With the following information, we would like to give you the "data subject", an overview of our processing of your personal data and your rights under data protection laws. You can generally use our website without entering personal data. However, if you would like to use special services provided by our company via our website, it may be necessary to process personal data. If the processing of personal data is required and there is no legal basis for such processing, we will generally ask for your consent.
The processing of personal data, such as your name, address or email address, is always carried out according to the General Data Protection Regulation (GDPR) and the country-specific data protection regulations applicable to "3C Holding GmbH". We want to inform you about the scope and purpose of the personal data we collect, use, and process with this data protection declaration.
Because of our data-handling responsibility, we have implemented numerous technical and organizational measures to ensure complete protection for personal data processed through this website. Nevertheless, internet-based data transmissions can generally have security gaps so that one cannot guarantee absolute safety. For this reason, you are free to transmit personal data to us in alternative ways, for example, by telephone or by post.
Our offer is generally aimed at adults. Persons under the age of 16 may not share any personal data with us without the consent of their parents or legal guardians. We do not request or collect personal data from children and young people and do not pass them on to third parties.
The responsible person in terms of the GDPR is:
3C Holding GmbH
Am Jägerheim 1c, 33378 Rheda-Wiedenbrück, Germany
Phone: 05242 / 9309-906
Fax: 05242 / 9309-919
Head of the responsible office: Jürgen Kleinegesse, Markus Kemming
3. Data protection officer
You can contact the data protection officer as follows:
Phone: 05221 / 87292-0
Fax: 05221 / 87292-49
You can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.
The data protection declaration is based on the terms used by the European legislator for directives and regulations when the General Data Protection Regulation (GDPR) was adopted. Our data protection declaration should, therefore, be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the terminology used in advance.
We use the following terms in this data protection declaration:
Personal data is all information that relates to an identified or identifiable natural person. A natural person is regarded as identifiable who, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier, or one or more distinctive features that express the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.
An affected person is any identified or identifiable natural person whose personal data is processed by the person responsible for processing (our company).
Processing is any process carried out with or without the help of automated procedures or any such series of processes in connection with personal data such as the collection, recording, organization, ordering, storage, adaptation or change, reading, querying, use, disclosure through transmission, distribution or any other form of provision, comparison or linking, restriction, deletion or destruction.
Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing. Profiling refers to any type of automated processing of personal data that consists of using this personal data to evaluate certain personal aspects relating to a natural person, particularly those relating to work performance, economic situation, health, and personal life. Profiling is used to analyze or predict a natural person's preferences, interests, reliability, behaviour, whereabouts, or relocation.
Pseudonymization is the processing of personal data in a way in which the personal data can no longer be assigned to a specific data subject without additional information, provided that this additional information is stored separately. It must also be subject to technical and organizational measures that guarantee that the personal data cannot be assigned to an identified or identifiable natural person.
A processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the person responsible.
The recipient is a natural or legal person, authority, institution or other body to which personal data is disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data as part of a specific investigation according to Union law or the law of the member states are not considered recipients.
A third party is a natural or legal person, public authority, agency or body other than the person concerned, the person responsible, the processor and the persons authorized to process the personal data under the direct responsibility of the person responsible or the processor.
Consent is any voluntary, informed and unambiguous declaration of intent given by the person concerned for the specific case in the form of a declaration or other unequivocal affirmative action with which the person concerned indicates that they consent to the processing of their personal data is.
5. Legal basis for processing
Art. 6 para. 1 lit. a) GDPR (possibly in conjunction with Section 15 para. 3 TMG) serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose.
If the processing of personal data is necessary to fulfil a contract to which you are a party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6 para. 1 lit. b) GDPR. The same applies to processing operations required to carry out pre-contractual measures, for example, in the case of inquiries about our products or services.
If our company is subject to a legal obligation that requires the processing of personal data, for example, to fulfil tax obligations, the processing is based on Art. 6 Paragraph 1 lit. c) GDPR.
In rare cases, it may be necessary to process personal data to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our company were injured and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or another third party. The processing would then be based on Article 6 (1) (d) GDPR.
Ultimately, processing operations could be based on Article 6 (1) (f) GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the person concerned do not prevail. We are particularly permitted to carry out such processing operations because the European legislator has specifically mentioned them. In this respect, he believed that a legitimate interest could be assumed if you are a customer of our company (recital 47 sentence 2 GDPR).
6 Contact and transmission to third parties
6.1 Contact / contact form
When you contact us (e.g. using the contact form or email), personal data is collected. Data collected in the case of a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for establishing contact and the associated technical administration. The legal basis for processing the data is our legitimate interest in answering your request under Art. 6 Para. 1 lit. f) GDPR. If your contact aims to conclude a contract, the additional legal basis for processing is Art. 6 Para. 1 lit. b) GDPR. Your data will be deleted after your request has been processed; this is the case if the circumstances indicate that the matter in question has been finally clarified and provided that there are no statutory retention requirements.
6.2 Transfer of data
A transfer of your personal data to third parties for purposes other than those listed below does not occur.
We only pass on your personal data to third parties if:
• you have given your express consent in accordance with Art. 6 Paragraph 1 Clause 1 lit. a) GDPR (possibly in conjunction with Section 15 Paragraph 3 TMG),
• the transfer is permissible according to Art. 6 Para. 1 S. 1 lit.
• if there is a legal obligation for the disclosure in accordance with Art. 6 Paragraph 1 Clause 1 lit.
• this is legally permissible and required according to Art. 6 Paragraph 1 Sentence 1 lit. b) GDPR for the processing of contractual relationships with you.
We pass on the collected data for processing to the respective internal departments or external service providers, contract processors (e.g. hosting, shipping, processing service providers, web analysis) according to the required purposes (to send products, advertising, communication). Furthermore, to protect your data and, if necessary, to enable us to transfer data to third countries (outside the EU / EEA), we have concluded order processing agreements based on the standard contractual clauses of the European Commission with order processors employed by us.
7.1 SSL / TLS encryption
To ensure the security of data processing and to protect the transmission of confidential content, such as orders, log-in data or contact requests that you send to us as the operator, this site uses an SSL or. TLS encryption. You can recognize an encrypted connection because, in the browser's address line, there is an "HTTPS: //" instead of "HTTP: //" and by the lock symbol in your browser line.
If the SSL or TLS encryption is activated, third parties cannot read the data you transmit to us.
7.2 Data collection when visiting the website
If you only use our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to our server (in so-called "server log files"). Every time you or an automated system access a page, our website collects a range of general data and information. These general data and information are stored in the server's log files:
1. Browser types and versions used;
2. The operating system used by the accessing system;
3. The website from which an accessing system reaches our website (the so-called referrer);
4. The sub-websites that are accessed via an accessing system on our website;
5. The date and time of access to the website;
6. A shortened internet protocol address (anonymized IP address);
7. The internet service provider of the accessing system.
When using this general data and information, we do not draw any conclusions about your person. Instead, this information is needed to:
1. Correctly deliver the content of our website;
2. Optimize the content of our website and the advertising for it;
3. Ensure the long-term functionality of our IT systems and the technology of our website as well;
4. Provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack.
Therefore, this collected data and information is evaluated statistically by us and aims to increase data protection and data security in our company to ultimately ensure an optimal level of protection for the personal data processed by us. The anonymous data in the server log files are stored separately from all personal data provided by a data subject.
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f) GDPR. Our legitimate interest follows from the data collection purposes listed above.
8.1 General information on cookies
Information is stored in the cookie that results in connection with the specific device used. However, this does not mean that we are immediately aware of your identity.
On the one hand, cookies make the use of our services more enjoyable for you. On the other hand, we use so-called session cookies to recognize that you have already visited individual pages on our website. These are automatically deleted after you leave our website.
In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specified period. If you revisit our site to use our services, it is automatically recognized that you have already visited us and what inputs and settings you have made so that you do not have to re-enter them.
Most browsers accept cookies automatically. However, you can configure your browser to store cookies on your computer, or a message always appears before a new cookie is created. However, if you completely deactivate cookies, you may not be able to use all the functions of our website.
8.2. Notes on “avoiding cookies” in all common browsers
You have the option of deleting cookies, only accepting selected cookies or completely deactivating them at any time via the settings of the browser you are using. Further information is available on the support pages of the respective providers:
Chrome: Delete, activate and manage cookies in Chrome
Safari: Manage cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have stored on your computer
Internet Explorer: deleting and managing cookies
Microsoft Edge: Deleting and managing cookies
The data processed by cookies, which are required for the website’s proper functioning, are necessary to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Para. 1 S. 1 lit. f) GDPR.
For all other cookies, you have given your consent to this via our opt-in cookie banner within the meaning of Art. 6 Para. 1 lit. a) GDPR.
9. Web analysis
We use Google Analytics, a web analysis service from Google Inc. (https://www.google.de/intl/de/about/) (1600 Amphitheater Parkway, Mountain View, CA 94043, USA; from now on "Google") on our website. ). In this context, pseudonymised usage profiles are created, and cookies (see section 4) are used. The information generated by the cookie about your use of this website, such as
1. Browser type/version,
2. The operating system used,
3. Referrer URL (the previously visited page),
4. Host name of the accessing computer (IP address),
5. Time of the server request,
are transmitted to and stored by Google on servers in the United States. The information is used to evaluate the use of the website, compile reports on website activity, and provide other services relating to website activity and internet usage for market research and the needs-based design of this website. This information may also be shared with third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymised so that an assignment is not possible (IP masking).
These processing operations only take place with the granting of express consent under Art. 6 Para. 1 lit. a) GDPR.
You can also prevent the collection of the data generated by cookies and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de).
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on the following link: Deactivate Google Analytics. An opt-out cookie will be set, which prevents the future collection of your data when you visit this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will have to set the opt-out cookie again.
You can find further information on data protection connected to Google Analytics in the Google Analytics Help (https://support.google.com/analytics/answer/6004245?hl=de).
10 Plugins and other services
10.1 Google Maps
We use Google Maps (API) from Google LLC., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, on our website. Google Maps is a web service for displaying interactive (land) maps to display geographic information visually. Using this service can, for example, show you our location and make it easier for you to get there.
As soon as you access the sub-pages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transmitted to and stored by Google on servers in the United States. This happens regardless of whether Google provides a user account that you are logged into or whether there is no user account. If you are logged in to Google, your data will be assigned directly to your account. If you do not want the data to be assigned to your profile on Google, you must log out of your Google user account. Google saves your data (even for users who are not logged in) as usage profiles and evaluates them. Such an evaluation is carried out under Article 6 (1) (f) GDPR based on Google's legitimate interests in displaying personalized advertising, market research and/or the needs-based design of its website. Of course, you have the right to object to the creation of these user profiles, although you must contact Google to exercise this right.
A direct connection to the Google servers is only established if you activate Google Maps yourself (consent according to Art. 6 Para. 1 lit. a GDPR). This prevents your data from being transferred to Google the first time you enter the site.
10.2 YouTube (with extended data protection mode)
This website links videos from YouTube (Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland).
We use YouTube in the extended data protection mode. According to YouTube, this mode ensures that YouTube does not store any information about visitors to this website before they watch the video. However, the data transfer to YouTube partners is not necessarily excluded by the extended data protection mode. This is how YouTube connects to the Google DoubleClick network regardless of whether you are watching a video.
As soon as you start a YouTube video on this website, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your browsing history directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, YouTube can save various cookies on your device after starting a video. With the help of these cookies, YouTube can obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve usability and prevent fraud attempts. The cookies remain on your device until you delete them.
If necessary, further data processing operations can be triggered after the start of a YouTube video, over which we have no influence.
YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Paragraph 1 lit. . 6 para. 1 lit. a) GDPR; the consent can be withdrawn at any time.
You can find more information about data protection at YouTube in their data protection declaration at:
11 Your rights as a data subject
11.1 Right to Confirmation
You have the right to request confirmation from us whether personal data relating to you is being processed.
11.2 Right to Information Art. 15 GDPR
You have the right to receive free information from us about the personal data stored about you as well as a copy of this data from us at any time.
11.3 Right to Correction Art. 16 GDPR
You have the right to request the correction of incorrect personal data concerning you. Furthermore, the data subject has the right, taking into account the purposes of the processing, to request the completion of incomplete personal data.
11.4 Deletion of Art. 17 GDPR
You have the right to demand that we delete the personal data relating to you immediately, provided that one of the reasons provided by law applies and that processing is not necessary.
11.5 Restriction of Processing Art. 18 GDPR
You have the right to demand that we restrict processing if one of the legal requirements is met.
11.6 Data Portability Art. 20 GDPR
You have the right to receive the personal data relating to you that you have provided to us in a structured, common and machine-readable format. You also have the right to transfer this data to another person responsible without hindrance from us, to whom the personal data was provided, provided that the processing is based on the consent in accordance with Art. 6 Para. 1 lit. a GDPR or Art. 9 Para . 2 lit. a GDPR or on a contract under Art. 6 Paragraph 1 lit. lies or takes place in the exercise of public authority which has been assigned to us.
Furthermore, when exercising your right to data portability under Art. 20 (1) GDPR, you have the right to have the personal data transmitted directly from one person responsible to another, insofar as this is technically feasible. If this is not the case, the rights and freedoms of other persons are impaired.
11.7 Objection to Art. 21 GDPR
You have the right, for reasons that arise from your particular situation, to object at any time to the processing of personal data relating to you, which is based on Article 6, Paragraph 1, Letter e (data processing in the public interest) or f (data processing based on a Weighing of interests) DS-GVO takes place, to object.
This also applies to profiling based on these provisions within the meaning of Art. 4 No. 4 GDPR.
If you object, we will no longer process your personal data unless we can prove compelling legitimate reasons for the processing that outweigh your interests, rights, and freedoms. The processing serves to assert, exercise, or defend legal claims.
In individual cases, we process personal data to operate direct mail. You can object to the processing of personal data for the purpose of such advertising at any time. This also applies to profiling insofar as it is associated with such direct mail. If you object to processing for direct marketing purposes, we will no longer process the personal data for these purposes.
In addition, for reasons that arise from your particular situation, you have the right to object to the processing of personal data relating to you, which we undertake for scientific or historical research purposes or statistical purposes under Art. 89 (1) GDPR unless such processing is necessary to fulfil a task in the public interest.
In connection with the use of information society services, regardless of Directive 2002/58 / EC, you are free to exercise your right of objection employing automated processes that use technical specifications.
11.8 Revocation of consent under data protection law
You have the right to revoke your consent to the processing of personal data at any time with effect for the future.
11.9 Complaint to a supervisory authority
You have the right to complain to a supervisory authority responsible for data protection about our processing of personal data.
12 Duration of storage of personal data
The criterion for the duration of the storage of personal data is the respective statutory retention period. After the deadline has expired, the relevant data is routinely deleted, provided that it is no longer required to fulfil or initiate a contract.
13 Up-to-dateness and changes to the data protection declaration
This data protection declaration is currently valid and is dated April 2021.
Due to the further development of our website and offers or changed legal or official requirements, it may be necessary to change this data protection declaration. You can call up and print out the current data protection declaration at any time on the website at "
14 Further information on other data processing
As a company, we not only process personal data on our website, but also in many other processes. In order to be able to provide you as the data subject with the most detailed information possible for these processing purposes, we have compiled it for you here for the following processing activities, thus fulfilling the statutory information obligations according to Art. 13-14 GDPR:
Sollten Sie weitere Informationen benötigen, die Sie in der Datenschutzerklärung nicht finden, wenden Sie sich bitte vertrauensvoll an unseren Datenschutzbeauftragten.