The responsible controller in the sense of the data protection laws, in particular the EU data protection basic regulation (GDPR), is:
Klumpp Coatings GmbH, Dornbirner Straße 23, D-70469 Stuttgart
We are very pleased about your interest in our company. Data protection is of particular importance to the management of Klumpp Coatings GmbH.
The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is always done in accordance with the General Data Protection Regulation and in accordance with our privacy policy. By means of this privacy policy we would like to inform the public about the nature, extent and purpose of the personal data collected, used and processed by us. Furthermore, data subjects are informed of their rights in this privacy policy.
You can always exercise the following rights using the contact details of our data protection officer:
If you have given us your consent, you can revoke it at any time with effect for the future.
You can contact a regulatory authority at any time with a complaint, such as the competent supervisory authority of the federal state of your domicile or the authority responsible for us as the responsible controller.
A list of non-public-sector supervisory authorities can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html,
If you access our website, that is, if you do not register or otherwise provide information, information of a general nature is automatically collected.
This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your internet service provider, your IP address and the like.
It is processed in particular for the following purposes:
We do not use your data to draw conclusions about you as a person. Information of this kind may be statistically evaluated by us to optimize our website and the underlying technology.
The processing is carried out in accordance with Art. 6 (1) (f) GDPR based on our legitimate interest in improving the stability and functionality of our website.
The recipient of the data may be technical service providers who act as commissioned processors for the operation and maintenance of our website.
The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. This is generally the case when the session has ended for data that serves for provision of the website.
The provision of the aforementioned personal data is neither legally nor contractually required. Without the IP address, however, the service and functionality of our website is not guaranteed. Additionally, individual services may not be available or may be limited. It is therefore not possible to object to its collection.
Like many other websites, we also use so-called “cookies.” Cookies are small text files that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our website.
The provide us with certain data such as IP address, browser used and operating system.
Cookies cannot be used to launch programs or to transfer viruses to a computer. Based on the information contained in cookies, we can facilitate navigation and enable the correct display of our websites.
In no case will the data collected by us be passed on to third parties nor will a link with personal data be established without your consent.
Of course, you can also view our website without cookies. Internet browsers are regularly set to accept cookies. In general, you can deactivate the use of cookies at any time through the settings of your browser. Please use the help functions of your internet browser to find out how to change these settings. Please note that some features of our website may not work if you have disabled the use of cookies.
If you allow us to use cookies through your browser settings or consent, the following cookies may be used on our websites:
> The respective cookies with storage duration still need to be added here <
Insofar as these cookies may (also) concern personal data, we will inform you about this in the following sections.
You can use your browser settings to delete individual cookies or all of the cookies. In addition, you will receive information and instructions on how to delete these cookies or block their storage in advance. Depending on the provider of your browser, you will find the necessary information under the following links:
To protect the security of your data during transmission, we use state-of-the-art encryption techniques (such as SSL) over HTTPS.
The controller collects and processes the personal data of applicants for the purpose of processing applications. The processing can also be done electronically. This is particularly the case if an applicant submits corresponding application documents to the controller by electronic means, for example by e-mail or via a web form available on the website. If the controller concludes a contract of employment with an applicant, the data transmitted will be stored for the purposes of the employment relationship in accordance with the law.
For the fulfillment of contractual obligations (Art. 6 (1) (b) GDPR) in conjunction with Article 26 BDSG. The processing of data takes place in preparation for a contract of employment
Human resources staff for contact with you and for contractual cooperation (including the fulfillment of pre-contractual measures) as well as management involved in the decision-making process. Your data may be passed on to service providers who work for us as a commissioned processor, e.g. support or maintenance of EDP or IT applications and data destruction. All service providers are contractually bound and in particular obliged to treat your data confidentially.
A transfer of data to recipients outside of our company takes place only in compliance with the applicable data protection regulations.
If no contract of employment is concluded by the controller with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, provided that deletion is not opposed by any other legitimate interests of the controller. Other legitimate interest in this sense, for example, include a burden of proof in a procedure under the General Equal Treatment Act (AGG).
Your data will only be processed within the European Union and within the European Economic Area (EEA).
You have the right, for reasons of your own particular situation, to object at any time to the processing of personal data relating to you pursuant to Art. 6 (1) (f) GDPR (data processing based on a balance of interests); this also applies to a profiling based on this provision within the meaning of Art. 4 (4) GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, pursuing or defending legal claims.
As part of the application process, you must provide the personal data necessary for the commencement, performance and termination of the contractual relationship and for the performance of the associated contractual obligations, or data we are legally required to collect. Without this data we will generally not be able to adequately consider you in the decision-making process for staffing
For the processing of customer orders and in the context of procurement processes, we process personal data of our customers and suppliers as well as the individual contact persons at our customers/suppliers. In doing so, we store the data in our ERP system and use it in all processes of service fulfillment and procurement. Furthermore, we use the data for active contact in the customer relationship and for the support of suppliers including an internal supplier evaluation.
For the fulfillment of contractual obligations (Art. 6 (1) (b) GDPR)
The processing of data takes place to carry out our contract
Due to legal requirements (Art. 6 (1) (c) GDPR)
We are subject to various legal obligations that result in data processing. These include for example:
In addition, the disclosure of personal data in the context of administrative/judicial action may be required for purposes of gathering evidence, prosecuting or enforcing civil claims.
In the context of a balance of interests (Art. 6 (1) f GDPR)
If necessary, we process your data for the protection of legitimate interests of us or third parties in addition to the actual fulfillment of the contract. Examples of such cases include:
Employees for contact with you and for contractual cooperation (including the fulfillment of pre-contractual measures). Your data may be passed on to service providers who work for us as a commissioned processor, e.g. support or maintenance of EDP or IT applications and data destruction. All service providers are contractually bound and in particular obliged to treat your data confidentially.
A transfer of data to recipients outside of our company takes place only in compliance with the applicable data protection regulations. Recipients of personal data may include:
We process and store your personal data as long as it is necessary for the fulfillment of our contractual and legal obligations. If the data is no longer required for the fulfillment of contractual or legal obligations, it is deleted on a regular basis.
Exceptions arise
If the data processing takes place in the legitimate interest of us or a third party, the personal data will be deleted as soon as this interest no longer exists. The mentioned exceptions apply here.
Your data will only be processed within the European Union and within the European Economic Area (EEA).
You have the right, for reasons of your own particular situation, to object at any time to the processing of personal data relating to you pursuant to Art. 6 (1) (f) GDPR (data processing based on a balance of interests); this also applies to a profiling based on this provision within the meaning of Art. 4 (4) GDPR.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, pursuing or defending legal claims.
As part of the contractual relationship, you must provide the personal data necessary for the commencement, performance and termination of the contractual relationship and for the performance of the associated contractual obligations, or data we are legally required to collect. Without this information we will generally not be able to conclude or execute the contract with you.
For communication with partners and within the organization, we offer Jitsi Meet as a video conference solution. The processing of the data serves to set up and conduct these video conferences. The processing takes place on own servers.
We regularly refer to Art. 6 Para. 1 lit. f) GDPR as the legal basis. Our legitimate interest lies in the high quality of discussions with you. Insofar as the processing of personal data in the context of the use of Jitsi Meet is necessary for the fulfillment of a contract to which you are a party or for the implementation of pre-contractual measures, Art. 6 para. 1 lit. b) GDPR as the legal basis for the processing of personal data.
For us employees, § 26 BDSG is the legal basis for data processing. If, in connection with the use of the video conference, data processing is not necessary for the employment relationship, but is nevertheless an elementary part of the use, Art. 6 Para. 1 lit. f) GDPR is the legal basis for data processing. In these cases, we are interested in the effective implementation of video conferences.
The video conference data (video, audio, chat ...) will be distributed among the participants. We do not transfer any additional personal data that is generated as part of the use to third parties. If technical service providers receive access to personal data, this is done on the basis of a contract in accordance with Art. 28 GDPR.
The conference data and speaker statistics are not saved beyond the conference. Only the name of the conference room (meeting metadata) is retained in the system for further conferences after the conference has ended. Information about the user and personal settings are stored in the cookie / memory area of the browser for further conferences. The cookies can be deleted by the user at any time in the browser or, depending on the settings of the browser, are automatically deleted after it is closed. Log data is stored for a maximum of 7 days and then deleted. Log data, the further storage of which is necessary for evidence purposes, are excluded from deletion until the respective incident has been finally clarified
In principle, no personal data is transferred to countries outside the European Economic Area and associated countries (no "third country transfer"), unless participants in meetings are based in these countries.
If the processing takes place on the legal basis of a consent, this can be revoked at any time. The revocation does not affect the legality of the processing carried out before the revocation (Art. 7 Para. 3 GDPR).
It is not mandatory to provide information, but it is necessary to conduct video conferences
As a responsible company, we do not carry out automated profiling
We reserve the right to change this data protection policy from time to time to ensure that it complies with current legal requirements or to implement changes to our services in the data protection policy, for example, when introducing new services. Your new visit will be subject to the new data protection policy.
If you have questions about privacy, please email us or contact the person responsible for data protection in our organization:
Michael Weinmann
http://www.dsb-office.de
Sielminger Hauptstr. 52/1
70794 Filderstadt
Tel.: 0173-7632962
Enail: michael.weinmann[at]dsb-office.de
The privacy policy has been created with the privacy policy generator of activeMind AG created (Version 2018-09-24) and supplemented by Mr. Michael Weinmann.
