more information here: Instagram:  https://help.instagram.com/519522125107875 

YouTube:

YouTube LLC
901 Cherry Ave.
San Bruno, CA 94066
United States

On our company page, we provide information and offer YouTube users the opportunity to communicate. If you perform an action on our YouTube corporate site (e.g. comments, posts, Likes, etc.), you may disclose personal data (e.g., your full name or a photo of your user profile) to the public. However, since we usually or to a large extent have no influence on the processing of your personal data by YouTube, which is jointly responsible for the TOPREGAL GmbH corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.

Our corporate presence in social networks is used for communication and information exchange with (potential) customers. In particular, we use the company presence for:

The corporate presence is used for purposes of product marketing and publication of new & current information from the company.

In this context, publications via the corporate presence may contain the following content:

  • Information about products
  • Information about services
  • Sweepstakes
  • Advertising

Every user is free to publish personal data through activities.

Insofar as we process your personal data in order to evaluate your online behavior, offer you sweepstakes or conduct lead campaigns, this is done on the basis of your express declaration of consent, Art. 6 Para. 1 S. 1 lit. a, Art. 7 GDPR. The legal basis for processing personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 p. 1 lit. f GDPR. In this context, our legitimate interest is in answering your inquiry in the best possible way or in order to be able to provide the requested information. If the purpose of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6. Paragraph 1 lit. b GDPR.

The data generated by the company website is not stored in our own systems.

For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c GDPR. A copy of the standard data protection clauses can be requested from us.

You can object at any time to the processing of your personal data that we collect in the course of your use of our YouTube corporate presence and assert your data subject rights as set out in IV. of this privacy policy. Data subject rights. To do so, send us an informal e-mail to info@topregal.dk; datenschutz@dataguard.de. For the processing of your personal data by YouTube and the corresponding objection options, you can find more information here: YouTube:  https://policies.google.com/privacy/ 

16. Use of company presences in job-oriented networks.

16.1 Scope of data processing

We use the possibility of company appearances on profession-oriented networks. We maintain a company presence on the following profession-oriented networks:

LinkedIn:

LinkedIn
Unlimited Company
Wilton Place
Dublin 2
Ireland


XING:

XING SE
Dammtorstrasse 30
20354 Hamburg
Germany

On our site we provide information and offer users the possibility of communication.

The company presence is used for job applications, information/PR and active sourcing.

We do not have any information on the processing of your personal data by the companies jointly responsible for the corporate presence. For more information, please refer to the privacy policy of:

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public.

16.2 Legal basis for data processing

The legal basis for processing personal data for the purpose of communicating with customers and interested parties is Art. 6 (1) p. 1 lit. f GDPR. In this context, our legitimate interest is to optimally answer your inquiry or to be able to provide the requested information. If the purpose of contacting you is to conclude a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

16.3 Purpose of data processing

The purpose of our corporate website is to inform users about our services. In doing so, each user is free to publish personal data through activities.

16.4 Duration of storage

We store your activities and personal data published via our corporate presence until you revoke your consent. In addition, we comply with the statutory retention periods.

16.5 Possibility of objection

You can object at any time to the processing of your personal data that we collect in the course of your use of our corporate presence and exercise your data subject rights as set out in IV. of this data protection declaration. To do so, send us an informal e-mail to the e-mail address stated in this data protection declaration.

You can find more information on objection and removal options here:

17. Used plugins

We use plugins for various purposes. The plugins we use are listed below:

Use of Bing Ads

1. Scope of the processing of personal data

We use the conversion tracking tool Bing Ads of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter: Microsoft). In the process, Bing Ads stores a cookie on your computer, provided that you have reached our online presence via a Bing Ads advertisement. Personal data can be stored and evaluated, especially the activity of the user (in particular, which pages have been visited and on which elements have been clicked), device and browser information (in particular the IP address and operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them), and also also data from advertising partners (in particular pseudonymized user IDs). We only learn the total number of users who clicked on a Bing ad and were then redirected to the conversion page. were redirected.

You can find more information about the processing of data by Microsoft here:  https://privacy.microsoft.com/de-de/privacystatement 

2. Purpose of the data processing

Microsoft Bing and we can recognize in this way that someone has clicked on an ad, been redirected to our online presence and reached a previously determined target page (conversion page).

3. Legal basis for the processing of personal data

The legal basis for the processing of users' personal data is basically the user's consent pursuant to Art. 6 para. 1 p.1 lit. a GDPR.

4. duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
You can prevent the collection as well as the processing of your personal data by Microsoft by preventing third-party cookies from being stored on your computer, by using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser, or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

With the following link you can deactivate the use of your personal data by Microsoft:  https://account.microsoft.com/privacy/ad-settings/ 

For more information on opting out and opting in from Microsoft, please visit:  https://privacy.microsoft.com/de-de/privacystatement  .

Use of Google Analytics

1. Scope of the processing of personal data

We use Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland. (hereinafter referred to as Google). Google Analytics examines, among other things, the origin of visitors, the time they spend on individual pages, and the use of search engines, thus allowing better monitoring of the success of advertising campaigns. Google sets a cookie on your computer. This allows personal data to be stored and evaluated, especially the activity of the user (in particular, which pages have been visited and which elements have been clicked on), devices and search engines, device and browser information (in particular the IP address and the operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and data about the advertising partners (in particular pseudonymized user IDs).
We use Google Analytics (Universal Analytics) to evaluate your use of our online presence, to compile reports on your activities and to provide other services of Google related to the use of our online presence and the internet.
We have requested the anonymization of IP addresses, which means that Google will shorten your IP address as promptly as technically possible. However, it cannot be ruled out that your data will be transmitted to the servers of Google LLC based in the U.S.

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage.

For more information on the processing of data by Google, please click here:  https://policies.google.com/privacy?gl=DE 

2. Purpose of the data processing

The use of Google Analytics (Universal Analytics) serves us to evaluate the use of our online presence as well as the targeted playout of advertising, to the people who have already expressed an initial interest through their page visit.

3. Legal basis for the processing of personal data

The legal basis for the processing of the users' personal data is, in principle, the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or until you exercise your right of revocation.

5. Revocation possibility

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, by using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout/.. With the following link you can deactivate the use of your personal data by Google: https://adssettings.google.de..

For more information on objection and removal options vis-à-vis Google, please visit:  https://policies.google.com/privacy?gl=DE 

6. Danger notice

Your personal data will also be transferred to the USA. There is no adequacy decision for the USA according to Art. 45 (3) GDPR. We would like to point out that a data transfer without the existence of an adequacy decision involves certain risks, which we would like to inform you about in the following:

Intelligence services in the USA take certain online identifiers (such as the IP address or unique identification numbers) as a starting point for monitoring individuals. In particular, it cannot be ruled out that these intelligence services have already collected information about you, with the help of which the data transmitted here can be traced back to you.

Providers of electronic communications services headquartered in the United States are subject to surveillance by U.S. intelligence agencies pursuant to 50 U.S. Code § 1881a ("FISA 702"). Accordingly, providers of electronic communications services headquartered in the U.S. have an obligation to provide personally identifiable information to U.S. authorities pursuant to 50 U.S. Code § 1881a, with no possible recourse available to you. Even encryption of the data at the electronic communications service provider's data centers may not provide adequate protection because, with respect to imported data in the electronic communications service provider's possession or custody or under its control, an electronic communications service provider has a direct obligation to grant access to or surrender it. This obligation may expressly extend to the cryptographic keys, without which the data cannot be read.

The fact that this is not merely a "theoretical risk" is demonstrated by the ECJ's ruling of July 16, 2020 (Case C 311/18, ,,Schrems-II").

We have concluded guarantees with Google in the form of standard data protection clauses pursuant to Art. 46 (2) lit. c GDPR. A copy of the standard data protection clauses can be requested from us.

Use of Google Ads Remarketing

1. Scope of the processing of personal data

We use Google Ads Remarketing of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter: Google referred to as). Google Remarketing is used for retargeting visitors to the online presence for advertising purposes via Google Ads ads. With the help of Google Ads Remarketing, target groups ("similar target groups") can be created who, for example, have called up certain pages. This makes it possible to identify the user on other online presences and display targeted advertising. Google sets a cookie on the user's computer. It personal data can be stored and analyzed, especially the activity of the user (in particular, which pages have been visited and on which elements have been clicked), device and browser information (in particular, the IP address and operating system) (in particular the IP address and the operating system), data about the advertisements displayed (in particular which advertisements were displayed and whether the user clicked on them) and also data from advertising partners (in particular pseudonymized user IDs).
Further information on the processing of data by Google can be found here:  https://policies.google.com/privacy?gl=DE 

2. Purpose of the data processing

The purpose of processing personal data is to specifically address a target group. The cookies stored on the end device of the users recognize them when they visit an online presence and can therefore show them advertising tailored to their interests.

3. Legal basis for the processing of personal data

The legal basis for the processing of the users' personal data is basically the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link:  https://tools.google.com/dlpage/gaoptout? 

With the following link you can disable the use of your personal data by Google:  https://myadcenter.google.com/ 
For more information on how to object to and remove Google's use of your personal data, please visit:  https://policies.google.com/privacy?gl=DE 

Use of Google ReCaptcha

1. Scope of processing of personal data

We use Google ReCaptcha of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland. This tool is intended to check whether a data entry is compliant and has not been made by a bot. For this purpose, Google ReCaptcha analyzes and authenticates the behavior of an online presence visitor with regard to various characteristics. This means that personal data can be stored and evaluated, especially the activity of the user (in particular mouse movements and which elements have been clicked on) and device and browser information (in particular time, the IP address and the operating system). The data is not associated with data that may be collected or used in connection with the parallel use of authenticated Google services such as Gmail.

For more information on the processing of data by Google, please click here:  https://policies.google.com/privacy?gl=DE 

2. Purpose of data processing

The use of Google ReCaptcha serves to protect our online presence from misuse.

3. Legal basis for the processing of personal data

The legal basis for the processing of personal data of users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, by using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

With the following link you can deactivate the use of your personal data by Google:  https://adssettings.google.de 
For more information on how to object to and opt-out of Google, please visit:  https://policies.google.com/privacy?gl=DE 

Use of Mouseflow

1. Scope of processing of personal data

We use the plugin Mouseflow from Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark (hereinafter referred to as: Mouseflow). The Mouseflow plugin records individual, randomly selected, visits. This creates a log of the mouse movements and clicks with the intention of randomly replaying individual online presence visits and deriving potential improvements for the online presence from this. Personal data can be stored and evaluated, in particular evaluated, in particular the activity of the user (especially which pages have been visited and which elements have been clicked on) as well as device and browser information (especially the IP address and the operating system).

Further information on the processing of data by Mouseflow can be found here:  https://mouseflow.de/privacy/ 

2. Purpose of data processing

The use of the Mouseflow plug-in serves to improve the user-friendliness of our online presence and service.

3. Legal basis for the processing of personal data

The legal basis for the processing of the users' personal data is basically the user's consent according to Art. 6 para. 1 p.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law, e.g. for tax and accounting purposes.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. You can prevent the collection as well as the processing of your personal data by Mouseflow by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

With the following link you can deactivate the use of your personal data by Mouseflow:  https://mouseflow.de/opt-out/ 
For more information on how to object to and opt out of Mouseflow, please visit:  https://mouseflow.de/privacy/ 

Use of Trusted Shop - seal of approval with ratings

1. Scope of processing of personal data

We use the Trusted Shops trustbadge to display our Trusted Shops seal of approval and any ratings collected, as well as to offer Trusted Shops products to buyers after they have placed an order. The Trustbadge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne (hereinafter referred to as: Trusted Shops). When the Trustbadge is called up, the web server automatically saves a so-called server log file, which contains, for example, your IP address, the date and time of the request, the amount of data transferred and the requesting provider (access data) and documents the request.

Further personal data is only transmitted to Trusted Shops if you have consented to this, have decided to use Trusted Shops products after completing an order or have already registered for the use of Trusted Shops products. In this case, the contractual agreement between you and Trusted Shops applies.

For more information on the processing of data by TrustedShops, click here:  https://www.trustedshops.de/impressum/ 

2. Purpose of the data processing

The use of Trusted Shops serves the optimal marketing of our offer.

3. Legal basis for the processing of personal data

The legal basis for the processing of personal data of users is basically the consent of the user according to Art. 6 para. 1 p.1 lit. a GDPR.

4. Duration of storage

The access data is automatically deleted no later than 90 days after the end of your visit to the site.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation. You can prevent the collection as well as the processing of your personal data by Trusted Shops by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

You can find more information about objection and removal options vis-à-vis Trusted Shops at:  https://www.trustedshops.de/impressum/ 

Use of Google Tag Manager

1. Scope of processing of personal data

We use the Google Tag Manager (  https://www.google.com/intl/de/tagmanager/  ) of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). With the Google Tag Manager, tags from Google and third-party services can be managed and embedded in a bundle on an online presence. Tags are small code elements on an online presence that are used, among other things, to measure visitor numbers and behavior, to measure the impact of online advertising and social channels, to use remarketing and audience targeting, and to test and optimize online presences. When a user visits the online presence, the current tag configuration is sent to the user's browser. It contains instructions on which tags to trigger. Google Tag Manager triggers other tags, which in turn may collect data. Information on this can be found in the passages on the use of the corresponding services in this privacy policy. Google Tag Manager does not access this data.
You can find more information about Google Tag Manager at  https://www.google.com/intl/de/tagmanager/faq.html  and in Google's privacy policy:  https://policies.google.com/privacy?gl=DE 

2. Purpose of data processing

The purpose of the processing of personal data is the collected and clear management, as well as an efficient integration of third-party services.

3. Legal basis for the processing of personal data

The legal basis for the processing of the users' personal data is basically the user's consent according to Art. 6 para. 1 p.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this Privacy Policy or as required by law. Advertising data in server logs are anonymized by Google deleting parts of the IP address and cookie information after 9 and 18 months, respectively, according to Google.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation. You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of third-party cookies on your computer, by using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

You can also prevent the collection of data generated by the cookie and related to your use of the online presence (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link:  https://tools.google.com/dlpage/gaoptout?hl=de 

With the following link you can deactivate the use of your personal data by Google:  https://adssettings.google.de 
For more information on how to object to and opt-out of Google, please visit:  https://policies.google.com/privacy?gl=DE 

Use of Userlike

1. Scope of the processing of personal data

We use functionalities of the live chat platform Userlike of Userlike UG (haftungsbeschränkt), Probsteigasse 44-46, 50670 Cologne, Germany (hereinafter referred to as: Userlike). You can use the live chat like a contact form, to chat with our employees in almost real time. When starting the chat, personal data is collected:

  • Date and time of the call
  • Amount of data sent
  • First name
  • Name
  • E-mail address

Depending on the course of conversation with our employees, further personal data may occur in the chat, which will be entered by you. The nature of this data depends largely on your request or the problem that you describe to us. In addition, Userlike stores the history of live chats.

The chat widget is loaded in the form of a JavaScript file from AWS Cloudfront of Amazon Web Services, Inc, 410 Terry Avenue North, Seattle WA 98109, United States (hereinafter referred to as: Amazon). The chat widget practically represents the source code that runs on your computer and enables the chat. In the process, data may be transferred to servers of AWS Cloudfront in the USA.

For more information about the processing of data by Userlike, click here:  https://www.userlike.com/de/terms#privacy-policy 

2. Purpose of the data processing

The use of Userlike serves us to enable efficient customer communication. The storage of the chat history serves the purpose of sparing our customers extensive explanations about the history of the inquiry as well as for the constant quality control of our live chat service.

3. Legal basis for the processing of personal data

The legal basis for the processing of users' personal data is basically the user's consent in accordance with Art. 6 Para. 1 S.1 lit. a GDPR.

4. Duration of storage

Your personal information will be stored for as long as necessary to fulfill the purposes described in this privacy policy, consent to storage has been revoked or as required by law. prescribed by law.

5. Revocation and removal option

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation. You can prevent the collection as well as the processing of your personal data by Userlike by preventing the storage of third-party cookies on your computer, using the "Do Not Track" function of a supporting browser, disabling the execution of script code in your browser or using a script blocker such as NoScript (  https://noscript.net/  ) or Ghostery (  https://www.ghostery.com  ).

You can revoke your consent to the processing of data at any time. You can send your revocation at any time by e-mail to us or to  privacy@userlike.com  . You can find more information about objection and removal options vis-à-vis Userlike here:  https://www.userlike.com/de/terms#privacy-policy 

Status December 2022

trusted shops light
4.73
Excellent