Data Protection Policy
1. General information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is defined as any information that can be used to personally identify you. Please refer to the Data Protection Policy set out below for further information on the subject of data protection.
Please note that the transfer of data via the Internet (by email communication, for example) may be subject to security vulnerabilities. It is not possible to completely protect data against interventions by third parties.
2. Name and contact details of the controller:
This Data Protection Policy applies to data processing by:
Controller: Medicke Metallbau GmbH
Legally represented by its Managing Director Marcus Medicke
Auestraße 123, 08371 Glauchau, Germany
Tel.: +49 (0)3763 177 10
Fax: +49 (0)3763 177 117
Our external data protection officer, the solicitor Ms Nadja Heinze, can be reached at email@example.com. The full contact details for our data protection officer are:
Rechtsanwälte Voigtmann Schwenker Taubert Benndorf
Ms Nadja Heinze
Martinistraße 5, 08371 Glauchau, Germany
Tel.: +49 (0)3763 799 70
Fax: +49 (0)3763 799 730
The operators of these pages take the protection of your personal data very seriously. We handle your personal data in the strictest confidence and in accordance with statutory data protection regulations and this Data Protection Policy.
The website operator is responsible for processing data on this website. You can find our contact details in the Legal Notice section of this website.
3. What personal data do we collect?
Personal data is automatically collected by our IT systems when you visit our website. This includes the full range of technical data (e.g. your Internet browser, operating system or time of visit). This data is collected automatically as soon as you enter our website.
The following data is saved when you visit our website:
When you open our website, www.medicke.de, the browser used on your end device automatically sends information to our website servers. This information is stored temporarily in a log file.
During this process, the following information is collected without your input and saved until it is deleted automatically:
– IP address of the querying computer
– Date and time of the visit
– Name and URL of the file accessed
– Website from which the access originated
– Browser used and possibly the operating system on your computer and the name of your Internet service provider
We process the above data for the following purposes:
– To ensure website connections are made smoothly
– To ensure our website is convenient to use
– To evaluate system security and stability, and
– For other administrative purposes
The legal basis for the data processing is Article 6 (1) (f) of the General Data Protection Regulation (GDPR). Our legitimate interest lies in the purposes of the data collection listed above. We will never use the collected data for the purpose of identifying you as an individual.
4. Disclosure of data
Your personal data will only be disclosed to others for the purposes listed below.
We will only pass your personal data to third parties if:
– You have explicitly given your consent in accordance with Article 6 (1) (a) GDPR, disclosure is required in accordance with Article 6 (1) (f) GDPR in order to establish, exercise or defend legal claims and there is no reason to believe that you have an overriding legitimate interest in your data not being disclosed;
– There is a legal duty to disclose the information under Article 6 (1) (c) GDPR;
– It is permitted by law and necessary for the performance of a contract with you in accordance with Article 6 (1) (b) GDPR;
– Your data is disclosed to service providers in the context of a data processing agreement as set out in Article 28 GDPR.
5. Plug-ins and tools
a) Google Fonts
This website uses so-called web fonts provided by Google to ensure fonts are displayed consistently. When you open a web page, your browser loads the required web fonts in your browser cache so that texts and fonts can be displayed correctly.
For this purpose, the browser you use must establish a connection to Google’s servers. Google is thereby informed that our website has been accessed from your IP address. We use Google Fonts to ensure a consistent and attractive appearance of our online presence. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
If your browser does not support web fonts, a standard font from your computer will be used.
b) Google Maps
This site uses Google Maps API, a map service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
In order to use the functions of Google Maps, it is necessary to store your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this website has no influence over this data transfer.
We use Google Maps in order to make our online presence more appealing and to make it easy to find the locations we present on our website. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
6. Social media plug-ins
Our website uses plug-ins from YouTube, which is operated by Google. The operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
When you visit one of our pages that has a YouTube plug-in, a connection to the YouTube servers is established. This informs the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you allow YouTube to associate your surfing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.
We use YouTube to present our online presence in an appropriate form. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
Our website uses plug-ins from the video portal Vimeo, provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages that has a Vimeo plug-in, a connection to the Vimeo servers is established. This informs the Vimeo server which of our pages you have visited. Vimeo will also receive your IP address. This occurs even if you are not logged into Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to the Vimeo servers in the USA.
If you are logged into your Vimeo account, you allow Vimeo to associate your surfing behaviour directly with your personal profile. You can prevent this by logging out of your Vimeo account.
We use Vimeo in order to make our online presence more appealing. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
7. Rights of data subjects
You have the right:
– To obtain information about your personal data processed by us under Article 15 GDPR. In particular, you can request information about the purposes of the processing, the categories of personal data, the categories of recipients to whom your data has been or is disclosed, the envisaged duration for which it will be stored, the existence of a right to rectification and erasure, and to restrict the processing or object to it, the existence of a right to complain, the source of your data if it was not collected by us, and the existence of automated decision-making including profiling and, if appropriate, meaningful information concerning its details;
– To have incorrect personal data stored by us rectified or completed without undue delay under Article 16 GDPR;
– To have your personal data stored by us erased under Article 17 GDPR, provided processing is not necessary to exercise the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or to establish, exercise or defend legal claims;
– To have the processing of your personal data restricted under Article 18 GDPR if you contest the accuracy of the data, the processing is unlawful but you oppose the erasure of the data, or we no longer need the data but you require it to establish, exercise or defend legal claims, or you have objected to the processing under Article 21 GDPR;
– To receive the personal data that you have provided to us in a structured, commonly used, machine-readable format or to transmit it to another controller under Article 20 GDPR;
– To withdraw the consent that you have granted to us at any time under Article 7 (3) GDPR. This has the consequence that we may not continue to process data based on this consent; and
– To complain to a supervisory authority under Article 77 GDPR. In general, you can contact the supervisory authority in your usual place of residence, your place of work or our place of business.
8. Right to object
If your personal data is processed on the basis of a legitimate interest in accordance with Article 6 (1) (f) GDPR, you have the right under Article 21 GDPR to object to the processing of your personal data where there are grounds relating to your particular situation or the objection relates to direct marketing. In the latter case, you have a general right to object that we will implement without the need to specify a particular situation.
If you wish to exercise your right to withdraw consent or to object, simply email firstname.lastname@example.org.
9. Retention periods
The personal data provided by you is stored only within the statutory retention period. Data will not be stored beyond these periods.
10. Data security
We make use of appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss or destruction and against unauthorised access by third parties. Our security measures are continually improved in line with technological advances.
13. Validity of and changes to this Data Protection Policy
This Data Protection Policy (correct as of June 2018) is currently in force.
It may be necessary to make changes to this Data Protection Policy following further development of our website and offerings or due to legislative or administrative changes.
You can view and print the current version of our Data Protection Policy at any time on our website: https://www.medicke.de/data-protection.