Privacy Policy

Data Protection Declaration

The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data means all the data by which you can be personally identified. Detailed information on data protection is provided below.

  1. Parties responsible
  2. a) Companies

 

The party responsible within the meaning of the General Data Protection Regulation (GDPR), other data protection legislation applicable in the Member States of the European Union, and other legal provisions pertaining to data protection, is:

 

Fentiman's USA, Inc.

71 McMurray Road, Suite 104,

Pittsburgh, PA 15214

TEL: 800-365-1910

EMAIL: consumerinquiries@fentimans.usbackoffice.com

 

  1. b) Data Protection Officer

 

Fentiman's USA, Inc.

71 McMurray Road, Suite 104,

Pittsburgh, PA 15214

TEL: 800-365-1910

EMAIL: consumerinquiries@fentimans.usbackoffice.com

 

 

The above has been appointed as data protection officer, in accordance with the GDPR, in order to ensure and check compliance with data protection.

 

  1. Overview of the legal basis for data processing

Art. 6 I (a) GDPR provides our company with the legal basis for processing procedures for which we obtain consent for a specific processing purpose. If the processing of personal data is required to fulfill a contract for which the contracting party is the data subject, as is the case, for example, with processing procedures that are necessary for the supply of goods or the provision of some other service or reciprocal service, then this processing is based on Art. 6 I (b) GDPR. The same applies to such procedures as are required in order to take precontractual action, such as inquiries about our products or services. If our company is subject to a statutory obligation under which the processing of personal data is required, such as, for example, compliance with tax obligations, then the processing is governed by Art. 6 I (c) GDPR. Ultimately, processing procedures may be governed by Art. 6 I (f) GDPR. Processing procedures that do not fall under any of the other legal principles referred to earlier are based on this legal precept, if processing is required in order to safeguard the legitimate interests of our company or of a third party, provided that the interests, fundamental rights and freedoms of the data subject do not take precedence.

 

 

  1. Data acquisition and data processing on our website
  2. a) Cookies

The Internet pages of Fentiman's USA use cookies to a certain extent. Cookies do not damage your computer and do not contain any viruses. Cookies make what we have to offer more user friendly, more effective and more secure. Cookies are small text files which are deposited on a computer system, by way of an Internet browser, and are stored there.

 

Most of the cookies we use are what are referred to as “session cookies.” They are automatically deleted after the end of your visit. Other cookies remain stored on your computer until you delete them. These cookies allow us to recognize your browser the next time you pay a visit.

 

You can set up your browser in such a way that you are informed when cookies are enabled and you can allow cookies only in individual cases, accept cookies in specific cases, or generally exclude them, as well as activating the automatic deletion of cookies when the browser is closed. If you deactivate cookies, the functional performance of this website may be restricted.

 

Cookies that are required in order to perform electronic communication procedures or to provide specific functions you wish to undertake (such as a shopping cart function) are stored on the basis of Art. 6 Para. 1 (f) GDPR. Website operators have a legitimate interest in storing cookies so that their services can be provided free of any technical defects and optimized. When other kinds of cookies are stored (e.g. cookies which analyze your web surfing habits), they are dealt with separately in this Data Protection Declaration.

 

You can object to this data processing at any time if there are reasons that apply to your particular situation and that provide grounds against data processing. An email to the data protection officer is all that is needed.

 

  1. b) Server log files

The providers of the web pages automatically collect and store information in what are referred to as Server Log files, which your browser automatically passes to us. These are:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server inquiry
  • IP address

This data is not combined with other data sources. The personal data in log files is processed on the basis of Art. 6 Para. 1 (f) GDPR. This approval status permits the processing of personal data within the framework of the “legitimate interest” of the data controller, provided that your fundamental rights and freedoms or interests do not take precedence. Our legitimate interest consists of easier administration and the possibility of identifying and tracking hacking attempts. You are entitled to object to this data processing at any time, if there are reasons that apply to your particular situation and which provide grounds against data processing. An email to the data protection officer is all that is needed.

 

  1. c) Contact form

If you have provided us with data by way of our contact form, we will process this to answer your inquiry and any associated questions. As soon as the matter you have raised has been dealt with, we will delete the data; in any event, as a matter of course it will be deleted not later than 18 months after the last active contact on your part.

 

Information provided within this contact will be processed on the basis of Art. 6 Para. 1 (a) GDPR. Your consent/approval permits the processing of your personal data. This is necessary in order for your inquiry to be handled. We shall also process the data on the basis of Art. 6 Para. 1 (f) GDPR. Our legitimate interest lies in the processing of the contact. You are entitled to object to this data  processing if there are reasons that apply to your particular situation and that provide grounds against data processing. An email to the data protection officer is all that is needed.

 

  1. d) Plugins and tools

This website makes use, via an API, of the Google Maps service. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043.

 

To make use of the functions of Google Maps it is necessary to store your IP address. As a rule, this information is transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

 

The use of Google Maps is in the interest of presenting our online offers in an appealing way, and to make it easy to find the locations referred to on the website. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 (f) GDPR.

 

  1. e) SSL and TLS encryption

For security reasons, and to protect the transfer of confidential contents, such as orders or inquiries that you send to us as the site operators, this site makes use of SSL or TLS encryption. You can identify an encrypted connection if the address bar of the browser changes from ‘http://’ to ‘https://’, and by the lock symbol in your browser bar.

If SSL or TLS encryption is activated, the data you send to us cannot be read by third parties.

  1. Routine deletion and blocking of personal data

The data controller will process and store personal data of the data subject only for the period required to fulfill the purpose of its storage or insofar as this has been stipulated by the issuers of European guidelines or directives, or by another legislator in laws or regulations that are mandatory for the data controller. If the purpose of storage ceases to apply, or if a storage period specified by the issuers of European guidelines or directives or by another competent legislator expires, the personal data will be blocked or deleted routinely and in accordance with the provisions of the law.

  1. Rights of the data subject
  2. a) Rights in relation to the data controller

You have the right, on application, to be provided free of charge with information about your stored personal data. In addition to this, you have the right of rectification and erasure of any incorrect data, the right to demand the restriction of processing of data that is being processed too extensively, and the right to the erasure of personal data that is being improperly processed or has been stored too long (provided that this is not prevented by any statutory obligation of retention and there are no other reasons which would prevent this under Art. 17 Para. 3 GDPR). In addition to this, you have the right of transfer of all the data you have provided to us in a conventional file format (right to data portability).

 

To exercise your rights, all that is needed is an email to:

consumerinquiries@fentimans.usbackoffice.com

 

 

  1. b) Right of complaint to the competent supervisory authority

In the event of infringements of data protection legislation, the data subject has the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority in matters of data protection law is the Regional Data Protection Officer of the Federal State in which our company has its registered head office. The competent supervisory authority for Fentiman's USA, Inc.71 McMurray Road, Suite 104, Pittsburgh, PA 15214