Data privacy

General Introduction:

We take the protection of your personal data very seriously and want you to be safe when visiting our website. Our data protection practice follows in particular the requirements of the EU General Data Protection Regulation, the Federal Data Protection Act (BDSG-new) and the law regulating data protection and the protection of privacy in telecommunications and telemedia (TTDSG). At this point we would like to inform you about the type, scope and purpose of the processing of your personal data. We would like to point out in advance that this data protection declaration only refers to our websites and does not apply to third-party websites to which we refer in the form of links.

Object of protection:

The subject of protection is personal data. This is all information that relates to an identified or identifiable natural person (hereinafter “data subject”). This primarily includes information that allows conclusions to be drawn about your identity (e.g. information such as name, postal address, email address and telephone number).

Technical requirements:

So that you can establish a connection to our website, your browser transmits certain data to our website's web server. This is a technical necessity so that the information you have accessed can be provided by the website. To make this possible, your IP address, date and time of your request and the type of operating system, among other things, are stored and used for a maximum of 7 days. We reserve the right to store this data for a limited period of time to protect our legitimate interests, in order to initiate the derivation of personal data in the event of unauthorized access or an attempt to intentionally harm us in this way (Art. 6 Para. 1 f GDPR ). The data will only be stored or forwarded by us for these and no other purposes without us informing you beforehand and asking for your permission.


Cookies are small text files that are stored on your computer or mobile device via your browser, for example to recognize whether you visit websites repeatedly from the same device or browser. In general, we use cookies to analyze interest in our website and to improve the user-friendliness of our website. In principle, you can also access our website without cookies.

Cookies can usually be disabled or removed using tools available in most commercial browsers. The settings must be set separately and individually for each browser you use. The different browsers offer different functions and options.

General types of cookies:

In order to explain the most common types of cookies in more detail, we have explained them below for your understanding:

Session cookies (session cookies):

Session cookies can be used to recognize users and the changes they make within a website. They allow the website to track your movements across individual pages, so that information that has already been entered/saved does not need to be entered/saved again. An example of this are shopping carts in web shops. The session cookie saves the selected products in the shopping cart so that it contains the correct items when paying at the checkout. Session cookies are deleted when you log out or lose their validity as soon as the session has automatically expired.

Persistent or protocol cookies:

A persistent or protocol cookie stores users' information and settings on the user's computer for the period specified in the expiration date. This leads to faster and more convenient access, as you do not have to re-adjust language settings or re-enter login data, for example. The cookie is automatically deleted after the end of the storage period.

Third-party cookies:

Third-party cookies generally have no influence on the use of the site because they do not come from the website operator. For example, they serve the purpose of collecting information for advertising, custom content and web statistics and passing these on to the respective third party provider.

Tracking Cookies:

Tracking cookies are special text files that make it possible to collect data about the behavior of the Internet user. The aim of this is to obtain information about the user's main interests, for example in order to be able to launch tailor-made advertising offers. Tracking cookies are therefore not only set when you register, but also automatically when you visit the website.

The above-mentioned exemplary representation of the most common forms of cookies is intended to give you a global overview of this form of data collection. These statements do not claim to be complete. As a result of technical IT developments, it can be assumed that additional types of cookies will develop over time. Please check our privacy policy at regular intervals for current changes before using our website.

Cookies on our website:

You can see for what purpose the cookies we use and for how long they are stored in the following overview:

Cookies that this website may use

This website currently uses the following cookies

We obtain your consent in accordance with Article 6 Para. 1 GDPR for the services used on this website and associated cookies via a consent manager, which is displayed to you when you visit the website. You can adjust your consent settings at any time using the following link:

Adjust consent settings

Further general information:

Changes to this privacy policy

We check the data protection declaration at regular intervals for conformity with legal provisions, case law, the statements of the supervisory authorities as well as the alignment with emerging trends and the development of the technical standard. In this respect, we reserve the right to make changes to the data protection declaration in order to adapt it to new legal provisions on data protection and other changes in the factual or legal situation. Therefore, please always inform yourself about the data protection declaration in force at the time when you start using our website.

Who is responsible for data processing? (Art. 13 Para. 1 a, b GDPR0)

Bama GmbH is responsible for data processing on our website. You can find the contact details in the imprint: To the imprint

You can reach our data protection officer at the address:

Bama GmbH

To the data protection officer

Pfalzgraf-Otto-Straße 50

74821 Mosbach


Tel.: +49 (0) 6261 801 268

Who receives your personal data? (Art. 13 Para. 1 e, f GDPR)

We treat your personal data confidentially and generally do not pass it on to third parties unless you have given your consent or the provision is based on a legal or contractual obligation. In individual cases, we commission processors to process your personal data. This is done in accordance with Article 28 of the GDPR and on the basis of an order processing contract.

We process personal data on our website exclusively in Germany and will not send it to a third country.

How long is the data stored? (Art. 13 Para. 2 a GDPR)

The legislature has enacted a variety of retention obligations and periods.

In principle, we only store your data for as long as is legally required

After these periods have expired, the relevant data will be routinely deleted if it is no longer required to fulfill the contract. We store data that we process based on your consent until revoked or as long as the data is needed. We store data that we process on the basis of a legitimate interest for as long as the legitimate interest exists.

Commercial or financial data from a completed financial year will be deleted after a further ten years in accordance with legal regulations, unless longer retention periods are prescribed or necessary for legitimate reasons. Unless data is subject to specific retention periods, it will be deleted when the purposes for which it is processed no longer apply.

For what purposes and on what legal basis do we process your personal data? (Art. 13 Para. 1 c, d GDPR)

We have already explained the purposes and legal basis of data processing. In addition, the following generally applies: If necessary, we process your data to protect our legitimate interests or those of third parties in accordance with Article 6 Paragraph 1f of the GDPR, for example to assert legal claims and defend ourselves in legal disputes or to ensure IT operations and security.

If we have a legitimate interest or have received written consent from you to process your personal data, we process your data for external communication and marketing purposes on the basis of Article 6 Paragraph 1 a or f GDPR. You have the right to revoke your consent at any time.

In order to fulfill legal requirements, we may or must, if necessary, process your data and pass it on to third parties (according to Art. 6 Para. 1c).

We do not use your data in any way for automated decision-making or profiling.

We also use cookies in order to be able to offer you an improved service when you use our website and to make the use of this website easier for you (Art. 6 Para. 1 f GDPR).

What rights and obligations do you have? (Art. 13 Para. 2 b, c, d, e GDPR)

Everyone affected has the following rights:

  • According to Art. 15 GDPR you have the right to information. This means that you can request confirmation from us as to whether we are processing personal data concerning you.
  • According to Art. 16 GDPR you have the right to correction. This means that you can request that we correct any incorrect personal data relating to you.
  • According to Art. 17 GDPR You have the right to deletion (“right to be forgotten”). This means that you can request that we delete personal data concerning you immediately - unless we cannot delete your data because, for example, we have to comply with legal retention requirements.
  • According to Art. 18 GDPR You have the right to restrict processing. This means that we are practically no longer allowed to process your personal data - apart from storing it.
  • According to Art. 20 GDPR you have the right to data portability. This means that you have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format and to transmit this data to another person responsible.
  • According to Art. 7 Para. 3 GDPR You have the right to revoke your consent at any time in the future.
  • According to Art. 77 GDPR You have the right to complain to the responsible supervisory authority.

You also have the right to object, which we will explain in more detail at the end of this data protection information.

If you would like to exercise your rights, please contact the data protection officer (contact details see above).

Supervisory authority

  • State Commissioner for Data Protection and Freedom of Information
  • Baden-Württemberg
  • House address: Königstraße 10a, 70173 Stuttgart
  • Postal address: P.O. Box 102932, 70025 Stuttgart
  • Tel.: +49 (0) 711 61 55 41 - 0
  • E-Mail-Adresse:

Information about your right to object in accordance with Article 21 of the General Data Protection Regulation (GDPR)

You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you, which is carried out on the basis of Article 6 Paragraph 1 Letter f of the GDPR (data processing on the basis of a balance of interests). ; This also applies to any profiling based on this provision within the meaning of Article 4 No. 4 GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Please send your objection in writing (by email or post) to our data protection officer (contact details see above).