Data Privacy Policy

Chemische Industrie Erlangen GmbH

Welcome to our website! We are pleased about your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the General Data Protection Regulation (GDPR) of the EU and the applicable country-specific implementation laws. With this data privacy policy, we want to inform you in detail about the processing of your personal data by Chemische Industrie Erlangen GmbH and the rights to which you are entitled.
Personal data includes any information that makes it possible to identify a natural person. This includes in particular your name, date of birth, address, telephone number, e-mail address but also your IP address. Data are considered anonymous if no personal reference to the user can be established.

External Hosting

This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the hoster's servers. This may include in particular IP addresses, contact requests, meta and communication data, contract data, contact data, names, website accesses and other data generated via a website.
The use of the hoster is for the purpose of fulfillment of the contract with our potential and existing customers (art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (art. 6 para. 1 lit. f GDPR).
Our hoster will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions with regard to this data.
Conclusion of a contract for data processing
In order to guarantee data processing that is in compliance with data privacy regulations, we have concluded data processing contract with our hoster.

Responsible office and data protection officer

Your rights as a data subject

You have the right to obtain confirmation as to whether or not data concerned are being processed and to obtain information on such data as well as further information and a copy of the data in accordance with art. 15 GDPR.
In accordance with art. 16 GDPR, you have the right to request the completion of data concerning you or the correction of incorrect data concerning you.
In accordance with art. 17 GDPR, you have the right to demand that the data in question be deleted without delay, or alternatively, in accordance with art. 18 GDPR, without restricting the processing of the data.
You have the right to request that the data concerning you which you provided be made available to us in accordance with art. 20 GDPR and to demand that it be passed on to other persons responsible.
According to art. 7 para. 3 GDPR, you have the right to revoke your declaration of consent under data protection law at any time. This does not affect the lawfulness of the processing carried out on the basis of the consent until revoked.
To exercise these rights, please contact: datenschutz@ching-coatings.com
The same applies if you have any questions about data processing by us.
Furthermore, you have the right to lodge a complaint with the competent supervisory authority according to art. 77 GDPR.
A list of the supervisory authorities (for the non-public sector) with their addresses can be found at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

Right of objection

If your personal data is processed on the basis of legitimate interests in accordance with art. 6 para. 1 sentence 1 letter f GDPR, you have the right to object to the processing of your personal data in accordance with art. 21 GDPR if there are reasons for doing so arising from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection which will be implemented by us without specifying a special situation.
In addition, the data subject has the right to object, for reasons arising from his or her particular situation, to the processing of personal data concerning him or her carried out by us for the purposes of scientific or historical research or for statistical purposes in accordance with article 89 paragraph 1 of the GDPR unless such processing is necessary for the performance of a task carried out in the public interest.
If you wish to make use of your right of revocation or objection, sending an e-mail to our data protection officer listed above is sufficient.

Purpose and legal bases of data processing

When processing your personal data, the provisions of the EU GDPR and all other applicable data protection regulations will be observed. The legal basis for data processing is derived in particular from art. 6 EU GDPR.
We use your data for business initiation, to fulfill contractual and legal obligations, to carry out the contractual relationship, to offer products and services and to strengthen the customer relationship.
Your consent to data processing may also constitute a data protection permission. Before giving your consent, we will inform you about the purpose of data processing and your right of withdrawal.

Transfer to third parties

We will only pass on your data to third parties within the framework of the legal provisions or with the appropriate consent. Otherwise, the data will not be passed on to third parties unless we are obliged to do so by mandatory legal provisions (passing on to external bodies such as supervisory authorities or law enforcement agencies).

Recipient of the data / categories of recipients

Within our company, we will ensure that only those persons receive your data who need it to fulfill contractual and legal obligations.
In some cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection agreements have been concluded with all service providers.

Secure transmission of your data

In order to protect the data stored with us in the best possible way against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we use appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.
The data exchange from and to our website is always encrypted. We offer HTTPS as transmission protocol for our website, in each case using the latest encryption protocols. It is also possible to use alternative means of communication (e.g. by post).

Third country transfer / Third country transfer intention

Data will only be transferred to third countries (outside the European Union or the European Economic Area) if this is necessary for the execution of the contractual obligation, if it is required by law or if you have given us your consent.

Data retention period

We will store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data is (must) continued to be stored. This concerns in particular commercial or tax retention obligations (e.g. German Commercial Code, Tax Code, etc.). Provided that there are no further storage obligations, the data is routinely deleted after the purpose has been achieved.
In addition, we may retain data if you have given us permission to do so or if legal disputes arise and we use evidence within the scope of legal limitation periods, which can be up to thirty years; the regular limitation period is three years.

Obligation to provide the data

Various items of personal data are necessary for the establishment, execution and termination of the debt relationship and the fulfillment of the contractual and legal obligations associated therewith. The same applies to the use of our website and the various functions it provides.
We have summarized details of this for you in the above section. In certain cases, data must also be collected or made available due to legal regulations. Please note that it is not possible to process your inquiry or perform the underlying contractual relationship without providing this data.

Categories, sources and origin of data

Which data we process is determined by the respective context: This depends, for example, on whether you enter an inquiry in our contact form, whether you send us an application or submit a complaint.
Please note that we may also provide information for special processing situations separately in a suitable place, e.g. when uploading application documents or when making a contact request.

Server log files

Automated acquisition of data
Whenever our website is called up, our system automatically collects data and information from the computer system of the calling computer. This information is temporarily stored in a so-called log file. The following information is automatically recorded and stored:

  • information about the browser type and version used
  • customer domain
  • size of the response body
  • browser used and the user's operating system
  • IP address of the user
  • date and time of access
  • name of the Internet Service Provider
  • website from which the access takes place (referrer URL)

We process the data mentioned above for the following purposes:

  • ensure a smooth connection of the website
  • guarantee a comfortable use of our website
  • deliver the contents of our website correctly
  • evaluate the system security and server stability
  • provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber attack.

To detect attacks, we store non-anonymized IP addresses for a maximum of seven days after which they are irrevocably anonymized. We process the above-mentioned data in order to ensure a smooth connection of the website and the comfortable use of our website. Furthermore, the processing of the data enables us to evaluate the system stability and security.
The legal basis for the temporary storage of data is art. 6 para. 1 lit. f GDPR. Our legitimate interest follows from the aforementioned purposes for data collection. We will not in any way use this general data to draw conclusions to a specific person.

Contact possibility through the website

If the user contacts us, the personal data of the user processed on this occasion will be used to process the request. The data are necessary to answer the request; without the provision of the data, an answer is not possible or only possible to a limited extent.
If the contact request serves the fulfillment of a contract or the implementation of pre-contractual measures, the legal basis of art. 6 para. 1 lit. b GDPR applies.
The user's data will be deleted, provided that the user's inquiry has been conclusively answered and no legal storage obligations, e.g. in the case of subsequent contract processing, stand in the way.
The legal basis may also be the consent of the user in accordance with art. 6 para. 1 lit. a GDPR. Within the framework of the contact form, the user's consent to the above processing may be obtained and reference is made to this data protection declaration.
In order to protect the security and confidentiality of your data in the best possible way, we have implemented appropriate security measures. Your request will be transmitted to us in encrypted form.
The user can revoke a granted consent for the contact request at any time by notifying the provider according to art. 7 para. 3 GDPR. The data processed in connection with this will be deleted as soon as their processing is no longer necessary.

Automated individual case decisions

Unsere Webseite enthält – deutlich erkennbar – auch Links auf die Internet-Auftritte anderer Unternehmen. Soweit Links zu Webseiten anderer Anbieter vorhanden sind, haben wir auf deren Inhalte keinen Einfluss. Daher kann für diese Inhalte auch keine Gewähr und Haftung übernommen werden. Für die Inhalte dieser Seiten ist stets der jeweilige Anbieter oder Betreiber der Seiten verantwortlich.
Die verlinkten Seiten wurden zum Zeitpunkt der Verlinkung auf mögliche Rechtsverstöße und erkennbare Rechtsverletzungen geprüft. Rechtswidrige Inhalte waren zum Zeitpunkt der Verlinkung nicht erkennbar. Eine permanente inhaltliche Kontrolle der verlinkten Seiten ist jedoch ohne konkrete Anhaltspunkte einer Rechtsverletzung nicht zumutbar. Bei Bekanntwerden von Rechtsverletzungen werden derartige Links umgehend entfernt.

Automatisierte Einzelfallentscheidungen

We do not use purely automated processing to make a decision.

Cookies

Our website uses HTTP cookies to store user-specific data. Cookies are small text files or other storage technologies that the Internet browser used by the user places and stores on the end device. These cookies process certain user information to an individual extent, such as browser and location data and IP address values.
The use of these cookies allows the provider to make its website more user-friendly, effective and secure. For example, "session" cookies allow the storage of the user's login data or language settings so that these do not have to be entered or set repeatedly.
The use of these cookies serves the legitimate interest of the provider in improving the functionality of the website and is based on the legal basis of art. 6 para. 1 lit. f GDPR. "Session" cookies are deleted when the user closes its browser.
If necessary, cookies from third parties are also used on the provider's website. These third parties are partner companies with whom the provider cooperates for the purpose of advertising, analysis or the functionality of the website. Should this be the case, the purposes and legal basis of the processing operations in question are set out in the following.

Disposal option
The user can prevent or restrict the installation of cookies by means of a corresponding setting in the browser. Already stored cookies can also be deleted at any time. The settings for this depend on the respective browser. In the case of Flash cookies, processing cannot be prevented by the browser settings, but rather by the appropriate setting of the Flash player. If the user prevents or restricts the installation of cookies, this may mean that not all functions of the website can be fully used.

Plugins und Tools

Google Maps
On our website, we use Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google Maps is a web service for the display of interactive (land) maps to visually present geographical information. By using this service, our location will be displayed to you, providing directions to our company, for example.
Already when you open those sub-pages in which the map of Google Maps is integrated, information about your use of our website (such as your IP address) is transmitted to Google servers and stored there. This may also result in a transmission to servers of Google LLC. in the USA. This will happen regardless of whether Google provides a user account through which you are logged in or whether a user account exists. If you are logged in to Google, your information is directly associated with your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data (even for users who are not logged in) as user profiles and evaluates them. In accordance with art. 6 para. 1 lit. f GDPR, the collection, storage and evaluation are based on the legitimate interest of Google in the insertion of personalized advertising, market research and/or the needs-based design of Google websites. You have a right of objection to the creation of these user profiles and you must contact Google to exercise this right.
If you do not agree with the future transmission of your data to Google in the context of the use of Google Maps, there is also the possibility to completely deactivate the web service of Google Maps by switching off the application JavaScript in your browser. Google Maps and thus the map display on this website cannot be used.
You can view Google's terms of use at https://www.google.de/intl/de/policies/terms/regional.html. The additional terms of use for Google Maps are available at https://www.google.com/intl/de_US/help/terms_maps.html
Detailed information on data protection in connection with the use of Google Maps can be found on the Google website ("Google Privacy Policy"): https://www.google.de/intl/de/policies/privacy/

Changes to our privacy policy

We reserve the right to adapt this data privacy policy so that it always meets the current legal requirements or to implement changes to our services in the data privacy policy, e.g. when introducing new services. The new data privacy policy will then apply the next time you visit our website.

Last updated 11/2020