Data protection declaration
Data protection declaration
With the following data protection declaration, we explain how we handle personal data when collecting, processing, using and deleting them.
Data protection is a matter of trust and your trust is important to us. We respect your privacy and personal sphere. The protection and legally compliant collection, processing and use of your personal data is therefore important to us. To ensure that you feel safe when visiting our website, we strictly observe the legal provisions when processing your personal data and would like to inform you here about our data collection and data use.
We undertake to comply with the DSGVO and the national data protection laws. For us, data protection is a company-wide topic with high priority and we only work with partners who can also demonstrate a corresponding level of data protection in their processing framework. We only process your data if you have given us your express consent to do so, if this relates to a contract or pre-contractual measures on a service basis or if the relevant laws permit or oblige data processing. The following data protection information covers both the currently applicable national legal framework and the requirements of the EU Data Protection Basic Regulation (DSGVO) which will apply throughout Europe from 25 May 2018. References to the legal basis of the DSGVO will be authoritative from 25 May 2018. Under no circumstances will we sell your data or pass them on to unauthorised third parties. We will be pleased to provide you with detailed information on the handling of your data in our divisions below.
We use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.
You can print or save this document by using the usual functionality of your browser. The following data protection declaration explains which data is collected on our websites and which data we process and use and how.
Responsible persons and data protection officers
The person responsible within the meaning of the EU Data Protection Basic Regulation (DSGVO) and other national data protection laws of the member states as well as other data protection regulations is the Data Protection Officer:
August-Horch-Str. 20 – 22
D – 56070 Koblenz
Phone: +49 (0) 2 61/98 34-0
Fax: +49 (0) 2 61/98 34-100
The data protection officer of the person responsible is:
Data protection officer
Donges SteelTec GmbH
Tel.: +49 (0) 6151 889-205
Fax: +49 (0) 6151 889-203
Collection, storage and processing of personal data
Collection, storage and processing of personal data
What information do we collect and for what purpose?
We collect and use the personal data of our users only to the extent necessary to provide a functional website and our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies in those cases in which it is not possible to obtain prior consent for actual reasons and the processing of the data is permitted by statutory provisions.
Description and scope of data processing:
Each time you access our website, our system automatically collects data and information from the computer system of the accessing computer.
For statistical purposes, we store the name of the requested website, the date and time of the page call as well as the amount of data transferred. In addition, whether the transmission of the information was successful and via which provider the access took place.
The data is also stored in the log files of our system. These data are not stored together with other personal data of the user.
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the IP address of the user must remain stored for the duration of the session.
The data is stored in log files in order to ensure the functionality of the website. The data is also used to optimise the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
These purposes also include our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f DSGVO.
Transfer of data
Transfer of data
In order to make our website as pleasant and comfortable as possible for you as a user, we occasionally use the services of external service providers. In the following you have the opportunity to inform yourself about the data protection regulations for the use and application of the services and functions used, in order to be able to exercise your rights with the service providers if necessary.
If you provide us with your email address, we will communicate with you via email. However, we will not pass this address on to third parties outside Kalzip GmbH to third parties. If, depending on the settings of your e-mail program, personal data is transmitted to us, we will treat it confidentially. The transmitted information is not encrypted within the exchange of information.
If you fill out a registration form on our website with contact information (“CONTACT”), this information is used to send you requested answers, product information, messages, etc.. Your personal data will be used exclusively for these purposes and will not be passed on to third parties outside Kalzip GmbH will not be passed on to third parties. The data that you transmit to us online is not encrypted. The legal basis for this data processing is the user’s conclusive consent as per Art. 6 Para. 1 lit. a DSGVO (German Data Protection Act) as stated in the sending process. This data is deleted as soon as it is no longer required for the purpose of its collection. As a user, you have the option of cancelling your registration at any time. You can have the data stored about you changed at any time.
External fonts, Google Fonts, are used on our website. Google Fonts is a service of Google Inc. (“Google”). These web fonts are integrated via a server call, usually a Google server in the USA. This will tell the server which of our Internet pages you have visited. The IP address of the browser of the terminal device of the visitor to these Internet pages is also stored by Google. You can find more detailed information in Google’s data protection information, which you can call up here:
Further information on Google Analytics and data protection can be found at http://tools.google.com/dlpage/gaoptout?hl=de.
You can subscribe to a free newsletter on our website. When you register for the newsletter, the data from the input mask will be transmitted to us.
At this point, a concrete mention of the collected data should be made. In the minimum case this concerns the e-mail address of the user.
In addition, the following data is collected during registration:
- IP address of the calling computer
- Date and time of registration
Your consent will be obtained for the processing of your data during the registration process and reference will be made to this data protection declaration.
No data will be passed on to third parties in connection with data processing for the dispatch of newsletters. The data will be used exclusively for the dispatch of the newsletter.
Purpose of the data processing in connection with the dispatch of newsletters:
The collection of the user’s e-mail address serves to deliver the newsletter. The newsletter is sent on the basis of the user’s registration on the website. The collection of other personal data as part of the registration process serves to prevent misuse of the services or the e-mail address used.
Duration of storage with regard to the data collected for the use of newsletters:
- The data are deleted as soon as they are no longer required for the purpose of their collection.
- The user’s e-mail address is therefore stored as long as the newsletter subscription is active.
- The newsletter is sent on the basis of the user’s registration on the website
- The other personal data collected in the course of the registration process are usually deleted after a period of seven days.
Possibility of objection and removal with regard to the newsletter dispatch:
The subscription of the newsletter can be cancelled by the affected user at any time. For this purpose, each newsletter contains a corresponding unsubscribe link.
Storage duration and data erasure
Storage duration and data erasure
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. In addition, the data may be stored if the European or national legislator has provided for this in EU regulations, laws or other provisions to which the person responsible is subject. The data shall also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless it is necessary for further storage of the data for the conclusion or performance of a contract.
Other data will also be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
If the data are stored in log files, they will be deleted after seven days at the latest. A storage going beyond this is possible. In this case the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.
The following data is stored and transmitted in the cookies:
- Language settings
- log-in information
In this way, the following data can be transmitted:
- Entered search terms
- Frequency of page views
- Use of website functions.
How can you prevent the storage of cookies?
Depending on the browser you are using, you can set your browser to only accept cookies if you agree to this. As a rule, the Help function in the menu bar of your web browser shows you how to reject new cookies and how to deactivate cookies that have already been received. We recommend that you always log out completely when using shared computers that are set to accept cookies and flash cookies.
The user data collected by us through cookies are not used to create user profiles.
Duration of the storage, objection and removal possibility regarding the Cookies:
Legal basis for the processing of personal data
Legal basis for the processing of personal data
Where we obtain the consent of the data subject for the processing of personal data, Article 6(1)(a) of the EU Basic Data Protection Regulation (DSGVO) serves as the legal basis for the processing of personal data.
Art. 6 para. 1 lit. b DSGVO serves as the legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c DSGVO serves as the legal basis.
Art. 6 para. 1 lit. d DSGVO serves as a legal basis in the event that vital interests of the data subject or another natural person necessitate the processing of personal data.
If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f DSGVO serves as the legal basis for the processing.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f DSGVO.
Rights of data subjects
Rights of data subjects
According to Art. 15 i. V. m. § 34 BDSG you have the unrestricted right to free information about your data stored by us as well as according to § 35 BDSG the right to deletion or blocking of inadmissible data or the right to correction of incorrect data.
Upon request, we are happy to inform you in writing whether and which personal data we have stored about you. As far as possible, we will take appropriate measures to update or correct your data stored with us at short notice. All requests for information, requests for information or objections to data processing should be sent by e-mail directly to our data protection officer, stating your full postal address.
If personal data is processed by you, you are the data subject within the meaning of the DSGVO and you are entitled to the following rights vis-à-vis the person responsible:
Right to information:
You can request confirmation from the person responsible as to whether personal data relating to you will be processed by us.
In the event of such processing, you may request the person responsible to provide you with the following information:
- the purposes for which the personal data will be processed;
- the categories of personal data processed;
- the recipients or categories of recipients to whom the personal data relating to you has been or will be disclosed;
- the planned duration of the retention of the personal data concerning you or, if it is not possible to provide specific information in this regard,
- the criteria for determining the retention period;
- the existence of a right to rectify or erase personal data concerning you, a right to limit the processing by the controller or a right to object to such processing;
- the existence of a right of appeal to a supervisory authority;
- all available information on the origin of the data, if the personal data are not collected from the data subject;
- the existence of automated decision-making including profiling in accordance with Article 22(1) and (4) DSGVO and – at least in these cases – meaningful information on the logic involved and the scope and intended effects of such processing on the data subject.
- You have the right to request information as to whether the personal data concerning you will be transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate guarantees pursuant to Art. 46 DSGVO in connection with the transfer.
Right to rectification:
You have a right of rectification and/or completion vis-à-vis the data controller if the personal data processed concerning you are inaccurate or incomplete. The data controller must carry out the rectification immediately.
Right to limit the processing:
Under the following conditions, you may request that the processing of your personal data be restricted:
- if you dispute the accuracy of the personal data concerning you for a period of time which allows the data controller to verify the accuracy of the personal data;
- the processing is unlawful and you refuse to delete the personal data and instead request that the use of the personal data be restricted;
- the controller no longer needs the personal data for the purposes of the processing, but you need them for the assertion, exercise or defence of legal claims, or
- if you have lodged an objection against the processing pursuant to Art. 21 para. 1 DSGVO and it has not yet been determined whether the justified reasons of the data controller outweigh your reasons.
- If the processing of personal data concerning you has been restricted, such data – apart from their storage – may only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the Union or a Member State.
- If the processing restriction has been limited in accordance with the above conditions, you will be informed by the controller before the restriction is lifted.
Right to cancellation:
You may ask the data controller to delete the personal data concerning you immediately and the data controller is obliged to delete this data immediately if one of the following reasons applies:
- The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
- You revoke your consent on which the processing was based pursuant to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a DSGVO and there is no other legal basis for the processing.
- You object to the processing pursuant to Art. 21 (1) DSGVO and there are no overriding legitimate reasons for the processing or you object to the processing pursuant to Art. 21 (2) DSGVO.
- The personal data concerning you have been processed unlawfully.
- The deletion of your personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
- The personal data relating to you have been collected in relation to information society services offered pursuant to Art. 8 para. 1 DSGVO.
If the data controller has made the personal data concerning you public and is obliged to delete them pursuant to Art. 17 para. 1 DSGVO, he shall take appropriate measures, including technical measures, taking into account the available technology and the implementation costs, to inform the data controllers processing the personal data that you, as the data subject, have requested them to delete all links to this personal data or copies or replications of this personal data.
The right to deletion does not exist insofar as processing is necessary:
- to exercise the right to freedom of expression and information;
- to fulfil a legal obligation which the processing requires under the law of the Union or of the Member States to which the controller is subject or
- to perform a task carried out in the public interest or in the exercise of official authority vested in the controller;
- for reasons of public interest in the field of public health pursuant to Art. 9 para. 2 lit. h and i and Art. 9 para. 3 DSGVO;
- for archival purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Art. 89 para. 1 DSGVO, insofar as the law referred to under section a) presumably makes it impossible or seriously impairs the attainment of the objectives of such processing, or
- to assert, exercise or defend legal claims.
If you have exercised your right to rectify, cancel or limit the processing of your personal data against the controller, the latter is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification, cancellation or limitation of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed of such recipients by the data controller.
You have the right to receive the personal data concerning you that you have provided to the person responsible in a structured, common and machine-readable format. In addition, you have the right to communicate this data to another data controller without being hindered by the controller to whom the personal data was provided, provided that
- the processing is based on a consent pursuant to Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO or on a contract pursuant to Art. 6 para. 1 lit. b DSGVO and
- processing is carried out using automated procedures.
In exercising this right, you also have the right to request that the personal data concerning you be transferred directly from one responsible person to another responsible person, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.
The right to data transfer does not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Right of opposition and revocation:
You have the right to object at any time to the processing of your personal data on the basis of Art. 6 para. 1 lit. e or f DSGVO for reasons arising from your particular situation; this also applies to profiling based on these provisions.
The person responsible will no longer process the personal data relating to you unless he can prove compelling grounds for processing worthy of protection which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If the personal data concerning you are processed for the purpose of direct marketing, you have the right to object at any time to the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected with such direct marketing.
If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for such purposes.
You have the possibility to exercise your right of objection through automated procedures using technical specifications in connection with the use of Information Society services, notwithstanding Directive 2002/58/EC.
You have the right to revoke your data protection consent at any time. The revocation of your consent does not affect the lawfulness of the processing carried out on the basis of your consent until you revoke it. Possibility of objection and removal.
If you contact us by e-mail, you can object to the storage of your personal data at any time. In such a case the conversation cannot be continued.
All personal data stored in the course of contacting you will be deleted in this case.
The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. Consequently, there is no possibility of objection in this regard.
Right to appeal to a supervisory authority:
Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State in which you are staying, at your place of work or in the place where the alleged infringement is alleged, if you consider that the processing of your personal data is in breach of the DSGVO.
The supervisory authority with which the complaint was lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 DSGVO.