Data protection declaration Art. 13 DSGVO
We have prepared this document to inform you about how we process your personal data in connection with the use of our offer.
We are committed to comply with the legal provisions on data protection and always strive to take the principles of data avoidance and data minimisation into account.
1. Name and contact data of data controller and company data protection officer
1.1. Data controller
SBS Sondermaschinen GmbH
Querumer Straße 25
38104 Braunschweig
Germany
phone: +49 (0) 531 - 35 00 22
faxsimple: +49 (0) 531 - 35 09 13
Mail: info@sbs-sondermaschinen.de
1.2. Contact data of data protection officer
You can contact our external data protection officer, Mr. Klaus Mönikes, at the following address: klaus.moenikes@privsec.de oder datenschutz@sbs-sondermaschinen.de.
Your opinion about data protection is important to us. Please tell us what you think. Please send an email with your comments or questions to: datenschutz@sbs-sondermaschinen.de.
2. General information about data processing
We will provide you with detailed information in this context about the purpose or purposes of processing your personal data and we will also document your express consent to do so.
2.1. When do we collect and process personal data?
We only collect and process your personal data as a visitor to our website as is necessary to provide a properly functioning website together with its content and services; only data is processed which is actively transmitted to us by way of your entries.
The collection and processing of personal data may take place for various purposes, e.g. processing and fulfilment of your orders or their justification, administration of your account, improvement of the design, structure and functionality of the website and continuous improvement of our services, provision of information on products and services, an application, a contact, remote maintenance, etc..
The legal basis for the processing is Article 6 para. 1 lit. a), b), c) or f) DSGVO. With respect to the legal basis and for details, we would also refer you to the following notes.
2.2. Visits to our website
When you access our website, our system automatically collects data and information about the computer system of the accessing computer. The legal basis for processing is Article 6 para 1 lit. f) GDPR.
The following information is recorded without your intervention and is stored until it is automatically erased.
Each time our website is accessed, the IP address of the requesting computer stored anonymously (the last octet of the IP address is removed/overwritten for this purpose), the date and time of access, the name and URL of the file accessed, the website from which access was made (referrer URL), the browser used and, if applicable, the operating system of your computer as well as the name of your access provider are processed.
The IP address is not stored any further, as the log function for the web server is deactivated.
We set a session cookie for the proper operation, delivery and display of the website. Session cookies are automatically deleted after your visit.
2.3. Interested Parties (applications)
Should you apply for a situation vacant offered by us or make an unsolicited application, we shall process your data to action the application process and in order to make a decision on determining an employment relationship. The legal basis for such processing is Article 26 BDSG and subordinately Article 6 para 1 lit. f) GDPR.
If we do not consider your application, we delete your application and the submitted documents within three months after our decision. In order to be compliant with our statutory obligations for example in accordance with the German General Equal Treatment Act (AGG), we save the data as described based on our legitimate interests.
By withdrawing your application, you can effectively object to any further processing of your data at any time. Should we establish an employment relationship with you, we shall provide separate information concerning the processing of your data and your rights.
2.4. Interested parties and customers (contact requests)
If you send us a message by one of the contact options available (contact form, email address), personal data will be transmitted and stored. We use such data as given to us to process your request and there is no transfer of the data to third parties in this respect.
The legal basis for such actions is our legitimate interest to answer your request in accordance with Article 6 para 1 lit. f) GDPR. If the purpose of your request is to conclude a contract with us, an additional legal basis for data processing is then Article 6 para 1 lit. b) GDPR. Following on from your request and its processing, data will be erased no later than three months after receipt. The data will be erased as soon as it is no longer required to achieve the purpose for which it was collected, e.g. the matter at hand has been fully and finally clarified.
If we are legally obliged to store the data for a longer period of time the data will be erased after the relevant period has expired.
2.5. Evaluation
Your data is not subject to any form of personal evaluation. The statistical evaluation of pseudonymised or anonymised data records for the purpose of improving the website and for statistical purposes (number of users and page views) is stored. The IP data is also kept for reasons of system security.
The legal basis for processing is in accordance with Article 6 para 1 lit. f) GDPR.
3. Rights of data subject
In the event that your personal data is processed, you are considered a data subject in accordance with the GDPR and you have the following rights with respect to us as the responsible party.
3.1. Duty to provide information / information on the rights of the data subject
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis us as the controller.
In accordance with Art. 15 DSGVO, you have the right to information regarding all personal data stored by us. If you are also of the opinion that we are processing incorrect data about you and would like to correct it (Art. 16 DSGVO) or delete data about you (Art. 17 DSG-VO) or restrict its processing (Art. 18 DSGVO), please let us know using the contact information provided in the imprint. You also have the right to data portability (Art. 20 DSGVO) in relation to the data provided to us. Furthermore, you have the right to lodge a complaint with the supervisory authority in accordance with Art. 77 DSGVO.
Our competent supervisory authority:
The Data protection authority of the state of Lower Saxony, www.lfd.niedersachsen.de.
On consent:
If the processing is based on consent, you can revoke your consent at any time with effect for the future (Art. 7 DSGVO).
Objection:
If we process your data to protect our legitimate or third-party interests pursuant to Art. 6 (1) (f) DSGVO, you may object to the processing of your data for advertising purposes or otherwise - if there is a justified interest - to the processing of your data (Art. 21 DSGVO).
4. Security measures to protect your data
4.1. Protection of your privacy
We are committed to protecting your privacy and treating your personal data confidentially. We have taken extensive technical and organisational precautions to prevent manipulation, loss or misuse of your data stored by us. These actions are checked regularly and adapted in accordance with technological progress.
If we collect data, we (or our data processors) process your data on specially protected servers in the EU. In accordance with authorisation management, access is only granted to a small number of authorised persons who are responsible for technical, commercial or editorial support.
4.2. Encryption of website communication
It is pointed out at this time that it is possible, due to the structure of the internet, for rules of data protection and the above-mentioned security measures to be ignored by persons or institutions lying outside of our control.
With respect to security reasons and in order to protect the transmission of confidential content such as inquiries you send us as the website operator, this website uses SSL encryption. An encrypted connection/link is identified by the following information in the address line of the browser, which changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL encryption is activated, the data that you transmit to us cannot be read by third parties.
4.3. Unencrypted communication
It is possible for third parties to read unencrypted data transmissions, for example data sent in unencrypted emails. We have no technical influence on this matter. It is your responsibility to protect the data within your area of control against misuse by way of encryption or some other means.
5. Amendments to this policy
You are advised that we may update this data protection policy from time to time by publishing a new version thereof on our website. We may also inform you about such changes by email.
V.04.1_20.04.2022 18.02.2020 adaption of data protection policy to German Telecommunications and Telemedia Data Protection Act (TTDSG)