Privacy Policy

In the following, we would like to explain to you what data we collect about you and what we do with this data. We also inform you about your privacy rights and explain to whom you can turn with questions about data privacy.

About us

Data controller responsible for the processing of your data (hereinafter: “controller”):
Kito Europe GmbH
Heerdter Lohweg 93
40549 Düsseldorf
Tel. +49 211 528 009 - 0
E-Mail: info@kito.net
CEO: Martin Rothe
We want to protect and uphold your privacy rights, so you can contact our data protection officer for questions about this privacy policy, the processing of your data, your rights, or other concerns in the area of data protection.

Contact details of the data protection officer:
Xamit Bewertungsgesellschaft mbH
Monschauer Str. 12
40549 Düsseldorf
E-Mail: info@xamit.de

Scope of application

This privacy policy applies to the website www.kito.net. It is aimed at the visitors of our website.
On our pages further links are offered which lead to the websites of other operators for which this privacy policy does not apply.
Responsibility for integration of advertisements, text advertisements or commercials before or during embedded videos lies with the respective operator.

Do I have to enter my data?

When you visit our website, user data are automatically stored. Some of the collected data is necessary for the use of a website. In addition, we also process your data in order to safeguard our legitimate interests according to a balance of interests. This will enable us to continuously improve the services we offer to you. On the following pages, you will learn about the background of our interests as well as whether and how you can object to the use of your data or disable the use of the data.
In order to use one of our offers or to send a request, you will be asked to provide your personal data. You can decide for yourself whether to take advantage of these offers and to provide your data. Of course, we process your data only for the purpose for which you provided us with your data. We also offer services for which we process your data only if you have given us your consent. The granting of consent is always voluntary. Consent that has been granted may be revoked at any time.
Please note that if you provide information about other persons, you must have obtained their prior consent and informed them of the purposes for which the information is being disclosed, as set forth in this privacy policy.
We also ask you to share this information with the people you include in the use of our services, such as family members or authorised persons.

What data do we process?

I. Your visit to our website

When you visit our website, different personal data are stored and used.

1. Processed data and processing purposes:

  • Service provision: In order to visit and use our website, the specified data must be collected.
  • Data security: Every instance of access to our website is saved in a log file. We collect and use these data only for the purpose of data security.
  • Optimisation of the website including profiling: We are constantly improving our websites to give you the best experience. For this purpose, our service providers collect, store and process the specified data about your visit as part of commissioned data processing. Neither we nor the contracted service providers associate your visit data with your name or other personal information that you have given us. The IP number is anonymised prior to use for the generation of statistics.
Dates Service provision Data security Optimisation and invoicing of advertising measures including profiling
IP number x x x
Name of the retrieved file x x
Transferred amount of data x x
Visited website x x
Referrer URL (the previously visited website) x x
Search terms that Internet users have listed on our website x
User agent your browser sends (only for mobile version or automatic voice control) x x x
Session cookie x x x
Date and retrieval time x
Date and time of the last user activity (for session timeout) x x x
Operating system x
Browser type Browser version Browser resolution (inner window size) browser language screen size Screen resolution incl. Color depth x x
URL of the viewed page / Downloads x x x
Cookie on/off x x
Java script on/off x x
Installed plugins x x x
Mouse movement within the browser window x

In addition, the above-mentioned data are used for the following purposes in the context of a consideration of interests (Art. 6 (1) (f) GDPR) and the fulfillment of legal obligations (Art. 6 (1) (c) GDPR). The interests and legal obligations are named below:
(1) Should a security incident occur in our company that affects your data, we are obliged to report the case to our data protection supervisory authority (Art. 33 GDPR). Since our legitimate interest is to comply with this statutory reporting obligation as quickly as possible, it may happen that in the context of the investigation of the corresponding security incident data about you are processed. Reports of these security incidents to data protection supervisory authorities do not contain any of your personal data.
(2) As it is in our interest to ensure the security of our systems, we regularly conduct security and efficancy tests that allow us to process your above-mentioned data.
(3) It is in our interest, in the event of litigation, to keep evidence until all relevant statutory limitation periods pursuant according to sections 195 and fallowing of the German Civil Code, have expired. For this purpose, we retain the relevant data about you in accordance with these limitation periods.
(4) In addition, it is in our interest to investigate suspected cases and to hand over relevant information to law enforcement authorities in case of a specific criminal suspicion.

2. Information about automated individual decisions
No automated individual decisions take place.

3. Legal basis for the use of your data

  • We process your data in order to safeguard our legitimate interests (Art. 6 (1) (f) GDPR):

(1) It is in our interest to process your data provided under the provision of services and the display of photos for the fullfillment of our service, so taht you can access and use our website.

(2) It is in our interest to be able to guarantee data security. For this purpose, the data of each visit are stored and evaluated in a log file.

(3) It is our legitimate interest to optimise our website. For this purpose, service providers are used as part of commissioned data processing, cookies are set and visitors’ data are transmitted to a server of a service provider (here: Google) in the USA.

You have the right, for reasons that arise from your particular situation, to object to the processing of your data in order to safeguard our legitimate interests. Please read more under 7. Cookies and Web-Tracking.

4. Deletion periods (or storage duration)

  • 7 days
  • Closing the browser automatically deletes the session cookie and the data in the log file.
  • We need your IP number for technical reasons to deliver the measurement pixel. It will not
    be used for statistical purposes and will be deleted/anonymised immediately by our service
    provider (see 6. Data recipient).
  • The data used to optimize our website, including profiling, will be deleted after fulfillment of the purpose.
  • We use cookies to distinguish your revisit from your first visit to our website. You can
    manually delete the cookie; otherwise, it will be automatically deleted 7 days after your last visit to our website and then reset on your next visit with a new ID.

5. Origin of the data
There is no data collection from third parties.
6. Data recipient

  • The following service providers (processors) receive data to optimize our website: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
7. Cookies und Web-Tracking
Cookies are set. You can delete these cookies at any time via your browser settings or prevent their acceptance.

If you do not want us to log your visits, then please click on one of the following links: Objection to the processing of data by google via the following browser plug in: http://tools.google.com/dlpage/gaoptout?hl=en or by following opt out link: Deactivate Google Analytics

II. Contact and other services

1. Processed data and processing purposes
In the following, we would like to discuss the purposes for which your data is processed, if you have a concern or use our services.

  • Processing of inquiries incl. contact form: We process the data you give us if you have a question or concern. If you make inquiries to trading partners, we forward the inquiries to the corresponding trading partners. This includes the data that you have entered in the contact form, sent by e-mail or fax.
  • Newsletter: You can subscribe to our newsletter, which requires an e-mail address.
  • Card service: So that you can find our company, as well as our trading partners better and plan your journey, we offer you a map of the Google Maps- map service. Google Inc collect and process your data while you are using the map. For more information, see the Google Maps Terms of Service. We
    have no influence on the data collection and processing by Google Inc.
Dates Processing of inquiries incl. contact form Newsletter Card service
Salution x x
Name x x
E-mail address x x
Subject x
Message x
Telephone number, mobile number x
IP-Number x
Time of access x
Place x x
Address x x
Postcode x x
Product Type x
Answer x

In addition, the above-mentioned data are used for the following purposes in the context of a consideration of interests (Art. 6 (1) (f) GDPR) and the fulfillment of legal obligations (Art. 6 (1) (c) GDPR). The interests and legal obligations are named below:
(1) In case of a security incident at our company that affects your data, we are obliged to report this case to data protection supervisory authority (Art. 33 GDPR). Since our legitimate interest is it to comply with this statutory reporting obligation as quickly as possible, it may happen that in the context of the investigation of the corresponding security incident, your personal data will be processed. Reports of these security incidents to data protection supervisory authorities do not contain any of your personal data.
(2) As it is in our interest to ensure the safety of our systems, we regularly conduct safety and efficacy tests that allow us to process your above-mentioned data.
(3) In the event of litigation, is it in our interest to keep evidence until all relevant statutory limitation periods pursuant to sections 195 and following of the German Civil Code have expired. For this purpose, we retain the relevant data about you in accordance with these limitation periods.
(4) In addition, it is in our interest to investigate suspected cases and to hand over relevant information to law enforcement authorities in case of a specific criminal suspicion.

2. Information about automated individual decisions
No automated individual decisions are made.
3. Legal basis for the use of your data
a) We process your data as described under "Processing of inquiries incl. Contact form", "map service", specified in the context of a contract-like relationship of trust (Art. 6 (1) (b) GDPR). If you wish to use these services, we will need the data provided to provide these services.
b) In addition, we process your data in order to safeguard our legitimate interests (Art. 6 (1) f) GDPR):
To make it easier for you to share our content on social media, we offer so-called social plug-ins. By using the plugin, the respective operator receives the information that you have accessed the corresponding page of our website. If you are logged in to the operator, this can assign the visit to your account. If you interact with the plugins, for example, press the "Like" button or leave a comment, the corresponding information will be transmitted from your browser directly to the operator and stored there.
c) We use your e-mail address for sending our newsletters with informations about our products, offers and services, this is based on your consent (Art. 6 (1) (a) GDPR).

4. Deletion periods (or storage duration)

  • 7 days
  • For the preservation of evidence, we retain data in accordance with the statutory limitation periods according to sections 195 and following of the German Civil Code. The storage duration of your data may exceed the duration stated above. The statutory limitation periods can be up to 30 years. The normal limitation period is 3 years.

5. Origin of the data
There is no data collection from third parties.
6. Data receiver
See "Which organizations get your data?"
7. Data recipients in non-EU countries

  • Google Analytics: The generated information about your use of this website is usually transmitted to a Google server in the USA and stored there. IP anonymisation has been activated on this website so that your IP address is shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. For more information about how Google handles your personal information for the Google Analytics service, please refer to Google's Privacy Policy.
  • This website uses the Google Maps API, a map service of Google Inc. ("Google"), to display our location, as well as the location of our trading partners and for route planning purposes to display an interactive map. By using Google Maps, information about your use of this website may be transmitted to and stored by Google on servers in the United States. Google may transfer the information obtained through Google Maps to third parties. It would be technically possible that Google could use the data obtained to identify at least one user. It would also be possible for Google's website personal data and personality profiles to be processed for other purposes beyond our control. For more information about how Google handles your personal information, please see the privacy policy.

The EU Commission determines which non-EU countries have an appropriate level of data protection. The EU Commission recognizes companies in the US who participate in the EU-US Privacy Shield (also EU-US Privacy Shield) as data recipients with an adequate level of data protection. This agreement between the US and the EU ensures that data protection regulations when processing data in the US by EU-US Privacy Shield companies comply with the data protection standards of the European Union. Google LLC has acceded to the EU-US Privacy Shield. Information on the appropriate or reasonable warranties and how to obtain a copy from them or where they are available may be requested upon request using the contact details provided above.

Which organizations receive your data?

The following table shows which organizations (“data recipients”) receive your data in which cases. You can read about the specific data in the corresponding sections of this privacy policy. Transfer of your data may sometimes occur due to legal reporting requirements. In other cases, we use selected vicarious agents and service providers who work for us as commissioned data processors (in accordance with Art. 28 GDPR) and may obtain access to your data in the required scope. Commissioned data processors are subject to numerous contractual obligations and may, in particular, process your personal data only on our instructions and solely for the fulfilment of the orders received from us.

Data recipient Explanation
Service provider for newsletter distribution For the dispatch of the newsletter, we use within the scope of an order processing service, which receive your e-mail address for dispatch purposes.
Service provider for the optimisation of our website We are constantly improving our websites to give you the best experience. Our service providers collect, store and process the specified data about your visit on our behalf for this purpose. Neither we nor the contracted service providers associate your visit data with your name or other personal information that you have given us.
IT-Service As part of the operation of our IT infrastructure and our website, the respective service providers can gain access to your data. We require our service providers to always limit the processing of your data to what is necessary to carry out the purpose.
Police, lawyers, law enforcement agencies, public prosecutor, state or federal criminal police It is in our interest to investigate suspected cases and to hand over all necessary data to law enforcement authorities in case of a specific criminal suspicion against a customer.

Your rights

You have the right to:

  • Information about your personal data stored about you (Art. 15 GDPR)
  • Data portability (Art. 20 GDPR)
  • Correction and completion of your data (Art. 16 GDPR)
  • Deletion (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)

Revocation of granted consent (Art. 7 DS-GVO) with effect for the future for:

  • Newsletter: For this you can send an e-mail to info@kito.net with the subject "Newsletter”.
  • Applicant data: For this you can send an e-mail to info@kito.net with the subject "Applicant Data"
  • Contact details: For this you can send an e-mail to info@kito.net with the subject "contact details"

Objection to the processing of your data in order to safeguard our legitimate interests or the legitimate interests of third parties (Art. 21 GDPR) – You have the right, for reasons arising from your particular situation, to object to such processing at any time; this also applies to profiling based on these provisions within the meaning of Art. 4 (4) GDPR.

To exercise these rights, you can contact us in particular via info@kito.net. If you do not want your data to be collected when you visit our website, you can see here „7. Cookies and Web-Tracking“ and also how the capture can be disabled.

You also have the right to complain to a data protection supervisory authority.

YOUR CONTACT PERSON

Do you have any questions or do you need individual advice?
We would be glad to help you with all your requests. Please ask us!

TOP