1. Data protection at a glance
Data collection on this website
Analysis tools and third-party tools
2. Hosting and content delivery networks (CAN)
This website is hosted by an external service provider (hosting provider). The personal data recorded on this website is saved on the servers of the Hoster. Among other things, this can include IP addresses, contact queries, meta- and communication data, contractual data, contact data, names, website retrievals and other data generated via a website. The use of the services of a hosting provider is necessary for the performance of a contract with our potential and existing customers (Article 6 (1) (b) GDPR) and to pursue our legitimate interest to use a professional provider to offer our users a secure, fast and efficient presentation of our website content (Article 6 (1) (f) GDPR). Our hosting provider will process your data only to the extent necessary to fulfil their performance obligations and to comply with our instructions in relation to this data. Conclusion of a data processing agreement We have concluded a data processing agreement with our hosting provider to ensure that the data is processed in compliance with data protection laws and regulations.
3. General and mandatory information
Information about the controller
The controller responsible for processing of data on this website is: EW HOF Antriebe und Systeme GmbH Oberkotzauer Str. 3 D – 95032 Hof/Saale, Germany Tel.: +49 (0) 9281-585-0 email: firstname.lastname@example.org The controller is a natural or legal person which, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.) .
Withdrawal of your consent to data processing
Many data processing operations are only possible with your express consent. You have the right to withdraw your consent at any time. Sending an informal communication to us by email is sufficient for this purpose. The withdrawal of consent does affect the lawfulness of data processing based on consent before its withdrawal.
Right to object to data collection on grounds relating to the data subject’s particular situation or to data processing for direct marketing purposes (Article 21 GDPR)
Right to lodge a complaint with the competent supervisory authority
In cases of infringement of GDPR, the data subject has the right to lodge a complaint with a supervisory authority, in particular, in the member state of their habitual residence, place of work or place of the alleged infringement. You have the right to lodge a complaint without prejudice to any other administrative or judicial remedy.
Right to data portability
You have the right to receive the data we process based on your consent or on a contract by automated means in a commonly used and machine-readable format and have the right to transmit those data to another controller. If you request the direct transmission of the data to another controller, this only occurs if it is technically feasible.
SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of sensitive content, such as the orders of requests you send to us as the site operator . You can recognise an encrypted connection in your browser’s address bar when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar. If SSL or TLS encryption is enabled, the data you submit to us cannot be read by third parties.
Right of access, erasure and rectification
Right to restriction of processing
You have the right to obtain restriction of processing of your personal data. To do this, you can contact us at any time using the address specified on the company and legal information page. You have the right to obtain restriction of processing in the following cases:
- If you contest the accuracy of your personal data we store, we will generally need time to verify this. During the verification period, you have the right to obtain restriction of processing of your personal data.
- If the processing is unlawful, you can oppose the erasure of the personal data and request the restriction of their processing instead.
- If we no longer need the personal data, but you need the data for the establishment, exercise or defence of legal claims, you have the right to request a restriction of processing of your personal data instead of erasure.
- If you have lodged an objection in accordance with Article 21 (1) GDPR, this will be followed by a verification to establish whether our legitimate grounds override yours. As long as it is not clear whose legitimate interest is overriding, you have the right to obtain restriction of processing of personal data.
Where you have restricted the processing of your personal data, such personal data can, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a member state.
4. Data collection on this website
Cookie consent with Borlabs Cookie
If you use the contact form to send us a query, we will store the information you enter into the form, including your contact details, to process your query and to deal with any follow-up questions you may have. We will not share this information without your consent. Processing of this data takes place in accordance with 6(1)(b) GDPR if your query is related to performance of an agreement or is necessary for the conduct of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of queries directed at us (Article 6 (1) (f) GDPR) or on your consent (Article 6 (1) (a) GDPR), provided that the relevant consent has been obtained. We retain the data you enter in the contact form until you request that it be erased, until you withdraw your consent, or until the purpose for data storage no longer exists (e.g. after your request has been processed). This is without prejudice to mandatory provisions and in particular, statutory retention requirements.
Inquiries by email, telephone or fax
If you contact us by email, telephone or fax, we will process and store your data (name, query details) to deal with your query. We will not share this information without your consent. Processing of this data takes place in accordance with 6(1)(b) GDPR if your query is related to performance of an agreement or is necessary for the conduct of pre-contractual measures. In all other cases the processing is based on your consent (Article 6 (1) (a) GDPR) and/or on our legitimate interests ( Article 6 (1) (f) GDPR), since we have a legitimate interest in the effective processing of queries directed at us. We retain the data you send via the contact form until you request that it be erased, until you withdraw your consent, or until the purpose for data storage no longer exists (e.g. after your matter has been resolved). This is without prejudice to mandatory provisions and in particular, statutory retention requirements.
5. Analysis tools and advertising
This website uses functions and features of the website analysis tool Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics uses “cookies”. Cookies are small text files that are stored to your computer and facilitate an analysis of the way you use the website. The information generated by the cookie about your use of the website will typically be transmitted to and stored by Google on servers in the USA. The legal basis for storage of Google Analytics cookies and the analysis tool is Article 6 (1) (f) GDPR. The website operator has a legitimate interest in analysing user behaviour aimed at optimising its website and its advertising. If the relevant consent was requested (e.g. consent to storage of cookies), the processing occurs exclusively in accordance with 6 (1) (a) GDPR; the consent can be withdrawn at any time. IP anonymisation We have activated the IP anonymisation feature on this website. This means that Google will truncate your IP address within Member States of the European Union or other Contracting States to the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA where it will be truncated. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing them other services relating to website activity and internet use. Google will not associate your IP address transmitted by your browser with any other data held by Google. Browser plugin You can prevent the storage of cookies by changing the relevant settings of your browser. However, please note that if you do this you may not be able to use all the features of this website. Furthermore, you can prevent the collection of data about your use of the website (including your IP address) generated by the cookie and its processing by Google by downloading and installing the browser plugin provided under the following link: https://tools.google.com/dlpage/gaoptout?hl=de. Objection to data collection You can prevent the collection of your data by Google Analytics by clicking on the following link. This sets an opt-out cookie which will prevent future collection of your data when visiting this website:
6. Plugins and tools
Google Web Fonts (local hosting)
This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers.
YouTube in the privacy-enhanced mode
Google Maps (with consent)
We administrate this website with the assistance of the ManageWP tool. The provider is GoDaddy.com WP Europe, Trg republike 5, 11000 Belgrade, Serbia (hereinafter referred to as ManageWP).
Among other things, ManageWP ensures that we can monitor the security and performance of our website as well as generate automatic backups. Consequently, ManageWP has access to all of the website’s content, including our databases. ManageWP is being hosted on the provider’s servers.
The use of ManageWP is based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in a website(s) that work(s) as effectively and securely as possible. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.
We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.
7. Own services
Handling of applicant data
We offer you the opportunity to send us an application (e.g. by email, by post or online application form). In the following, we inform you about the scope, purpose and use of your personal data collected as part of the application process. We collect, process and use your data strictly in accordance with applicable data protection laws and regulations and further statutory provisions and we will treat all your data with strictest confidence. Scope and purpose of data collection If you send us your application, we process you personal data (e.g. contact and communication data, application documents, notes as part of the application discussions, etc.) if this is necessary to decide on the establishment of an employment relationship. The legal basis for this is Section 26 of the German Data Protection Act (BDSG) (initiation of an employment relationship), Article 6 (1) (b) GDPR (general contract initiation) and – if you have given your consent – Article 6 (1) (a) GDPR. You can withdraw your consent at any time. Within our company, your personal data will only be disclosed to persons involved in the processing of your application. If the application is successful, the data you submit is stored on the basis of Section 26 BDSG and Article 6 (1) (b) GDPR for the purpose of conducting the employment relationship in our data processing systems. Data retention period If we cannot make you a job offer, or you reject a job offer or withdraw your application, we reserve the right to store the data provided to us based on our legitimate interests (Article 6 (1) (f) GDPR) for a period of up to 6 months from the end of the application process (rejection or withdrawal of the application). The data is then erased and the physical application documents are destroyed. We retain the data, in particular, as evidence in the event of a legal dispute. If it is evident that it will be necessary to retain your data after the end of the six-month period (e.g. due to an impending or pending legal dispute), the data will only be erased once it is no longer needed. Your data may be retained for longer if you have given appropriate consent (Article 6 (1) (a) GDPR) or if statutory retention requirements prevent erasure. Inclusion in the applicant pool If we do not make you a job offer, there is the option to include you in our applicant pool. In this case, all documents and information from the application will be included in the applicant pool so that we can contact you with suitable vacancies. Inclusion in the applicant pool occurs exclusively on the basis of your express consent (Article 6 (1) (a) GDPR). Granting of consent is voluntary and does not have any relationship with the ongoing application procedure. The data subject can withdraw their consent at any time. In this case, the data from the applicant pool is irretrievably deleted if no grounds for statutory retention exist. The data from the applicant pool is irretrievably deleted at the latest two years after the granting of consent.