Privacy Policy

  1. A summary of data protection

    General
    According to legal regulations, users of this web site must be informed of the nature, scope and purpose of recording and the use of personal data on this web site. The following information is intended to provide a simple summary of what happens to your personal data when you visit our web site. With regard to the terms used here, we refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR)

    What are personal data?
    Personal data are understood to be all information that refers to an identified or identifiable natural person (affected party), thus all information that can personally identify you. If you want more detailed information on data protection you can read about the subject in this Declaration of Data Protection.

    What does data processing mean?
    Processing is understood to be every procedure executed, with or without the help of automated processes, particularly to record, to store, to use, to change or to delete data.

    What type of data are recorded on this web site?
    Inventory data (e.g. name/address), contact data (e.g. e-Mail/telephone number), usage data (e.g. pages visited/time of access) and communication data (e.g. IP ad-dress/device information) can be recorded on this web site.

    Who records the data on this web site?
    Data are recorded on this web site by the operator. The operator’s contact data can be found in the details below on the responsible office or in the Imprint for the web site.

    How are your data recorded?
    Your data are recorded in that you disclose these to us, for example. It could be that you transmit the data by e-Mail or enter them in a form.

    However, there are other data that are recorded automatically by our IT systems when you visit the web site (e.g. data transmitted by your computer or Smartphone). These primarily concern technical data, such as the browser you are using on the in-ternet, which operating system you deploy and the date and time that you visit our web site. These data are recorded automatically as soon as you are connected with the web site.

    What are your data used for?
    The greater part of the data is recorded to find out what you use on our web site. This enables us to ensure that the web site is presented without errors. Another part is required to establish the sections of the web site that you have visited and what inter-ests you. If you have provided us with your contact data, this information is required to get in touch and communicate with you.

    What rights do you have with regard to the data you transmit?
    With regard to the personal data saved about you, you have the right at all times to receive free-of-charge information on the origins, recipients and purpose of these da-ta. You can furthermore demand that these data be corrected, blocked or completely or partially deleted. If you have any questions concerning data protection, you can get in touch with us at any time, particularly with the responsible office stated below or at the address stated in the Imprint. You are furthermore free to complain to the re-sponsible supervisory authority.

    What are analysis tools and other third-party tools?
    Your surfing behaviour on our web site can be evaluated as soon as you visit our site. This primarily happens with the help of cookies and possibly using certain analysis pro-grams. As a rule, your surfing behaviour is analysed anonymously and it cannot be traced back to you. In this case, you have the option of objecting to the analysis or you can prevent the use of certain tools. More detailed information and instructions on this can be found below.

  2. Compulsory information and further notices

    1. Data protection
      We, as the operator of the web site, take the protection of your personal data very seriously. The personal data that you disclose to us are treated in confidence in accordance with the legal regulations on data protection and this Declaration of Data Protection. The use of this web site triggers various personal data to be recorded. Personal data are data that can identify you. This Declaration of Data Protection is intended to explain which data are recorded about you and what they are used for. In addition, the purpose of this is explained to you.

      We wish to point out that data transmissions via the internet (such as communication by e-Mail) are basically not secure in all respects. Unfortunately, it is not possible to completely protect data from third-party access in every single case.

    2. Legal basis
      In accordance with Art. 13 GDPR, we would like to tell you the legal basis under which we process data. Unless a particular legal basis is stated in this Declaration of Data Protection, the following applies:Art. 6 Para. 1 Letter. a) and Art. 7 GDPR allow your consent for data processing to be obtained. The legal basis for us to process your data in order to provide ser-vices and to answer your questions is Art. 6 Para. 1 Letter b) GDPR. The provision in Art. 6 Para. 1 Letter c) GDPR is the basis for processing the data to fulfil the le-gal obligations to which we are subject and Art. 6 Para. 1 Letter f) GDPR allows us to process your data to safeguard our justified interests.

    3. Responsible office
      The following office is responsible for processing data on this web site:

      Remystahl GmbH & Co. KG
      Volmarsteiner Straße 1-9
      58089 Hagen
      Germany
      Phone: +49 (0)2331-3 87-0
      E-mail: datenchutz@remystahl.de

      The aforesaid legal entity is the responsible office. This decides upon the purposes and means of processing personal data either alone or together with others.

    4. Changes or updates to the Declaration of Data Protection
      We will update the Declaration of Data Protection as soon as changes in the processing of data we perform make it necessary. You are therefore requested to find out about the contents of this Declaration of Data Protection on a regular basis.

    5. Right to information
      Art. 15 GDPR gives you the right to demand confirmation from us of whether data concerning you have been processed by us. In addition, this provision gives you the right to receive information about these data and to receive a copy of the data.

    6. Right to correction
      Art. 16 GDPR gives you the right to demand the completion and/or the correction of the data concerning you.

    7. Right to deletion
      Under Art. 17 GDPR, you have the right to demand that data concerning you are deleted without delay.

    8. Right to restrict processing
      Art. 18 GDPR stipulates that you can demand that we restrict the processing of your data.

    9. Right to data portability
      Under Art. 20 GDPR, you have the right to have the data you have provided transmitted to you or to a third-party in a common format able to be read by machine. If you demand that the data be transmitted directly to another responsible office, this can only be done insofar as it is technically feasible.

    10. Right of revocation
      Your specific consent is required for many data processing procedures. Once issued, you can revoke consent at any time in accordance with Art. 7 Para. 3 GDPR. In principle, notification in no particular form suffices (such as an e-Mail to us). The legality of data processing remains unaffected by any revocation as a matter of principle.

    11. Right of objection
      You have the right under Art. 21 GDPR to object to data concerning you being processed by us in future. The objection can also be lodged against processing by us for the purpose of direct advertising.

    12. Right to complain to a supervisory authority
      If you believe that the regulations of data protection laws have been violated, you have the right to complain to the responsible supervisory authority. The supervisory authority responsible for questions of data protection law is the State Officer for Data Protection of the state in which we are based; namely North Rhine/Westphalia. A list of the officers for data protection and their contact data can be found under the following link:

      https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

    13. SSL and TLS encryption
      This web site uses SSL and TLS encryption for reasons of security and to protect the transmission of confidential content. You can recognise an encrypted connection in that the address starts with https:// in the address line of your browser, or you can see a lock in the browser address line. When such encryption is activated, the data you transmit to us cannot be read by third parties.

  3. Deletion of data

    The data provided by you and processed by us are deleted or restricted in their processing on the basis of Art. 17 and 18 GDPR. Unless specifically stated otherwise in this Declaration of Data Protection, when such data are deleted, we point out here that they are deleted as soon as the purpose of processing has been achieved and this is not contradicted by any duties of retention under law. In the latter case, the data are restricted in their processing. This particularly applies to data that must be retained for reasons of commercial or fiscal law. A duty of retention exists for these under § 257 Para. 1 HGB of six years (e.g. for commercial ledgers, inventories, opening balance sheets, annual financial accounts, commercial letters, booking vouchers etc.) and un-der § 147 Para. 1 AO of ten years (e.g. for ledgers, records, situation reports, booking vouchers, trade and business letters, documents of relevance to taxation etc.).

  4. Data Protection Officer

    We have appointed a data protection officer for our company.

    Dipl.-Kfm. Stephan Schneider
    bits+ bytes it-solutions
    Bahnhof Weidenau 6
    57076 Siegen
    Germany
    Phone: +49 700 20301030
    E-mail: datenschutz@remove-this.bits-bytes.de

  5. Recording data on our web site

    1. Server log files
      Our web site is stored on servers. The provider of these servers automatically saves information on visits to our web site. This concerns so-called log files that are transmitted automatically by the browser you use. In particular, the following information is transmitted:

      - Language
      - Type and version of the browser
      - Time of the server request
      - IP address
      - Error codes
      - The operating system used
      - The referrer URL.

      These data are not merged with other data sources as a matter of principle.

      The legal basis for recording and processing these data is Art. 6 Para. 2 Letter f) GDPR. This legal basis forms our justified interest in the fulfilment of a contract or the implementation of contractual measures.

    2. Cookies

      Our web site partly deploys cookies. Cookies serve to make the range of our pages more user-friendly, efficient and reliable. Cookies are small files that are saved on your computer and stored for later call-up.

      We deploy session cookies. These are only saved for the duration of your current visit to our web site. They are deleted automatically at the end of your visit to our web site.

      If you do not want cookies to be saved on your computer, you will need to deactivate the relevant option in your browser’s system settings. Cookies that have already been saved can also be deleted again in the system settings. If you nevertheless do not want any cookies to be saved, this could impair the proper functioning of this web site.

      If cookies are deployed that are required to perform electronic communication procedures or to provide certain functions requested by you, these are saved and processed on the basis of Art. 6 Para. 1 Letter f) GDPR. We, as the operator of the web site, have a justified interest in saving cookies to ensure that the web site can be operated without technical errors.

      This Declaration of Data Protection informs you separately of the deployment of cookies. These, for example, are saved to analyse your surfing behaviour.

    3. Contact forms/e-Mail

      If you choose to send inquiries to us through the contact forms on the web site, the information from the form (including the contact data you state there) is saved for the purpose of processing the inquiry and in case further questions arise. These data are not forwarded without your specific consent.

      The data entered by you in contact forms are therefore processed particularly on the basis of your consent given under Art. 6 Para. 1 Letter a) GDPR. You can re-voke the consent issued at any time. Notification in no particular form suffices (such as an e-Mail to us). The legality of the data processing procedures performed until revocation remains unaffected as a matter of principle. In case you get in contact without issuing your specific consent (e.g. by e-Mail), the data are processed on the basis of Art. 6 Para. 1 Letter b) GDPR in order to process and answer the contact inquiry.

      All the data you provide remain with us, until you demand that they be deleted or revoke your consent to their storage, or if there is no longer any purpose for saving the data. In the latter case, for example, this is when the processing of your inquiry has been concluded. Necessity is reviewed every two years. In the case of legal duties of archiving, your data are deleted after the respective period has expired. It goes without saying that overriding legal provisions, particularly legal periods of retention (6-years under commercial law and 10-years under fiscal law) remain unaffected.

    4. Applications / Application Process
      The person responsible for this website offers the opportunity to apply. For this purpose, we collect and process data from applicants for the purpose of handling the respective application process. Processing can also be done by electronic processing. This is particularly the case if an applicant submits corresponding application documents electronically, e.g. transmitted to us by email or via a web form on the website for processing. We assure that the collection, processing and use of the data transmitted in this way is carried out in accordance with the applicable data protection law and all other legal provisions. The data you provide will be treated in strict confidence.

      If you send us an application, your associated personal data will be processed, if this is necessary to decide on the establishment of an employment relationship. The legal basis for the collection and processing of data is Section 26 BDSG, Art. 6 Para. 1 lit. b) GDPR and, if you have given your consent, Art. 6 para. 1 lit. a) DGSVO. The consent can be revoked at any time. Within our company, your personal data will only be passed on to people who are involved in processing your application.

      If there is then an employment contract between the applicant and us, the data will be processed and stored for the purpose of processing the employment relationship in compliance with the statutory provisions. The legal basis for the collection and processing of this data is Section 26 BSDSG and Art. 6 Para. 1 lit. b) GDPR.

      If no employment contract is concluded with the applicant, the application documents will be automatically deleted a maximum of six months after notification of the rejection decision, provided that there are no other legitimate interests of the person responsible for the processing. A legitimate interest in this sense can be, for example, an obligation to provide evidence in a procedure under the General Equal Treatment Act (AGG).

  6. Plug-ins and tools

    1. YouTube

      Our website uses plug-ins from the service operated by Google
      YouTube uses. The website is operated by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

      We use YouTube in the extended data protection mode. According to YouTube, this mode means that YouTube does not save any information about visitors to our website before they watch the video. The transfer of data to the YouTube partner is not excluded in every case by the extended data protection mode. YouTube connects to the Google DoubleClick network regardless of whether you’re watching a video.

      As soon as you start a YouTube video on our website, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

      In addition, YouTube can save various cookies on your end device after starting a video. With the help of these cookies, YouTube can receive information about visitors to our website. This information is used used to collect video statistics, improve usability and prevent fraud. The cookies remain on your device until you delete them.

      If necessary, further data processing processes can be triggered after the start of a YouTube video, over which we have no influence.

      YouTube is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f) GDPR.

      Further information on data protection at YouTube can be found in their data protection declaration at:

      https://policies.google.com/privacy?hl=de

    2. Google Maps (with consent)
      Our website uses the Google Maps map service via a programming interface (API). The website is operated by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

      To ensure data protection on our website, Google Maps is deactivated when you enter our website for the first time. A direct connection to the Google servers will only be established if you activate Google Maps yourself (consent according to Art. 6 Para. 1 lit. a GDPR). This prevents your data from being transferred to Google the first time you enter the page.
      After activation, Google Maps will save your IP address. This is then usually transferred to a Google server in the USA and stored there. The provider of this website has no influence on this data transfer after activating Google Maps.
      You can find more information on handling user data in Google's data protection declaration: https://www.google.de/intl/de/policies/privacy/

  7. Data processing through social networks

    We maintain publicly available profiles in social networks. The individual social networks we use can be found below.
    Social networks such as Facebook, Instagram etc. can generally analyse your user behaviour comprehensively if you visit their website or a website with integrated social media content (e.g. like buttons or banner ads). When you visit our social media pages, numerous data protection-relevant processing operations are triggered.
    In detail: If you are logged in to your social media account and visit our social media page, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data may also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.
    Using the data collected in this way, the operators of the social media portals can create user profiles in which their preferences and interests are stored. This way you can see interest-based advertising inside and outside of your social media presence. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged in to or have logged in to. Please also note that we cannot retrace all processing operations on the social media portals. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media portals. Details can be found in the terms of use and privacy policy of the respective social media portals.

    Legal basis
    Our social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on divergent legal bases to be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) (a) GDPR).

    Responsibility and assertion of rights
    If you visit one of our social media sites (e.g., Facebook), we, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can in principle protect your rights (information, correction, deletion, limitation of processing, data portability and complaint) vis-à-vis us as well as vis-à-vis the operator of the respective social media portal (e.g. Facebook).
    Please note that despite the shared responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are determined by the company policy of the respective provider.

    Storage time
    The data collected directly from us via the social media presence will be deleted from our systems as soon as the purpose for their storage lapses, you ask us to delete it, you revoke your consent to the storage or the purpose for the data storage lapses. Stored cookies remain on your device until you delete them. Mandatory statutory provisions – in particular, retention periods – remain unaffected.

    We have no control over the storage duration of your data that are stored by the social network operators for their own purposes. For details, please contact the social network operators directly (e.g. in their privacy policy, see below).
     

    Individual social networks


    Facebook
    We have a profile on Facebook. The provider is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. Facebook is certified under the EU-US Privacy Shield.
    We have signed an agreement with Facebook on shared responsibility for the processing of data (Controller Addendum). This agreement determines which data processing operations we or Facebook are responsible for when you visit our Facebook Fanpage. This agreement can be viewed at the following link:

    https://www.facebook.com/legal/terms/page_controller_addendum
    You can customise your advertising settings independently in your user account. Click on the following link and log in:

    https://www.facebook.com/settings?tab=ads
    Details can be found in the Facebook privacy policy: https://www.facebook.com/about/privacy/

    Twitter
    We use the short message service Twitter. The provider is Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, United States. Twitter is certified under the EU-US Privacy Shield.

    You can customise your Twitter privacy settings in your user account. Click on the following link and log in:
    https://twitter.com/personalization
    For details, see the Twitter Privacy Policy: https://twitter.com/privacy

     

Hagen, February 2020