Welcome to Würth Germany  
Deutsch

 

Privacy Statement

Data protection

The aim of data protection and also our aim as Adolf Würth GmbH & Co. KG is to handle personal data in such a way that the personal rights of the individual are protected.

To ensure the fulfillment of this objective, entities responsible for the processing of personal data are obliged to comply with the provisions of EU legislation (General Data Protection Regulation (GDPR)) and national data protection laws.

Personal data may only be collected and processed if this is permitted by the GDPR or another law. Key basic principles of the GDPR are

  • Lawfulness of processing, fairness of processing, transparency
  • purpose limitation
  • data minimization
  • Accuracy of data processing
  • Storage limitation and erasure concepts
  • Integrity and confidentiality

Responsible handling of personal data and the risk-conscious use of IT systems and applications are further key objectives of Adolf Würth GmbH & Co KG.

 

Information obligations of the controller and rights of the data subject

Name and contact details of the controller

The controller is the natural person or legal entity that, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

The data controller for data processing on this website is:

Adolf Würth GmbH & Co. KG
Reinhold-Würth-Straße 12–17
74653 Künzelsau-Gaisbach
Phone: +49 7940 15-0
Email: info@wuerth.com

Contact information of the data protection officer

You can contact our data protection officer at datenschutz@wuerth.com .

Purpose of data collection, processing, or use

Adolf Würth GmbH & Co. KG is Germany's leading specialist in the sale of assembly and fastening materials.

The collection, processing or use of personal data is carried out to fulfill this corporate purpose or supporting secondary purposes, such as customer advice.

Groups of people concerned and related data or data categories

Relevant groups of people include:

  • Current employees
  • Former employees
  • Applicants
  • Interested parties
  • Customers
  • Suppliers
  • Service providers
  • Other business partners

The relevant data include all personal data that are necessary for the fulfillment of the purpose concerned. A detailed overview of the types of personal data that are processed can be found below.

Legal basis

The processing of personal data is only lawful if this is permitted by law, i.e. if there is a legal basis, or if the person has given their consent.

Personal data is only processed in our company in accordance with the statutory provisions. As a rule, these are

  • if consent to the processing of personal data has been obtained (Art. 6 para. 1 lit. a GDPR),
  • if personal data must be processed to fulfill a contract or to initiate a contract (Art. 6 para. 1 lit. b GDPR),
  • if the processing of personal data is necessary to fulfill a legal obligation (Art. 6 para. 1 lit. c GDPR) or
  • if we process personal data on the basis of a legitimate interest or on the basis of a legitimate interest of a third party (Art. 6 para. 1 lit. f GDPR).

Special feature regarding the legal basis of data processing for contractual purposes

Adolf Würth GmbH & Co KG primarily addresses its services to tradespeople. Therefore, the legal basis for the processing of personal data for contractual purposes is, unless otherwise specified in individual cases

1. if you are a registered trader or freelancer, Art. 6 para. 1 lit. b GDPR, data processing for the purpose of performing the contract or pre-contractual measures with the data subject; or

2. if you are acting as an employee of a company, e.g. as an employee in purchasing, Art. 6 para. 1 lit. f GDPR, the legitimate interest of Adolf Würth GmbH & Co. The legitimate interest of Adolf Würth GmbH & Co. KG in this case is the sale of its own goods and services, which is based in particular on entrepreneurial freedom and freedom to choose an occupation.

As part of this processing purpose, we combine data that is stored and processed in our central systems as a result of interactions with us by customers or interested parties and their employees via the various communication channels (in particular sales representatives, branch offices, telephone sales and online store) and also use the data when contacting you via another communication channel (e.g. our sales representatives receive access to data about goods you have searched for in the online store).

For the sake of simplicity, we will only refer to "data processing for contractual purposes" below.

Potential recipients for data transfers

The potential recipients of transferred personal data are

  • Public authorities, insofar as a legal obligation exists or this is necessary to safeguard legal claims,
  • Service providers and other business partners, insofar as this is necessary to fulfill the respective purpose and a legal provision permits or requires this or the data subject has consented.

Planned data transfer to third countries or international organizations

If we transfer your data to a third country (countries that are not member states of the European Union) or to an international organization, we will provide you with the information required for this case.

Standard periods for the erasure of data

The deletion of personal data is carried out in accordance with the applicable statutory or contractual regulations on data deletion, taking into account statutory or contractual retention obligations. Such legal obligations arise from the German Commercial Code (HGB) and the German Fiscal Code (AO), among others. The retention and documentation periods specified there are up to ten years beyond the end of the business relationship or the pre-contractual legal relationship.

Furthermore, other statutory provisions may require a longer retention period, such as the preservation of evidence within the scope of the statutory limitation period. The regular limitation period is three years; in certain cases, however, limitation periods of up to 30 years or, in individual cases, even longer may apply. The deletion of personal data that is not subject to any statutory or contractual retention or deletion obligation takes place after it is no longer required to fulfill the respective purpose.

Your data protection rights (Art. 12 et seqq. GDPR)

The data subject has various data protection rights. These rights are explained below. The contact information indicated above can be used to exercise these rights.

Your rights with regard to data protection (Art. 12 ff. GDPR)

The data subject has various rights with regard to data protection. These rights are explained below. The above contact details can be used to exercise these rights.

Right of access (Art. 15 GDPR), rectification (Art. 16 GDPR), restriction of processing (Art. 18 GDPR) and erasure (Art. 17 GDPR)

Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about the personal data concerning you that is stored by the controller, its origin and recipients and the purpose of the data processing and, if applicable, a right to rectification, blocking or erasure of this data.

Right to object (Art. 21 GDPR)

Every data subject has the right to object to the processing of their data if the data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR or for direct marketing purposes. In the event of an objection to the processing of your personal data, we will examine your objection on a case-by-case basis. If we are obliged to delete your personal data due to your objection under data protection law, we will delete your data taking into account statutory retention obligations. The objection does not affect the permissibility of the processing carried out prior to the objection.

Right to data portability (Art. 20 GDPR)

You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract transferred to yourself or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place if it is technically feasible.

Obligation to disclose data

Every data subject has the right to know whether the provision of personal data is required by law or contract or is necessary for the conclusion of a contract, whether the data subject is obliged to provide the personal data and what the possible consequences would be if the data were not provided.

Right to lodge a complaint with the competent supervisory authority

The data subject has the right to lodge a complaint with the competent supervisory authority if they believe that one of their rights has been violated. The competent supervisory authority for data protection issues is the state data protection officer of the federal state in which our company is based. In principle, however, the person concerned can also contact the supervisory authority of their place of residence or the place of the suspected infringement. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html.

Withdrawal of your consent to data processing

Some data processing operations are only possible with your consent. You can withdraw your consent at any time. All you need to do is send an informal email to one of the email addresses listed above . The legality of the data processing carried out until the revocation remains unaffected by the revocation.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

 

Access and data processing as part of the Central Service

Access to the Würth software solutions ORSY®online, GBU-Manager, PSA-Manager, and isi! Hazardous Substance Management are accessed via a central authentication service ("Central Service"). This enables a so-called Single Sign-On (SSO) across the systems mentioned.

The following personal data is collected, stored and managed in the course of registration and the central employee system:

  • Name
  • e-mail address
  • Würth customer number (if available)
  • Würth partner number (if available)
  • Personnel number (ID)
  • Telephone number

This data is synchronized and processed across all systems to ensure a consistent database and avoid redundant data maintenance. Access to this data is reserved exclusively for authorized systems.

Legal basis

Your data is processed on the basis of our legitimate interest in efficient system integration and user administration (Art. 6 para. 1 lit. f GDPR) and for contractual purposes.

Storage period

The data collected will be stored by us as long as you have a business relationship with us. After termination of the business relationship, your data will be deleted.

The following information provides an overview of how your personal data is processed when you use our Würth ORSY®online resource management software (hereinafter referred to as "ORSY®online"). Personal data is all data with which you can be personally identified.

Purpose of data collection, processing or use

The Würth ORSY®online equipment management software is designed as a cloud application that can be used via electronic end devices (e.g. tablets and smartphones, notebooks) in a browser or the ORSY®online app (hereinafter only "app"). The user receives information on master data, the storage location and the maintenance and repair dates (and history) of a product/equipment at a glance. The user hands over and passes on the products/equipment using an electronic end device (e.g. smartphone). The assignment to the user is made by reading the QR label or NFC tag of the respective product/equipment.

The products/equipment with QR labels and NFC tags and the associated personal data are stored in the software.

W-CONNECT products can be added to the account in the app. This allows the location and product data of previously added products to be displayed on mobile devices and the website. The app or a gateway can identify W-CONNECT products via Bluetooth and retrieve usage and sensor data from the products, such as the battery status. In addition, the app and gateways can forward the data of all products within Bluetooth range securely and in encrypted form to the Würth ORSY®online equipment management cloud (hereinafter referred to as the "cloud"). The app uses the location of the mobile device to determine the location of the products. The gateway uses its own location for this.

The consumables scan enables the retrieval of recommended settings for W-CONNECT products. Consumables master data is exchanged between the app and the cloud for this purpose. These queries are processed anonymously by the contractor for further product development.

Access to the mobile device's camera is required to scan consumables and add your own images to a product. Images added by users are stored on the mobile device and made available to all users with the same customer number via the cloud. It is possible to give the app access to the mobile device's photo gallery. In this case, the app only processes the photos added to the app and shares them with all users of the same customer number via the cloud.

We use the usage data of the devices to offer you services that can make your daily work easier (e.g. to offer products tailored to your work). We also use usage and sensor data to improve our products.

For Würth products, a repair order can be placed in the Würth Master Service via ORSY®online, including specification of a variable collection and return address. For ORSY®fleet fleet devices in particular, it is possible to order customized labels, extend an ORSY®fleet contract and initiate a theft or loss report by providing the police report.

If you contact us for support purposes, we can access your data stored in the cloud if necessary in order to process your request.

What personal data do we collect from you?

We distinguish between data that is processed for the basic functions of ORSY®online and data that is processed for the additional modules within the ORSY®online app.

Processing for the basic ORSY®online functions

If you use our app for mobile devices and/or the browser application, the following data is processed, for example

  • Login information
  • First name, last name
  • e-mail address
  • Your address
  • Country and language selection
  • Authorization role
  • Supervisor
  • Telephone number
  • E-mail address
  • History of changes to personal master data
  • Number of operating resources/products
  • License plate number/registration certificate of motor vehicles
  • Assignment of equipment to locations and employees
  • Server log files (e.g. time and type of access, IP address and any error events)
  • Master data of the end device (model, operating system and browser version)
  • Selection/consent to general terms and conditions, order processing contract, consent status
  • Photos taken with the camera function of the app or mobile device

Processing when using ORSY®online add-on modules

  • Qualification of employees (e.g. certificates, instructions, documents, instruction dates, driving license)

Processing when using W-CONNECT products

  • Usage and sensor data from products
  • Connection data between products, app and cloud (Bluetooth and Internet)
  • GPS-based position data

Who is responsible for ORSY®online data collection?

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

The responsible body for the data processing of ORSY®online is:

  • Insofar as you use the registration option "Without login" and in any case for the processing of technical logs and orders (e.g. pick-up order):
    Adolf Würth GmbH & Co. KG
    Reinhold-Würth-Strasse 12-17
    74653 Künzelsau-Gaisbach
    Phone: +49 7940 15-0
    E-Mail: orsyonline@wuerth.com
  • Otherwise:
    The company that registered you with ORSY®online or entered your data.

Contact details of the data protection officer

You can contact the data protection officer of Adolf Würth GmbH & Co KG at datenschutz@wuerth.com . For the data protection officer of the company that registered you with ORSY®online or entered your data, please ask the contact person assigned to you at the company.

Categories of data subjects

The categories of data subjects affected by the processing include

  • Customers
  • Employees of the customer
  • Former employees of the customer
  • Other persons working for the client's company, including subcontractors and similar

Legal bases

The processing of personal data is only lawful if this is permitted by law, i.e. if there is a legal basis, or if the person has given their consent.

Personal data is only processed in our company in accordance with the statutory provisions. As a rule, these are

  • if consent to the processing of personal data has been obtained (Art. 6 para. 1 lit. a GDPR),
  • if personal data must be processed to fulfill a contract or to initiate a contract (Art. 6 para. 1 lit. b GDPR),
  • if the processing of personal data is necessary to fulfill a legal obligation (Art. 6 para. 1 lit. c GDPR) or
  • if we process personal data on the basis of a legitimate interest or on the basis of a legitimate interest of a third party (Art. 6 para. 1 lit. f GDPR).

Special feature regarding the legal basis of data processing for contractual purposes

Adolf Würth GmbH & Co KG primarily addresses its services to tradespeople. Therefore, the legal basis for the processing of personal data for contractual purposes is, unless otherwise specified in individual cases

1. if you are a registered trader or freelancer, Art. 6 para. 1 lit. b GDPR, data processing for the purpose of performing the contract or pre-contractual measures with the data subject; or

2. if you are acting as an employee of a company, e.g. as an employee in purchasing, Art. 6 para. 1 lit. f GDPR, the legitimate interest of Adolf Würth GmbH & Co. The legitimate interest of Adolf Würth GmbH & Co. KG in this case is the sale of its own goods and services, which is based in particular on entrepreneurial freedom and freedom to choose an occupation.

As part of this processing purpose, we combine data that is stored and processed in our central systems as a result of interactions with us by customers or interested parties and their employees via the various communication channels (in particular sales representatives, branch offices, telephone sales and online store) and also use the data when contacting you via another communication channel (e.g. our sales representatives receive access to data about goods you have searched for in the online store).

For the sake of simplicity, we will only refer to "data processing for contractual purposes" below.

Potential recipients for data transmission

The potential recipients of transferred personal data are

  • Public authorities, insofar as a legal obligation exists,
  • Service providers and other business partners, insofar as this is necessary to fulfill the respective purpose and a legal provision permits or requires this or the data subject has consented.

Würth IT GmbH

Würth Industrial Park
Drillberg 6
97980 Bad Mergentheim
Germany

Service:

  • Hosting, administration and maintenance of server, storage, backup and network components
  • Support services

 

Rubinlake GmbH

Trade fair tower
Friedrich-Ebert-Anlage 49
60308 Frankfurt am Main
Germany

Service:

  • Administration and maintenance of the SMS server and the W-CONNECT functionalities
  • Support services

 

Stoll from Gáti GmbH

Haller Str. 187
74564 Crailsheim
Germany

Service:

  • Administration and maintenance of the app for mobile devices and browser version

Data transfer to third countries or international organizations

If we transfer your data to a third country (countries that are not member states of the European Union) or to an international organization, we will provide you with the information required for this case.

Standard periods for the deletion of data

The deletion of personal data is carried out in accordance with the applicable statutory or contractual regulations on data deletion, taking into account statutory or contractual retention obligations. Such legal obligations arise from the German Commercial Code (HGB) and the German Fiscal Code (AO), among others. The periods for storage and documentation specified there are up to ten years beyond the end of the business relationship or the pre-contractual legal relationship.

In addition, other statutory provisions may require a longer retention period, e.g. the preservation of evidence within the framework of statutory limitation periods. The regular limitation period is three years; in certain cases, however, limitation periods of up to 30 years or, in individual cases, even longer may apply. The deletion of personal data that is not subject to any statutory or contractual retention or deletion obligation takes place after it has become dispensable for the fulfillment of the respective purpose.

 

Contact form

You can submit requests for services to Adolf Würth GmbH & Co KG via the ORSY®online app. Your details, including the contact details you provide, will be stored by Adolf Würth GmbH & Co. KG for the purpose of processing the request and in the event of follow-up questions.

Categories of personal data

Depending on the information you provide, Adolf Würth GmbH & Co. KG processes the following categories of personal data as part of an inquiry:

  • Customer number
  • Customer name
  • e-mail address
  • telephone number
  • Your address
  • Your message

Legal basis

Your data is processed on the basis of our legitimate interest in offering our customers an easy way to contact us, to improve the quality of our advice (Art. 6 para. 1 lit. f GDPR) and for contractual purposes.

Storage period

The data you provide will remain with us until you ask us to delete it or the purpose for data storage no longer applies (e.g. after your request has been processed). An exception to this may be statutory retention obligations.

 

Analysis tools and advertising

ORSY®online uses various tracking tools to make our website more user-friendly, effective and secure. You can decide which tracking tools you want to activate or deactivate at any time in the data protection settings. If tools are deactivated, the functionality of ORSY®online may be restricted. Unless technically necessary, tracking tools are treated separately in the data protection settings and only activated after prior consent. An overview of the tracking tools used can be found further on in the data protection information.

 

Firebase Crashlytics

Adolf Würth GmbH & Co KG uses functions of the crash reporting tool Firebase Crashlytics for the ORSY®online app. In the event of a crash, anonymous information is transmitted to Google's servers in the USA. This information does not contain any personal data. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google Ireland"). We have concluded an order processing contract with Google Ireland. Further information on data protection can be found in Firebase Crashlytics' privacy policy at

https://firebase.google.com/terms/data-processing-terms

https://firebase.google.com/support/privacy and

https://docs.fabric.io/apple/fabric/data-privacy.html#data-collection-policies

Legal basis

The use of Firebase Crashlytics for crash reporting of our app is based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent.

You can prevent the use of the tool by not giving us your consent.

If you do not or no longer consent to the storage and use of your data, you can revoke your consent to the storage and processing in the data protection settings. In this case, your decision will be saved on your device. If you delete the app's storage data or uninstall , the decision will also be deleted. When you restart the app, you will be asked again whether the tool may be activated.

Categories of processed data

  • State of the app at the time of the crash
  • Crashlytics installation ID
  • Stack trace
  • Time of the crash
  • App version
  • Information about jailbreak/root access
  • Device
  • Free RAM
  • Free hard disk space
  • Operating system
  • Language
  • Last log messages (e.g. page view, product search)

 

Würth Analytics

For ORSY®online, Adolf Würth GmbH & Co KG uses functions of the Würth web analysis service based on the open source software Matomo/Piwik. Würth Analytics uses cookie-like identifiers that are integrated into the app and enable your use of the app to be analyzed. For this purpose, the information generated by the tool about the use of this app is stored on our server.

Legal basis

The use of Würth Analytics for the statistical analysis of our app is based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent.

You can prevent the use of the tool by not giving us your consent. However, we would like to point out that in this case you may not be able to use all the functions of this app to their full extent. If you do not or no longer agree to the storage and use of your data, you can revoke your consent to the storage and processing in the data protection settings. In this case, your decision will be saved on your device. If you delete the app's storage data or uninstall it, the decision will also be deleted. When you restart the app, you will be asked again whether the tool may be activated.

IP anonymization

We have activated the IP anonymization function for this tool. This means that your IP address is shortened by Würth.

Categories of processed data

  • Abbreviated IP address
  • Customer number*
  • Partner number*
  • Device
  • Resolution
  • Country
  • Place of residence
  • Salutation*
  • First name*
  • Surname*
  • Company*
  • Interactions in the app (e.g. page view, product search)

The data marked with "*" can only be processed with prior login and your consent.

 

Google Maps

In ORSY®online we use the Google Maps service. This allows us to show you interactive maps directly in the app and enables you to use the map function conveniently. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google Ireland"). We have concluded an order processing contract with Google Ireland. As part of the use of Google Maps, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter "Google LLC") in the USA. For the transfer of personal data to Google LLC based in the USA, Google Ireland has concluded so-called standard contractual clauses of the Commission of the European Union with Google LLC. These can be viewed here: https://privacy.google.com/businesses/processorterms/ .

By using Google Maps, Google receives the information that you have accessed the corresponding subpage of our app. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish your data to be associated with your Google profile, you must log out of your Google account before accessing a map. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide with needs-based advertising. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right.

Further information about Google Maps and Google's privacy policy can be found at

https://www.google.com/intl/de/policies/privacy/ (General Google Privacy Policy)

https://policies.google.com/terms?hl=de#toc-software (Terms of use for Google services)

Legal basis

The use of Google Maps is based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent.

You can prevent the use of the tool by not giving us your consent. However, we would like to point out that in this case you may not be able to use all the functions of this app to their full extent.

If you do not or no longer agree to the use of the tool, you can revoke your consent to storage and processing in the data protection settings. In this case, your decision will be saved on your device. If you delete the app's storage data or uninstall it, the decision will also be deleted. When you restart the app, you will be asked again whether the tool may be activated.

 

YouTube

In the ORSY®online browser version and app, we have occasionally integrated YouTube explanatory videos that can be played directly from www.youtube.com. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. When using YouTube, personal data may also be transmitted to the servers of Google LLC. in the USA. For the transfer of personal data to Google LLC. based in the USA, Google LLC. has concluded so-called standard contractual clauses of the Commission of the European Union with us.

YouTube videos on our website are all integrated in "extended data protection mode", i.e. no data about you as a user is transferred to YouTube if you do not play the videos. Data is only transferred when you play the videos. We have no influence on this data transfer. You will be explicitly informed again before the transfer that your data will be transferred to YouTube when you play the video. This occurs regardless of whether YouTube provides a user account via which you are logged in to or whether no user account exists. If you are logged in to Google, your data will be assigned directly to your account.

If you do not wish your data to be associated with your YouTube profile, you must log out of your Google account before playing the video. YouTube stores your data as user profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

We also offer you the opportunity to contact us via the comment function or chat. To use this function, you must be logged in with your Google account. If you comment on our posts or send us a message via chat, this data is stored by YouTube and can be viewed by anyone who accesses the video.

The legal basis for data processing by Adolf Würth GmbH & Co KG is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent. You can withdraw your consent at any time. The legality of the data processing operations that have already taken place remains unaffected by the revocation.

Further information about YouTube and Google's privacy policy can be found at

https://www.google.com/intl/de/policies/privacy/ (General Google Privacy Policy)

https://policies.google.com/terms?hl=de#toc-software (Terms of use for Google services)

https://www.youtube.com/static?gl=DE&template=terms&hl=de (YouTube terms of use)

 

Newsletter and electronic communication

Transaction mails

Adolf Würth GmbH & Co KG uses Inxmail to send transactional emails in connection with your orders. Transactional emails are emails that are sent automatically after certain business transactions, such as order confirmations or delivery announcements.

The provider is Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

The following data is processed by Inxmail in the course of sending transactional emails:

  • Technical information on the recipient's end device: operating system, information on the browser used, IP address of the recipient, further information on the end device and internet connection;
  • Contact details of the recipient: email address, name if applicable
  • Data about user interactions: information about opened newsletters, clicked links, date and time of interaction

Legal basis

Data processing for the sending of transactional emails in connection with your orders is carried out for the fulfillment of contractual purposes.

Data processing for the purpose of documenting the fulfillment of information obligations is carried out on the basis of Art. 6 para. 1 lit. f GDPR (processing to safeguard the legitimate interests of the controller).

Storage period

The data you have stored with us for the purpose of receiving transactional emails will be deleted from both our servers and the Inxmail servers as part of the regular deletion routine after sending.

The data stored by us for the purpose of documenting the fulfillment of information obligations will be deleted from both our servers and the Inxmail servers as part of the regular deletion routine after a period of six months after the email has been sent.

The following information provides an overview of how your personal data is processed when you use our Würth GBU Manager software. Personal data is all data that can be used to identify you personally.

Purpose of data collection, processing or use

GBU-Manager is a software solution from Adolf Würth GmbH & Co. KG to support the creation and management of risk assessments. The application is aimed at business customers and enables the structured collection, evaluation and documentation of safety-relevant information in the operational environment. During use, personal data is processed exclusively for the intended purposes, in particular for user administration, for logging changes and for communication in the context of the risk assessment.

Who is responsible for the data collection of the GBU Manager?

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

The company that registered you or entered your data in the GBU-Manager is responsible for data processing by the GBU-Manager.

Contact details of the data protection officer

Please ask the data protection officer of the company that has registered you in the GBU-Manager or entered your data from the contact person assigned to you at the company.

What personal data is collected?

The following types/categories of data may be processed:

  • Personnel number*
  • First name, surname
  • e-mail address
  • Role
  • Function

*Mandatory information is exclusively a uniquely assigned code number that enables pseudonymous identification. This does not necessarily have to be the actual personnel number.

The following information provides an overview of how your personal data is processed when you use our PSA Manager software. Personal data is any data that can be used to identify you personally.

Purpose of data collection, processing or use

The "PPE Manager" application supports companies in the digital management of personal protective equipment (PPE). It enables the structured recording, allocation and documentation of PPE items for employees, including inspection intervals, issue processes and feedback. The aim is to increase occupational safety, comply with legal requirements and improve transparency in the handling of PPE.

Who is responsible for the PPE Manager data collection?

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

The controller for the data processing of the PSA-Manager is the company that registered you in the PSA-Manager or entered your data.

Contact details of the data protection officer

Please ask the contact person assigned to you at the company that registered you in the PSA Manager or entered your data for the data protection officer.

What personal data is collected?

The following types/categories of data may be processed:

  • Name and personnel number
  • Assigned PPE articles
  • Test and issue data
  • Feedback on use

This data processing is carried out exclusively to comply with statutory occupational health and safety obligations and for the internal organization and documentation of PPE management.

The following information provides you with an overview of how your personal data is processed when you use the isi!!! Hazardous Substance Management software from Adolf Würth GmbH & Co. The application can be used both as a web application via the Würth online store and as a mobile app on your end device.

Personal data is all information that relates to an identified or identifiable natural person - i.e. data that can be used to identify you personally.

Purpose of data collection, processing or use

The software isi!! Hazardous Substance Management software provides digital support for the recording, management and documentation of hazardous substances in an operational environment. It enables users to record and manage relevant information on hazardous substances on the move, including safety data sheets, storage locations and protective measures. The aim is to facilitate compliance with legal regulations and improve occupational safety.

Processing of personal data

When you use our app for mobile devices and/or the browser application, the following data is processed, for example

  • Processor
  • Person responsible*
  • Work area*
  • Workplace/activity*
  • Responsible doctor
  • First aider*
  • Contact person Disposal

*Mandatory information according to TRGS 555

Who is responsible for the data collection of isi!!! Hazardous Substance Management?

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

The company that has registered your data with isi! Hazardous Substance Management.

Contact details of the data protection officer

For the data protection officer of the company that registered you in the GBU-Manager or entered your data, please ask the contact person assigned to you at the company.

Categories of data subjects

The categories of data subjects affected by the processing include

  • Customers
  • Employees of the customer
  • Former employees of the customer

 

Analysis tools and advertising

If you use Isi! Hazardous Substance Management as an app on your mobile device, various tracking tools are used to make our service more user-friendly, effective and secure. You can decide which tracking tools you want to activate or deactivate at any time in the data protection settings. If you deactivate tools, the functionality of Isi! Hazardous Substance Management may be restricted. Unless technically necessary, tracking tools are treated separately in the data protection settings and only activated after prior consent. You can find an overview of the tracking tools used in the rest of this privacy policy.

 

Firebase Crashlytics

Adolf Würth GmbH & Co. KG uses for the mobile app Isi! Hazardous Substance Management mobile app functions of the crash reporting tool Firebase Crashlytics. In the event of a crash, anonymous information is transmitted to Google's servers in the USA. This information does not contain any personal data. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google Ireland"). We have concluded an order processing contract with Google Ireland. Further information on data protection can be found in the Firebase Crashlytics privacy policy at

https://firebase.google.com/terms/data-processing-terms

https://firebase.google.com/support/privacy and

https://docs.fabric.io/apple/fabric/data-privacy.html#data-collection-policies

Legal basis

The use of Firebase Crashlytics for crash reporting of our app is based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent.

You can prevent the use of the tool by not giving us your consent.

If you do not or no longer consent to the storage and use of your data, you can revoke your consent to the storage and processing in the data protection settings. In this case, your decision will be saved on your device. If you delete the app's storage data or uninstall it, the decision will also be deleted. When you restart the app, you will be asked again whether the tool may be activated.

Categories of processed data

  • State of the app at the time of the crash
  • Crashlytics installation ID
  • Stack trace
  • Time of the crash
  • App version
  • Information about jailbreak/root access
  • Device
  • Free RAM
  • Free hard disk space
  • Operating system
  • Language
  • Last log messages (e.g. page view, product search)

 

Würth Analytics

Adolf Würth GmbH & Co. KG uses for the mobile app Isi! Hazardous Substance Management mobile app functions of the Würth web analysis service based on the open source software Matomo/Piwik. Würth Analytics uses cookie-like identifiers that are integrated into the app and enable your use of the app to be analyzed. For this purpose, the information generated by the tool about the use of this app is stored on our server.

Legal basis

The use of Würth Analytics for the statistical analysis of our app is based on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, your consent.

You can prevent the use of the tool by not giving us your consent. However, we would like to point out that in this case you may not be able to use all the functions of this app to their full extent. If you do not or no longer agree to the storage and use of your data, you can revoke your consent to the storage and processing in the data protection settings. In this case, your decision will be saved on your device. If you delete the app's storage data or uninstall it, the decision will also be deleted. When you restart the app, you will be asked again whether the tool may be activated.

IP anonymization

We have activated the IP anonymization function for this tool. This means that your IP address is shortened by Würth.

Categories of processed data

  • Abbreviated IP address
  • Customer number*
  • Partner number*
  • Device
  • Resolution
  • Country
  • Place of residence
  • Salutation*
  • First name*
  • Surname*
  • Company*
  • Interactions in the app (e.g. page view, product search)

The data marked with "*" can only be processed with prior login and your consent.

This data protection notice does not apply to applications, products, services, websites or social media functions of third-party providers that can be accessed via links that we provide for information purposes. If you use to access these links, you will leave this app, so there is a possibility that information about you may be collected or passed on by third parties. We have no influence whatsoever on third-party websites and make no recommendations or assurances about these websites or their data protection practices. We therefore encourage you to carefully read and review the privacy policies of any websites you interact with before authorizing them to collect, process and use your personal data.

Status: October 2025