The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the legal regulations (GDPR). In this data protection policy we inform you about the most important aspects of data processing on our website.
Contact with us
If you contact us through the contact options offered, your details will be stored so that they can be used to process and answer your enquiry. If this data is not necessary for the fulfilment of a legal obligation (legal obligation to store data) or is part of an upright customer relationship (contractual fulfilment), it will be deleted after 12 months. This data will not be passed on to third parties without your consent.
Personal data is information that can be used to determine your identity. This includes information such as your real name, address, postal address, telephone number, e-mail.
You can use our online offer without disclosing your identity. However, if you register for the emergency ID or shop order, we will ask you for your name and other personal information to process and assign orders to you or to save your emergency IDs. This data will not be passed on to third parties without your consent. The data for the emergency ID card is encrypted by a key you specify yourself and cannot be viewed by us or third parties at any time. You can delete this emergency ID data from our server yourself at any time. We store your data transmitted via this website on a protected server in the EU. Access is only possible to a few specially authorised persons who are involved with the technical, commercial or editorial support of the servers.
We would like to point out that Internet-based data transmission has security gaps, making complete protection against access by third parties impossible.
To send our newsletter, we use the e-mail address you provided when registering. In order to ensure that you as the owner of the e-mail address agree to receive the newsletter, we use the so-called double opt-in procedure when registering for the newsletter. If you no longer wish to receive our newsletter at a later date, you can object to receiving it at any time. You will find a unsubscribe link in every newsletter and on the website.
Data storage in the shop and company
We would like to point out that for the purpose of simplifying the purchasing process and for subsequent contract processing, the IP address of the connection owner is stored by the webshop operator, as are the name, address, e-mail address, telephone number and, if applicable, a different VAT number and a different delivery address of the purchaser, as well as the orders.
The data provided by you is necessary for the fulfilment of the contract or for the implementation of pre-contractual measures. Without these data we cannot conclude the contract with you. With the exception of the transmission of payment data to the processing payment service providers for the purpose of debiting the purchase price, no data will not be transmitted to third parties to the transport company/dispatch company commissioned by us (noistor oHg, Eupener Straße 74, 50933 Cologne, Germany) for the delivery of the goods in order to fulfil our tax obligations. The data transfer takes place via our data and mail service provider, which is of course also subject to the GDPR.
After the shopping process is aborted, the data stored by us will be deleted. In the event of a contract being concluded, all data from the contractual relationship will be stored until the expiry of the tax retention period (10 years).
The data name, address, goods purchased and date of purchase will also be stored until the expiry of product liability (10 years).
Data processing is carried out on the basis of the legal provisions of Art 6 para 1 a (consent) and/or para 1 b (necessary for contract fulfilment) of the GDPR.
PayPal as payment method / PayPal donation button
We have integrated components of the online payment service PayPal on this website. PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg, is the European operating company of PayPal.
If you choose “PayPal” as a payment option in our online shop or would like to send us a donation via PayPal, the personal data necessary for processing your order or for payment processing and fraud prevention are automatically transmitted to PayPal.
This information may be transferred by PayPal to credit agencies for identity and credit checks. PayPal may also pass the personal data on to affiliated companies or subcontractors if this is necessary to fulfil the contractual obligations or if the data is to be processed on behalf of PayPal. You have the possibility to revoke your consent to PayPal to handle your personal data at any time. However, a revocation does not affect personal data that must be processed for contractual payment processing.
For further information on data protection law, please refer to PayPal’s current data protection regulations: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Storage of data in the member system
For the administration of the members in our associations we process personal data collected from the membership application (name, address, birth data, bank data for the collection of contributions). These data are administered via the Vereinonline program of Grith AG, Von-Poschinger-Strasse 32, 85737 Ismaning, Germany.
Storage of data for issuing emergency ID cards
CRPS emergency cards can also be ordered from our shop. Here, however, only the above-mentioned address data for the dispatch are queried. Data on CRPS disease, which is stored in a secure system, is queried separately for the personal creation of the ID card. After the card has been issued and sent, the data will be completely deleted.
Use of Tawk.to
We conduct our own surveys and studies. For this we use the open source software Limesurvey, which runs on our own servers. Unless otherwise stated separately in a study, the data are anonymous, so that no conclusions can be drawn about individual persons. We exchange the collected and completely anonymous data for research purposes with other companies such as Grunenthal, Zieglerstrasse 3, 52049 Aachen, Germany.
Data processing is carried out on the basis of the legal provisions of Art 6 para 1 a (consent) and/or para 1 f (legitimate interest) of the GDPR
Our concern in the sense of the GDPR (legitimate interest) is the improvement of our offer and our website. Since the privacy of our users is important to us, the user data is pseudonymised.
User data will be kept for a period of 12 months.
In principle, you have the rights to information, correction, deletion, restriction, data transferability, revocation and objection. If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can complain to the supervisory authority. In Germany, this is theFederal Commissioner for Data Protection and Freedom of Information.
Your contact for questions regarding data protection
CRPS Netzwerk gemeinsam stark.
CRPS Bundesverband Deutschland e.V.
Neusser Street 112a