Data privacy

Data protection

MEC GmbH takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and the German Telemedia Act (TMG) as well as this data protection declaration.

The use of our website is generally possible without providing personal data. As far as on our sides personal data (for example name, address or e-mail addresses) are raised, this takes place, as far as possible, always on voluntary basis. This data will not be transmitted to third parties without your explicit consent.

We would like to point out that data transmission over the internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible.


The data protection declaration of MEC GmbH is based on the terms used by the European guideline and regulation provider when issuing the GDPR. Our data protection declaration should be easy to read and understand both for the public and for our customers and business partners. To ensure this, we would like to explain the terms used in advance.
Among others, we use the following terms in this data protection declaration:

  1. Personal data
    Personal data are all information relating to an identified or identifiable natural person (hereinafter "data subject"). Identifiable is a natural person who can be identified directly or indirectly, in particular by assignment to an identifier such as a name, an identification number, location data, an online identifier or one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
  2. Person concerned
    A data subject is any identified or identifiable natural person whose personal data are processed by the person in charge.
  3. Processing
    Processing means any operation or series of operations carried out with or without the aid of automated procedures in connection with personal data, such as the collection, organisation, arrangement, storage, adaptation or alteration, reading, retrieval, use, disclosure by transmission, dissemination or any other form of provision, comparison or linking, restriction, deletion or destruction.
  4. Restriction of processing
    A restriction of processing is the marking of stored personal data with the aim of restricting their future processing.
  5. Contract processors
    A processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the person in charge.
  6. Recipient
    A recipient is a natural or legal person, authority, institution or other body to which personal data is disclosed, whether or not it is a third party. However, authorities which may receive personal data under Union law or the law of the European Union within the framework of a particular investigation mandate shall not be regarded as recipients.
  7. Third parties
    A third party is a natural or legal person, authority, institution or other body other than the data subject, the person in charge, the data processor and the persons authorised to process the personal data under the direct responsibility of the person in charge or the data processor.
  8. Consent
    Consent shall mean any informed and unambiguous statement of intent by the data subject in the form of a declaration or other clear affirmative act by which the data subject indicates his or her consent to the processing of personal data concerning him or her.

Name and address of the person in charge

The person in charge within the meaning of the GDPR, other data protection laws in force in the European Union and other regulations regarding data protection is:
Sailershäuser Str. 1 - D-97531 Theres-Obertheres
Phone: +49 (9521) 95420-0
Fax: +49 (9521) 95420-122


Some of the website pages use so-called "cookies". Cookies do not cause any damage to your computer and do not contain any viruses. Cookies serve to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser the next time you visit our website.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited.

Server log files

The provider of the website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

    • Browser type and browser version
    • Operating system used
    • Referrer URL
    • Host name of the accessing computer
    • Time of the server request

These data cannot be assigned to specific persons. These data are not combined with other data sources. We reserve the right to check these data subsequently if we become aware of concrete indications of an illegal use.

Contact form and request for quotation

If you send us enquiries via the contact form, your details from the request form, including the contact data you have provided there, will be stored for the purpose of processing the enquiry and in the event of follow-up questions. These data will not be transmitted to third parties without your consent.

If you request an offer from a dealer via the configurator, your details from the request form, including the contact data you have provided there, will be sent to the selected dealer and to MEC GmbH for processing the offer and in the event of follow-up questions. This transmission of the data to third parties takes place exclusively for the preparation of offers or execution of orders as well as for the fulfilment of legal obligations.

By using the contact form or the request form you agree to the collection, processing and use of your personal data in accordance with the data protection declaration of consent. The consent is voluntary and revocable at any time.

The MEC GmbH, Sailershäuser Str. 1, 97531 Theres-Obertheres, collects the data for the preparation of the offer, contract implementation and fulfilment of the contractual and precontractual obligations.

The data storage and processing is necessary for the implementation of offer preparation or implementation of contracts and is based on Article 6(1b) GDPR. A disclosure of the data to third parties occurs only for offer preparation and order execution and for fulfilment of the contractual and precontractual obligations. The data will be deleted as soon as they are no longer required for anydata processing and  to meet any legal retention periods requirements.

Names, adresses, phone- and faxnumbers and email adresses, articlenumbers, bank details may be stored and processed linked to the above indicated purpose.

This consent is voluntary and can be revoked at any time. The revocation is to be sent by email to If cancelling by post, please write to data protection officer c/o, MEC GmbH, Sailershäuser Str. 1, 97531 Theres-Obertheres.

On receipt of your revocation we shall no longer use and process the data or rather delete them.

Routine deletion and locking of personal data

The person in charge shall process and store the personal data of the data subject only for the time necessary to achieve the data storage purpose or to the extent provided for by the European regulator or other legislator in laws or regulations to which the person in charge is subject.
If the storage purpose is not longer persued or if a storage period prescribed by the European regulator or other legislator in laws or regulations expires, the personal data is routinely locked or deleted in accordance with the legal provisions.

Right to information, correction, locking and deletion

You have the right to get information free of charge about your stored personal data, their origin and recipients and the purpose of data processing as well as a right to correction, locking or deletion of these data at any time. You can contact us at any time at the address given in the imprint if you have any further questions on the subject of personal data.

Google Analytics

This website uses functions of the web analysis service "Google Analytics". The provider is Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.

IP anonymization

We have activated the IP anonymisation function on this website. This will cause your IP address to be cut by Google within Member States of the European Union or in other contracting parties to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website and Internet use. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data.

Browser plugin

You may refuse the storage of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link:

Opposition to data collection

More information on how Google Analytics handles user data can be found in Google's data protection declaration:

Demographic features on Google Analytics

This website uses the "demographic features" function of Google Analytics. This allows to create reports that contain information on the age, gender and interests of website visitors. This data comes from interest-related advertising by Google and from visitor data from third-party providers. This data cannot be assigned to a specific person. You can disable this feature at any time from your Google Account ad preferences or opt-out of Google Analytics collecting your information as described in the "Opt-out of data collection" section.

Data protection declaration for the use of Facebook remarketing

We have integrated remarketing tags from the social network Facebook (Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland) into our website. When you visit our website, it will be established a direct connection between your browser and the Facebook server via remarketing tags. Facebook will receive the information that you have visited our website with your IP address. This allows Facebook to associate the visit to our website with your user account. We will be able to use the information obtained to display Facebook Ads. We would like to point out that we, as the provider of the website, are not aware of the content of the transmitted data or its use by Facebook. For more information, please visit Facebook's data protection declaration at If you do not wish for the collection of data via Custom Audience, please deactivate Custom Audiences here.

SSL encryption

This website uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as a website operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL encryption is activated, the data you transmit to us cannot be read by third parties.

Opposition to advertising mails

We herewith object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information material. MEC GmbH expressly reserves the right to take legal action in the event of unsolicited sending of advertising information, such as spam e-mails.

Legal basis of the processing

Art. 6 I lit. a GDPR serves our company as a legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case for example with processing operations necessary for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6 I lit. b GDPR. The same applies to such processing operations that are necessary to carry out pre-contractual measures, for example in cases of enquiries about our products or services. If our company is subject to a legal obligation requiring the processing of personal data, for example to fulfil tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or another natural person. For example, this would be the case if a visitor was injured in our company and his name, age, health insurance data or other vital information had to be passed on to a doctor, a hospital or other third parties. Then the processing would be based on Art. 6 I lit. d GDPR. Ultimately, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject do not prevail. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the person concerned is a customer of the person in charge (recital 47, second sentence, GDPR).

Deletion of personal data

Personal data are deleted as soon as they are no longer required for the purpose of their processing and after expiry of legal retention periods.

Changes to the data protection declaration

MEC GmbH reserves the right to adapt and modify the data protection declaration if necessary. The last change to this data protection declaration took place on 03/05/2018.

If you have any questions about data protection, please send an e-mail to