The protection of your privacy when you use our website is important to us.
We treat the data that is provided as part of our online offering as confidential.
Please be aware that when you correspond with us via email, email does not represent a secure method of communication and email contents are not protected against unauthorised third-party access. We recommend that you post confidential messages.
Contact details for the controller within the meaning of the General Data Protection Regulation
Telephone +49 (0)212 206 70
Contact details for the privacy officer
Mr Kai Viehmeier
Kai Viehmeier Consulting GmbH
An der Strassenbahn 12
Telephone: +49 (0)5066 6956 080
Types of data that is processed
Within this online offering, WÜSTHOF processes user data (e.g. names and addresses), contact data (e.g. email addresses), usage data (e.g. websites visited, times of access), metadata (e.g. IP addresses) and employee information (e.g. photographs, names and positions).
Purpose of processing
Within this online offering, WÜSTHOF processes personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) for the purpose of providing the online offering and associated content and functionality, for the purposes of advertising, marketing and market research; for communication with users, for replying to contact enquiries and as part of security measures (IT security).
WÜSTHOF only processes personal data when legal permission has been provided and only in accordance with relevant data-protection regulations. Accordingly, personal data is only processed when it is necessary or required by law, and in particular:
• to perform contractual services (fulfilling orders)
• to perform online services
• when users have given their consent
• when WÜSTHOF has a legitimate interest
Based on GDPR Article 13, the personal data processed by WÜSTHOF is governed by the following legal grounds:
• GDPR Article 6(1)(a) for consent
• GDPR Article 6(1)(b) for processing to fulfil the services performed by us and for the performance of contractual activities
• GDPR Article 6(1)(c) for processing to discharge legal obligations
• GDPR Article 6(1)(f) for processing for the purposes of our legitimate interests
Subject of data protection
The subject of data protection is personal data as defined in Article 4 of the General Data Protection Regulation (GDPR), therefore any information relating to an identified or identifiable natural person (a ‘data subject’). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier through which the data required for the business transaction can be identified. This includes, for example, your name, address, telephone number, email address and other data required for the business transaction. Data that cannot be linked to you personally is not included among this.
WÜSTHOF ensures the security of the processing in line with GDPR Article 32 by using technical, organisational and contractual measures and incorporating the latest technology and the nature, scope, circumstances and purpose of the processing, while balancing with implementation costs, in order to protect users’ personal data against unintended or unlawful manipulation, destruction, erasure, loss and unauthorised access and disclosure.
The security measures include ensuring the confidentiality, integrity and availability of data through physical and logical controls on access and further controls on the input, disclosure, backup, availability and separation of personal data. These also include the encrypted transfer of data between your browser and our server.
WÜSTHOF has furthermore established procedures that ensure a response to threats to data, the erasure of data and the exercise of data-subject rights.
Collection and storage of personal data
Your personal data is only collected if you share it with us for specific purposes – e.g. to reply to enquiries – after we ask for it. Personal data that you voluntarily transfer to us when using electronic forms, e.g. contact forms, or when sending emails is only collected, processed and used for the purpose for which you transfer the data to us, such as registration for personalised services, replies to enquiries, technical administration or performance of contracts. Your personal data is always treated confidentially and only stored for as long as it takes to fulfil the purpose for which it is provided or as long as it takes for the statutory or legal retention obligation to expire. The personal data is used to render services. You will also receive product information if you have given your explicit consent.
Rights of access, consent withdrawal and erasure pursuant to GDPR Chapter 3
As a data subject, GDPR Article 15 gives you the right to request information free of charge and at any time about your personal data that we store, its origins, its recipients and the purpose for which it is processed.
In addition, you have the right to rectification (pursuant to GDPR Article 16), restriction of processing (pursuant to GDPR Article 18) and erasure (pursuant to GDPR Article 17) of this personal data and, if applicable, to data portability (pursuant to GDPR Article 20). Furthermore, you have the right to lodge a complaint (pursuant to GDPR Article 77) with the competent supervisory authority if you believe that data is being processed unlawfully. Please email to firstname.lastname@example.org any such enquiries or requests for rectification, restriction of processing, erasure or portability of the personal data of yours that we store. Alternatively, please enter one of the following in the subject line: ‘Data erasure’, ‘Restriction of data processing’, ‘Data rectification’ or ‘data portability’. We will arrange for your data to be erased or have its processing restricted, carry out the necessary corrections or make your data portable within the framework provided by law.
You also have the right to withdraw any consent that you have given pursuant to GDPR Article 7(3), normally with effect for the future. To do this, please email to email@example.com any such enquiries or requests to withdraw consent. Alternatively, please enter the following in the subject line: ‘Withdrawal of consent’.
Furthermore, you can at any time object to future processing of your personal data pursuant to GDPR Article 21. To do this, it is sufficient when you send a corresponding email to firstname.lastname@example.org.
The personal data that we store is erased if there are no statutory retention obligations opposing such erasure or if the personal data is no longer required for the purpose set out in accordance with GDPR Article 17. If there exists a legally permitted ground to continue storing the personal data, WÜSTHOF restricts its processing in accordance with GDPR Article 18 by blocking the data and ceasing to process it for other purposes. This applies in particular to data that must be retained for reasons relating to tax and trade laws.
The period for which the personal data is retained is determined based on the relevant statutory provisions. For documents listed in German Commercial Code (Handelsgesetzbuch, HGB) Section 257(1) (including trading books, annual accounts and trade correspondence), data must be retained for six years; for documents listed in German Tax Code (Abgabenordnung, AO) Section 147(1) (including records, books and trade and business correspondence), data must be retained for ten years.
If you have questions about the collection, processing and use of your personal data or general questions about data protection, or if you have a complaint, please contact our privacy officer who is available for such questions as well as complaints at email@example.com.
Transfers to third countries
Data is transferred to third countries only as part of the administration of IT systems and only if:
a) The transfer is generally permissible, and
b) The special requirements for transferring to a third country have been met.
In particular, the data importer must ensure an appropriate level of data protection based on standard EU contractual clauses for the transfer of personal data to processors in third countries. The legal foundations for this are the provisions of the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG), General Data Protection Regulation (GDPR) and German Telemedia Act (Telemediengesetz, TMG).
This website uses SSL encryption for security reasons and to protect the transmission of confidential information, such as the search queries you send to us, the site operator. You can tell that a connection is encrypted by looking at the address line of your browser to see if the ‘http://’ has changed to ‘https://’ and if the line contains a padlock icon. If SSL encryption is activated, the data you send us cannot be viewed by third parties.
On our website, we offer you the opportunity to contact us for the purpose of applying for an advertised job vacancy. In order to organise and carry out the application process, we use the services of Recruitee B.V., Johan Huizingalaan 763, (1066 VH) Amsterdam, Netherlands (hereinafter ‘Recruitee’). Recruitee has been implemented directly on our website as a Web service (hereinafter the ‘Recruitee website’). When you click on jobs on our website, you will be forwarded directly to our Recruitee website. We process your personal data as part of this in order to make the entire application process easier based on the legal grounds provided in GDPR Article 6(1)(b) and (f).
If you visit our Recruitee website, your personal access data is automatically recorded, including your requesting device, the Web browser you use, your device’s operating system, the requesting device’s IP address, the questions and answers sent from and to your device, the website from which the Recruitee website was requested and your activity on the Recruitee website.
The collection of your personal data, integration of Recruitee as part of your visit to our Recruitee website and processing of data associated with that are required to monitor and improve the recruitment process and performance of the Recruitee website, and are based on our legitimate interest in designing our internal processes and our service efficiently in accordance with GDPR Article 6(1)(f).
In addition, the following personal application data may be processed as part of the application process, including, though not limited to, any personal data that you provide to us through the application form: name, email address, telephone number, image, cover letter, curriculum vitae, LinkedIn profile, the position for which you are applying, status, notes and plans for your application and email communication.
The collection of your personal data, integration of Recruitee as part of the application process and processing of data associated with that are required to take steps prior to entering into a contract instigated by your enquiry in accordance with GDPR Article 6(1)(b).
We erase your personal data as soon as possible on completion of the application process, unless we have informed you that we require your data for other purposes. Normally, we store the personal data that we receive from you as part of the application process for a period of six months.
We use the ‘activation of IP anonymisation’ function on this website. This means that, prior to sending it, Google truncates your IP address within the member states of the European Union or other states party to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transferred to a Google server in the United States and truncated there. Google uses this information on behalf of the website operator to evaluate your use of the website, compile website-activity reports and perform for the website operator further services associated with the use of both the website in particular and the Internet in general. The IP address transmitted from your browser through Google Analytics is not merged with other Google data. You can prevent cookies from being stored by activating the corresponding settings in your browser software, though be aware that you may not be able to use the complete functionality of this website in that case. Furthermore, you can prevent Google from storing and processing the cookie-generated data relating to your usage of the WÜSTHOF website (including your IP address) by downloading and installing the browser plug-in available over the following link (http://tools.google.com/dlpage/gaoptout?hl=en). Alternatively, you can stop Google Analytics from collecting your data by clicking on the following link. An opt-out cookie will then be set, preventing your data from being recorded when you visit this website in the future: click here for a Google Analytics opt-out. Further information about Google Analytics and data protection can be found at http://www.google.com/analytics/learn/privacy.html?hl=en.
We have signed a data-processing agreement with Google in order to comply fully with statutory data-protection specifications.
Google Tag Manager
This website uses Google Tag Manager, a cookie-less domain that does not collect any personal data. Using this tool, ‘website tags’ (i.e. keywords that are integrated into HTML elements) are implemented and managed via an interface. By using Google Tag Manager, we can automatically see which buttons, links or personalised images you actively click on and, by extension, determine which content on our website is particularly appealing to you.
The tool also causes other tags to be triggered, which may then collect data in certain situations. Google Tag Manager does not access such data. If you have put a deactivation into effect at domain or cookie level, it will remain valid for all tracking tags implemented by Google Tag Manager.
Google Tag Manager is used in the interest of simple, convenient use of our website. This represents a legitimate interest as provided in GDPR Article 6(1)(f).
Google AdWords and Google Conversion Tracking
Our website uses Google AdWords. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States.
AdWords is an online advertising service. We work with conversion tracking as part of this online advertising service. A cookie for conversion tracking is set after a click on an advertisement displayed by Google. Cookies are small text files which your Web browser stores on your device. Google AdWords cookies cease to be effective after thirty days and are not used to personally identify users. Using the cookie, Google and we can identify that you have clicked on an advertisement and been redirected to our website.
Every Google AdWords client receives a different cookie. The cookies cannot be tracked through the websites of AdWords clients. Conversion cookies are used to create conversion statistics for AdWords clients that use conversion tracking. AdWords clients learn how many users have clicked on their advertisement and been redirected to pages with a conversion-tracking tag. However, AdWords clients do not receive any information that enables users to be identified personally. If you do not wish to participate in tracking, you can object to its usage. To do this, the conversion cookie in your browser’s user settings must be deactivated. This also means that you will not be included in the conversion-tracking statistics.
Conversion cookies are usually stored on the grounds provided in GDPR Article 6(1)(f). We, the website operator, have a legitimate interest in the analysis of user behaviour in order to optimise our Web service and advertising.
You can monitor, restrict or prohibit the storage of cookies with a modern Web browser. Deactivating cookies may result in the functionality of our website being limited.
We integrate Google Maps into this website so that we can display interactive maps to you directly within the website. You can use the convenient map function as a result.
By visiting our website, Google receives information that you have visited the corresponding pages on our website. This occurs irrespective of whether Google provides an account through which you are logged in or whether there is no such account. If you are logged into Google, your data will be matched with your account directly. If you do not want your data to be matched with your Google profile, you must log out before activating the button. Google stores your data in usage profiles and uses it for the purposes of marketing, market research and/or designing its website specific to user needs. In particular, data is analysed to provide advertising targeted to user needs (even for users not logged in) and to inform other users of the social network about your activity on our website. You have a right to object to the creation of such usage profiles, though you must contact Google to exercise this right.
We do not integrate any social plug-ins directly into our website for privacy reasons. That is why when you visit our website, there is no data transferred to social-media services such as Facebook, Twitter, XING or Google+. This means third parties cannot construct profiles about users.
Nevertheless, you have the option of sharing our blog posts on Facebook, Twitter, XING and Google+ with a single click and can also see how frequently these posts have been shared in the past from the moment you view them. We use the so-called Shariff solution developed by c’t Magazine for this so that we can offer an alternative to classic social plug-ins with more advanced data protection.
What does it involve? The first step of the Shariff solution involves our Web server providing all data and functions required to display the Facebook, Twitter, XING and Google+ buttons. Only when you decide to share a post and click on the relevant button is data transferred to the operator of the respective social-media service. In this case, the data is processed on the grounds provided in GDPR Article 6(1)(f) and in the interest of preserving your freedom of expression and making our posts easier to share and communicate.
We use social plug-ins from the facebook.com network, for example the ‘Like’ button. These plug-ins are offered and operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, United States and clearly branded with the Facebook logo. If you visit a page of ours that contains such a plug-in, your browser establishes a direct connection with the Facebook servers. The contents of the plug-in are transferred from Facebook directly to your browser and displayed accordingly in the environment provided by us without us having any influence over the plug-in’s content. Two-click solution for embedded content: By default, WÜSTHOF embeds deactivated buttons that do not establish any contact with the servers belonging to the likes of Facebook. Only when a user activates them and thereby gives his or her consent to communicating with Facebook, Pinterest, Twitter or Google+ do the buttons become active and establish a connection. Users can then share their recommendation with a second click. If they are already logged into the social network of their choice, the content is shared over Facebook or Google+ without another window opening. Facebook can in some cases see your visit of the corresponding pages of ours and match that visit with a Facebook account if you are registered with Facebook or have recently visited a Facebook website or website with Facebook content. If you actively use plug-ins (e.g. by pressing the Like button), corresponding information will also be transferred from your browser directly to Facebook without us having any influence over that. More precise information about the nature, purpose and scope and further processing and usage of your data by Facebook can be found in Facebook’s data policy. The policy also informs you about your rights relating to this and options for changing settings to protect your privacy. If you do not wish for Facebook to be able to match your visit of our website with your Facebook account, please log out of your Facebook account.
Functions for the Instagram service are integrated on our website. These functions are provided by Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, United States. If you are logged into your Instagram account, you can link the content on our website with your Instagram profile by clicking on the Instagram button. Instagram will be able to match your visit of our website with your account as a result. We would like to point out that we, the operator of this website, are not aware of the content of the data transferred or the purposes for which it is used by Instagram.
Our website uses plug-ins from YouTube, a website operated by Google. The operator of the website is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, United States. When you visit one of our pages where a YouTube plug-in has been added, a connection to YouTube’s servers is established. The pages of ours that you have visited are communicated to the YouTube server as part of this.
To send our newsletter, we require an email address from you which you provide when you sign up to receive our newsletter. We are required to verify the email address you provide and to obtain consent to send out the newsletter. After signing up, you will receive an email for this purpose asking you to confirm via an activation link (double opt-in). Additional data is either not collected or is voluntary. The data is used exclusively to send the newsletter.
The data entered on the newsletter’s sign-up form is processed solely on the basis of your consent (GDPR Article 6(1)(a)). You can at any time withdraw consent that you have given. To withdraw consent, it is sufficient to send a simple message by email or to unsubscribe using the ‘Unsubscribe’ link. The lawfulness of previous data-processing operations will not be affected by this withdrawal of consent.
Data provided to set up the subscription is erased if the subscription is cancelled. Should this data have been transferred to us for other purposes at another juncture, it will remain with us.
The law allows us to store cookies on your device if they are absolutely necessary for the operation of this website. We require your permission for all other types of cookies.
This website uses different types of cookies. Some cookies are set by third parties that appear on our website.
You may change or withdraw to opt in or out any time
Your consent pertains to the following domains: www.wusthof.com
WÜSTHOF implements technical and organisational security measures in order to protect the data that you provide to WÜSTHOF against accidental or intentional manipulation, loss and destruction, and against access by unauthorised persons. Our security measures are enhanced on an ongoing basis to reflect technological developments.
2020 © WÜSTHOF GMBH - SOLINGEN – GERMANY