Privacy policy

1. Privacy policy at a glance

General information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any information that enables you to be personally identified. Detailed information about data protection can be found in our privacy policy below.

Data collection on this website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. Their contact details can be found in the “Data controller information” section of this privacy policy.

How do we collect your data?

Your data is collected when you share it with us. This may be data you enter when completing a contact form, for example.

Other data is recorded automatically by our IT systems or with your consent when you visit the website. This is primarily technical data (e.g. your Internet browser, operating system or the time you viewed a page). This data is recorded automatically as soon as you access this website.

What do we use your data for?

Some of the data is collected to ensure that the website displays properly. Other data may be used to analyse your user behaviour.

What rights do you have with regard to your data?

You have the right to obtain information about the origin, recipients and purpose of your saved personal data free of charge at any time. You also have the right to request the rectification or erasure of this data. If you have given your consent to data processing, you can withdraw this consent with future effect at any time. In addition, you have the right to request that the processing of your personal data is restricted under certain circumstances. Furthermore, you have the right to lodge a complaint with the relevant supervisory authority.

You can contact us at any time regarding this or if you have any further questions about data protection.

2. Hosting

Mittwald

Our website is hosted by Mittwald. The service provider is Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4-6, 32339 Espelkamp (hereinafter referred to as Mittwald).

For details, please refer to Mittwald’s privacy policy: https://www.mittwald.de/datenschutz.

The use of Mittwald is based on Article 6(1)(f) GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If corresponding consent has been requested, data is processed exclusively on the basis of Article 6(1)(a) GDPR and Section 25(1) TTDSG (German Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia), provided that the consent includes the storage of cookies or access to information on the user’s end device (e.g. device fingerprinting) within the meaning of the TTDSG. This consent can be withdrawn at any time.

Data processing

We have concluded a data processing agreement (DPA) with the service provider named above. This is a contract prescribed by data protection law, which ensures that the service provider processes the personal data of our website visitors solely in accordance with our instructions and in compliance with the GDPR.

3. General notes and required information

Privacy policy

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy.

Various items of personal data are collected when you use this website. Personal data is information that enables you to be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

Please be aware that the transfer of data over the Internet (e.g. communication by e-mail) may have security implications. It is impossible to guarantee full protection against access by third parties.

Data controller information

The data controller responsible for data processing on this website is:

Schmieder GmbH
Schussenstraße 16
88273 Fronreute-Staig

Telephone: +49 (0) 7502 9449 - 0
E-mail: personal@schmiedergmbh.de

 

The data controller is the natural or legal person who, alone or with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

Retention period

Unless a specific retention period has been stated within this privacy policy, your personal data will be retained by us until the purpose for data processing is no longer valid. If you make a legitimate request for erasure or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. tax or commercial retention periods). If the latter is the case, deletion will occur after these reasons are no longer valid.

General information regarding the legal bases of data processing on this website

If you have consented to data processing, we will process your personal data on the basis of Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, provided that special categories of data are processed in accordance with Article 9(1) GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g. via device fingerprinting), data processing will also be carried out on the basis of Section 25(1) TTDSG. This consent can be withdrawn at any time. If your data is required for the fulfilment of a contract or to carry out pre-contractual activities, we will process your data on the basis of Article 6(1)(b) GDPR. Furthermore, if your data is required for the fulfilment of a legal obligation, we will process it on the basis of Article 6(1)(c) GDPR. In addition, data processing may also be carried out on the basis of our legitimate interest in accordance with Article 6(1)(f) GDPR. The following paragraphs of this privacy policy contain information about the relevant legal bases in each individual case.

Data protection officer

We have appointed a data protection officer for our company.

Schmieder GmbH
Christian Bächtle
Schussenstraße 16
88273 Fronreute-Staig

Telephone: +49 (0) 7502 9449 - 0
E-mail: baechtle@schmiedergmbh.de

Withdrawal of your consent to data processing

Many data processing procedures are only possible with your express consent. You can withdraw your consent at any time. This does not affect the legality of any data processing carried out prior to the withdrawal of your consent.

Right to object to the collection of data in particular cases, as well as to direct marketing (Article 21 GDPR)

IF DATA PROCESSING IS CONDUCTED ON THE BASIS OF ARTICLE 6(1)(E) OR (F) GDPR, YOU SHALL HAVE THE RIGHT TO OBJECT, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, AT ANY TIME TO PROCESSING OF PERSONAL DATA CONCERNING YOU, INCLUDING PROFILING BASED ON THOSE PROVISIONS. THE RELEVANT LEGAL BASES APPLICABLE TO PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE SHALL NO LONGER PROCESS THE PERSONAL DATA UNLESS WE DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS OR FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21(1) GDPR).

WHERE YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU SHALL HAVE THE RIGHT TO OBJECT AT ANY TIME TO PROCESSING OF PERSONAL DATA CONCERNING YOU FOR SUCH MARKETING, WHICH INCLUDES PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA SHALL NO LONGER BE PROCESSED FOR DIRECT MARKETING PURPOSES (OBJECTION PURSUANT TO ARTICLE 21(2) GDPR).

Right to lodge a complaint with the relevant supervisory authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the member state of his or her habitual residence, place of work or place of the alleged infringement. The right to lodge a complaint exists without prejudice to any other administrative or judicial remedy.

Right to data portability

You have the right to have the data that we process by automated means on the basis of your consent or during fulfilment of a contract handed over to you or a third party in a commonly used and machine-readable format. If you request the direct transfer of the data to another controller, this shall only be done if it is technically possible.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content – such as orders or enquiries that you send to us in our capacity as the site operator – this site uses SSL or TLS encryption. You can tell that a connection is encrypted if the browser address bar changes from “http://” to “https://”, and if there is a padlock symbol in the bar of your browser.

When SSL or TLS encryption is enabled, third parties are not able to read the data that you transmit to us.

Access, erasure and rectification

Within the framework of the applicable legal provisions, you have the right to obtain information about your saved personal data, its origin and recipients, the purpose of data processing and, if necessary, the right to rectify or erase this data free of charge at any time. You can contact us at any time regarding this or if you have any further questions about personal data.

Right to restriction of processing

You have the right to request that the processing of your personal data is restricted. You can contact us regarding this at any time. The right to restriction of processing exists in the following cases:

  • If you contest the accuracy of the personal data we have on file, we usually need time to check this. For the duration of the checks, you have the right to request that the processing of your personal data is restricted.
  • If the processing of your personal data happened/is happening illegally, you can request the restriction of data processing instead of erasure.
  • If we no longer need your personal data, but you need it to establish, exercise or defend legal claims, you have the right to request that the processing of your personal data is restricted instead of being erased.
  • If you have lodged a compliant pursuant to Article 21(1) GDPR, your interests must be weighed up against our own. Until it has been established whose interests outweigh the other’s, you have the right to request that the processing of your personal data is restricted.

If you have restricted the processing of your personal data, such data will, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.

4. Data collection on this website

Server log files

The website provider automatically collects and stores information in server log files, which your browser automatically transmits to us. These include:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data will not be merged with other data sources.

This data is collected on the basis of Article 6(1)(f) GDPR. The website operator has a legitimate interest in ensuring that its website is optimised and displayed without any technical errors – this requires the server log files to be recorded.

E-mail, telephone or fax enquiries

If you contact us by e-mail, telephone or fax, your enquiry including all the personal data resulting from it (name, enquiry) will be stored and processed by us for the purpose of processing your enquiry. We will not pass on this data without your consent.

This data is processed on the basis of Article 6(1)(b) GDPR, provided that your enquiry is related to the fulfilment of a contract or is necessary to carry out pre-contractual activities. In all other cases, the processing is based on our legitimate interest in the effective processing of enquiries sent to us (Article 6(1)(f) GDPR) or on your consent (Article 6(1)(a) GDPR), provided that this was requested.

The data you send to us when making an enquiry shall be retained by us until you ask for it to be erased, withdraw your consent to its storage or the purpose for storing the data no longer applies (e.g. after your enquiry has been fully processed). Mandatory statutory regulations – in particular statutory retention periods – remain unaffected.