Britax Römer Privacy Policy websites and services


1. About us
2. Why we process your data
3. Which data we collect and process from you
4. Who has access to your data and to whom we transmit your data
5. Storage periods
6. Your rights
7. Use of our website - profiling, cookies and web tracking
8. Supplementary notes and provisions on individual services

1. About us

BRITAX RÖMER Kindersicherheit GmbH is responsible for the collection, processing and storage of your data. You can find details about us in our imprint. Given the above, we act as the controller of your personal data within the scope specified below.

The careful handling of your personal data has the highest priority for us. In processing, we comply with the statutory provisions, e.g. the General Data Protection Regulation (GDPR) and the associated national provisions.

This data protection declaration applies to

Since we would like to give you a comprehensive overview of the processing of personal data in our company, you will find below an overview of all our services in the context of which we collect and process personal data.

If separate or additional conditions apply to individual services or we ask you for your consent, we will point this out to you separately before using the respective service.

We also take various security measures to protect your personal data. For example, transmission between your web browser and our servers is always transport encrypted; in addition, we maintain a variety of technical and organizational measures to always protect your data.

2. Why we process your data

You can use our website without disclosing your identity. In specific cases (e.g. in relation to an inquiry about our products), we will ask you for your name and other personal information. It is your free decision whether you enter this (extended) data. Data that we absolutely need from you to provide our services are marked as such.

Your personal data is collected and processed for the following purposes on the basis of the following legal bases:

- communication and response to your inquiry pursuant to Art. 6 para. 1 let. f) GDPR;
- external presentation and advertising pursuant to Art. 6 para. 1 let. f) GDPR;
- consent pursuant to Art. 6 para. 1 let. a) GDPR;
- ensuring the proper operation of a data processing system in accordance with Art. 6 para. 1 let. c) and f) GDPR;
- applicant selection procedures within the framework of a recruitment process on the basis of Art. 6 para. 1 let. a), b) GDPR.

3. Which data we collect and process from you

We collect different categories of personal data from you. Personal data is all information relating to an identified or identifiable natural person, whereas an identifiable natural person is one who can be identified directly or indirectly, in particular by assignment to an identifier such as a name. Personal data includes, for example, information such as your name, your address and your telephone (if stated). Statistical information that cannot be directly or indirectly associated with you - such as the popularity of individual websites of our offer or the number of users of a page - is not personal data. Data is collected directly and indirectly. In both cases, data will only be collected to the extent necessary; the data will only be processed for the purposes stated under point 2. It is your decision whether you want to transmit data to us that optimizes the use of our services for you, but is not necessary for this. Corresponding data fields will be marked as 'voluntary'.

The data collected includes:

- vehicle data within the scope of the use of our Fit Finder®;
- job candidate data, for the execution of our online application procedure;
- data that you actively and consciously transmit to us when using our services, incl. data provided when making an inquiry;
- further data that you voluntarily submit to us, e.g. data fields filled in by you and marked as 'voluntary.'

In addition, the following data about you is collected indirectly when using our services:

- Technical connection data, e.g. the page called up on our website, your IP address, shortened by the last three digits (except for payment transactions, where we must transfer the complete IP address to our payment provider for security reasons), date and time of the call, terminal device used. This is done to verify the authorization of actions and the authentication of the requesting user of our services. The legal basis is Art. 6 para. 1 let. f) GDPR. Our legitimate interest is to secure our web server, for example to defend ourselves against attacks, and to ensure the functionality of our services.
- Data collected as part of website tracking and e-mail.
If you use a store locator, we process this data to: (i) manage our website and follow internal procedures (e.g. resolve problems, analyse data and conduct tests, research, statistical surveys and questionnaires); (ii) improve our website and present its contents in a manner that is customized to you and your computer; (iii) enable you to use (upon request) the interactive functions of our services; (iv) support the secure operation of the website; (v) assess and understand the impact of our advertisements on you and other users, and display adverts that might be of interest to you; (vi) provide you and other website visitors with suggestions and recommendations related to goods and services that might be of interest to you and other users.

4. Who has access to your data and to whom we transmit your data

a) Personal data recipients

Access to your personal data stored by us is limited to our employees and the service providers commissioned by us, who have to deal with this personal data due to their tasks.

If third parties gain access to your data, we have obtained your permission or there is a legal basis for this.

We also use service providers to provide services and process your data (including hosting, sending letters or e-mails and maintaining and analyzing databases, website optimization and further developments, securing our web servers or for website tracking). Insofar as these special provisions apply, we have carried them out for you in the following for the respective service. The service providers process the data exclusively in accordance with our guidelines and instructions, and are obliged to comply with the applicable data protection regulations. All contractors have been carefully selected and will only have access to your data to the extent and for the time required to provide the services or to the extent to which you have consented to the processing and use of your data.

b) Data exchange within the group of companies

Data exchange within the group of companies to which we belong takes place within the EU/EEA and serves internal administrative purposes only. Insofar as personal data is transferred to our companies in third countries, this will take place on the basis of the EU Standard Treaty 2010 pursuant to Art. 46 para. 2 let. c GDPR in conjunction with the decision of the EU Commission of 05.02.2010 (2010/87/EU).

By group of companies we mean affiliated companies within the meaning of Art. 4 item 19 GDPR.

c) Transfer to third countries and legal basis

The servers of some of the service providers we use are located in the USA and other countries outside the European Union. Companies in these countries are subject to a data protection law that does not generally protect personal data to the same extent as is the case in the Member States of the European Union. If your data are processed in a country that does not have a recognised high level of data protection such as the European Union, we use contractual regulations or other recognised instruments to ensure that your personal data are adequately protected. We also expressly point this out within the scope of the individual services.

If personal data is transferred to third countries, this will be done on the basis of the EU Commission's decision on appropriateness to the EU-U.S. Privacy Shield pursuant to Art. 45 GDPR or the EU Standard Treaty 2010 pursuant to Art. 46 para. 2 let. c GDPR in conjunction with the decision of the EU Commission of 05.02.2010 (2010/87/EU) or your consent pursuant to Art. 49 para. 1 let. a) GDPR.

d) Transmission to law enforcement and criminal investigation authorities

In exceptional cases we transmit personal data to law enforcement and criminal investigation authorities. This is done on the basis of corresponding legal obligations, e.g. the Fiscal Code and the Money Laundering Act.

5. Storage periods

We store personal data within the framework of legal regulations or your consent.

We use the following criteria to determine the concrete storage period:

We store the personal data until the purposes for which they were collected cease to apply (e.g. upon termination of a contractual relationship or through the last activity, if there is no continuing obligation, or in the event of a revocation of your consent for the specific data processing).
Further data will only be stored if
- legal storage obligations (e.g. according to AO and HGB) exist;
- the data is still needed to assert and exercise legal claims or to defend against legal claims, e.g. due to technological and forensic requirements to defend against attacks on our web servers and their prosecution;
- the deletion would be contrary to the legitimate interest of the data subjects;
- another exception pursuant to Art. 17 para. 3 GDPR applies.

6. Your rights

You have a number of legal rights to which we would like to draw your attention below. Of course, our data protection officer is also available to answer any questions you may have about your personal data that we have collected and processed using the contact details given below.

a) Right to information and data transferability

You have a right of access to the personal data we process concerning you at any time.

If the data processing is based on your consent or on a contract pursuant to Art. 6 para. 1 b) GDPR, you may also request, pursuant to Art. 20 para. 1 GDPR, to receive the personal data stored about you in a structured, current and machine-readable format. At your request, we will also forward the data directly to the recipient of your choice.

b) Right to rectification, restriction and deletion

Furthermore, in accordance with Articles 16 to 18 GDPR, you may request us to correct, restrict (block) or delete your personal data if we have processed the data incorrectly, if there is a reason for restricting further data processing, or if data processing has become illegal for various reasons, or if its storage is inadmissible for other legal reasons. We would like to point out that your right to deletion may be restricted by retention periods arising from applicable laws.

c) Right of objection

If data processing is based exclusively on our legitimate interest pursuant to Art. 6 para. 1 f) GDPR, you may object to this processing pursuant to Art. 21 para. 1 GDPR. Then we will stop processing your data unless we can prove grounds for processing worthy of protection which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend a legal claim. Furthermore, you always have the right to object to the use of your data for the purpose of direct advertising with effect for the future pursuant to Art. 21 para. 2 GDPR

d) Right of revocation

If you have allowed us to process your personal data by giving your consent, you have the right to revoke such consent with effect for the future, pursuant to Art. 7 Para. 3 GDPR, which will not affect any prior processing.

e) Right of appeal to the supervisory authority

You are free to complain to a supervisory authority if you believe that our processing of your personal data violates GDPR or other national and international data protection laws.

The contact details of the Polish supervisory authority are as follows:

President of Personal Data Protection Office (Stawki 2, 00-193 Warsaw)

f) Our and Data Protection Officer’s contact details

We have designated a Data Protection Officer. If you wish to ask any questions, discuss any doubts or exercise your rights, you can send us a message to the following contact details:

BRITAX RÖMER Kindersicherheit GmbH
Theodor-Heuss-Straße 9
89340 Leipheim
Telefonn: +49 (0) 8221-3670-0
Telefax: +49 (0) 8221-3670-210

7. Use of our website - profiling, cookies and web tracking

a) Basic information on cookies and opt-out options

We use so-called cookies in some areas of our website, e.g. to recognize the preferences of visitors and to be able to design the website accordingly. This facilitates navigation and a high degree of user-friendliness of a website. Cookies also help us to identify particularly popular areas of our website. Cookies are small files that are stored on a visitor's device. They allow information to be stored for a certain period of time and to identify the end device. For better user guidance and individual service presentation, we use permanent cookies.

We also use so-called session cookies, which are automatically deleted when you close your browser. You can set your browser so that it informs you about the placement of cookies. This makes the use of cookies more transparent for you.

We only use non-technically necessary cookies after your express consent, which you can of course revoke at any time. For that purpose, upon your first visit at our website, we will ask you to express a consent for our use of cookies.

As part of our cookie information on our website, you have agreed to the following statement in this regard:

Cookies Settings

We use cookies in order to offer the best website functionality. This includes cookies that are necessary for the website to operate, as well as cookies used for statistical purposes, additional functions or display of personalized content. You can decide which cookies to allow. Please note that due to your settings, not all website functions might be available. Further information is provided in our Privacy Policy.
Below the statement, there are three checkboxes where you can choose the purposes for which you allow cookies. Such purposes may include statistics, additional functions and customization.

If you completely exclude the use of cookies, you cannot use certain functions of our website - including the possibility of cookie-based opt-out from tracking. Please allow the opt-out cookies of those services for which you wish to prevent tracking.

Please also note that deleting all cookies will also delete opt-out cookies. You may therefore have to reset them. Cookies are also browser-bound, i.e. they must be set separately for each browser you use on each device you use. You will find the necessary links in the description of the respective service below.

The following cookies are used by us - if you allow this and have not set one or more opt-out cookies - for a more detailed purpose:

Name of the Cookie Intended use Storage duration Technically necessary Revocation of consent (if cookie is not technically necessary)
__cfduid Is used to identify individual clients behind a shared IP address and apply security settings on a per-client basis 1 year Yes  
utag_main Main cookie for Tealium iQ tag management, used to store system information, detailed info in the link 1 Year Yes  
CONSENTMGR Stores user's opt-in/opt-out selection 3 months Yes  
Google Universal Analytics
_ga We implement Google Analytics to collect information about how visitors use our website. We use this information to help us to improve our website and the user experience. 2 years No  
_gid We implement Google Analytics to collect information about how visitors use our website. We use this information to help us to improve our website and the user experience. 1 day No  
__olapicU Olapic uses this to track a "single" session throughout the checkout process. In this case, they drop a cookie key and every time we track an event, they send the cookie value along with the event information. 1 month No  
Facebook visitor action pixel
_fbp We use Facebook pixels to measure the effectiveness of our advertising on Facebook through the behavior of visitors to our site. 1 day No  
_hjIncludeInSample We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. 1 year No  

b) Google Analytics

This website uses Google Analytics, a web analysis service of Google LLC ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google will reduce your IP address within Member States of the European Union or in other countries party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website usage and Internet usage. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. One way to object to web analysis by Google Analytics is to set an opt-out cookie that instructs Google not to store or use your data for web analysis purposes. Please note that with this solution the web analysis will only not take place as long as the opt-out cookie is stored by the browser. If you would like to set the opt-out cookie now, please click

You may also refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link. The current link is:

Recipient of the Data: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA


c) Store locator (“Where to buy?) / Google Maps


Our website uses the 'Google Maps' service in order to make it easier to find a store where our products are sold. When Google Maps is called up on this website, data is transmitted to Google.

With respect to the Google Maps service, the co-controller is:

Google LLC
1600 Amphitheatre Pkwy
Mountain View
CA, 94043 USA

Responsible for data processing of persons living within the European Union/EEA and Switzerland:
Google Ireland Ltd.
Gordon House, Barrow Street, Dublin 4

In an agreement pursuant to Art. 26 (1) GDPR, the coc-controllers determined who fulfills which obligation pursuant to the GDPR:

The agreement within the meaning of Art. 26 para. 1 GDPR with Google can be found under the following link:

Contact details for data protection:

The Google Privacy Officer can be contacted using the following web form:

Categories of data subjects:

Visitors to our site who use Google Maps

Categories of personal data:

Data that Google processes about our website visitors can be taken from the following link:, supplemented by special personal data protection rules for Google Maps:

Origin of data:

Google receives the data from the data subjects directly via our website.

Legal basis for data processing:

We use Google Maps only with your consent, Art. 6 para. 1 let. a) GDPR.
The legal bases on which Google bases its data processing can be found in the following link:, supplemented by special personal data protection rules for Google Maps:

Purposes of data processing:

We use Google Maps to help you find a store where our products are sold.:

The purposes Google pursues with the data processing can be taken from the following link:, supplemented by special personal data protection rules for Google Maps:

Storage period:

We do not store any data.
The storage and deletion of the data is the duty of Google. The information on this can be taken from the following link:, supplemented by special personal data protection rules for Google Maps:

Categories of recipients:

We or our employees and service providers have no access to the data processed by Google.
The recipient categories to which Google discloses the data, as well as information on the internal data exchange within the group, can be found in the following link:, supplemented by special personal data protection rules for Google Maps:

Data transfers to third countries:

When Google Maps is used, the data is also processed by Google LLC. The associated transfer of data to the USA as a third country is secured by the EU-US Privacy Shield certification of Google LLC:
Due to the agreements on the EU-US Privacy Shield, the Google LLC must grant the data subjects various rights, which they can then assert directly against the Google LLC:
Google will transfer, store and otherwise process the data in the United States, Ireland and any other country in which Google does business, regardless of the residence of the data subjects. The associated data transfers to third countries are secured by an adequacy decision of the EU Commission pursuant to Art. 45 GDPR or by suitable guarantees pursuant to Art. 46 GDPR:

Scope of a profiling or an automated individual decision based on the collected data:

If the persons concerned are tracked by collecting their data, whether through the use of cookies or comparable techniques or by storing the IP address, Google is obliged to inform about this. The information can be obtained from the following link:, supplemented by special personal data protection rules for Google Maps: 

Rights of data subjects:

Joint controllers must grant data subjects various rights with regard to the processing of their data. The rights to which data subjects are entitled can be found in our Privacy Policy. These can be asserted directly against Google.
The regulatory authority responsible for Google is:
Data Protection Commission
21 Fitzwilliam Square, Dublin 2
D02 RD28, Ireland

d) Google AdWords

Our website uses the 'Google AdWords' service, which enables marketers to place ads in Google search hit lists and on the Google advertising network. This is done using predefined keywords, which are only displayed in the hit lists if a keyword-relevant search is performed.

Google AdWords aims to advertise our website by displaying relevant advertising on the websites of third parties, in the hit lists of Google search and the presentation of relevant third-party advertising on our website.

By clicking on a Google ad referring to our website, Google sets a cookie. The cookie enables us and Google to track whether you accessed our website via an AdWords ad and generated revenue.

The data collected in this way is used by Google to compile statistics (e.g. total number of users referred via Google AdWords, success of our AdWords campaign) for our website. Neither we nor other Google AdWords advertisers receive information from Google that could identify you.

However, the cookies set are used to store personal information, such as the websites you visit. Google may share this information with third parties.

You can object to interest-based advertising by Google at any time by clicking on the following opt-out link:

We also use Google AdWords to collect information about which of our products or services you are interested in. With it we fill so-called remarketing lists in Google AdWords by means of which Google AdWords ads can be played out more specifically to you.

To measure the effectiveness of AdWords ads, we also transfer the transactions made on our site to Google AdWords. This helps us to better tailor our marketing for future activities.

Recipient of the data: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA


e) Tealium

Tealium is a Consumer Data Platform to which information about the use of the website is sent. Tealium collects motion and behavioural data on the website and fills remarketing lists which can later be accessed via Google Adwords. Furthermore, all transactional data about purchases are sent to Tealium, as e-mails for order confirmations or e-mails for newsletters (if subscribed) are triggered by Tealium. Tealium enables us to have a consistent view of our visitors and website customers and ensure that we communicate with them as effectively as possible.

f) Social Media Buttons

Our website uses social media buttons (Facebook, YouTube, Instagram) to enable you to interact with third parties.

These social media buttons are not integrated as plug-ins via a so-called iFrame, but are stored as links. By clicking the social media buttons you will be redirected to the page of the respective provider. The relevant provider is then responsible for compliance with the data protection regulations and for the correctness, up-to-dateness and completeness of the information provided there for data processing within the meaning of Art. 4 No. 17 GDPR.

g) Facebook Pixel

We use the so-called "visitor action pixel" of Facebook Inc. within our internet presence.

This allows the behavior of registered Facebook users to be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows us to measure the effectiveness of Facebook ads for statistical and market research purposes. The information we collect is anonymous to us, which means we do not see the personally identifiable information of individual users. However, this data is stored and processed by Facebook and we will inform you about this according to our level of knowledge. Facebook may link this information to your Facebook account and may also use it for its own promotional purposes, in accordance with Facebook’s Privacy Policy You may enable Facebook and its affiliates to serve advertisements on and off Facebook. A cookie may also be stored on your computer for these purposes.
The legal basis for the use of this service is Art. 6 para. 1 sentence. 1 letter a) GDPR. i.e. your consent. Your consent can be revoked as follows: (Link to deactivate consent) As a registered user, you can also object to the collection by Facebook pixels and use of your data to display Facebook ads at the following address:
Recipient of the data: (1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are resident in the EU, Facebook Ireland (Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook")))
Privacy-Shield information:

h) Hotjar

We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices (in particular device's IP address (captured and stored only in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), preferred language used to display our website). Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on an individual user. For further details, please see Hotjar’s privacy policy by clicking on this link .
You can opt-out to the creation of a user profile, Hotjar’s storing of data about your usage of our site and Hotjar’s use of tracking cookies on other websites by following this opt-out link.

8. Supplementary notes and provisions on individual service

a) Newsletter

At your request, we will send you our news-letter on the topics you have chosen as well as current information about our company. Please note that we cannot start the sub-scription before you have confirmed your subscription request in the course of our double opt-in process. The basis for data processing is consent (Article 6 section 1 letter a) GDPR).
The personal data collected in the newslet-ter registration process will be used for per-sonalising the newsletter (e.g. to address you by your name) and sending it to you. You may revoke your consent to the pro-cessing of personal data that you have giv-en us at any time with effect for the future. For the purpose of revoking your consent, each newsletter contains a link; alternative-ly, you are welcome to contact us directly so that we can implement your revocation. Details of the consent given to us will be communicated to you in the Double-Opt-In-Mail.
Our newsletter includes functions and content of the service of Segmanta, Rothschild Boulevard 45, Tel Aviv, Israel 6688306, IL (“Segmanta”). The privacy policy of Segmanta can be found here.

a) We use the services of Sendgrid Inc. 1801 California Street, Suite 500, Denver, Colo-rado 80202, USA ("Sendgrid") to send emails and notifications. Sendgrid is a cloud-based SMTP provider that functions as an email delivery system.
The privacy policy of Sendgrid can be found here.

Please note that the level of data protec-tion in the USA and Israel is not the same as in the EU.

b) Online application procedure

We offer you the opportunity to apply to us online by e-mail. The data entered by you and the attachments sent with it are transferred via an unsecured connection. We therefore recommend that you use encryption software to transmit your data to us. Your electronic application data will be received by the relevant personnel department and only forwarded to the department responsible for the respective position or to the persons in charge of processing. All parties involved treat your application documents with the necessary care and with absolute confidentiality.

As regards job candidates, we collect the required data specified in article 221 § 1 of the Labour Code, such as first name(s), last name, parents’ names, data of birth, contact details, educational background, professional qualifications, employment history, and other personal data whose provision is required under applicable legal regulations. The provision of data listed in article 221 § 1 of the Labour Code or other applicable regulations is a statutory requirement (for candidates hired on the basis of an employment agreement). Failure to provide such data will make it impossible to process your application. The basis for data processing in the aforesaid cases is fulfilment of a legal obligation (article 6 section 1 let. c) GDPR).

The personal data included in your application as part of a specific recruitment process can be processed due to the need to take actions (at your request) aimed at execution of an employment agreement (article 6 section 1 let. b) GDPR).

After completion of the applicant selection process, we will retain your application documents for another 3 months and then delete them or destroy any copies, unless we have concluded an employment contract with you. Should we wish to include your application documents in our applicant pool, we will contact you. In the notification you can actively consent to the further storage of your documents – in that case, the basis for data processing after the completion of the recruitment process is your consent (article 6 para. 1 let. a) GDPR).

c) Fit Finder®

We help you to find the best child seat for your child and your vehicle on our website. You can enter the make of the vehicle, the model and, if necessary, the year of construction and we will inform you which of our child seats are suitable for this vehicle. If your vehicle is not yet included in our list, you can provide us with relevant information. Additionally, we will ask you to specify your child’s age group and choose one of the three available options.

The personal data collected in this context is deleted directly after it has been sent to us and the corresponding information is issued by us and is not stored with other information.

d) Data processing for direct marketing purposes

Email advertising
To the extent permitted by law, we may also use your email address to send adverts and offers related to our products. The legal basis is Art. 6 para. 1 let. f) in conjunction with Recital 47 GDPR – if you provide your email address for that purpose. Our legitimate interest is to promote and advertise our products among our existing customers.

Of course, you can object to the processing of your data for advertising purposes at any time in the future. A message in text form to the above mentioned contact data is sufficient (as detailed above). We will then delete your data from our mailing list. Only the data proving your objection will be kept for the period corresponding to the statute of limitations arising from applicable laws, in accordance with art. 17 par. 3 let. e) GDPR, in order to demonstrate compliance with GDPR and ensure accountability (art. 6 par. 1 let. f) GDPR). During this period, however, your personal data will be blocked for further processing.