What Information Do We Collect?
Data is collected from you when you provide them to us. We collect data from you when you register on our site, place an order, subscribe to our membership plan or fill out the contact form with your personal information. The data that we collect includes the name, address, email address, or phone number of a data subject will consistently be in accordance with the General Data Protection Regulation (GDPR), and as per the country-specific data protection regulations that are applicable to the website of GPLTools. Although, one can also visit our website anonymously as well.
Why Do We Collect Data From You?
The data and information that we collect from our website visitors is used by us for the purposes listed below:
- To improve customer service.
- To administer a contest, promotion, survey or other site feature.
- To personalize visitor’s experience.
- To send periodic emails.
In this Data Protection Declaration of our website, we use, inter alia, the following terms:
- Personal Data: By mentioning personal data, we are referring to the data or information that belongs to an identified or identifiable genuine person that is “Data Subject”. An identifiable common individual is one who can be distinguished, legitimately or in an another way, specifically by reference to an identifier, for example, a name, an ID number, location information, an online identifier or to one or more factors explicit to their physical, physiological, hereditary, mental, monetary, social or social character of that natural individual.
- Data Subject: Data subject is any identified or identifiable natural person. The personal data and information of the data subject is processed by the controller responsible for the processing.
- Restriction of Processing: Restriction of processing refers to restricting the stored personal data and information with the objective of restricting their processing in the future.
- Pseudonymization: Pseudonymisation is the processing of individual’s information in such a way, that the individual’s information can never again be ascribed to a particular data subject without the use of additional data or information, given that such additional information is kept separately and is subject to technical and authoritative measures to guarantee that the individual’s information is not credited to an identified or identifiable natural individual.
- Processor: The processor is a natural or legal individual, public authority, agency, or other body that is responsible for processes personal data on behalf of the controller.
- Recipient: The Recipient is a natural or lawful individual, public authority, agency, or another body, to which the personal information and data are revealed, regardless of whether a third party or not. However, public authorities which may get personal information in the system of a specific inquiry as per Union or Member State law will not be considered as recipients; the processing of that information by those public authorities will be in consistence with the applicable data protection rules as indicated by the objective of processing.
- Controller: Controller liable for the processing Controller or controller liable for the processing is the normal or legitimate individual, public authority, agency or other body which, alone or jointly with others, decides the reasons and methods for the processing of individual’s information where the reasons and methods for such processing are dictated by Union or Member State law, the controller or the particular rules for its designation might be accommodated by Union or Member State law.
- Third-party: The third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who are under the direct authority of the controller or processor, and are authorized to process personal data.
- Profiling: Profiling implies for any type of automated processing of individual data and information comprising of the use of individual information to assess certain individual aspects associated with a natural individual, specifically to investigate or foresee aspects concerning that common individual’s performance at work, monetary circumstance, well-being, individual preferences, interests, reliability, behavior, location or movements.
- Consent: Consent of the data subject is any openly given, explicit, informed, and unambiguous sign of the data subject’s desires by which the individual whether he or she, by an announcement or by the clear affirmative action, implies consent to the processing of individual’s data and information identifying with that person.
- Name and Address of the Controller
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states is :
- Email: [email protected]
- Website: https://GPLTools.net
- Collection of General Data and Information
The website of the GPLTools gathers a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be (1) the browser types and versions utilized, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.
When using these general data and information, the SafeGPL does not draw any conclusions about the data subject. Rather than this, the information is needed to (1) deliver the content of our website accurately, (2) optimize the content of our website as well as its advertisement, (3) guarantees the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information crucial for criminal prosecution in any case of a cyber-attack. Therefore, the G analyzes anonymously collected data and information statistically, with the objective of improving the data protection and data security of our enterprise, and to guarantee an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored individually from all personal data provided by a data subject.
By the use of a cookie, the data and offers on our site can be streamlined considering the users. Cookies permit us, as recently referenced, to recognize our website users. The objective behind this acknowledgment is to make it simpler for users to use our website. The website users that utilize cookies, for example, they don’t need to enter access data every time the website is accessed, in light of the fact that this is taken over by the site, and the cookie is consequently put away on the user’s computer system. Another example is the cookie of a shopping cart in an online store. The online store recollects the articles that customers have put in the virtual shopping cart by means of a cookie.
The data subject may restrict or prevent the setting of cookies whenever they want through our website by means of a corresponding setting of the Internet browser utilized, and may thus permanently preclude the setting of cookies. Furthermore, previously set cookies might be deleted at any time by means of an Internet browser or other software programs. This is conceivable in all mainstream Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser utilized, not all elements of our website might be altogether usable.
- Registration on G
The data subject has the likelihood to register on the website of the controller with the sign of personal data and information. Which personal information is transmitted to the controller is dictated by the particular input mask used for the enlistment. The personal data added by the data subject is gathered and stored only for internal use by the controller, and for his own objectives. The controller may demand transfer to one or more processors (for example a parcel service) that additionally utilizes personal data for an internal attributable to the controller.
By registering on the website of the controller, the IP address—assigned by the Internet service provider (ISP) and utilized by the data subject—date, and time of the registration are also stored. The storage of this data takes place against the background that this is the only method to avoid the misuse of our services, and, if necessary, to make it possible to investigate committed offenses. In so far, the storage of this data is crucial to secure the controller. This data is not passed on to third parties unless there is a statutory obligation to pass on the data, or if the transfer serves the objective of criminal prosecution.
The Registration of the data subject, with the deliberate sign of personal information, is proposed to empower the controller to offer the data subject contents or services that may only be offered to enrolled users because of the nature of the matter being referred to. Registered Users are allowed to modify the personal data determined during the registration whenever they want, or to have them completely deleted from the information stock of the controller.
The data controller will, at any time, provide data upon a solicitation to every data subject with regards to what personal data are stored about the data subject. What’s more, the data controller will correct or delete personal data at the solicitation or indication of the data subject, to the extent that there are no legal stockpiling obligations. The aggregate of the controller’s employees is available to the data subject in this regard as a contact person.
- Contact Possibility via Website of G
The website of the GPLTools contains data that empowers a fast electronic contact to our venture, just as immediate correspondence with us, which likewise incorporates a general address of the so-called electronic mail (email address). In the event that the data subject contacts the controller by email or through a contact form, the personal data transmitted by the data subject are consequently stored. Such personal data transmitted on a willful premise by a data subject to the data controller are stored with the objective of processing or reaching the data subject. There is no exchange of this personal data to third parties.
- Subscription to our Newsletters
On the website of the G, users are offered an opportunity to subscribe to our enterprise’s newsletter. The input mask utilized for this objective figures out what personal data are transmitted, only when the newsletter is requested from the controller.
The advises its customers and business partners normally by means of a newsletter about enterprise offers. The enterprise’s newsletter may possibly be received by the data subject if (1) the data subject has a valid email address and (2) the data subject registers for the newsletter delivering. A confirmation email will be sent to the email address enlisted by the data subject for the first time for newsletter shipping, for lawful reasons, in the double-opt-in procedure. This confirmation email is utilized to demonstrate whether the proprietor of the email address as the data subject is approved to get the newsletter.
While registering for the newsletter, we also store the IP address of the computer system assigned by the Internet service provider (ISP) and utilized by the data subject at the time of the registration, as well as the date and time of the registration. The collection of this data is crucial in order to understand the (possible) misuse of the e-mail address of a data subject at a later date, and it, therefore, serves the objective of the legal protection of the controller.
The personal data collected as part of a registration for the newsletter will only be utilized to send our newsletter. In addition, subscribers to the newsletter can be informed by email, as long as this is required for the operation of the newsletter service or a registration in question, as this could be the case in the event of modifications to the newsletter offer, or in the event of a change in technical circumstances. There will be no transfer of personal data collected by the newsletter service to third parties. The subscription to our newsletter may be terminated or suspended by the data subject at any time. The consent to the storage of personal data, which the data subject has provided for shipping the newsletter, may be revoked at any time. For the purpose of the revocation of consent, a corresponding link is found in each newsletter. It is also possible to unsubscribe from the newsletter at any time directly on the website of the controller or to communicate this to the controller in another way.
- Data protection provisions about the application and use of Google Analytics (with anonymization function)
On this website, the controller has integrated the component of Google Analytics (with the anonymizer function). Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects, inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in order to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
For web analytics, through Google Analytics the controller uses the application “_gat. _anonymizeIp”. By means of this application, the IP address of the Internet connection of the data subject is abridged by Google and anonymized when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to evaluate the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
Google Analytics places a cookie on the information technology system of the data subject. The definition of cookies is explained above. With the setting of the cookie, Google is enabled to analyze the use of our website. With each call-up to one of the individual pages of this Internet site, which is operated by the controller and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject will automatically submit data through the Google Analytics component for the purpose of online advertising and the settlement of commissions to Google. During the course of this technical procedure, the enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements.
The cookie is used to store personal information, such as the access time, the location from which the access was made, and the frequency of visits of our website by the data subject. With each visit to our Internet site, such as personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google Analytics from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google Analytics may be deleted at any time via a web browser or other software programs.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/
- Data protection provisions about the application and use of Google-AdWords
On this website, the controller has integrated Google AdWords. Google AdWords is a service for Internet advertising that allows the advertiser to place ads in Google search engine results and the Google advertising network. Google AdWords allows an advertiser to pre-define specific keywords with the help of which an ad on Google’s search results only then displayed when the user utilizes the search engine to retrieve a keyword-relevant search result. In the Google Advertising Network, the ads are distributed on relevant web pages using an automatic algorithm, taking into account the previously defined keywords.
The operating company of Google AdWords is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
The purpose of Google AdWords is the promotion of our website by the inclusion of relevant advertising on the websites of third parties and in the search engine results of the search engine Google and an insertion of third-party advertising on our website.
If a data subject reaches our website via a Google ad, a conversion cookie is filed on the information technology system of the data subject through Google. The definition of cookies is explained above. A conversion cookie loses its validity after 30 days and is not used to identify the data subject. If the cookie has not expired, the conversion cookie is used to check whether certain sub-pages, e.g, the shopping cart from an online shop system, were called up on our website. Through the conversion cookie, both Google and the controller can understand whether a person who reached an AdWords ad on our website generated sales, that is, executed or canceled a sale of goods.
The data and information collected through the use of the conversion cookie is used by Google to create visit statistics for our website. These visit statistics are used in order to determine the total number of users who have been served through AdWords ads to ascertain the success or failure of each AdWords ad and to optimize our AdWords ads in the future. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject.
The conversion cookie stores personal information, e.g. the Internet pages visited by the data subject. Each time we visit our Internet pages, personal data, including the IP address of the Internet access used by the data subject, is transmitted to Google in the United States of America. These personal data are stored by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may, at any time, prevent the setting of cookies by our website, as stated above, by means of a corresponding setting of the Internet browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a conversion cookie on the information technology system of the data subject. In addition, a cookie set by Google AdWords may be deleted at any time via the Internet browser or other software programs.
The data subject has a possibility of objecting to the interest-based advertisement of Google. Therefore, the data subject must access from each of the browsers in use the link www.google.de/settings/ads and set the desired settings.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/
- Payment Method: Data protection provisions about the use of PayPal as a payment processor
On this website, the controller has integrated components of PayPal. PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which represent virtual private or business accounts. PayPal is also able to process virtual payments through credit cards when a user does not have a PayPal account. A PayPal account is managed via an e-mail address, which is why there are no classic account numbers. PayPal makes it possible to trigger online payments to third parties or to receive payments. PayPal also accepts trustee functions and offers buyer protection services.
The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
If the data subject chooses “PayPal” as the payment option in the online shop during the ordering process, we automatically transmit the data of the data subject to PayPal. By selecting this payment option, the data subject agrees to the transfer of personal data required for payment processing.
The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number, or other data necessary for payment processing. The processing of the purchase contract also requires such personal data, which are in connection with the respective order.
The transmission of the data is aimed at payment processing and fraud prevention. The controller will transfer personal data to PayPal, in particular, if a legitimate interest in the transmission is given. The personal data exchanged between PayPal and the controller for the processing of the data will be transmitted by PayPal to economic credit agencies. This transmission is intended for identity and creditworthiness checks.
PayPal will, if necessary, pass on personal data to affiliates and service providers or subcontractors to the extent that this is necessary to fulfill contractual obligations or for data to be processed in the order.
The data subject has the possibility to revoke consent for the handling of personal data at any time from PayPal. A revocation shall not have any effect on personal data that must be processed, used or transmitted in accordance with (contractual) payment processing.
The applicable data protection provisions of PayPal may be retrieved under https://www.paypal.com/us/webapps/mpp/ua/privacy-full
- Period for which the personal data will be stored
The criteria used to determine the period of storage of personal data is the respective statutory retention period. After the expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment of the contract or the initiation of a contract.