Privacy Statement STÖHR + SAUER CAD- und Computersystem GmbH
Subject of the privacy policy
Welcome to our website and our internet offers.
The protection of your personal data (hereinafter referred to as “data”) is a great and very important concern for us. In the following, we would like to inform you in detail about the data collected during your visit to our website and use of our local offers and how these are processed or used by us in the following, as well as which accompanying protective measures we have also taken in technical and organizational terms.
I. Name and address of the person responsible
The person responsible within the meaning of the basic data protection regulation and other national data protection laws of the member states as well as other data protection regulations is the:
STÖHR+SAUER CAD- und Computersystem GmbH
Jens-Otto-Krag-Straße 7
52146 Würselen
+49 2405 41370
info(at)stoehr-sauer.de
www.Stoehr-Sauer.de
II. Contact the Data Protection Officer
STÖHR+SAUER CAD- und Computersystem GmbH
Jens-Otto-Krag-Straße 7
52146 Würselen
+49 2405 41370
Datenschutz(at)stoehr-sauer.de
www.Stoehr-Sauer.de
III. General information about data processing
1. Scope of processing of personal data
In principle, we process personal data of our users only insofar as this is necessary to provide a functioning website and our content and services. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies to cases in which prior consent can not be obtained for reasons of fact and the processing of the data is permitted by law.
2. Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) as legal basis.
In the processing of personal data necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR as legal basis. This also applies to processing operations required to carry out pre-contractual actions.
Insofar as processing of personal data is required to fulfill a legal obligation that is subject to our company, Art. 6 para. 1 lit. c GDPR as legal basis.
If processing is necessary to safeguard the legitimate interests of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not prevail over the first interest, Art. 6 para. 1 lit. f GDPR as legal basis for processing.
3. Collecting general information
With every access to this offer, we automatically collect information. This information, also known as server log files, is general in nature and does not allow any conclusions to be drawn.
Included are: name of the website, file, date, amount of data, web browser and web browser version, operating system, the domain name of your Internet provider, the so-called Referrer URL (the page from which you accessed our offer) and the IP address. We only store the IP address for the duration of your visit and as far as it is necessary for the detection, limitation or removal of faults or errors in our website. A personal evaluation does not take place.
Without this data, it would not be technically possible to deliver and display the contents of the website. In this respect, the collection of data is imperative. In addition, we use the anonymous information for statistical purposes. They help us to optimize the offer and the technology. In addition, we reserve the right to subsequently inspect the log files in case of suspected illegal use of our offer.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR
4. Data deletion and storage duration
The personal data of the data subject will be deleted or blocked as soon as the purpose of the storage is deleted. In addition, such storage may be provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract.
IV. Provision of the website and creation of log files
1. Description and scope of Data processing
Whenever our website is accessed, our system automatically collects data and information from the computer system of the calling computer.
The following data is collected here:
· Information about the browser type and the version used
· The user’s operating system
· The user’s Internet service provider
· The user’s IP address
· Date and time of access
· Websites of which the system of the User accesses our website
· Websites that are accessed by the user’s system via our website
The data is also stored in the log files of our system. A storage of this data together with other personal data of the user does not take place.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.
2. Purpose of data processing
Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. To do this, the user’s IP address must be kept for the duration of the session.
Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
For these purposes, our legitimate interest in the processing of data according to Art. 6 para. 1 lit. f GDPR.
3. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose of their survey. In the case of collecting the data for providing the website, this is the case when the respective session is completed.
In the case of storing the data in log files, this is the case after no more than seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.
4. Contradiction and elimination
The collection of data for the provision of the website and the storage of data in log files is imperative for the operation of the website required. There is consequently no contradiction on the part of the user.
5. Dealing with Personal Data
Definition: Personal data means all information by means of which a person is uniquely identifiable. These are therefore data that can be traced back to a person.
These personal data include the first name and the name as well as the e-mail address. These data will only be collected, used and, if necessary, passed on to us by the legislator, provided the law permits this explicitly or the user agrees to the collection, processing, use and transfer of the data.
V. Cookies
1. Description and scope of data processing
This website uses so-called cookies. These are small text files that are sent from our server to your browser and stored on your computer. They contain information about the browser, the IP address, the operating system and the Internet connection. This data will not be passed on to third parties by us.
As a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Already saved cookies can be deleted at any time. This can also be done automatically. If cookies are disabled for our website, it may not be possible to fully use all the functions of the website.
When accessing our website, users will be informed by an information banner about the use of cookies and referred to this privacy policy. In this context, there is also an indication of how the storage of cookies in the browser settings can be prevented.
A collection or storage of personal data in cookies does not take place in this context by us. We also do not use techniques that link information obtained through cookies with user data.
2. Purpose of data processing
Cookies fulfill two main tasks. They help us to facilitate the navigation through our offer and enable the correct presentation of the website. They are not used to inject or launch programs.
Our website engine uses so-called session cookies (also referred to as temporary cookies), ie those that are cached exclusively for the duration of your use of one of our Internet pages. The purpose of these cookies is to continue to identify your computer during a visit to our website when switching from one of our websites to another of our websites and to determine the end of your visit to be able to. The cookies will be deleted as soon as you finish your browser session.
3. Opt-Out
Users have the opportunity to access our offer without cookies. For this purpose, the corresponding settings must be changed in the browser. Please refer to the help function of your browser, how cookies are deactivated. However, please be aware that this may interfere with some features of this website and reduce its ease of use. The http://www.aboutads.info/choices/ (USA) and http://www.youronlinechoices.com/uk/your-ad-choices/ (Europe) sites allow you to manage online ad cookies.
We provide links to external information videos on Youtube for product and service descriptions of the products distributed by us, so Flash cookies can be saved on your computer, but the data is not collected by us. The transmission of Flash cookies can not be prevented by the settings of the browser, but by changing the settings of the Flash Player.
The legal basis for the processing of personal data using cookies is Article 6 (1) lit. f GDPR.
VI. Contacting us via our website
If you contact us via the contact form or by e-mail, we will save the information you have provided in order to answer your request and to ask possible follow-up questions. In addition, to ensure that an e-mail address is not abused by third parties, we work in accordance with the law with the so-called “double-opt-in” procedure. As part of this process, data collection, sending the confirmation email and receiving the confirmation will be logged. A transfer of data to third parties does not take place. The data are used exclusively for the processing of the conversation.
The processing of the personal data from the input mask serves us only to process the contact. In the case of contact via e-mail, this also includes the required legitimate interest in the processing of the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
At the time of data entry the following information is also stored:
The IP address of the user
Date and time of registration
If necessary, users who have accepted the confirmation e-mail have the option of changing or deleting the data specified in the contact form at any time. Of course we will inform you on request which personal data has been collected and stored. In addition, we correct or delete the data on request, provided that the matter is not contrary to statutory retention requirements. For further questions, as well as your request for correction or deletion of the data, please use the contact data mentioned in this privacy policy.
The legal basis for the processing of data is in the presence of the consent of the user Art. 6 para. 1 lit. a GDPR.
The legal basis for the processing of the data, which are transmitted in the course of sending an e-mail, is Art. 6 para. 1 lit. f GDPR.
VII. Integration of Services and Third Party Content
1. Description and scope of data processing
Our offer may include content, services and services of other providers. These are, for example, maps provided by Google Maps. In order for these data to be accessed and displayed in the user’s browser, the transmission of the IP address is absolutely necessary. The providers (hereinafter referred to as “third-party provider”) thus perceive the IP address of the respective user.
Although we endeavor to use only third-party providers who only need the IP address to deliver content, we have no control over whether the IP address may be stored. This process is used in the case, inter alia, statistical purposes. If we are aware that the IP address is being stored, we will inform our users.
VIII. Use of Google Analytics
1. Description and Scope of Data Processing
This website uses Google Analytics, a web analytics service provided by Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA). “). Google Analytics uses so-called “cookies”, text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Due to the activation of the IP anonymization on these websites, however, your IP address will become truncated by Google within the member states of the European Union Union or other Contracting States to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by a corresponding setting of your browser software. We point out, however, that in this case you may not be able to use all the functions of this website in full.
You may also prevent Google from recording the data generated by the cookie and related to your use of the website (including your IP address) and Google’s processing of this data by downloading and installing the browser plug-in available at the following link: Browser Add On zur Deaktivierung von Google Analytics.
For more information on Terms of Use and Privacy, please see the Google Analytics Nutzungsbedingungen (Google Analytics Terms of Service) or Google Analytics Datenschutz (Google Analytics Privacy Policy).
We have determined that Google Analytics stores data for it’s smallest limit of 14 months.
IX. Duration of storage
According to the principles of data avoidance and data economy, we store personal data only as long as necessary or required by law (legal storage period). If the purpose of the information collected does not apply or if the storage period ends, we block or delete the data.
X. Rights of the person concerned
If personal data are processed by you, you are i.S.d. GDPR and you have the following rights to the person responsible. For this purpose please contact us via i info(at)stoehr-sauer.de.
1. Right to information
You can request confirmation from the person responsible about whether personal data concerning you is processed by us.
If such processing is available, you may ask the controller for the following information:
- the purposes for which the personal data are processed,
- the categories of personal data being processed,
- the recipients or categories of recipients, to which the personal data relating to you have been or will be disclosed:
- the planned duration of the personal data held by you or, if specific information is not available, criteria for determining the duration of the retention period;
- the right of rectification or Deletion of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
- the existence of a right of appeal to a supervisory authority,
You have the right to request information about whether the personal data relating to you are being transferred to a third country or to an international organization. In this connection, you can request the appropriate guarantees in accordance with. Art. 46 GDPR to be informed in connection with the transfer.
2. Recht auf Berichtigung
You have a right to rectification and / or completion to the person responsible, provided that the personal data you process is incorrect or incomplete. The person responsible must make the correction immediately.
3. Right to restriction of processing
Under the following conditions you may request the restriction of the processing of your personal data:
1) if you deny the accuracy of your personal data for a period of time that allows the controller to verify the accuracy of the personal data;
2) the processing is unlawful and you refuse to delete the personal data and instead demand the restriction of the use of the personal data
3) the person responsible no longer needs the personal data for the purposes of the processing, but this for assertion, exercise or defense or
4) if you have lodged an objection to the processing pursuant to Art. 21 (1) GDPR and it is not yet certain whether the legitimate reasons of the person responsible prevail over your reasons
If you restrict your personal data, you may only use this data – except for your personal data Consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of major public interest of the Union or of a Member State. If conditions are restricted, you will be informed by the person in charge before the restriction is lifted.
4. Right to Cancellation
a) Obligation to delete
You may require the controller to delete the personal data concerning you without delay, and the controller is obliged to delete such data immediately if one of the following reasons applies:
1) Your personal data are for the Purposes for which they have been collected or otherwise processed are no longer necessary.
2) You revoke your consent to the processing in accordance with. Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. GDPR and there is no other legal basis for processing.
3) According to. Art. 21 para. 1 GDPR objection to the processing and there are no prior justifiable reasons for the processing, or you lay gem. Art. 21 para. 2 GDPR Opposition to processing.
4) Your personal data has been processed unlawfully.
5) The deletion of personal data concerning you is required to fulfill a legal obligation under Union law or the law of the Member States to which the controller is subject.
6) The personal data relating to you have been collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.
b) Information to third parties
If the person responsible has made public the personal data relating to you and is in accordance with Art. Article 17 (1) of the GDPR, it shall take appropriate measures, including technical means, to inform data controllers who process the personal data that you have been identified as being affected, taking into account available technology and implementation costs Persons requesting deletion of all links to such personal data or of copies or replications of such personal data.
c) Exceptions
The right to erasure does not exist where the processing is necessary
1.) to exercise the right to freedom of expression and information;
2.) to fulfill a legal obligation which governs the processing under the law of the Union or of the Member States to which the controller is subject;
3.) for reasons of public interest in the field of public health, in accordance with Article 9 (2) lit. h and i as well as Art. 9 (3) GDPR;
4.) for archival purposes in the public interest, scientific or historical research purposes or for statistical purposes acc. Article 89 (1) GDPR, to the extent that the right referred to in subparagraph (a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or
5.) to assert, pursue or defend rights.
5. Right to information
If you have asserted the right of rectification, erasure or restriction of processing to the controller, the latter is required to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing because, this proves to be impossible or is associated with a disproportionate effort. They are entitled to the person responsible to be informed about these recipients.
6. Right to Data Portability
You have the right to receive personally identifiable information relating to you provided to the controller in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another person without hindrance by the person responsible for providing the personal data, provided that:
1.) the processing is carried out with the consent of the person responsible. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract acc. Art. 6 para. 1 lit. b GDPR is based and
2.) the processing is carried out by automated means.
.
In exercising this right, you also have the right to obtain that personal data concerning you are transmitted directly from one person responsible to another person responsible, as far as this is technically feasible. Freedoms and rights of others may not be affected by this.
The right to transfer data It does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the controller.
7. Right of revocation of the data protection consent form
You have the right to revoke your data protection consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
In order to be able to take account of a data lock at any time, it is necessary to keep the data in a lock file for control purposes. If there is no statutory filing requirement, you can also request the deletion of the data. Otherwise we will block the data if you so desire.
If the user contacts us by e-mail, he may object to the storage of his personal data at any time. In such a case, the conversation can not be continued. All personal data stored in the course of contacting them will be deleted.
8. Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of its residence, place of work or place of alleged infringement, if you believe that the processing of the Your personal data violates the GDPR. The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.XI.
XI. Data Security
We use technical and organizational security measures to protect personal data arising or collected, in particular against accidental or intentional manipulation, loss, destruction or against the attack of unauthorized persons. Our security measures are constantly being improved in line with technological developments.
XII. Changes to our Privacy Policy
To ensure that our privacy policy is consistent with the latest legal requirements, we reserve the right to make changes at any time. This also applies in the event that the privacy policy has to be adapted due to new or revised services, for example new services. The new privacy policy will then take effect on your next visit to our offer.