Data privacy

Information in accordance with Art. 13 of the GDPR

We are delighted at your interest in our company, which has led you to make contact with us. In accordance with Art. 13 of the GDPR, we wish to inform you about the processing of your personal data arising out of your making contact with us.

The controller, within the meaning of data protection law, is

SCHNEIDER GmbH & Co. KG
Biegenstraße 8-12
35112 Fronhausen.

 

How to contact our data privacy officer

We have a named data privacy officer in our organisation. You can contact the officer in the following ways:

SCHNEIDER GmbH & Co. KG
- Data privacy officer -
Biegenstraße 8-12
35112 Fronhausen
E-Mail: dataprivacy(AT)schneider-om(DOT)com

 

1.) Overview of Data Privacy

What personal data will we be processing and for what purpose?

We will process the data you have relayed to us in conjunction with contacting us (email, business card, enquiry, telephone call). This is done in order to be able to, for example, initiate a business contact or transaction, satisfy your request for some information or, generally, to communicate with you. Data may also be stored and processed because it is required by law.

Our website offers you to use several forms. When your request is sent via a form, you are referred to this Data Privacy and asked to give your consent. If you make use of our forms, we only processed data you share with us.

We also process the data relating to you that is necessary to conclude and execute a contract that has been made between us.

 

Legal basis

The legal basis for processing your personal data for these proceedings is provided primarily by Art. 6(1)(f) of the GDPR (legitimate interest, e.g. in the sense of a desired initiation of a business contact or the satisfying of a desire for information) and Art. 6 (1)(b) of the GDPR (for the performance of a contract).

 

2.) General information and mandatory information

How long will data be stored?

The data collected will be stored for as long as it is required, i.e. for as long as it is needed to fulfil the purpose for which it was collected. This means, in particular, that the personal data collected will be deleted once the contract has been completed, provided that there are no statutory or contractual retention period considerations that would prevent this. If, therefore, the data is no longer required for the purposes of communicating with you, providing you with information, maintaining a business relationship with you or because it is stipulated in law that your data is retained, the data will be deleted. In particular, it will be deleted if

  • the reasons stated above no longer apply and are unlikely to arise again,
  • you assert your right to have your data deleted,
  • the deletion of the data is required by law.

 

Disclosure to others

The personal data collected as a result of the contact will not be relayed to third parties unless

  • this is required by law,
  • it is required to fulfil contractual obligations,
  • it is required due to the legitimate interest of a third party,
  • you have agreed to it by giving consent to a form of disclosure.

As a result of the above measures, the following might be recipients:

  • processors that we have commissioned,
  • public authorities,
  • public organisations,
  • customers and partners.

The relaying of data to a state that is not part of the European Economic Area will only take place if it can demonstrate an appropriate level of data protection, which is confirmed by the EU Commission; further, that it has provided appropriate data protection guarantees; that this is required to meet employment contract obligations; or if you have given your consent for this to happen. If a processor is commissioned to execute a contract, we will conclude a contract with that third party for contract processing within the meaning of Art. 28 of the GDPR and obtain your express consent to this in advance.

 

Where will the data be processed?

The personal data will be processed in our internal systems, by contract processors with whom we have contracts and in data centres in the Federal Republic of Germany.

 

How will the data be safeguarded?

We are obliged to carry out data backups regularly and to the required extent. We must also comply with the technical and organisational stipulations of Art. 32 of the GDPR, in particular, we must protect the systems to which we control access against them becoming known to, or being recorded or modified by, unauthorised employees or other third parties, or against any other unauthorised access or attack, no matter what form this takes. To do this, we deploy appropriate measures using the latest in proven technology, in particular to safeguard against viruses and other malicious software or program routines; and additionally, measures to protect our facilities, in particular to guard against break-in.

 

What are your rights as a data subject?

  • You have the right to be informed about the processing of your personal data (Art. 15 of the GDPR). We ask for your understanding, in the case of a request for disclosure that is not made in writing, that we may then ask for evidence that you are who you say you are.
  • You have the right to the rectification or erasure of your data; or to restrict processing, provided you are legally entitled to do so (Art. 16, 17, 18 of the GDPR).
  • You have the right to object to the processing, provided you are legally entitled to do so (Art. 21 of the GDPR).
  • You have the right to data portability, provided you are legally entitled to do so (Art. 20 of the GDPR).
  • You have the right to complain. This gives you the possibility to lodge a complaint with the supervisory authority responsible for your case (the national data protection supervisor) if you are of the opinion that we are not processing your personal data correctly (Art. 77 of the GDPR).
  • If the personal data has been collected because you gave your consent to this, you have the right to revoke this consent at any time, without any requirement to give reasons (Art. 7(3) of the GDPR).

 

3.) Data collection on our website

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser's address line when it changes from "http://" to "https://" and the lock icon is displayed in your browser's address bar.

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

 

Cookies

Some of our web pages use cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies." They are automatically deleted after your visit. Other cookies remain in your device's memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy.

 

Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in "server log files".
These are:

  • IP address,
  • date and time of request,
  • time zone difference compared with Greenwich Mean Time (GMT),
  • content of the request (specific page),
  • volume of data transmitted,
  • website issuing the request,
  • browser,
  • language of browser software.

These data will not be combined with data from other sources.

The basis for data processing is Art. 6 (1) (f) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

 

 

 

 

Contact form

Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1)(a) GDPR. You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.

 

Google Analytics

This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called "cookies". These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

 

IP anonymization

We have activated the IP anonymization feature on this website. Your IP address will be shortened by Google within the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases is the full IP address sent to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and Internet usage for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google.

 

Browser plugin

You can prevent these cookies being stored by selecting the appropriate settings in your browser. However, we wish to point out that doing so may mean you will not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=en

Objecting to the collection of data

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics.
For more information about how Google Analytics handles user data, see Google's privacy policy:
https://support.google.com/analytics/answer/6004245?hl=en.

Outsourced data processing

We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

 

News data

If you would like to receive our news, we require a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive our news. No additional data is collected or is only collected on a voluntary basis. We only use this data to send the requested information and do not pass it on to third parties.

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1) (a) GDPR. You can revoke consent to the storage of your data and email address as well as their use for sending the news at any time, e.g. through the "unsubscribe" link in the news. The data processed before we receive your request may still be legally processed.

 

INXMAIL

This website uses the services of INXMAIL sending out our news. The provider is the Inxmail GmbH, Wentzingerstr. 17, D-79106 Freiburg, Germany.

Among other things, INXMAIL is a service that can be deployed to organize and analyze the sending of news. Whenever you enter data for the purpose of subscribing to our news (e.g. your email address), the information is stored on INXMAIL servers in Germany.

With the assistance of the INXMAIL tool, we can analyze the performance of our news campaigns. If you open an email that has been sent through the INXMAIL tool, a file that has been integrated into the email (a so-called web-beacon) connects to INXMAIL’s servers. As a result, it can be determined whether a news message has been opened and which links the recipient possibly clicked on. Technical information is also recorded at that time (e.g. the time of access, the IP address, type of browser and operating system).

If you do not want to permit an analysis by INXMAIL, you must unsubscribe from the news. We provide a link for you to do this in every news message.

The data is processed based on your consent (Art. 6 Sect. 1 lit. a GDPR).  You may revoke any consent you have given at any time by unsubscribing from the news. This shall be without prejudice to the lawfulness of any data processing transactions that have taken place prior to your revocation. The data is also processed on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing recipients behavior to optimize both its news and its advertising.

The data you archive with us for the purpose of the news subscription shall be archived by us until you unsubscribe from the news. Once you cancel your subscription to the news, the data shall be deleted from our servers as well as those of INXMAIL. This shall not affect data we have been archiving for other purposes.

For more details, please consult the Data Privacy Policies of INXMAIL at:
https://www.inxmail.com/gdpr

 

4.) Recruiting Process

Overview

Data Categories Purpose Legal Basis Storage Duration
personel master data to identify, contact and communicate with the applicant, validate age Art. 6 (1) b GDPR 6 months
contact and address information to identify, contact and communicate with the applicant Art. 6 (1) b GDPR 6 months
public or third party directories to identify, contact and communicate with the applicant Art. 6 (1) b GDPR 6 months
assessment data applicant selection

Art. 6 (1) b GDPR 6 months
qualification data applicant selection

Art. 6 (1) b GDPR 6 months
qualification data, certificates, testimonies applicant selection

Art. 6 (1) b GDPR 6 months
soft skills applicant selection

Art. 6 (1) b GDPR 6 months
additional skills (e.g. spoken languages, computing knowledge) applicant selection

Art. 6 (1) b GDPR 6 months
digital photograph of a face to identify Art. 6 (1) b GDPR 6 months
salary applicant selection Art. 6 (1) b GDPR 6 months
data about previous application communicate with the applicant applicant selection Art. 6 (1) b GDPR 6 months

 

Data Transfer

Receiver Categories Data Categories Legal Basis
Softgarden data mentioned above Art. 28 GDPR

 

Softgarden

We are using Softgarden for our recruiting management. This service is provided by softgarden e-recruiting GmbH, Tauentzienstraße 14, 10789 Berlin. Softgarden is an online service, where applicants can register and upload their application documents. Personel data is uploaded, stored and processed on the servers of Softgarden. Data processing is based on Art. 6 (1) (a) GDPR.

For details, see the Softgarden privacy policy at
https://www.softgarden.io/company/privacy and
https://www.softgarden.io/company/terms