Privacy Policy of ALDI South and ALDI North

The protection of your personal data is very important to us. Our aim is not only to provide you with an interesting and comprehensive online offer, but also to protect your personal rights. The website from which this privacy policy was accessed is the responsibility of ALDI South and ALDI North. On this page, we inform you about the processing of personal data that takes place on the website and the responsibilities for the used technologies.

1. Joint Responsibility

In accordance with Art. 26 GDPR, we are jointly responsible for the data processing on the website:

a.) ALDI SÜD KG

Michael-Walz-Gasse 18d
5020 Salzburg
Austria
Email: privacy@aldi-sued.com

b.) ALDI Einkauf SE & Co. oHG

Eckenbergstraße 16
45307 Essen
Germany

You can reach the data protection officer via the e-mail address:
datenschutz@aldi-nord.de

Please note that if you contact us via this e-mail address, the content will not exclusively be read by the Data Protection Officer. Please request direct contact if you wish to exchange confidential information.

2. Purpose and Legal Base

We collect and use personal data of our users only insofar as this is necessary for the provision of a functional website, our content, and services as well as for the appropriate design and improvement of our offer. Herein lies also our legitimate interest in the data processing.

If the processing is necessary to protect a legitimate interest of our company or that of a third party and does not override the interests, fundamental rights and freedoms of the data subject, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.

Insofar as special national laws are appliable to the collection and usage of personal data for the provision of our offer, the processing of personal data is based on equivalent legal bases.

3. Recipients

To provide the technical infrastructure, we use service providers who support us in the designing of our websites and the implementation of our services and who may have access to your personal data in the process.

4. Storage Duration

Your personal data will be deleted or blocked as soon as the purpose of the storage no longer exists and a deletion does not conflict with any legally mandatory retention periods. Blocking or deletion of data also occurs when the storage period by the mentioned standards expires.

5. Data Subject Rights

You have the following rights:

  • Right of access to personal data stored about you (Art. 15 GDPR)
  • Right to have inaccurate personal data concerning you rectified and, if necessary, to have incomplete personal data completed (Art. 16 DSGVO)
  • Right to erasure, provided that one of the grounds referred to in Art. 17 of the GDPR applies.
  • Right to restriction of processing, provided that one of the grounds referred to in Art. 18 DSGVO applies
  • Right to data portability according to Art. 20 DSGVO
  • Right to lodge a complaint with the competent supervisory authority.

In addition, you may exercise the right to object on grounds relating to your particular situation (Art. 21 (1) GDPR)

You can contact us directly with questions or complaints at any time. To ensure a quick response, contact the following e-mail address: data-protection@hofer.at

6. Data Security

We implement all available technical and organisational measures in order to protect your personal data against loss, unauthorised access, and misuse. Your information is transmitted in encrypted form. This protects communication between you and our web server and helps prevent the data from being misused by third parties. We use TLS (Transport Layer Security) in order to encrypt the respective information.

7. Log files

Each time you access or attempt to access our website, at least the following data is gathered and stored in a log file:

  • Access, device, and (if required) location-specific data
  • IP address - blurred therefore data subject is anonymous
  • Name of the file retrieved
  • Date and time of retrieval
  • Transferred data volume
  • Notification as to whether data retrieval was successful
  • Notification stating the reason for a failed attempt to retrieve data, if applicable
  • Operating system and browser software installed on your computer

The processing operations shall be carried out on the basis of Article 6, Section 1 (f) of the GDPR in order to provide our website, guarantee the stability of our system, ensure data protection and the reliability of our system, and implement legal provisions.

8. Data Processing & Cookies by ALDI SOUTH

Based on Article 6, Section 1 (a), (b), and (f) of the GDPR, we use self-developed and third-party technologies in order to support us with improving our offers and conducting website analysis and optimisation measures, among other things by creating and assessing pseudonymised user profiles.

If required in accordance with Article 6, Section 1 (a) of the GDPR, we will ask for your consent to the use of these technologies at your initial visit to our website. You may revoke your consent with future effect at any time by erasing the set cookies or using the respective opt-out links. Moreover, you can revoke your consent via the 'Your consent' window. Please note that the decision made here only applies to the cr.aldisouthgroup.com website. For further information on the technologies used as well as your possibilities to subsequently object to tracking, please refer to the following sections.

We use (third-party) cookies to offer you an optimal user experience and to make out website as attractive as possible for you, including in the future.

Cookies are small text files that enable the identification of a user and the analysis of your use of our website. When you visit our websites, we will place cookies that are absolutely necessary to operate the website or to provide a service that you have explicitly requested. Additionally, cookies are used to save optional settings of a previous website visit (e.g., language, interests etc.). Otherwise, we will only use cookies and similar technologies with your explicit consent. This section lists the cookies that are set in our website.

Technologies requiring your consent will not be used if you only select "necessary cookies " and accept it with "confirm selection" in the query dialog that appears when you access a page. You can delete any cookies saved in your device with your browser settings. To fully opt out of cookies, you have to set your browser to request your consent for creating or rejecting all cookies. However, please note that the use of some website areas may be restricted or impossible without setting cookies. You can deactivate cookies for collecting and managing usage-based online advertising by visiting www.youronlinechoices.com. Further options to prevent the use of individual tools can be found in the list below.

Each browser differs in the way cookie settings are managed. Refer to the help menu of each browser to find explanations on changing your cookie settings.

Click on the respective browser name to find information about cookie settings in the most common browsers

List of Cookies accepted (regarding your settings)

Name Provider Purpose Operational Duration Category
gpv_pn Adobe Collects the data of a page access in the corresponding variable 730 days Analytics
s_vnum Adobe Analytics Defines the number of visits made by a single user 365 days Analytics
s_cc Adobe Analytics Defines the number of visits made by a single user 365 days Analytics
s_nr Adobe Analytics Cookie uses a Unix time stamp that defines the current time and current visitor status 365 days Analytics
s_sq Adobe Cookie contains information about links a user clicked previously one session Analytics
s_invisit Adobe Analytics Records the information of a user's first website visit 30 mins Analytics