Privacy Policy

1. Name and address of the controller

The following entity is responsible for the data processing that takes place when you use the REHAU Webshop:
REHAU Ltd
Hill Court
Walford
Ross-on-Wye
Herefordshire
HR9 5QN
VAT identification number: 578184008
Email: gdpr-uk@rehau.com

2. Overview of data processing

When you shop in our webshop, we process your personal data. Depending on whether you contact us online, by telephone, in person or in any other way and which services you use, different data from different sources will be collected. Much of the data we process is provided by you when you contact us, for example when you register and provide your name and email address, postal address or telephone number. However, we also receive technical equipment data and access data that is automatically collected by us when you interact with our services. This may include, for example, information about which device you are using. We may also receive data about you from third parties, for example credit reference agencies and payment service providers.

3. Data of your order

When you place an order, in addition to the personal data already mentioned, such as your name, address and contact information, we also collect your purchase data. This may include, for example, the following information:
• Order number
• Details of the items purchased
• Details of method of payment
• Delivery and billing addresses
• Notifications and communications relating to purchases (e.g. cancellation notices, complaints and notifications to customer service)
• Delivery and payment status, e.g. "Completed" or "Shipped"
• Return status, e.g. "Successfully completed".
• Details of service providers involved in the execution of the contract (esp. shipping)

4. Payment data

For the execution of payments, we collect the payment data provided by you. We receive further payment data from external payment service providers and credit agencies with whom we cooperate for the execution of payments and for credit checks. We only pass on data to our payment service providers that is necessary for processing the payment. Payment data also includes information that is directly related to payment processing and credit assessment. This concerns, for example, information that external payment service providers use for identification, such as your PayPal ID (if you pay with PayPal). Creditworthiness data consists of score values that we obtain about you from external credit agencies. Creditworthiness data makes statements about a person's estimated economic capacity and willingness to perform. This helps companies to avoid payment defaults that occur when customers cannot meet their payment obligations on time or at all. Taking creditworthiness data into account when selecting payment methods is also intended to prevent us from offering our customers payment methods that cannot be offered to them and to prevent our customers from entering into payment obligations that they themselves cannot fulfil. Creditworthiness data is usually determined by so-called credit agencies. From the various data, the credit agencies then calculate a so-called score value, which takes into account, among other things, existing payment obligations and, if applicable, previous payment defaults. Score values are statistically based estimates of a person's future risk of default and are presented as a numerical value, such as a percentage. The cooperation with external payment service providers and credit agencies is country-specific in order to take into account country-specific characteristics and requirements.

5. Other data

If you communicate with us or other users about products (e.g. product reviews) and other topics by phone, post, social media services, contact forms or otherwise, we will collect the content of your communications. Where appropriate, we will forward your communications to the office responsible for your concern. Telephone conversations, for example with our hotline, will only be recorded with your consent for the purposes covered by your consent (e.g. quality assurance, training purposes). Consent to the recording of calls is, of course, voluntary. You can revoke your consent at any time with effect for the future, for example by asking the employee on the phone to stop recording.

6. Processing purposes

The data is used for the processing of your respective enquiries and for the fulfilment of the contract. In addition, we also use your data within the scope of legitimate interest (Art. 6 I f UK GDPR) for other purposes, such as product development, scientific research and market research, for the optimisation of business processes as well as the needs-based design of our services. You can object to the aforementioned data processing on the basis of legitimate interest at any time for reasons that lie within your person. For further general purposes of data processing at REHAU, see https://window.rehau.com/uk-en/privacy-policy

7. Disclosure of data to third parties

Within the REHAU Group, those companies and departments will have access to your data that need it to fulfil our contractual and legal obligations or to fulfil their respective functions within the REHAU Group. Furthermore, we forward your data to those who are involved in the fulfilment of the contract, such as manufacturers, forwarding agents, payment service providers, (technical) service providers.

8. Deletion of data

REHAU will store your personal data for as long as is necessary for the purposes stated in this data protection declaration, in particular for the fulfilment of contractual and legal obligations. This includes the storage of your data for the purpose of a possible recall within the framework of organisational obligations under product liability law. REHAU may also store your personal data for other purposes if or as long as the law permits us to continue storing it for certain purposes, including for the defence of legal claims. Deletion may be waived in cases permitted by law, in particular if the data is anonymous or pseudonymised and deletion would make processing for scientific research purposes or for statistical purposes impossible or seriously impair such purposes.

9. Your rights

Compliance with data protection regulations is monitored by the following bodies, to which anyone can turn: Data Protection Officer of REHAU Industries SE & Co. KG (+ Single Data Protection Officer of other European group companies of REHAU Industries SE & Co. KG pursuant to Art. 37 point 2 of the GDPR):

Dr. Alexander Walter REHAU Industries SE & Co. KG
Rheniumhaus Helmut-Wagner-Str. 1
95111 Rehau Germany
Phone: +49 9283-770
E-mail: datenschutz@rehau.com

Lead supervisory authority

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Telephone: 0303 123 1113
Fax: 01625 524510

You also have the possibility to check REHAU's compliance with data protection regulations yourself. You are entitled to the following rights:

• Information Law
• Right to access your processed data
• Right to object
• For all processing operations based on Art. 6 I f UK GDPR (see above), you can object the processing on grounds relating to your particular situation.
• Right for disagreement against direct advertising
• You have the right to object at any time against the processing of your data for the purpose of direct marketing. This also applies to profiling in connection with such direct marketing.
• Right of correction, deletion and limitation Right of data portability
• Right to lodge a complaint with a supervisory authority

If you have any questions about these rights with regarding the processing of your personal data, you can contact our data protection officer, who is also available in the event of requests for information suggestions or complaints. Upon request, REHAU will inform you as soon as possible in writing if and which of your personal data we have stored in accordance with applicable law. Should incorrect information be stored despite our efforts to ensure that the data is correct and up-to-date, we will correct it at your request.

Further information on data protection at REHAU can be found at https://window.rehau.com/uk-en/privacy-policy