PRIVACY STATEMENT
Data protection
The aim of data protection, and also our objective at Würth IT GmbH, is to ensure that personal data is handled in such a way that every data subject’s right to privacy is protected.
In order to achieve this objective, all functions responsible for the processing of personal data must observe applicable EU legislation (EU General Data Protection Regulation (GDPR)) and all national data protection laws.
Personal data may only be collected and processed subject to the GDPR or other applicable laws. The essential underlying principles of the GDPR are:
- Lawfulness of processing, fairness of processing, transparency
- Purpose limitation
- Data minimization
- Accuracy of data processing
- Storage limitation and erasure concepts
- Integrity and confidentiality
Handling personal data responsibly but also being aware of the risks of IT systems and applications are other key objectives of Würth IT GmbH.
Information to be provided by data controller and rights of data subjects
Name and contact information of the controller
The controller is the natural person or legal entity that, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).
Würth IT GmbH
Würthstraße 2
74676 Niedernhall
Telefon: +49 7940 930-0
E-Mail: info@wuerth-it.com
Contact details of the data protection officer
You can contact our data protection officer at datenschutz@wuerth-it.com.
Purpose of data collection, processing or use
We are a medium-sized enterprise and internationally operating full service provider of end-to-end IT solutions and services. Our purpose is to offer our customers the best service and innovative solutions today and in the future.
The collection, processing or use of personal data serves this corporate purpose or supporting secondary purposes, such as customer service.
Thus, the company will only collect, process and use personal data to prepare and comply with contracts, for legitimate interests, to comply with legal regulations or with consent of the data subject.
Groups of people concerned and related data or data categories
The groups of people include
- current employees,
- former employees,
- applicants,
- interested parties,
- customers,
- suppliers,
- service providers
- other business partners.
The relevant data include all personal data that are necessary for the fulfillment of the purpose concerned. A detailed overview of the types of personal data that are processed can be found below.
Legal basis
The processing of personal data is only legal if permitted by a law: that is to say, if there is a legal basis for the processing or the data subject has consented to the processing.
Personal data are only processed in our company in accordance with legal provisions. These generally include,
- when consent to the processing of personal data has been given (Article 6(1)(a) GDPR),
- when personal data have to be processed for the performance or initiation of a contract (Article 6(1)(b) GDPR),
- when personal data have to be processed to comply with legal requirements (Art. 6(1)(c) GDPR),
- when personal data is processed on the basis of a legitimate interest or a legitimate interest of a third party (Article 6(1)(f) GDPR).
Potential recipients of personal data
The potential recipients of personal data include
- Public authorities, if there is a legal obligation exists or this is necessary to safeguard legal claims
- Service providers and other business partners to the extent necessary to fulfill the respective purpose and permitted or required by a legal provision, or if the data subject has given consent.
Planned data transfer to countries outside the EU or international organizations
Should we transfer your data to a country outside the EU (countries that are not members of the European Union) or an international organization, we will provide you with all required information for this case.
Deadlines for the erasure of data
Personal data will be deleted in accordance with the legal or contractually established regulations on the disposal of data and considering any legal or contractually established retention periods. Most of these legal requirements are based on the German Commercial Code (HGB) and the German Fiscal Code (AO). The retention and documentation periods set out in these codes require data controllers to retain data for up to ten years after the end of a business relationship or pre-contractual legal transaction.
Other legal provisions may impose even longer retention periods on data controllers, for instance, for the retention of evidence in accordance with relevant statutes of limitations. The general statute of limitations is three years. Special statutes of limitation of up to 30 years or longer may, however, apply in certain situations. Personal data that are not subject to a legal or contractual retention period or erasure obligation must be deleted immediately after they are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
Your data protection rights (Art. 12 et seqq. GDPR)
The data subject has various data protection rights. These rights are explained below. The contact information indicated above can be used to exercise these rights.
Right of Access (Art. 15 GDPR), Right to Rectification (Art. 16 GDPR), Right to Erasure (Art. 17 GDPR), and Right to Restriction of Processing (Art. 18 GDPR).
Subject to the applicable legal regulations, you have the right to obtain information, at any time and free of charge, about all your personal data stored by the data controller, its origin, recipients and purpose of storage, as well as, where applicable, the right to rectification, erasure, or restricted processing of your data.
Right to object (Art. 21 GDPR)
Every data subject has the right to object to the processing of their personal data on the basis of Art. 6(1)(f) GDPR or for direct marketing purposes. In the event we receive an objection to the processing of your personal data, we will carefully review your objection on a case-by-case basis. If your objection to the processing of your personal data requires us to delete your data, we will delete your data in accordance with statutory retention requirements. Your objection does not affect the lawfulness of processing based on your consent before its withdrawal.
Right to data portability (Art. 20 GDPR)
You have the right to have data that we process automatically on the basis of your consent or to perform a contract provided to you or to a third party in a commonly used, machine-readable format. If you request the direct transmission of the data to another controller, this will only be done if it is technically feasible.
Obligation to disclose data
Every data subject has the right to know whether the provision of personal data is a legal or contractual requirement, or a requirement necessary to enter into a contract, as well as whether the data subject is obliged to provide the personal data and what the possible consequences of failure to provide such data would be.
Right to lodge a complaint with the competent supervisory authority
The data subject has the right to lodge a complaint with the competent supervisory authority if the data subject believes that the processing of personal data relating to him or her infringes his or her rights. The responsible supervisory authority for data protection issues is the data protection officer responsible for the federal state in which our company has its registered office. The data subject may also lodge a complaint with a supervisory authority responsible for the data subject’s habitual place of residence or place of the alleged infringement. A list of data protection officers and their contact information can be found at the following link: https://www.bfdi.bund.de/EN/Service/Anschriften/Laender/Laender-node.html.
Revocation of your consent to process data
Many data processing operations can only be performed with your consent. You can withdraw your consent at any time. All you need to do is send an informal email to this effect to one of the email addresses indicated above. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
SSL and/or TLS encryption
This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator. You can recognize an encrypted connection when you see the address bar of your browser change from “http://” to “https://” and when the lock symbol appears in your address bar.
When SSL and/or TSL encryption is activated, the data that you transfer to us cannot be read by third parties.
Server log files
When visiting our website, we process information in server log files, which your browser transmits to us automatically. The purpose of the processing to correctly display our Internet presence and to ensure the secure operation of our website.
Categories of processed data
Data are collected from the following categories:
- Type and version of browser
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of server request
- IP address
- Amount of data transferred
- Retrieval confirmation
- Name of accessed website
- Requesting Internet service provider
These data are not merged with other data sources.
Legal basis
Data are processed on the legal basis set out in Article 6(1)(f) GDPR and Section 25(2) 2 TDDDG (German Telecommunications Digital Services Data Protection Act). As the website operator, we have a legitimate interest in a correct presentation of our Internet presence and in ensuring the website’s secure operation.
Retention periods
The data processed in connection with the collection of server log files are stored as long as required for their specific purposes.
Cookies
Some of the websites of Würth IT GmbH use cookies. Cookies help make our website more user-friendly, effective, and secure. Cookies are small text files that are placed on your computer and stored by your web browser.
You can adjust your browser settings to make sure you are informed about the use of cookies and allow cookies only in individual cases, accept cookies only for certain applications, or decline all cookies and activate the automatic deletion of cookies when closing your web browser. When cookies are deactivated, some of the functions available on this website may no longer work properly.
We process cookies for the performance of contracts, wherever they are necessary for electronic communication processes or the provision of our services (e.g., shopping car function). Würth IT GmbH uses these cookies primarily to process your orders in the online shop. The storage of any other cookies (e.g., cookies to analyze your browsing behavior) is treated separately in this privacy statement, and processing is subject to your prior consent.
For an overview of active cookies, please refer to this page: Cookie Policy. Cookie settings can be changed on this page at any time.
"Do Not Track" settings
You can also control the storage of cookies by adjusting the "Do Not Track" (DNT) settings in your web browser. Depending on the browser, DNT is available either as a setting in the program settings or as a plug-in or add-on. By enabling this setting, the browser signals that you do not wish for your browsing behavior to be tracked by these tools without your explicit consent. If the setting is enabled, the tracking features of our tools will be anonymized. Please note that different web browsers may require different settings to enable DNT.
Alternatively, you can check on the deactivation page for EU consumers (https://www.youronlinechoices.com/uk/your-ad-choices) whether advertising cookies are being stored on your browser and disable them if so.
The privacy statement of Würth IT GmbH does not apply to applications, products, services, websites, or social media functions of third-party providers that can be reached through links we offer for information purposes. When using these links, you leave the website of Würth IT GmbH, resulting in the possibility that information about you may be collected or passed on by third parties. Würth IT GmbH has no influence whatsoever over the websites of third parties and makes no recommendations or warranties regarding these websites or their data protection practices. We therefore encourage you to read and review the privacy policies of any websites with which you interact very closely before allowing them to collect, process, and use your personal data.
We kindly ask you to read the contents of our data privacy policy regularly. We update our privacy policy as required by any changes to how we process personal data. Please note that any addresses and contact information of companies and organizations indicated in this privacy policy may change over time. Please verify the information before making contact.
Version: March 2026
Adolf Würth GmbH & Co. KG collects and processes the personal data provided in the form in order to process the requested request for you. Please note the marking of the mandatory fields on the forms. The legal basis for this processing of the mandatory data is Art. 6 (1) (b) GDPR, implementation of a pre-contractual measure. The processing of the data voluntarily provided by you is carried out on the basis of Art. 6 (1) (f) GDPR. According to this, processing is permissible that is necessary to protect our legitimate interests. Our legitimate interest is to have contact with you, our customers, to improve the quality of our advice and to be able to contact you more easily if you have any questions. The data collected will only be stored by us for as long as it is necessary to process your request and to contact you. After that, they will be deleted.
Additional data protection information, in particular on your rights to information, correction, deletion, restriction of processing, objection and complaint, can be found in our privacy policy.