privacy

We take data protection seriously

The protection of your privacy when processing personal data is an important concern for us. When

you visit our website, our web servers store the IP of your Internet service provider, the website from

which you visit us, the web pages you visit on our site and the date and duration of your visit as

standard. This information is essential for the technical transmission of the web pages and secure

server operation. There is no personalized evaluation of this data.

If you send us data via the contact form, this data will be stored on our servers as part of the data

backup process. Your data will only be used by us to process your request. Your data will be treated

as strictly confidential. It will not be passed on to third parties.

Responsible person:

Schwarzfischer GmbH

Bahnhofstraße 12

3426 Roding

Phone: +49 (0) 9461 / 914709-0

E-mail: info@auktionen-schwarzfischer.de

Personal data

Personal data is data about your person. This includes your name, your address and your e-mail

address. You do not have to disclose any personal data in order to visit our website. In some cases,

we need your name and address as well as other information in order to be able to offer you the

requested service.

The same applies if we supply you with information material on request or if we answer your

inquiries. In these cases, we will always point this out to you. Furthermore, we only store the data

that you have transmitted to us automatically or voluntarily.

When you use one of our services, we generally only collect the data that is necessary to provide you

with our service. We may ask you for further information, but this is voluntary. Whenever we process

personal data, we do so in order to be able to offer you our service or to pursue our commercial

objectives.

Contact us

When contacting us (e.g. by contact form, e-mail, telephone or via social media), the data of the

inquiring persons are processed insofar as this is necessary to answer the contact inquiries and any

requested measures.

The response to contact requests in the context of contractual or pre-contractual relationships is

carried out to fulfill our contractual obligations or to respond to (pre)contractual inquiries and

otherwise on the basis of the legitimate interests in responding to the inquiries.

Processed data types: Inventory data (e.g. names, addresses), Contact data (e.g. e-mail, telephone numbers), Content data (e.g. entries in online forms).
Affected persons: Communication partner.
Purposes of processing: Contact requests and communication.
Legal bases: Contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 lit. b. GDPR),

Legitimate interests (Art. 6 para. 1 lit. f. GDPR).

Automatically saved data

Server log files

The provider of the pages automatically collects and stores information in so-called server log files,

which your browser automatically transmits to us. These are

Date and time of the request
Name of the requested file
Page from which the file was requested
Access status (file transferred, file not found, etc.)
Web browser and operating system used
Complete IP address of the requesting computer
Amount of data transferred

This data is not merged with other data sources. Processing is carried out in accordance with Art. 6

para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of

our website.

For reasons of technical security, in particular to defend against attempted attacks on our web

server, this data is stored by us for a short time. It is not possible for us to identify individual persons

from this data. After seven days at the latest, the data is anonymized by shortening the IP address at

domain level so that it is no longer possible to establish a link to the individual user. The data is also

processed in anonymized form for statistical purposes; it is not compared with other databases or

passed on to third parties, even in excerpts.

Cookies

When you visit our website, we may store information on your computer in the form of cookies.

Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists

of a string of characters through which websites and servers can be assigned to the specific Internet

browser in which the cookie was stored. This enables the websites and servers visited to distinguish

the individual browser of the data subject from other Internet browsers that contain other cookies. A

specific Internet browser can be recognized and identified via the unique cookie ID.

By using session cookies, the controller can provide users of this website with a user-friendly service

that would not be possible without the use of cookies. Without consent, we only use technically

necessary cookies on the legal basis of legitimate interest in accordance with Art. 6 para. 1 lit. f

GDPR.

Facebook & Instagram Pixel

This website uses Facebook's visitor action pixel to measure conversions. The provider of this service

is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to

Facebook, the data collected is also transferred to the USA and other third countries.

In this way, the behavior of site visitors can be tracked after they have clicked on a

Facebook ad were redirected to the provider's website. This allows the

Effectiveness of Facebook ads evaluated for statistical and market research purposes

and future advertising measures can be optimized.

The data collected is anonymous for us as the operator of this website; we cannot draw any

conclusions about the identity of the user. However, the data is stored and processed by Facebook so

that a connection to the respective user profile is possible and Facebook can use the data for its own

advertising purposes in accordance with the Facebook Data Usage Policy. This allows Facebook to

place advertisements on Facebook pages and outside of Facebook. This use of the data cannot be

influenced by us as the site operator.

The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and 25

para. 1 TDDDG. Consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission.

Facebook is also certified in accordance with the Data Privacy Framework Program.

https://www.facebook.com/legal/EU_data_transfer_addendum and

https://de-de.facebook.com/help/566994660333381.

Facebook is also certified in accordance with the Date Privacy Framework.

Insofar as personal data is collected on our website with the help of the tool described here and

forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal

Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 GDPR). The joint

responsibility is limited exclusively to the collection of the data and its transfer to Facebook. The

processing carried out by Facebook after forwarding is not part of the joint responsibility. The

obligations incumbent on us jointly have been set out in an agreement on joint processing. You can

find the wording of the agreement at

https://www.facebook.com/legal/controller_addendum. According to this agreement, we are

responsible for providing data protection information when using the Facebook tool and for the

secure implementation of the tool on our website in accordance with data protection law. Facebook

is responsible for the data security of Facebook products. You can assert data subject rights (e.g.

requests for information) regarding the data processed by Facebook directly with Facebook. If you

assert your data subject rights with us, we are obliged to forward them to Facebook.

You can find further information on protecting your privacy in Facebook's privacy policy: https://de-

de.facebook.com/about/privacy/.

You can also activate the remarketing function "Custom Audiences" in the Settings for

Deactivate advertisements at

https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. In addition

you must be logged in to Facebook.

jsDelivr CDN

This website uses a so-called "Content Delivery Network" (CDN) from jsDelivr.

A CDN is a service used to deliver the content of our online offering, in particular large media files

such as graphics or scripts, more quickly with the help of regionally distributed servers connected via

the Internet. User data is processed exclusively for the above-mentioned purposes and to maintain

the security and functionality of the CDN.

For this purpose, the browser you are using must establish a connection to the CDN servers. The CDN

then becomes aware that our website has been accessed via your IP address.

The use is based on our legitimate interests, namely the interest in a secure and efficient provision,

analysis and optimization of our online offer in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR.

Further information can be found in the privacy policy of jsDelivr: https://www.jsdelivr.com/privacy-

policy-jsdelivr-net/

Customer account

Contractual partners can create an account within our online offer (e.g. customer or user account,

"customer account" for short). If the registration of a customer account is required, contractual

partners will be informed of this as well as of the information required for registration. Customer

accounts are not public and cannot be indexed by search engines. The following data is processed

during registration:

Last name, first name, user name
Address
Date of birth
E-mail address
Phone number
Company name

As part of the registration process and subsequent logins and use of the customer account, we store

the IP addresses of customers together with the access times in order to be able to prove registration

and prevent any misuse of the customer account.

If customers have terminated their customer account, the data relating to the customer account will

be deleted, unless their retention is required for legal reasons. It is the customer's responsibility to

back up their data when the customer account is terminated. The legal basis for data processing is

therefore Art. 6 para. 1 lit. b GDPR.

Auction catalogs

We process the data of our customers in order to enable them to select, purchase or auction the

selected products and goods, as well as their payment and delivery or execution. If necessary for the

execution of an order, we use service providers, in particular postal, forwarding and shipping

companies, to carry out the delivery or execution to our customers. We use the services of banks and

payment service providers to process payment transactions. The required information is marked as

such in the order or comparable purchase process and includes the information required for delivery

or provision and billing as well as contact information in order to be able to hold any consultations.

Processed data types: Inventory data (e.g. names, addresses), Payment data (e.g. bank details, invoices, payment history), Contact data (e.g. e-mail, telephone numbers), Contract data (e.g. contract object, duration, customer category), Usage data (e.g. websites visited, interest in content, access times), Meta/communication data (e.g. device information, IP addresses).

Affected persons: Interested parties, business and contractual partners, customers.

Purposes of Processing: Provision of contractual services and customer support, Contact requests and communication, Office and organizational procedures, Managing and responding to inquiries, Security measures, Conversion tracking (Measurement of the effectiveness of marketing activities), Interest-based and behavioral marketing, Profiling (Creating user profiles).

Legal basis: Fulfillment of contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit.

GDPR), Legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR), Legitimate interests (Art. 6

para. 1 sentence 1 lit. f. GDPR).

Payment service provider

As part of contractual and other legal relationships, due to legal obligations or otherwise on the basis

of our legitimate interests, we offer the data subjects efficient and secure payment options and use

other payment service providers in addition to banks and credit institutions (collectively referred to as "payment service providers").

The data processed by the payment service providers includes inventory data, such as the name and

address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and recipient-related information. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. This means that we do not receive any account or credit card-related information, but only information with confirmation or negative information about the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the general terms and conditions and the data protection information of the payment service providers.

Payment transactions are subject to the terms and conditions and the data protection notices of the

respective payment service providers, which can be accessed on the respective websites or transaction applications. We also refer to these for further information and the assertion of rights of revocation, information and other rights of data subjects.

Transportation service provider

For the purpose of delivering ordered goods, we work together with logistics service

providers/transport companies and/or shipping partners to whom the following data is transmitted

for the purpose of delivering the ordered goods or for the purpose of shipment notification: First name, last name, postal address and, if applicable, the e-mail address and, if applicable, the telephone number. The legal basis for processing is Art. 6(1)(b) GDPR.

Online presence on social media

If you have given your consent to the respective social media operator in accordance with Art. 6

para. 1 sentence 1 lit. a GDPR, your data will be automatically collected and stored for market

research and advertising purposes when you visit our online presences on our social media channels,

from which user profiles are created using pseudonyms. These can be used, for example, to place

advertisements within and outside the platforms that presumably correspond to your interests.

Cookies are generally used for this purpose. For detailed information on the processing and use of

the data by the respective social media operator as well as a contact option and your rights and

setting options for protecting your privacy, please refer to the respective linked data protection

notices of the providers on their websites. If you still need help in this regard, you can contact us.

Security

We have taken technical and administrative security precautions to protect your personal data

against loss, destruction, manipulation and unauthorized access. All our employees and service

providers working for us are obliged to comply with the applicable data protection laws.

Whenever we collect and process personal data, it is encrypted before it is transmitted. This means

that your data cannot be misused by third parties. Our security precautions are subject to a

continuous improvement process and our data protection declarations are constantly being revised.

Please ensure that you have the latest version.

Which data is processed and from which sources does this data originate?

We process the data that we have received from you in the context of contract initiation or

processing, on the basis of consent or in the context of your application to us or in the context of

your employment with us.

Personal data includes the following

Customers: First and last name, address, contact details (e-mail address, telephone number, fax), bank details.
Applicants and employees: first name and surname, address, contact details (e-mail address, telephone number, fax), date of birth, data from CV and references, bank details, religious affiliation, photographs.
Business partners: the name of their legal representatives, company name, commercial register number, VAT number, company number, address, contact details (e-mail address, telephone number, fax), bank details.

In addition, we also process the following other personal data:

Information on the type and content of contract data, order data, sales and document data, customer and supplier history and consulting documents,
Advertising and sales data,
other data that we have received from you in the course of our business relationship (e.g. in discussions with customers),
Data that we generate ourselves from master / contact data and other data, e.g. by means of customer demand and customer potential analyses,
Photographs taken as part of events.

For what purposes and on what legal basis is the data processed?

We process your data in accordance with the provisions of the General Data Protection Regulation

(GDPR) and the Federal Data Protection Act 2018 as amended:

for the fulfillment of (pre-)contractual obligations (Art. 6 para. 1 lit. b GDPR):

Your data is processed online for contract processing or in analog form at our location for

contract processing for your employees in our company. The data is processed in particular

when initiating business and when executing contracts with you.

for the fulfillment of legal obligations (Art. 6 para. 1 lit. c GDPR):

The processing of your data is necessary for the purpose of fulfilling various legal obligations,

e.g. from the German Commercial Code or the German Fiscal Code.

to safeguard legitimate interests (Art. 6 para. 1 lit. f GDPR):

Based on a balancing of interests, data may be processed beyond the actual fulfillment of the

contract to protect our legitimate interests or those of third parties. Data processing to

protect legitimate interests takes place in the following cases, for example:

advertising
measures for business management and the further development of services and products;
within the scope of legal prosecution Sending of non-sales-promoting information and press releases. or marketing,

within the scope of your consent (Art. 6 para. 1 lit. a GDPR):

If you have given us your consent to process your data, e.g. to send you our newsletter,

publish photos, competitions, etc., we will use your data for this purpose.

Processing of personal data for advertising purposes

You can object to the use of your personal data for advertising purposes at any time, either as a

whole or for individual measures, without incurring any costs other than the transmission costs

according to the basic rates.

Under the legal requirements of Section 7 (3) UWG, we are entitled to use the e-mail address you

provided when concluding the contract for direct advertising for our own similar goods or services.

You will receive these product recommendations from us regardless of whether you have subscribed

to a newsletter.

If you do not wish to receive such recommendations from us by e-mail, you can object to the use of

your address for this purpose at any time without incurring any costs other than the transmission

costs according to the basic rates. A message in text form is sufficient for this. Of course, every e-mail

always contains an unsubscribe link.

Who receives my data?

If we use a service provider in the sense of commissioned processing, we nevertheless remain

responsible for the protection of your data. All processors are contractually obliged to treat your

data confidentially and to process it only within the scope of providing the service. The processors

commissioned by us will receive your data if they require the data to perform their respective

service. These are, for example, IT service providers that we require for the operation and security of

our IT system as well as advertising and address publishers for our own advertising campaigns.

In the event of a legal obligation and in the context of legal prosecution, authorities and courts as

well as external auditors may be recipients of your data.

In addition, insurance companies, banks, credit agencies and service providers may be recipients of

your data for the purpose of contract initiation and fulfillment.

How long will my data be stored?

We process your data until the end of the business relationship or until the expiry of the applicable

statutory retention periods (e.g. from the German Commercial Code, the German Fiscal Code or the

Working Hours Act); in addition, until the end of any legal disputes in which the data is required as

evidence. In addition, your data will be deleted when the purpose of storage has been fulfilled and

there are no legal retention periods to the contrary.

Is personal data transferred to a third country?

In principle, we do not transfer any data to a third country. In individual cases, data will only be

transferred on the basis of an adequacy decision by the European Commission, standard contractual

clauses, suitable guarantees or your express consent.

What data protection rights do I have?

You have the right to information, correction, deletion or restriction of the processing of your stored

data, a right to object to the processing as well as a right to data portability and to complain in

accordance with the requirements of data protection law.

Right to information:

You can request information from us as to whether and to what extent we process your data.

Right to rectification:

If we process your data that is incomplete or incorrect, you can request that we correct or complete

it at any time.

Right to erasure:

You can demand that we erase your data if we process it unlawfully or if the processing

disproportionately interferes with your legitimate protection interests. Please note that there may

be reasons that prevent immediate erasure, e.g. in the case of statutory retention obligations.

Irrespective of the exercise of your right to erasure, we will erase your data immediately and

completely, provided that there is no legal or statutory retention obligation to the contrary.

Right to restriction of processing:

You can request that we restrict the processing of your data if

you contest the accuracy of the data, for a period enabling us to verify the accuracy of the data.
The processing of the data is unlawful, but you refuse to have it erased and instead request that the use of the data be restricted,
We no longer need the data for the intended purpose, but you still need this data to assert or defend legal claims, or you have objected to the processing of the data.

Right to data portability:

You may request that we provide you with the data you have provided to us in a structured,

commonly used and machine-readable format and that you may transmit this data to another

controller without hindrance from us, provided that

We process this data on the basis of your revocable consent or for the performance of a contract between us, and
this processing is carried out using automated procedures. If technically feasible, you can request that we transfer your data directly to another controller.

Right of objection:

If we process your data for legitimate interests, you can object to this data processing at any time;

this would also apply to profiling based on these provisions. We will then no longer process your data

unless we can demonstrate compelling legitimate grounds for the processing which override your

interests, rights and freedoms or the processing serves the establishment, exercise or defense of

legal claims. You can object to the processing of your data for the purpose of direct advertising at any

time without giving reasons.

Right of appeal:

If you are of the opinion that we are violating German or European data protection law when

processing your data, please contact us so that we can clarify any questions you may have. Of course,

you also have the right to contact the supervisory authority responsible for you, the respective state

office for data protection supervision.

If you wish to assert one of these rights against us, please contact our data protection officer. In case

of doubt, we may request additional information to confirm your identity.

Am I obliged to provide data?

The processing of your data is necessary for the conclusion or fulfillment of the contract you have

entered into with us. If you do not provide us with this data, we will generally have to refuse to

conclude the contract or will no longer be able to perform an existing contract and will therefore

have to terminate it. However, you are not obliged to give your consent to data processing with

regard to data that is not relevant or legally required for the fulfillment of the contract.

Changes to this privacy policy

We reserve the right to change our privacy policy if this should be necessary due to new

technologies. Please ensure that you have the latest version. If fundamental changes are made to

this privacy policy, we will announce these on our website.