Data protection

HomeData protection

Data protection

We are delighted that you are visiting our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to take this opportunity to inform you about which of your personal data we collect when you visit our website and for what purposes it is used.

This privacy policy applies to the JOHS. THOMS website, which can be accessed at the domain jthoms.de and its various subdomains (‘our website’).

1. Data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally.

Data collection on this website
Data processing on this website is carried out by the website operator. Their contact details can be found in the legal notice on this website.

2. Responsible party
for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)
JOHS. THOMS GmbH & Co. KG
Geschwister-Beschütz-Bogen 6
22335 Hamburg

3. Data Protection Officer
Mario Barthel
Business address INNAVIS Treuhand GmbH & Co. KG
Gutenbergstraße 1
26632 Ihlow Riepe
barthel@innavis.de

4. Hosting
This website is hosted by an external service provider (web host). Personal data collected on this website is processed on the host's servers. The web host is tts marketing, Hamburg corresponding contract for order processing has been concluded with the web host.
Processed data may include:

  • IP addresses
  • Meta and communication data
  • Website accesses

Processing is carried out on the basis of Art. 6 (1) lit. f GDPR (legitimate interest in the secure and reliable provision of the website).

5. Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits. These include, for example:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.

6. Contacting us
If you send us enquiries by email, your details, including the contact details you provide there, will be stored for the purpose of processing the enquiry.
Legal basis:
Art. 6(1)(b) GDPR (contract or pre-contractual measures)
or Art. 6(1)(f) GDPR (legitimate interest).

7. Cookies
This website only uses cookies that are necessary for the operation of the website. Cookies are small text files that are stored on your device.
Legal basis:
Art. 6 para. 1 lit. f GDPR (legitimate interest)

8. Your rights
Under the conditions of the legal provisions of the General Data Protection Regulation (GDPR), you as the data subject have the following rights:

  • Information pursuant to Art. 15 GDPR about the data stored about you in the form of meaningful information about the details of the processing and a copy of your data;
  • Rectification pursuant to Art. 16 GDPR of inaccurate or incomplete data stored by us;
  • Deletion pursuant to Art. 17 GDPR of the data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims;
  • Restriction of processing pursuant to Art. 18 GDPR, insofar as the accuracy of the data is disputed, the processing is unlawful, we no longer need the data and you refuse to have it deleted because you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing pursuant to Art. 21 GDPR.
  • Data portability pursuant to Art. 20 GDPR, insofar as you have provided us with personal data within the scope of consent pursuant to Art. 6(1)(a) GDPR or on the basis of a contract pursuant to Art. 6(1)(b) GDPR and this data has been processed by us using automated procedures. You will receive your data in a structured, commonly used and machine-readable format, or we will transfer the data directly to another controller, insofar as this is technically feasible.
  • Objection pursuant to Art. 21 GDPR to the processing of your personal data, insofar as this is based on Art. 6(1)(e), (f) GDPR and there are reasons for this arising from your particular situation or the objection is directed against direct marketing. The right to object does not apply if there are compelling legitimate grounds for the processing or if the processing is for the establishment, exercise or defence of legal claims. If the right to object does not apply to individual processing operations, this is indicated there.
  • Revocation of your consent in accordance with Art. 7 (3) GDPR with effect for the future.
  • Complaint pursuant to Art. 77 GDPR to a supervisory authority if you believe that the processing of your personal data violates the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence, your place of work or our company headquarters.

9. Withdrawal of consent
Many data processing operations are only possible with your express consent. You may withdraw your consent at any time.

10. SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons.

11. Current status and changes to this privacy policy
This privacy policy is currently valid and was last updated in February 2026.
Further development of the website or changes in the law may necessitate adjustments to this policy.