Data protection information according to
EU General Data Protection Regulation for interested parties, business partners and their contact persons
The following information gives you an overview of how we process your personal data and your rights under data protection law. Which data is processed depends on the type and scope of the existing business relationship.
- Who is responsible for the processing of your personal data and who can you contact?
The responsible organisation is:
32105 Bad Salzuflen
Tel .: +49 (0) 52229500
You can contact our data protection officer at:
Mrs. Jessica Lorenz
32105 Bad Salzuflen
Tel .: +49 (0) 52229500
- What data do we use and how do we collect it?
As part of the initiation and implementation of the business relationship, we process in particular the following data categories of our business partners or their contact persons, which we have received directly from them or from third parties (e.g. Schufa) (e.g. to fulfill contracts or on the basis of a given consent). On the other hand, we process data that we have legitimately obtained from publicly accessible sources (e.g. commercial register, press, Internet).
personal / contact details (e.g. first name, last name, (mobile) telephone number, fax, email)
Customers / suppliers / service providers:
Personal / contact details (e.g. first name, last name, (mobile) telephone number, fax, email)
Contract and billing data (e.g. bank details, billing data)
Communication data in connection with correspondence (emails, correspondence)
- For what purposes and on what legal basis are your data processed?
The object of our company is the production of molding, extruding and cutting systems, as well as fully automatic coating systems and cooling tunnels, as well as chocolate tempering machines and casting systems for confectionery, as well as all related technical and commercial services.
The data processing is carried out for the exercise of these purposes in compliance with the provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and all other relevant laws (e.g. HGB, AO etc.).
- To fulfill the contract or for pre-contractual measures (Art. 6 Para. 1 b GDPR)
The processing of your personal data primarily serves to fulfill contracts with our customers, suppliers and service providers. This also includes the implementation of pre-contractual measures at the request of the business partner.
- As part of a balancing of interests (Art. 6 Para. 1 lit.f GDPR)
If necessary, we process your personal data to protect our legitimate interests or those of third parties beyond the actual fulfillment of the contract.
These include the following interests:
- • Examination and optimization of procedures for needs analysis and for direct customer contact
- • Advertising insofar as you have not objected to the use of your data
- Based on legal requirements (Art. 6 Para. 1 lit. c GDPR)
We are subject to various legal obligations, such as commercial and tax regulations, which make it necessary to process your personal data.
- Who receives your personal data?
Within our company, those offices receive access to your personal data that they need to fulfill our contractual and legal obligations or the purposes mentioned above. Service providers and vicarious agents employed by us can also receive data for these purposes or for the fulfillment of your possibly communicated consent.
All recipients are obliged to comply with data protection.
Under these conditions, recipients of personal data can be:
- • Public bodies and institutions (e.g. tax authorities) if there is a legal or official obligation
- • Processors to whom we transmit personal data to carry out the business relationship with you (e.g. support / maintenance of EDP systems, data destruction, payment transactions, accounting ...)
- • Other service providers and sales representatives who are used directly for contract initiation or contract execution
- • The places for which you have given us your consent to the transfer of data
A data transfer to countries outside the EU or the EEA (so-called third countries) only takes place insofar as this is required by law, to carry out the order or you have given us your consent.
- How long will your data be stored?
We process and store your personal data as long as it is necessary to fulfill the purposes mentioned in section 3. It should be noted that our business relationships are generally geared towards the long term.
If the personal data are no longer required to fulfill contractual or legal obligations, they must be deleted regularly, unless their temporary further processing is necessary for the following purposes:
- • Fulfillment of retention periods under commercial and tax law, e.g. according to the Commercial Code or the Tax Code. The deadlines defined therein are 2 to 10 years.
- • Preservation of evidence in the context of the statute of limitations (e.g. §§ 195 ff. BGB)
- What data protection rights do you have?
As the person concerned, you have the following rights with regard to the personal data processed by us:
- Right to information (Art. 15 GDPR)
- Right to correction (Art. 16 GDPR)
- Right to deletion (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object to processing (Art. 21 GDPR)
- Right to lodge a complaint with the responsible supervisory authority (Art. 77 GDPR)
- Is there an obligation for you to provide personal data?
As part of the joint business relationship, you must provide the personal data that is necessary for the establishment and performance of the business relationship, in particular the fulfillment of the associated contractual obligations, and which we are legally obliged to collect.
- Is there automated decision making (including profiling)?
Automated decision making or profiling is not used.