This data protection directive describes the processing of personal data when using the website of Lederfabrik Josef Heinen GmbH und Co. KG (hereinafter referred to as "Heinen"), including the mobile applications (our “Apps”). It also clarifies the options available to you regarding your personal data (“your rights”) and how you can contact us.
I. Who is responsible and how can I contact the data protection officer?
Responsibility for the GDPR lies with
Lederfabrik Josef Heinen GmbH und Co. KG
Tel: +49 (0) 2434 99200
Managing Director: Thomas Heinen
Company register: HRB 8321
For questions regarding us processing your personal data or regarding the subject of data protection in general, please use the contact details above.
II. Your rights as an affected party
Each affected party has the following rights:
You can object to the processing of personal data for advertising purposes, including analysis of customer data for advertising purposes, at any time and without providing any reasons.
In addition, the affected party also has a general right to object (cf. Art 21 Para 1 GDPR). In this case, reasons for the objection to data processing must be given. Insofar as data processing is carried out with your consent, you can withdraw your consent at any time with effect for the future. To exercise your rights as an affected party, please write to the address given in the legal notice or our data protection officer at info[at]heinen-leather.de. In addition, you also have the right to complain to the relevant data protection authority.
III. Processing of personal data by Intention
In the following, we wish to give you an overview of the ways in which we protect your personal data when you access our website and what kinds of personal data we process for which purposes and to what extent.
Data of a general nature is automatically recorded when you access our website. This information (server log files) contains the type of web browser, the operating system used, the domain names of your internet service provider and similar information. In addition, the IP address is also transferred and used to provide the service required. This information is necessary from a technical perspective in order to display the website content requested by you correctly and is mandatory for using the internet.
These log files are anonymised or, alternatively, deleted by us after the end of your session. The legal basis for data processing is Art. 6 Para 1 p. 1 letter. f). GDPR.
Insofar as you submit a request by email, we store your data to for processing purposes as well as to respond to you. These details are stored as evidence for a period of up to [two] years. The legal basis for data processing is Art. 6 Para. 1 sentence 1 letter. f GDPR.
We take technical and operational security measures on our website in order to protect your personal data stored by us from being accessed by third parties, lost or misused, and to ensure secure data transfer.
Please note that unintended access to data by third parties may occur due to the nature of the internet. It is therefore also your responsibility to protect your data from misuse by using encryption or other means. Without the relevant security measures, unencrypted data may be accessed by third parties, even when it is transferred by email.
IV. Our cookie directive
We use session cookies which are strictly necessary for the use of our website. This includes cookies which allow us to recognise you as you use the site within a single session. These session cookies contribute to the safe use of our website by allowing us to manage the shopping basket and payment process securely.