Data Privacy Statement
for users of the website of Automatic-Systeme Dreher GmbH
Section 1 Information on the collection of personal data
(1) General Information
We are pleased about your interest in our website. For the Management of Automatic-Systeme Dreher GmbH, it is very important to protect your personal data during your visit of our website. The information given below describes how your personal data are processed by us and gives you an overview of your rights regarding data protection. Personal data means all data related to you personally, such as your name, address, e-mail addresses, and pattern of use.
If a data subject wishes to use special services of our company via our website, e.g. our contact form, it may be necessary to process their personal data. If processing of personal data is required and there is no legal basis for such processing, we basically request the consent of the data subject. The personal data processing is always carried out in accordance with the EU General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to Automatic Systeme Dreher GmbH.
Being the party responsible for data processing, Automatic-Systeme Dreher GmbH has carried out technical and organizational measures, in order to maximize seamless protection of personal data processed via this website against loss, destruction, access, modification or distribution of your data by unauthorized persons. It also includes a safe transfer of your personal data at our company through encryption. We use Transport Layer Security (TLS) as a coding system.
However, because of general security vulnerabilities in Internet-based data transfers, no absolute data protection can be guaranteed.
(2) The party responsible for data processing
The party responsible for data processing pursuant to Article 4, para. 7 of the EU Data Protection Regulation (GDPR) and to the country-specific data protection provisions is:
Automatic-Systeme Dreher GmbH
Obere Talstrasse 1-5
72172 Sulz a.N. / Renfrizhausen
Phone: +49 7454 881 - 0
Fax: +49 7454 881 - 11
You can contact our data protection officer Ms Julia Fischer at the aforementioned address by post (please add “Data Protection Officer” in the address line) or by e-mailing:
(3) General information on data processing
We collect and use personal data of our users only to the extent necessary to ensure proper website functioning, presentation of our content and performance of our services. The collection and use of the personal data of our users regularly takes place only upon the consent of the user. Exceptions from this rule are the cases in which it is actually not possible to receive the user’s consent in advance and the data processing is permitted by legal regulations.
In this context, the following legal bases for the processing of your personal data are relevant:
- Data processing due to your consent (Article 6, para. 1, sub-para. (a) of the GDPR).
- Data processing necessary for performance of a contract whose party is the data subject. This also applies to data processing operations that are necessary for carrying out pre-contractual measures (Article 6, para. 1, sub-para (b) of the GDPR)
- Data processing necessary for fulfilment of a legal obligation of our company (Article 6, para. 1, sub-para. (c) of the GDPR)
- Personal data processing in the case of its necessity for vital interests of the data subject or of another natural person (Article 6, para. 1, sub-para. (d) of the GDPR)
- Data processing required for protection of a legitimate interest of our company or a third party, unless the interests, fundamental rights and freedoms of the data subject have priority (Article 6, para. 1, sub-para. (f) of the GDPR). In particular, the legitimate interests can be the following:
- Correct delivery of our website content;
- Statistical analyses for tests and optimization of the website;
- Provision of information necessary for law enforcement by the law enforcement authorities in the event of a cyber attack;
- Answering of inquiries and provision of services and/or information intended for them;
- Processing and transfer of personal data for internal or administrative purposes;
- Prevention and detection of fraud and related offences;
- Ensuring of permanent functioning of our information technology systems and the technology of our website, in order to improve the data protection and data security in our company.
Section 2 Your rights
(1) Rights of the data subject
You can demand information about your stored personal data at the above-mentioned address (Article 15 of the GDPR). You can also request a correction of them, if your personal data we have saved are incorrect (Article 16 of the GDPR). Moreover, you can demand deletion of your data under certain conditions (Article 17 of the GDPR or make use of your right to object to the data processing (Article 21 of the GDPR). You also have the right to restrict the processing of your personal data (Article 18 of the GDPR), as well as a right to demand a return of the data provided by you (Article 20 of the GDPR). Your right to information and data deletion are subject to limitations set out in Sections 34 and 35 of the German Federal Data Protection Act. In addition, you have a right of appeal to the data protection supervisory authority (Article 77 of the GDPR in conjunction with section 19 of the German Federal Data Protection Act).
(2) Objection to the processing of your data or revocation of your consent
If you have given your consent to the processing of your data, you can revoke it at any time. As soon as you have expressed such a revocation to us, it affects permissibility of processing your personal data.
As far as our processing your personal data considers balancing of different interests, you can object to the data processing. This is the case, in particular, if the data processing is not required for the performance of a contract with you; we will describe it below in the description of the functions. If you make such an objection, we ask you to explain why you think that we should not have processed your personal data in the way we did. If your objection is justified, we will examine the situation and then either stop/adjust the data processing or show you legitimate and urgent grounds why we have to continue processing your data.
Of course, you can object to the processing of your personal data for purposes of advertising and data analysis at any time. You can inform us of objection against advertising at the following address:
Automatic-Systeme Dreher GmbH
Ms. Julia Fischer
Data Protection Officer
Obere Talstrasse 1-5
72172 Sulz a.N. / Renfrizhausen
or by e-mailing email@example.com
(3) Who gets my data?
Unless otherwise specified in the detailed descriptions of the offers, your data are accessible for persons and departments of our company which need them in order to fulfil our contractual and legal obligations. We will only disclose information about you, if we are legally obliged to do it or you have agreed to this and/or there is another legal basis that justifies this disclosure.
If, for individual functions of our website, we have to resort to external service providers, we first carefully examine and select such providers before we mandate them. Such providers are then bound to our instructions and we check them on a regular basis.
If we are going to use your data for advertising purposes, we will inform you in detail about the relevant procedures.
(4) How long will my data be stored?
If not otherwise stated in the detailed descriptions of our offers, we will process and store your personal data as long as it is required for the fulfillment of our contractual and legal obligations.
Your personal data will be deleted or blocked on a regular basis, if they are no longer required for fulfillment of contractual or statutory obligations, or you make use of your right for their deletion, all mutual obligations are fulfilled and no other statutory retention obligations or legal reasons exist which justify the data storage.
Section 3 Collection of personal data while visiting our website
(1) Use of server log files
Each time when the data subject or an automated system retrieves the website, some general data and information will be captured in log files. Such data include an Internet Protocol address (IP address), the browser types and versions, the internet page from which an accessing system gets to our website (a so-called referrer), the sub-websites which are directed to our website via an accessing system, the date and time of accessing the website and other related data and information that may become necessary for averting danger in the event of attacks on our information technology systems.
The legal basis for the temporary data storage and log files is Article 6 para 1 sub-para f of the GDPR, if there are legitimate interests mentioned above.
The temporary storage of the IP address by the system is necessary in order to ensure correct delivery of the website to the user's computer. For this purpose, the user’s IP address has to be saved until the end of the session.
The data are stored in log files in order to ensure proper function of the website. Moreover, the data are required for optimizing the website and ensuring the safety of our information technology systems. This matter is also considered as our legitimate interest in data processing according to Article 6 para. 1 sub-para. f of the GDPR. The data will be deleted as soon as they are no longer required for achievement of the purpose of their collection. This is especially the case when the session is closed: the data which were necessary to provide the website services to the user are no longer needed as soon as the user closes the session. The operation of the website requires collection of the data necessary for website availability and storage of the data in log files. There is also another way to check the log files if, due to concrete evidence, there is a legitimate suspicion of unlawful use or a specific attack on our website. Our legitimate interest in data processing is based on the purpose of investigation and prosecution of such attacks and illegal use.
In addition to the above-mentioned data, cookies are being saved on your computer when you visit our website. Cookies are small text files that are saved in the directory of your hard disk assigned to your browser. The website which sets the cookies (in this case, our website) receives certain information through them. Cookies cannot be used to start programs or to pass on viruses to your computer. We use them only in order to make our website more user-friendly and efficient.
Our website uses the following types of cookies, whose scope and operation will be explained below:
Transient cookies: They will be automatically deleted when you close your browser. In particular, they include session cookies. A session cookie saves a so-called session ID, with which various requests from your browser can be assigned to the common session. This allows your computer to be recognized when you return to our website. When you log out or close the browser, the session cookies will be deleted.
Persistent cookies: They are automatically deleted after a specified period of time, which may differ depending on the cookie. You can always delete the cookies in your browser security settings.
Section 4 Other functions and services of our website
In addition to the purely informative use of our website, we provide a variety of services that you can use if you are interested. To do this, you usually need to state additional personal data which we need in order to provide the respective services. The aforementioned principles apply to such data, as well.
(1) Using the contact options
On our website there is a contact form available, which can be used for electronic contact. The data entered by the user into this contact form are transmitted to and saved by us. They include your first name, surname, your e-mail address and your message to us as mandatory fields. For processing of your data in the course of your sending the message, we will request your consent and refer to this Data Privacy Statement. The legal basis for the data processing in the course of the contact form use is Article 6 para.1 sub-para (a) of the GDPR:
Alternatively, you can contact us at the provided e-mail address. As soon this e-mail address is used, your personal data are transmitted to and stored by us. These data are used exclusively to continue the dialogue with you and will not be passed on to third parties. The data processing in the course of sending an e-mail is a matter of our legitimate interest pursuant to Article 6 para. 1 sub-para. f of the GDPR.
If the aim of making contact is to conclude a contract, an additional legal basis for data processing according to Article 6 para. 1 sub-para b of the GDPR should be considered in the course of implementation of pre-contractual measures and subsequent data processing, if necessary for the fulfilment of a contract.
Personal data processed by us in the course of a general contact request via the contact form or by e-mail is stored by us only until the respective correspondence is completed. The conversation is deemed to be finished, when the actual situation shows that the relevant circumstances are definitely resolved.
You can revoke your consent to processing of your personal data at any time. If you contact us by e-mail, you can, of course, object to our storage of your personal data at any time. However, in such a case, we cannot continue the dialogue.
(2) Collection and use of personal data in the course of a job application procedure
In the course of an application procedure, it is important to us to ensure maximum protection of your personal data. For this reason, all personal data collected and processed in the course of the application procedure at our company is protected by technical and organizational measures against manipulation and unauthorized access.
We process personal data such as your name, contact information, curriculum vitae, nationality, work permits, etc. for our selection and recruitment procedure in the course of the application procedure with the goal of filling vacancies at our company.
Our processing your personal data is based on the establishment, implementation and termination of a contractual relationship in accordance with Article 6 para. 1 sub-para. (b) and on the fulfilment of a legal obligation pursuant to Article 6 para. 1 sub-para. (c), on your formal consent expressed by your voluntary transfer of data which are not mandatory for the application (e.g. hobbies stated in your CV).
In addition, we process data due to our legitimate interests pursuant to Article 6 para. 1 sub-para. (f):
- to optimize our application processes,
- to ensure compliance regulations, industry standards and contractual obligations,
- to enforce, exercise or defend legal claims
- and to avoid damage to and/or liability of our company by taking appropriate measures.
As soon as the respective goal of the data processing is achieved, your data will be deleted. However, they will be stored as long as it is necessary, in order to defend legal claims or protect the company against any accusations under the General Equal Treatment Act (AGG). As a rule, this time period is 6 months. We ask particularly interesting applicants who can not currently be taken into account, to permit long-term storage of their data (usually for 1 year). If any accounting-relevant processes were carried out, for example, reimbursement of travel expenses, the personal data required for this purpose will be deleted after expiry of a statutory retention period (usually 6 or 10 years).
If the application was successful and we have the pleasure of welcoming you to our company on the basis of a contractual agreement, we transfer the data collected as part of the application procedure to our personnel records.
Section 5 Web Analysis
(1) Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called “cookies” - text files that are stored on your computer and enable the analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In case of activation of IP anonymisation, Google will truncate/anonymize the last octet of the IP address for Member States of the European Union as well as for other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information in order to evaluate your use of the website in order to create reports about the website activities and in order to create services associated with the website use and internet use for the website operator.
The IP address provided by your browser as part of Google Analytics will not be merged with other Google data.
Then an opt-out cookie will be set which will prevent the capture of your data when you visit this website. To avoid capturing by Universal Analytics across various devices, you will need to carry out the opt-out on all systems you use: If you click here, the opt-out cookie will be set: Deactivate Google Analytics
This website uses Google Analytics with the "_anonymizeIp()" extension. As a result, the IP addresses are shortened and then further processed. In this way, a reference to a concrete person is ruled out. That means, if the data collected about you can be associated with your person, such personal reference is immediately excluded and your personal data are immediately deleted.
We use Google Analytics in order to analyze the use of our website and to improve it on a regular basis. The obtained statistics enable us to improve our web services and to make our website more interesting for you as a user. In exceptional cases in which personal data will be transferred to the USA, Google has submitted itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Article 6 para. 1 Sentence 1 sub-para f of the GDPR.
This website uses Google Analytics for a cross-device analysis of visitor flows. The analysis is carried out via a user-ID. You can deactivate the cross-device analysis of your use in your customer account in "My Data", "Personal Data”.
(2) Use of SalesViewer technology
On this website SalesViewer® technology of the SalesViewer® GmbH collects and stores data for marketing, market research and optimization purposes on the basis of legitimate interests of the website operator (Art. 6 (1 lit.f DSGVO)).
Data collection and storage can be objected to at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out to prevent the collection by SalesViewer® within this website in the future. An opt-out cookie for this website is stored on your device. If you delete your cookies in this browser, you must click this link again.
Section 6: Public Relations
(1) Integration of Google-Tag-Manager
For delivery of online advertising and integration of external partners we use the Google Tag Manager. This allows us to control the delivery of online advertising. This tool works without cookies, however, it requires a transfer of IP addresses to Google. In this case, the use of Tag Manager is measured. We have activated anonymisation of the IP address before forwarding to Google. The legal basis for data processing is Article 6 para. 1 sub-para. (f) of the GDPR. The accumulated data will be deleted after three years.
(2) Use of Google Adwords Conversion
We use the services of Google Adwords, in order to call the attention of the visitors of external websites to our attractive offers with the aid of advertising media (so-called Google Adwords). Based on the data of the advertisement campaigns, we can see how successful each advertising measure is. The goal is to show you the ads which are interesting for you and to make our website more interesting, as well as to calculate affordable and fair advertising costs.
This advertising media are delivered by Google via so-called "Ad Servers". For this purpose, we use Ad Server cookies which can measure certain parameters of advertisement success, such as on-screen display of the ads or clicks by users. If you access our website via a Google ad, Google Adwords will save a cookie in your PC. These cookies usually have a life span of 30 days and may not be used to identify you as a person. For this cookie, the following information is usually saved as analysis values: the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (the mark showing that the user no longer wishes to be addressed).
These cookies enable Google to recognize your internet browser. If a user visits certain pages of an Adwords customer’s website and the cookies stored on his/her computer has not yet expired, the customer and Google can detect that the user has clicked on the ad and was redirected to this page. To each Adwords customer, a separate cookie is assigned. Thus, the cookies cannot be tracked via the websites of Adwords customers. We, ourselves, do not collect or process any personal data referred to in the aforementioned advertising campaigns. We only receive statistical evaluations provided by Google. Based on these evaluations we can see which of the launched advertising campaigns are particularly effective. We do not receive any other data from the use of promotional products. In particular, this information does not allow us to identify the users personally.
Because of the marketing tools used, your browser automatically establishes a direct connection to the Google Server. We have no influence on the scope and further use of the data collected in the course of using this tool by Google. Therefore, we hereby inform you according to our state of knowledge: Due to the integration of AdWords Conversion, Google is informed that you have called up the corresponding part of our website or clicked an advertisement from us. If you are registered with a Google service, Google may assign your visit to your account. Even if you are not registered at Google and have not logged in, it can happen that the provider detects your IP address and stores it.
The legal basis for processing of your data is Article 6 para. 1 Sentence 1 sub-para f of the GDPR. For more information about data protection at Google, please visit http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org . Google is subject to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
(3) Google Dynamic Remarketing
(4) DoubleClick by Google
Because of the marketing tools used, your browser automatically establishes a direct connection to the Google Server. We have no influence on the scope and further use of the data collected in the course of using this tool by Google. Therefore, we hereby inform you according to our state of knowledge: Due to integration of DoubleClick, Google is informed that you have called up the respective part of our website or clicked an advertisement from us. If you are registered with a Google service, Google may assign your visit to your account. Even if you are not registered at Google and have not logged in, it can happen that the provider detects your IP address and stores it.
(4) The legal basis for processing of your data is Article 6 para. 1 Sentence 1 sub-para (f) of the GDPR. For more information on DoubleClick by Google, please visit https://www.google.de/doubleclick and http://support.google.com/adsense/answer/2839090, as well as general information on data protection on Google: https://www.google.de/intl/de/policies/privacy. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org. Google is subject to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
(5) Facebook Custom Audiences
Furthermore, we use the "Custom Audiences" re-marketing function of Facebook Inc. ("Facebook") on our website. This allows the website users to see interest-based ads ("Facebook-Ads") in the course of visiting the Facebook social network or other websites using this procedure. The goal is to show you the ads which are of interest to you and to make our website more interesting.
Because of the marketing tools used, your browser automatically establishes a direct connection to the Facebook Server. We have no influence on the scope and further use of the data collected due to the use of this tool by Facebook. Therefore, we hereby inform you according to our state of knowledge: Due to integration of Facebook Custom Audiences, Facebook is informed that you have called up the respective website or clicked an advertisement from us. If you are registered for a Facebook service, Facebook may assign your visit to your account. Even if you are not registered at Facebook and have not logged in, it can happen that the provider detects your IP address and other identification characteristics and stores them.
The legal basis for processing of your data is Article 6 para. 1 Sentence 1 sub-para f of the GDPR. For more information on Facebook’s data processing, see https://www.facebook.com/about/privacy.