Privacy Policy
Thank you for visiting our website “ww.coodo.com” (hereinafter referred to as the “Website”). We take the protection of your personal data very seriously. When collecting, processing and using personal data, we therefore strictly adhere to the applicable data protection regulations, in particular, the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).
In the following we therefore inform you about all relevant questions regarding data protection on our website.
1)Responsible person, personal data
The person responsible for the collection, processing and use of your data within the meaning of Art. 4 (7) of the GDPR:
LTG Lofts to Go ÖU
represented by the Managing Director, Mark Dare Schmiedel
Pärnu mnt 22, 10141 Tallinn, Estonia
E-mail: info@loftstogo.com
VAT-ID: EE102321946
Commercial register number: 16119177
– hereinafter also referred to as “we” or “us” –
Personal data means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to a name, an identification number, location data, online identification data or by characteristics which are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person (Art. 4 (1) of the GDPR).
2)Data collection, processing and use
a) Informational use of our website
If and insofar as you use our website solely for informational purposes, thus if you do not register for our newsletter or provide us with information via our contact form or e-mail, we only collect the following data and store it in our server log files:
– Browser type/version
– Used operating system
– Date and time of the server request
– Referrer URL (the page you visited before)
– Anonymized IP address (see also the following execution)
The aforementioned information is only evaluated statistically and used to improve the functionality of our website and the attractiveness of our offer. The legal basis for this is Art. 6 (1) (f) GDPR. Our legitimate interest arises from the guarantee of a smooth connection, the design of a comfortable and effective use of our website as well as for reasons of system security.
Please note, however, that if you register for our newsletter, we will store your complete e-mail address so that we can record your consent to receive the newsletter. See further explanations under point 2 (c) below.
In addition to the aforementioned data, cookies and GIFs are stored on your terminal (e.g. tablet, PC or laptop) when you use our website.
Cookies are small text files which are stored on your terminal device and which provide us or the service provider we use (e.g. Google) with certain information. GIFs (also known as “web beacons”) are used in conjunction with cookies to help website operators to better understand how visitors interact with the website. A GIF is basically a transparent graphic that is placed on a web page. The use of a GIF allows us to measure the actions of the user who opens the page with the GIF. We use clear GIFs to measure visitor behavior anonymously to improve the visitor experience and facilitate content management. We use GIFs on the website and possibly in our e-mails. However, we do not create usage profiles of you.
b) Use of cookies
Cookies are used to store different data. These include the login status, the language settings on a website, a shopping cart or the location where a video was viewed.
Cookies can also be used to store user behaviour (e.g. viewing certain content, use of functions, etc.) on individual web pages in a user profile. Here it is possible to display content to users that corresponds to their potential interests (so-called “tracking”). This also includes the creation of pseudonymous user profiles (“user ID”).
If we use cookies or tracking technologies, we will inform you separately in our privacy policy.
Notes on legal bases: If you consent to the use of cookies, the legal basis for processing your data is your declared consent (Art. 6 (1) (a), 7 GDPR). Otherwise, the data processed with the aid of cookies will be processed on the basis of our legitimate interests (e.g. in a business operation of our online service and its improvement) (Art. 6 (1) (f) GDPR) or if the use of cookies is necessary to fulfil our contractual obligations (Art. 6 (1) (b) GDPR).
aa) General information on revocation and objection (opt-out): Irrespective of whether processing is based on consent or legal permission, you have the possibility at any time to revoke a consent given or to object to the processing of your data using cookie technologies (collectively referred to as “opt-out”).
You can initially explain your objection by means of your browser settings, e.g. by deactivating the use of cookies (which may also restrict the functionality of our online service).
An objection to the use of cookies for the purposes of online marketing can also be explained by means of a variety of services, above all in the case of tracking, via the US website http://www.aboutads.info/choices/ or the EU website http://www.youronlinechoices.com/ or generally on http://optout.aboutads.info
bb) Processing of cookie data on the basis of consent: Before using cookies to process your data or have it processed, we ask you for your consent, which can be revoked at any time. Before the consent has not been given, we may use cookies that are necessary for the operation of our online service. Their use is based on our interest and the user’s interest in the expected functionality of our online service.
cc) Cookie settings/opposition possibility:
– Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
– Data subjects: Users (e.g. website visitors, users of online services).
– Legal basis: Consent (Art. 6 (1) (a), 7 GDPR), legitimate interests (Art. 6 (1) ( f) GDPR), fulfilment of a contract (Art. 6 (1) (b) GDPR).
Please also note our cookie policy with regard to the use of cookies on our website.
c) Contact form
We offer you the possibility to contact us via e-mail or contact form. The transmission of your data from the contact form is encrypted (https). Apart from the mandatory data, you alone decide whether and which information you want to transmit to us. In this context, we expressly point out that the electronic transmission of information – also via the encrypted contact form – may have security gaps. This also applies to the transmission of information by e-mail.
We gather the following personal data from you:
Title
Name and surname,
Company (if applicable),
Address,
E-mail address,
Phone number,
the concern you have expressed
The information you provide by e-mail or contact form will only be used to process your request. If you are contacting us from one of the following countries below, we will forward your request to our local licensees. These are:
- United States of America and Canada – Big Sun Modular, LLC, a Delaware corporation, with its registered offices at 3 East 28th Street, NY 10016, New York.
- The Netherlands – Unbound Living B.V. with its registered offices at Utrechtseweg 127, 6812AA Arnhem.
- Australia – Modm Pty Ltd with its registered Offices At 19 Palmer Ave, Ocean Shores, NSW.
-
Republic of Ireland – Sheaney Ltd with its registered offices at 53 drumalane road, newry, county down.
- United Arab Emirates, Saudi Arabia and Lebanon – Speed House Prefab Ind. Co/L.L.C, (License No. 49450) with its registered offices at office No. 7, Industrial Area 1, Ajman.
If there is no contractual relationship between you and us and/or our licensees, the information you provide will be deleted as soon as your request is completed. If a contractual relationship is established, your personal data will be stored for the duration of the contractual relationship. Afterwards your data will be stored for the duration of the statutory retention periods and then deleted. The legal basis for the processing of your data by us is Art. 6 (1) (a) GDPR (“Your Consent”) and insofar as your inquiry relates to the conclusion of a contractual relationship or a contract is concluded, Art. 6 (1) (b) GDPR (“Necessity for performance of contract”).
d) Newsletter
We offer you the opportunity to subscribe to our newsletter and receive regular e-mail updates on our products and news.
To register for our newsletter, we use the so-called double opt-in process. This means that after you have provided us with your e-mail address, you will receive an e-mail from us with a confirmation link. Only when you click on this confirmation link will your e-mail address be included in our newsletter distribution list and you will receive newsletters from us.
You can revoke your consent in accordance with Art. 6 (1) (a) GDPR at any time with effect for the future. To unsubscribe from the newsletter, you will also find a corresponding link at the end of the newsletter.
To send our newsletter we use the service of “The Rocket Science Group”, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA (https://mailchimp.com). Information about the protection of your data can be found here: https://mailchimp.com/legal/privacy/. The Rocket Science Group is Privacy Shield certified and thus guarantees an adequate level of protection in the handling of your data (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). Further information on the use of cookies by The Rocket Science Group can be found here: https://mailchimp.com/legal/cookies/
Our newsletters contain GIFs (see also section 2 (a) above). This will enable us to see whether you have opened the newsletter and clicked on any links. This technology records your e-mail address, your IP address, the day and time when you open a newsletter. The Rocket Science Group uses this technology and this data to evaluate the success of newsletters for us and to inform us about it. For information on the used cookies used, please note our Cookie Policy: please insert a link.
Legal basis for the use of Rocket Science Group as a service provider is Art. 6 (1) (f) GDPR (“legitimate interest”). The legitimate interest lies in the economic optimization of our newsletter service.
e) Social Plug-Ins
For the attractive and user-friendly design of our website, we use so-called social plug-ins.
Social plug-ins (e.g. the “Like” button on Facebook) enable the viral distribution of website content via social networks without the website operator himself having to be active in the respective medium. The link is established via iframe or Javascript. The activities of the users (e.g. “Likes”) are displayed in the profile/channel of the user in the medium.
We use social plug-ins and social bookmarks from the following providers:
Facebook (Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA),
Instagram (Instagram, LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA),
LinkedIn (LinkedIn, Inc., 2029 Stierlin Ct. Ste. 200 Mountain View, CA 94043, USA
Pinterest (Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USA),
Twitter (Twitter, Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA),
We have no influence on the extent to which the aforementioned providers collect data with the help of social plug-ins. However, you can find the purpose and scope of the respective data collection, processing and use by the respective providers in the privacy notices or data protection guidelines of the providers:
Facebook: http://www.facebook.com/policy.php
Instagram: https://help.instagram.com/155833707900388?helpref=page_content
LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Pinterest: https://policy.pinterest.com/de/privacy-policy
Twitter: http://twitter.com/privacy
If you are a member of one or more of the aforementioned social networks and wish to prevent the operators from collecting data from you via our website, you must log out of the respective provider before visiting our website and before activating the respective social plug-in. You can also completely prevent the loading of social plug-ins with so-called add-ons for the browser you are using, for example by using the software “Ghostery” Browser Extension.
We use the aforementioned social plug-ins in accordance with Art. 6 (1) (f) GDPR in order to make our company better known. The underlying advertising purpose is considered as a legitimate interest according to the GDPR. The responsibility for data protection-compliant operation lies with the respective provider.
f) Embedded Video Player
We have integrated the video player of “Vimeo” on our website. With the player we make own videos or videos of other providers available to you. The player is offered and operated by Vimeo LLC, 555 West 18th Street, New York 10011, USA. We have no control over the extent to which Vimeo collects information from you or about your use of the Player. Vimeo’s Privacy Notice tells you how Vimeo collects and uses your information. The privacy statement can be found here: https://vimeo.com/privacy
We use the Vimeo video player in accordance with Art. 6 (1) (f) GDPR in order to make our website more attractive. The underlying advertising purpose is considered as a legitimate interest according to the GDPR. The responsibility for data protection-compliant operation lies with the respective provider.
g) Google Analytics
For our website we use the functions of the web analysis service Google Analytics. The provider is Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called “cookies”. These are text files that are stored on your terminal device/computer and enable an analysis of your use of the website. The information generated by the cookie about your use of the website will generally be transmitted to servers of Google in the United States where it will be stored. We have activated IP anonymisation for the website, as a result of which your IP address is generally shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases the full IP address is transmitted to a Google server in the United States and shortened there.
On our order, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide us with other services related to website and Internet use.
Google will use this information on our behalf to evaluate your use of the website, to compile reports on website activities and to provide us with other services relating to website and internet usage. The IP address transmitted within the context of Google Analytics is not combined with other Google data.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of this website. In addition, you can prevent Google from collecting and processing the data generated by the cookie and related to your use of the website (including your possibly shortened IP address) by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl. As an alternative to the browser add-on or within browsers on mobile devices, please click the aforementioned link to prevent Google Analytics from collecting this data within this website in the future. An opt-out cookie will be placed on your device. If you delete cookies from your device (computer, smartphone, etc.), you will have to click this link again.
h) Google Recaptcha
We use Google’s recaptcha service to protect us from spam and abuse. The recaptcha service is used to differentiate whether an entry was made by a human being or by automated, mechanical processing. To determine this, Google places a cookie in your browser when you use the recaptcha service on our website and collects and processes the following data:
Referrer URL (address of the page on which recaptcha service is used)
Browser, browser size and resolution, browser plug-ins, date, language setting
Mouse or touch events inside the recaptcha box
Assignment to a Google account (if you are registered with Google when using the recaptcha service, this is recognized and assigned)
Your input behavior (e.g., answering the question in the recaptcha service, input speed in the form fields, order in which the input fields are selected by the user) is processed to improve pattern recognition at Google.
In addition, Google reads cookies from other Google services such as Gmail, Google Search and Google Analytics. All data collected is sent to Google in encrypted form. The subsequent evaluation by Google decides in which form the recaptcha service is displayed on our website – in the form of a checkbox or by text input. Further information on Google’s data protection policy can be found at www.google.com/policies/privacy/.
i) Facebook Remarketing
We use Facebook’s remarketing function “Custom Audiences” on our website. This feature allows us to target visitors to our site with advertising by showing personalized, interest-based Facebook ads to visitors to the site when they visit Facebook. To perform the function, Facebook’s remarketing tag is implemented on our website.
This tag is used to connect directly to Facebook servers when you visit the site. This transmits to the Facebook server which of our websites you have visited. Facebook associates this information with your personal Facebook user account. For more information about Facebook’s collection and use of this information, your rights in this regard, and how Facebook can protect your privacy, please see Facebook’s Privacy Notice at https://www.facebook.com/about/privacy/. If you do not want Facebook to directly associate the information it collects with your Facebook user account, you can disable the “Custom Audiences” remarketing feature here. To do this, you must be logged into Facebook.
j) Legal basis for the services under g) – i)
The Google Analytics, Google Recaptcha and Facebook Remarketing services are used by us for the purpose of tailoring our site to meet your needs, ensuring its security, evaluating the business performance of our site and optimising it. The legal basis for this is Art. 6 (1) (f) GDPR.
k) Google Fonts
In addition to maps from Google Maps, we also integrate fonts from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The use of Google Web Fonts enables us to guarantee a uniform presentation of our online offer and thus represents a legitimate interest according to Art. 6 (1) (f) GDPR. For this it is necessary that your browser establishes a connection with the servers of Google. In doing so, Google in turn obtains knowledge of your IP address. Your browser then loads the web fonts into your browser cache.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.. Google LLC, based in the U.S., is certified for the U.S. European Privacy Shield, which is a data protection agreement. This ensures compliance with the data protection level applicable in the EU.
3)Storage period
We store your data at most until the fulfilment of the purpose associated with the storage or the expiry of the statutory or possible contractual storage periods, warranty and guarantee rights and/or statutory obligations to provide evidence. Data which we obtain via cookies (e.g. Google Analytics) will be deleted by us at the latest after 3 years.
If the storage purpose does not apply or if a legally prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.
4)Your rights
If the respective legal requirements are met, you as a user of our website have the following rights at all times:
Right of access by the data subject, Art. 15 GDPR
Right to rectification, Art. 16 GDPR
Right to erasure, Art. 17 GDPR
Right to restriction of processing, Art. 18 GDPR
Right to data portability, Art. 20 GDPR
Right to object, Art. 21 GDPR
In order to process a request, we are required to verify the identity of the requestor. This measure serves to protect your data from unauthorized access by third parties.
In addition, you have the right to appeal to a supervisory authority. The Data Protection Commissioner in Estonia (“The Data Protection Inspectorate”) is our competent authority. You will find the website here: https://www.aki.ee/en