Privacy Policy SteviaSweet

§ 1      Information on the collection of personal data

(1) In the following, we will provide you with information on the collection of personal data when using our website. Personal data is all data that can relate to you personally, e.g. your name, address, email addresses and user behaviour.
(2) The controller according to Art. 4 para. 7 of the EU General Data Protection Regulation (GDPR) is

Hermes Sweetener Ltd.
Ankerstrasse 53
8004 Zürich
Switzerland

Our data protection officer can be contacted at:
Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
E-Mail: kontakt@buglkollegen.de

(3) When contacting us via email or a contact form, we will store the data you provide us with (your email address and, if applicable, your name and telephone number) in order to answer your queries. We will delete the data that arises in this context once storage is no longer necessary, or will restrict its processing should there be a legal obligation to retain this data.
(4) Should we wish to utilise the services of commissioned service providers for individual functions of our offering or use your data for advertising purposes, we will inform you of the respective processes in detail in the following. In doing so, we will also specify the fixed criteria for the storage duration.


§ 2      Your rights

(1) You have the following rights vis-à-vis us with regard to your personal data:
–          Right of information and access
–          Right to rectification or erasure
–          Right to restriction of processing
–          Right to object to processing
–          Right to data portability
(2) You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data.


§ 3      Collection of personal data when visiting our website

(1) When you use our website purely to gather information, i.e. you do not register or provide us with information by other means, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data that is technically necessary in order to show you our website and guarantee stability and security (the legal basis for this is Art. 6 para. 1 lit. f GDPR):
–          IP address
–          Date and time of the request
–          Time zone difference to Greenwich Mean Time (GMT)
–          Content of the request (specific page)
–          Access status / HTTP status code
–          Transferred data quantity in each case
–          Website from which the request originates
–          Browser
–          Operating system and its interface
–          Language and version of the browser software
(2) In addition to the information given above, third-party cookies are saved on your computer when you use our website:
-           Adform
-           CloudFront
-           Typekit
-           DoubleClick
-           Facebook
-           Google
For landing pages, multiple cookies from http://ds.serving-sys.com are saved.
Cookies are small text files saved on your hard disk and assigned to the browser you use, and which provide certain information to the organisation that sets the cookie (in this case us). Cookies cannot execute programs or transmit viruses to your computer. They serve the purpose of making the internet offering more user-friendly and effective.
(3) Use of cookies:
a)         This website uses the following types of cookies, the scope and method of functioning of which is explained in the following:
–          Transient cookies (see b)
–          Persistent cookies (see c)
b)         Transient cookies are automatically deleted when you close the browser. In particular, these include session cookies. These save what is known as a session ID, which is used to assign various requests of your browser to the joint session. This allows your computer to be recognised when you return to our website. Session cookies are deleted when you log out or close the browser.
c)         Persistent cookies are automatically deleted after a set period of time, which can differ according to the cookie. You can delete the cookies at any time through the security settings of your browser.
d)         You can configure your browser setting according to your wishes and, for example, reject third-party cookies or all cookies. Please note that you may not be able to use all the functions of this website in this case.


§ 4       Use of Google Analytics

(1) This website uses Google Analytics, a web analysis service provided by Google Inc. (“Google”). Google Analytics uses so-called cookies, which are text files that are stored on your computer and which allow an analysis of your use of the website. The information about your use of this website generated by the cookie is generally transmitted to a Google server in the USA and is stored there. Should IP anonymisation be activated on this website, however, Google will first shorten your IP address within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports about website activities and to provide additional services for the website operator relating to the use of the website and the internet.
(2) The IP address transmitted from your browser in connection with Google Analytics will not be merged with other data held by Google.
(3) You can prevent the saving of cookies by making a corresponding setting in your browser software; however, in this case you may not be able to take full advantage of all the functions of this website. Furthermore, you can prevent Google from collecting data regarding your use of the website generated by the cookie (including your IP address) as well as processing this data by downloading and installing the browser plug-in at the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB
(4) This website uses Google Analytics with the extension “_anonymizeIp()”. As such, IP addresses are processed in shortened form and identification of individual users is excluded. Should collected data contain a reference to your person, this is therefore immediately excluded and the personal data is immediately deleted.
(5) We use Google Analytics to analyse the use of our website and regularly improve it. The statistics derived from this enable us to improve our offering and make it more interesting for you as a user. For the exceptional cases in which personal data is transmitted to the USA, Google has subjected itself to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework. The legal basis for using Google Analytics is Art. 6 para. 1 lit. f GDPR.
(6) Information of the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, fax: +353 (1) 436 1001.
“For users based in the European Economic Area or Switzerland, the data controller responsible for your information is Google Ireland Limited, unless otherwise stated in a service-specific privacy notice. In other words, Google Ireland Limited is the Google affiliate that is responsible for processing your information and for complying with applicable privacy laws” (https://policies.google.com/privacy?hl=en&gl=en)
General information on data protection: https://policies.google.com/privacy?hl=en&gl=en#infocollect
Terms of service: https://www.google.com/analytics/terms/gb.html
[(7) This website also uses Google Analytics to conduct a cross-device analysis of visitor flows, which is performed by means of a user ID. You can disable the cross-device analysis of your use in your customer account under “My data” and “Personal data”.]


§ 5      Use of social media plug-ins

(1) Wir setzen derzeit folgende Social-Media-Plug-ins ein: Facebook, Google+.
Wir nutzen dabei die sog. Zwei-Klick-Lösung. Das heißt, wenn Sie unsere Seite besuchen, werden zunächst grundsätzlich keine personenbezogenen Daten an die Anbieter der Plug-ins weitergegeben. Den Anbieter des Plug-ins erkennen Sie über die Markierung auf dem Kasten über seinen Anfangsbuchstaben oder das Logo. Wir eröffnen Ihnen die Möglichkeit, über den Button direkt mit dem Anbieter des Plug-ins zu kommunizieren. Nur wenn Sie auf das markierte Feld klicken und es dadurch aktivieren, erhält der Plug-in-Anbieter die Information, dass Sie die entsprechende Website unseres Online-Angebots aufgerufen haben. Zudem werden die unter § 3 dieser Erklärung genannten Daten übermittelt. Im Fall von Facebook und Xing wird nach Angaben der jeweiligen Anbieter in Deutschland die IP-Adresse sofort nach Erhebung anonymisiert. Durch die Aktivierung des Plug-ins werden also personenbezogene Daten von Ihnen an den jeweiligen Plug-in-Anbieter übermittelt und dort (bei US-amerikanischen Anbietern in den USA) gespeichert. Da der Plug-in-Anbieter die Datenerhebung insbesondere über Cookies vornimmt, empfehlen wir Ihnen, vor dem Klick auf den ausgegrauten Kasten über die Sicherheitseinstellungen Ihres Browsers alle Cookies zu löschen.
(2) Wir haben weder Einfluss auf die erhobenen Daten und Datenverarbeitungsvorgänge, noch sind uns der volle Umfang der Datenerhebung, die Zwecke der Verarbeitung, die Speicherfristen bekannt. Auch zur Löschung der erhobenen Daten durch den Plug-in-Anbieter liegen uns keine Informationen vor.
(3) Der Plug-in-Anbieter speichert die über Sie erhobenen Daten als Nutzungsprofile und nutzt diese für Zwecke der Werbung, Marktforschung und/oder bedarfsgerechten Gestaltung seiner Website. Eine solche Auswertung erfolgt insbesondere (auch für nicht eingeloggte Nutzer) zur Darstellung von bedarfsgerechter Werbung und um andere Nutzer des sozialen Netzwerks über Ihre Aktivitäten auf unserer Website zu informieren. Ihnen steht ein Widerspruchsrecht gegen die Bildung dieser Nutzerprofile zu, wobei Sie sich zur Ausübung dessen an den jeweiligen Plug-in-Anbieter wenden müssen. Über die Plug-ins bietet wir Ihnen die Möglichkeit, mit den sozialen Netzwerken und anderen Nutzern zu interagieren, so dass wir unser Angebot verbessern und für Sie als Nutzer interessanter ausgestalten können. Rechtsgrundlage für die Nutzung der Plug-ins ist Art. 6 Abs. 1 S. 1 lit. f DS-GVO.
(4) Die Datenweitergabe erfolgt unabhängig davon, ob Sie ein Konto bei dem Plug-in-Anbieter besitzen und dort eingeloggt sind. Wenn Sie bei dem Plug-in-Anbieter eingeloggt sind, werden Ihre bei uns erhobenen Daten direkt Ihrem beim Plug-in-Anbieter bestehenden Konto zugeordnet. Wenn Sie den aktivierten Button betätigen und z. B. die Seite verlinken, speichert der Plug-in-Anbieter auch diese Information in Ihrem Nutzerkonto und teilt sie Ihren Kontakten öffentlich mit. Wir empfehlen Ihnen, sich nach Nutzung eines sozialen Netzwerks regelmäßig auszuloggen, insbesondere jedoch vor Aktivierung des Buttons, da Sie so eine Zuordnung zu Ihrem Profil bei dem Plug-in-Anbieter vermeiden können.
(5) Weitere Informationen zu Zweck und Umfang der Datenerhebung und ihrer Verarbeitung durch den Plug-in-Anbieter erhalten Sie in den im Folgenden mitgeteilten Datenschutzerklärungen dieser Anbieter. Dort erhalten Sie auch weitere Informationen zu Ihren diesbezüglichen Rechten und Einstellungsmöglichkeiten zum Schutze Ihrer Privatsphäre.
(6) Adressen der jeweiligen Plug-in-Anbieter und URL mit deren Datenschutzhinweisen:
a)         [Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; weitere Informationen zur Datenerhebung: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications sowie http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook hat sich dem EU-US-Privacy-Shield unterworfen, https://www.privacyshield.gov/EU-US-Framework.
b)         Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google hat sich dem EU-US-Privacy-Shield unterworfen, https://www.privacyshield.gov/EU-US-Framework.
c)         Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy. Twitter hat sich dem EU-US-Privacy-Shield unterworfen, https://www.privacyshield.gov/EU-US-Framework.
d)         Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy.
e)         T3N, yeebase media GmbH, Kriegerstr. 40, 30161 Hannover, Deutschland; https://t3n.de/store/page/datenschutz.
f)         LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy. LinkedIn hat sich dem EU-US-Privacy-Shield unterworfen, https://www.privacyshield.gov/EU-US-Framework.
g)         Flattr Network Ltd. mit Sitz in 2 nd Floor, White bear yard 114A, Clerkenwell Road, London, Middlesex, England, EC1R 5DF, Großbritannien; https://flattr. com/privacy.]


§ 6      Embedding of YouTube videos

(1) We have embedded YouTube videos in our online offering, which are stored under http://www.YouTube.com, and which can be viewed directly from our website. [These are all embedded in the “expanded data protection mode”, which means that none of your personal user data will be transferred to YouTube when you do not view the videos. However, once you view the videos, the data specified in Paragraph 2 will be transferred to YouTube. We do not have any influence over this data transfer.]
(2) By visiting the website, YouTube receives the information that you have accessed the respective subpage of our website. In addition, the data listed under § 3 of this statement is transmitted. This is performed regardless of whether YouTube provides a user account, via which you are logged in, or no user account exists. If you are logged in with Google, your data shall be directly assigned to your account. You must log out before activating the button if you do not want an assignment to your YouTube profile to take place. YouTube stores your data as usage profiles and uses this data for advertising, market research and/or the needs-oriented design of its website. In particular, such an evaluation takes place (even for users who are not logged in) to provide needs-oriented advertising and to inform other users of the social network of your activities on our website. You have the right to object to the creation of such user profiles; you must assert such an objection directly to YouTube.
(3) Additional data on the purpose and scope of the data collection and processing by YouTube is available in the data privacy statement. Additional information on your rights and setting options for protecting your privacy is also available at: https://www.google.de/intl/en/policies/privacy. Google also processes your personal data in the USA and has subjected itself to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.


§ 7      Use of our webshop

(1) If you intend to order from our webshop, in order to conclude the contract it is required that you provide your personal data that we need to process your order. Information that is mandatory for processing the contracts is marked separately; additional information is provided voluntarily. The personal data you provide is used for processing your order. This includes our transferring of your payment data to our principal bank. The legal basis for this is Art. 6 para. 1 lit. b EU GDPR. You can, if you wish, create a customer account which we can use to store your personal data for future purchases. Personal data you provide when creating an account under “My Account” can be revoked at any time. All other data, including your user account, can be deleted at any time in the Customer Service section.
We can also process the personal data you provide to inform you of other interesting products from our portfolio or send you emails containing technical information.
(2) We are obliged under commercial and tax-related regulations to store your address, payment and order data for a period of ten years. However, we restrict the processing after two years, which means that your personal data will only be used to comply with legal obligations.
(3) The ordering process will be encrypted using TLS technology to prevent unauthorised access by third parties to your personal data, in particular your financial data.

§ 7. Embedding of YouTube videos
We have embedded YouTube videos in our online offering, which are stored under http://www.YouTube.com, and which can be viewed directly from our website. [These are all embedded in the “expanded data protection mode”, which means that none of your personal user data will be transferred to YouTube when you do not view the videos. However, once you view the videos, the data specified in Paragraph 2 will be transferred to YouTube. We do not have any influence over this data transfer.]

By visiting the website, YouTube receives the information that you have accessed the respective subpage of our website. Furthermore, the data specified in Article 3 of this notice is transferred. This is performed regardless of whether YouTube provides a user account, via which you are logged in, or no user account exists. If you are logged in with Google, your data shall be directly assigned to your account. You must log out before activating the button if you do not want an assignment to your YouTube profile to take place. YouTube stores your data as usage profiles and uses this data for advertising, market research and/or the needs-oriented design of its website. In particular, such an evaluation takes place (even for users who are not logged in) to provide needs-oriented advertising and to inform other users of the social network of your activities on our website. You have the right to object to the creation of such user profiles; you must assert such an objection directly to YouTube.

Additional data on the purpose and scope of the data collection and processing by YouTube is available in the data privacy statement. Additional information on your rights and setting options for protecting your privacy is also available at: https://www.google.de/intl/en/policies/privacy. Google also processes your personal data in the USA and has subjected itself to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

§ 8. Data storage

Your data will be kept as long as it is necessary for the provision of services on the website or as long as we are legally obligated to store it.


§ 9. What can you do to limit the processing of your data?

You may revoke your consent for the processing of your personal data at any time. You can also generally revoke your consent for use of your data for advertising purposes. To do so, simply send a message to our contact address below. Please refer to section 5 on how to block the inclusion of your page views in our usage analysis.


§ 10. Data security

 We have taken technical and organisational measures to ensure data security. These measures are used, among other reasons, to prevent unauthorised access to the technical equipment we use and to protect your personal data from unauthorised access by third parties.


§ 11. Information and corrections

You are entitled, at any time, to request free-of-charge information within the legal guidelines on your data, the purposes of its storage and the recipients or categories of recipients to whom this data is passed on. If your data we have stored is inaccurate or whose storage is impermissible, we will gladly correct, block or delete it.

Please send any such queries by email to our contact address:
E-Mail: info@mysteviasweet.com

You can reach our data protection officer under: 
Bugl & Kollegen GmbH
Sedanstraße 7
93055 Regensburg
E-Mail: kontakt@buglkollegen.de


§ 12. Retrievability of the data privacy statement
 
This data privacy statement can be accessed and printed out from the footer of the homepage under the “data privacy statement” heading.
 
Updated on: June 2019