Privacy Policy of ALDI South and ALDI North
The protection of your personal data is very important to us. Our aim is not only to provide you with an interesting and comprehensive online offer, but also to protect your personal rights. The website from which this privacy policy was accessed is the responsibility of ALDI South and ALDI North. On this page, we inform you about the processing of personal data that takes place on the website and the responsibilities for the used technologies.
1. Joint Responsibility
In accordance with Art. 26 GDPR, we are jointly responsible for the data processing on the website:
a.) ALDI SÜD KG
Michael-Walz-Gasse 18d
5020 Salzburg
Austria
Email: privacy@aldi-sued.com
b.) ALDI Einkauf SE & Co. oHG
Eckenbergstraße 16
45307 Essen
Germany
You can reach the data protection officer via the e-mail address:
datenschutz@aldi-nord.de
Please note that if you contact us via this e-mail address, the content will not exclusively be read by the Data Protection Officer. Please request direct contact if you wish to exchange confidential information.
2. Purpose and Legal Base
We collect and use personal data of our users only insofar as this is necessary for the provision of a functional website, our content, and services as well as for the appropriate design and improvement of our offer. Herein lies also our legitimate interest in the data processing.
If the processing is necessary to protect a legitimate interest of our company or that of a third party and does not override the interests, fundamental rights and freedoms of the data subject, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.
Insofar as special national laws are appliable to the collection and usage of personal data for the provision of our offer, the processing of personal data is based on equivalent legal bases.
3. Recipients
To provide the technical infrastructure, we use service providers who support us in the designing of our websites and the implementation of our services and who may have access to your personal data in the process.
4. Storage Duration
Your personal data will be deleted or blocked as soon as the purpose of the storage no longer exists and a deletion does not conflict with any legally mandatory retention periods. Blocking or deletion of data also occurs when the storage period by the mentioned standards expires.
5. Data Subject Rights
You have the following rights:
- Right of access to personal data stored about you (Art. 15 GDPR)
- Right to have inaccurate personal data concerning you rectified and, if necessary, to have incomplete personal data completed (Art. 16 DSGVO)
- Right to erasure, provided that one of the grounds referred to in Art. 17 of the GDPR applies.
- Right to restriction of processing, provided that one of the grounds referred to in Art. 18 DSGVO applies
- Right to data portability according to Art. 20 DSGVO
- Right to lodge a complaint with the competent supervisory authority.
In addition, you may exercise the right to object on grounds relating to your particular situation (Art. 21 (1) GDPR)
You can contact us directly with questions or complaints at any time. To ensure a quick response, contact the following e-mail address: data-protection@hofer.at
6. Data Security
We take all necessary technical and organisational measures to protect your personal data from loss, unauthorised access and misuse. Your data is transmitted in encrypted form. This protects the communication between you and our web server and helps prevent misuse of the data by third parties.
7. Logfiles
With every access or attempted access, at least the following data is collected in a log file and stored for 7 days:
- Access, device, and, if applicable, approximate location data
- IP address
- Date and time of access
- Amount of data transferred
- Notification if the access was successful
- Notification why the access failed, if applicable
- Operating system and browser software of your device
The processing of the aforementioned data is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR to provide the website, to ensure system stability and to ensure data and operation security.
With your consent (Art. 6 (1) (a) GDPR), we also use analysing and retargeting tools as well as plugins and cookies as described under 3.2 to 3.5.
These (technically non-mandatory) technologies are only activated after your explicit consent (by clicking on the "OK" button in the cookie banner when accessing the website).
Technologies that require consent are not used if you click the "decline" button in the cookie banner when you access the page. If you wish to withdraw the previously given consent, you can do this by clicking on the "Decline" button below.
8. Data Processing by ALDI SOUTH
Piwik
This website uses the Piwik Pro Marketing Suite for web analytics. It is used to the website traffic. Piwik uses cookies that are stored on your device. The information collected by the cookies about your use of our website is transmitted via the internet to servers where it is stored. We use this data to identify returning visitors and to analyse and improve website usage.
In addition, Piwik collects the following data:
- Visitor IP addresses (in anonymised form)
- Approximate network location
- Duration of website visit
- Visited websites and views (website URL and website title)
- Referencing web pages
- Type of access device
- Type of web browser
- Operating system of the accessing device
- Clicks on downloads of available web page content
- Clicks on links to external websites
- Time taken to load the web page
- Screen resolution
- Browser language
- Colour depth
- Browser plug-ins (JavaScript, FlashPlayer, Java, Silverlight, Adobe Acrobat Reader etc.)
- Source (e.g. other website) from which you were linked to the page
The IP address is anonymised and stored for further processing (geolocation). No personal reference to you can be established during this further processing.
If you would like to prevent Piwik from processing your data, you can disable all cookies or delete placed cookies through your browser settings. You can obtain further information on this via the help function in your browser.
Only an anonymous measurement of reach and statistical analysis takes place. This is a performance measurement to find out how customers perceive our website. The measurement does not allow for conclusions about individual persons to be drawn.
9. Cookies
Cookies are text files that are stored by your browser on your device, contain information about your use of our website, and enable recognition when you return to the website. With the help of your browser settings, you can disable all cookies or delete placed cookies.
You can obtain information on this via the help function in your browser.
Every browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find the cookie settings for the most common browsers by clicking on the respective browser name:
The following table contains the cookies placed on our website with their respective purpose and operational duration.
| Name | Purpose | Functional Duration |
|---|---|---|
| _pk_id.<websiteID>. <domainHash> |
Piwik PRO Analytics: Identification and couting of returning visitors |
30 minutes. Is set to 30 minutes again upon renewed interaction. |
| _pk_ses.<websiteID>.<domainHash> | Piwik PRO Analytics: Increases the number of visitors within the "_pk_id" cookie if your visit was more than 30 minutes ago. | 30 minutes. Is set to 30 minutes again upon renewed interaction. |
| ppms_privacy_<website_id> | Piwik PRO Consent Manager: Storage of the visitors’ consent information |
With consent: 1 year Without consent: 30 minutes When interacting again, the lifetime is set to the respective value again. |
| ppms_webstorage | Piwik PRO: Prevents possible data loss due to existing mechanisms in some browsers, such as Safari's ITP. | In general, no end of life. Individual pieces of information are deleted when the related cookie has also expired. |
| stg_externalReferrer | Piwik PRO Tag Manager: Stores the URL of the website from which the visitor was directed to the website. | Session |
| stg_fired_<tag_id>_<trigger_id> | Piwik PRO Tag Manager: Used to determine if a tag has already been triggered during the session. | Session |
| stg_last_interaction | Piwik PRO Tag Manager: Determines if the last session is still running or if a new one has started. | 1 year. Is set to 1 year again upon renewed interaction. |
| stg_pk_campaign | Piwik PRO Tag Manager: Stores the name of the campaign that directed the visitor to the website. | Session |
| stg_returning_visitor | Piwik PRO Tag Manager: Used to determine if the visitor has been on the website before. | 1 year. Is set to 1 year again upon renewed interaction. |
| stg_traffic_source_priority | Piwik PRO Tag Manager: Stores the way a visitor accessed the website. | 30 minutes. Is set to 30 minutes again upon renewed interaction. |
| stg_utm_campaign | Piwik PRO Tag Manager: Stores the name of the campaign that directed the visitor to the website | Session |