Otto's Original - Quality products since 1901

Privacy Policy

Data protection declaration

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with all statutory data protection regulations as well as with this data protection declaration.

  1. Responsible entity

EMIL OTTO Flux- und Oberflächentechnik GmbH
Eltviller Landstrasse 22
65346 Eltville
Tel.: 0 61 23 / 70460

represented by general manager Barbara Gessner

Data security official: Kristina Karius


  1. Collection and storage of personal data, as well as the nature and purpose of their use

When you access our website at the browser on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information will be collected without any action on your part and stored until its automatic deletion:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which access is made (so-called referrer URL)
  • The browser used and, where appropriate, the operating system of your computer and the name of your access provider
  • Language and version of the browser software

The above-mentioned data will be processed by us for the following purposes:

  • To ensure a smooth connection to the website
  • To ensure a comfortable use of our website
  • To analyse system security and stability
  • For further administrative purposes

The legal basis for the collection of data is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest is based on the above-mentioned purposes for data collection. We do not use the collected data to identify you personally.

In addition, we use cookies and analytics services when you visit our website.

For more details, see sections 4 and 5 of this data protection declaration.

  1. a) When you sign up for our newsletter

Provided you gave your express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR, we use your email address to regularly send you our newsletter. To receive the newsletter, all you need to do is provide your email address.

You can unsubscribe at any time, for example by following the link at the end of each newsletter. Alternatively, you can email your request to unsubscribe to at any time.

  1. b) Contact form and email inquiries

If you wish to contact us via the website or by email, in accordance with Art. 6 para. 1 p. 1 lit. a GDPR the transmission of your sender data is based on your voluntarily granted consent. This data is stored for the purpose of processing your inquiry. It is not passed on to third parties, unless applicable data protection regulations justify it or we are legally obliged to do so. You can revoke your consent at any time. In the event of a revocation, your data will be deleted immediately. Your data will also be deleted once we have processed your inquiry or the purpose of storage is no longer applicable.

  1. c) Orders

We collect personal data if you voluntarily provide it to us as part of the order, such as by filling in a relevant form. We store and use the collected data such as name, address, telephone number and email address for the purpose of rendering our services and to fulfil and process a contract concluded with you, as well as for our own marketing purposes. Once the contract has been fully executed, your data will be deleted taking into account statutory retention obligations, if you have not consented to its further use.


  1. Disclosure to third parties

Your data is not passed on to third parties for any purpose other than those listed below.

We pass on your personal data to third parties only in the following cases:

  • You have given express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR;
  • Passing on the data in accordance with Art. 6 para. 1 lit. f GDPR is required for the assertion, exercising or defence of legal claims and there is no reason to assume that you have an overriding legitimate interest in your data not being passed on;
  • In the event of there being a legal obligation to pass on the data in accordance with Art. 6 para. 1 p. 1 lit. c GDPR, and
  • this is legally permissible and required in accordance with Art. 6 para. 1 lit. b GDPR for the processing of contractual relationships.
  1. Cookies

We use cookies on our website. These are small files automatically created by your browser and stored on your device (laptop, tablet, smartphone etc.) when you visit our website. Cookies do not cause damage to your device, and they do not contain viruses, Trojans or other malware.

The cookie stores information related to the specific device you use. However, this does not mean that we can directly infer your identity from this.

The use of cookies serves to make you using our services more enjoyable for you. For example, we use so-called session cookies to detect that you have visited individual pages of our website. These are automatically deleted once you leave our website.

We also use temporary cookies which are stored on your device for a specified period of time to improve user-friendliness.  When you visit our website again to use our services, it is automatically recognised that you have already visited us and which entries and settings you have made so that you do not have to enter them again.

Furthermore, we use cookies to statistically analyse the use of our website and to evaluate it for you for the purpose of optimising our services (see section 5).  These cookies allow us to automatically know, when you return to our website, that you have already visited us.  These cookies are automatically deleted after a specified period of time.

The data processed by cookies is required for the aforementioned purposes in order to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 p. 1 lit. f GDPR.

Most browsers automatically accept cookies. However, you can configure your browser in such a way that no cookies are stored on your computer or a message appears before a new cookie is created.  Completely disabling cookies, however, may mean that you cannot use all of the features of our website.


  1. Analysis tools
  2. a) Tracking tools

The tracking measures listed below and used by us are carried out based on Art. 6 para. 1 p. 1 lit. f GDPR. With these tracking measures we want to ensure that our website is designed to meet requirements and is continually improved. Furthermore, we use the tracking measures to statistically analyse the use of our website and to evaluate it for you for the purpose of optimising our services. These interests are deemed legitimate within the meaning of the aforementioned provision.

The respective data processing purposes and data categories can be found in the relevant tracking tools.

  1. i) Google Analytics

We use Google Analytics, a web analytics service provided by Google Inc to design our web pages in line with needs and to continuously improve them. ( (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter referred to as “Google”). In this context, pseudonymised user profiles are created and cookies (see section 4) are used. The information generated by the cookie about your use of this website such as

  • Browser type/version,
  • Operating system used,
  • Referrer URL (the page previously visited),
  • Host name of the accessing computer (IP address),
  • Time of server request,

is transmitted to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services related to website and internet usage for the purposes of market research and the demand-oriented design of these internet pages. This information may be passed on to third parties insofar as the law requires this or if third parties process the data on another party’s behalf. Under no circumstances will your IP address be associated with other data stored by Google. The IP addresses are anonymised, which means that it is not possible to identify specific individuals (IP masking).

You can prevent the installation of the cookies by selecting the appropriate settings in your browser; please note, however, that in this case it is possible that you will not be able to use all the features of this website.

You can additionally prevent the collection of data generated by the cookie and associated with your use of the website (including your IP address), its transmission to, and its processing by Google by downloading and installing a browser add-on (

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent data collection by Google Analytics by clicking on this link. This sets an opt-out cookie, which prevents the future collection of your data when visiting this website. The opt-out cookie is only valid for this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you have to set the opt-out cookie again.

For more information on data protection in connection with Google Analytics, you can consult the Google Analytics help centre at (

  1. Social media plug-ins

On our website, based on Art. 6 para. 1 p. 1 lit. f GDPR, we use social plug-ins of the social networks Facebook, Twitter and LinkedIn to raise awareness of our company that way. The underlying advertising purpose is deemed a legitimate interest within the meaning of the GDPR. The responsibility for operation in compliance with data protection regulations lies with the respective provider. The integration of these plug-ins is based on the so-called two-click process in order to protect visitors to our website as much as possible.

  1. a) Facebook

On our website, we use social-media plug-ins of Facebook to make its use more personalised. To do this, we use the “LIKE“ or “SHARE” button. This is a service by Facebook.

If you access a page on our website that contains such a plug-in, your browser establishes a direct connection with the servers of Facebook. The content of the plug-in is directly transmitted to your browser by Facebook and the browser integrates it into the website.

The integration of the plug-in means that Facebook is informed that your browser has accessed the relevant page on our website even if you do not have a Facebook account or are not currently logged into Facebook. This information (including your IP address) is directly transmitted by your browser to a Facebook server in the USA and stored there.

If you are logged into Facebook, Facebook is able to directly associate the visit to our website with your Facebook account. If you interact with the plug-ins, such as by using the “LIKE” or “SHARE” button, the relevant information is also transmitted directly to a Facebook server and stored there. In addition, the information is posted on Facebook and can be seen by your Facebook friends.

Facebook can use this information for the purposes of advertising, market research and the needs-based design of Facebook pages. To do this, Facebook creates usage, interest and relationship profiles, to evaluate your use of our website with regard to the adverts shown to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services related to Facebook use.

If you do not want Facebook to associate the data collected via our website with your Facebook account, then you must log out of Facebook before visiting our website.

For information about the purpose and scope of data collection and its further processing and use of data by Facebook, as well as your applicable rights and settings options for protecting your privacy, please consult the data protection policy ( of Facebook.

  1. b) Twitter

Plug-ins of the social media network Twitter Inc. (Twitter) are integrated into our internet pages. You can recognise the Twitter plug-ins (tweet button) by the Twitter logo on our website. For an overview of tweet buttons click here (

When you access a page on our website that contains such a plug-in, a direct connection between your browser and the Twitter server is established. This enables Twitter to be informed that you have visited our website from your IP address. If you click on the Twitter “tweet” button while you are logged into your Twitter account, you can link the content of our website to your Twitter profile. This allows Twitter to associate the visit to our website with your user account. We must point out that, as operators of this website, we have no knowledge of the content of the data transmitted to Twitter and how Twitter uses the data.

If you do not want Twitter to associate your visit to our web pages to your Twitter account, please log out of your Twitter account.

You can find more details in the data protection policy of Twitter ((

  1. c) LinkedIn

Features and content by LinkedIn, offered by LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland, can be integrated in our online service. This may be content such as images, videos or texts as well as buttons with which users indicate that they like content. If the users are members of LinkedIn, LinkedIn is able to associate the accessing of the above-mentioned content and features with the user profiles there. LinkedIn data protection declaration: ( LinkedIn is certified under the Privacy Shield Framework, which guarantees compliance with the European data protection law ( (

  1. d) Google +

On our website we integrate the social plug-in of Google+ (Google plus), which can be recognised by the “+1” symbol on a white or coloured background. The plug-in is provided by Google Inc. (short: Google, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA).

When you visit a website with a Google+ button, a connection is established to the servers of Google. Google then transmits the content of the button and integrates it into the respective website. At the same time, Google receives information about which page was just visited. According to Google, personal data is not collected until the Google+ button is clicked. For members of Google+ who are logged in, even if there is no interaction, Google at least stores and processes the IP address.  We have no control over the amount of data stored in this context.

Users of Google+ who are logged into their account can recommend our website by clicking the “+1” button.  In this case, Google stores the IP address and the browser as well as the content for which +1 was given and the page. This information is stored in the user’s profile and can be displayed along with the user’s profile name and picture in Google services, which also includes search results. Google uses the data to improve their own services, among other things. For information about Google’s privacy policy and privacy settings, please go to:

  1. The rights of data subjects

You have the right:

  • in accordance with Art. 15 GDPR, to request information from us about your personal data processed by us. In particular, you can request information about processing purposes, the category of personal data, the categories of recipients to whom your data was or is being disclosed, the planned storage duration, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a right of appeal, the data source if it was not collected by us, as well as about the existence of automated decision-making including profiling and, where applicable, relevant detailed information;
  • in accordance with Art. 16 GDPR, to request that incorrect or incomplete personal data stored by us is corrected or completed immediately;
  • in accordance with Art. 17 GDPR, to request the deletion of your personal data stored by us, provided that its processing is not required to exercise the right to freedom of expression and information, to meet a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
  • in accordance with Art. 18 GDPR, to request that the processing of your personal data is restricted, in so far as you contest the accuracy of the data, its processing is unlawful but you decline their deletion and we no longer need the data but you need them to assert, exercise or defend legal claims or you have objected to their processing in accordance with Art. 21 GDPR;
  • in accordance with Art. 20 GDPR, to receive, in a structured, common and machine-readable format, the personal data you have provided us with or request their transmission to another responsible entity;
  • in accordance with Art. 7 para. 3 GDPR, to revoke your consent at any time. This means that we cannot continue processing your data based on this consent in the future and
  • in accordance with Art. 77 GDPR, to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your habitual residence or place of work or of our registered office.
  1. Right of objection

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 p. 1 lit. f GDPR, you have the right, in accordance with Art. 21 GDPR, to object to the processing of your personal data, provided there are reasons that arise from your special situation or the objection is directed against direct advertising. In the latter case you have a general right of objection, which we implement without you having to provide information about a special situation.

If you would like to exercise your right of revocation or right of objection, all you need to do is send an email to

  1. Data security

When you visit our website, we use the standard SSL method (Secure Socket Layer) in conjunction with the highest encryption setting supported by your browser in each case (256-bit encryption as a rule). If your browser does not support 256-bit technology, we use 128-bit v3 encryption instead. The closed key or lock icon in the lower task bar of your browser indicates whether the specific website page is transmitted in an encrypted form.

Moreover, we also use suitable technical and organisational security measures to protect your data from accidental or deliberate manipulation, partial or complete loss, destruction, and from unauthorised access by third parties. Our security measures are revised continuously in line with technological development.

  1. Updating and making changes to this data protection declaration

This data protection declaration is currently valid and was last updated in May 2018.

The further development of our website and its offerings or a change in legal or regulatory requirements may make it necessary to change this data protection declaration. You can access and print out the most recent version of the data protection declaration at any time on the website at