Company

None

Privacy Policy

Thank you for visiting our website. We regard compliance with the data protection requirements as particularly important. The aim of this privacy policy is to inform you, as the user of the website, about the nature, scope and purpose of the processing of personal data and your existing rights, insofar as you are regarded as a data subject within the meaning of Art. 4 No. 1 of the General Data Protection Regulation. The following privacy policy already takes account of the amendments made by the General Data Protection Regulation (GDPR), which has been in force since 25 May 2018. At the same time, the requirements of Section 13 of the Telemedia Act are fulfilled, as were applicable until that time.

1. Controller

The website and the offered services are made available by

Welding GmbH & Co. KG

Esplanade 39

20354 Hamburg

Postal address:

PO Box 305840

20318 Hamburg

Tel: +49 40 35908-0

Fax: +49 40 35908-251

E-mail : mailbox(at)welding.eu

Internet: www.welding.eu

Directors: Dr. Torsten Knecht (Chairman), Thomas Bahnsen, Lars Hallmayer

(hereinafter referred to as “Welding”).

2. General information

The website is designed such that we collect as little data as possible from you.

As a general rule, it is possible to visit our website without disclosing personal data.

The processing of personal data will only become necessary, if you decide to use specific services (e.g. using the contact form). For this we always ensure that we only process your personal data in accordance with a legal basis or the consent you have granted us. We comply with the regulations of the General Data Protection Regulation (GDPR), which has been in force since 25 May 2018 and the respective applicable national regulations, such as the Federal Data Protection Act, the Telemedia Act or other more specific laws relating to data protection.

3. Definitions

The terms used in this privacy policy have the following meaning as per the GDPR.

personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

“processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

“restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future;

“pseudonymisation” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person;

“controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;                                                              “processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;   “recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in connection with a specific inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;                                                                                                                      third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;                                                                          “consent” of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

4. Consent

In part, we collect specific personal data from you when you visit our website, for which we require your consent. This takes place, for example, if you send us a message via our contact form.

Declaration of consent

With the use of our available forms, you consent to us collecting the personal data provided by you and how we are permitted to process the data referred to in this privacy policy. You can withdraw this consent at any time with effect for the future, by way of a declaration to that effect. However, please note that without your consent, it will no longer be possible to use our service.

Please use the contact methods indicated above for your withdrawal of consent

(in this case, please provide us with your name, e-mail and postal address).

5. Purpose and legal basis for processing the personal data

We process personal data, which is required for the establishment, execution or processing of our offered services on the legal basis of Art. 6 Para. 1 point b GDPR.

The processing of personal data to in order to preserve our legitimate interest occurs within the meaning of Art. 6 Para. 1 point f GDPR.

If the processing of your personal data occurs for the purpose referred to with your consent, this occurs on the basis of Art. 6 Para. 1 point a GDPR.

If we enlist the services of external service providers as part of a commissioned processing arrangement, the processing will take place on the basis of Art. 28 GDPR.

We process and use the personal data for the following purposes only:

Purpose of data processing

Legal basis for data processing (“What is the data processing needed for”)

for making contact and related correspondence

on the basis of your consent

for processing your matter and for any requested further advice

on the basis of your consent

for sending an offer on the basis of your request

on the basis of pre-contractual measures

for processing your application

on the basis of your consent

for ensuring that our website is presented to you in the most effective and interesting way possible (e.g. through anonymised analysis)

on the basis of legitimate interests

for the technical realisation of our services offered

on the basis of legitimate interests

6. Collected and processed personal data

We only collect and process your personal data, if you provide it to us knowingly and voluntarily, e.g. by filling out forms or sending e-mails.

The forms we provide initially collect the following data:

Contact via the contact form

  • Name
  • E-mail address*
  • Message

Direct contact via e-mail

  • Name
  • E-mail address*
  • Message

* = Mandatory fields

The personal data provided by you and their contents remain exclusively with us and our affiliated companies. Your data will only be stored and used for the purposes referred to in Section 5.  Use over and above the purpose shown requires your express consent.  The same also applies to the transfer and transmission of your data to third parties.

7. General log files

The webserver uses log files to temporarily record the connection data of the computer requesting access (IP address), the pages you visit on our site, the data and duration of the visit, the identification data of the browser and operating system used, as well as the website from which you visit us and the successful retrieval. The technical administration of the websites and anonymous statistical surveys facilitate an analysis of the access made to Welding’s website and an analysis with the aim of increasing the data protection and data security in our company, in order to ultimately ensure an optimum protection level for the personal data we process.

The data of the server log files are stored separately from all of the personal data provided by you. Subject to possible legal retention duties, we will erase or anonymise your IP address after you have left our website.

8. Cookies

Use of cookies

Information is collected and stored on our website by using browser cookies.

What are cookies?

These are small text files, which are stored on your data carrier and which store specific settings and data about the exchange with our system made via your browser. Cookies generally contain the name of the domain, from which the cookie data have been sent, as well as information about the age of the cookie and an alphanumeric identification symbol.

Why do we use cookies?

Cookies enable our systems to identify the user’s device and make possible default settings immediately available. As soon as a user accesses the platform, a cookie is sent to the hard disk of the respective user’s computer. Cookies help us to improve our website and offer you a better service, which is tailored even more to you.

They enable us to recognise your computer and/or your (mobile) terminal device when you return to our website and therefore to:

  • save information about your preferred activities on the website and thereby base our website on your individual interests.
  • speed up the processing of your enquiries.

We work together with third-party services, which support us in making the internet service and the website more interesting for you. Therefore, cookies from these partner companies (third-party providers) are also stored on your hard disk. These are cookies, which are automatically erased after the specified time.

Cookie name

Initial provider cookies or third-party provider cookies

With third-party provider cookies: Who is the originator?

Description / function

Standard elapsed time

_cfduid

CloudFair

Identification of individual clients for an IP address

5 years

Can I determine if cookies are used?

If you do not want browser cookies to be used, you can set your browser such that the storage of cookies is blocked. Please note that in this case, you may only be able to use our website to a limited extent or not at all. If you only want to accept our cookies, but not the cookies of our service providers and partners, you can select the “block cookies from third-party providers” setting in your browser.

We have no responsibility regarding the use of third-party cookies.

9. Job application process

If you submit a job application to Welding via electronic media, your details will only be used for processing your application and will not be disclosed to third parties. Please note that the job applications you send to Welding via e-mail are transferred in unencrypted form.

The risk exists here that unauthorised persons can intercept and use these data.

10. Integration of services and third-party contents

Our website does not use any content or services of other providers. The providers (hereinafter referred to as “third-party providers”) will therefore detect the IP address of the respective user.

Although we make every effort to exclusively use third-party providers, which only need the IP address in order to deliver contents, we have no influence on whether the IP address may possibly be stored. In this case this process is performed for statistical purposes, inter alia. If we become aware that the IP address is being stored, we will inform you about this.

An agreement should guarantee compliance with the valid data protection level in the EU.

11. Data security

Unfortunately, the transfer of information via the internet is never 100% secure, which is why we cannot guarantee the security of the data sent to your website via the internet.

However, we do use technical and organisational measures to secure our website against loss, destruction, access, modification or dissemination of your data by unauthorised persons.

In particular, your personal data are transferred to us in an encrypted form. We use the SSL/TLS (Security Sockets Layer/Transport Layer Security) coding system.  Our security measures are continuously improved in accordance with technological developments.

12. Making contact

You can contact us via e-mail or using our contact form. In this case, we store the personal data sent by you in order to process your matter and to make contact with you in order to process your matter. These data are sent to us by you on a purely voluntary basis. No disclosure to third parties occurs of the personal data sent to us in this way. The details for making contact with us can be found above in this privacy policy and in our legal notice.

13. Rights of the data subject

Insofar as you are a data subject within the meaning of Art. 4 No. 1 GDPR, you have the following rights regarding the processing of your personal data in accordance with the GDPR.

The legislative text of the statutes listed below can be found at

https://www.bfdi.bund.de/SharedDocs/Publikationen/Infobroschueren/INFO6.html.

Right to confirmation and right of access

Subject to the conditions of Art. 15 GDPR, you have the right to request a confirmation about whether personal data relating to you are processed and to obtain information free of charge at any time from the data controller regarding the personal data stored about you and to obtain a copy of this information.

Right to rectification

Under the preconditions of Art. 16 GDPR, you have the right to demand the immediate rectification of the relevant inaccurate personal data.

Furthermore, you have the right to demand the completion of incomplete personal data, in view of the purposes of processing, also by means of a supplementary declaration.

Right to erasure

Under the preconditions of Art. 17 GDPR, you have the right to demand that the personal data related to you are erased immediately, provided that one of the reasons referred to in Art. 17 GDPR exists and insofar as the processing is not necessary.

Right to restriction of processing

Subject to the conditions of Art. 18 GDPR, you have the right to demand the restriction of processing, if one of the conditions referred to in Art. 18 GDPR exists.

Right to data portability

Subject to the conditions of Art. 20 GDPR, you have the right to obtain the personal data related to you, which you have provided to us, in a structured, commonly-used and machine-readable format, and you have the right to send these data to another controller without being impeded by us, provided that the additional conditions of Art. 20 GDPR exist.

Right to withdrawal of a consent

You have the right to withdraw consent that has been granted to us for processing personal data with effect for the future at any time. Please send the withdrawal to the contact detailed specified above.

Right to object

Subject to the conditions of Art. 21 GDPR, you have the right to object to the processing of personal data relating to you at any time.

If the preconditions exist for a valid objection, processing by us will no longer be permitted.

Right to lodge a complaint to the supervisory authority

Without prejudice to other administrative law or judicial legal remedies, you are entitled to a right to lodge a complaint with a supervisory authority, particularly in a Member State of your place of residence, your place of work or the location of the suspected infringement, if you are of the opinion that the processing of your personal data infringes the provisions of the GDPR.

14. Disclosure of your personal data

The disclosure of your personal data occurs as described below.

The website is hosted with an external service provider in Germany. In doing so, we ensure that data processing takes place exclusively in Germany. This is necessary for the operation of the website, as well as for the establishment, implementation and processing of the existing licence agreement, even without your consent. Disclosure also takes place, if we are entitled or obligated to do so on the basis of statutory provisions and/or official or court orders. In particular, it can involve the disclosure of information for the purpose of criminal prosecution, danger prevention or the assertion of intellectual property rights.

Insofar as your data are disclosed to service providers to the necessary extent, they will only have access to your personal data, to the extent necessary for the fulfilment of their duties. These service providers are obligated to handle personal data in accordance with the valid data protection laws, particularly the GDPR. As a general rule, we do not send your data to third parties without your consent, over and above the aforementioned circumstances. In particular, we do not disclose any personal data to a body in a third country or an international organisation

15. Duration of storage of personal data

With respect to the storage duration, we erase personal data as soon as the storage is no longer necessary for the fulfilment of the original purpose and statutory retention periods no longer exist. The statutory retention periods ultimately form the criterion for the ultimate duration of the storage of personal data. After the expiry of the time limit, the relevant data are routinely erased. If retention periods exist, a restriction of processing takes place in the form of the blocking of data.

16. References and links 

When accessing websites, which are referred to within our website, details such as name, address, e-mail address, browser characteristics etc. can be requested again. This privacy policy does not cover the collection, disclosure or handling of personal data by third parties.                     
Third-party service providers can have alternative, own provisions regarding the handling of the collection, processing and use of personal data. Therefore, prior to entering personal data, it is advisable to find out about the practice of third parties in handling personal data on their websites.

17- Change to the privacy policy    

We are constantly developing our website, in order to provide you with a constantly improving service. We will always keep this privacy policy up-to-date and adapt it accordingly, if and insofar as it becomes necessary.

We will naturally inform you in good time about possible changes to this privacy policy. We will do this e.g. by sending an e-mail to the e-mail address that you have provided to us. Insofar as further consent is required from you regarding our handling of your data, we will naturally obtain this from you before the relevant changes come into force.

18. Data Protection Officer

We have appointed a Data Protection Officer.

Carolin Leja

www.mein-datenschutzbeauftragter.de

Hafenstraße 1a

23568 Lübeck                                                                                                                                                                             

E-mail: datenschutz[at]welding.eu

 

As of: October 2019