DATA PRIVACY STATEMENT
Thank you for visiting the Langguth GmbH website. Processing your data securely and confidentially is very important to us; in particular, we comply with the applicable statutory regulations of the Telemedia Act (Telemediengesetz, TMG), the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG (amended)) and other data protection provisions. To meet these requirements, we have taken technical and organisational measures to ensure we comply with these regulations. You can also visit this website without us collecting any personal data on you. To do so, you may have to adjust the settings in the browser you use. Data collected on this website is processed exclusively for the specified purposes. We will not pass on your data to third parties unless this is essential for the purpose in question or you have given your consent for us to do so.
1. Personal data
As per Article 4(1) GDPR, “personal data” describes any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by being connected to an identifier such as a name, an identification number, location data, an online identifier or to one or more specific factors. These may in this case include names, addresses, phone numbers, e-mail addresses or IP addresses, for example.
2. Data collection and processing when visiting our Website
When this website is accessed, the internet browser used by the visitor automatically sends data to the website’s server and processes it in the form of a log file. We require the log files for technical reasons, so that we can display the page you have accessed. The legal basis for this data processing is Art. 6(1) (f) GDPR. The log files are deleted immediately when you leave the website. Until it is deleted automatically, the following data is stored without any further input from the visitor to the website:
• Browser used
• Time the page was accessed
• Success or failure of page access
• Visitor’s operating system
• IP address via which the website was accessed
Log files are also used for statistical analyses and to improve the website (legal basis: Art. 6(1) (f) GDPR). This enables us to identify any errors such as defective links. When you use the website, the data we record includes the IP address of the computer you are using. Under certain circumstances, the IP address may make it possible to identify the website’s users. However, we do not analyse the recorded IP addresses for this purpose. IP addresses are analysed solely for statistical purposes and in an anonymised form.
• Transient cookies (used temporarily)
• Persistent cookies (used for a fixed period)
• Third-party cookies (set by third parties according to separate information).
Transient cookies (legal basis: Art. 6(1) (f) GDPR) are deleted automatically when you close your browser. These include session cookies in particular. These save a session ID which is used to assign various requests from your browser to the shared session. This enables your computer to be recognised when you return to the website. The session cookies are deleted when you close your browser.
Persistent cookies are exclusively used in connection with the web analysis services we use (legal basis: Art. 6(1) (f) GDPR) and are only used for as long as is necessary for that particular purpose; they expire after a maximum of two years. You can delete cookies from your computer’s hard drive at any time via your browser’s data protection functions. If you do so, the website may be less user-friendly and its functions may be restricted.
The data processed by cookies is necessary for the aforementioned purposes in order to protect the legitimate interests of the service provider in accordance with Art. 6(1) (f) GDPR.
If you opt in to receiving our newsletter, the only data you must give us is your e-mail address. You may also voluntarily give us your first name, last name and title, but these are not mandatory.
We only use the personal data you give us for sending the newsletter you have subscribed to, so that we can regularly send you the information you have requested by e-mail.
The basis for this is consent given voluntarily as per to Art. 6(1) (a) GDPR.
You can unsubscribe from the newsletter at any time. Information and options regarding unsubscribing are given at the end of each e-mail newsletter. If the data you have entered and provided is to be used for other purposes, your consent to this will be required, which will be clearly indicated at the appropriate points.
5. Machine Finder
If you use our Machine Finder, the only data you must enter is your e-mail address, so that we can then send you the information you require.
We will of course only use the data you enter for the specific purpose for which you gave us that data. If this involves contact/communication data, you give your consent for us to contact you by that method in order to handle your enquiry.
The basis for this is consent given voluntarily pursuant to Art. 6(1) (a) GDPR. The personal data collected via the form will be deleted automatically as soon as the enquiry has been dealt with, provided there are no reasons for retaining it further (e.g. subsequent issue of an order or conclusion of a contract).
You can withdraw your consent for the future at any time. To do so, please contact us directly. (See below for contact details.)
6. Use of social media
Links to social media are provided in some sections on our website. We use the “two-click solution” for this. That means that if you visit our site, no personal data will be passed on to the plug-in provider initially. The provider of the plug-in can be identified by the mark on the box – either its initial or logo.
The following social media are currently in use:
• Facebook, YouTube, Xing, LinkedIn
The legal basis for using social media plug-ins is Art. 6(1) (f) GDPR. A legitimate interest of our organisation, and the purpose underlying the use of social network plug-ins, is to widely publicise our services. The social networks are responsible for handling their users’ data in compliance with data protection regulations.
We have no influence over the data they collect or the data processing methods they use nor do we know the full extent of the data collected, the purposes of its processing or the data retention periods. We also have no information about how or when the plug-in providers erase the data collected.
You can obtain further information on the purpose and extent of data collection and processing by the plug-in providers from the providers’ own data privacy statements below. They will also give you further information on your rights and setting options for protecting your privacy in this regard.
a) Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; further information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US Privacy Shield Framework.
b) YouTube is a video portal founded in 2005 and owned by the US company YouTube, LLC, which has been a subsidiary of Google LLC, based in San Bruno, California, since 2006. YouTube has submitted to the EU-US Privacy Shield Framework. https://policies.google.com/privacy?hl=en&gl=en
c) XING SE, based in Hamburg, is the listed operator of the social network XING, which members primarily use to manage their professional contacts, in addition to some private contacts, and to link up with new contacts. – Xing AG, Gänsemarkt 43, 20354 Hamburg, Germany; http://www.xing.com/privacy
d) LinkedIn, based in Mountain View, California, is a web-based social network for maintaining existing business contacts and linking up with new professional contacts. – LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv – LinkedIn has submitted to the EU-US Privacy Shield Framework.
7. Links to other Websites
Our website may contain links to websites of other service providers who are not covered by this data privacy statement. If the use of other service providers’ websites involves the collection, processing or use of personal data, please ensure you read and understand the data privacy statements of the service providers in question.
We have taken various technical and organisational measures to protect your data (e.g. against destruction, loss, manipulation and unauthorised access). All our security measures are reviewed and amended regularly and kept up to date with the latest technology.
9. Job applications/careers
We cannot guarantee that the data transfer channels you use to send us (unsolicited) job applications and documents by e-mail are 100% secure. In general, e-mail is an insecure communication channel. Therefore, if you have confidential information and documents, we recommend that you send them to us by post or use suitable security measures to protect any documents that you send us electronically.
10. No forwarding of data to third parties
We will not pass on your data to third parties unless there is a legal basis which obliges or authorises us to do so:
• The data subject has given their express consent as per Art. 6(1) (a) GDPR,
• The data must be passed on as per Art. 6(1) (f) GDPR to assert, exercise or defend legal claims and there is no reason to assume that the data subject has an overriding legitimate interest in their data not being forwarded,
• There is a legal obligation to pass on the data as per Art. 6(1) (c) GDPR, and/or
• This is required as per Art. 6(1) (b) GDPR to fulfil the contract to which the data subject is party.
If external service providers have access to your data, compliance with the Data Protection Act is ensured by technical and organisational measures, legal bases and the conclusion of agreements on commissioned data processing or confidentiality agreements.
11. Right of Access
According to Art. 15 GDPR, you have the right to obtain information about the personal data we store about you, as well as the source of the data and the purpose of the processing. We would be very happy to provide you with any information you require. Please send a written access request to our data protection officer. (See below for contact details)
12. Rectification, erasure, right to restriction
We would be very happy to meet any request you may have for the rectification or erasure of personal data we store about you as per Art. 16–18 GDPR, provided such requests do not contravene statutory retention periods. If it is not possible to erase your data, the data will be blocked instead.
In addition, we will automatically erase the personal data we store about you at regular intervals if we no longer need to retain the data for the intended purpose and the erasure would not contravene statutory retention periods.
13. Right to object
You can object to the processing of your personal data for marketing purposes (legal basis: Art. 6(1) (f) GDPR at any time with future effect. This also applies to any related evaluation of specific characteristics, for example in data analysis. You can object in any way you wish, for example via a link in the newsletter or by getting in touch with us directly via the contact details specified in the contact information in the legal notice.
In addition, you have the right to object, for reasons relating to your particular situation, against any processing for other purposes which is carried out to balance interests, Art. 6(1) (f) GDPR. This may be the case in particular if the processing is not required in order to fulfil the contract to which you are party. When exercising an objection of this kind, we ask that you provide us with reasons why we should not process your personal data. In the case that your objection is justified, we will check the facts and will either stop or adapt the data processing, or demonstrate to you our legitimate grounds for continuing to process your data.
14. Contacting the supervisory authority
You have the right to complain to or obtain information from a data protection supervisory authority, for example LDI NRW, the data protection and information security commissioner responsible for us. https://www.ldi.nrw.de/metanavi_Impressum/index.php
15. Changes to the privacy statement
We reserve the right to make changes to the data privacy statement. Changes to the data privacy statement may be required for technical reasons or reasons relating to data protection law. Please always ensure you read and understand the latest version.
16. Contact details of the data protection officer
KATLEX Datenschutz-Management GmbH
Wolbecker Windmühle 61
17. Contact details of the data controller
Im Südfeld 17