Go to homepage

Data privacy information for customers and prospective customers


Data policy of May 25, 2018

With the following comments, we are informing our customers and prospective customers in accordance with the EU General Data Protection Regulation (GDPR), which took effect May 25, 2018, in conjunction with the German Data Protection Act (BDSG), about the processing of personal data by us and our affiliates as well as the rights appertaining to data subjects. The legal basis for the provision of the information is found in articles 13 or 14 of the GDPR.

This data policy is updated when needed and published in an adequate form accessible by the data subjects. This may occur by mail, e-mail, Internet and/or posted notice.


1. Who is responsible for the data processing?

The following entity is responsible for processing the data:

Bewital petfood GmbH & Co. KG (in following "company")

Industriestr. 10

46354 Südlohn-Oeding

Telephone: 02862/581-10

E-mail: agri@bewital.de

Website: www.bewital-agri.de


2. How can the data protection officer be reached?

The company has designated a protection officer who can be reached through the following e-mail address:

E-mail: datenschutz@bewital.de.

Please send mailed correspondence to the address in item 1, adding the words "Data privacy – personal/confidential."


3. What personal data is processed?

The following data of customers and prospective customers is processed:

  • Names of contacts in the company of the customer / prospective customer
  • Communication data of contacts in the company of the customer / prospective customer (e.g. e-mail, telephone)


4. Where does the data come from (data source)?

We usually collect the data directly from the data subject, e.g.:

  • Collection of contact information for the preparation of a proposal or other topics associated with an order/project
  • Collection of contact information for the purpose of inquiry with suppliers

Data which we do not collect directly from the data subject may, for example, be the following:
  • Communication of contact information through partner enterprises on whose behalf we are acting.

5. For what purpose is the data processed and on what legal basis?
Personal data may be processed when there is a legal basis for the processing. The processing of customer / prospective customer data is founded on the following legal bases:
5.1. Discharge of contractual duties
Personal data is processed in performance of the agreement, such as the performance arising from an engagement. This also includes pre-contractual activities, such as proposal preparation.
5.2. Discharge of legal obligation
A large number of statutory provisions must be observed in association with performance or contract initiation. These include, for example:
  • Statutory retention obligations for the company under the German Commercial Code (HGB) and German Tax Code (AO).
  • Any liability and warranty claims.

5.3. Legitimate interest of the controller

The processing may be necessary for protecting the legitimate interest of the company if it is not outweighed by the interests or fundamental rights/freedoms of the data subject that require the protection of personal data. This includes, for example, promotional activity of the company or the central storage of personal data in the group of companies.

5.4. Consent

If a consent was given for the processing of personal data, the particular consent is the legal basis for the processing specified in the consent. Consents may be revoked at any time with future effect. Any revocation is exclusively effective for future processing.


6. Is personal data shared and, if yes, with whom?

Data may be shared within the group of companies if it is necessary for the specific purpose or central services within the group of companies.


7. Is personal data sent to a third country?

Personal data is not sent to a third country.


8. How long is personal data stored?

The company must adhere to the statutory requirements at contract initiation and execution. The statutory retention period for accounting and tax-related documents is ordinarily ten years. A six-year retention obligation exists for commercial letters, regardless whether they exist in paper or digital (e-mail) form.

Independent from the retention periods it must be ensured at all times that only authorized employees have access to the data. This applies to paper files and to digital data in IT systems.

Reasonably near the expiration of the statutory retention obligation, paper-based files are destroyed and data in IT systems is deleted in compliance with data protection requirements.


9. What rights does the data subject have?

Contract execution, performance or initiation normally require the processing of personal data.

In this respect, data subject rights must be guaranteed through adherence to certain requirements under the Data Protection Regulation (GDPR):

9.1. Information

9.2. Correction

9.3. Deletion / right to be forgotten

9.4. Restriction

9.5. Objection

9.6. Right to data portability

9.7. Withdrawal of consents

9.8. Right to complain to a supervisory authority


10. Is there an obligation to furnish data?

Customers and prospective customers must furnish the personal data needed to establish, perform and end the contractual relationship or for which there is a legal obligation for its collection. Without the furnishing of data, it is not possible to perform a contract or execute the tasks that exist with the order/contract.


11. Is data used for automated decisionmaking or profiling?

No techniques are employed in the course of contract execution, performance or initiation which would facilitate profiling under Art. 4 No. 4 GDPR or automated decision-making under Art. 22 GDPR.