Data Protection

We at Rhenoflex GmbH take the protection of your personal data very seriously and adhere strictly to the rules of data protection laws. Personal data is collected on this website only to the technically necessary extent. In no case is the collected data sold or otherwise disclosed to third parties.
The following declaration gives you an overview of how we ensure this protection and what type of data is collected for which purpose.

I. Name and address of the controller

The controller for the purposes of the General Data Protection Regulation and other national data protection laws of the Member States as well as other data protection regulations is:

Rhenoflex GmbH
Giulinistrasse 2
67065 Ludwigshafen
Phone: 0621-5709-03

II. Name and address of the data protection officer

The data protection officer of the controller is:

CAD – Institut für Compliance, Arbeitsrecht und Datenschutz [Institute for Compliance, Labor Law and Data Protection]
Ms. Jasmin Fladung
PO Box 140 152
67021 Ludwigshafen
Phone: 0621-685 833 57

III. General information on data processing

1. Scope of the processing of personal data

In principle, we process personal data of our users only to the extent necessary for the provision of a functional website and our content and services. The processing of the personal data of our users generally takes place only with the consent of the user. An exception applies in such cases where prior consent is not possible for factual reasons and the processing of the data is permitted by statutory provisions.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject to the processing of personal data, Article 6 (1) (a) EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Article 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.
Insofar as processing of personal data is necessary for compliance with a legal obligation to which our undertaking is subject, Article 6 (1) (c) GDPR serves as the legal basis.
In the event that processing is necessary in order to protect the vital interests of the data subject or of another natural person, Article 6 (1) (d) GDPR serves as the legal basis.
If the processing is necessary for the purposes of the legitimate interests pursued by our undertaking or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, then Article 6 (1) (f) GDPR serves as the legal basis for the processing.

3. Data erasure and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage no longer applies. Furthermore, it may be stored if this has been provided by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. A blocking or erasure of the data also takes place when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or execution of a contract.