Privacy Policy

Privacy policy

1. Introduction

Thank you for visiting our website and for your interest in our products and company. The protection of your private and personal data is very important to us, and we want you to feel comfortable when visiting our website. It was and is our concern to protect personal data and your privacy when processing data, and we have taken this into account when designing our business processes. We process personal data that is collected when you visit our website, during our other business transactions and communication and in other day-to-day dealings in accordance with the applicable data protection regulations of the European Union (EU GDPR) and Germany (BDSG).

1.1 Collection

You will find out how we handle your personal data in this privacy policy. Personal data is collected when you use our services, store your data in our data centre, purchase products from us or when you visit our website.

1.2 Description

In this data protection policy, we explain how we handle your personal data and fulfil the legal requirements and obligations to protect said data. The protection of your data is important to us, and this results in our claim to protect and safeguard your rights in relation to data protection.

1.3 Groups of affected persons

This privacy policy applies to the personal data of visitors to our websites, our customers and suppliers, employees, applicants who wish to work for us, and other persons with whom we communicate.

2. Responsible

The controller for the processing of personal data at Gerling Automation GmbH and Gerling GmbH Maschinenbau, within the meaning of the applicable data protection law, including the EU General Data Protection Regulation (Regulation (EU) 2016/679), is

Gerling Automation GmbH
Dieselstr. 18
71546 Aspach
Holger Gerling
Telefon: +49 (0) 7191 9235 – 0
info@gerling-automation.de

Gerling GmbH Maschinenbau
Dieselstr. 18
71546 Aspach
Holger Gerling
Telefon: +49 (0) 7191 9235 – 0
info@gerling-automation.de

Gerling Automation operates the website as the sole responsible party. The website also provides information on all the companies that belong to the Gerling Group.

2.1 Contact details of the data protection officer

If you have any questions regarding the handling of your data under data protection law, there are two ways in which you can clarify your questions or submit your request.

For general enquiries on data protection and requests for information, please contact us, giving details of your request and your contact address, at:

Gerling Automation GmbH
Dieselstr. 18
71546 Aspach
datenschutz@gerling-automation.de

or
Gerling GmbH Maschinenbau
Dieselstr. 18
71546 Aspach
datenschutz@gerling-automation.de

2.2 Changes to the data protection guidelines

Important note: This privacy policy may be amended from time to time. These adjustments are made, for example, when technical progress, legal requirements or other influences result in changes. Please visit this page from time to time to find out about any changes, as we will post them here.

2.3 Legal claims

If you do not agree with any parts of this privacy policy, you may be entitled to legal claims, which we address in the relevant sections of this privacy policy.

3. Summary — at a glance

3.1 What kinds of personal data are collected?

3.1.1 Applicant data

We would be delighted to hear from you if you are interested in joining our team. In order for us to gain an initial picture of you as an individual, your professional aptitude etc., various mandatory details such as name, address, date of birth, contact details, education, career, nationality, residence status (if applicable) and certificates are required in an application. Where appropriate and permitted by local laws and regulations, we may also require information on your health. As a general rule, we need your name, age/date of birth, gender, photo, marital status, contact details, CV (career, references), nationality and, if applicable, a police clearance certificate in order to process your application.

First and last names
Address details
Email details
Phone and fax numbers
Previous and current job / profession
Job title (training)
Academic titles
Date of birth
Employee data on previous employment (possibly information on wages and salary)
Certificates
For minors (information on their legal representatives)

3.1.2 Customer details

If you are a Gerling customer, as well as collecting information on your company we will also collect information on you personally (such as contact details) or other persons within your company in order to provide services for you. Your personal data is mainly collected directly from you (e.g. through orders), or in the course of processing by us, insofar as this is necessary for the fulfilment of the order. We collect the following data on our customers:

3.1.3 Interested parties

If you are an interested party, as well as collecting information on your company we will also collect information on you personally (such as contact details) or other persons within your company in order to provide services for you. Your personal data is mainly collected directly from you (e.g. if you contact us by email), or in the course of processing by us, insofar as this is necessary for dealing with your enquiry. We collect the following data on our customers:

3.1.4 Suppliers

If you are a supplier, as well as collecting information on your company we will also collect information on you personally (such as contact details) or other persons within your company in order to ensure a smooth ordering process and further action. We collect the following data on our customers:

3.1.5 Employees

Our company’s employees are provided with the internal information sheet “Handling employees’ personal data”.

3.1.6 Website visitors

We collect a limited amount of information on our visitors when they visit our website. This is necessary because we want to continuously improve our website and can gain important insights from this information on how to do so. We currently use the Google Analytics service to collect and analyse this data, whereby care was taken during implementation to ensure that the IP address (personal information) that is inevitably transmitted is only transferred to our service provider in anonymised form. Data is collected from visitors to our website in two ways. 1. We collect the following data in the contact form on our website:

2. The provider of the pages automatically collects and stores information in server log files, which your browser automatically transmits to us. This is:

the browser type and version
the operating system used
the referrer URL
the host name of the accessing computer
the time of the server request
the IP address

3.2 How is your personal data collected?

3.2.1 Applicant data

Your personal data is mainly collected by you in the form of application documents and sent to us. We may then receive further personal information from you in the course of a telephone interview or a job interview, which will be added to your existing information.

3.2.2 Customer details

Your personal data is mainly collected directly from you (e.g. through orders), or in the course of processing by us, insofar as this is necessary for the fulfilment of the order.

3.2.3 Interested parties

Your personal data is mainly collected directly from you, e.g. through enquiries by email, telephone or contact form, or in the course of the initiation of a legal transaction (e.g. offer) by us, insofar as this is necessary for fulfilment.

3.2.4 Suppliers

Your personal data is mainly collected when you are accepted as a supplier. Changes in contact persons in your company may subsequently result in further collection of personal data in connection with employees of your company.

3.2.5 Website visitors

When you visit our website, we automatically collect your data using cookies in accordance with the cookie settings in your browser. See item 3.9 for further information on cookies, such as how we use them and what choices you have. We also collect data from you when you contact us via the website, for example when you fill out a form, enter a comment or use the chat function.

3.3 How is your personal data collected?

3.3.1 Applicant data

The main reason for the use of your personal data is the assessment of you as an individual and your skills in the context of the applicant screening or the applicant selection process.

3.3.2 Customer details

The main reason for using your personal data is to create and carry out the communication between us. Quotations, order confirmations, delivery notes, invoices and other communication in the form of letters, emails, notes and messages are exchanged between us. In addition, both you and we have a legitimate interest in ensuring that the contractual agreements and statutory provisions are implemented and that a smooth business relationship is guaranteed.

3.3.3 Interested parties

The main reason for using your personal data is to create and carry out the communication between us. Quotations, order confirmations, delivery notes, invoices and other communication in the form of letters, emails, notes and messages are exchanged between us. In addition, both you and we have a legitimate interest in ensuring that the contractual agreements are implemented and that a smooth business relationship is guaranteed.

3.3.4 Suppliers

The main reason for using your personal data is to create and carry out the communication between us. Enquiries, orders, incoming invoices and other communication in the form of letters, emails, notes and messages are exchanged between us. In addition, both you and we have a legitimate interest in ensuring that the contractual agreements and statutory provisions are implemented and that a smooth business relationship is guaranteed.

3.4 Who is your personal data passed on to?

In certain cases, personal data may have to be passed on to external bodies, such as public bodies (authorities and offices etc.), external service providers or other recipients.

3.4.1 Applicant data

The personal data obtained will remain exclusively within our company.

3.4.2 Customer details

As a general rule, any personal data obtained will remain exclusively within our company. In some cases, however, it may be necessary to pass it on in order to negotiate special conditions with a supplier as part of a potential project, for example. In this case, the company name and with that the name of the contact person may be passed on. However, we have concluded an order processing agreement with the supplier to ensure that the information is not passed on again.

3.4.3 Interested parties

3.4.4 Suppliers

Any personal data obtained will remain exclusively within our company.

3.4.5 Website visitors

Unless you have indicated otherwise, we may share information with providers of web analytics services and/or social media services to ensure that you only receive targeted advertising.

3.5 Transfer of personal data to third countries

As a matter of principle, we never transfer personal data collected via this website to countries outside the European Union or the European Economic Area (third countries). However, data may have to be transferred to a third country in the course of obligations arising from contracts between us and you as a business or communication partner. This transmission will only take place after a detailed check and assessment by our data protection officer. The transfer will also only take place if the body (the recipient in the third country) has an appropriate, suitable and secure level of data protection and is able to guarantee this. Corresponding contractual arrangements have also been made with these recipients. If you require additional information in individual cases, you can contact our company or our data protection officer, whose contact details can be found under 2.1 Contact details of the data protection officer.

3.6 How is your personal data protected?

3.6.1 Measures

We ensure the protection of your information and in particular the protection of personal data by taking appropriate technical and/or organisational measures to protect unauthorised access to your personal and other data in our company from misuse.

3.7 How long will your personal data be stored for?

3.7.1 Law

Unless we are required by law or another regulation to retain your personal data and there has been no relevant contact with you for three years, we will delete your personal data from our systems. The legislator has issued a wide range of retention obligations and periods. After these periods have expired, the corresponding data will be deleted if it is no longer required for the fulfilment of the contract or for business purposes and/or due to legal requirements. If the data subject has given their written consent, the information may be retained beyond this.

3.8 How can you access, amend or withdraw personal data that you have provided us with?

3.8.1 General

If we are already in possession of your personal data, you have various rights. You are welcome to contact us in this regard and we will endeavour to process your request as quickly as possible and in accordance with the statutory provisions.

3.8.2 Consent

In certain circumstances, we may need to obtain your consent to process your personal data in connection with certain activities, workflows or offers. Depending on what your data is needed and to be used for. We explicitly obtain this consent from you by means of opt-ins. You must give this consent voluntarily, and you must carry out the necessary steps, e.g. ticking the checkboxes provided for this purpose or confirming links that you receive by email, personally. In doing so, we ensure that you have control over this processing and can give or refuse consent or withdraw (revoke) any consent you have given. We keep the records of the consent you have given in this way. You are entitled to withdraw your consent at any time.

3.8.3 Right to withdraw consent

You have the right to withdraw your consent to the processing of your personal data for certain activities at any time.

3.8.4 Right of objection

If you believe that we are using your personal data without authorisation and you do not consent to this, you have the right to object. We will respond to your enquiry within 30 days. As a rule, we will only object to this in certain narrowly defined circumstances.

3.8.5 Right to information

You have the right to obtain information on your personal data stored by us at any time. You also have the right to ask us to change, update or delete this information. We also have the option to ask you to confirm your identity or ask you for more information concerning your request. We may also reject your application if this is permitted by law. You will of course be informed of the reasons for this.

3.8.6 Right to correction

Of course, you also have the right to have your personal data corrected by us immediately if it is incorrect, incomplete or has changed.

3.8.7 Right to deletion

If we have processed your personal data unlawfully, you can ask us to delete it. We will respond to your request within 30 days. If necessary, and only under certain circumstances, we may object. If we agree to the request for deletion, we will delete your data.

3.8.8 Right to restriction of processing

You have the right to demand that we restrict (block) the processing of your data. In particular, you have this right if one of the following reasons applies:

You dispute the completeness and correctness. The processing is unlawful and you refuse to have the data deleted. Although the data is no longer required by us, you still need this data to assert or exercise your claims. You have objected to the processing and we are still checking whether we have legitimate grounds to object to your request.

3.8.9 Right to information

If you have asserted the right to rectification, deletion or restriction of the processing against us, we are obliged to notify all the recipients to whom we have disclosed your personal data of these changes, unless this would be impossible or would involve a disproportionate amount of effort. Of course, you also have the right to inform us of your change requests via these recipients.

3.8.10 Right to data portability

You are authorised to transfer your data from us to another controller. We will support you in this by transferring your data directly for you or by providing you with a copy in a standard machine-readable format.

3.8.11 Right to appeal

You have the right to lodge a complaint with us or with the competent supervisory authority regarding our use of your personal data. You can make this claim to us in writing, by email, telephone or in person, either directly to our company or via our data protection officer, whose contact details can be found under 2.1 Contact details of the data protection officer.

3.9 What are cookies and how are they used?

3.9.1 What are cookies?

A cookie is a small file that saves Internet settings. Almost every website uses cookie technology. Cookies are downloaded by your web browser the first time you visit a website. The next time this website is accessed by the same end device, the cookie and the information stored in it is either sent back to the website that created it (first party cookie) or sent to another website to which it belongs (third party cookie). As a result, the website recognises that you have already accessed it with this browser and in some cases may then vary the displayed content. Some cookies are extremely useful as they can improve the user experience when you return to a website that you have already visited several times. Provided that you use the same end device and the same browser as before, cookies remember, for example, your preferences for how you use a page and customise the displayed offers so they are more relevant to your personal interests and needs. Depending on their purpose and function, cookies can be divided into four categories: strictly necessary cookies, performance cookies, functional cookies, and cookies for marketing purposes.

3.9.2 Type of cookies

You can also check which types of cookies are accepted or change them. You can usually do this in your browser settings. We also provide you with information on this in this privacy policy.

3.9.3 Reject cookies

Of course, you can also change your browser settings so that you only receive cookies that are absolutely necessary to carry out the basic functions of the website — no other cookies would then be accepted. Most browsers accept cookies. However, if you would prefer us not to collect any data using cookies, you can set your browser’s privacy settings to accept some or all cookies or to reject all cookies. However, if all cookies are rejected, it is possible that not all of the functions and contents of our websites will be available to you. As every browser is set up differently, we recommend that you look in your browser’s help menu to see how you can change the cookie settings. You will find further general information on the subject of cookies, including the options for deactivating cookies, at aboutcookies.org. It also describes how you can delete cookies from your computer.

4. Legal basis

The GDPR, the German Federal Data Protection Act (BDSG) and other German and European regulations and laws apply to the processing of personal data. The following points list the legal bases used and the existing legal bases in accordance with the GDPR and BDSG. We refer to this legal basis when processing your data. Article 6 GDPR Lawfulness of the processing: ABS (1) Processing is only lawful if at least one of the following conditions is met:

Consent Article 6 (1)(1a)
The data subject has given their consent to the processing of their personal data for one or more specific purposes;
Contract fulfilment or implementation of pre-contractual measures Article 6 (1)(1b) GDPR
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Fulfilment of a legal obligation Article 6 (1)(1c) GDPR
Processing is necessary for compliance with a legal obligation to which the controller is subject;
Legitimate own interests or legitimate interests of third parties Article 6 (1)(1f) GDPR
Processing is necessary in order to preserve the legitimate interests of the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
Decision on the establishment of an employment relationship Article 88 GDPR in conjunction with Section 26 (1)(1) BDSG
If you apply online via our website, we will also use your data to decide on the establishment of an employment relationship with you and possibly also to establish, implement and terminate the same.

Pri­va­cy poli­cy

1. Intro­duc­tion

1.1 Coll­ec­tion

1.2 Descrip­ti­on

1.3 Groups of affec­ted per­sons

2. Respon­si­ble

2.1 Cont­act details of the data pro­tec­tion offi­cer

2.2 Chan­ges to the data pro­tec­tion gui­de­lines

2.3 Legal claims

3. Sum­ma­ry — at a glan­ce

3.1 What kinds of per­so­nal data are coll­ec­ted?

3.1.1 Appli­cant data

3.1.2 Cus­to­mer details

3.1.3 Inte­res­ted par­ties

3.1.4 Sup­pli­ers

3.1.5 Employees

3.1.6 Web­site visi­tors

3.2 How is your per­so­nal data coll­ec­ted?

3.2.1 Appli­cant data

3.2.2 Cus­to­mer details

3.2.3 Inte­res­ted par­ties

3.2.4 Sup­pli­ers

3.2.5 Web­site visi­tors

3.3 How is your per­so­nal data coll­ec­ted?

3.3.1 Appli­cant data

3.3.2 Cus­to­mer details

3.3.3 Inte­res­ted par­ties

3.3.4 Sup­pli­ers

3.4 Who is your per­so­nal data pas­sed on to?

3.4.1 Appli­cant data

3.4.2 Cus­to­mer details

3.4.3 Inte­res­ted par­ties

3.4.4 Sup­pli­ers

3.4.5 Web­site visi­tors

3.5 Trans­fer of per­so­nal data to third count­ries

3.6 How is your per­so­nal data pro­tec­ted?

3.6.1 Mea­su­res

3.7 How long will your per­so­nal data be stored for?