Privacy Statement

1. General remarks and mandatory information

Data protection

The aim of data protection, and also our objective at Adolf Würth GmbH & Co. KG, is to ensure that personal data is handled in such a way that every data subject’s right to privacy is protected.

In order to achieve this objective, all functions responsible for the processing of personal data must observe applicable EU legislation (General Data Protection Regulation (GDPR)) and all national data protection laws.

Personal data may only be collected and processed subject to the GDPR or other applicable laws. The essential underlying principles of the GDPR are:

  • lawfulness of processing, fairness of processing, transparency,
  • purpose limitation,
  • data minimization,
  • accuracy of data processing,
  • storage limitation and erasure concepts,
  • integrity and confidentiality.

Handling personal data responsibly but also being aware of the risks of IT systems and applications are other key objectives of Adolf Würth GmbH & Co. KG.

Information to be provided by data controller and rights of data subjects

Name and contact information of the data controller

The controller is the natural person or legal entity that, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

The controller responsible for data processing in this app is:

Adolf Würth GmbH & Co. KG,
Reinhold-Würth-Straße 12–17,
74653 Künzelsau-Gaisbach,
GERMANY,
phone: +49 7940 15-0,
email: info@wuerth.com.

Contact information of the data protection officer

You can contact our data protection officer at datenschutz@wuerth.com.

Purpose of data collection, processing, or use

Adolf Würth GmbH & Co. KG is Germany's leading specialist in the sale of assembly and fastening materials.

The collection, processing, or use of personal data serves this corporate purpose or supporting secondary purposes, such as customer service.

Functional principle of the app

When being used, the app is connected to the current Würth online shop. From there, the app retrieves and displays the required contents optimized for your mobile device. Depending on the configuration of your mobile device, the app offers additional features.

What personal data do we collect from you?

We make a distinction between data that you explicitly and knowingly provide to us and data that is automatically transmitted to us when you use our apps (usage data).

Data that you explicitly and knowingly provide to us

For instance, if you register, place an order, add something to your shopping basket, participate in sweepstakes, or get in touch with us via the feedback feature, we collect all the data that you provide to us (e.g., by filling in the corresponding fields). This includes, for example, data such as:

  • your name,
  • your email address,
  • your customer and partner number,
  • the password you have chosen (which is, of course, stored in encrypted form),
  • your address,
  • your profile picture.

The provision of data is voluntary. Appropriate indicators are used to highlight whether you have to provide certain pieces of information to be able to use the app function (mandatory information).

Usage data

If you use our apps and have given your consent in the privacy settings, technical data will be transmitted to us automatically. This data includes:

  • identifiers/device identifiers (e.g., Android Advertising ID (AdID) and iOS Identifier for Advertisers (IDFA)),
  • end device used,
  • operating system and version used,
  • app version,
  • language settings,
  • date and time.

Purpose of data collection, processing, or use

Adolf Würth GmbH & Co. KG is Germany's leading specialist in the sale of assembly and fastening materials.

The collection, processing, or use of personal data serves this corporate purpose or supporting secondary purposes, such as customer service.

Groups of people concerned and related data or data categories

Relevant groups of people include:

  • current employees,
  • former employees,
  • interested parties,
  • customers,
  • suppliers,
  • service providers, and
  • other business partners.

The relevant data includes all personal data that is necessary for the fulfillment of the purpose concerned. A detailed presentation of the types of personal data that are being processed is given in the following.

Legal grounds

The processing of personal data is only lawful if permitted by a law, i.e. if there is a legal basis for the processing activity or the data subject has consented to the processing.

Personal data is only processed in our company in accordance with legal provisions. These generally include,

  • when consent to the processing of personal data has been given (Article 6(1a) GDPR),
  • when personal data has to be processed for the performance or initiation of a contract (Article 6(1b) GDPR),
  • when personal data has to be processed to comply with legal requirements (Art. 6(1c) GDPR),
  • when personal data is processed on the basis of a legitimate interest or a legitimate interest of a third party (Article 6(1f) GDPR).

Special legal basis of data processing for contracts

Adolf Würth GmbH & Co. KG supplies almost exclusively to professionals. Unless agreed otherwise in individual cases, our legal basis for processing your personal data for the performance of a contract is as follows:

  1. If you are a registered businessperson in accordance with the German Commercial Code (HGB) or a freelancer, processing your personal data is necessary for the performance of the contract or for the preparatory steps to enter into a contract (Art. 6(1b) GDPR).
  2. Or, if you are an employee of a company—for example, a purchasing agent—processing your personal data is necessary for the purposes of the legitimate interests pursued by Adolf Würth GmbH & Co. KG (Art. 6(1f) GDPR). The legitimate interests of Adolf Würth GmbH & Co. KG—the sale of its goods and services—include, but are not limited to, the freedom to conduct a business and choose an occupation within the EU.

In line with the intended purpose for processing your data, we aggregate data that is saved and processed in our central systems as a result of interactions with customers or interested parties, as well as their employees, via our various communication channels (in particular, sales force, pick-up shops, telesales, and online shop) and also use this data when contacting you through a different communication channel (e.g., our sales representatives are granted access to data regarding your searches in our online shop).

For simplification purposes, we shall refer only to “data processing for the performance of a contract” below.

Potential recipients of personal data

The potential recipients of personal data include:

  • public authorities if legally required,
  • service providers and other business partners as far as this is necessary for the purpose in question and allowed or required by a legal provision, or if the data subject has given his/her consent.

Data transfer to third countries or international organizations

In the case of our transferring your data to a third country (a country that is not an EU member state) or an international organization, we will provide you with all required information.

Deadlines for the erasure of data

Personal data will be deleted in accordance with the applicable statutory or contractual regulations on the deletion of data, subject to any statutory or contractual retention periods. Most of these legal requirements are based on the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods set out in these codes require data controllers to retain data for up to ten years after the end of a business relationship or pre-contractual legal transaction.

Other legal provisions may impose even longer retention periods on data controllers, for instance, for the retention of evidence in accordance with relevant statutes of limitations. The general statute of limitations is three years. Special statutes of limitation of up to 30 years or longer may, however, apply in certain situations. Personal data that is not subject to a legal or contractual retention period or erasure obligation is deleted after it is no longer necessary in relation to the purposes for which it was collected or otherwise processed.

Your data protection rights (Art. 12 et seqq. GDPR)

The data subject has various data protection rights. These rights are explained below. The contact information indicated above can be used to exercise these rights.

Right of Access (Art. 15 GDPR), Right to Rectification (Art. 16 GDPR), Right to Erasure (Art. 17 GDPR), and Right to Restriction of Processing (Art. 18 GDPR).

Subject to the applicable legal regulations, you have the right to obtain information, at any time and free of charge, about all your personal data stored by the data controller, its origin, recipients and purpose of storage, as well as, where applicable, the right to rectification, erasure, or restricted processing of your data.

Right to object (Art. 21 GDPR)

Every data subject has the right to object to the processing of their personal data on the basis of Art. 6(1f) GDPR or for direct marketing purposes. In the event we receive an objection to the processing of your personal data, we will carefully review your objection on a case-by-case basis. If your objection to the processing of your personal data requires us to delete your data, we will delete your data in accordance with statutory retention requirements. Your objection does not affect the lawfulness of processing based on your consent before its withdrawal.

Right to data portability (Art. 20 GDPR)

You have the right to have data that we process automatically on the basis of your consent or to perform a contract provided to you or to a third party in a commonly used, machine-readable format. If you request the direct transmission of the data to another controller, this will only be done if it is technically feasible.

Obligation to disclose data

Every data subject has the right to know whether the provision of personal data is a legal or contractual requirement, or a requirement necessary to enter into a contract, as well as whether the data subject is obliged to provide the personal data and what the possible consequences of failure to provide such data would be.

Right to lodge a complaint with the competent supervisory authority

The data subject has the right to lodge a complaint with the competent supervisory authority if the data subject believes that the processing of personal data relating to him or her infringes his or her rights. The responsible supervisory authority for data protection issues is the data protection officer responsible for the federal state in which our company has its registered office. The data subject may also lodge a complaint with a supervisory authority responsible for the data subject’s habitual place of residence or place of the alleged infringement. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/EN/Service/Anschriften/Laender/Laender-node.html.

Revocation of your consent to process data

Many data processing operations can only be performed with your consent. You can withdraw your consent at any time. All you have to do is change your selection in the privacy settings of the app. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Use of your data for (direct) marketing purposes

Irrespective of your subscription to our newsletter, we may use your data, and especially your email address, for (direct) marketing purposes. We only use your data if you have not objected to the use of your data for this purpose. We would like to inform you in this statement, and every other contact, that you can object to the use of your data for (direct) marketing purposes at any time and without incurring any additional costs other than the usual transmission costs according to the basic rates of your internet provider.

SSL and/or TLS encryption

This app uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the app operator.

Thanks to SSL and/or TSL encryption, the data you transfer to us cannot be read by third parties. It is active by default.

2. Data collection in our app

Würth IT GmbH: the Würth Group’s global IT service provider

We process your data in the data centers of Würth IT GmbH, Drillberg 6, 97980 Bad Mergentheim, Germany (hereinafter “Würth IT”). We rely on the services of Würth IT in order to render our services. We have concluded an order processing agreement with Würth IT.

For more information on how Würth IT handles personal data, please refer to the privacy statement of Würth IT at https://www.wuerth-it.com/en/it/datenschutz.php.

Tracking tools

This app uses various tracking tools to make our services more user-friendly, effective and secure. In the app’s privacy settings, you can decide for yourself which tracking tools you would like to enable or disable. When tools are deactivated, some of the features available in this app may no longer work properly. Unless technically necessary, tracking tools are treated separately in the privacy settings and only activated after prior approval. An overview of the tracking tools used can be found later on in the privacy statement.

Server log files

When you visit our app and call up our online shop interfaces, we process information automatically transmitted to us by your end device in server log files. The purpose of data processing is a secure operation of the interfaces.

Categories of processed data

Data is collected from the following categories:

  • User agent
  • Time of the server request
  • IP address
  • URL accessed
  • Session ID
  • Search terms

Legal basis

Data is processed on the lawful basis set out in Art. 6(1f) GDPR and Section 25(2) no. 2 TTDSG (German Telecommunications Telemedia Data Protection Act). As an app operator, we have a legitimate interest in the secure operation of the app.

Retention periods

The data processed in connection with the collection of server log files is deleted automatically after 14 days.

Contact form

You can place your inquiries by mail, phone, or email. We will store your information including the contact details you provide for the purpose of processing the inquiry and for follow-up questions.

Categories of personal data

Depending on the information you provide, we process the following categories of personal data as part of an inquiry:

  • Customer number
  • Name
  • Email address
  • Phone number
  • Address
  • Your message

Legal basis

The required data is processed for the performance of a contract. Any personal data provided voluntarily is processed on the legal basis set out in Article 6(1f) GDPR, according to which we may process your personal data whenever this is in our legitimate interest. Our legitimate interest is based on maintaining contact with you, our customers, improving the quality of our advice and services, and being able to contact you more easily should we have any follow-up questions.

Retention periods

We will store the data you provide until you request the erasure of the data or the purpose of the data storage is no longer applicable (e.g., after your request has been processed). Statutory retention periods may apply.

Sweepstakes entry form

When you fill out an entry form to participate in a sweepstakes, the information in that form, including the contact information you have entered, is saved for the purpose of carrying out the sweepstakes, determining the winner, and notifying the winner.

Categories of personal data

Depending on the sweepstakes, the following categories of personal data may be processed via the sweepstakes entry form:

  • Customer number
  • Partner number
  • Company name
  • First name
  • Last name
  • Email address
  • Address

Legal basis

Your data is processed on the basis of your consent in compliance with Art. 6(1a) GDPR.

Retention periods

We will store the data you have entered in the sweepstakes entry form until you request the erasure of the data or the purpose of the data storage is no longer applicable (e.g., after the sweepstakes is over). Statutory retention periods may apply.

Online shop

You can register in our online shop via the app in order to use additional features on our website. The data provided will only be used for the purpose of providing the individual feature or service for which you have registered. All mandatory information must be provided for the registration to be successful. Otherwise, we will refuse registration.

Categories of processed data

The following data is processed for the purpose of using the online shop:

Company information

  • Company name*
  • Name of owner for sole proprietorship
  • Street address*
  • Country*
  • Post code*
  • Town*
  • Website
  • Industry*
  • Number of people working with Würth products*
  • VAT ID number

Personal details

  • Salutation*
  • First name*
  • Last name*
  • Language
  • Position*
  • Email*
  • Phone*
  • Mobile phone
  • Fax

Legal basis

All mandatory data (marked with an asterisk) provided during registration in our online shop is processed for the performance of a contract.

Any personal data provided voluntarily is processed on the legal basis set out in Article 6(1f) GDPR, according to which we may process your personal data whenever this is in our legitimate interest. Our legitimate interest is based on improving the quality of our consulting services and being able to contact you more easily should we have any follow-up questions.

Email contact

For important changes, such as a change in our services or essential technical changes, we will inform you using the email address provided upon your registration.

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship. After deleting your online shop access, we will continue to store your Würth customer account and customer details, subject to the applicable statutory retention periods.

Profile picture

You can upload a personal profile picture in the app. Having been uploaded, your profile picture will be stored on our server along with your customer and partner number. This way, we can provide you with the same picture when you log into the app on another end device. You can also delete your profile picture again. In this case, the picture will be deleted from our server as well.

Legal basis

Any personal data provided voluntarily is processed on the legal basis set out in Article 6(1f) GDPR, according to which we may process your personal data whenever this is in our legitimate interest. Our legitimate interest is to ensure a customer-friendly user experience of the app.

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship. Furthermore, you can delete your profile picture yourself at any time.

Linking customer activities across contact points

When you interact with one of our contact points as a customer or interested party, or as an employee of the same, we aggregate data that is saved and processed in our central systems via our various communication channels (in particular, sales force, pick-up shops, telesales, online shop, and app) and also use this data when contacting you through a different communication channel (e.g., our sales representatives are granted access to data regarding your searches in our app).

Categories of processed data

  • The information you entered when registering (in the online shop or another contact point)
  • Activity-related information (e.g., purchased items, items marked as favorites, items saved in the shopping basket, and items viewed)

Legal basis

This data is processed for the performance of a contract.

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship. After deleting your online shop access, we will continue to store your Würth customer account and customer details, subject to the applicable statutory retention periods.

Personalized product recommendations

If you have agreed to the use of tools for personalized product recommendations in our app, we will use your usage history for personalized product recommendations in this app after you have logged in. This includes product pages and categories that you visited or searched for. You can withdraw your consent to the analysis of your browsing behavior at any time. Please note that we will be unable to provide personalized product recommendations to you once you withdraw your consent.

Legal basis

Tools to create personal product recommendations are used on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of tools by not consenting to the use of tools. However, please note that by doing so, you may not be able to use all of the features in this app. Should you choose not to consent, product recommendations will remain active, but all the data will be pseudonymized. These recommendations are based solely on the activities of your current session. After closing the app or 30 minutes of inactivity, a session ends, which means that the actions can no longer be accessed.

Information generated through tools for personalized product recommendations is not passed on to third parties.

Retention periods

If you do not or no longer agree to your data being stored and used, you can disable the storage and use of your data in the settings. Your opt-out decision will be stored locally on your device. If you uninstall the app or delete storage data, your decision will also be deleted. After reinstalling or restarting the app, you will again be asked whether such tools may be used.

Jumps to other web pages

When using the app, you may be forwarded to other web pages. This is done either by switching to your browser or by displaying the web page within the app. Please note that in both cases your data may be processed by the web page. However, in this case, processing is not subject to the privacy statement of our app, but that of the respective web page operator.

3. Analytics tools and advertising

Countly

This app uses features from the app analytics tool Countly for the statistical analysis of app user behavior. These features are provided by Countly Ltd, 100 Avebury Boulevard, Milton Keynes, United Kingdom, MK9 1FH. If you consent to the use of Countly, a user ID will be created and stored on your end device. This user ID is used for recognition and allows us to analyze your use of the app. For this purpose, the information about the use of this app generated by Countly is stored on our server.

Legal basis

Countly is used for the statistical analysis of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool. However, please note that by doing so, you may not be able to use all of the features of the app.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Categories of processed data

  • Installation ID (UUID)
  • IP address
  • Customer number*
  • Partner number*
  • Operating system
  • Device
  • Resolution
  • App version
  • Network operator
  • Language
  • Country
  • Place of residence
  • SDK
  • Salutation*
  • First name*
  • Last name*
  • Company*
  • Interactions in the app (e.g., pages visited, products searched for)

Data marked with an asterisk can only be processed after prior login.

Google Analytics for Firebase

This app uses features from the app analytics service Google Analytics for Firebase for the statistical analysis of app user behavior. These features are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. The use of Google Analytics for Firebase features may result in the transmission of personal data to the servers of Google LLC in the USA. Google LLC has concluded standard contractual clauses, as published by the European Commission, with us for the transmission of personal data to Google LLC based in the USA. The data processing agreement we have concluded with Google and further information on data protection can be found in Firebase’s data processing terms at:

https://business.safety.google/intl/en/adsprocessorterms/
https://firebase.google.com/terms/data-processing-terms

IP anonymization

We have enabled the IP anonymization function for Google Analytics. As a result, Google shortens your IP address within the member states of the European Union or in other member states of the European Economic Area before transferring data to the USA. Only under exceptional circumstances is the complete IP address transmitted to a Google server in the USA and shortened there.

Demographics tracking in Google Analytics

We also use the “Demographics” feature of Google Analytics for Firebase. This allows us to generate reports on the age, gender, and interests of app users. This data is derived from the Android Advertising ID (AdID) or iOS Identifier for Advertisers (IDFA). Analytics creates an identifier based on the respective ID. This identifier contains information on demographic data and interests derived from users’ various app activities. This data cannot be attributed to a specific person. You can disable this feature at any time by adjusting the ads settings in your Google account or by objecting to the collection of your data by Google Analytics for Firebase in our app.

Legal basis

Google Analytics for Firebase is used for the statistical analysis of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool. However, please note that by doing so, you may not be able to use all of the features in this app.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting or reinstalling the app, you will again be asked whether the tool may be activated.

Categories of processed data

  • Advertising ID (AdID/IDFA)*
  • IDFV/Android ID
  • Firebase installation ID
  • Analytics app instance ID
  • Age*
  • App version
  • Country*
  • Device
  • Gender*
  • Interests*
  • Language
  • Operating system
  • Interactions in the app (e.g., pages visited, products searched for)

iOS only processes data marked with an asterisk if you have agreed to the transmission of the IDFA beforehand.

Firebase Crashlytics

This app uses features from the crash reporting tool Firebase Crashlytics. In the event of a crash, anonymous information will be transmitted to Google’s servers in the USA. This information does not contain any personal data. These features are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter “Google Ireland”). We have concluded a data processing agreement with Google Ireland. The use of Google Analytics for Firebase may result in the transmission of personal data to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter “Google LLC”) in the USA. Google Ireland has concluded standard contractual clauses, as published by the European Commission, with Google LLC for the transmission of personal data to Google LLC based in the USA. For more information on data protection, please refer to Firebase Crashlytics’ data processing terms at:

https://firebase.google.com/terms/data-processing-terms
https://firebase.google.com/support/privacy

Legal basis

Firebase Crashlytics is used for the reporting of any crashes of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Categories of processed data

  • Condition of the app and end device at the time of the crash
  • Crashlytics installation ID
  • Stack trace
  • Time of the crash
  • App version
  • Information about jailbreak / root access
  • End device
  • Free RAM
  • Free disk space
  • Operating system
  • Customer number
  • Partner number
  • Language
  • Recent log messages (e.g., pages visited, products searched for)

Firebase Performance Monitoring

This app uses features from the app analytics tool Firebase Performance Monitoring for the statistical analysis of our app’s performance. These features are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter “Google Ireland”). We have concluded a data processing agreement with Google Ireland. The use of Firebase Performance Monitoring may result in the transmission of personal data to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter “Google LLC”) in the USA. Google Ireland has concluded standard contractual clauses, as published by the European Commission, with Google LLC for the transmission of personal data to Google LLC based in the USA.

The data processing agreement we have concluded with Google and further information on data protection can be found in Firebase’s data processing terms at:

https://firebase.google.com/terms/data-processing-terms
https://firebase.google.com/support/privacy

Legal basis

Firebase Performance Monitoring is used for the analysis of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Categories of processed data

  • Firebase installation ID
  • IP address
  • Device
  • Operating system
  • Free RAM
  • Free disk space
  • CPU utilization
  • Network operator
  • Network information (e.g., WiFi, LTE, 3G)
  • Country
  • Language
  • App version

Würth Analytics

This app uses features from Würth’s web analytics service based on the open-source software Matomo/Piwik. If you consent to the use of Würth Analytics, a user ID will be created and stored on your end device. This user ID is used for recognition and allows us to analyze your use of the app. For this purpose, the information on the use of this app generated by the tool is stored on our server.

Legal basis

Würth Analytics is used for the statistical analysis of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool. However, please note that by doing so, you may not be able to use all of the features in this app. Should you choose not to consent, Würth Analytics will remain active, but all of the data will be anonymized. This means all of the data that is processed cannot be connected to your customer or partner number.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

IP anonymization

We have enabled the IP anonymization function for this tool. This means that Würth shortens your IP address.

Categories of processed data

  • IP address
  • Customer number*
  • Partner number*
  • Device
  • Resolution
  • Country
  • Place of residence
  • Salutation*
  • First name*
  • Last name*
  • Company*
  • Interactions in the app (e.g., pages visited, products searched for)

Data marked with an asterisk can only be processed after prior login.

App Events (Meta)

This app uses features from the app analytics tool App Events by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter „Meta“) for the statistical analysis of app user behavior.

These features make it possible to track the behavior of the app users to a particular provider’s app, particularly after they have been forwarded to that app by clicking on a Facebook advertisement. By doing so, it is possible to evaluate the effectiveness of Facebook advertisements for statistical purposes and market research and to optimize future advertising campaigns.

The collected data remains anonymous for us as the operator of the app; we are not able to determine the identity of the users. However, Meta stores and processes the data, linking the information to the corresponding user profile so that Meta can use the data for its own advertising purposes, in accordance with Meta’s data use policy. This allows Meta to place advertisements on pages of Meta. We as the app operator cannot influence the use of this data.

Please refer to Meta’s data privacy policy for further information on protecting your personal privacy: https://www.facebook.com/about/privacy/.

Furthermore, you can disable the “Custom Audiences” remarketing function in the “Ad Settings” section under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. You have to be logged into Facebook in order to do this.

If you do not have a Facebook account, you can disable Facebook’s user-based advertising on the website from the European Interactive Digital Advertising Alliance: https://www.youronlinechoices.com/uk/your-ad-choices.

Legal basis

App Events is used for the statistical analysis of our app on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool.

If you do not or no longer agree to your data being stored and used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Categories of processed data

  • Advertising ID (IDFA)*
  • Device ID
  • Device
  • Resolution
  • CPU
  • Free disk space
  • SDK
  • Operating system
  • App version
  • Network operator
  • IP address
  • Interactions in the app (e.g., pages visited, products searched for)

*Only on devices with iOS version 14 or later if the dialog for accessing the advertising ID has been agreed to.

4. Newsletter and electronic communication

Data processing for newsletter registrations

Should you wish to receive the newsletter offered in our app, we need an email address from you along with information allowing us to verify that you are the owner of the email address given and that you agree to receiving our newsletter. Any additional data is collected on a voluntary basis only.

The data entered in the newsletter registration form will be processed exclusively on the basis of your consent (Art. 6(1a) GDPR). You can withdraw your consent to the processing of your data for the distribution of our newsletters at any time, for example, by clicking on the “unsubscribe” link in the newsletter. Your withdrawal of consent does not affect the lawfulness of processing based on your consent before its withdrawal.

Newsletter distribution through Inxmail

Adolf Würth GmbH & Co. KG uses the newsletter distribution service Inxmail. This service is provided by Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

Inxmail is a newsletter distribution service for the organization and analysis of newsletter marketing. The data processed for the purpose of subscribing to our newsletter will be stored on Inxmail's servers in Germany.

Data analytics through Inxmail

To analyze the success of our newsletter marketing, all emails sent out with Inxmail utilize web beacons or “tracking pixels,” which track recipients’ interactions with the newsletter. Pixels track whether an email newsletter has been opened, which links recipients clicked on, and at what time a newsletter was read.

Inxmail processes the following data for its newsletter analytics:

  • Master data (e.g., name, address)
  • Contact details (e.g., email address, phone number)
  • Meta and communications data (e.g., device information, IP address)
  • Usage data (e.g., interests, access times)

You can withdraw your consent to these newsletter analytics separately. If you do not want Inxmail to analyze your data, you have to deactivate analytics for the newsletter in question. We provide an unsubscribe link in every newsletter we send out.

Legal basis

This data is processed on the basis of your consent (Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act)). You can withdraw your consent at any time. Your withdrawal of consent does not affect the lawfulness of processing based on your consent before its withdrawal.

Retention periods

The data provided when registering for the newsletter will be used to distribute the newsletter until such time as you cancel your subscription, when said data will be deleted. This does not apply to data we store for other purposes (e.g., email addresses needed for online shop registration).

Conclusion of a data processing agreement

We have concluded a data processing agreement with Inxmail in accordance with Art. 28(3) GDPR to ensure that Inxmail protects the personal data of our customers and does not disclose any personal data to third parties.

Product review emails

Adolf Würth GmbH & Co. KG uses Bazaarvoice to send out product review emails and process product reviews. This service is provided by Bazaarvoice Inc, 10901 Stonelake Blvd, Austin, TX 78759, USA.

We use Bazaarvoice to send you product review emails asking you to submit product reviews on products you have purchased. Your personal data will be passed on to Bazaarvoice for this purpose. Bazaarvoice will use your data solely to personalize and distribute these review emails. Your data is not stored permanently nor disclosed to third parties by Bazaarvoice.

More information on Bazaarvoice’s privacy policy can be found at https://www.bazaarvoice.com/legal/privacy-policy/. Bazaarvoice processes some of your personal data in the USA. Bazaavoice has concluded standard contractual clauses, as published by the European Commission, with us for the transmission of personal data to the USA.

Legal basis

Your personal data is processed on the basis of your consent in accordance with Art. 6(1a) GDPR. You can withdraw your consent at any time if you no longer wish to submit product reviews. We provide an unsubscribe link in every product review email.

Retention periods

We will store the data you have entered for the purpose of submitting a product review until you withdraw your consent to receiving our product review emails or request the erasure of the data, in which case your data will be deleted from Bazaarvoice’s servers. Bazaarvoice uses this data solely for sending out product review emails and processing product reviews.

Conclusion of a data processing agreement

We have concluded a data processing agreement with Bazaarvoice in accordance with Art. 28(3) GDPR to ensure that Bazaarvoice protects the personal data of our customers and does not disclose any personal data to third parties. The disclosure of your data to other companies for advertising purposes is expressly excluded.

Shopping basket reminders

Data processing for shopping basket reminders

When you add products to your shopping basket in our online shop, we offer you the option of receiving shopping basket reminders.

The data for the shopping basket reminders is processed on the basis of your consent (Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act)). You can withdraw your consent to the processing of your data for the shopping basket reminders at any time, for example, by using the “unsubscribe” link in the email. Your withdrawal of consent does not affect the lawfulness of processing based on your consent before its withdrawal.

Shopping basket reminders emailed by Inxmail

Adolf Würth GmbH & Co. KG uses the Inxmail service for sending shopping basket reminders by email. This service is provided by Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

Inxmail is a newsletter distribution service for the organization and analysis of newsletter marketing. The data processed for the purpose of subscribing to our newsletter will be stored on Inxmail's servers in Germany.

Data analytics through Inxmail

To analyze the success of our shopping basket reminders, all the emails sent out by Inxmail utilize web beacons or “tracking pixels,” which track recipients’ interactions with the email. Pixels track whether a shopping basket reminder has been opened, which links recipients clicked on, and at what time the email was read.

Inxmail processes the following data for its newsletter analytics:

  • Master data (e.g., name, address)
  • Contact details (e.g., email address, phone number)
  • Meta and communications data (e.g., device information, IP address)
  • Usage data (e.g., interests, access times)

You can withdraw your consent to these newsletter analytics separately. If you do not want Inxmail to analyze your data, you have to deactivate analytics for the newsletter in question. We provide an unsubscribe link in every shopping basket reminder we send out.

Legal basis

This data is processed on the basis of your consent (Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act)). You can withdraw your consent at any time. Your withdrawal of consent does not affect the lawfulness of processing based on your consent before its withdrawal.

Retention periods

The data processed for the purpose of sending you shopping basket reminders will be saved until such time as you opt out of receiving shopping basket reminders, when said data will be deleted. This does not apply to data we store for other purposes (e.g., email addresses needed for online shop registration).

Conclusion of a data processing agreement

We have concluded a data processing agreement with Inxmail in accordance with Art. 28(3) GDPR to ensure that Inxmail protects the personal data of our customers and does not disclose any personal data to third parties.

Transactional emails

Adolf Würth GmbH & Co. KG uses Inxmail to send out transactional emails relating to your orders. Transactional emails are a type of email sent out automatically in response to specific business transactions such as order confirmations or delivery notifications.

This service is provided by Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

Inxmail processes the following data for its transactional email service:

  • Technical information on end user device: operating system, information on browser used, IP address of recipient, further information on end-user device and internet connection
  • Contact details of recipient: email address, name where applicable
  • User interaction data: information on which newsletters have been opened, which links have been clicked, dates and times of interactions

Legal basis

The data needed for the distribution of transactional emails relating to your orders is processed for the performance of a contract.

Data processing for the purpose of documenting our compliance with information requirements is based on Art. 6(1f) GDPR (processing for the purpose of the legitimate interests pursued by the data controller).

Retention periods

All data provided by you for the purpose of receiving transactional emails is deleted from our servers and those of Inxmail by regular deletion routines after an email has been sent out.

All data stored by us for the purpose of documenting our compliance with information requirements is deleted from our servers and those of Inxmail by regular deletion routines six months after an email has been sent out.

Automated internal forwarding of emails

When contacting our service team by email, the contact details provided by the customer via email may be used to process the inquiry in question and for other digital transactions for the purpose of automatically forwarding the inquiry to the responsible internal department where possible. Emails are forwarded automatically to ensure the proper handling of such business transactions and guarantee the fast processing of customer inquiries. The contact details provided are transferred to and stored in our customer database.

Legal basis

The data you provided in this context are processed on the basis of our legitimate interest in accelerating and optimizing our processes for our customers (Art. 6(1f) GDPR).

Retention periods

The personal data processed for this purpose will be retained for the duration of your business relationship with us or until you request the deletion of your data, subject to the applicable statutory retention periods.

5. Plugins and tools

YouTube

We have embedded YouTube videos in our online services, which are stored on www.youtube.com.

Select the videos and you will automatically be forwarded to www.youtube.com or the corresponding app. These features are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. The use of YouTube may result in the transmission of personal data to the servers of Google LLC in the USA.

For more information on YouTube and Google’s privacy policy, please visit:

https://www.google.com/intl/en/policies/privacy/ (Google privacy policy)
https://policies.google.com/terms?hl=en#toc-software (Google terms of service)
https://www.youtube.com/static?gl=GB&template=terms&hl=en (YouTube terms of service)

Meta Messenger

We have embedded links to Meta Messenger in the app.

Clicking on such a link will automatically forward you to www.messenger.com or the corresponding app. The messenger is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland.

Google Maps

We use services of Google Maps in this app. This allows us to display interactive maps directly in the app and enables you to conveniently use the map feature. These services are provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter “Google Ireland”). We have concluded a data processing agreement with Google Ireland. The use of Google Maps may result in the transmission of personal data to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter “Google LLC”) in the USA. Google Ireland has concluded standard contractual clauses, as published by the European Commission, with Google LLC for the transmission of personal data to Google LLC based in the USA. These standard contractual clauses can be viewed here: https://business.safety.google/intl/en/adsprocessorterms/.

When you use Google Maps, Google receives the information that you have accessed the corresponding subpage of our app. Your data will be transferred to Google regardless of whether you are signed into a Google user account or not. If you are signed into your Google account, your data will be linked directly to your account. If you do not wish to be linked to your Google profile, you have to log out of your Google account before viewing a map. Google stores your data as a user profile and uses that information for the purposes of advertising, market research, and/or designing its website to meet users’ needs. This type of analysis is carried out (even for users who are not logged in) in order to provide appropriate advertising in particular. You have the right to object to the creation of these user profiles; to do so, please send your request to Google.

For more information on Google Maps and Google’s privacy policy, please visit:

https://www.google.com/intl/en/policies/privacy/ (Google privacy policy)
https://policies.google.com/terms?hl=en#toc-software (Google terms of service)

Legal basis

Google Maps is used on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool. However, please note that by doing so, you may not be able to use all of the features in this app.

If you do not or no longer agree to the tool being used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Apple Maps (only in the iOS app)

This app uses features from Apple Maps to display interactive maps directly in the app, enabling you to conveniently use the map feature. These features are provided by Apple Inc., One Apple Park Way, Cupertino, CA 95014, USA. The use of Apple Maps results in the transmission of certain information to Apple.

For more information on the purpose and scope of data collection and processing by Apple Maps, please see the privacy policy: https://www.apple.com/legal/privacy/data/en/apple-maps/.

Legal basis

Apple Maps is used on the basis of your consent in compliance with Art. 6(1a) GDPR and Section 25(1) TTDSG (German Telecommunications Telemedia Data Protection Act).

You can prevent the use of the tool by not consenting to the use of the tool. However, please note that by doing so, you may not be able to use all of the features in this app.

If you do not or no longer agree to the tool being used, you can withdraw your consent to the storage and processing of your data in the settings. Your opt-out decision will be stored on your device. If you delete the storage data of the app or uninstall the app, your decision will also be deleted. After restarting the app, you will again be asked whether the tool may be activated.

Friendly Captcha

We use Friendly Captcha (hereinafter referred to as “Friendly Captcha”) in our app. This service is provided by Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany.

Friendly Captcha is used to check whether the data entered in this app (e.g., on a contact form) has been entered by a human or by an automated program. To do this, Friendly Captcha analyses the behavior of the app user based on various characteristics. Friendly Captcha uses various information for the analysis (e.g., anonymized IP address, referrer, visit time, etc.). For further information, please refer to: https://friendlycaptcha.com/en/legal/privacy-end-users/.

The data is saved and analyzed by virtue of Art. 6(1f) GDPR. As the app operator, we have a legitimate interest in protecting our app against spam and other types of automated abuse.

Conclusion of a data processing agreement

We have concluded a data processing agreement with Friendly Captcha GmbH in accordance with Art. 28(3) GDPR to ensure that Friendly Captcha GmbH protects the personal data of our customers and does not disclose any personal data to third parties.

6. Payment providers

PayPal

Our app accepts payments through PayPal. This payment service is provided by PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”).

When you select payment through PayPal, the payment details you provide will be transmitted to PayPal. Further information on how PayPal handles personal data can be found in the privacy statement at: https://www.paypal.com/us/legalhub/privacy-full.

Legal basis

Your data is transmitted to PayPal for the performance of a contract.

Credit card

Our app accepts payments by credit card through our payment service provider Ingenico Payment Services GmbH, Daniel-Goldbach-Str. 17-19, 40880 Ratingen (hereinafter “Ingenico”).

When you select payment by credit card, all personal and payment-related data required to complete the transaction is transmitted directly to your bank or credit card company and Ingenico. Your credit card details are collected, stored, and encrypted only by Ingenico. For more information on how Ingenico handles personal data, please refer to Ingenico’s privacy notice at https://ingenico.com/en/legal/privacy-policy.

Legal basis

Your data is transmitted to Ingenico for the performance of a contract.

Sofortüberweisung

Our app accepts payments through Sofortüberweisung (“immediate transfer”). This payment service is provided by Sofort GmbH Theresienhöhe 12, 80339 Munich, Germany (hereinafter “Sofortüberweisung”). Adolf Würth GmbH & Co. KG does not collect and store any data.

When selecting payment through Sofortüberweisung, you need to provide the IBAN, PIN, and TAN of your online bank account to Sofort GmbH.

Legal basis

Your data is transmitted to Sofort GmbH for the performance of a contract.

7. Processing outside the online shop

Processing customer data

Adolf Würth GmbH & Co. KG offers you the option of registering as a customer without access to the online shop. For this purpose, we collect, process, and use personal data for the performance of a contract.

Categories of data

We need the following data to register you as one of our customers:

  • Name of the company and legal structure (e.g., GmbH, limited liability company)
  • Head office (street address / post code / town)
  • Name and first name of contact
  • Phone
  • Name and first name of managing director/owner of the business

You can provide the following data voluntarily:

  • Email address (please note that the email address is mandatory for online shop access).
  • Telefax
  • If applicable, alternative invoice address
  • Mobile phone
  • Date of birth of the managing director/owner of the business

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship, subject to the applicable statutory retention periods.

Microsoft 365

Adolf Würth GmbH & Co. KG uses the productivity, collaboration, and exchange platform Microsoft 365. This service is offered by Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, USA (hereinafter “Microsoft”).

Microsoft 365 is a service that connects different platforms for online meetings, as a phone solution, for surveys, to share and edit documents, and for email communication, among other things, and that makes it possible to share information easily between platforms.

Legal basis

Personal data is processed with Microsoft 365 for contractual purposes (for the performance of a contract or for the preparatory steps to enter into a contract) or, if personal data is processed within the framework of an employment relationship or recruitment process, on the legal basis set out in Art. 6(1b) in conjunction with Art. 88 GDPR, Section 26 of the German Federal Data Protection Act (BDSG). Furthermore, we process personal data on the basis of our legitimate interests (Art. 6(1f) GDPR). Our legitimate interest for processing your data is based on ensuring effective and efficient communication and collaboration between our employees, applicants, interested parties, customers, suppliers, service providers, and other business and communication partners. These interests are based on the freedom to conduct a business and choose an occupation within the EU.

Categories of processed personal data

The following categories of personal data are processed for the purpose of using Microsoft 365:

  • Communication data (company, name, phone, email (if personal), address)
  • Contract master data (contract relationship, product and/or contract interest)
  • Log files, log data
  • Meta data (e.g., IP address, duration of participation in a meeting, etc.)
  • Content data (documents, photos, videos, audio, document-specific)

Retention periods

The data processed in connection with the use of Microsoft 365 is stored for as long as required for the specified purposes.

Conclusion of a data processing agreement

A data processing agreement was concluded with Microsoft. The latest version can be found under the following link:

https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA?lang=14

Cross-border pick-ups

As a registered customer, we also offer you the option of purchasing items from other Würth Group companies in the EU with your Adolf Würth GmbH & Co. KG account. For this purpose, we provide the respective Würth Group company with personal data for the performance of a contract.

Categories of data

Adolf Würth GmbH & Co. KG provides the following data to the respective Würth Group company abroad, which in turn processes the data:

  • Name of the company and legal structure (e.g., GmbH, limited liability company)
  • Head office (street address / post code / town)
  • Name and first name of contact
  • Phone
  • Name and first name of managing director/owner of the business

You can provide the following data voluntarily:

  • Email address
  • Telefax
  • If applicable, alternative invoice address
  • Mobile phone
  • Date of birth of the managing director/owner of the business

Retention periods

We will store all data entered for the duration of our business relationship. For that period, this data will also be available to the other Würth Group companies in the EU. Your data is deleted upon termination of the business relationship, subject to the applicable statutory retention periods.

Google Pay

In our pick-up shops, we also offer the option of paying with Google Pay. This payment service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter “Google”). The payment is processed via the “Google Pay” function on your end device, which charges the payment to one of the cards saved in Google Pay. Google Pay uses security features, which are integrated into the hardware and software of your device, in order to secure your transactions.

In order to approve your payment, you are required to enter a predefined code or verify it by means of the biometric features on your device. In order to process the payment, the information you provide as part of your order is forwarded to Google in encrypted form, along with the information about your order.

After the payment has been made, Google sends your device account number and a transaction-specific, dynamic security code to the end device in our shop used for the payment in order to confirm that the payment was successful.

For further information on how Google processes your personal data in connection with Google Pay, please refer to the privacy notice at: https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en.

Legal basis

Your data is transmitted to Google for the performance of a contract.

Apple Pay

In our pick-up shops, we also offer the option of paying with Apple Pay. This payment service is provided by Apple Distribution International Limited, Hollyhill Industrial Estate, Hollyhill, Cork, Ireland (hereinafter “Apple Distribution International”). The payment is processed via the “Apple Pay” function on your end device, which charges the payment to one of the cards saved in Apple Pay. Apple Pay uses security features, which are integrated into the hardware and software of your device, in order to secure your transactions.

In order to approve your payment, you are required to enter a predefined code or verify it using the “Face ID” or “Touch ID” feature on your end device. In order to process the payment, the information you provide as part of your order is forwarded to Apple in encrypted form, along with the information about your order.

After the payment has been made, Apple sends your device account number and a transaction-specific, dynamic security code to the end device in our shop used for the payment in order to confirm that the payment was successful.

For further information on how Apple Distribution International processes your personal data in connection with Apple Pay, please refer to the privacy notice at: https://support.apple.com/en-euro/HT203027.

Legal basis

Your data is transmitted to Apple Distribution International for the performance of a contract.

Access to Würth24 shops

At selected shops marked with WÜRTH24, you can shop around the clock from Monday to Saturday. Outside of the consultation period, you can only enter the shop using the Würth App.

Categories of processed data

Before entering the Würth24 shop, the customer can generate an access code using the Würth App. To gain access to the shop, the customer has to scan this code in the entrance area. Our systems then verify whether the customer is authorized to access the shop. The data used for the verification corresponds to the data you specified when registering in the online shop.

Legal basis

Your personal data is processed for the performance of a contract.

Retention periods

Scanned access codes will be deleted after one month.

Credit ratings

We perform a credit check prior to concluding a contract if we are expected to render services before being paid. The reason for this is to protect ourselves against non-payment. In order to check your creditworthiness, we request information from credit bureaus (EOS KSI Inkasso Deutschland GmbH, Gottlieb-Daimler-Ring 7-9, 74906 Bad Rappenau, Verband der Vereine Creditreform e.V., Hellersbergstraße 12, 41460 Neuss, CRIF Bürgel GmbH, Radlkoferstraße 2, 81373 Munich). For this purpose, we send the respective agency your name, address, and birth date. If we receive information from credit bureaus or collection agencies, we also use the credit index as an additional measure. This allows us to calculate the probability that a customer will fulfill their payment obligations in compliance with their contract. The scoring is based on a mathematically and statistically recognized and proven method.

Legal basis

Your data is processed on the legal basis set out in Art. 6(1f) GDPR. Our legitimate interest is based on evaluating your creditworthiness and reducing the risk of non-payment.

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship, subject to the applicable statutory retention periods.

For further information on the indicated credit bureaus and their privacy policies, please see:

EOS KSI Inkasso Deutschland GmbH:
https://www.eos-direct.de/datenschutz/

Verband der Vereine Creditreform e.V.:
https://www.creditreform.de/datenschutz

CRIF Bürgel GmbH:
https://www.crif.de/en/privacy

Sharing payment history

In order to check your credit worthiness and improve the quality of the information in your credit report, we share the personal data collected as part of our contractual relationship, as well as information regarding the failure to adhere to the terms of contract or fraudulent behavior, with various credit bureaus (Verband der Vereine Creditreform e.V., Hellersbergstraße 12, 41460 Neuss, CRIF Bürgel GmbH, Radlkoferstraße 2, 81373 Munich).

Categories of processed data

When exchanging credit information, we store and/or transfer the following personal data: address, application for a court order or lawsuit against the customer if claims are undisputed (including date application or lawsuit is filed with the court), application for bankruptcy (including date of application), court decisions on insolvency applications (incl. date), the enforcement of prior claims (date of application, type of enforcement), issuance of arrest warrant during enforcement of court order (incl. date), scheduled date for submission of an affidavit or date of existing affidavit (incl. date), number of days behind agreed payment target, existence of arrest warrant for property crimes.

Legal basis

Your data is processed on the legal basis set out in Art. 6(1f) GDPR. Our legitimate interest, as well as the legitimate interests of other business partners and the general public, is based on evaluating your creditworthiness and reducing the risk of non-payment. The credit bureaus store this information and share it with their business partners only after having substantiated their legitimate interest beforehand.

For further information on the indicated credit bureaus and their privacy policies, please see:

EOS KSI Inkasso Deutschland GmbH:
https://www.eos-direct.de/datenschutz/

Verband der Vereine Creditreform e.V.:
https://www.creditreform.de/datenschutz

CRIF Bürgel GmbH:
https://www.crif.de/en/privacy

Target customer form

Together with our sales personnel, we offer interested customers the option of registering with other companies, especially companies of the Würth Group. For this purpose, we share the information required to contact the customer with the desired company.

Categories of data

The following categories of personal data are processed when sharing the target customer form:

  • Customer number
  • Company
  • Street name
  • Street number
  • Post code
  • City
  • Contact
  • Position
  • Phone
  • Email

Legal basis

Your personal data is processed for the performance of a contract.

Retention periods

We will store all data entered for the duration of our business relationship. Your data is deleted upon termination of the business relationship, subject to the applicable statutory retention periods. The retention period of the receiving companies depends on their privacy policies.

Video surveillance at Würth shops

Adolf Würth GmbH & Co. KG monitors its pick-up shops using video surveillance to protect its property rights, to assert claims, and to prosecute criminal offenses.

Categories of data

Video recordings

Legal basis for processing

The legitimate interest of the data controller is based on Art. 6(1f) GDPR

Legitimate interests that are pursued:

Protection of property

Retention periods or criteria for defining the duration:

General retention period: 72 hours

In the event the recorded data is used to assert claims in connection with the infringement of the property rights of the data controller (e.g., theft), the retention period is based on the period of time for which the data is required to assert such claims.

Recipients or categories of data recipients (provided personal data are transferred):

Lawyers, law enforcement agencies

No personal data is transferred to countries outside of the EU or to any international organizations.

8. Disclaimer / version

The privacy statement of Adolf Würth GmbH & Co. KG does not apply to applications, products, services, websites, or social media functions of third-party providers that can be reached through links we offer for information purposes. When using these links, you leave the website of Adolf Würth GmbH & Co. KG, resulting in the possibility that information about you may be collected or passed on by third parties. Adolf Würth GmbH & Co. KG has no influence whatsoever over the websites of third parties and makes no recommendations or warranties regarding these websites or their data protection practices. We therefore encourage you to read and review the privacy policies of any websites with which you interact very closely before allowing them to collect, process, and use your personal data.

We kindly ask you to read the contents of our data privacy policy regularly. We update our privacy policy as required by any changes to how we process personal data. Please note that any addresses and contact information of companies and organizations indicated in this privacy policy may change over time. Please verify the information before making contact.

As of September 2023