Skip to main content


Privacy policy

This privacy policy clarifies the type, scope and purpose of purpose of the processing of personal data (hereinafter referred to as "data") within our online offer and associated websites, features and content as well as external online presence such as our social media profiles (hereinafter referred to collectively as "online offer"). With regard to the terminology used, such as "processing" or "controller", we refer you to the definitions in Article 4 of the General Data Protection Regulation (GDPR).



Conti Sanitärarmaturen GmbH
Hauptstraße 98
35435 Wettenberg

Email address: info[at]
Managing Director: Udo Hilbert
Link to the legal notice:

Email address of the Data Protection Officer: datenschutz[at]


Types of data processed:


  • Inventory data (e.g. names, addresses)
  • Contact data (e.g. emails, phone numbers)
  • Content data (e.g. text input, photographs, videos)
  • Usage data (e.g. websites visited, interest in content, access times)
  • Meta/communication data (e.g. device information, IP addresses)


Categories of data subjects

Visitors and users of the online offer (hereinafter the persons concerned are referred to collectively as "users").

Purpose of the processing

Operation of the website and provision of the online offer, its features and content.

Responding to enquiries and communication with users.

Security measures

Measuring reach and marketing

Optimisation of business relations and product optimisation


Terminology used

"Personal data" means all the information relating to an identified or identifiable natural person (hereinafter referred to as "person concerned"). A natural person is considered to be identifiable if they can be identified, directly or indirectly, particularly by assigning an identifier such as a name, identification number, location data, online identifier (e.g. cookie) or one or more specific characteristics, which are an expression of the physical, physiological, genetic, psychological, financial, cultural or social identity of this natural person.

"Processing" means any process which is completed, with or without the help of automated procedures, or any such series of processes in connection with personal data. The term is far-reaching and covers virtually every type of data handling.

"Pseudonymisation" means the processing of personal data in such a way that the personal data can no longer be assigned to the specific person concerned without consulting any additional information, provided that such additional information is stored separately and is subject to technical and organisational measures to ensure that the personal data cannot be assigned to an identified or identifiable natural person.

"Profiling" means any type of automated processing of personal data, which involves using this personal data to assess certain personal aspects that relate to a natural person, in particular to analyse or predict aspects relating to the job performance, financial situation, health, personal preferences, interests, reliability, behaviour, place of residence or change of residence of this natural person.

"Controller" means the natural or legal person, authority, institution or other body which, alone or jointly with others, determines how and for what purpose the processing of personal data takes place.

"Data processor" refers to a natural or legal person, authority, institution or other body, which processes personal data on behalf of the controller.


Relevant legal basis

In accordance with Article 13 GDPR, we are able to inform you of the legal basis for our data processing. Unless the legal basis is specified in the privacy policy, the following shall apply: The legal basis for obtaining consent is Article 6(1)(a) and Art. 7 GDPR, the legal basis for processing in order to fulfil our performance and to implement contractual measures as well as the answering of queries is Article 6(1)(b) GDPR, the legal basis for processing in order to fulfil our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing to protect our legitimate interests is Article 6(1)(f) GDPR. In the event that vital interests of the person concerned or another natural person make the processing of personal data necessary, the legal basis will be Article 6(1)(d) GDPR.


Security measures

In accordance with Article 32 GDPR, taking into account the latest technology, the cost of implementation and the type, scope, circumstances and purpose of data processing, as well as the probability and seriousness of risks occurring for the rights and freedoms of natural persons, we shall implement appropriate technical and organisational measures to ensure an adequate level of protection against the risk.

The measures include, in particular, the safeguarding of confidentiality, integrity and availability of data by controlling physical access to the data, as well as the relevant access, input, disclosure, safeguarding of availability and separation of this data. Furthermore, we have established processes to ensure observation of the rights of the persons concerned, the deletion of data and response to the exposure of data. In addition, we also take into account the protection of personal data as early as the development stage, or selection of hardware, software and procedures, according to the principle of data protection through technical design and through privacy-friendly preselection (Article 25 GDPR).


Cooperation with data processors and third parties

If we disclose data to any other person or business (data processors or third parties) as part of our processing, transmit the data to these parties or otherwise grant them access to the data, this will only be done on the basis of legal authorisation (e.g. when the transmission of data to third parties, such as to payment service providers, is necessary to fulfil the contract in accordance with Article 6(1)(b) GDPR) for which you have given your consent, subject to a legal obligation or on the basis of our legitimate interests (e.g. the use of representatives, web hosters).

If we appoint third parties to process data on the basis of a "data processing contract", this will be done on the basis of Article 28 of the GDPR.


Transmission to third countries

If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)) process or this happens within the framework of the use of services by third parties or data is disclosed or transmitted to third parties, this is done only to fulfil our (pre)contractual obligations, on the basis of your consent, based on a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual authorisation, we process the data or have the data processed in a third country only where the special provisions of Article 44 ff. GDPR exist. In other words, processing is performed on the basis of special guarantees, such as the official recognition of an EU-equivalent level of privacy (e.g. for the USA the "privacy shield") or compliance with officially recognised special contractual obligations (known as "standard contractual clauses").


Rights of the persons concerned

You have the right to request confirmation whether the data concerned is processed and to request information about this data, as well as additional information and a copy of the data in accordance with Article 15 GDPR.

You have the right, in accordance with Article 16 GDPR, to request the completion of data or the amendment of inaccurate data held about yourself.

You have the right, in accordance with Article 17 GDPR, to request that data be deleted immediately or, alternatively, in accordance with Article 18 GDPR, to request that processing of the data be restricted.

You have the right to request that the data you have provided to us is maintained and transmitted to other responsible persons in accordance with Article 20 GDPR.

You also have the right, in accordance with Article 77 GDPR, to file a complaint with the relevant supervisory authority.

Der Hessische Beauftragte für Datenschutz
Postfach 3163
65021 Wiesbaden


Right of revocation

You have the right to revoke all consent in accordance with Article 7(3) GDPR with respect to future use.


Right of revocation for direct marketing

You can revoke the future processing of your data in accordance with Article 21 GDPR at any time. Revocation can apply in particular to the processing of data for the purpose of direct marketing.



"Cookies" are small files that are stored on users' computers. A variety of information can be stored in cookies. The main purpose of a cookie is to store information about a user (or the device on which the cookie is stored) during or after their visit to an online offer. Cookies that are deleted after a user leaves an online offer and closes its browser are known as temporary cookies, "session cookies" or "transient cookies". Such a cookie could be used to store the contents of a shopping basket in an online shop or a login status. "Permanent" or "persistent" cookies remain stored even after the browser is closed. For example, the login status can be stored when the users return after several days. Such a cookie can also be used to store users' interests for measuring reach and marketing purposes. "Third party cookies" are offered by suppliers other than the person responsible for operating the online offer (otherwise, if they are only the operator's cookies, they are known as "first party cookies").

We can use temporary and permanent cookies and clarify this in the context of our privacy policy.

If users do not want cookies to be stored on their computer, they will be asked to disable the relevant option in the system settings of their browser. Stored cookies can be deleted in the system settings of your browser. The exclusion of cookies may limit the functionality of this online offer.

A general revocation of the use of cookies for the purpose of online marketing can be explained for a variety of services, particularly in the case of tracking, on the US site the EU site Furthermore, cookies can be stored by disabling them in the browser settings. Please note that you may not be able to use all the functions of this online offer.