Data privacy statement and consent to data usage at www.schnitzer-group.com

In this privacy policy, we (Schnitzer Anlauf- und Projektmanagement GmbH and Schnitzer Group GmbH & Co. KG, hereinafter referred to as “we”) provide information about the processing of personal data when using our website.
You can print out or save this privacy policy by using your standard browser functions. You can also download and archive this privacy policy as a PDF file by clicking here.

 

1. Do you have questions? Or would you like to contact us?

1.1. Responsible party

The contact and controller for processing your personal data when visiting this website, in the terms of the EU General Data Protection Regulation (GDPR), is
Schnitzer Anlauf- und Projektmanagement GmbH / Schnitzer Group GmbH & Co. KG

Paradiesstrasse 4

88239 Wangen im Allgäu, Germany

Phone: +49 7522 707969 0

E-mail: info@schnitzer-group.com

 

1.2. Data privacy officer

For all questions relating to data protection in connection with our services or the use of our website, you can contact our data protection officer at any time. This person can be reached at the above-listed postal address with the added line – Data Protection Officer – and at the following e-mail address (keyword: “ATTN: Data Protection Officer”): [datenschutz@schnitzer-group.com].

 

2. Your rights

You have the right to information at any time about the processing of your personal data by us. We will explain the data processing in this context and provide an overview of the personal data about you that is stored. If data we have stored is incorrect or no longer current, you have the right to the rectification of this data. Furthermore, you can request the erasure of your data. If this erasure is not possible due to other legal regulations, the data is locked so that it is only available for this legal purpose. You can have the processing of your personal data restricted if, for example, the correctness of the data on our page is called into question. You also have the right to data portability, i.e. that we send you a digital copy of the personal data you have provided on request.
In addition, you have the right to object to data processing, based on Art. 6 (1) (1)(e) or (f) GDPR. To exert the rights described here, you can contact us using the contact data listed above at any time. This also applies if you would like copies of guarantees in order to verify an appropriate data protection level.

3. Contacting the supervisory authority

You have the right to lodge a complaint with the data protection supervisory authority responsible for us. You can exert this right at a supervisory authority in the member state where you reside, where you work or at the location of the purported violation. Which data do we process

4. Visiting our website

When you visit our website www.schnitzer-group.com, our hosting service provider STRATO collects data that is transferred to STRATO automatically by your browser. This data includes various pieces of standard technical data (what are known as log files), which are transmitted to STRATO. Log files are not viewed or stored by us.

“The following information is recorded and stored until it is automatically erased without any action from you:

  • IP address of the requesting computer
  • Data and time of access
  • Name and URL of the retrieved file
  • Website from which the access took place (REFERRER URL)
  • Browser used and, where appropriate, the operating system of your computer and the name of your
    access provider

We process the data listed for the following purposes:

  • Ensuring the website connection is setup smoothly
  • Ensuring our website can be used conveniently
  • Evaluating system security and
  • stability, as well as
  • for other administrative purposes

The legal basis for this data processing is Art. 6 1(1)(f) GDPR. Our legitimate interest arises from the purposes for data processing listed above. We do not use the data collected for the purpose of drawing conclusions about your personal identity under any circumstances.”

 

4.1. Contact form and other interactions

You have various options for getting in contact with us. We offer different contact channels for this purpose, such as our contact form and our customer hotline. When you contact us, we record your contact data. Depending on the contact channel, your contact data may include your name, postal addresses, phone numbers, e-mail addresses, reason for contact, your specific message and details about your social media profiles (e.g. we receive your Facebook ID if you contact us via Facebook), user names and similar contact details. As an option, you can also specify an order number or upload an attachment.
The legal basis is Art. 6 (1) 1(b) GDPR, to the extent that this information is required to answer your request or initiate or execute a contract. On the other hand, Art. 6 (1) 1(f) GDPR provides the legal basis if data processing takes place for marketing purposes.
If you are not one of our customers, the above-mentioned data when using our contact options is deleted after your request has been processed, but at the latest after one year. If you are registered with us as a customer, this data is stored as long as your customer account also exists. After the customer account is canceled, this data continues to be stored for the legal retention period.

 

5. What are cookies?

A cookie generally contains the name of the domain from which cookie data was sent as well as information about the age of the cookie and an alphanumeric identification code.
Two different types of cookies are generally differentiated: session cookies, which are deleted as soon as you close your browser, and temporary/permanent cookies, which are stored for a longer period. This storage helps us design our websites and services appropriately for you and makes it easier for you to use them, such as by saving certain entries so that you do not have to enter them repeatedly.

 

5.1. Why do we use cookies?

A portion of our services require that we use cookies. No personal data is stored in the cookies we use. This means that the cookies we use cannot be assigned to a particular person, and thus cannot be assigned to you. When the cookie is activated, an identification number is assigned to it. Your personal data can never be assigned to this identification number. Your name, IP address or similar data that would allow the cookie to be assigned to you is never handled here. Based on cookie technology, we only ever receive pseudonymized information, such as information about which pages of our website were visited or which services were viewed.
Most browsers are set to accept these cookies as standard. However, you can adjust your browser settings so that cookies are rejected or only stored with prior consent. If you reject cookies, some of our services may no longer function without errors.
We use cookies in order to personalize and optimize your user experience. We primarily use session cookies that are deleted when the browser is closed. Session cookies are used for login authentication and load distribution. We use persistent cookies in order to save your language settings, for example, or note that a message placed on our website has already been shown to you so that it is not shown again when you next visit the website. Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie.
These services are based on our legitimate interests; the legal basis is Art. 6 (1) 1(f) GDPR. We want to enable you to use our websites more conveniently and for it to be more individualized.

 

6. Use of Google Analytics

This website uses Google Analytics, a web analytics service from Google Inc. (hereinafter: Google). Google Analytics uses what are known as “cookies”, i.e. text files placed on your computer, to help the website analyze how you use the site. The information generated by this cookie on your use of this website is usually transmitted to a server of Google in the United States and stored there. Due to the activation of IP anonymization on these websites, however, your IP address is first shortened by Google within the member states of the European Union or in other countries that have signed the Agreement on the European Economic Area. Only in exceptional cases is your full IP address transmitted to a server by Google in the United States and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports about website activities and render other services associated with website and Internet usage for the website operator. More detailed information about conditions of use and data protection are available at http://www.google.com/analytics/terms/de.html or at http://www.google.com/intl/de/analytics/privacyoverview.html. The legal basis for processing personal data using cookies is Art. 6 1, under Par. 1(a) GDPR. The purposes of data processing are the evaluation of website use and the compilation of reports about activities on the website. Based on the website and Internet use, additional associated services are then to be performed. This processing is based on the legitimate interests of the website operator.
You may refuse the storage of cookies by selecting the appropriate settings on your browser, however please note that you may not be able to use the full functionality of this website if you do so. Furthermore, you can prevent Google’s collection of data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by downloading and installing the browser plug-in available at the following link: Browser add-on for deactivation of Google Analytics.
In addition or as an alternative to the browser add-on, you can prevent tracking by Google Analytics on our pages by clicking on this link. When doing so, an opt-out cookie is installed on your device. This prevents data collection by Google Analytics for this website and this browser in the future, for as long as the cookie remains installed on your browser.

 

7. Location of data processing

As a rule, we generally process your data in Germany, in the EU or within the European Economic Area (“EEA”). Your data is sometimes processed on servers that are outside of the EU, particularly in the US. We ensure sufficient guaranties to ensure the protection of your data in this case as well. Therefore, the providers we use either take part in the EU-US Privacy Shield, or we have concluded a contract with these providers (EU standard contractual clauses).

 

8. Transfer of data

For certain technical data processing processes, we rely on the assistance of external service providers who receive access to your personal data to render these services. These service providers are carefully chosen and meet the standards for data protection and data security. They are bound to strict confidentiality and process the data only on our behalf and in accordance with our instructions.

Your personal data is not transmitted to third parties for any reason other than those listed below. We only transmit your personal data to third parties under the following circumstances:

  • In accordance with Art. 6 1(1)(a) GDPR, you have expressly given your consent for us to do so
  • In accordance with Art. 6 1(1)(f) GDPR, this is required to exercise, assert or defend legal claims, and there is no reason to assume that you have a prevailing legitimate interest in the non-disclosure of your data.
  • For the case that there exists a legal obligation for transfer in accordance with Art. 6 1(1)(c) GDPR
  • This is legally permitted and, in accordance with Art. 6 1(1)(b) GDPR, it is necessary for handling contractual relationships with you.”

 

9. How long do we store your data?

9.1. General information about storage

As a rule, we only save personal data as long as is necessary to fulfill the contractual or legal obligations for which we have collected the data. Afterwards, the data is immediately deleted, unless we require the data up to the end of the legal limitation period for evidentiary purposes for civil claims or due to legal retention obligations.
For evidentiary purposes, we must keep contract data for three years from the end of the year in which the business relationship with you ended. According to the legal limitation period, some claims only expire at this point at the earliest.
In addition, we must sometimes continue storing your data for accounting reasons. We are also subject to legal documentation requirements that may result from the German Commercial Code, German Fiscal Law, German Banking Act, Money Laundering Act and Securities Trading Act. The periods specified for keeping documents there are two to ten years.

10. Changes to the privacy policy

We may occasionally update this privacy policy, for example when we update our website or the legal mandates change.

Version: 3.0 / As at: August 2018