Data protection declaration according to GDPR and BDSG, milon Group

References on use and protection of your data and your rights – information according to Articles 13, 14 and 21 of the European General Data Protection Regulation (hereinafter referred to as GDPR)

Below, we, milon Holding GmbH, are informing you about how we process, collect and use your personal data within the framework of the use of our offers and services in the group of companies, hereinafter referred to as milon Group, comprising milon CARE GmbH, milon industries GmbH, Physio Aktiv GmbH, BEN GmbH, milon austria GmbH, milon alpine AG.

If you access and use the offers and services of the milon Group, various information about your PC or other terminal device such as Smartphone (hereinafter: your “system”) will be transmitted to us, depending upon the nature of your use. The majority of the information transmitted within the framework of the use is not personal. In the following data protection declaration, we explain the information and personal data in question and also how we make use of them.

The most important thing first: Sensitive and responsible dealings with your personal data is an elementary integral part of serious and customer-orientated entrepreneurial activity for us. As early as data processing, the principle of data thriftiness has great importance. We only collect and process your personal data to the extent that you have granted consent to us for this, legislation expressly permits or prescribes it or you allow us to do so. We guarantee that no personal data are forwarded to third parties without authorisation.

We point out that the European General Data Protection Regulation and also a new version of the Federal Data Protection Act (BDSG) have been in force since 25.5.2018.

1. What are personal data?

Personal data are all information about the personal and factual situation of a specific or determinable natural entity (§ 3 subsection 1 BDSG) or a user. Examples of personal data are information such as your name, your address, localisation, online identifications or your telephone number.

2. How do we collect and process your personal data? Which sources and data do we use?

2.1 milon Services (relative to enterprises in the milon Group)

2.1.1 Websites of the milon Group

To improve the internet offer, we produce pseudonymised use profiles. We make use of cookies for this. We do not store any personal data in them. Formation of an individual profile about your use behaviour does not take place. You can challenge use of your data in this regard at any time. You will find more information in the following section.

2.1.2 Newsletter

After registration for a newsletter in one of the enterprises of the milon Group by a customer/interested party, we use the e-mail address in order to inform about milon innovations and actions and topics to do with our products.

2.1.3 milon Services

milon Services are used to enable optimum support and care for the business relations in our customer relationship. In this context, the following personal data are collected via milon Services:

  • Date/time of day
  • Address of dispatcher and recipient (IP address)
  • Start and duration of the connection
  • Data quantities
  • Name
  • Telephone number
  • Your position in the company
  • Your company
  • Bank account
  • Gender
  • Facebook sites
  • Postcode & address & town of the company (milon brand store) // only if the invitation mail is dispatched repeatedly

2.2 Products of the milon Group

2.2.1. Milon CARE

  • Master data collected by the fitness studio (name, date of birth, address and contact data, term of my training contract)
  • Training data (settings of the training devices and data recorded in the use of the devices such as time and scope of the training)
  • If applicable, health-related data collected within the framework of health examinations or which I have notified to the fitness studio (height, weight, blood pressure, injuries, medication and similar)

2.2.2 Milon ME

If a “Milon Me” user account is created, the following data are collected:

  • In addition to the master data, in any case height, weight, maximum pulse (mandatory information)
  • Voluntary information which I give about myself (e.g. contact data, trainer’s name, training targets)
  • I can also input further information at my own discretion at any time: I can include free exercises (without milon devices) in my training plan, record the results of free training and also assess my current emotional state (voluntary information, is not inquired by Milon Me).
  • Information in my public user profile which other “Milon Me” users can see (e.g. photo).

2.2.3 milon training devices and training on devices from other manufacturers via milon CARE

To be able to undertake training, registration under 2.2.1 is necessary. To the extent necessary, the device settings are done by the trainer before the first training session. These settings (master data radius of movement, weights) are stored so that the devices automatically adapt to the users in all subsequent training sessions. To make an analysis of the training session on the devices by milon CARE possible, the training data (training devices), weights, repetitions, distance and duration) are stored. In addition, training results can also be documented manually.

2.2.4 milonizer

milonizer records body segment lengths for the setting of radii of movement on the training device. At your own discretion, it is possible to record your body weight via the integrated scales from Version 3.0 upwards. If a test offered is selected by the training staff or the person training, test results are recorded and transmitted to milon CARE.

2.2.5 milon studio finder

The studio finder is a service provided on the milon.com website in order to show location-related information about a facility on a cartographic display. The personal data are actively transmitted to us by the listed operator for the purpose of the aforementioned display.

2.2.6 Physio Aktiv “Train all over Germany”

We use the personal data transmitted by you exclusively for the purpose of displaying your studio on the physioaktiv.de website. This acts as an orientation for people interested in Physio Aktiv or Physio Aktiv members as to where Physio Aktiv partners are located, in order to agree trial training there or possibly to participate in the “Train all over Germany” programme. We assure you that your information is treated in accordance with the valid data protection law directives.

3. How do we use cookies? What settings can you make with a view to cookies?

A cookie is a small text file which a website or a web server sends to your browser in order to identify your system – but not you personally. When you use milon Services, cookies are used for the following purposes:

  • set-up and holding of a session between a client and a server
  • analyses of users’ behaviour within applications and services
  • simplified and secure login

Google Analytics

The websites of the milon Group use Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files which are stored on your computer and make an analysis of the use of the website by you possible. As a rule, the information generated by the cookie about your use of this website is transmitted to a Google server in the USA and stored there. In the event of activation of the IP anonymisation on this website, your IP address is however curtailed beforehand by Google within the member states of the European Union or in other contracting states of the European Economic Area Treaty.

Only in exceptional cases is the full IP address transmitted to a Google server in the USA and curtailed there. By order of the operator of this website, Google will use this information in order to evaluate your use of the website, to collate reports about the website activities and to render further services for the website operator connected with the use of the website and the internet. The IP address transmitted by your browser within the framework of Google Analytics is not put together with other data by Google.

You can prevent storage of the cookies by a matching setting in your browser software; however, we draw your attention to the fact that you will possibly not be able to use all the functions of the website in this case. In addition, you can prevent recording of the data generated by the cookie relative to your use of the website (incl. your IP address) and processing of these data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

Note: On this website, Google Analytics has been extended by the „gat._anonymizeIp();“ code in order to guarantee anonymised recording of IP addresses.

4. Does the milon Group pass personal data on to third parties? Who gets your data?

As a matter of principle, the milon Group only uses your personal data itself. They are only transmitted to third parties in specific cases. We possibly forward your personal data to members of the group of companies or to third parties in order to make access to our services and products possible for them, to assert T&Cs and also to carry out marketing and advertising activities. Transmission might additionally be possible in order to recognise and to examine fraud. We do not forward your data to third parties for marketing or advertising purposes without your consent.

5. Encryption & data security

milon secures its services and website against loss, destruction, access, amendment or propagation of your data by unauthorised persons by technical and organisational measures, but nobody can guarantee absolute protection. All the servers on which customer data of the milon Group are stored are located within the European Union.

As a matter of principle, milon only transmits personal data in an encrypted form.

6. How long are your data stored?

We only store your data as long as necessary, as long as we have to comply with our contractual duties and we have your consent. Otherwise, your data are deleted.

7. Are data transmitted to a third company or to an international organisation?

As a matter of principle, the milon Group does not transmit any data to third countries, and if so, then only to countries deemed a country with “suitable data protection level” according to § 4b subsection 2 sentence 2 BDSG.

8. What rights do you have?

Each person concerned has the right to information according to Art. 15 of the GDPR, the right to correction according to Art. 16, the right to deletion according to Art. 17, the right to limitation of the processing according to Art. 18 and the right to transferability of data from Art. 20. For the right to information and to deletion, the limitations according to §§ 34 and 35 of the Federal Data Protection Act apply. In addition, there is a right to complain to a data protection authority (Art. 77 in conjunction with § 19 BDSG).

There is currently no profiling in the milon Group.

There is currently no profiling in the milon Group.

10. What do we process your data for (purpose of processing) and on which legal basis?

a) to fulfil contractual duties (Art. 6 subsection 1b, GDPR)
b) within the framework of weighing of interests (Art. 6 subsection 1f) (e.g. Schufa, etc).
c) on the basis of your consent (Art. 6 subsection 1a)
d) on the basis of statutory requirements (Art. 6, subsection 1c)
e) for analysis and correction of technical errors
f) to guarantee system security
g) to optimise the systems
h) for control of misuse

11. This is how you can change and delete your data: your possibilities of revocation

milon CARE: As a customer or member of the milon Group, you can change (i.e. update, correct and/or supplement) your personal data at any time in the My Account area (milon care) and also partly delete them. There, you can also choose how we inform you and subscribe to or unsubscribe from newsletters. If amendment or deletion of your data in the My Account area is not possible, you can contact us at the following e-mail address: service@milon.de

If you ask us to delete your personal data, we will comply with this request without delay. However, this might require the end of your use in individual cases. Further, we can merely block data to the extent that this is legally admissible (e.g. because we are obliged to archive them by law).

Physio Aktiv Newsletter and Services: you can change or delete your data by sending us a mail to: info@physioaktiv.de

Unsubscribing from the milon newsletter: you can unsubscribe from the newsletter free of charge at any time by following the instructions at the end of the e-mail dispatched to you or changing the settings in your account under “Account Settings”. In addition, unsubscribing is possible by sending an e-mail to: marketing@milon.com.

milon brandstore: write an informal e-mail to brandstore@milon.com with the request for deletion of the account.

 

12. WHO is responsible for data protection and who can you contact? Data protection commissioner and claim to information

Please address further questions on the subject of data protection to the responsible person named in the imprint.

You can contact our data protection commissioner via the e-mail address datenschutz@milon.com or by post to the address stated in the legal notice.

13. Information about your right of contestation according to Art. 21 of the GDPR

For reasons resulting from your specific situation, you have the right to object to the processing of your personal data at any time.

If you make an objection, we shall no longer process your personal data, unless we can prove cogent reasons for the processing which are worthy of protection and prevail over your interests, rights and liberties or the processing is necessary for claiming, exercising or defending legal claims.