Privacy policy

Privacy Policy

We appreciate your interest in our website. The protection of your privacy is an important issue for us. This privacy policy is intended to explain how we will use and store the information you supply, how we secure that information, and what rights you have.

Controller

Controller according to Art. 4 No. 7 GDPR is:

Dr. Rath Health Programs B.V., Tesla 2-5, 6422 RG Heerlen, The Netherlands

Commercial register no.: 06086003

Telephone: 0031 - 457 - 11 11 00

Telefax: 0031 - 457 – 11 11 19

Email: datenschutz@rath-programs.com

Visiting our Website

You can visit our website without having to provide personal information. We do, however, process the following data, which your browser sends to our servers:

• IP address of the accessing computer

• name and URL of the accessed file

• date and time of the access

• transferred data volume

• http status code

• requested resource and protocol version

•identification data (type, version) of the browser used and operating system of

accessing computer

• URL of the referring website if access was gained by clicking a link

These data are processed solely to improve our service, and do not allow any inference to your person. The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since these data are technically necessary in order to display our website and to ensure its stability and security.

Cookies

When you use our website, we place cookies on your computer. Cookies are widely used by website owners in order to make their websites work, or to work more efficiently, as well as to provide reporting information. Cookies are small text files assigned to the browser you use, which are stored on your hard disk. Cookies cannot run programs or transmit viruses to your computer. They serve to make internet services more user-friendly and effective overall.

We use two kinds of cookie: transient cookies (temporary cookies). and persistent cookies (permanent cookies). Transient cookies, also known as “session cookies”, are temporary cookies that are deleted automatically when the browser is closed. They are necessary for the functions of our online shop, and include an “anti-forgery” cookie to prevent hacking attacks, as well as a “last viewed products” cookie.

When you visit our online shop, data that are required for the correct function of the shop are deposited in persistent cookies on your computer. These are deleted from your computer automatically when their validity expires or you delete them yourself before the validity expiration. These include the “shopping cart” cookie as well as the “guests” cookie, which saves the shopping cart and billing information for non-registered users for 3 days. After 3 days, the cookie is deleted automatically.

We also use an “authentication” cookie, which maintains the login of our online shop. If you tick the box “remember me”, this cookie ensures that you remain logged in even after you close the browser. In this case the “authentication” cookie is a persistent cookie and is deleted only after 30 days. If you do not tick this box, the “authentication” cookie remains a transient cookie and will be deleted when you close the browser.

Of course you can also view our website without cookies. Most browsers accept cookies automatically. You can prevent the saving of cookies, or have your browser warn you before saving a cookie, by choosing these options in your browser. Furthermore, you can delete saved cookies from your computer. Further information about these functions can be found in the Help menu of your browser. It is possible, however, that some functions of our website will be available only in part or not at all if you do not permit the use of cookies.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since these data are necessary in order to configure our website to be user-friendly and to facilitate its use.

Analysis Tools

…Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. ("Google"). Google Analytics uses "cookies", which are text files placed on your computer to help the website analyze how visitors use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. If IP anonymizing is activated on this website, the last string of your IP address will be masked within member states of the European Union or in other member states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a server of Google in the USA and masked there. On behalf of the website owner, Google will use this information to analyze your use of this website in order to compile reports about website activities and to provide other services to the website owner in connection with website use and internet use.

Google will not associate your IP address transmitted by Google Analytics with any other data held by Google.

You may prevent the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this you may not be able to use the full functionality of this website. You can prevent Google’s collection and use of data (including IP address) by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout?hl=en.

This website uses Google Analytics with the extension “_anonymizeIp()”. This ensures that IP addresses are processed in an abbreviated form; they cannot be matched to an individual. Insofar as the data collected about you are personal data, this reference is eliminated and the personal data are deleted.

We use Google Analytics in order to analyze and improve the use of our website. With the statistics gained we are able to improve our service and to develop it for you as a user. For those exceptional cases when personal data are transmitted to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework .

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since these data are necessary in order to configure our website to be user-friendly and facilitate its use.

Third-Party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of Service: https://www.google.de/analytics/terms/gb.html , Privacy Overview: https://support.google.com/analytics/answer/6004245?hl=en , as well as the Privacy Policy: https://policies.google.com/privacy?hl=en&gl=de .

Hotjar

Hotjar is a service that analyzes the behavior and feedback of users on websites with a combination of analysis and feedback tools. Hotjar provides the website owner with an overall picture of how the end-user experience and the performance of the website can be improved.

A tracking code is integrated in our website, which is transmitted to Hotjar’s server in Ireland (EU). This tracking code contacts the Hotjar servers and sends a script to the computer or the end device with which you access our website. The script stores data in connection with your interaction with the website. These data are then transmitted to Hotjar’s servers for processing.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since these data are necessary in order to configure our website to be user-friendly and to facilitate its use.

With the Hotjar tracking code embedded in our website, the following data are collected and processed:

IP address of the end device (collected and processed only in anonymized form)
Resolution of the screen/display of the end device’s monitor
Type of end device, operating system and browser type
Geographic location (country only)
Preferred language of displayed website
User interactions
- Mouse events (movements, position and clicks)
- Keyboard entry
Protocol data (random survey only)
- Referring URL and domain
- Visited pages
- Geographic location (country only)
- Preferred language of displayed website
- Date and time when the pages of the website were accessed

You can disable the use of Hotjar by clicking the following link: https://www.hotjar.com/opt-out Please note that you must repeat this after you have deleted all cookies from your end device.

Third-party information from Hotjar Limited, company number C 65490 (Malta), located Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julian's STJ 1000, Malta, is available at: https://www.hotjar.com/privacy and https://help.hotjar.com/hc/en-us .

Ordering and Registration on the Website

When you order from our online shop you may choose if you wish to enter the data necessary for your order once only (guest access), or if you wish to open a customer account to save your data for later purchases. If you order with guest access, we save your data in order to fulfil our contract, and delete it as soon as we are no longer legally obligated to store it, i.e. after we have fulfilled our contract and when the obligations under tax and commercial law to retain data have ceased. Fields that are mandatory for the fulfilment of contracts are marked; other fields are voluntary. When a customer account is opened, the data entered by you are saved revocably; you can always delete your account in your customer area. If a customer account is deleted, the data saved during its creation are deleted, apart from the data we are required to store in order to fulfil our contract, and data we are legally required to store. Such data are deleted when the contract is fulfilled and the obligations under tax and commercial law to retain data have ceased.

During the order process, and in order to open a customer account to fulfil the contract, we collect, process, store and use the following data: form of address, name, home address, delivery address, date of birth, email address, telephone number, and, depending on the billing information chosen, bank details, credit card data (name of card holder, credit card number, validity date, security number).

In order to deliver your ordered goods to you, we transmit your name and delivery address to the commissioned shipping company. In order to facilitate payment, we transmit your bank details or credit card data to the commissioned credit institute.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. b) GDPR since these data are necessary in order to fulfil our contractual obligations. Without collection, storage or processing of the mandatory fields, fulfilling the contract is impossible.

Any further processing and use of your personal data requires your express consent unless no legal authorization to process or use exists. We will not sell or otherwise market your personal data to third parties who are not part of Dr. Rath group.

Orders by Telephone, Telefax, Post

In case of orders by telephone, telefax or post we also process the following data: form of address, name, address, email address, possibly telephone number, possibly bank details, possibly credit card number.

We save your data in order to fulfil the contract, and delete it when the contract is fulfilled and the obligations under tax and commercial law to retain data have ceased.

Newsletter

During registration or the order process as well as at any other time, you can subscribe to our newsletter. The newsletter contains general information about our products, in particular the development of new products as well as information about their use. When you subscribe to the newsletter, your email address, as well as other information given voluntarily during the subscription, will be used for our own advertising until you unsubscribe from the newsletter. If you do not wish to receive the newsletter or any advertisements from us at all, you can at any time object to this without incurring any costs other than the transmission costs according to the standard rates. A message in text form to the above contact data (e.g. email, fax, letter) is sufficient for this. Of course, you will also find an unsubscribe link in every email.

Your consent is the legal basis according to Art. 6 Sec. 1 Sentence 1 lit. a) GDPR for the use of the data for sending newsletters.

Product Information

As our customer, i.e. when you have ordered our products at least once before, you will receive regular product information by email. You will receive this product information from us or from companies working with us such as Dr. Rath Education Services B.V., Dr. Rath Health Foundation and Cell World Center International e.V., independently from any newsletter subscription. We wish to inform you about products we offer and their scientific background, in which you might be interested on the basis of your last purchases with us. If you do not wish to receive any (advertising) messages from us, you can at any time object to this without incurring any costs other than the transmission costs according to the standard rates. A message in text form to the above contact data (e.g. email, fax, letter) is sufficient for this. Of course, you will also find an unsubscribe link in every email.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since the targeted information of existing customers is our legitimate interest.

Customer and Consultation Service

You can make use of our customer and consultation service.

The data you give us during contact in order to answer your questions are stored. The data connected with this are deleted as soon as storage is no longer necessary or their processing is restricted if legal obligations to retain them exist.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. b) GDPR since these data are required to answer your questions.

If you are our customer or have registered on the website, we will connect data you give us during contact with your existing data. These data are only deleted when your customer account is deleted.

The legal basis for this data processing is Art. 6 Sec. 1 Sentence 1 lit. b) as well as Art. 6 Sec. 1 Sentence 1 lit. f) GDPR since information about concerns, questions, and interests of our customers are our legitimate interest in order to give our customers the best possible service.

Your Rights

…Access (Art. 15 GDPR)

You have at any time the right to access, to confirm whether or not personal data concerning you have been processed, and if so which personal data have been processed, without cost to yourself.

…Rectification (Art. 16 GDPR)

You have at any time the right to have us rectify personal data concerning you that are stored by us.

…Erasure and Restriction (Art. 17 and Art. 18 GDPR)

You have at any time the right to request the erasure of your personal data stored by us. We will delete your data in this case unless we are authorized or obligated to store your data for other reasons. You can similarly request the restriction of our processing of your personal data.

…Data Portability (Art. 20 GDPR)

Regarding personal data that you have provided to us and that we have, with your consent, processed automatically, you can at any time request that we provide you with this personal data. You can then transmit these data to other companies. If you wish – and if it is technically possible – we can also transmit the data to the company you named to us.

…Right to Objection and Withdrawal of Consent (Art. 21 and Art. 7 Sec. 3 GDPR)

As we have already informed you, you can at any time object to the use of your data for advertising. If you have granted us your consent to process your personal data, you can withdraw it at any time.

…Right to Lodge a Complaint (Art. 77 DSGVO)

If you believe that the processing of the personal data concerning you is illegal, you can lodge a complaint with the competent supervisory authority.

…Exercise of rights

In order to exercise your rights, you can contact us by, e.g., email, telefax, letter (at the numbers/addresses above). You can also contact our data protection officer.

Data Protection Officer

If you have questions regarding collection, processing or use of your personal data, or regarding access, rectification, data portability or erasure of data, as well as withdrawal of consent, please contact: Patrick Raijmakers, Dr. Rath Health Programs B.V., Tesla 1-5, 6422 RG Heerlen, The Netherlands, Telephone: 0031 - 457 - 11 11 00, Telefax: 0031 - 457 – 11 11 19, email: datenschutz@rath-programs.com