Privacy policy and legal comments

Privacy Policy

We are very delighted that you have shown interest in our enterprise. Data protection is of a particularly high priority for the management of the Stürmer Maschinen GmbH. The use of the Internet pages of the Stürmer Maschinen GmbH is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to the Stürmer Maschinen GmbH. By means of this data protection declaration, our enterprise would like to inform website users of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.

As the controller, the Stürmer Maschinen GmbH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by telephone.

1. Definitions
The data protection declaration of the Stürmer Maschinen GmbH is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public, as well as our customers and business partners. To ensure this, we would like to first explain the terminology used.
In this data protection declaration, we use, inter alia, the following terms:
    a)    Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
    b) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
    c)    Processing
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
    d)    Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.
    e)    Profiling
Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.
    f)     Pseudonymisation
Pseudonymisation is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
    g)    Responsible party or responsible party for the processing
Responsible party or responsible party for the process is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the responsible party or the specific criteria for its nomination may be provided for by Union or Member State law.
    h)    Processor
Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
    i)      Recipient
Recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
    j)      Third party
Third party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
    k)    Consent
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Name and Address of the responsible party
Responsible party for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Stürmer Maschinen GmbH
Dr.-Robert-Pfleger-Straße 26
96103 Hallstadt
Deutschland
Phone: 0951 96555-158
Email: info@stuermer-maschinen.de
Website: www.stuermer-maschinen.de

3. Contact details of the data protection officer
The data protection officer of the controller can be contacted at:

datenschutz@stuermer-maschinen.de

Any data subject can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.

4. Disclosure to third parties

We will only pass on your data to third parties within the framework of the statutory provisions or with the corresponding consent. Otherwise, data will not be disclosed to third parties unless we are obliged to do so by mandatory legal provisions (disclosure to external bodies such as supervisory authorities or law enforcement agencies).

5. Recipients of the data / categories of recipients

Within our company, we ensure that only those persons receive your data who need it to fulfill contractual and legal obligations.
In certain cases, service providers support our specialist departments in fulfilling their tasks. The necessary contractual framework under data protection law has been concluded with all service providers.

6. Third-country transfer / intention to transfer data to third countries

Data is only transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the performance of the contractual relationship, is required by law or you have given us your consent.
We do not transfer your personal data to any service provider outside the European Economic Area.

7. Secure transmission of your data

In order to protect the data stored by us in the best possible way against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we use appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The exchange of data to and from our website is always encrypted. We offer HTTPS as the transmission protocol for our website, in each case using the current encryption protocols. It is also possible to use alternative communication channels (e.g. by postal mail).

8. Cookies

The Internet pages of the Stürmer Maschinen GmbH use cookies. Cookies are text files that are placed and stored on a computer system via an Internet browser.

Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters that can be used to assign websites and servers to the specific internet browser in which the cookie was stored. This enables the websites and servers visited to distinguish the individual browser of the data subject from other Internet browsers that contain other cookies. A specific internet browser can be recognized and identified via the unique cookie ID.

Cookies only contain pseudonymous, usually even anonymous data. Some cookies remain in place for the duration of a browser session (so-called session cookies), others are stored for longer periods (so-called persistent cookies, e.g. consent settings). The latter are automatically deleted after the specified time (usually 6 months). In addition to our own cookies, we also use cookies that are controlled by third-party providers. These use the information contained in the cookies, e.g. to show you content or to record the pages you have visited.

On the basis of our legitimate interest (Art. 6 para. 1 sentence 1 lit. f GDPR), we set technically necessary cookies that are absolutely necessary for the operation of the website and to ensure its functionality. We also use cookies without your consent if their sole purpose is the storage of or access to information stored in the terminal device for the transmission of messages or if they are absolutely necessary in order to provide the service you have expressly requested, Section 25 (2) TTDSG.

Subject to your consent, other cookies are used to enable us or third parties to analyze how our services are used, for example. This enables us to personalize the content according to user needs. Cookies also enable us to measure the effectiveness of a particular advertisement and to place it according to the thematic interests of the user, for example. The legal basis for this is your explicit consent (Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG).

The data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the Internet browser used and thus permanently disagree with the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

If you have accounts with the third-party providers we use and are logged in there, your data may be linked to the respective account. You can avoid such a link by not giving or revoking your consent to the relevant cookies or by logging out of the respective third-party providers in advance.

The following third-party cookies are used on this website, provided you give your consent (Art. 6 para. 1 lit. a GDPR):

- Google Tag Manager

- Userlike

- Google Analytics

- Meta Pixel

Further information on the individual third-party cookies can be found below in this privacy policy.

9. Collection of general data and information
The website of the Stürmer Maschinen GmbH collects a series of general data and information when a data subject or automated system calls up the website. This general data and information is stored in the server log files. The (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system accesses our website (so-called referrer), (4) the sub-websites which are accessed via an accessing system on our website can be recorded, (5) the date and time of access to the website, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing system and (8) other similar data and information used for security purposes in the event of attacks on our information technology systems.

When using these general data and information, the Stürmer Maschinen GmbH does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website as well as its advertisement, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, the Stürmer Maschinen GmbH analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

10. Registration on our website (Art. 6 para. 1 lit. a, b GDPR)

The data subject has the possibility to register on the website of the responsible party f by providing the following personal data

  • Surname, first name
  • salutation
  • telephone number
  • Contact person (incl. telephone number and e-mail address)

Which personal data is transmitted to the responsible party is determined by the respective input mask used for registration. The personal data entered by the data subject is collected and stored exclusively for internal use by the responsible party and for their own purposes. The controller may arrange for the data to be passed on to one or more processors, such as a parcel service provider, who will also use the personal data exclusively for internal use attributable to the responsible party.

By registering on the website of the responsible party, the IP address assigned by the Internet service provider (ISP) of the data subject, the date and time of registration are also stored. The storage of this data takes place against the background that this is the only way to prevent the misuse of our services and, if necessary, to enable the investigation of criminal offenses committed. In this respect, the storage of this data is necessary to protect the responsible party. This data will not be passed on to third parties unless there is a legal obligation to pass it on or it serves the purpose of criminal prosecution.

Please note: The password you assign is stored by us in encrypted form. Employees of our company cannot read this password. They are therefore unable to provide you with any information if you have forgotten your password.

In this case, please use the "Forgotten password" function, which will send you an automatically generated new password by e-mail. No member of staff is authorized to ask you for your password by telephone or in writing. Therefore, please never give your password if you receive such requests.

The registration of the data subject with voluntary provision of personal data serves the responsible party to offer the data subject content or services which, due to the nature of the matter, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the database of the responsible party.

The responsible party shall provide any data subject at any time upon request with information about which personal data is stored about the data subject. Furthermore, the responsible party shall correct or delete personal data at the request or notice of the data subject, provided that this does not conflict with any statutory retention obligations. All employees of the responsible party are available to the data subject as contact persons in this context.

11. Chat option on the website (Art. 6 para. 1 lit. a GDPR)

On our website, you have the option of contacting us via a chat form.

In this context, we process your name and e-mail address. The principle of data minimization and data avoidance is observed as you only have to provide the data that we absolutely need for a conversation with you. Your IP address is also processed for technical reasons and for legal protection.

We implement appropriate security measures to protect the security and confidentiality of your data in the best way possible. Your request will be transmitted to us in encrypted form.

12. Newsletter tracking

Newsletters from Stürmer Maschinen GmbH contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in e-mails that are sent in HTML format to enable log file recording and analysis. This allows a statistical evaluation of the success or non-performance of online marketing campaigns to be carried out. Based on the embedded tracking pixel, the Stürmer Maschinen GmbH may see if and when an e-mail was opened by a data subject, and which links in the e-mail were called up by data subjects.

Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the responsible party in order to optimize the newsletter dispatch and to adapt the content of future newsletters even better to the interests of the person concerned. This personal data is not passed on to third parties. Data subjects are entitled at any time to revoke the separate declaration of consent given in this regard via the double opt-in procedure. After revocation, this personal data will be deleted by the responsible party. The Stürmer Maschinen GmbH automatically regards a withdrawal from the receipt of the newsletter as a revocation.

13. Contact via the website (Art. 6 para. 1 lit. a, b EU-DS)

The website of the Stürmer Maschinen GmbH contains information that enables a quick electronic contact to our enterprise, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If you contact us by e-mail, we will process the personal data provided in the e-mail solely for the purpose of processing your request.

There are contact forms on our website that can be used to contact us electronically. If you write to us via a contact form, we will process the data you provide in the contact form to contact you and answer your questions and requests.

The principle of data minimization and data avoidance is observed in that you only have to provide the data that we absolutely need to contact you. In addition, your IP address is processed for technical reasons and for legal protection. All other data are voluntary data entry fields and can be provided optionally (e.g. for more personalized answers to your questions).

In order to protect the security and confidentiality of your data in the best possible way, we implement appropriate security measures. Your request will be transmitted to us in encrypted form.

Such personal data transmitted on a voluntary basis by a data subject to the responsible party will be stored for the purpose of processing or contacting the data subject. This personal data is not passed on to third parties.

14. Routine erasure and blocking of personal data

The responsible party shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the responsible person is subject to.

If the storage purpose no longer applies or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data is routinely blocked or erased in accordance with the statutory provisions.

15. Rights of the data subject

First of all, we would like to inform you about your rights as a data subject. These rights are standardized in Art. 15 - 22 GDPR. This includes:

  • The right to information (Art. 15 GDPR),
  • The right to deletion (Art. 17 GDPR),
  • The right to rectification (Art. 16 GDPR),
  • The right to data portability (Art. 20 GDPR),
  • The right to restrict data processing (Art. 18 GDPR),
  • The right to object to data processing (Art. 21 GDPR).

To assert these rights, please contact: datenschutz@stuermer-maschinen.de. The same applies if you have any questions concerning data processing in our company or wish to withdraw your consent. You also have the right to complain by contacting a data protection supervisory authority.

16. Data protection for applications and in the application process

It is possible to make an application to us via our application form or by e-mail.

As part of the application form, you will be asked to provide personal data. We observe the principle of data minimization and data avoidance in that you only have to provide us with the data that we need to fully review your application documents or that we are legally obliged to collect. This mandatory information is marked with an * (asterisk). Your IP address is also processed for technical reasons and for legal protection.

The responsible party collects and processes the following personal data of applicants as part of the application form for the purpose of processing the application procedure in accordance with Art. 6 para. 1 lit. a, b GDPR:

  • Surname, first name
  • e-mail address
  • Documents submitted by you

Unfortunately, we cannot check your application documents without this data, which is why our application system does not allow you to upload your application documents in this case.

If the responsible party concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the responsible party does not enter into an employment contract with the applicant, the application documents will be automatically deleted six months after notification of the rejection decision, provided that no other legitimate interests of the responsible person stand in the way of deletion. Other legitimate interest in this context is, for example, a burden of proof in proceedings under German General Equal Treatment Act (AGG).

It is also possible to make an application to us by alternative ways, e.g. by post or e-mail.

17. Information on data protection in the social media

Stürmer Maschinen GmbH maintains social media presences, namely Meta (Facebook, Instagram), YouTube, NewWork (Xing, kununu) and LinkedIn. Insofar as we have control over the processing of your data, we ensure that the applicable data protection regulations are complied with.

Below you will find the most important information on data protection law in relation to our websites.

17.1 Name and address of the person responsible for operations

In addition to Stürmer Maschinen GmbH, the person responsible for the company's websites within the meaning of the EU General Data Protection Regulation (GDPR) and other data protection regulations is

  • Meta (Facebook, instagram)- Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
  • Youtube - Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
  • NewWork (Xing, kununu) - New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany
  • LinkedIn - LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

However, you use these platforms and their functions on your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating).

We would also like to point out that your data may be processed outside the European Union. Thenecessary data protection contractual framework will be established.

17.2 Purpose and legal basis

We maintain the fan pages ourselves in order to communicate with visitors to these pages and to inform them about our offers in this way.

We also collect data for statistical purposes in order to further develop and optimize the content and to make our offer more attractive. The data required for this (e.g. total number of page views, page activities and data provided by visitors, interactions) are processed by the social networks and made available to us. We have no influence on the generation and presentation of this data.

In addition, your personal data is processed by the social media providers, but also by Stürmer Maschinen GmbH for market research and advertising purposes. For example, it is possible that user profiles are created based on your usage behavior and the resulting interests. This allows, among other things, advertisements to be placed within and outside the platforms that correspond to your interests. Cookies are usually stored on your computer for this purpose. Irrespective of this, data that is not collected directly on your end devices may also be stored in your usage profiles. Data is also stored and analyzed across devices; this applies in particular, but not exclusively, if you are registered as a member and logged in to the respective platforms.

The processing of your personal data by Stürmer Maschinen GmbH is based on our legitimate interests in effective information and communication in accordance with Art. 6 para. 1 sentence 1 lit. f. GDPR.

If you are asked for consent to data processing, i.e. if you declare your consent by confirming a button or similar (opt-in), the legal basis for processing is Art. 6 para. 1 sentence 1 lit. a., Art. 7 GDPR.

17.3 Your rights / option to objection

If you are a member of a social network and do not want the network to collect data about you via our website and link it to your stored membership data on the respective network, you must

- log out of the respective network before visiting our fan page

- delete the cookies on your device and

- close and restart your browser.

After logging in again, however, you will once again be recognizable to the network as a specific user.

For a detailed description of the respective processing and the options to object (opt-out), please refer to the information linked below:

  • Meta (Facebook, Instagram)

Privacy policy: www.facebook.com/about/privacy/;

Opt-out: www.facebook.com/settings and www.youronlinechoices.com;

  • YouTube

Privacy policy: policies.google.com/privacy;

Opt-Out: tools.google.com/dlpage/gaoptout

  • NewWork (Xing, kununu)

Privacy policy: privacy.xing.com/de/datenschutzerklaerung;

Opt-Out: www.youronlinechoices.com;

  • LinkedIn

Privacy policy: www.linkedin.com/legal/privacy-policy;

Opt-out: www.linkedin.com/legal/cookie-policy and www.youronlinechoices.com;

Overall, you have the following rights regarding the processing of your personal data:

Right of access; Right to rectification; Right to deletion; Right to restriction of processing; Right to object; Right to data portability; Right to submit a complaint about unlawful processing of your personal data to the respective data protection authority.

However, since Stürmer Maschinen GmbH does not have complete access to your personal data, you should contact the social media providers directly when asserting your rights, as they have access to the personal data of their users and can take appropriate measures and provide information.

If you still need help, we will of course try to support you. Please contact Info(at)stuermer-maschinen.de.

17.4 Notes on authors' rights and the copyright to works of art

If you wish to publish images, texts, plans, videos, music etc. on our website, you should be aware that you may be assigning all rights of use to the network, which could ultimately have legal consequences for you if you are not the author or owner of the rights by yourself.

18. Legal basis of the processing

Art. 6 I lit. a GDPR is the legal basis of processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for fulfillment of a contract to which the data subject is a party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of another service or consideration, the processing is based on Art. 6 I lit. b GDPR. The same shall apply to such processing operations that are necessary for the performance of pre-contractual activities, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as for the fulfillment of tax obligations, the processing is based on Art. 6 I lit. c GDPR. In certain cases, the processing of personal data may become necessary in order to protect the vital interests of the data subject or another natural person. This would be in the event of a visitor to our company being injured, for example, and their name, age, health insurance details or other vital information having to be passed on to a doctor, hospital or other third party. The processing would then be based on Art. 6 I lit. d GDPR. Eventually, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject do not prevail. We are permitted to process such data in particular as they were specifically mentioned by the European legislator. In this respect, the legislator considered a legitimate interest to be assumed if the data subject is a customer of the responsible party (Recital 47 Sentence 2 GDPR).

19. Duration of storage of the personal data

The criterion for the duration of storage of personal data is the respective statutory retention period. After this period has expired, the corresponding data is routinely deleted, provided that it is no longer required for contract fulfillment or contract initiation. In addition, we may retain data if you have given us your permission to do so or if legal disputes arise and we use evidence within the scope of statutory limitation periods, which can be up to thirty years; the regular limitation period is three years.

20. Legal or contractual obligations for the provision of personal data; necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of refusal to provide the data

We would like to inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual regulations (e.g. information on the contractual partner). Sometimes it may be necessary for a contract to be concluded for a data subject to provide us with personal data that must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide the personal data would mean that the contract with the data subject could not be concluded. Before personal data is provided by the data subject, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences would be if the personal data were not provided.

21. Use of automated decision-making

As a conscientious company, we do not use automated decision-making or profiling.

22. Use and application of Google Analytics (pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG)

The responsible party has integrated the Google Analytics 4 component on this website. The service is only used if you give your consent (Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG).  Google Analytics is a web analysis service.  The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google")

We use Google Analytics 4 on the server side and initially collect the data ourselves. In a subsequent step, the information is transmitted by us to Google for evaluation. A direct data connection between you and Google is not established. We also use cookies and other technologies that access information on your end device.

We collect and process the following data:

  • Order ID
  • Basket ID
  • Account data
  • Bounce rates
  • Browser information
  • Click path
  • Device information
  • Date and time and duration of the visit
  • IP address
  • Downloads
  • Location
  • Internet service provider
  • Mouse movements
  • Screen resolution
  • Behavioral data
  • Referrer URL
  • App updates

If you give us your consent (Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG) to data processing by Google Analytics 4, we will use your data to analyze usage.  In this case, we pass the data on to Google for analysis without anonymization or pseudonymization. In this case, the information is transferred to a Google server in the USA and stored there, as indicated. However, Google's IP anonymization is active so that your IP address is shortened before data transmission and within the European Union or contracting states of the European Economic Area. Google does not store the full IP address. An unshortened transmission of the full IP address to Google only takes place in exceptional cases.

The purpose of the Google Analytics component is to analyze the flow of visitors to our website. Google uses the data and information obtained on behalf of the operator to evaluate the use of our website, to compile online reports for us that show the activities on our website, and to provide other services related to the use of our website. The IP address transmitted by your browser as part of Google Analytics 4 is not merged with other Google data. Sessions and campaigns are always ended after a certain period of time. By default, sessions are ended after 30 minutes of inactivity and campaigns after 30 days. Users' personal data is deleted or anonymized after 14 months; the cookies set have a lifespan of 24 months.

If you consent to the use of Google Analytics 4, this personal data will be transferred to Google in the United States of America. This personal data is stored by Google in the United States of America. Appropriate contractual regulations and guarantees ensure compliance with the European level of data protection for data transfer and processing in third countries.

The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding setting of the Internet browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a cookie on the data subject's IT system. In addition, a cookie already set by Google Analytics can be deleted at any time via the Internet browser or other software programs.

Furthermore, the data subject has the option of objecting to and preventing the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the data subject must download and install a browser add-on from the link tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google. If the data subject's IT system is deleted, formatted or reinstalled at a later date, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person who is attributable to their sphere of control, it is possible to reinstall or reactivate the browser add-on.

Further information and the applicable data protection provisions of Google may be retrieved under policies.google.com and under www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail at this link support.google.com/analytics/answer/6004245.

You can revoke the consent you have given us at any time with effect for the future. To do so, simply call up our consent banner and deselect the relevant consent. Please note that the change in the consent banner settings must be made individually for each end device.

24. Social media links

On our website you will find links to the social media services of Meta / Facebook / Instagram, YouTube, LinkedIn and XING/kununu. You can recognize links to the websites of the social media services by the respective company logo. If you follow these links, you will reach the company website of Stürmer Maschinen GmbH on the respective social media service. When you click on a link to a social media service, a connection to the servers of the social media service is established. This tells the social media service's servers that you have visited our website. In addition, further data is transmitted to the provider of the social media service. These are, for example

  • Address of the website on which the activated link is located
  • Date and time of accessing the website or activating the link
  • Information about the browser and operating system used
  • IP address

If you are already logged in to the corresponding social media service at the time the link is activated, the provider of the social media service may be able to determine your user name and possibly even your real name from the transmitted data and assign this information to your personal user account with the social media service. You can exclude this ability to assign this information to your personal user account if you log out of your user account in advance.

The servers of the social media services are located in countries outside the European Union. The data may therefore also be processed by the provider of the social media service in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that do not generally protect personal data to the same level as is the case in the member states of the European Union.

Please note that we have no influence on the scope, type and purpose of data processing by the provider of the social media service. For more information on the use of your data by the social media services integrated on our website, please refer to the privacy policy of the respective social media service.

25. Data protection regulations on the use and application of Google Ads

The responsible party has integrated Google Ads on this website. Google Ads is an internet advertising service that allows advertisers to place ads both in Google's search engine results and in the Google advertising network. Google Ads allows an advertiser to specify certain keywords in advance, which are used to display an ad in Google's search engine results only when the user uses the search engine to retrieve a keyword-relevant search result. In the Google advertising network, the ads are distributed to relevant websites using an automatic algorithm and taking into account the previously defined keywords.

The operating company of the Google Ads services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.

The purpose of Google Ads is to advertise on our website by displaying interest-relevant advertising on the websites of third-party companies and in the search engine results of the Google search engine and by displaying third-party advertising on our website.

If a data subject reaches our website via a Google ad, a so-called conversion cookie is stored on the data subject's IT system by Google. What cookies are has already been explained above. A conversion cookie loses its validity after thirty days and is not used to identify the data subject. If the cookie has not yet expired, the conversion cookie is used to track whether certain sub-pages, such as the shopping cart from an online store system, have been accessed on our website. The conversion cookie enables both us and Google to track whether a data subject who has reached our website via an Ads ad has generated sales, i.e. completed or canceled a purchase.

The data and information collected through the use of the conversion cookie is used by Google to compile visit statistics for our website. These visit statistics are in turn used by us to determine the total number of users who were referred to us via Ads ads, i.e. to determine the success or failure of the respective Ads ad and to optimize our Ads ads for the future. Neither our company nor other Google Ads advertisers receive information from Google that could be used to identify the data subject.

The conversion cookie is used to store personal information, such as the websites visited by the data subject. Each time our website is visited, personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may share this personal data collected through the technical process with third parties.

The data subject may, as stated above, prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus permanently deny the setting of cookies. Such a setting of the Internet browser used would also prevent Google from placing a conversion cookie on the data subject's IT system. In addition, a cookie already set by Google Ads can be deleted at any time via the Internet browser or other software programs.

Furthermore, the data subject has the option of objecting to interest-based advertising by Google. To do this, the data subject must call up the link www.google.de/settings/ads from each of the Internet browsers they use and make the desired settings there.

Further information and the applicable data protection provisions of Google may be retrieved under www.google.de/intl/de/policies/privacy/.

26. Data protection regulations on the use and application of Userlike

The responsible party has integrated Userlike components on this website.

Userlike is an Internet chat function that allows our website visitors to communicate directly with a competent employee.

The operating company of Userlike is: Userlike UG (haftungsbeschränkt), Probsteigasse 44-46, 50670 Cologne, Germany

You can find the operator's privacy policy here: www.userlike.com/de/terms;

27. Data protection regulations for the use and application of Google reCaptcha
We use Google reCaptcha on the basis of our legitimate interest to determine whether a person or a computer submits a specific entry in one of our registration forms. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google").

Google uses the following data to check whether you are a natural person or a computer

- IP address of the terminal device used,

- the website that you visit with us and on which the captcha is integrated

- the date and duration of the visit

- the identification data of the browser and operating system type used,

- the Google account if you are logged in to Google,

- mouse movements on the reCaptcha areas.

The legal basis for the data processing described is Art. 6 para. 1 lit. f EU-GDPR, § 25 para. 2 TTDSG.

Further information on Google reCaptcha and Google's privacy policy can be found at the following links: www.google.com/intl/de/policies/privacy / and www.google.com/recaptcha/intro/android.html .

Please note that in this context, personal data may be processed in a third country, the USA. Compliance with the European level of data protection for data transfer and processing in third countries is ensured by corresponding contractual regulations and guarantees.

 

II. Information requirements for the use of Microsoft Teams

1. Designation of the processing activity

With this data protection information we inform you about the processing of your personal data in the context of our project work, online meetings, video conferences, webinars (hereinafter: "onlinemeetings" using the video conferencing solution Microsoft Teams).

2. Name and contact details of the responsible party

Stürmer Maschinen GmbH

Dr.-Robert-Pfleger-Str. 26

D-96103 Hallstadt

Managing Director Kilian Stürmer

Phone: +49 (0) 951 96 555 - 0

E-mail: info@stuermer-maschinen.de

Note: If you access the "Microsoft Teams" website, the provider of "Microsoft Teams" is responsible party for data processing. However, accessing the website is only necessary for the use of "Microsoft Teams" in order to download the software for the use of "Microsoft Teams". If you do not want to or cannot use the "Microsoft Teams" app, you can also use "Microsoft Teams" via your browser. The service is then also provided via the "Microsoft Teams" website.

3. Contact details of the data protection officer

The data protection officer of the responsible party can be contacted at:

datenschutz@stuermer-maschinen.de . Any data subject can contact our data protection officer directly at any time with any questions or suggestions regarding data protection.

4. Purpose of the processing

We use the "Microsoft Teams" tool to carry out project work, telephone conferences, online meetings, video conferences and/or webinars (hereinafter: "online meetings").

"Microsoft Teams" is a service of Microsoft Corporation:

Microsoft Ireland Operations Limited

One Microsoft Place

South County Business Park

Leopardstown

Dublin 18D18 P521

Ireland 

 

Various types of data are processed when using "Microsoft Teams". The scope of the data also depends on the data you provide before or when participating in an "online meeting" and during project work.

 The following personal data is processed:

  • User details: e.g. display name ("Display name"), e-mail address. Profiling information.
  • Meeting metadata: e.g. date, time, meeting ID, telephone numbers, location
  • Text, audio and video data: You may have the option of using the chat function in an "online meeting". In this respect, the text entries you make are processed in order to display them in the "online meeting". In order to enable the display of video and the playback of audio, the data from the microphone of your end device and from any video camera of the end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time via the "Microsoft Teams" applications.

We use "Microsoft Teams" to conduct "online meetings". We do not record online meetings in general. Exceptional recordings are only made with your consent.

A user can read the chat history retrospectively and without participating in a meeting as long as the meeting was invited from a team and you are part of this team. The chat history of meetings can therefore always be read.

Automated decision-making within the meaning of Art. 22 GDPR is not used.

As part of project work on the Microsoft Teams platform, project content is shared in various file formats (Word, PDF, etc.) and is visible to all members of the respective team. No personal data of third parties is placed on the platform as content of documents and no confidential content, in particular not content that is subject to professional or business secrecy.

5. Legal basis of the processing

If personal data of employees of Stürmer Maschinen GmbH are processed, § 26 BDSG is the legal basis for data processing.

If, in connection with the use of "Microsoft Teams", personal data is not required for the establishment, implementation or termination of the employment relationship, but is nevertheless an elementary component of the use of "Microsoft Teams", Art. 6 para. 1 lit. f) GDPR is the legal basis for data processing. In these cases, our interest lies in the effective implementation of "online meetings" and project work in and with Microsoft Teams.

Otherwise, the legal basis for data processing when conducting "online meetings" and project work is Art. 6 para. 1 lit. b) GDPR, insofar as the meetings are conducted within the framework of contractual relationships.

If there is no contractual relationship, the legal basis is Art. 6 para. 1 lit. f) GDPR. Here too, we are interested in the effective implementation of online meetings and project work.

6. Recipients or categories of recipients of the personal data

Personal data processed in connection with participation in "online meetings" and project work will not be passed on to third parties unless they are specifically intended to be passed on. Please note that content from online meetings and face-to-face meetings is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on.

Other recipients: The provider of "Microsoft Teams" necessarily receives knowledge of the above-mentioned data, insofar as this is provided for in our order processing contract with "Microsoft Teams".

7. Transfer of personal data to a third country

In principle, data processing outside the European Union (EU) does not take place, as we have limited our storage location to data centers in the European Union. However, we cannot exclude the routing of data via internet servers located outside the EU. This may be the case in particular if participants in "online meetings" are in a third country or external products are used. However, the data is encrypted during transport via the Internet and thus protected against unauthorized access by third parties.

8. Duration of storage of personal data

We generally delete personal data when there is no need for further storage. A requirement may exist in particular if the data is still needed to fulfill contractual services, to check and grant or defend against warranty and guarantee claims. In the case of statutory retention obligations, deletion will only be considered after the respective retention obligation has expired.

9. Rights of data subjects

According to the EU General Data Protection Regulation, you have the following rights:

  • If your personal data is processed, you have the right to obtain information about the personal data stored about you (Art. 15 GDPR).
  • If incorrect personal data is processed, you have the right to rectification (Art. 16 GDPR).
  • If the legal requirements are met, you can request the deletion or restriction of the processing and object to the processing (Art. 17, 18 and 21 GDPR).
  • If you have consented to the data processing or a contract for data processing exists and the data processing is carried out using automated procedures, you may have a right to data portability (Art. 20 GDPR).

If you make use of your above-mentioned rights, Stürmer Maschinen GmbH will check whether the legal requirements for this are met. To exercise your rights, please contact the data protection officer.

 

In the event of complaints under data protection law, you can contact the competent supervisory authority:

Bavarian State Office for Data Protection Supervision

Promenade 18

91522 Ansbach

E-mail: poststelle@lda.bayern.de

Telephone: +49 (0) 981 180093-0

Legal comments

Exclusion of Liability:

1. Content of the Online Offer

The Author assumes no warranty whatsoever for the currentness, correctness, completeness or quality of the information provided. Liability claims against the Author, which make reference to damages of a material or non-material type that have been caused through the usage or non-usage of the information provided or the usage of erroneous and incomplete information, are in principle excluded unless it can be proven that the Author has committed intentional wrongdoing or gross negligence.

All offers are free of obligation and non-binding. The Author expressly reserves the right to change, supplement or delete sections of the pages or the entire offer without any special termination being required or to discontinue their publication upon a temporary or permanent basis.

2. References and Links

With respect to direct or indirect references to third-party Internet sites ("Links"), which lie outside the sphere of responsibility of the Author, a liability obligation would apply exclusively in the case in which the Author has knowledge of the contents and it would be technically possible and reasonable for him to prevent usage in the case of illegal content.

Thus, the Author expressly declares that, at the time the link was placed on the site, the corresponding linked pages had no illegal content. The Author has no influence whatsoever upon the current and future design and the contents of the linked/connected pages. Therefore, he hereby expressly distances himself from all contents of all linked/connected pages that have been changed after the links were placed upon the site. This statement shall apply for all links and references placed within its own Internet offerings as well as for third-party entries in the guest books, discussion forums and mailing lists set up by the Author. For illegal, erroneous or incomplete content and particularly for damages that are created due to the usage or non-usage of such information offered, solely the provider of the page to which reference is made shall be liable, but not the party which merely makes reference to links about the respective publication.

3. Copyright and Labeling Rights

The Author shall endeavor in all publications to not violate the copyrights of the graphics, tone documents, video sequences and texts used, to use graphics, tone documents, video sequences and texts that it itself has created or to use graphics, tone documents, video sequences and texts that do not require a license.

All brands and trademarks specified in the Internet offer and protected, as applicable, by third party-rights shall be subject without limitation to the provisions of the respectively valid labeling law and the ownership rights of the respectively registered owners. Merely due to the creation of a name, one must not draw the conclusion that brands and trademarks are not protected by third-party rights!

The copyright for published materials prepared by the Author himself shall remain the property of solely the Author of the pages. A reproduction or use of such graphics, tone documents, video sequences and texts in other electronic or printed publications is not permitted without the express approval of the Author.

4. Legal Validity of This Exclusion of Liability

This exclusion of liability must be regarded as a section of the Internet offer from which this page is made reference to. If sections or individual formulations of this text should not, no longer or not completely correspond to the applicable legal situation, the remaining sections of the document shall remain unaffected in their content and validity.