We are very delighted that you have shown interest in our enterprise. Data protection is of a particularly high priority for the management of the Schweiß- und Metallbau-Centrum STEFFEN GMBH. The use of the Internet pages of the Schweiß- und Metallbau-Centrum STEFFEN GMBH is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to the Schweiß- und Metallbau-Centrum STEFFEN GMBH. By means of this data protection declaration, our enterprise would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.
As the controller, the Schweiß- und Metallbau-Centrum STEFFEN GMBH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone.
1. Name and contact details of the controller
The responsible person for the data processing on this website is:
Schweiß- und Metallbau-Centrum STEFFEN GMBH
Industrie- und Gewerbegebiet 16+18
Tel.: 036739 - 2989-0
Fax: 036739 - 2989-69
2. Name and Address of the Data Protection Officer
The Data Protection Officer of the controller is:
Schweiß- und Metallbau-Centrum STEFFEN GMBH
Industrie- und Gewerbegebiet 16+18
Tel.: 036739 - 2989-10
Fax: 036739 - 2989-69
Any data subject may, at any time, contact our Data Protection Officer directly with all questions and suggestions concerning data protection.
3. Collection of automatic data and information
The website of the Schweiß- und Metallbau-Centrum STEFFEN GMBH collects a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be:
(1) the browser types and versions used,
(2) the operating system used by the accessing system,
(3) the website from which an accessing system reaches our website (so-called referrers),
(4) the sub-websites,
(5) the date and time of access to the Internet site,
(6) an Internet protocol address (IP address),
(7) the Internet service provider of the accessing system, and
(8) any other similar data and information that may be used in the event of attacks on our information technology systems.
When using these general data and information, the Schweiß- und Metallbau-Centrum STEFFEN GMBH does not draw any conclusions about the data subject. Rather, this information is needed to:
(1) deliver the content of our website correctly,
(2) optimize the content of our website as well as its advertisement,
(3) ensure the long-term viability of our information technology systems and website technology, and
(4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, the Schweiß- und Metallbau-Centrum STEFFEN GMBH analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
4. Routine erasure and blocking of personal data
The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased in accordance with legal requirements.
5. Disclosure of data
A transfer of your personal data to third parties for purposes other than those listed below will not take place.
We only share your personal data with third parties if:
6. Rights of the data subject
You have the right:
a) in accordance with Art. 15 DSGVO, to request information about your personal data processed by us. In particular, you can provide information on the processing purposes, the category of personal data, the categories of recipients to whom your data has been disclosed, the planned retention period, the right to rectification, deletion, limitation of processing or opposition, the existence of a The right to complain, the source of their data, if not collected from us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details;
b) in accordance with Art. 16 DSGVO, immediately demand the correction of incorrect or complete personal data stored with us;
c) in accordance with Art. 17 DSGVO, to demand the deletion of your personal data stored by us, except where the processing is for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims is required;
in accordance with Art. 17 DSGVO, to demand the deletion of your personal data stored by us, except where the processing is for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims is required;
d) d) to demand the limitation of the processing of your personal data according to Art. 18 GDPR, as far as the accuracy of the data is disputed by you, the processing is unlawful, but you reject their deletion and we no longer need the data, but you assert this To exercise or defend legal claims or you have objected to processing pursuant to Art. 21 GDPR;
e) to receive, in accordance with Art. 20 GDPR, your personal data provided to us in a structured, standard and machine-readable format or to request transmission to another person responsible;
f) according to Art. 7 para. 3 DSGVO, to revoke your once given consent to us at any time. As a result, we are not allowed to continue the data processing based on this consent for the future and
g) to complain to a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or work or our company headquarters.
7. Right to object
If your personal data are based on legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO are processed, you have the right to file an objection against the processing of your personal data in accordance with Art. 21 DSGVO, provided that there are reasons for this arising from your particular situation or the objection is directed against direct mail.In the latter case, you have a general right of objection, which is implemented by us without specifying any particular situation. If you would like to exercise your right of revocation or objection, please send an e-mail to email@example.com.
8. Data protection for applications and the application procedures
The data controller shall collect and process the personal data of applicants for the purpose of the processing of the application procedure. The processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents by e-mail or by means of a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the submitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If no employment contract is concluded with the applicant by the controller, the application documents shall be automatically erased two months after notification of the refusal decision, provided that no other legitimate interests of the controller are opposed to the erasure. Other legitimate interest in this relation is, e.g. a burden of proof in a procedure under the General Equal Treatment Act (AGG).
9. Legal basis for the processing
Art. 6(1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. Is our company subject to a legal obligation by which processing of personal data is required, such as for the fulfillment of tax obligations, the processing is based on Art. 6(1) lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6(1) lit. d GDPR. Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 Sentence 2 GDPR).
10. The legitimate interests pursued by the controller or by a third party
Where the processing of personal data is based on Article 6(1) lit. f GDPR our legitimate interest is to carry out our business in favor of the well-being of all our employees and the shareholders.
11. Period for which the personal data will be stored
The criteria used to determine the period of storage of personal data is the respective statutory retention period. After expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment of the contract or the initiation of a contract.
12. Provision of personal data as statutory or contractual requirement; Requirement necessary to enter into a contract; Obligation of the data subject to provide the personal data; possible consequences of failure to provide such data
We clarify that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary to conclude a contract that the data subject provides us with personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company signs a contract with him or her. The non-provision of the personal data would have the consequence that the contract with the data subject could not be concluded. Before personal data is provided by the data subject, the data subject must contact any employee. The employee clarifies to the data subject whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and the consequences of non-provision of the personal data.
13. Existence of automated decision-making
As a responsible company, we do not use automatic decision-making or profiling.
14. Data backup
For security reasons and to protect the transmission of confidential content that you send to us as a site operator, our website uses an SSL or.TLS encryption.Thus, data that you submit via this website, for others not readable.You will recognize an encrypted connection at the "https: //" address bar of your browser and at the lock icon in the browser bar.
We also take appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
15. Contact form
When contacting us (eg e-mail, telephone or via social media), the information provided by the user to process the contact request and its processing in accordance with. Art. 6 para. 1 lit. b) DSGVO processed.
User information can be stored in a Customer Relationship Management System ("CRM System") or comparable request organization.
We delete the requests, if they are no longer required. We check the necessity every two years; Furthermore, the legal archiving obligations apply.
16. Integration of services and contents of third parties
Based on our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) lit. DSGVO), we make use of content or services offered by third-party providers in order to provide their content and services Services, such as Include videos or fonts (collectively referred to as "content").
This always presupposes that the third-party providers of this content perceive the IP address of the users, since they could not send the content to their browser without the IP address. The IP address is therefore required for the presentation of this content. We endeavor to use only content whose respective providers use the IP address solely for the delivery of the content. Third parties may also use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may include, but is not limited to, technical information about the browser and operating system, referring web pages, visit time, and other information regarding the use of our online offer.
Our website uses functions of the web analytics service Google Analytics. Web analytics service provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
Google Analytics uses "cookies." These are small text files that your web browser stores on your device and allow analysis of website usage. Information generated by cookies about your use of our website is transmitted to a Google server and stored there. Server location is usually the US.
Google Analytics cookies are set on the basis of Art. 6 para. 1 lit. f DSGVO. As the operator of this website, we have a legitimate interest in the analysis of user behavior in order to optimize our website and possibly also advertising.
18 . HERE Maps
This website binds the maps of the service "HERE WeGo" of the supplier HERE Global B.V. to visualize geographic information. When using HERE WeGo Maps, HERE also collects, processes and uses data about the use of map features by visitors. For more information about HERE's computing, see the HERE Privacy Notice. There you can also change your personal privacy settings in the privacy center.