Data Protection Declaration
REWE-ZENTRALFINANZ eG, Domstr. 20, 50668 Cologne, Germany (hereinafter referred to as “REWE”) is the operator of the website rewe-group.com. The following privacy statement contains information about the data that is gathered when you visit our website rewe-group.com and the purposes for which the data is used.
We also wish to inform you of your rights in this context. This privacy statement applies exclusively to the website www.rewe-group.com and to any subpages (such as www.rewe-group.com/[xy]) and subdomains (such as [xy].rewe-group.com). When you visit the website www.rewe-group.com you have the option of navigating to other REWE websites, such as www.rewe.de, www.togo.rewe.de, and to additional websites. Websites with addresses that do not begin with www.rewe-group.com are governed by separate privacy statements that can be accessed on those sites.
1) Responsibility for handling your personal data
REWE is responsible for complying with data protection regulations as it gathers and handles data. Our privacy practices are in keeping with legal requirements concerning data protection.
2) What is personal data?
The term “personal data” refers to specific information about the personal or material circumstances of an identified or identifiable natural person. This includes such information as name, address, telephone number and date of birth (if provided). Statistical information that cannot be directly or indirectly linked to you – such as the popularity of specific websites or the number of visitors to a site – is not considered personal data.
3) General information regarding the handling and use of personal data on rewe-group.de
To ensure system security, when you visit our websites our web servers automatically and temporarily store the connection data of the inquiring computer, the websites of our company that you are visiting, the date and duration of the visit, the identification data of the browser and the operating system you are using, as well as the website from which our site is accessed.
This data set consists of:
- the page from which the file was requested,
- the name of the file,
- the date and time of the request,
- the volume of data transmitted,
- access status (file transferred, file not found),
- a description of the type of web browser used,
- the IP address of the inquiring computer minus the last three digits.
Since this data is stored in anonymous form, it is not possible to create user profiles linked to specific individuals. After the connection is ended, the data is deleted or anonymized.
4) Website analysis/Tracking:
• strictly necessary cookies,
• performance cookies,
• functional/personalizing cookies,
• targeting cookies.
Strictly necessary cookies: These cookies are necessary for navigating the website and using its functions, for example accessing password-protected areas. Without these cookies, REWE is unable to make available certain services that you have requested. REWE uses these strictly necessary cookies for the definitive identification of registered users, so that they can be recognized while they are on the site and when they make subsequent visits.
Performance cookies: These cookies contain information about how visitors use a website – for example, the pages they access most frequently and whether they are receiving error messages from these websites. Performance cookies do not collect data that would make it possible to identify specific visitors. All of the information gathered by these cookies is anonymous and serves only to improve the website’s functionality and services. REWE uses performance cookies to compile statistics on how our website is used and to assess the effectiveness of our advertising campaigns.
Functional/Personalizing cookies: With these cookies, websites can remember information previously provided by a visitor (e.g. name, language or selected market) so that they can offer optimized features tailored to the specific individual. By storing your current location, for example, a website can provide the latest information about your market. These cookies also make it possible to keep your chosen settings on the website (e.g. font type or size, or other options that can be adjusted by the user). In addition, they allow us to provide services requested by you, such as when you want to watch a video. These cookies do not have the ability to follow your browser’s activities on other websites. They do not record personal information that might be used for advertising purposes, and they cannot determine where you have been on the internet, other than on our website. REWE uses functional/personalizing cookies to recognize you when you return to our website and to personalize content and to save any settings you may have chosen.
You may withdraw your consent to the creation of a user profile and user ID at any time. There are several ways to do this:
1. One way to refuse to allow Adobe Analytics (Omniture) to conduct a web analysis is to place an opt-out cookie prohibiting Adobe from saving or using your data for purposes of such analysis. Please note that in this case the prohibition will be in effect only as long as the opt-out cookie remains on your browser. If you wish to place an opt-out cookie at this time, please click here.
2. By selecting the appropriate setting on your browser software, you can also prevent the cookies that are used to create a profile from being saved on your computer.
5) Contact form
Please use this form if you would like to contact us. The form must contain the following information:
- reason for contact,
- email address,
You may also include your given name, company, address and telephone number, although this is not obligatory. We will use your personal data to respond to your inquiry and, as appropriate, to send you requested information. The data you enter will be transmitted via a secure https/SSL connection. Your data will be deleted within a period of 90 days after the matter has been resolved, provided that we are not required to keep the information longer for purposes of verification or customer care, or to comply with legal retention periods.
6) Facebook, Twitter, XING, LinkedIn, Google+, YouTube, Instagram
On our website, you will find links to the social networking sites Facebook, Twitter, Xing, LinkedIn, Google+, YouTube and Instagram. The links are marked with the networks’ logos. Clicking on one of these links will take you to REWE’s corporate page on the social networking site, and you will then be connected to the server of that site. This informs the server that you have visited our website. Additional data is also transmitted to the provider of the social media services. It may include, for example,
- the address of the website containing the activated link,
- the date and time when the website was accessed and/or the link was activated,
- information about the browser and operating system used,
- IP address.
If you were already logged in to the social networking site when the link was activated, the transmitted data may enable the network to identify your user name and perhaps even your real name, and to connect that information to your personal account on the social networking site. To prevent your information from being linked to your personal user account, you should log out of your account before activating the link.
The servers of the social networking sites are located in the United States and other countries outside of the European Union. Accordingly, the data may be handled by providers of social media services in countries outside the EU. Please remember that the data protection laws governing companies in these countries generally provide less protection for personal data than do the laws in force in the European Union’s member states.
7) Use of service providers/Processing of data in countries outside of the European Economic Area
REWE uses service providers to perform services and to process your data (for example, hosting your data in a secure computer center, delivering requested goods, sending letters or emails, and maintaining and analyzing databases, so-called contract data processing). These service providers process the data only as instructed by REWE, and they are obliged to adhere to the applicable data protection regulations. All contract data processors are carefully selected and gain access to your data only to the extent and for the period of time required to perform the relevant services, and/or only to the extent that you have consented to the processing and use of your data.
The servers of some service providers used by REWE are located in the United States and other countries outside of the European Union. The data protection laws governing companies in these countries generally provide less protection for personal data than do the laws in force in the European Union’s member states. If your data is handled in a country in which data is not afforded the same level of protection as in the European Union, REWE makes contractual arrangements or uses other approved instruments to ensure that your personal data is appropriately protected.
8) Data security
REWE puts in place technological and organizational security measures to protect your data as fully as possible against unauthorized access. To prevent third parties from misusing your data, the information you provide is transmitted in encrypted form using the Secure Sockets Layer (SSL) protocol. This can be recognized by the closed lock icon on your status bar and the address displayed, which begins with “https.”
9) Requesting information; correcting and deleting data
Upon request, REWE will provide information about your personal data stored by REWE and about how such data is being used. If the data is inaccurate, REWE will correct it. You may write to REWE at the address listed under No. 10 or contact us by other means. You have the right to have the personal information stored by REWE blocked and deleted. If deletion is prohibited by statute or contract, or under tax or commercial law, or if there are other reasons under existing law that require retention of the data, your data may be blocked but not deleted.
Our website incorporates video content supplied by video providers.
We incorporate videos from the “YouTube” platform provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Data privacy statement: https://www.google.com/policies/privacy/, Opt out: https://adssettings.google.com/authenticated.
You can subscribe to our newsletter via our website.
If you decide that you no longer wish to receive our newsletter, you can cancel your subscription at any time by emailing firstname.lastname@example.org or using the link at the end of every newsletter.
12) Competitions and games
We use any information that you provide as part of competitions and drawings solely to determine the winners and contact them. The winners are notified in writing. Any use of your data for advertising purposes is excluded. We delete such data as soon as prizes have been awarded or if you object to the use of your data.
With your consent, we may send information that you share with us as part of competitions and drawings to cooperating partners that we select.
When you win, we may publish your name on our websites in some circumstances and with your consent.
13) Online applications for employment
We process your personal data pursuant to the applicable provisions of data protection laws.
You determine the scope of data that you want to share with us as part of your online application for employment. Online applications are transmitted electronically to our human resources department and processed there as quickly as possible. The transmission is encrypted. As a rule, applications are forwarded to the supervisors of the relevant specific departments within our company. There is no additional dissemination of your data. Your data is treated confidentially within our company.
We process the data that you divulge as part of your online application solely for purposes of selecting applicants. The data is not processed for any other purposes. Should you wish us to consider your application with regard to future job postings, we ask that you indicate this on your application.
14) Right to legal remedy from a supervisory authority
Any affected person has the right to seek legal remedies from a supervisory authority if they believe that the processing of their personal data has violated provisions of data protection law. The right to seek legal remedies may be exercised in particular before a supervisory authority in the member country where the affected person resides or the location of the alleged violation.
15) Right of objection
Where data is collected on the basis of Art. 6 (1) (e) (data processing in compliance with governmental obligations and/or to protect the public interest) or (f) (data processing to protect legitimate interests), you have the right at any time to object to such processing for reasons arising from your particular situation. We will then no longer process your personal data unless there are verifiable and compelling reasons worthy of protection that take precedence over the interests, rights and liberties of the affected person, or where such processing serves to assert, exercise or defend legal claims. Please address your objection preferably to email@example.com.
16) Questions about data protection
If you have questions regarding data protection at rewe-group.com, please contact:
Data protection officer
Tel. +49 (0) 221-149-0