Data privacy

Find out more

Instuction

Thank you for visiting our Website. Gebr. Schwarz GmbH (hereinafter "Gebr. Schwarz", "we", or "us") value the security of user data and compliance with the provisions of data privacy legislation greatly. Below, we wish to inform you about the processing of your personal data through our Website.

 

Controller and data protection officer

Controller:

Gebr. Schwarz GmbH, Zepfenhaner Str. 35, 78628 Rottweil-Neukirch, Germany

Tel.: +49 7427-9496-0

E-Mail: info@schwarz-gmbh.de

 

External data protection officer:

Deutsche Datenschutzkanzlei, Dr.-Klein-Str. 29, 88069 Tettnang, Germany

Stefan Fischerkeller

Tel.: +49 7542-94921-00

E-Mail: datenschutz@schwarz-gmbh.de

 

Definitions

Definitions The technical terms used in this data privacy statement should be understood as legally defined in Art. 4 GDPR.

 

Information about data processing

Automated data processing(Log-Files etc.)

You can visit our Website without actively providing personal information. However, we automatically save access data (server log files) for each call of our Website. This includes the name of your Internet service provider, operating system used, Website from which you are visiting us, date and duration of your visit, name of requested files, and (for security reasons, e.g. to detect attacks on our Website) the IP address of the computer used. We save this information for seven days. This data is evaluated purely in order to improve our Website and cannot be associated with you as an individual. This data is not associated with other data sources. The legal basis for the processing of the data is Art. 6 Para. 1 f) GDPR. We process and use the data for the following purposes: 1. To provide our Website; 2. To improve our Web pages; 3. To detect and prevent errors/malfunctions and the misuse of our Website. Processing takes place to pursue our legitimate interests in the functionality and the error-free and secure operation of our Website and in adapting our Website in line with the requirements of users.

Use of cookies (general information, how they work, opt-out links etc.)

In order to make visiting our Website attractive and to enable the use of functions, we use cookies on our Website. The use of cookies serves our legitimate interest in making your visit to our Website as pleasant as possible. This is based on Art. 6 Para. 1 f) GDPR. Cookies are standard Internet technology for saving and calling up logon and other usage information for all users of a Website. Cookies are small text files that are stored on your end device. Among other things, they allow us to save user settings so that our Website can be displayed in a tailored form for your device. Some of the cookies we use (session cookies) are deleted after the end of your browser session, so once you close your browser. Other cookies (persistent cookies) remain on your end device and allow us or our partner companies to recognize your browser again next time you visit. You can set up your browser so that you are informed about the setting of cookies and can decide upon whether to accept them individually, to reject cookies in specific scenarios, or to always reject cookies. In addition, you can delete cookies later on to remove data that our Website has stored on your computer. The deactivation of cookies (opting out) can result in certain restrictions to the functions on our Website.

Affected groups: Website visitors, users of online services
Opt-Out:

Internet Explorer:

https://support.microsoft.com/en-us/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d

Firefox:

https://support.mozilla.org/en-US/kb/how-do-i-turn-do-not-track-feature

Google Chrome:

https://support.google.com/chrome/answer/95647?hl=en

Safari

https://support.apple.com/en-gb/HT201265

Legal bases:

Consent (Art. 6 Para. 1 a) GDPR); Legitimate interests (Art. 6 Para. 1 f) GDPR)

) The relevant legal basis is specified for each tool.

Legitimate interests: Saving of opt-in preferences, display of our Website, ensuring the functionality of our Website, retention of user status for entire Website, recognition of future Website visitors, providing a user-friendly Website, providing a chat function.

 

Social media presence

We maintain an online presence in social media networks and careers portals in order to exchange information with users registered there and to make contact with such users in an uncomplicated way.

In some cases, the data of users in social networks is used to conduct market research and thus to pursue advertising objectives. The usage behavior of users such as the specification of interests can be used to create user profiles and to adapt advertisements in line with the interests of target groups. To enable this, cookies are often saved on the end devices of users.

In some cases, this occurs regardless of whether the users are registered users of the social network in question. Irrespective of where the social network is operated, user data might be processed outside the European Union/European Economic Area. This can give rise to risks for users since, for example, it might be harder to enforce their rights.

Affected groups: Registered and unregistered users of social networks
Data categories: Master data (e.g. name, address), contact data (e.g. e-mail address, telephone number), content data (e.g. information provided as text, photos, videos), usage data (e.g. visited Web pages, interests, access times), metadata and communication data (e.g. device information, IP address)
Purposes of processing: To increase reach, networking
Legal bases: Legitimate interests (Art. 6 Para. 1 f) GDPR), consent (Art. 6 Para. 1 a) GDPR)
Legitimate interests: Interaction and communication on social media, increasing profit, gleaning of information about target groups

 

YouTube

Used service: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data privacy: https://myaccount.google.com/
Opt-Out-Link: https://myaccount.google.com/ oder https://myaccount.google.com/

 

Xing

Used service: New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany
Data privacy: https://privacy.xing.com/en/privacy-policy

 

Plug-ins and integrated content of third parties

On our Website, we integrate functions and content from third-party providers. We can integrate videos, illustrations, buttons, and articles (hereinafter called "content") in this way.

So that visitors of our Website can display content, the third-party providers process data such as the IP address of the user in order to send the content to their browser for display. The integration of third-party content is not possible without this kind of processing.

In some cases, further information is collected using pixel tags or Web beacons. This gives the third-party provider information about the use of the content or about user traffic on our Website, technical information about the browser/operating system of the user, the time of the visit, or the Web pages from which the visit took place. Data collected in this manner is stored in cookies on the end device of the user.

Affected groups: Plug-in users
Data categories: Usage data (e.g. visited Web pages, interests, access time), metadata and communication data (e.g. device information, IP address), contact data (e.g. e-mail address, telephone number), master data (e.g. name, address)
Purposes of processing: To design our Website, increase the reach of adverts on social media platforms, share articles and content, conduct interest-based and behavior-based marketing, cross-device tracking
Legal bases: Consent (Art. 6 Para. 1 a) GDPR)

 

Google Maps

Used service: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Data privacy:
Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de oder https://myaccount.google.com/
Legal basis: Consent (Art. 6 Para. 1 a) GDPR)

 

YouTube

Used service: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Data privacy: https://policies.google.com/privacy?hl=de&gl=de
Opt-Out-Link: https://tools.google.com/dlpage/gaoptout?hl=de oder https://myaccount.google.com/
Legal basis: Consent (Art. 6 Para. 1 a) GDPR)

Newsletter and external communications (incl. with tracking)

On our Website, users can choose to subscribe to our newsletter or to notifications via various channels (hereinafter, the term "newsletter" is used to refer to these in general). We send newsletters only to recipients who have consented to receive them. We comply with all applicable legal provisions.

To subscribe to our newsletter, you must provide an e-mail address. We might collect further information in order, for example, to start our newsletter with a personal address.

Naturally, we send our newsletter only to recipients who have completed the double opt-in procedure. When users of our Website subscribe to our newsletter, they receive a confirmation e-mail that prevents people from subscribing to our newsletter with someone else's e-mail address and means that it's impossible to subscribe to the newsletter accidentally through a single unintended click of the mouse. Subscription to our newsletter can be ended at any time, effective immediately for the future. There is an unsubscribe (opt-out) link at the end of each newsletter.

Moreover, we are obliged to keep proof that recipients actually want to receive the newsletter. To do so, we collect and save the IP address of subscribers along with dates and times of subscription and termination.

Affected groups: Newsletter subscribers
Data categories: Master data (e.g. name, address), contact data (e.g. e-mail address, telephone number), metadata and communication data (e.g. device information, IP address), usage data (e.g. interests, access times)
Purposes of processing: Marketing, customer retention, and customer acquisition
Legal basis: Consent (Art. 6 Para. 1 a) GDPR)

 

Data transfer

There is no data transfer of the personal data of visitors to our Website.

Data is not transferred to a third country.

 

Retention period

We save the data of visitors to our Website only as long as is required to render our services or for the time prescribed by EU legislature and regulators or by other legislators in laws or regulations that apply to us. In all other cases, we delete the personal data of users once the purpose of its collection has been realized with the exception of data that we need to retain in order to meet legal obligations (for example, due to data retention provisions of fiscal and commercial law, we are obliged to keep documents such as contracts and invoices for a certain period of time).

 

Automated decision making

We do not perform automatic decision making or profiling.

 

Legal bases

The main legal bases arise from the GDPR. These are enhanced by national laws of Member States that are used together with or in addition to the GDPR as applicable.

Einwilligung: Art. 6 Abs.1 lit. a) DSGVO dient als Rechtsgrundlage für Verarbeitungsvorgänge, für die wir eine Einwilligung für einen bestimmten Verarbeitungszweck eingeholt haben.
Consent: : Art. 6 Para.1 a) GDPR serves as the legal basis for processing steps for which we have obtained the consent of the user for a specific processing purpose.
Performance of contracts: : Art. 6 Para. 1 b) GDPR serves as the legal basis for processing steps that are required for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
Vital interests: Art. 6 Para. 1 d) GDPR serves as the legal basis for processing steps that are necessary in order to protect the vital interests of the data subject or of another natural person.
Public interest: Art. 6 Para. 1 e) GDPR serves as the legal basis for processing steps that are necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Legitimate interest: Art. 6 Para. 1 f) GDPR serves as the legal basis for processing steps that are necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

 

Rights of the data subject

Right of access to information: According to Art. 15 GDPR, data subjects have the right to obtain confirmation as to whether or not their personal data is being processed. You can demand information about this data along with further information as specified in Art. 15 Para. 1 GDPR. You can also request a copy of your data.
Right to rectification: According to Art. 16 GDPR, data subjects have the right to obtain the rectification or completion of their personal data processed by us.
Right to erasure: According to Art. 17 GDPR, data subjects have the right to obtain the erasure, without undue delay, of their personal data. Alternatively, they can request the restriction of processing of their data in accordance with Art. 18 GDPR.
Right to data portability: Betroffene Personen haben gem. Art. 20 DSGVO das Recht, die Bereitstellung der uns durch sie zur Verfügung gestellten Daten zu fordern und deren Übermittlung an einen anderen Verantwortlichen zu verlangen.
Beschwerderecht: According to Art. 20 GDPR, data subjects have the right to receive the personal data that they have provided to us and to have their personal data transmitted directly from us to another controller. Right to complain: In accordance with the provisions of Art. 77 GDPR, data subjects have the right to lodge a complaint with a supervisory authority.
Right to object: Where the processing of personal data is based on legitimate interests as per Art. 6 Para. 1 Clause 1 f) GDPR, the data subject has the right, according to Art. 21 GDPR, to object, on grounds relating to their particular situation, to the processing of their personal data or to object to processing for direct marketing purposes. In the latter case, data subjects have a general right to object that will be upheld by us without them needing to specify grounds relating to their particular situation.

 

Revocation

them needing to specify grounds relating to their particular situation. Revocation Some data processing actions are allowed only with the express consent of the data subject. Once given, consent can be revoked at any time. To do so, simply send an informal communication to us or send an e-mail to datenschutz@schwarz-gmbh.de. The revoking of consent does not affect the legality of data processing carried out beforehand.

 

External Links

Our Website contains links to the Websites of other providers. Note that we do not have any influence on the content of linked Websites or on the compliance of their providers with provisions of data privacy legislation.

 

Änderungen

We reserve the right to make changes to this data privacy policy at any time in the case of changes to our Website and to adjust it with due consideration of applicable data privacy regulations in order to comply with such legal requirements.

 

This data privacy statement was created by Deutsche Datenschutzkanzlei – Office Tettnang.