I Name and contact details
Responsible for data processing within the meaning of data protection law:
|SITEC Industrietechnologie GmbH||Feintool International Holding AG|
|Bornaer Straße 192
|+49 371 4708 241||+41 32 387 51 11|
|+49 371 4708 289||+41 032 387 57 81|
II General information on data processing
Scope of and legal bases for processing personal data
When you use our website, your personal data (hereinafter simply “data”) will be processed. This data can include such items as your name, address, email address and other personal information. In this context, processing essentially means any manner of handling this data whatsoever.
We process our users’ data only to the extent necessary to provide our content and services and a fully functioning website. As a rule, we process our users’ data only with the user’s consent. Art. 6 (1) a) GDPR provides the legal basis for this. An exception to this rule applies in those cases where it is not possible to obtain prior consent for practical reasons and where statutory regulations permit the data to be processed. Such cases are covered primarily by Art. 6 (1) b) GDPR and Art. 6 (1) f) GDPR. Art. 6 (1) b) GDPR provides the legal basis for the processing of personal data that is necessary to perform a contract to which the data subject (the user) is party. This also applies for processing that is necessary for implementing measures prior to entering into a contract, for example tendering processes. Art. 6 (1) f) GDPR provides the legal basis where processing is necessary to safeguard the legitimate interests of our company or a third party, and where such interests are not outweighed by the interests or fundamental rights and freedoms of the data subject (the user).
In Section III you can find more detailed information on how your data is processed when you use the www.bipolarplates.com and in Section IV on further data processing outside our website.
In order to be able to offer you all of the features on the www.bipolarplates.com, we also use the services of selected service providers who process data on our behalf and in our name. In this case, we transfer data only within the scope of legally permissible contract processing to service providers who have been carefully selected by us and with whom we have written service agreements. These providers receive only the data necessary to fulfil the contract.
This includes the following categories of contractors:
- Web hosting services
- Website analysis services
In addition, data may be transferred to service providers (representatives) who assist us with the implementation of measures prior to entering into a contract (tendering processes). These providers are also carefully selected by us. Art. 6 (1) f) GDPR provides the legal basis for such data transfer, whereby our legitimate interest lies in the prompt processing of your requests and the regional proximity to our potential clients. In this case, too, only the data that is necessary to fulfil the contract is transferred.
Transfer of data outside the borders of the European Union
In general, the data we collect is stored exclusively on servers located within the European Union. As stated in Section III and, where applicable, IV of this data privacy statement, we occasionally use services whose providers are sometimes located in so-called third countries, i.e. countries in which the level of data protection is not equivalent to that of the European Union. Where this is the case and the European Commission has not adopted an adequacy decision (Art. 45 GDPR) for these countries, we have taken appropriate precautionary measures to improve the level of data protection for any and all data transfers, such as agreeing on standard European Union contractual clauses with the respective provider. Where this is not possible, we base the transfer of data on the derogations of Art. 49 GDPR, particularly your express consent. Insofar as data is to be transferred to a third country where no adequacy decision or appropriate safeguards are in place, it is possible and there is a risk that authorities in the respective third country (e.g. intelligence services) could gain access to the transferred data in order to collect and analyze it, and that your ability to enforce your rights as the data subject may not be guaranteed. Where your consent is obtained by way of the cookie banner, you will also be informed of this accordingly.
Duration of storage
The data will be erased as soon as the reason for its storage no longer applies. You can find more information on the individual types of processing in Sections III and IV. Data may be stored beyond this period where stipulated by the European or national legislators in European Union legal regulations, laws or other regulations to which the Controller is subject. Data will also be blocked or erased upon expiry of a storage period dictated by the aforementioned standards, unless it is necessary to continue to store the data for the purpose of entering into or fulfilling a contract.
All data stored at SITEC, at Feintool, on data processors or representatives (where applicable) is protected against unauthorized access, loss and alteration using the latest security standards.
This involves taking extensive technical and organizational security precautions at a standard that is at least adequate to satisfy the legal requirements.
Your rights and options for lodging complaints
You have the following rights vis-à-vis our company in respect of the data relating to you:
- Right of access to information regarding the processing of your data
- Right to rectification in the event that data stored by us is incorrect or out of date
- Right to erasure unless other legal purposes require us to continue storing your data
- Right to restriction of processing, for example if you are of the opinion that data stored by us is out of date
- Right to data portability
- Right to object to processing, for example where such is performed on the basis of Art. 6 (1) f) GDPR
- Right to withdraw your consent
You can exercise all of these rights by contacting us at email@example.com.
You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data. The competent supervisory authority in Saxony is: The Data Protection Officer for Saxony, Devrientstraße 5, 01067 Dresden, Germany.
III Data processing in detail
Provision of our website and IT security
Ultimately, we process data in your and our interest in order to ensure the integrity, confidentiality and availability of the data-processing systems, i.e. particularly the security and availability of your data on Art. 6 (1) f) GDPR provides the legal basis for processing this data, whereby our legitimate interest lies in the maintenance and secure provision of our services.
We do not permanently store or analyze log files for reasons of data protection.
In the imprint, it is possible to contact us via the email address provided. This data will not be passed on to third parties or will only be passed on to SITEC Industrietechnologie GmbH and Feintool International Holding AG. The data will be used exclusively for processing the request.
The legal basis is Art. 6 (1) b) and Art. 88 (1) GDPR in connection with Section 26 (1) sentence 1 of the German Federal Data Protection Act (BDSG). If no contractual relationship is established on the basis of your application, the data will be deleted after six months at the latest as the purpose for processing the data no longer exists. Where you have given us your separate consent to do so, we will store your data for a further 24 months to enable us to contact you within this period if we have any other suitable positions for you.
We also use contact forms on our website so that you can e.g. send us inquiries for your project or information material. In this case, we only collect the data provided by you that is necessary to process your request. The fields for the necessary data are marked as mandatory. If we ask you for more details, this information is voluntary. We only use this information to tailor the requested service (via the contact form) even better to your needs.
Art. 6 (1) a) GDPR provides the legal basis for data processing in this case. Before the contact form is transmitted, we will obtain your consent for the processing of the data and refer you to this data privacy statement. The data is deleted once the purpose no longer exists or the communication has been terminated. Art. 6 (1) b) GDPR provides the additional legal basis where contractual relationships, tendering processes, etc., are formed on the basis of the communication, and the data will only be deleted when the retention periods provided for this purpose have expired.
Further, you also have the option of withdrawing your consent as described under Section II. In this case, all personal data stored as a result of your contacting us will be erased. In such cases, the conversation cannot be continued.