fbpx

MUNI WEBSITE
GDPR Policy

1. General notes on data protection.

  • The new General Data Privacy Regulation (GDPR) means a more stringent directive for all individuals in handling personal data. Personal data includes all data that can be used to identify you as a person.
  • We at Muni take data protection very seriously. This means that the confidentiality and integrity of your personal data is of utmost importance to us. We need your personal data for the business relationship we share; however, it will not be processed or shared with third parties beyond what is necessary.
  • Responsible for processing your personal data is Muni GmbH, Allgaeustr. 43, D-88138 Sigmarszell.
  • We carry out all processing in compliance with the applicable law of the EU General Data Protection Regulation (GDPR) as well as national implementation laws and execution acts.
  • For example, we process your data:
    • when you visit this website
    • to establish, execute, and terminate a contractual relationship
    • to exchange information with credit agencies and authorities
    • to assert legal claims
    • to meet legal and statutory requirements
  • In our privacy notices, we inform you in detail about the sources of data, purposes and legal bases of processing, who receives your data in addition, and how long your data is stored. We also inform you about your data protection rights.
  • If you have questions about data protection or wish to assert your rights, please contact us via our contact form.
  • Objection to marketing mail
  • We hereby object to the use of contact data published as part of the obligation to provide a legal notice to send advertising and information materials unless explicitly requested. The operators of the site expressly reserve the right to take legal action if advertising information, such as spam mail, is sent unsolicited.
  • Data protection officer
  • If you have questions about the collection, processing, or use of your personal data, for information, rectification, restriction, or erasure of data or revocation of consent or objection to certain data use, please contact Julian Krause, Muni Coffee GmbH, Allgaeustraße 43, D-88138 Sigmarszell.

2. Data collection on our website

  • SSL encryption
  • For security reasons and to protect the transmission of confidential content that you send to us as the site operator, this site uses SSL encryption. An encrypted connection can be recognized by the change from “http://” to “https://” in the URL bar of your browser and by the lock icon in your browser bar.
  • When SSL or TSL encryption is activated, the data that you transmit to us cannot be read by third parties.
  • Cookies
  • The web pages use so-called “cookies.” These do not damage your computer. Cookies are small text files that are stored on your computer and saved by your browser. They serve to make our website more user-friendly, more effective, and more secure.
  • Most of the cookies we use are “session cookies.” They are automatically erased at the end of your session. Other cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser on your next visit.
  • Your browser allows you to change your browser settings to notify you when you receive a cookie and only permit it in individual cases, exclude the acceptance of cookies in certain circumstances or generally, and activate the automatic erasure of cookies when the browser is closed.
  • Cookies that are necessary to run the electronic communication process or to provide certain functions you want to use (such as the shopping cart) are stored on the basis of art. 6 (1) f of the GDPR. The website operator has a legitimate interest in storing cookies for the purposes of error-free and optimized provision of their services.
  • The provision of the aforementioned personal data is neither prescribed by law nor required by contract. However, the functionality of our website is not ensured if such data are not stored.
  • If other cookies (e.g. cookies to analyze your surfing behavior) are stored, they will be handled separately in this data protection notice and require your consent.
  • Your personal data is provided on a voluntary basis and only with your consent. Without existing consent, you cannot use our website.
  • Server log files
  • The provider of the site automatically collects and stores information in server log files, which your browser automatically transmits to us. These are:
    • Access log
      • First line of request
      • Required time (in microseconds) to serve the request
      • Connection status after response is finished
    • Error log
      • Time stamp
      • Error type
      • Process ID
      • Client (only the IP of the upstream load balancer, not the actual IP)
      • Error code
      • Error description
      • Affected resource
  • The server log files are retained for 90 days. This data will not be conflated with other data sources. The basis for data processing is art. 6 (1) a+f of the GDPR.
  • The provision of the aforementioned personal data is neither prescribed by law nor required by contract. However, without the IP address and cookie identifier, the service and the functionality of our website is not guaranteed. In addition, individual services may be limited or unavailable. If you do not agree to this, we ask that you leave the site.
  • Contact form
  • The data entered in the contact form is only processed based on your consent (art. 6 (1) a of the GDPR). You can revoke this consent at any time with effect for the future. An informal message by e-mail to us is sufficient. The legality of data processing carried out until the revocation remains unaffected by the revocation.
  • The data entered by you in the contact form will remain with us until you request its erasure, revoke your consent to processing, or the purpose for data processing no longer exists (e.g. after your request has been processed).
  • Your personal data is provided on a voluntary basis. However, we can only process your inquiry if you tell us your name, email address and the reason for your inquiry.
  • Online shop
  • On our website you can use an online shop to buy coffee or coffee equipment. The purchase process is handled via the iZettle e-commerce platform of the company iZettle AB, Regeringsgatan 5, 11143 Stockholm, Sweden. As soon as you enter the online shop, you leave the municoffee.com page and enter the iZettle portal. The data that is collected during the purchase process can be found in iZettle’s privacy policy.
  • iZettle uses cookies. The information generated by the cookies is usually transferred to a server in Sweden and stored there.
  • IZettle cookies are stored on the basis of Art. 6 Para. 1 lit. f GDPR. In order to be able to carry out the purchase process without problems, the temporary storage of cookies is necessary.
  • Web analysis / Google Analytics
  • This website uses functions of the web analysis service Google Analytics. The provider is Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google processes your data in the USA and has submitted to the EU-US Privacy Shield.
  • Google Analytics uses cookies. The information generated by the cookie about your use of this website is generally transmitted to a Google server in the USA and stored there.
  • Google Analytics cookies are stored based on art. 6 (1) f of the GDPR. The website operator has a legitimate interest in analyzing user behavior in order to improve their website and advertising.
    • IP anonymization
      • We have activated the IP anonymization function on this website. This means your IP address will be truncated by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.
      • We have activated the IP anonymization function on this website. This means your IP address will be truncated by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.
    • Browser Plug-In
      • You may refuse the use of cookies by selecting the appropriate settings on your browser; however please note that if you do this you may not be able to use all the features of this website to the fullest possible extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
    • Objection to data collection
    • Order processing
      • We have signed an order processing agreement with Google and fully implement the strict requirements of the GDPR for the use of Google Analytics.