Privacy Policy

Achtung, nochmal checken!

The controller responsible for data processing is:

GEDA-Labels GmbH
represented by the Managing Directors
Gerald Knetsch and Daniel Rood
Gropiusstr. 3
31137 Hildesheim

Email: info@gedalabels.de
Phone: +49 5121 703130

We appreciate your interest in our online presence. Protecting your privacy is very important to us. Below we provide detailed information on how we handle your data.

1. Access Data and Hosting

You can visit our websites without providing any personal information. Each time a website is accessed, the web server automatically stores a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of access, the amount of data transferred, and the requesting provider (“access data”), and documents the access.

These access data are evaluated exclusively for the purpose of ensuring the smooth operation of the site and improving our service. This serves to safeguard our legitimate interests in a correct presentation of our offering pursuant to Art. 6(1) sentence 1 lit. f GDPR. All access data are deleted no later than fourteen days after your visit.

Hosting Services for hosting and displaying the website are partly provided by our service providers as part of processing on our behalf. Unless otherwise stated in this privacy policy, all access data and all data collected via forms on this website are processed on their servers. For questions regarding our service providers and the basis of our cooperation with them, please refer to the contact details provided in this privacy policy.

2. Data Processing for Contract Fulfilment and Customer Contact

2.1 Data Processing for Contract Fulfilment

For the purpose of contract processing (including inquiries and the handling of any existing warranty or performance issues as well as statutory update obligations) pursuant to Art. 6(1) sentence 1 lit. b GDPR, we collect personal data if you voluntarily provide them to us as part of your order. Mandatory fields are marked as such because we require these data for contract processing, and without them we cannot complete your order. The specific data collected are evident from the respective input forms.

Further information on the processing of your data—particularly regarding the transfer to our service providers for order, payment, and shipment processing—can be found in the sections below. After full completion of the contract, your data will be restricted for further processing and deleted after expiry of statutory tax and commercial retention periods pursuant to Art. 6(1) sentence 1 lit. c GDPR unless you have expressly consented to further use pursuant to Art. 6(1) sentence 1 lit. a GDPR or we reserve the right to further data use as permitted by law and described in this policy.

2.2 Contacting Us

In the context of customer communication, we collect personal data in order to process your inquiries pursuant to Art. 6(1) sentence 1 lit. b GDPR if you voluntarily provide these when contacting us (e.g., via contact form or email). Mandatory fields are marked as such because we require these data to process your inquiry. The data collected are evident from the input forms of the respective online marketplace operators. After your inquiry has been fully processed, your data will be deleted unless you have expressly consented to further use or unless we reserve the right to further data use as permitted by law and described in this policy.

3. Data Processing for Shipping Purposes

To fulfil the contract pursuant to Art. 6(1) sentence 1 lit. b GDPR, we transfer your data to the shipping service provider commissioned with the delivery, insofar as this is necessary to deliver the ordered goods. If you have questions regarding our service providers and the basis of our cooperation, please contact us using the details provided in this privacy policy.

4. Transfer of Data to Shipping Providers for Delivery Notification

If you have given your explicit consent during or after your order, we will transmit your email address to the chosen shipping provider in accordance with Art. 6(1) sentence 1 lit. a GDPR so they may contact you prior to delivery for shipment notification or coordination.

Consent may be revoked at any time by contacting us via the details provided in this privacy policy, or by contacting the shipping provider directly at the address listed below. After revocation, we delete the data provided for this purpose unless you have expressly consented to further use or unless we reserve the right to further data use as permitted by law and described in this policy.

DHL Paket GmbH Sträßchensweg 10 53113 Bonn Germany

DPD Deutschland GmbH Wailandtstraße 1 63741 Aschaffenburg Germany

5. Cookies and Other Technologies

General Information To make visiting our website attractive and to enable certain features, we use technologies on various pages, including so-called cookies. Cookies are small text files that are automatically stored on your device. Some cookies are deleted at the end of your browser session (“session cookies”), while others remain stored to recognize your browser upon your next visit (“persistent cookies”). The duration of storage is available in your browser’s cookie settings.

Protection of Privacy on End Devices We use strictly necessary technologies to provide the telemedia service expressly requested. Storing or accessing information on your device that is not strictly required requires your consent. Please note that if you do not grant consent, certain parts of the website may not function fully.

Subsequent Data Processing by Cookies and Other Technologies We use technologies essential for the functionality of our website. These may collect and process IP addresses, visit time, device/browser information, and usage data. This serves our legitimate interests pursuant to Art. 6(1) lit. f GDPR.

We also use technologies to fulfil legal obligations (e.g., proof of consent) and for web analytics and online marketing. Details follow in later sections.

Cookie Settings Browser cookie settings can be found here:  Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

You may withdraw your consent at any time by contacting us using the details in this privacy policy.

6. Use of cookies and other third-party technologies

We use the following cookies and other third-party technologies on our website. Unless otherwise specified for individual technologies, this is done on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. Once the purpose has been fulfilled and we have stopped using the respective technology, the data collected in this context will be deleted. You can revoke your consent at any time with effect for the future. Further information on your revocation options can be found in the section “Cookies and other technologies.” Further information, including the basis of our cooperation with the individual providers, can be found under the individual technologies. If you have any questions about the providers and the basis of our cooperation with them, please contact us using the contact details provided in this privacy policy.

6.1 Use of Google services

We use the following technologies from Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google technologies about your use of our website is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, and stored there. Unless otherwise specified for the individual technologies, data processing is based on an agreement concluded for the respective technology between jointly responsible parties in accordance with Art. 26 GDPR. Further information about data processing by Google can be found in Google's privacy policy.

Our service providers are based and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision.

Our service providers are located and/or use servers in countries outside the EU and the EEA. No adequacy decision has been made by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses of the European Commission.

We use the following technologies from Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google technologies about your use of our website is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, and stored there. Unless otherwise specified for the individual technologies, data processing is based on an agreement concluded for the respective technology between jointly responsible parties in accordance with Art. 26 GDPR. Further information about data processing by Google can be found in Google's privacy policy.

Our service providers are based and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision.

Our service providers are located and/or use servers in countries outside the EU and the EEA. No adequacy decision has been made by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses of the European Commission.

Google Analytics

For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information, and information about your use of our website), from which usage profiles are created using pseudonyms. Cookies may be used for this purpose. If you visit our website from the EU, your IP address is stored on a server located in the EU to derive location data and is then immediately deleted before the traffic is forwarded to other Google servers for processing. Data processing is based on an agreement on order processing by Google.

For web analysis, the extension function of Google Analytics Google Signals enables so-called “cross-device tracking.” If your Internet-enabled devices are linked to your Google account and you have activated the “personalized advertising” setting in your Google account, Google can create reports on your usage behavior (in particular, cross-device user numbers), even if you change your device. We do not process any personal data in this regard; we only receive statistics generated on the basis of Google Signals.

Google Ads

For advertising purposes in Google search results and on third-party websites, when you visit our website, the so-called Google remarketing cookie is set, which automatically enables interest-based advertising by collecting and processing data (IP address, time of visit, device and browser information, and information about your use of our website) and using a pseudonymous cookie ID and based on the pages you have visited. Any further data processing only takes place if you have activated the “personalized advertising” setting in your Google account. In this case, if you are logged into Google while visiting our website, Google uses your data together with Google Analytics data to create and define target group lists for cross-device remarketing.

For website analysis and event tracking, we use Google Ads Conversion Tracking to measure your subsequent usage behavior if you have accessed our website via a Google Ads advertisement. For this purpose, cookies may be used and data (IP address, time of visit, device and browser information, and information about your use of our website based on events specified by us, such as visiting a website or forwarding) may be collected, from which usage profiles are created using pseudonyms.

Google reCAPTCHA

For the purpose of protecting against misuse of our web forms and spam from automated software (so-called bots), Google reCAPTCHA collects data (IP address, time of visit, browser information, and information about your use of our website) and analyzes your use of our website using JavaScript and cookies. In addition, other cookies stored in your browser by Google services are evaluated. No personal data is read or stored from the input fields of the respective form.

Google Tag Manager

Google Tag Manager allows us to manage various codes and services on our website. When implementing the individual tags, Google may also process personal data (e.g., IP address, online identifiers (including cookies)). Data processing is based on an agreement on order processing by Google.

The use of Google Tag Manager allows various services/technologies to be integrated.

If you do not want individual tracking services to be used and have therefore deactivated them, the deactivation will remain in place for all affected tracking tags that are integrated via Google Tag Manager.

6.2 Use of Facebook services

Use of Facebook Pixel

We use Facebook Pixel as part of the technologies described below from Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Facebook (by Meta)” or “Meta Platforms Ireland”). Facebook Pixel automatically collects and stores data (IP address, time of visit, device and browser information, and information about your use of our website based on events specified by us, such as visiting a website or being redirected to a linked online marketplace), from which usage profiles are created using pseudonyms. As part of what is known as extended data matching, information that can be used to identify individuals (e.g., names, email addresses, and phone numbers) is also collected and stored in hashed form for matching purposes. To this end, when you visit our website, Facebook Pixel automatically sets a cookie that uses a pseudonymous cookie ID to automatically recognize your browser when you visit other websites. Facebook (by Meta) will merge this information with other data from your Facebook account and use it to compile reports on website activity and to provide other services related to website usage, in particular personalized and group-based advertising.

The information automatically collected by Facebook (by Meta) technologies about your use of our website is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. Further information about data processing by Facebook can be found in the privacy policy of Facebook (by Meta).

Our service providers are based and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA serves as the basis for third-country transfers, provided that the respective service provider is certified. Certification is available.

Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision by the European Commission for these countries. Our cooperation with them is based on these guarantees: Standard data protection clauses of the European Commission.

Facebook Analytics

As part of Facebook Business Tools, statistics on visitor activity on our website are compiled from the data collected by Facebook Pixel about your use of our website. Data processing is based on an agreement on order processing by Facebook (by Meta). Your analysis serves to optimize the presentation and marketing of our website.

Facebook Ads (Ads Manager)

We use Facebook Ads to advertise this website on Facebook (by Meta) and other platforms. We determine the parameters of each advertising campaign. Facebook (by Meta) is responsible for the exact implementation, in particular the decision on the placement of ads for individual users. Unless otherwise specified for the individual technologies, data processing is based on an agreement between joint controllers in accordance with Art. 26 GDPR. Joint responsibility is limited to the collection of data and its transfer to Meta Platforms Ireland. The subsequent data processing by Meta Platforms Ireland is not covered by this.

Based on the statistics generated by Facebook Pixel about visitor activity on our website, we use Facebook Custom Audience to run group-based advertising on Facebook (by Meta) by determining the characteristics of the respective target group. Facebook (by Meta) acts as our data processor in the context of the extended data matching (see above) that takes place to determine the respective target group.

Based on the pseudonymous cookie ID set by Facebook Pixel and the data collected about your usage behavior on our website, we use Facebook Pixel Remarketing to deliver personalized advertising.

We use Facebook Pixel Conversions to measure your subsequent usage behavior for web analysis and event tracking if you have accessed our website via an advertisement from Facebook Ads. Data processing is based on an agreement on order processing by Facebook (by Meta).

7. Social media

7.1 Social buttons from Facebook (by Meta), Instagram (by Meta), Pinterest

Our website uses social buttons from social networks. These are only integrated into the page as HTML links, so that no connection to the servers of the respective provider is established when you visit our website. If you click on one of the buttons, the website of the respective social network opens in a new window of your browser, where you can, for example, click the Like or Share button.

7.2 Our online presence on Facebook (by Meta), Instagram (by Meta), YouTube, Pinterest, LinkedIn

If you have given your consent to the respective social media operator in accordance with Art. 6 (1) (a) GDPR, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presence on the above-mentioned social media platforms, from which usage profiles are created using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that are likely to be of interest to you. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as contact details and your rights and settings options for protecting your privacy, please refer to the providers' privacy policies linked below. If you still need help in this regard, please contact us.

Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. Data processing in connection with visits to a Facebook (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. Further information (information on Insights data) can be found here.

Our service providers are based and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA serves as the basis for third-country transfers, provided that the respective service provider is certified. Certification has been obtained.
Our service providers are based and/or use servers in the following countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico.
No adequacy decision has been made by the European Commission for these countries. Our cooperation with them is based on the following guarantees: Standard data protection clauses of the European Commission.

Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd., Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is usually transferred to a server of Meta Platforms, Inc., 1601 Willow Road, Menlo Park, CA 94025, USA, Menlo Park, is transferred and stored there. Data processing in connection with visits to an Instagram (by Meta) fan page is based on an agreement between joint controllers in accordance with Art. 26 GDPR. Further information (information on insights data) can be found here.
Our service providers are based and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina.

The adequacy decision for the USA serves as the basis for third-country transfers, provided that the respective service provider is certified. Certification has been obtained.
Our service providers are based and/or use servers in the following countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico.
No adequacy decision has been made by the European Commission for these countries. Our cooperation with you is based on these guarantees: Standard data protection clauses of the European Commission.

YouTube is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The information automatically collected by Google about your use of our online presence on YouTube is usually transferred to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, and stored there.

Our service providers are based and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision.
Our service providers are located and/or use servers in countries outside the EU and the EEA. No adequacy decision has been made by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses of the European Commission.

Pinterest is a service provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”). The information automatically collected by Pinterest about your use of our online presence on Pinterest is usually transferred to a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA, and stored there.

Our service providers are located and/or use servers in countries outside the EU and the EEA for which the European Commission has determined an adequate level of data protection by decision. Our service providers are located and/or use servers in countries outside the EU and the EEA. No adequacy decision has been made by the European Commission for these countries. Our cooperation with them is based on standard data protection clauses of the European Commission.

LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is usually transferred to a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, and stored there.

Our service providers are located and/or use servers in the following countries, for which the European Commission has determined an adequate level of data protection by decision: USA. The adequacy decision for the USA serves as the basis for third-country transfers, provided that the respective service provider is certified. Certification has been granted.

8. Contact options and your rights

8.1 Your rights

As a data subject, you have the following rights:

• pursuant to Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;
• pursuant to Art. 16 GDPR, the right to request the immediate correction of inaccurate or incomplete personal data stored by us;
• pursuant to Art. 17 GDPR, the right to request the deletion of your personal data stored by us, unless further processing is necessary
• to exercise the right of freedom of expression and information;
• to fulfill a legal obligation;
• for reasons of public interest; or
• to assert, exercise, or defend legal claims is necessary;
• in accordance with Art. 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as
• the accuracy of the data is disputed by you;
• the processing is unlawful, but you refuse to have it deleted;
• we no longer need the data, but you need it to assert, exercise, or defend legal claims; or
• you have objected to the processing pursuant to Art. 21 GDPR;
• pursuant to Art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request its transfer to another controller;
• the right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose.

Right to object
If we process personal data as described above in order to protect our legitimate interests, which prevail in the context of a balancing of interests, you can object to this processing with effect for the future. If the processing is carried out for direct marketing purposes, you can exercise this right at any time as described above. If the processing is carried out for other purposes, you only have the right to object if there are reasons arising from your particular situation.

After you exercise your right to object, we will no longer process your personal data for these purposes, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend legal claims.
This does not apply if the processing is for direct marketing purposes. In this case, we will no longer process your personal data for this purpose.

8.2 Contact options

If you have any questions about the collection, processing, or use of your personal data, or if you wish to request information, correction, restriction, or deletion of data, or revoke consent or object to a specific use of data, please contact us directly using the contact details in our legal notice.