Privacy

As part of the framework of the initiation and realization of the business relationship, we process in particular the following data categories of our business partners or their contacts which we are permitted to use directly from them or other companies of the Salzgitter Group or from other third parties (e. g. Schufa) (e. g. for the fulfilment of contracts or on the basis of a given consent). On the other hand, we process data that we have legitimately obtained from publicly accessible sources (e. g. commercial register, press, Internet):

Prospects:

• Personal/contact data (e.g. first name, surname, company, address, mobile (phone number), telefax, e-mail)
• Communication data in connection with correspondence (e-mails, letters)

Customers:

• Personal/contact data (e.g. first name, surname, company, address, mobile (phone number), telefax, e-mail)
• Contract and settlement data (e. g. bank details, goods ordered, invoice data, communication data in connection with correspondence (e-mails, letters)
• Legitimation data (e. g. identification papers), authentication data (e. g. specimen signature), Schufa score

Suppliers / service providers:

• Personal/contact data (e.g. first name, surname, company, address, mobile (phone number), telefax, e-mail)
• Contract and settlement data (e.g. bank details and settlement data, goods/service ordered, invoice details,
• Communication data connected with correspondence (e-mails, letters)
• Legitimation data (e. g. identification papers), authentication data (e. g. specimen signature), Schufa score

The object of our company is the realization of injection moulding machines and systems for the production of technical rubber and silicone moulded articles as well as all related technical and commercial services. Data processing is carried out for these purposes and in compliance with the provisions of the EU General Data Protection Regulation (EU-GDPR), of the Federal Government. As part of the framework of the initiation and realization of the business relationship, we process in particular the following data categories of our business partners or their contacts which we are permitted to use directly from them or other companies of the Salzgitter Group or from other third parties (e. g. Schufa) (e. g. for the fulfilment of contracts or on the basis of a given consent). On the other hand, we process data that we have legitimately obtained from publicly accessible sources (e. g. commercial register, press, Internet) according to the Federal Data Protection Act (German BDSG) and in accordance with all other relevant laws (e. g. Commercial Code, Fiscal Code, etc.).

a. For the execution / fulfilment of a contract or for pre-contractual measures (article 6 section 1b) EU-GDPR )

First and foremost, the processing of personal data serves to fulfill contracts with our customers, suppliers and service providers. This also includes the execution of pre-contractual measures, at the request of the business partner.

b. In the context of a balance of interests (article 6 section 1 f EU-GDPR)

If required, we process your data beyond the actual performance of the contract to protect legitimate interests of us or third parties.

Examples:

· Review and optimization of procedures for needs analysis and direct customer approach

· Advertising or market and opinion research, unless you have objected to the use of your data

· Assertion of legal claims and defence in legal disputes

· Ensuring IT security and operation

· Prevention of criminal offences

· Object protection, anti-theft protection (video)

· Access control

c. On the basis of a consent (article 6 section 1 a) EU-GDPR)

If you have given us your consent to process personal data for specific purposes (e. g. newsletter), this processing is legal on the basis of your consent. A given consent can be revoked at any time with effect for the future. This also applies for the revocation of declarations of consent that were issued to us before the EU-GDPR became valid, i. e. before 25 Mai 2018. Please note that the revocation will only take effect in the future. Processing that took place prior to the revocation is not affected by this.

d. On the basis of legal standards (art. 6 sec. 1 c) EU-GDPR) or in the public interest (art. 6 sec. 1 e) EU-GDPR)

In addition, we are subject to various legal obligations, i e. legal requirements, for example tax regulations, customs regulations.

Within our company, those departments receive access to your data which require them for the fulfilment of our contractual and legal obligations, and also service providers and vicarious agents employed by us may receive data for this purpose.
Data will only be passed on outside the company required to do so by law or if you have given your consent.
All recipients, for their part, are obliged to comply with data protection regulations.
Under these conditions, recipients of personal data may be:

• Public bodies and institutions (e. g. financial authorities) in the event of a statutory or official obligation
• Contractors to whom we transfer personal data in order to conduct the business relationship with you, (e. g. support/maintenance of IT equipment, data destruction, payment transactions, accounting, customs agencies)
• Those bodies for which you have given us your consent to the transfer of data, if applicable

Data will only be transferred to countries outside the EU or the EEA (so-called third countries), if this is legally required for the execution of the contract, you have given us your consent or in the context of order processing. If service providers are used in third countries, an adequate level of data protection is ensured. 

We process and store your personal data as long as it is necessary to fulfill the purposes stated under point 3. It should be noted that our business relationship is generally targeted for a long term.

If the data are no longer required for the fulfilment of contractual or legal obligations, they must be deleted regularly, unless their temporary further processing is required for the following purposes:

• Compliance with commercial and tax retention periods, e.g. in accordance with the German Commercial Code or tax regulations. The deadlines stated there are 2 to 10 years
• Preservation of evidence as a part of statutes of limitations (e. g. §§ 195ff. German Civil Law Code).

Any individual concerned has the right of information under art. 15 EU-GDPR, the right of correction under art. 16 EU-GDPR, the right of cancellation under art.17 EU-GDPR, the right of limitation of processing under art. 18 EU-GDPR, the right of objection under art. 21 EU-GDPR, and the right of data transfer under art. 20 EU-GDPR. The restriction according to §§ 34 and 35 german BDSG apply to the right of information and the right of cancellation. In addition, there is a right of appeal with the responsible data protection supervisory authority (art. 77 EU-GDPR in conjunction with § 19 german BDSG).

You can revoke your consent to the processing of personal data at any time. This also applies to the revocation of declarations of consent that were issued to us before the EU-GDPR became valid, i. e. before 25 May 2018. Please note that the revocation will only take effect in the future. Processing that took place before the revocation is not affected by this.

In the framework of our business relationship you must provide those personal data which are necessary for the establishment and execution of a business relationship and the fulfilment of the associated contractual obligations, or which we are legally obliged to collect.