The protection of personal data has a very high priority at order-online.restaurant. We collect, store and process personal data exclusively in accordance with the applicable data protection regulations.
Our websites may contain links to websites of other providers to which this data protection declaration does not apply. We cannot accept any liability for the handling of your personal data by third parties. We would like to point out that data transmission on the Internet (e.g. e-mail) can have security gaps.
Complete protection of data against access by third parties is not possible.
Information on data security
We secure our website by technical and organisational measures against loss, destruction, access, modification or distribution of your data by unauthorised persons.
With effect from 25.05.2018, the EU General Data Protection Regulation (EU-DSGVO) applies in Germany alongside the provisions of the Federal Data Protection Act (BDSG), which was also amended on this date.
With reference to Art. 12, 13 EU-DSGVO, you will find the following information on data protection and data processing in connection with your legal protection insurance contract.
Basic Data Protection Regulation
1. name and contact details of the data controller and the company data protection officer
The responsible person can be found in the imprint.
You can reach the company data protection officer under Contact.
2. collection and storage of personal data as well as the type and purpose of its use
a) When visiting the website
When you visit our website Order-online.restaurant, the browser used on your end device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until automatic deletion:
IP address of the requesting computer,
Date and time of access,
name and URL of the file accessed,
website from which access was made (referrer URL),
the browser used and, if applicable, the operating system of your computer as well as the name of your access provider.
The aforementioned data is processed by us for the following purposes:
Ensuring a smooth connection set-up of the website,
Ensuring a comfortable use of our website,
evaluating system security and stability as well as for other administrative purposes.
b) When registering for our newsletter
If you have expressly consented in accordance with Art. 6 para. 1 p. 1 lit. a) DSGVO, we will use your e-mail address to send you our newsletter on a regular basis. To receive the newsletter, it is sufficient to provide an e-mail address. You can unsubscribe at any time by using the link at the end of each newsletter.
c) When using our contact form
For questions of any kind, we offer you the possibility of contacting us via a form provided on the website. In doing so, it is necessary to provide a valid email address so that we know who the enquiry is from and so that we can answer it. Further information can be provided voluntarily. Data processing for the purpose of contacting us is based on your voluntarily given consent in accordance with Art. 6 para. 1 p. 1 lit. a) DSGVO. The personal data collected by us for the use of the contact form will be automatically deleted after we have dealt with your enquiry.
3. transfer of dataThere will be no transfer of your personal data to third parties for purposes other than those listed below.
We only pass on your personal data to third parties if:
you have given your express consent to this in accordance with Art. 6 Para. 1 Sentence 1 lit. a) DSGVO, the disclosure is necessary in accordance with Art. 6 Para. 1 Sentence 1 lit. f) DSGVO for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data, for the case that the disclosure is necessary in accordance with Art. 6 para. 1 p. 1 lit. c) DSGVO, as well as this is legally permissible and necessary for the processing of contractual relationships with you according to Art. 6 para. 1 p. 1 lit. b) DSGVO.
5. analysis tools
The tracking measures listed below and used by us are carried out on the basis of Art. 6 para. 1 p. 1 lit. f) DSGVO. With the tracking measures used, we want to ensure a needs-based design and the ongoing optimisation of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These interests are to be regarded as legitimate within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.
a) Google Adwords Conversion Tracking
In order to statistically record the use of our website and to evaluate it for the purpose of optimising our website for you, we also use Google Conversion Tracking. In this process, Google Adwords sets a cookie (see section 4) on your computer if you have accessed our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page. Each Adwords customer receives a different cookie. Cookies can therefore not be tracked via the websites of Adwords customers. The information obtained using the conversion cookie is used to create conversion statistics for Adwords customers who have opted for conversion tracking.
b) Google Analytics
We use the Smartlook analysis software from Smartsupp.com s.r.o., Milady Horakove 13, 602 00 Brno, Czech Republic, as part of our legitimate interest in a technically flawless online offering and its economically efficient design and optimisation in accordance with Art. 6 Para. 1 lit.f DSGVO.
This tool records movements on the observed websites in so-called heat maps. This allows us to see anonymously where visitors click and how far they scroll. This enables us to design our website in a better and more customer-friendly way. The protection of your personal data is very important to us when using this tool. All data is collected without us being able to assign it to specific users. We can only track how the mouse was moved, where it was clicked and how far it was scrolled. Furthermore, the screen size of the device, the type of device, information on the browser, the country from which access was made and the preferred language are recorded. If personal data of you or third parties are displayed on a website, these are automatically hidden by smartlook. They are therefore not traceable for us.
You can prevent the use of the smartlook tool by using a "Do Not Track header". Then no data will be collected about your visit to our website. To do this, you must set your browser accordingly. You can find instructions on how to do this in German at: http://www.akademie.de/wissen/do-not-track-datenschutz.
You can also deactivate the Smartlook tool alone using the opt-out button under: Smartlook Opt-Out.
6. social media plug-ins
We use social plug-ins of the social network Facebook on our website on the basis of Art. 6 para. 1 p. 1 lit. f) DSGVO in order to make Order-online.restaurant better known via this. The underlying promotional purpose is to be regarded as a legitimate interest within the meaning of the GDPR. The responsibility for data protection-compliant operation is to be ensured by their respective providers. We integrate these plug-ins using the so-called two-click method in order to protect visitors to our website as best as possible.
Social media plug-ins from Facebook are used on our website to make their use more personal. For this purpose, we use the "LIKE" or "SHARE" button. This is an offer from Facebook. When you call up a page of our website that contains such a plugin, your browser establishes a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser, which then integrates it into the website. By integrating the plugins, Facebook receives the information that your browser has called up the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there. If you are logged in to Facebook, Facebook can assign your visit to our website directly to your Facebook account.
7 Google Maps
Here you will find further instructions on how to manage your own data in connection with Google products.
8. use of YouTube plug-ins
We use the provider YouTube, among others, for the integration of videos. YouTube is operated by YouTube LLC with its headquarters at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by Google Inc. with headquarters at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. On some of our Internet pages, we use plugins from the provider YouTube. When you call up the Internet pages of our website that are provided with such a plugin, a connection is established to the YouTube servers and the plugin is displayed. This transmits to the YouTube server which of our Internet pages you have visited. If you are logged in as a YouTube member, YouTube assigns this information to your personal user account. When using the plugin, such as clicking on the start button of a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your YouTube user account and other user accounts of the companies YouTube LLC and Google Inc. before using our website and deleting the corresponding cookies of the companies. Further information on data processing and notes on data protection by YouTube (Google) can be found at https://www.google.de/intl/de/policies/privacy/.
10. data subject rights
You have the right to:
- According to Art. 15 DSGVO, to request information about your personal data processed by us. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
- in accordance with Art. 16 DSGVO, to demand the immediate correction of inaccurate or incomplete personal data stored by us;
- pursuant to Art. 17 DSGVO, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims; - pursuant to Art. 18 DSGVO, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defence of legal claims or you have objected to the processing pursuant to Art. 21 DSGVO;
- pursuant to Art. 20 DSGVO, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
- revoke your consent at any time in accordance with Art. 7 (3) DSGVO. This has the consequence that we may no longer continue the data processing based on this consent in the future;
- complain to a supervisory authority in accordance with Art. 77 DSGVO. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose. The address is: State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia Postfach 20 04 44 40102 Düsseldorf.
12. right of objection
Insofar as your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f) DSGVO, you have the right to object to the processing of your personal data pursuant to Art. 21 DSGVO, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without specifying a particular situation.
13 Data security
Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is a 256-bit encryption. You can tell whether an individual page of our website is encrypted by the closed key or lock symbol in the lower status bar of your browser. We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in accordance with technological developments.
14. topicality and amendment of this data protection declaration
This data protection declaration is currently valid and has the status of May 2018. Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this data protection declaration.