Privacy Notice
Table of contents
1. General data protection information
1.1. General
1.2. Responsible body
1.3. Purpose of data processing
1.4. Principles of processing of personal data
1.5. Lawfulness of processing
1.6. Personal related data
1.7. Data transfer to third countries
1.8. Data dissemination
1.9. Information storage
1.10. Rights of data subjects
1.11. Supervisory authority
2. Website-specific data collection
2.1. Data collection on our website
2.2. Use of cookies
2.3. Use of Google Analytics
2.4. Integration of Google Maps
2.5. Integration of Google Fonts
2.6. Google Tag Manager
2.7. Use of JavaScript libraries
1.1. General
The company Oehler Regeltechnischer Service GmbH processes personal data that is necessary for our business processes. Compliance with the rights and obligations regarding the processing and protection of such data is regulated by the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). Below we inform you about your rights following the Data Protection Act. The selection is exemplary and does not include the complete General Data Protection Regulation.
1.2. Responsible body
Oehler Regeltechnischer Service GmbH
Gewerbering 7
08451 Crimmitschau
Telephone: 03762 / 9535 0
E-Mail: info@oehler-regeltechnik.de
Company Data Protection Officer:
Oehler Regeltechnischer Service GmbH
Gewerbering 7
08451 Crimmitschau
Telephone: 03762 / 9535 39
E-Mail: datenschutzbeauftragter@oehler-regeltechnik.de
1.3. Purpose of data processing
Our company processes your personal data to transact our business processes. Examples of this are the preparation of quotations, orders, service technician and maintenance reports, consulting activities or accounting. To fulfil all contractual obligations, it is necessary that we use personal data. This is done based on the legal basis of GDPR and BDSG.
1.4. Principles of the processing of personal data (Art. 5 GDPR)
Paragraph 1 personal data must:
a) Processed lawfully, in good faith and in a manner comprehensible to the data subject
b) collected for specified, clear and legitimate purposes and shall not be further processed in a manner incompatible with those purposes; (...)
c) be proportionate and relevant to the purpose and limited to the extent necessary for the purposes of the processing ("data minimization")
f) processed in a manner that ensures adequate security of the personal data, including protection against unauthorized or unlawful processing, accidental destruction or damage caused by appropriate technical and organizational measures ('integrity and confidentiality')
1.5. Lawfulness of processing (Art. 6 GDPR)
*Fulfilment of contractual obligations (Art. 6 para. 1 b)
The data processing is necessary for the fulfilment of the contract or the implementation of contractual measures for example preparation of offers, delivery or provision of our services.
*Fulfilment of legal obligations (Art. 6 para. 1 c)
Oehler Regeltechnischer Service GmbH must comply with the legal obligations that require personal data processing. These include, retention obligations, identification obligations and reporting obligations.
*Safeguarding legitimate interests (Art. 6 para. 1 f)
We process personal data only beyond the actual purpose to safeguard the legitimate interest of us or third parties. The prerequisite for this is that interests, fundamental rights or fundamental freedoms outweigh the protection of personal data of the data subject.
1.6. Personal related data
In principle, we collect personal data from the data subject himself. It may also be necessary to process personal data provided to us by other companies and authorities, such as tax offices.
Categories of personal data:
- Personal details (e.g. first/last name, address)
- Communication data (e-mail address, telephone number)
- Order data / contract data
- Supplier data
- Billing
- Financial data (e.g. bank details, tax number)
1.7. Data transfer to third countries (Art. 44 et seq. GDPR)
A data transfer to countries outside the EU, to so-called third countries, does not take place. In the case of a business relationship in third countries, the group of persons concerned will be informed of the nature and content before the personal data is passed on.
1.8. Data dissemination
The provision of your personal data is necessary for the conclusion and execution of the business process. If you do not provide us with this data, we will not be able to comply with our contractual rights and obligations and there will be no business relationship between you and Oehler Regeltechnischer Service GmbH.
1.9. Data storage
Personal data will be stored for as long as it is necessary for the performance of the contract. In addition, the storage of personal data takes place in accordance with the statutory retention obligations.
1.10. Rights of data subjects
Right of access of the data subject (Art. 15 GDPR)
The data subject has the right to information as to whether personal data concerning him or her are being processed. If this is the case, the data subject has the right to get information about this data.
Right to rectification (Art. 16 GDPR)
The data subject may request immediate correction in the event of incorrectness. Likewise, the completion of incomplete personal data may be requested – also by means of a supplementary declaration.
Right to erasure (Art. 17 GDPR)
The data subject has the right to demand that personal data concerning him or her be deleted without undue delay.
Furthermore, the data subject has the right to restriction of processing (Art. 18 GDPR) and right to data portability (Art. 20 GDPR). If our processing of your personal data is based on your consent, you can revoke it, also with effect for the future (Art. 21 GDPR). If you wish to exercise your data subject rights, please contact our data protection officer. This can be done by post or e-mail.
1.11. Supervisory authority
You can complain to the competent data protection supervisory authority.
The Saxon Data Protection Officer
Kontor am Landtag
Devrienstraße 1
01067 Dresden
E-Mail: saechsdsb@slt.sachsen.de
Website: http://www.datenschutz.sachsen.de
2. Website-specific data collection
2.1. Data collection on our website
When using the website for information purposes only, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security.
The legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR:
- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access Status/HTTP Status Code
- Amount of data transferred in each case
- Website from which the request comes
- Browser
- Operating system and its interface
- Language and version of the browser software.
In addition to the mentioned data, cookies are stored on your computer when you use our website. Cookies are text files that are assigned to the browser you are using and through which certain information flows to the body that sets the cookie (in this case us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the Internet offer more user-friendly and effective overall.
2.2. Use of cookies
This website uses the following types of cookies, their scope and functionality are explained below:
Transient cookies are automatically deleted when you close the browser. These mainly includes session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to recognize when you have returned to our website. The session cookies are deleted when you log out or close the browser.
Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies at any time in the security settings of your browser.
You can configure your browser settings according to your wishes and, e.g., refuse to accept third-party cookies or all cookies. We would like to point out that in this case you may not be able to use all the functions of this website.
cookiebot
We use the cookiebot consent management service provided by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (Cybot). This enables us to obtain and manage the consent of website users for data processing. The processing is necessary to fulfil a legal obligation (Art. 7 Para. 1 GDPR) to which we are subject (Art. 6 Para. 1 S. 1 lit. c GDPR). For this purpose, the following data is processed with the help of cookies:
- Your IP address (the last three digits are set to '0').
- Date and time of consent.
- Browser information URL from which the consent was sent.
- An anonymous, random and encrypted key which represents your end-user consent status, as proof of consent
The key and consent status are stored for 12 months in the browser using the "CookieConsent" cookie. This preserves your cookie preference for subsequent page requests.
Additionally, if you enable the Bulk Consent Service feature to allow consent for multiple websites through a single end-user consent, the Service will store a separate, random, unique ID with your consent. If all the following criteria are met, this key is stored in encrypted form in the third-party cookie "CookieConsentBulkTicket" within your browser:
- You enable the bulk consent feature in the service configuration of your browser.
- You allow third-party cookies via browser settings.
- You have disabled Do Not Track via browser settings.
- You accept all or at least certain types of cookies.
The functionality of this website is not guaranteed without processing.
Cybot is the recipient of your personal data and works for us as a processor.
The processing takes place in the European Union. Further information on the possibility of objecting to Cybot can be found at: https://www.cookiebot.com/de/privacy-policy/
Your personal data will be continuously deleted after 12 months or immediately after termination of the contract between us and Cybot.
Please note our general explanations about the deletion and deactivation of cookies above.
2.3. Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. (hereinafter referred as "Google"). Google Analytics uses Cookies. The information generated by the Cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states in the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator.
The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies by setting your browser software, however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link:
http://tools.google.com/dlpage/gaoptout?hl=de.
This website uses Google Analytics with the extension "_anonymizeIp()". As a result, IP addresses are further processed in abbreviated form, so that personal reference can be excluded. If the data collected about you has a personal reference, this will be excluded and the personal data will be deleted immediately.
We use Google Analytics to analyze and regularly improve the use of our website. The statistics obtained allow us to improve our offer and make it more interesting for our users. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield,
https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.
Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of Use: http://www.google.com/analytics/terms/de.html, Overview Privacy Policy: http://www.google.com/intl/de/analytics/learn/privacy.html, Privacy Policy: http://www.google.de/intl/de/policies/privacy.
This website also uses Google Analytics for a cross-device analysis of visitor flows, which is carried out via a user ID. You can deactivate the cross-device analysis in your google customer account under "My data", "Personal data".
2.4. Integration of Google Maps
On this website we use the offer of Google Maps. By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned in the section "Data collection on our website" of this declaration will be transmitted. This happens regardless of whether Google provides a user account through which you are logged in. If you are logged in with your Google account, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or needs-based design of its website. Such an evaluation takes place (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to this, whereby you must contact Google to exercise this right.
Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the provider's privacy policy. There you will also find further information about your rights in this regard and setting options to protect your privacy:
http://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
2.5. Integration of Google Fonts
The design of our website also uses fonts provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Through this integration, data is also retrieved from a Google server when the website is accessed, which means that this server and thus also Google at least gains knowledge of your IP address.
In addition, Google usually learns that you have accessed the font via our website as well as some technical information about your browser, as almost every web browser automatically sends this data to the server every time it is accessed. Some browsers allow you to restrict or modify the data transmitted to the server, but whether this is possible depends on the browser. Even if Google, only needs the transmitted information, in particular the IP address, to deliver the retrieved content, it is beyond our knowledge and influence whether Google also statistically evaluates or stores this information. By using Google Web Fonts, an external Google server in the USA is called up when using this website. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. f GDPR.
Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.
2.6. Google Tag Manager
The Google Tag Manager, which is used by this website, is a service of Google. “Google” is a company group that contains Google Ireland Ltd. (provider of this service), Gordon House, Barrow Street, Dublin 4, Ireland and Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA as well as other connected subsidiaries of Google LLC.
The Google Tag Manager is a tool for controlling tags on this website. Which means it is a support service for other google services. It processes personal data only for technical purpose. The Google Tag Manager is used for updating and optimization. It therefore ensures the loading of other components that may use and process your personal data. An example for this is the use of Google Analytics.
Noteworthy in this context is the American Cloud Act. This law allows American authorities the access of personal data which are automatically processed by google while using this (Google Tag Manager) or other Google services.
2.7. JavaScript libraries
To display some elements, as well as for certain interactive features, our website uses JavaScript libraries, which are downloaded by the browser as a separate file. These JavaScript libraries are widely used by many websites on the Internet.
We have not stored the used JavaScript libraries on our server. We use identical files provided by a Content Delivery Network (CDN). Since most websites that use the same JavaScript libraries also use the same CDN, this has the advantage for you that websites can load and display faster, because as another website you visit uses the same JavaScript library, the browser does not have to retrieve this file from the Internet again but can continue to use the already retrieved and cached file.
However, the integration of JavaScript libraries via a CDN means that when the website is accessed, data is also retrieved from a server of the CDN operator, which means that this server and thus also its operator at least gains knowledge of your IP address.
In addition, the CDN server and its operator usually also learn that you have accessed the JavaScript file via our website as well as some technical information about your browser, as almost every web browser automatically sends this data to the server every time it is accessed. Some browsers allow you to restrict or modify the data transmitted to the server, but whether this is possible depends on the browser. Even if the CDN operator only needs the transmitted information, in particular the IP address, to deliver the retrieved content, it is beyond our knowledge and influence whether the operator also statistically evaluates or stores this information. The legal basis for the processing of your data is Art. 6 para. 1 sentence 1 lit. f GDPR.
Status: 08.05.2023