Data protection policy

The ElringKlinger Group is thoroughly committed to data protection. To safeguard the personal data that you may submit to us or that may be collected when you visit our internet pages, we act in accordance with the current data privacy legislation.

The body responsible for compliance with data protection regulations on this internet site is:

ElringKlinger AG
Max-Eyth-Strasse 2
72581 Dettingen/Erms, Germany
 

Collection, processing and utilization of personal data

“Personal data” is defined as (user-related) information that pertains to individuals or may be linked to individuals. Such information includes your name, address, postal address, and telephone number.

Information that cannot be directly linked to an individual’s identity (e.g., dwell time on a website, number of users) is not defined as personal data.

Our website only collects personal data where this is needed to support technical functioning or to monitor usage of the site. The legal basis is provided by article 6 subsection 1 a), f) of the General Data Protection Regulation (GDPR).

Your data is also processed for the following purposes:

· registration and user management.
The legal basis is provided by article 6 subsection 1 f) of the GDPR.

· providing videos.
The legal basis is provided by article 6 subsection 1 f) of the GDPR.

· route planning (finding a sales partner)
The legal basis is provided by article 6 subsection 1 f) of the GDPR.

When the http protocol is used, the following data will be stored on the server:

Date

Duration of storage

Type/version of browser

14 days

Operating system used

14 days

Referrer URL

14 days

IP address

14 days

Time of query

14 days

 

Where this or other personal data is processed in response to the usage of other services on this site (for example, use of the contact form), you will be informed accordingly before using such a service.
 

Transfers of personal data

To guarantee the operation of this internet site, the data you process will be passed on to the following recipients:

 

Category

Purpose

Transfer to a third country

Advertising agency

Website operation

No

 

 

 

Video platform

Providing videos

Yes

Map provider

Route planning

Yes

Advertising agency

Development and design

No

ElringKlinger AG

Processing of site content

No

Newsletter

Provision of newsletter

No

 

Where data is transferred to a third country, your personal data will be protected by contractual agreements with the recipient in line with article 44 of the GDPR. For a copy of the relevant contractual agreements, please contact the address listed below.

If you make use of our plugin for social networks, ElringKlinger AG will not pass on this data; you will be diverted directly to the relevant site of the social network.

Where your personal data is forwarded to recipients other than those stated owing to the use of external services, you will also be notified prior to processing.
 

Your rights

As an affected person whose data is processed, you have the following rights under the GDPR:
 

·         Right of access

·         Right to rectification

·         Right of deletion

·         Right to restrict data processing

·         Right to data portability

·         Right to object, in particular to processing in accordance with article 6 subsections 1 a) and f) of the GDPR.

 

If you wish to assert any of these rights, please make informal written contact with the address indicated. If you wish to assert your right to object, this shall not affect data processed to date. You also have the right to lodge a complaint with a supervisory authority.
 

Deletion

When deleting your data, we adhere to the data protection principles of the GDPR, according to which data is deleted directly, i.e., after your enquiry is processed. The tables shown in the data protection policy indicate the configured deletion and storage periods in detail.
 

Cookies

Our web pages make use of cookies. A cookie is a small data record that can be stored on your hard drive. This data record is created by the web server to which you establish a connection via your web browser (e.g., Internet Explorer, Google Chrome or Mozilla Firefox) before being sent to you.

The following table contains all information relevant to the cookies that we use

 

Function

Duration of storage

 

PHP standard session identification

End of session

 

TYPO3 standard session identification

End of session

At present, most browsers are configured to accept cookies automatically as standard. However, you have the option of setting your browser to reject cookies or notify you before they are stored. However, deactivating cookies may preclude error-free access to certain sections of the home page. You may also delete cookies manually at any time.

Friendly Captcha

We use Friendly Captcha (hereinafter referred to as “Friendly Captcha”) on this website. The provider is Friendly Captcha GmbH, Am Anger 3-5, 82237 Woerthsee, Germany.

Friendly Captcha is used to verify whether the entry of data into this website (e.g., into a contact form) is being processed by a person or an automated program. For this purpose, Friendly Captcha analyzes the behavior patterns of website visitors based on numerous characteristics. For the analysis, Friendly Captcha examines a wide range of information (e.g., anonymized IP address, referrer, time of the visit, etc.). For more related information please visit: https://friendlycaptcha.com/legal/privacy-end-users/.

The storage and analysis of the data occurs on the basis of Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in protecting the operator’s web presentations against abusive automatic spying and SPAM. In the event that respective consent has been obtained, the data will be processed exclusively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, if the consent comprises the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) as defined in the TTDSG (German Telecommunications Act). Such consent may be revoked at any time.

Data processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

Newsletter

Newsletter data

If you wish to subscribe to the newsletter offered on the website, we will require your email address along with information that enables us to verify that you are the owner of the specified email address and that you agree to receive the newsletter. No additional data will be collected (or will only be collected on an optional basis). For the processing of newsletters, we cooperate with the newsletter providers described below.
 

Inxmail

This website uses Inxmail to send out newsletters. The supplier is Inxmail GmbH, Wetzinger Strasse 17, 79106 Freiburg, Germany (hereafter Inxmail).

Inxmail is a service that can be used to organize and analyze the sending of newsletters. Data you enter when subscribing to the newsletter is processed on the servers of Inxmail.
 

Data analysis via Inxmail

With the help of Inxmail, we are able to analyze our newsletter campaigns. For example, we are able to see whether a newsletter has been opened and which links have been clicked. In this way, among other things, we can determine which links are clicked particularly often.

In addition, we can recognize whether certain predefined actions were performed after opening/clicking a link (conversion rate). We are thereby able to recognize, for example, whether you made a purchase after clicking on the newsletter.

Inxmail also enables us to divide newsletter recipients into different categories and ‘cluster’ them by age, gender, or place of residence. This in turn allows us to adapt our newsletters to specific target groups more effectively. If you do not want Inxmail to perform such analysis, you must unsubscribe from the newsletter; a link for this purpose is included in every message pertaining to the newsletter.

To view the data protection policy of Inxmail, please visit https://www.inxmail.de/datenschutz.
 

Legal basis

Data is processed on the basis of your consent in accordance with article 6 subsection 1(a) of the GDPR. You may permanently revoke this consent at any time.
 

Duration of storage

The data you provide for the purposes of newsletter subscription will be stored by us and the newsletter service provider until you opt to stop receiving the newsletter; it will be deleted when you unsubscribe from the newsletter mailing list or when the purpose ceases to exist. In accordance with article 6 subsection 1(f) of the GDPR, we reserve the right to delete or block email addresses from our newsletter distribution list at our discretion in order to uphold our legitimate interests. Data that we store for other purposes is unaffected.

After you unsubscribe from the newsletter mailing list, your email address may be placed on a blacklist by ourselves or the newsletter provider where this is necessary to prevent future mailings. Data from the blacklist will be used for this purpose only and will not be merged with other data. This serves both your interests and ours as regards compliance with the legal provisions on sending newsletters (legitimate interest under the terms of article 6 subsection 1(f) of the GDPR). There is no time limit to inclusion on the blacklist. If your interests outweigh our legitimate interests, you may object to storage.
 

Order processing

We have concluded an order processing agreement with the aforementioned supplier. This contract, which is regulated by data protection law, ensures that the supplier will only process the personal data of our site visitors in accordance with our instructions and in line with the GDPR.


Plugins and tools

YouTube with Privacy Enhanced mode

This website incorporates videos from YouTube, a site operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube in Privacy Enhanced mode. According to YouTube, this mode prevents YouTube from storing any information on visitors to our website before they watch the video. However, Privacy Enhanced mode does not necessarily exclude transfers of data to YouTube partners. Regardless of whether you view a video, YouTube will establish a connection to Google’s DoubleClick network.

As soon as you start a YouTube video on this website, a connection to the servers of YouTube is made. The YouTube server is thereby informed which of our pages you have visited. If you are logged in to your YouTube account, you allow YouTube to allocate your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

Moreover, YouTube may store various cookies on your device when you start a video, or deploy similar recognition technologies (e.g., device fingerprinting). In this way, YouTube obtains information on visitors to this website. This information is used to compile video statistics, improve user-friendliness, and prevent fraud, among other purposes.

It is possible that other data processing operations may be triggered when playback of a YouTube video starts; we have no influence on these.

YouTube is utilized in order to present our online offers in an appealing way, which constitutes a legitimate interest under the terms of article 6 subsection 1(f) of the GDPR. Where corresponding consent was requested, processing will only be performed in accordance with article 6 subsection 1(a) of the GDPR and Section 25(1) of the Telecommunications Telemedia Data Protection Act (TTDSG), insofar as consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the terms of the TTDSG. Consent may be revoked at any time.

For more information on data protection at YouTube, please refer to the company’s data privacy policy at https://policies.google.com/privacy?hl=de.
 

Google Maps

This website makes use of the map service Google Maps as operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

For you to use the functions of Google Maps, it is necessary for your IP address to be stored. Generally, this information is transferred to a Google server in the USA, where it is stored. The supplier of this website has no influence on such data transfers. When Google Maps is activated, Google uses Google Web Fonts for the purposes of uniform font display. When you open Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

We use Google Maps in order to present our online offers in an appealing way, and to enable users to locate the places we indicate on the website, which constitutes a legitimate interest under the terms of article 6 subsection 1(f) of the GDPR. Where corresponding consent was requested, processing will only be performed in accordance with article 6 subsection 1(a) of the GDPR and Section 25(1) of the Telecommunications Telemedia Data Protection Act (TTDSG), insofar as consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the terms of the TTDSG. Consent may be revoked at any time.

Data transfers to the USA are based on the standard contractual clauses of the EU Commission. For full details, please see: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

For more information on the handling of user data, refer to the Google data privacy policy at https://policies.google.com/privacy?hl=de.
 

Data Security Officer

ElringKlinger AG has fulfilled its obligation to appoint a Data Security Officer, who may be contacted as follows:

ElringKlinger AG
attn.: Data Protection Officer
Max-Eyth-Straße 2
72581 Dettingen/Erms
Germany
data.safetymail@elringklingerweb.com