Privacy Policy of ALDI South and ALDI North

The protection of your personal data is very important to us. Our aim is not only to provide you with an interesting and comprehensive online offer, but also to protect your personal rights. The website from which this privacy policy was accessed is the responsibility of ALDI South and ALDI North. On this page, we inform you about the processing of personal data that takes place on the website and the responsibilities for the used technologies.

1. Joint Responsibility

In accordance with Art. 26 GDPR, we are jointly responsible for the data processing on the website:

a.) Hofer KG

Michael-Walz-Gasse 18d
5020 Salzburg
Austria

b.) ALDI Einkauf SE & Co. oHG

Eckenbergstraße 16
45307 Essen
Germany

You can reach the data protection officer via the e-mail address:
datenschutz@aldi-nord.de

Please note that if you contact us via this e-mail address, the content will not exclusively be read by the Data Protection Officer. Please request direct contact if you wish to exchange confidential information.

2. Purpose and Legal Base

We collect and use personal data of our users only insofar as this is necessary for the provision of a functional website, our content, and services as well as for the appropriate design and improvement of our offer. Herein lies also our legitimate interest in the data processing.

If the processing is necessary to protect a legitimate interest of our company or that of a third party and does not override the interests, fundamental rights and freedoms of the data subject, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.

Insofar as special national laws are appliable to the collection and usage of personal data for the provision of our offer, the processing of personal data is based on equivalent legal bases.

3. Recipients

To provide the technical infrastructure, we use service providers who support us in the designing of our websites and the implementation of our services and who may have access to your personal data in the process.

4. Storage Duration

Your personal data will be deleted or blocked as soon as the purpose of the storage no longer exists and a deletion does not conflict with any legally mandatory retention periods. Blocking or deletion of data also occurs when the storage period by the mentioned standards expires.

5. Data Subject Rights

You have the following rights:

  • Right of access to personal data stored about you (Art. 15 GDPR)
  • Right to have inaccurate personal data concerning you rectified and, if necessary, to have incomplete personal data completed (Art. 16 DSGVO)
  • Right to erasure, provided that one of the grounds referred to in Art. 17 of the GDPR applies.
  • Right to restriction of processing, provided that one of the grounds referred to in Art. 18 DSGVO applies
  • Right to data portability according to Art. 20 DSGVO
  • Right to lodge a complaint with the competent supervisory authority.

In addition, you may exercise the right to object on grounds relating to your particular situation (Art. 21 (1) GDPR)

You can contact us directly with questions or complaints at any time. To ensure a quick response, contact the following e-mail address: data-protection@hofer.at

6. Data Security

We take all necessary technical and organisational measures to protect your personal data from loss, unauthorised access and misuse. Your data is transmitted in encrypted form. This protects the communication between you and our web server and helps prevent misuse of the data by third parties.

7. Logfiles

With every access or attempted access, at least the following data is collected in a log file and stored for 7 days:

  • Access, device, and, if applicable, approximate location data
  • IP address
  • Date and time of access
  • Amount of data transferred
  • Notification if the access was successful
  • Notification why the access failed, if applicable
  • Operating system and browser software of your device

The processing of the aforementioned data is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR to provide the website, to ensure system stability and to ensure data and operation security.

With your consent (Art. 6 (1) (a) GDPR), we also use analysing and retargeting tools as well as plugins and cookies as described under 3.2 to 3.5.

These (technically non-mandatory) technologies are only activated after your explicit consent (by clicking on the "OK" button in the cookie banner when accessing the website).

Technologies that require consent are not used if you click the "decline" button in the cookie banner when you access the page. If you wish to withdraw the previously given consent, you can do this by clicking on the "Decline" button below.

8. Data Processing by ALDI SOUTH

Piwik

This website uses the Piwik Pro Marketing Suite for web analytics. It is used to the website traffic. Piwik uses cookies that are stored on your device. The information collected by the cookies about your use of our website is transmitted via the internet to servers where it is stored. We use this data to identify returning visitors and to analyse and improve website usage.

In addition, Piwik collects the following data:

  • Visitor IP addresses (in anonymised form)
  • Approximate network location
  • Duration of website visit
  • Visited websites and views (website URL and website title)
  • Referencing web pages
  • Type of access device
  • Type of web browser
  • Operating system of the accessing device
  • Clicks on downloads of available web page content
  • Clicks on links to external websites
  • Time taken to load the web page
  • Screen resolution
  • Browser language
  • Colour depth
  • Browser plug-ins (JavaScript, FlashPlayer, Java, Silverlight, Adobe Acrobat Reader etc.)
  • Source (e.g. other website) from which you were linked to the page

The IP address is anonymised and stored for further processing (geolocation). No personal reference to you can be established during this further processing.

If you would like to prevent Piwik from processing your data, you can disable all cookies or delete placed cookies through your browser settings. You can obtain further information on this via the help function in your browser.

Only an anonymous measurement of reach and statistical analysis takes place. This is a performance measurement to find out how customers perceive our website. The measurement does not allow for conclusions about individual persons to be drawn.

9. Cookies

Cookies are text files that are stored by your browser on your device, contain information about your use of our website, and enable recognition when you return to the website. With the help of your browser settings, you can disable all cookies or delete placed cookies.

You can obtain information on this via the help function in your browser.

Every browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find the cookie settings for the most common browsers by clicking on the respective browser name:

The following table contains the cookies placed on our website with their respective purpose and operational duration.

Name Purpose Functional Duration
_pk_id.<websiteID>. <domainHash> Piwik PRO Analytics:
Identification and couting of returning visitors
30 minutes. Is set to 30 minutes again upon renewed interaction.
_pk_ses.<websiteID>.<domainHash> Piwik PRO Analytics: Increases the number of visitors within the "_pk_id" cookie if your visit was more than 30 minutes ago. 30 minutes. Is set to 30 minutes again upon renewed interaction.
ppms_privacy_<website_id> Piwik PRO Consent Manager: Storage of the visitors’ consent information With consent: 1 year
Without consent: 30 minutes
When interacting again, the lifetime is set to the respective value again.
ppms_webstorage Piwik PRO: Prevents possible data loss due to existing mechanisms in some browsers, such as Safari's ITP. In general, no end of life. Individual pieces of information are deleted when the related cookie has also expired.
stg_externalReferrer Piwik PRO Tag Manager: Stores the URL of the website from which the visitor was directed to the website. Session
stg_fired_<tag_id>_<trigger_id> Piwik PRO Tag Manager: Used to determine if a tag has already been triggered during the session. Session
stg_last_interaction Piwik PRO Tag Manager: Determines if the last session is still running or if a new one has started. 1 year. Is set to 1 year again upon renewed interaction.
stg_pk_campaign Piwik PRO Tag Manager: Stores the name of the campaign that directed the visitor to the website. Session
stg_returning_visitor Piwik PRO Tag Manager: Used to determine if the visitor has been on the website before. 1 year. Is set to 1 year again upon renewed interaction.
stg_traffic_source_priority Piwik PRO Tag Manager: Stores the way a visitor accessed the website. 30 minutes. Is set to 30 minutes again upon renewed interaction.
stg_utm_campaign Piwik PRO Tag Manager: Stores the name of the campaign that directed the visitor to the website Session