Data protection declaration

We appreciate you visiting our homepage. As personal data is extremely valuable and we wish
to ensure secure processing, we would like to inform you of the gathering of personal data on
our homepage.

An additional security feature of our website is the HTTPS connection (SSL encryption) which
also increases the level of protection.

Unfortunately, not all data transfers via the Internet (email etc) are secure. Therefore, we wish
to point out that we cannot guarantee complete protection of personal data if you use these
transfer channels.

Our Internet presentation contains links to other Internet sites (links).

We have no influence over the content of the linked sites. These were carefully checked prior
to the placing of the links. However, it cannot be excluded that content-related changes have
been undertaken by the operators of the respective sites which breach applicable laws or our
philosophy.
We wish to distance ourselves from such content.

Personal data is not passed on to third parties and your data is not used for purposes which
go beyond processing the query. Should it be necessary to pass this data on to third parties in
order to respond to the query, the agreement of the customer is deemed to have been issued
to this extent.
In particular, the data which is provided to us will not be used for advertising purposes.

Company data of the competent body:
sunflex sport GmbH + Co. KG

Company management (board of directors)
Dipl.-Kfm. Bernd Zimmermann, Dipl.-Kfm. Peer Zimmermann

Address of the competent body
Wolkersdorfer Berg 3
91126 Schwabach

Visit to the Internet presence
It is generally possible to visit our site without providing personal data.

However, for technical reasons it is not possible to visit our Internet presence unless you notify
us of your IP address, so that our server can send you the information you have requested.

Our Internet presence is encrypted for your security and ours and uses the "https" protocol. In
order to check the identity and validity of the key used for this purpose, our Internet server
refers your Internet browser to the issuer of the certificate with which our Internet site was
encrypted, which then establishes a connection to the United Kingdom without any action on
our part.

The certificate used on our Internet sites was issued by Thawte powered by DigiCert.

The data protection policy of Thawte powered by DigiCert can be viewed here:
https://www.digicert.com/digicert-privacy-policy/

Data gathering and recording
The following data is transferred to us when you access our website:

• Date and time of the request
• Name of the requested site
• Site from which the sub-site was requested
• Access status (site transferred; site not found etc)
• Web browser and operating system used
• Full IP address of the requesting computer and host name
• Transferred data quantity

We are aware that from a legal point of view, IP addresses are classed as personal data,
however these are not used by us. For reasons connected to technical security, in order to
prevent attempted attacks against our server, this data is saved for a period of 7 days and is
then automatically deleted.

Security measures
We take organisational, contractual and technical security measures in accordance with the
state of technology, in order to ensure that the regulations of the data protection laws are
complied with and in order to protect the data processed by us against accidental or intentional
manipulation, loss, destruction or access by unauthorised persons. In particular, the security
measures include the encrypted transfer of data between your browser and our server.

Gathering and processing of personal data
Should you send us an email, the data will be saved in accordance with the statutory guidelines
in case of a business relationship. Please bear in mind that an email is equivalent to a postcard
and does not guarantee the secure transfer of your data.

Getting in touch
When you get in touch with us (by email and telephone), the information of the user will be
processed in order to respond to the enquiry and to deal with this in accordance with Art. 6
Paragraph 1 Letter b) GDPR.
The information of the users can be saved in our customer relationship management system
("CRM system") or comparable enquiry filing systems.

Use of cookies
It is possible for us to deposit so-called "cookies" on your computer when you visit our website.
Cookies are text files which are received by your Internet browser and which are stored on
your computer.
By means of these, we can recognise your computer next time you visit us. Most Internet
browsers are set in such a way that they automatically accept these cookies.

You can prevent the saving of cookies by setting your browser software accordingly. However,
we wish to point out that in such a case, you may not be able to fully use all functions of this
website.

There is a difference between so-called session cookies and analysis cookies. Below, you will
find an explanation of these types of cookies.

Cookies which are essential for the operation of the website, as otherwise the functionality of
the website can be restricted, or parts of the website will not work (necessary session cookies).

Cookies which serve the purpose of analysing user behaviour on the website in order to obtain
information concerning number of visitors and to improve the website. Analysis data is gath-
ered anonymously. The individual data records are not assigned to a specific visitor on the
website (analysis cookies).

We use an internal analyzing tool for tracking purposes, which analysis webserver logfiles only.
No data will be transferred to third parties. The evaluation of this data will only be processed
through us. This analyzing tool is used in order to continuously design and optimize our website
and make sure it meets the demands of the internet community. Furthermore it is used as a
statistic tool to measure the usage of our website in order to adapt our website services.
In this context, the tool generates pseudonymous usage profiles.

For the above mentioned internal purposes, the following data collected by the analyzing tool
and the cookie will be analysed by us:
• Browser type and version
• Operating system
• Referrer Url (pre-visited page)
• Hostname of the accessing computer (IP address)
• Date and time of the server access
Planned data transfer to third countries / third party providers

We do not plan to transfer data to third countries.
Should content, work tools or other equipment of other providers (hereinafter referred to jointly
as "third party providers") be used in this data protection declaration and should their named
places of business be in a third country, it must be assumed that a data transfer to the countries
of the places of business of the third party providers will take place. Third countries are defined
as countries where there GDPR does not apply directly, this means generally countries outside
the EU and/or the European Economic Area. Data is transferred if a reasonable level of data
protection is present, if the user has issued his or her consent or if permission is granted by
law.

Google Maps
We use Google Maps (API) of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA
94043, USA ("Google") in order to display route maps. Google Maps is a web service which
displays interactive maps in order to visually display geographical information. Should you
have agreed to the use of cookies, when accessing sites in which the maps of Google Maps
is integrated, information concerning the use of our website (for example the IP address of the
user) will be transferred to servers of Google in the USA and saved there. The use takes place
based on Article 6 Paragraph 1 Sentence 1 Letter f) GDPR.

Google may pass this information on to third parties, should this be required by law or should
third parties process this information on behalf of Google. Google will not combine the IP ad-
dress of the user with other data of Google. However, it would be technically possible for the
Google to use the user data generated by the use of Google Maps in order to identify the users,
to create personality profiles of users from this or to process or use this for other purposes,
over which we have no control.

The terms and conditions of use of Google can be viewed at:
http://www.google.de/intl/de/policies/terms/regional.html.

The additional terms and conditions of use for Google Maps can be viewed at:
https://www.google.com/intl/de_US/help/terms_maps.html.

Detailed information concerning data protection in connection with the use of Google Maps
can be found on the Internet site of Google ("Google Privacy Policy"):
http://www.google.de/intl/de/policies/privacy/

Should you not agree to the future transfer of your data to Google in the course of the use of
Google Maps, it is possible to fully de-activate the web service of Google Maps by turning of
the JavaScript application in your browser. In such a case, Google Maps and the map display
on our Internet site cannot be used.

Accessing and visiting our company's Facebook page
It is not possible to visit our company's Facebook page without providing personal data. This
page is provided by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dub-
lin 2, Ireland.

Facebook is a social network which enables users to create private profiles, upload photos and
share these with others, as well as to network with other users by means of friendship requests
amongst others.

The operating company of Facebook is Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025,
USA. Should a data subject live outside of the USA or Canada, the body responsible for the
processing of personal data is Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal
Harbour, Dublin 2, Ireland.

Each time one of the individual pages of this Internet site is accessed, your Internet browser
automatically establishes a connection to Facebook. By means of this, Facebook is informed
which concrete sub-page of our Internet site you are visiting.

Should you be logged in to Facebook at the same time, Facebook is informed which concrete
sub-page of our Internet site has been accessed, each time you visit our Internet site. This
information is collected by the Facebook components and assigned to your Facebook account
by Facebook. Should you click on one of the Facebook buttons which are integrated into our
website, for example the "like" button or should you provide a commentary, Facebook gathers
and saves this information in your personal Facebook user account.

Facebook is then informed via the Facebook components that you have visited our Internet
site, should you be logged in to Facebook at the same time you access our Internet site; this
takes place regardless of whether you click on the Facebook components or not. Should you
not wish for this information to be transferred to Facebook in such a way, you can prevent this
by logging out of your Facebook account before you access our Internet site.

The data protection policy published by Facebook which can be accessed at https://de-de.fa-
cebook.com/about/privacy/ provides information concerning the gathering, processing and use
of personal data by Facebook. Furthermore, the settings options provided by Facebook in or-
der to protect the private sphere are explained. In addition, there are various applications avail-
able which prevent the transfer of data to Facebook. You can use such applications in order
to prevent the transfer of data to Facebook.

Accessing and visiting our company's YouTube page
It is not possible to visit our company's YouTube page without providing personal data. This is
operated by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. YouTube LLC is a
subsidiary company of Google Inc, 600 Amphitheatre Pkwy, Mountain View, CA 94043-1351,
USA.

Further information concerning YouTube can be accessed at
https://www.youtube.com/yt/about/de/. Within the framework of this technical procedure,
YouTube and Google are informed which concrete sub-page of our company's YouTube page
you are visiting and on which film you have clicked.

Should you be logged in to YouTube at the same time, YouTube can recognise which concrete
sub-page of our company's YouTube page you have visited, when you access our company's
YouTube page. This information is collected by YouTube and Google and assigned to your
YouTube account.

YouTube and Google are then informed that you have visited our Internet site, should you be
logged in to YouTube at the same time you access our Internet site; this takes place regardless
of whether you click on a YouTube video or not. Should you not wish for this information to be
transferred to YouTube and Google in such a way, you can prevent this by logging out of your
YouTube account before you access our Internet site.

The data protection policy published by YouTube which can be accessed at
https://www.google.de/intl/de/policies/privacy/ provides information concerning the gathering,
processing and use of personal data by YouTube and Google.

Accessing and visiting our company's Instagram page

It is not possible to visit our company's Instagram page without providing personal data. This
is provided by Instagram Inc, 1601 Willow Road, Menlo Park, CA 94025, USA.

Should you be logged in to your Instagram account, Instagram can link the contents of our
Instagram page to your Instagram profile and assign these to your user account. We wish to
point out that we as the provider of the sites have no knowledge of the content of the trans-
ferred data and the use of this by Instagram.

Further information in this respect can be found in the data protection declaration of Instagram:
https://instagram.com/about/legal/privacy/.

Exclusion of guarantee
The information, data and content are constantly checked and updated. Despite the care, in-
formation may have changed in the meantime. However, we cannot provide any guarantee
concerning the up-to-dateness, completeness and correctness of all the pages. According to
general laws, we are responsible for all our own content which is provided on these websites
for use (§ 7 of the German Telemedia Act - TMG).

By means so-called links, we also provide access to third party information.
We are not responsible for this information (§ 8 TMG), as we do not carry out the transfer, do
not select the recipient of the transferred information and have not selected or altered the
transferred information. The transfer of information and the provision of access to you also
does not require any short-term interim saving of this information, due to the type of links used.

Should you follow such a link, you are leaving our web presence and visiting another site,
whose content is outside of our area of control. When you visit the new Internet site, the data
protection provisions of the Internet site which you have accessed apply. These may differ
from the data protection provisions of our Internet site. Please familiarise yourself with the data
protection provisions of the third-party Internet site.

Right of objection
Should your personal data be processed based on legitimate interests in accordance with Ar-
ticle 6 Paragraph 1 Letter f) GDPR, you have the right in accordance with Article 21 GDPR to
raise an objection to the processing of your personal data.
In order to exercise your rights, please contact our data protection officer. The contact details
are provided at the end of this data protection declaration.

Supervisory authority
You also have the right to complain to the supervisory authority which has jurisdiction over us
or you, should you believe the processing of your personal data is taking place unlawfully.
The address of the data protection supervisory authority which has jurisdiction over us is:

Data Protection Authority of Bavaria:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 27, 91522 Ansbach

Changes to the data protection declaration
We reserve the right to alter the data protection declaration, in order to adjust it to changing
legal positions, or in case of changes to the service or data processing. However, this does
not apply in relation to data processing declarations. Should consent of the users be necessary
or should parts of the data protection declaration contain provisions of the contractual relation-
ship with the users, the changes will only take place with the agreement of the users.

Data protection queries and information
Should you have any questions concerning the gathering, processing, saving and deletion of
your personal data, please do not hesitate to get in touch.
Should you wish to know what data concerning you is saved by us, please feel free to contact
us.

ComFor-IT® oHG
Data protection
Bahnhofstraße 6
84405 Dorfen
Tel: 08081-60499-50
Email: datenschutz@comfor-it.de
Internet: www.comfor-it.de