General Information

We are pleased that you are visiting our website and thank you for your interest in our company and our products. Protecting your privacy is of utmost concern to us. We endeavour at all times to protect your personal data in accordance with comprehensive statutory provisions. In the following notes, we would like to inform you in detail about the handling of your data on this website and provide you with the general data protection information according to Art. 13 GDPR. Responsibility as defined by data protection legislation lies with BELSANA Medizinische Erzeugnisse (BELSANA Medical Products a subsidiary of Ofa Bamberg GmbH and hereinafter also referred to as “BELSANA”).

Category of impacted persons

Visitors and users of our website (hereinafter we will refer to the impacted persons collectively as “users”).
 

Storage and Use of Access Data and Making Contact

The following data are, whenever our website is accessed, automatically stored as so-called log data in a log file on the server of our provider. These data are collected for technical reasons and stored for the purpose of data security for three months in log files.

• Your IP address
• Date and time of access
• Name of file requested
• Name of file making the request
• Data quantity transferred
• Description of web browser used and the operating system
• Name of the internet provider
   

These data categories are evaluated solely for error analysis and for statistical purposes without any personal reference.

The use of our website is as a rule possible without disclosing personal data. In so far as you make available to us on our web pages personal data (eg on contact forms name, address or email address), this is always done on a voluntary basis and solely for the purpose of personalized service or with the aim of sending product information and offers from our service package.

Customers and business partners can only after registering access login protected areas of our customer portals. Their personal data for registering in login protected areas or for our newsletter mailing list are handled on the basis of existing legal provisions.
You may avail yourself of your right of cancellation in respect of use of data at any time and notify us via the contact details mentioned in this data protection notice.
As a matter of principle, personal data are not passed on to third parties. Should this be necessary for specified purposes, we will only do so with legal authorization or your personal consent.

Involving the Services and Content of Third Parties

In some cases this website might include the content and services of third parties, eg Google Maps.

This will always be on the assumption that providers of such content will use your IP address. Without your IP address they could not send such content to your browser. The IP address is therefore required to display this content. We make every effort to use only such content whose providers use the IP address merely to provide this content. However, we have no influence whatsoever should the provider save the IP address eg for statistical purposes.

Links on other Internet Pages

We occasionally refer to the websites of third parties. Although we select these third parties with care, we cannot assume warranty or liability for the accuracy or completeness of the content and the data security of the websites of third parties. Nor does this data privacy statement apply to the linked websites of third parties.

Analysis tools and tools provided by third parties 

There is a possibility that your browsing patterns will be statistically analyzed when your visit this website. Such analyses are performed primarily with what we refer to as analysis programs. For detailed information about these analysis programs please consult our Data Protection Declaration below. 

Hosting and Content Delivery Networks (CDN)

Cloudflare 

We use the “Cloudflare” service provided by Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA. (hereinafter referred to as “Cloudflare”). Cloudflare offers a content delivery network with DNS that is available worldwide. As a result, the information transfer that occurs between your browser and our website is technically routed via Cloudflare’s network. This enables Cloudflare to analyze data transactions between your browser and our website and to work as a filter between our servers and potentially malicious data traffic from the Internet. In this context, Cloudflare may also use cookies or other technologies deployed to recognize Internet users, which shall, however, only be used for the herein described purpose. The use of Cloudflare is based on our legitimate interest in a provision of our website offerings that is as error free and secure as possible (Art. 6(1)(f) GDPR). Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. 

Details can be found here: https://www.cloudflare.com/privacypolicy/. 

For more information on Cloudflare’s security precautions and data privacy policies, please follow this link: https://www.cloudflare.com/privacypolicy/.


 

General information on the legal basis for the data processing on this website 

Information on data transfer to the USA and other non-EU countries 

Among other things, we use tools of companies domiciled in the United States or other from a data protection perspective non-secure non-EU countries. If these tools are active, your personal data may potentially be transferred to these non-EU countries and may be processed there. We must point out that in these countries, a data protection level that is comparable to that in the EU cannot be guaranteed. For instance, U.S. enterprises are under a mandate to release personal data to the security agencies and you as the data subject do not have any litigation options to defend yourself in court. Hence, it cannot be ruled out  that U.S. agencies (e.g., the Secret Service) may process, analyze, and permanently archive your personal 
data for surveillance purposes. We have no control over these processing activities. 
 

Recording of data on this website 

Cookies 

Our websites and pages use what the industry refers to as “cookies.” Cookies are small text files that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or they are permanently archived on your device (permanent cookies). Session cookies are automatically deleted once you terminate your visit. Permanent cookies remain archived on your device until you actively delete them, or they are automatically eradicated by your web browser. 

In some cases, it is possible that third-party cookies are stored on your device once you enter our site (third party cookies). These cookies enable you or us to take advantage of certain services offered by the third party (e.g., cookies for the processing of payment services). 

Cookies have a variety of functions. Many cookies are technically essential since certain website functions would not work in the absence of the cookies (e.g., the shopping cart function or the display of videos). The purpose of other cookies may be the analysis of user patterns or the display of promotional messages. 
 

Cookies, which are required for the performance of electronic communication transactions, or for the provision of certain functions you want to use (e.g., for the shopping cart function) or those that are necessary for the optimization (required cookies) of the website (e.g., cookies that provide measurable insights into the web audience), shall be stored on the basis of Art. 6(1)(f) GDPR, unless a different legal basis is cited. 

The operator of the website has a legitimate interest in the storage of required cookies to ensure the technically error free and optimized provision of the operator’s services. If your consent to the storage of the cookies and similar recognition technologies has been requested, processing occurs exclusively on the basis of the consent obtained (Art. 6(1)(a) GDPR and § 25 (1) TTDSG); this consent may be revoked at any time. 
 

You have the option to set up your browser in such a manner that you will be notified any time cookies are placed and to permit the acceptance of cookies only in specific cases. You may also exclude the acceptance of cookies in certain cases or in general or activate the delete function for the automatic eradication of cookies when the browser closes. If cookies are deactivated, the functions of this website may be limited. 
 

In the event that third-party cookies are used or if cookies are used for analytical purposes, we will separately notify you in conjunction with this Data Protection Policy and, if applicable, ask for your consent.

In the following we have summarized the cookies and 3rd party-scripts : 

1. Session cookies
 

• Neos Session Cookie > System relevant cookie (CMS) (operating time: session)
• Cookie-Banner Cookie > Status check Cookie Banner (operating time: 1year)

2. External Cookies and 3rd Party Scripts 

• Adobe TypeKit > Belsana Font
• Google Maps > Information on location eg in the pharmacy finder (operating time: 6 months)
• Lazy Loading Cloudfare > JS Loading Optimization
• Type Awesome > Icon font
• jQuery > JS Library embedded via Google Server

Consent with Cookiebot 

Our website uses consent technology from Cookiebot to obtain your consent to the storage of certain cookies on your end device or for the use of certain technologies and to document this in a data protection compliant manner. The provider of this technology is Cybot A/S, Havnegade 39, 1058 Copenhagen, 
Denmark (hereinafter “Cookiebot”). 

When you enter our website, a connection is established with the Cookiebot servers to obtain your consent and provide you with other explanations regarding the use of cookies. Cookiebot will then store a cookie in your browser to identify the consent you have given or its revocation. The data collected in this way is stored until you request us to delete it, delete the Cookiebot cookie itself or the purpose for which the data is stored no longer applies. Mandatory legal storage obligations remain unaffected. 
 

Cookiebot is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6(1)(c) GDPR.

Request by e-mail, telephone, or fax 

If you contact us by e-mail, telephone or fax, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We do not pass these 
data on without your consent. 
 

These data are processed on the basis of Art. 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or is required for the performance of pre-contractual measures. In all other cases, the data are processed on the basis of our legitimate interest in the effective handling of inquiries submitted to us (Art. 
6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR) if it has been obtained; the consent can be revoked at any time. 
 

The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent to the storage or the purpose for the data storage lapses (e.g. after completion of your request). 

Mandatory statutory provisions - in particular statutory retention periods - remain unaffected.

Analysis tools and advertising 

Google Tag Manager 

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

The Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store cookies, and does not carry out any independent analyses. It only manages and runs the tools integrated via it. However, the Google Tag Manager does collect your IP address, which may also be transferred to Google’s parent company in the United States. 

The Google Tag Manager is used on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and administration of various tools on his website. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) 
GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time. 

Google Analytics 

This website uses functions of the web analysis service Google Analytics in the version Google Analytics 4. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. 

Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system and the user’s origin. This data is assigned to the respective end device of the user. 
 

An assignment to a user-ID does not take place. 
 

Furthermore, Google Analytics allows us to record your mouse and scroll movements and clicks, among other things. Google Analytics uses various modeling approaches to augment the collected data sets and uses machine learning technologies in data analysis. 

Google Analytics uses technologies that make the recognition of the user for the purpose of analyzing the user behavior patterns (e.g., cookies or device fingerprinting). The website use information recorded by Google is, as a rule transferred to a Google server in the United States, where it is stored. The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. You may revoke your consent at any time. 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: 
https://privacy.google.com/businesses/controllerterms/mccs/. 

Browser plug-in 

You can prevent the recording and processing of your data by Google by downloading and installing the browser plugin available under the following link: 
https://tools.google.com/dlpage/gaoptout?hl=en. 

For more information about the handling of user data by Google Analytics, please consult Google’s Data Privacy Declaration at: 
https://support.google.com/analytics/answer/6004245?hl=en. 

Contract data processing 

We have executed a contract data processing agreement with Google and are implementing the stringent provisions of the German data protection agencies to the fullest when using Google Analytics.

Plug-ins and Tools 

Adobe Fonts 

In order to ensure the uniform depiction of certain fonts, this website uses fonts called Adobe Fonts provided by Adobe Systems Incorporated, 345 Park Avenue, San Jose, CA 95110-2704, USA (Adobe). 

When you access pages of this website, your browser will automatically load the required fonts directly from the Adobe site to be able to display them correctly on your device. As a result, your browser will establish a connection with Adobe’s servers in the United States. Hence, Adobe learns that your IP address was used to 
access this website. According to the information provided by Adobe, no cookies will be stored in conjunction with the provision of the fonts. 

Data are stored and analyzed on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in a uniform presentation of the font on the operator’s website. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, 
insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time. 
 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: 
https://www.adobe.com/de/privacy/eudatatransfers.html. 

For more information about Adobe Fonts, please read the policies under: 
https://www.adobe.com/privacy/policies/adobe-fonts.html. 

Adobe’s Data Privacy Declaration may be reviewed under: 
https://www.adobe.com/privacy/policy.html.

Font Awesome 

This page uses Font Awesome for the uniform representation of fonts and symbols. Provider is Fonticons, Inc. 6 Porter Road Apartment 3R, Cambridge, Massachusetts, USA. 
 

When you call up a page, your browser loads the required fonts into its browser cache to display texts, fonts, and symbols correctly. For this purpose, the browser you use must connect to the servers of Font Awesome. 

This allows Font Awesome to know that your IP address has been used to access this website. The use of Font Awesome is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the uniform presentation of the typeface on our website. If appropriate consent has been obtained, the processing is carried out 
exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time. 
 

If your browser does not support Font Awesome, a standard font from your computer will be used. 
 

Further information about Font Awesome can be found in the Font Awesome privacy policy at: https://fontawesome.com/privacy.

Google Maps 

This website uses the mapping service Google Maps. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. 

To enable the use of the Google Maps features, your IP address must be stored. As a rule, this information is transferred to one of Google’s servers in the United States, where it is archived. The operator of this website has no control over the data transfer. In case Google Maps has been activated, Google has the option to use Google web fonts for the purpose of the uniform depiction of fonts. 

When you access Google Maps, your browser will load the required web fonts into your browser cache, to correctly display text and fonts. We use Google Maps to present our online content in an appealing manner and to make the locations disclosed on our website easy to find. This constitutes a legitimate interest as defined in Art. 6(1)(f) GDPR. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time. Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. 

Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/. 

For more information on the handling of user data, please review Google’s Data Privacy Declaration under: https://policies.google.com/privacy?hl=en. 

Social Media

We are present online on social networks and platforms in order to be able to communicate with customers, interested parties and users who are active there and thus be able to inform them about our services.

This is not done through Social Plugins but through links to the particular social network.

Details of particular data protection regulations and, where applicable, possible settings to protect your private sphere on a particular platform can be obtained under:

• Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland) – Privacy Notice: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active

• Google/ YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland) – Privacy Notice: https://policies.google.com/privacy, Opt-Out: https://adssettings.google.com/authenticated, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active. 

• Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Notice / Opt-Out: http://instagram.com/about/legal/privacy/. 
  Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland) – Privacy Notice / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung. 

• Youtube: We provide videos on “YouTube” (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Privacy Notice: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Purpose of processing

• Providing a website, its functions and content
• Answering contact requests and communicating with users
• Security measures
  
   

Information on advertising use

We do not use personal data collected via the website for advertising purposes. Should you on the webpage have in any form given your consent for data to be used for advertising purposes, you can at any time revoke your consent vis a vis BELSANA.

Your Rights as an Impacted Person

You can claim the following rights:

The right to information (Art. 15 GDPR)

The right to rectification (Art. 16 GDPR)

The right to erasure (Art. 17 GDPR)

The right to restriction of processing (Art 18 GDPR)

The right to object (Art. 21 GDPR)

The right to data portability (Art. 20 GDPR)

In case of concern about your data protection rights, you can contact us at any time. Additionally, you have the right to legal remedy through the regulating authority, the BfDI (The Federal Commissioner for Data Protection and Freedom of Information).

https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/AufsBehoerdFuerDenNichtOeffBereich/AufsichtsbehoerdenNichtOeffBereich_liste.html

Contact Details

In case of further questions regarding the use of data as well as your rights, please do not hesitate to contact us:

BELSANA Medizinische Erzeugnisse
Laubanger 23, 96052 Bamberg, Germany
 

Fon (+49) (0)951 6047 777
Fax (+49) (0)951 6047 186

Email: export@ofa.de or directly datenschutz@belsana.de

Please Note

Data protection legislation and legislation in the area of tele-media make it from time to time necessary to update this data protection notice.

Last update: July 2022