Privacy
1. Website Privacy Policy
We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).
Controller
The controller responsible for the described data collection and processing is named in the imprint.
Storage of Your IP address
We store the IP address transmitted by your web browser for a period of seven (7) days, strictly for the purpose of identifying, restricting and eliminating attacks on our website. After seven (7) days, we delete or anonymize your IP address. The legal basis for the processing of this personal data is provided for in Art. 6 para. 1 s. 1 lit. a GDPR.
Usage Data
When you visit our website, the data collected from the use of the website is temporarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:
• the page, from which the data is requested
• the name of the data file,
• the date and time of the query,
• the amount of data transferred,
• the access status (file transmitted, file not found),
• a description of the type of browser used,
• the IP address of the requesting computer shortened to such an extent that no reidentification of any persona data is possible.
The listed usage data is stored anonymously.
2. Data Transfer to Third Parties
Data Transfer to Third Parties
We transfer your data to service providers who support us in the operation of our website and the associated processes. This transference is made under the scope of a data processing agreement in accordance to Art. 28 GDPR. Our service providers are bound to us by strict instructions and contractual obligations. We use the following service providers: PLUTEX GmbH, www.plutex.de.
3. Cookies
Cookies
We use cookies on our website. Cookies are small pieces of data that are stored and read in your end-device. A distinction is made between session cookies, which are deleted when you close your browser, and permanent cookies, which are stored even after your visit has expired. Cookies may contain data that enables the recognition of the device being used. However, in some cases cookies only contain information on certain settings which are not personal data.
We use session cookies on our website. The data is processed in accordance to Art. 6 para. 1 s. 1 lit. a GDPR and in the interest of optimizing or enabling user guidance and improving our website presence.
Please be aware that you can set your browser to inform you when cookies are being stored or used on the website you are visiting. Thus, any use of cookies is transparent to you. You have the possibility to delete your browser configuration at any time and prevent any use of new cookies. In the event you refuse the use of cookies, please note that our web sites may not be displayed optimally and some functions are then no longer technically available.
4. Vimeo-Videos
Embedded Videos
On our websites we embed videos that are not stored on our servers. In order to ensure that calling up our web pages with embedded videos does not automatically lead to the reloading of third-party content, in a first step we only show locally stored preview images of the videos. This does not provide the third party provider with any information.
Only after a click on the preview image, content from the third party provider is loaded. The third party provider receives the information that you have called up our site and the usage data that is technically required in this context. We have no influence on the further data processing by the third party provider. By clicking on the thumbnail, you give us the consent to reload content from the third party provider.
The embedding takes place on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, provided that you have given your consent by clicking on the preview image. Please note that the embedding of many videos leads to your data being processed outside the EU or EEA. In some countries, there is a risk that authorities may access the data for security and surveillance purposes without you being informed or having the right to appeal. If we use providers in insecure third countries and you give your consent, the transfer to an insecure third country is based on Art. 49 para. 1 lit. a GDPR.
Provider:
Vimeo, USA
Adequate level of data protection:
No adequate level of data protection. The data is transmitted on the basis of Art. 49 para. 1 letter a GDPR.
Revocation of consent:
If you clicked on a thumbnail, the content of the third-party provider is immediately reloaded. If you do not want such reloading on other sites, please do not click on the thumbnails anymore.
5. Use of SalesViewer® technology:
This website uses SalesViewer® technology from SalesViewer® GmbH on the basis of the website operator’s legitimate interests (Section 6 paragraph 1 lit.f GDPR) in order to collect and save data on marketing, market research and optimisation purposes.
In order to do this, a javascript based code, which serves to capture company-related data and according website usage. The data captured using this technology are encrypted in a non-retrievable one-way function (so-called hashing). The data is immediately pseudonymised and is not used to identify website visitors personally
The data stored by Salesviewer will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them.
The data recording and storage can be repealed at any time with immediate effect for the future, by clicking on https://www.salesviewer.com/opt-out in order to prevent SalesViewer® from recording your data. In this case, an opt-out cookie for this website is saved on your device. If you delete the cookies in the browser, you will need to click on this link again.
6. Use of Walls.io:
Our website uses social media plugins or widgets from Walls.io. When these plugins are used, the IP address and cookie information are transmitted to Walls.io. Walls.io is operated by "Walls.io GmbH" in Vienna, Austria. IP address and cookie information are sent to walls.io's servers in Austria and Germany and logged there for technical reasons. This logging is simply a technical necessity to enable the functionality of the social media plugin or widget. This data is not passed on to third parties and is deleted after a maximum of 60 days. We have no influence on the scope of the data that the social network collects with the help of this plugin. Please refer to the data protection information of the respective social network for more information.
7. Contact Form
Contact form
You can contact us via our web contact form. In order to use our contact form we require your name and your email-address. You may provide us with further information, but you are not obligated to do so.
CONSENT
By submitting this contact form you agree to the electronic collection and storage of your personal data. The legal basis for processing is Art. 6 para. 1 s. 1 lit. a GDPR. We use your data exclusively for the processing of your request. You may withdraw your consent at any time, e.g. via an email to privacy@karlgross.de.
8. Applications
Applications
We process your personal data in accordance with applicable data protection regulations pursuant to § 26 BDSG . We process the data you provide us in the context of your application strictly for the purpose of selecting applicants. Data will not be processed for other purposes.
You determine the amount of data you want to send us in the context of your application. Applications are transferred electronically to our HR department and processed as quickly as possible. The transfer is encrypted. As a rule, applications are forwarded to the heads of the relevant departments in our company. Furthermore, your data will not be transferred to third parties. Your details will be treated confidentially in our company. If the application is unsuccessful, your documents will be deleted after 6 months.
If we may also consider your application for other or future job openings, please indicate this on your application. We will then process your data on the basis of Art. 6 para. 1 s. 1 lit. a GDPR.
9. Explanation of Data Security Measures
Data Security
To avoid unauthorized access to your data, we have implemented technical and organizational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology . You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with https://.
10. Rights as a User
Your Rights as a User
As a website user, the GDPR grants you certain rights when processing your personal data.
1. Right of access (Art. 15 GDPR):
You have the right to obtain confirmation at to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR.
2. Right to rectification and erasure (Art. 16 and 17 GDPR):
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data completed.
You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.
3. Right to restriction of processing (Art. 18 GDPR):
If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination.
4. Right to data portability (Art. 20 GDPR):
In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.
5. Right to object (Art. 21 GDPR):
If the data is processed pursuant to Art. 6 para. 1 s. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.
6.Right to lodge a complaint with a supervisory authority
Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringes data protection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.
11. Contact Details of the Data Protection Officer
Contact Details of the Data Protection Officer
Please contact our data protection officer if you have any further questions, suggestions or wishes regarding data protection:
Dr. Uwe Schläger
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen, Germany
Web: www.datenschutz-nord-guppe.de
E-Mail: office@datenschutz-nord.de
Phone: 0421 69 66 32 0