General Data Protection Regulation

I. Name and address of the responsible

The responsible person by means of General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is:
Company
Autohaus Mörgenthaler
Owner Christoph Mörgenthaler
Bühlstraße 16
89407 Dillingen
Germany
Phone: +49 (0)9074 1329
Email: ch.moergenthaler@autohaus-moergenthaler.de

 

II. General information on data processing

1. Extent of processing of personal data
We only process personal data of our users to the necessary extent for the provision of a functioning website as well as our content and services. The processing of personal data of our users takes place regularly only with the approval of the user. An exception applies to cases in which prior approval can not be obtained for reasons of fact and the processing of the data is permitted by law.
Each time our website is accessed, our system automatically collects data and information from the computer system of the calling computer.
The following data is collected here:
● Information about the browser type
● The operating system of the user
● The Internet service provider of the user
● The IP address of the user
● Date and time of access
● Websites from which the system of the user comes to our website
● Websites that are accessed by the user’s system through our website

2. Legal basis for data processing
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.
Insofar as processing of personal data is required to fulfill a legal obligation that is subject to our company, Art. 6 para. 1 lit. c GDPR is the legal basis.
In the event that vital interests of the data subject or another natural person requires the processing of personal data, Art. 6 para. 1 lit. d GDPR is the legal basis.
If processing is necessary to safeguard the legitimate interests of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not prevail over the first interest, Art. 6 para. 1 lit. f GDPR is the legal basis.

3. Purpose of data processing
The temporary storage of the IP address by the system is necessary to allow delivery of the website to the computer of the user. To do this, the user’s IP address must be kept for the duration of the session.
For these purposes, our legitimate interest is on the processing of data according to Art. 6 para. 1 lit. f. GDPR.

4. Duration of storage
The data will be deleted as soon as it is no longer necessary to their ascertainment. In the case of collecting the data for providing the website, this is the case when the respective session is completed.
In the case of storing the data in log files, this is the case at the latest after seven days.
A home storage about it is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

5. Objection and removal possibility
The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no contradiction on the part of the user.

 

III. More features and offers of our website

1. For the purely informational use of our website we offer the calculator from the Europa Bank and the route planning of Google Maps. In this case, only data is collected, which must be collected as described above in section 1. Extent of processing of personal data in order to be able to offer you the services on our website.
2. The temporary storage of the IP address by the system is necessary to allow the delivery of the website to the computer of the user.
3. The data will be deleted as soon as it is no longer necessary to their ascertainment.

 

IV. Your rights

● Right to information (Article 15 GDPR)
● Right to correction of incorrect data (Art. 16 GDPR)
● Right to extinction (Art. 17 GDPR)
● Right to restriction of the processing of personal data (Art. 18 GDPR)
● Right to objection (Article 21 GDPR)
● Right to complain to a data protection supervisory authority (Article 77 GDPR)
To exercise your rights, please contact the contact address listed in section I.
If you believe that the processing of your data violates data protection law or your privacy claims have otherwise been violated in any way, you may also complain to a regulatory agency.