We appreciate your interest in our website. The protection of your privacy is an important issue for us. This privacy policy is intended to explain how we will use and store the information you supply, how we secure this information, and what rights you have.

Controller

Controller according to Art. 4 No. 7 GDPR is:

Dr. Rath Education Services B.V., Sourethweg 9, 6422 PC Heerlen,
Netherlands

Commercial register no.: 06086004

Telephone: 0031 – 457 – 111 222

Email: datenschutz@rath-programs.com

Visiting our Website

You can visit our website without having to provide personal information.
We do, however, process the following data, which your browser sends to our
servers:

  • IP address of the accessing computer
  • name and URL of the accessed file
  • date and time of the access
  • transferred data volume
  • http status code
  • requested resource and protocol version
  • identification data (type, version) of the browser used and operating
    system of the accessing computer
  • URL of the referring website if access was gained by clicking a link

These data are processed solely to improve our service, and do not allow any inference to your person. The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since these data are technically necessary in order to display our website and to ensure its stability and security.

Cookies

When you use our website, we place cookies on your computer. Cookies are widely used by website owners in order to make their websites work, or to work more efficiently, as well as to provide reporting information. Cookies are small text files assigned to the browser you use, which are stored on your hard disk. Cookies cannot run programs or transmit viruses to your computer. They serve to make internet services more user-friendly and effective overall.

We use two kinds of cookie: transient cookies (temporary cookies), also
known as ‘session cookies’, and persistent cookies (permanent cookies).
Transient cookies are temporary cookies that are deleted automatically when
the browser is closed. They are necessary for the functions of our online
shop, and include an “anti-forgery” cookie to prevent hacking attacks, as
well as a “last viewed products” cookie.

When you visit our online shop, data that are required for the correct
function of the shop are deposited in persistent cookies on your computer.
These are deleted from your computer automatically when their validity
expires or you delete them yourself before the validity expiration. These
include the “shopping cart” cookie as well as the “guests” cookie, which
saves the shopping cart and billing information for non-registered users
for 3 days. After 3 days, the cookie is deleted automatically.

We also use an “authentication” cookie, which maintains the login of our
online shop. If you tick the box “remember me”, this cookie ensures that
you remain logged in even after you close the browser. In this case, the
“authentication” cookie is a persistent cookie and is deleted only after 30
days. If you do not tick this box, the “authentication” cookie remains a
transient cookie and will be deleted when you close the browser.

Of course you can also view our website without cookies. Most browsers
accept cookies automatically. You can prevent the saving of cookies or have
your browser warn you before saving a cookie by choosing these options in
your browser. Furthermore, you can delete saved cookies from your computer.
Further information about these functions can be found in the Help menu of
your browser. It is possible, however, that some functions of our website
will be available only in part or not at all if you do not permit the use
of cookies.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
f) GDPR since these data are necessary in order to configure our website to
be user-friendly and to facilitate its use.

Analysis Tools

…Google Analytics

This website uses Google Analytics, a web analytics service provided by
Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text
files placed on your computer to help the website analyze how visitors use
the site. The information generated by the cookie about your use of the
website (including your IP address) will be transmitted to and stored by
Google on servers in the United States. If IP anonymizing is activated on
this website, the last string of your IP address will be masked within
member states of the European Union or in other member states of the
Agreement on the European Economic Area. Only in exceptional cases will the
full IP address be transmitted to a server of Google in the USA and masked
there. On behalf of the website owner, Google will use this information to
analyze your use of this website in order to compile reports about website
activities and to provide other services to the website owner in connection
with website use and internet use.

Google will not associate your IP address transmitted by Google Analytics
with any other data held by Google.

You may prevent the use of cookies by selecting the appropriate settings on
your browser. However, please note that if you do this you may not be able
to use the full functionality of this website. You can prevent Google’s
collection and use of data (including IP address) by downloading and
installing the browser plug-in available at
https://tools.google.com/dlpage/gaoptout?hl=en.

This website uses Google Analytics with the extension “anonymizeIp()“. This
ensures that IP addresses are processed in an abbreviated form; they cannot
be matched to an individual. Insofar as the data collected about you are
personal, this reference is eliminated and the personal data are deleted.

We use Google Analytics in order to analyze and improve the use of our
website. With the statistics gained we are able to improve our service and
to develop it for you as a user. For those exceptional cases when personal
data are transmitted to the USA, Google has submitted to the EU-US Privacy
Shield,

https://www.privacyshield.gov/EU-US-Framework

.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
f) GDPR since these data are necessary in order to configure our website to
be user-friendly and to facilitate its use.

Third-Party information: Google Dublin, Google Ireland Ltd., Gordon House,
Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of Service:

https://www.google.de/analytics/terms/gb.html

, Privacy

[U1]

Overview:

https://support.google.com/analytics/answer/6004245?hl=en

, as well as the Privacy Policy:

https://policies.google.com/privacy?hl=en&gl=de

.

 

…Hotjar

Hotjar is a service that analyzes the behavior and feedback of users on
websites with a combination of analysis and feedback tools. Hotjar provides
the website owner with an overall picture of how the end-user experience
and the performance of the website can be improved.

A tracking code is integrated in our website, which is transmitted to
Hotjar’s server in Ireland (EU). This tracking code contacts the Hotjar
servers and sends a script to the computer or the end device with which you
access our website. The script stores data in connection with your
interaction with the website. These data are then transmitted to Hotjar’s
servers for processing.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
f) GDPR since these data are necessary in order to configure our website to
be user-friendly and to facilitate its use.

With the Hotjar tracking code embedded in our website, the following data
are collected and processed:

  • IP address of the end device (collected and processed only in
    anonymized form)
  • Resolution of the screen/display of the end device’s monitor
  • Type of end device, operating system and browser type
  • Geographic location (country only)
  • Preferred language of displayed website
  • User interactions
    • Mouse events (movements, position and clicks)
    • Keyboard entry
  • Protocol data (random survey only)
    • Referring URL and domain
    • Visited pages
    • Geographic location (country only)
    • Preferred language of displayed website
    • Date and time when the pages of the website were accessed

You can disable the use of Hotjar by clicking the following link: https://www.hotjar.com/opt-out
Please note that you must repeat this after you have deleted all cookies
from your end device.

Third Party information from Hotjar Limited, company number C 65490
(Malta), located Level 2, St Julian’s Business Centre, 3, Elia Zammit
Street, St Julian’s STJ 1000, Malta is available at: https://www.hotjar.com/privacy
and

https://help.hotjar.com/hc/en-us

.

Ordering and Registration on the Website

When you order from our online shop you may choose whether you wish to
enter the data necessary for your order onvr only (guest access), or to
open a customer account to save your data for later purchases. If you order
with guest access, we save your data in order to fulfil our contract, and
delete it as soon as we are no longer legally obligated to store it, i.e.
after we have fulfilled our contract and when the obligations under tax and
commercial law to retain data have ceased. Fields that are mandatory for
the fulfilment of contracts are marked; other fields are voluntary. When a
customer account is opened, the data entered by you are saved revocably;
you can always delete your account in your customer area. If a customer
account is deleted, the data saved during its creation are deleted, apart
from the data we are required to store in order to fulfil our contract and
data we are legally required to store. Such data are deleted when the
contract is fulfilled and the obligations under tax and commercial law to
retain data have ceased.

During the order process and to open a customer account in order to fulfil
the contract, we collect, process, store and use the following data: form
of address, name, home address, delivery address, date of birth, email
address, telephone number, and, depending on the billing information
chosen, bank details, credit card data (name of card holder, credit card
number, validity date, security number).

In order to deliver your ordered goods to you, we transmit your name and
delivery address to the commissioned shipping company. In order to
facilitate payment, we transmit your bank details or credit card data to
the commissioned credit institute.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
b) GDPR since these data are necessary in order to fulfil our contractual
obligations. Without collection, storage or processing of the mandatory
fields, fulfilling the contract is impossible.

Any further processing and use of your personal data requires your express
consent unless no legal authorization to process or use exists. We will not
sell or otherwise market your personal data to third parties who are not
part of Dr. Rath group.

Orders by Telephone, Telefax, Post

In case of orders by telephone, telefax or post we also process the
following data: form of address, name, address, email address, possibly
telephone number, possibly bank details, possibly credit card number.

We save your data in order to fulfil the contract, and delete it when the
contract is fulfilled and the obligations under tax and commercial law to
retain data have ceased.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
b) GDPR since these data are necessary in order to fulfil our contractual
obligations. Without collection, storage or processing of these data,
fulfilling the contract is impossible.

Newsletter

During registration or the order process, as well as at any other time, you
can subscribe to our newsletter. The newsletter contains general
information about our products, about us and activities in our companies
group. When you subscribe to the newsletter, your email address as well as
other information given voluntarily during the subscription will be used
for our own advertising until you unsubscribe from the newsletter. If you
do not wish to receive the newsletter or any advertisements from us at all,
you can at any time object to this without incurring any costs other than
the transmission costs according to the standard rates. A message in text
form to the above contact data (e.g. email, fax, letter) is sufficient for
this. Of course, you will also find an unsubscribe link in every email.

Your consent is the legal basis according to Art. 6 Sec. 1 Sentence 1 lit.
a) GDPR for the use of the data for sending newsletters.

Product Information

As our customer, i.e. when you have ordered our products at least once
before, you will receive regular advertising information by email from us.
You will receive this information from us or from companies working with us
such as Dr. Rath Health Programs B.V., Dr. Rath Health Foundation and Cell
World Center International e.V., independently from any newsletter
subscription. We wish to inform you about products we offer and their
scientific background. in which you might be interested on the basis of
your last purchases with us. If you do not wish to receive any
(advertising) messages from us, you can at any time object to this without
incurring any costs other than the transmission costs according to the
standard rates. A message in text form to the above contact data (e.g.
e-mail, fax, letter) is sufficient for this. Of course, you will also find
an unsubscribe link in every e-mail.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
f) GDPR since the targeted information of existing customers is our
legitimate interest.

Customer and Consultation Service

You can make use of our customer and consultation service.

The data you give us during contact in order to answer your questions are
stored. The data connected with this are deleted as soon as storage is no
longer necessary or their processing is restricted if legal obligations to
retain it exist.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
b) GDPR since the data are required to answer your questions.

If you are our customer or have registered on the website, we will connect
data you give us during contact with your existing data. These data are
only deleted when your customer account is deleted.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit.
b) as well as Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since information about
concerns, questions, and interests of our customers are our legitimate
interest in order to give our customers the best possible service.

Your Rights

…Access (Art. 15 GDPR)

You have at any time the right to access to confirm whether or not personal
data concerning you have been processed, and if so which personal data have
been processed, without cost to yourself.

… Rectification (Art. 16 GDPR)

You have at any time the right to have us rectify personal data concerning
you that are stored by us.

…Erasure and Restriction (Art. 17 and Art. 18 GDPR)

You have at any time the right to request the erasure of your personal data
stored by us. We will delete your data in this case unless we are
authorized or obligated to store your data for other reasons. You can
similarly request the restriction of our processing of your personal data.

…Data Portability (Art. 20 GDPR)

Regarding personal data that you have provided to us and that we have, with
your consent, processed automatically, you can at any time request that we
provide you with these personal data. You can then transmit these data to
other companies. If you wish – and if it is technically possible – we can
also transmit the data to the company you named to us.


…Right to Objection and Withdrawal of Consent (Art. 21 and Art. 7 Sec.
3 GDPR)

As we have already informed you, you can at any time object to the use of
your data for advertising. If you have granted us your consent to process
your personal data, you can withdraw it at any time.

…Right to Lodge a Complaint (Art. 77 DSGVO)

If you believe that the processing of the personal data concerning you is
illegal, you can lodge a complaint with the competent supervisory
authority.


Exercise of rights

In order to exercise your rights, you can contact us at the above contact
data (e.g. email, telefax, letter). You also can contact our data
protection officer.

Data Protection Officer

If you have questions regarding collection, processing or use of your
personal data, or regarding access, rectification, data portability or
erasure of data, as well as withdrawal of consent, please contact: Patrick
Raijmakers, Dr. Rath Health Programs B.V., Postbus 657, NL – 6400 AR
Heerlen, Telephone: 0031 – 457 – 11 11 00, Telefax: 0031 – 457 – 11 11 19,
email: datenschutz@rath-programs.com