Data Protection Statement
Protecting your data is our concern
We are pleased that you are interested in our company, our products, and our services, and want you to feel secure when visiting our website and when it comes to the protection of your personal data. Because we take this matter very seriously. Compliance with the provisions of the General Data Protection Regulation (GDPR) and the new Federal Data Protection Act (BDSG) is a matter of course for us.
We want you to know when we collect data about you, which data we collect, and how we use them. We have put in place technical and organisational measures to ensure that the regulations regarding data protection are fulfilled by us, as well as by any external service providers commissioned by us.
Personal data are information about your identity, including your name, address, telephone number, and e-mail address. This information is always processed in accordance with the requirements of the General Data Protection Regulation and with other regulations under data protection law applicable to our company.
In principle, there is no requirement for you to disclose your personal data when using our website. However, there are some cases where we need to process your personal data to enable us to provide you with the services you require.
The same applies, for example, if we need to send you information material or goods you have ordered or if we need to answer your specific questions. Where this is necessary, we advise you accordingly.
If there is no legal basis for processing these personal data, we request your consent to do so.
Furthermore, we only store and process data that you have provided to us voluntarily and, where applicable, data that we collect automatically when you visit our website (e.g., your IP address and the name of the pages accessed, the browser you used and your operating system, the date and time of access, search engines used, and names of downloaded files).
If you use our services, we only usually collect the data that we require to provide you with those services. If we ask you for other data, this information is optional. Personal data are only processed to provide the services requested and to protect our own legitimate interests.
– Other personal data provided by you (personal interests, etc.)
– Contract data (customer number, contract number, etc.)
– Content data (texts, photos, videos, etc.)
– Contact details (e-mail, phone numbers, etc.)
– Metadata (IP addresses, device information, etc.)
– Usage data (visited contents, access times, etc.)
Affected persons are users/interested parties of our offers.
Name and address of the body responsible for processing
Within the context of the General Data Protection Regulation, other data protection legislation applicable in EU Member States, and other data protection provisions, the responsible body is:
SSI SCHÄFER FRITZ SCHÄFER GMBH
57290 Neunkirchen/Siegerland, Germany
Tel. +49 2735 70-1
Fax: +49 2735 70-396
Data Protection Officer contact details
The contact details for our Data Protection Officer are as follows:
Herr Christian Volkmer
Projekt 29 GmbH & Co. KG
Our Data Protection Officer is available at all times for any questions or concerns you may have regarding data protection.
Intended use of personal data
We use the personal data provided by you to answer your questions, process your orders, or to provide you with access to certain information or services. When it comes to maintaining customer relationships, it may also be necessary for us, or a service provider commissioned by us, to use these personal data to provide you with information about product offers or to conduct online surveys to better satisfy our customers' questions and requirements. The legal basis for these types of processing is Article 6 para 1b, f) GDPR.
Naturally, we respect your wish not to provide us with your personal data in matters that are not related to supporting our customer relationship (particularly for direct marketing or market research purposes). We shall not sell or otherwise distribute your personal data to third parties.
We shall only collect process, and use the personal data you provide us with for the purposes communicated to you. We shall not forward your personal data to third parties without your express consent to do so.
The collection of personal data and their transmission to state institutions or authorities entitled to receive such information shall only take place to the extent required by law and/or if we are obliged to do so as a result of a court ruling. Our employees and those of service providers commissioned by us are obliged to comply with a duty of confidentiality to us and to abide by the provisions of the General Data Protection Regulation.
Data that are automatically captured when visiting our websites
When using our Internet pages, the following data is stored for organizational and technical reasons: The names of the pages you access, the browser you use and your operating system, date and time of access, search engines used, names of downloaded files and their IP address.
The information collected is required to correctly deliver the contents of our website. In addition, we evaluate this technical data anonymously and for statistical purposes only in order to be able to continuously optimize our Internet presence and make our Internet offerings even more attractive, and to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber-attack. This data is stored separately from other personal information on secured systems. No conclusions are drawn about individual persons. The processing is carried out based on our legitimate interest in an efficient and secure provision of our website, in accordance with Article 6 para. 1 f, Article 28 GDPR.
Contact opportunities via the website
Due to statutory obligations, our website contains information to enable you to make electronic contact with us quickly and communicate with us directly. This information includes an e-mail address and, where necessary, a contact form. The processing of the user's data is carried out in accordance with Article 6 para. 1 b GDPR.
If you contact us via e-mail or a contact form, the personal data you provide us with are stored automatically. These data, that you have voluntarily communicated to us, are used for the purpose of dealing with your request or making any relevant contact. No data will be forwarded to third parties.
Deletion and restriction of personal data
We only process the personal data of the individuals concerned in accordance with Articles 17 und 18 GDPR for as long as it is necessary to achieve the underlying purpose or for as long as was intended by statutory obligations governing our organisation. In accordance with the legal regulations, personal data will be deleted if they are no longer required or upon expiry of the legally prescribed term, unless we are bound by law to retain these data. In these cases, data, e.g. due to commercial or tax regulations of the AO or the HGB (German Commercial Code). In these cases, data is restricted.
· Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (Facebook), Data policy https://www.facebook.com/about/privacy/, Opt-Out-possibilities https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen or http://www.youronlinechoices.com/, EU US Privacy - Shield https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
· Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (Twitter), Data policy https://twitter.com/de/privacy, Opt-Out-possibilities https://twitter.com/personalization, EU US Privacy-Shield https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
· Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (Googl or Youtube), Data policy https://policies.google.com/privacy, Opt-Out-possibilities https://adssettings.google.com/authenticated, EU US Privacy-Shield https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
· LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland (LinkedIn) - Data policy https://www.linkedin.com/legal/privacy-policy, Opt-Out-possibilities https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, EU US Privacy Shield https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active
· XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany (Xing) - Data policy and Opt-Out-possibilities https://privacy.xing.com/de/datenschutzerklaerung
This website uses Google Analytics; a web analysis service provided by Google Inc. ("Google"). Usage includes the Universal Analytics mode, which makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID and thus analyse a user's activities across devices.
On our behalf, Google will use this information to evaluate your use of the website, compile reports on website activity and provide other services to us, the website operator, in connection with website use and internet usage.
Processing is carried out in accordance with Article 6 para. 1 sentence 1 a) GDPR based on your consent.
The recipient of the processed data is Google.
Personal data will be transferred to the USA under the EU-US Privacy Shield based on the European Commission's adequacy decision. You can retrieve the certificate at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
The data sent by us and linked with cookies, user IDs (e.g. user ID) or advertising IDs are automatically deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month.
You can revoke your consent at any time with effect for the future by preventing the storage of cookies by a corresponding setting of your browser software; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB.
You may also use opt-out cookies to prevent future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt-out on all systems used.
If you click here, the opt-out cookie will be set:
Rights of people concerned
a. Right of access
You may in accordance with Article 15 GDPR, at any time, have free-of-charge access to and copies of personal data processed and stored by us.
This right of access includes information about the purpose of processing, categories of personal data processed, recipients or categories of recipients to whom personal data have been or are to be disclosed, the intended period for which personal data will be stored (as far as this is possible), or where this is not possible, the criteria for defining this period, the existence of the right to amendment or deletion of personal data relating to you or to restriction of processing by others or an objection to this processing, the existence of a right of appeal to a regulatory authority and, if the data were not collected from you, all available information regarding the origin of the data and the existence of any automated decision-making, including profiling, in accordance with Article 22, Para. 1 and 4 and - at least in these cases - compelling information regarding the logic involved and the intended effects of such processing.
You also have the right to request information regarding whether your personal data have been communicated to a third country or an international organization and what appropriate safeguards exist regarding this communication.
b. Right of rectification
You also have the right to request immediate rectification of any incorrect personal data concerning you. Furthermore, you have the right to request completion of any incomplete personal data, having regard to the purpose of processing.
c. Right of deletion
You also have the right in accordance with Article 17 GDPR to request the immediate deletion of data concerning you, stored by us, in the event of one of the following conditions existing: The personal data have been collected for purposes or processed in some other way for which they are no longer required; you revoke your consent, on which processing relies, in accordance with Article 6, para. 1 a GDPR or Article 9, para. 2 GDPR, and there are no other legal grounds for processing; you file an objection against processing in accordance with Article 21, para. 1 GDPR and there are no overriding legitimate reasons for processing, or you file an objection against processing in accordance with Article 21, para. 2 GDPR; the personal data have been processed unlawfully; deletion of the personal data is required to satisfy a legal obligation in accordance with European Union law or the right of Member States, to which we are subject; the personal data were collected with respect to services offered by the information society in accordance with Article 8, para. 1.
If we have made personal data public and we are obliged to delete these in accordance with Article 17, para. 1 GDPR, we shall take the appropriate measures to inform other responsible parties who process the disclosed personal data that you have requested the deletion of all links to these personal data, as well as any copies or replications.
d. Right of processing restriction
You have the right in accordance with Article 18 GDPR to request that the processing of your personal data be restricted in the event of one of the following conditions existing: The accuracy of personal data is contested by you and indeed for a period that enables us to check the accuracy of the personal data; processing is unlawful and you refuse the deletion of personal data, instead requesting that use of these personal data be restricted; we no longer require personal data for the purpose of processing, however you require them for assertion, exercise, or defence of legal claims, or you have filed an objection against processing in accordance with Article 21, para. 1, as long as it remains to be determined whether the legitimate reasons put forward by our company prevail over yours.
e. Right of data portability
You may in accordance with Article 20 GDPR, at any time, request that any data concerning you, that you have provided to us, be published in a common and machine-readable format. Furthermore, you have the right to communicate these data to another responsible person without any obstruction by us, if processing is based on consent in accordance with Article 6, Para. 1 a GDPR or Article 9, Para. 2 a GDPR or on a contract in accordance with Article 6, Para. 1 b and processing is completed by means of an automatic procedure, if processing is not required for administering a task assigned to us, which is completed in the public interest or in exercising official authority.
You may also request that we send personal data stored by us on your instruction to another responsible party, as long as this is technically feasible and that, in so doing, it does not compromise the rights or liberties of other persons.
f. Right to object
You have the right in accordance with Article 20 GDPR, for reasons arising from your particular situation, to file an objection to the processing of personal data relating to you, where processing is in accordance with Article 6, para. 1 e or f GDPR. This also applies to any profiling based on these provisions.
In the event of an objection, we shall cease to process any personal data, unless we can prove legitimate grounds for processing that predominates over your interests, rights, and liberties, or where processing supports the enforcement, exercise, or defence of legal claims.
If we process your personal data to engage in direct advertising, you have the right to file an objection at any time to the processing of personal data relating to you for the purposes of this type of publicity; this also applies to profiling, insofar as it is associated with this type of direct publicity. If you object to our processing your personal data for the purposes of direct advertising, we shall cease to process your personal data for these purposes.
You have the right, for reasons arising from your specific situation, to file an objection against your personal data being processed for the purposes of research, or historical research or statistics, in accordance with Article 89, para. 1 GDPR, unless such processing is necessary to fulfil a purpose that is in the public interest.
In connection with the use of the information society's services and notwithstanding the Regulation (EC) No. 2002/58, you are free to exercise your right of objection by means of an automatic procedure, in which technical specifications are used.
g. Right of revocation
You may, at any time, withdraw any consent granted for the processing of your personal data in future in accordance with Article 7 para. 3 GDPR.
h. Right of confirmation
You have the right to request confirmation regarding whether personal data relating to you are processed.
To exercise any of the aforementioned rights, please contact our Data Protection Officer directly at firstname.lastname@example.org or +49 2735 70-619 or contact any of our other employees.
i. Right of appeal
Furthermore, you have the right to complain to a supervisory authority pursuant to Article 77 GDPR. As a rule, you can contact the supervisory authority at your usual place of residence or workplace or at our company headquarters.