- Responsible party
Data processing on this website is carried out by the website operator
Contec Kromiss Sp z o.o.
Rondo ONZ 1
Tel. +48 22 354 91 11
Fax +48 22 354 91 09
- Processing of personal data
‘Personal data’ means all information about the factual or personal circumstances of an identified or identifiable natural person. It includes, for example, names, addresses, telephone numbers, email addresses, contract and billing data etc.
We collect, process and use personal data only insofar as is necessary for the establishment, structuring or modification of the legal relationship (basic data). This takes place on the basis of Article 6(1)(b) of the General Data Protection Regulation (GDPR) which allows processing of data for performance of a contract or taking of steps prior to conclusion of a contract. We only collect, process and use personal data about the use of our webpages (usage data) insofar as is necessary to enable the user to use the service or to bill the user for use of the service. The collected customer data are deleted upon completion of the contract or ending of the business relationship. Legal retention requirements remain unaffected.
We use the so-called double opt-in procedure for sending our newsletter, meaning we will only send you a newsletter by email if you first explicitly confirm that we should activate the newsletter service. We will then send you a confirmation email asking you to confirm that you wish to receive our newsletter by clicking on a link contained in the email. If you wish to stop receiving newsletters from us, you can withdraw your consent at any time without incurring any costs other than the transmission costs according to the basic rates. Communicating this in text form (e.g. by email, fax or letter) to the contact referred to in Section 1 is sufficient. You can also use the unsubscribe link which is found in every newsletter.
The webpages use so-called cookies in part. Cookies do not harm your computer and do not contain any viruses. Cookies serve to make our offering more user-friendly, effective and secure. Cookies are small text files that are placed on your computer and saved by your browser.
2.3. Contact form
If you send us enquiries using the contact form, your information from this contact form including the contact data provided by you there is saved by us for the purpose of processing of the enquiry and for the case that we have follow-up questions. We do not pass on these data without your consent. Processing of the data entered in the contact form hence takes place solely on the basis of your consent (Art. 6(1)(a) of the GDPR). You can withdraw this consent at any time. To do so just send a formless message to us by email. The lawfulness of the data processing operations carried out up to the time of withdrawal remains unaffected by the withdrawal. The data entered in the contact form by you remain with us until you request us to delete them, you withdraw your consent to storage or the purpose for saving the data becomes invalid (e.g. after your enquiry has been processed). Mandatory legal provisions – in particular pertaining to retention periods – remain unaffected.
2.4. Log files
Every time the pages of Contec Kromiss are accessed usage data are transmitted by the respective browser and saved in server log files. The data records saved in the process contain the following data: date and time of retrieval, name of retrieved page, IP address, referrer URL (URL from which you arrived at the webpages), transferred data volume, and product and version information for the browser. These data are not merged with other data sources. Collection of these data takes place on the basis of Art. 6(1)(f) of the GDPR. The website operator has a legitimate interest in technically error-free display and optimisation of the website – the server log files must be obtained for this purpose.
2.5. SSL encryption
This site uses SSL encryption for security reasons and for protection during transmission of confidential content such as the newsletter form or enquiries you send to us as site operators. You can recognise an encrypted connection by the switch from ‘http://’ to ‘https://’ in the address bar of the browser and by the padlock icon in your browser status bar. If SSL encryption is active the data you transmit to us cannot be read by third parties.
2.6. Access, blocking, erasure and rectification
Within the scope of the applicable legal provisions you have at all times the right to receive free information about the personal data saved about you, the origin and recipient of these data and the purpose of data processing and if necessary a right to rectification, blocking or erasure of these data.
2.6.1. Right to restriction of processing
You have the right to demand the restriction of processing of your personal data. For this purpose you can contact us at any time at the address given in the legal information section. The right to restriction of processing exists in the following cases:
If you question the accuracy of the personal data saved by us we normally require time to verify this. You have the right to demand the restriction of processing of your personal data for the duration of the examination.
If processing of your personal data took place or is taking place unlawfully you can demand the restriction of data processing rather than erasure.
If we no longer need the data, but you require them for exercising, defence or assertion of legal claims, you have the right to demand the restriction of processing, rather than erasure, of your personal data.
If you have filed an objection in accordance with Art. 21(1) of the GDPR balancing of your and our interests must occur. As long as it is not yet clear whose interests are overriding, you have the right to demand the restriction of processing of your personal data.
If you have restricted the processing of your personal data, these data may – apart from being saved – only be processed with your consent or for the assertion, exercising or defence of legal claims or for the protection of the rights of another natural or juridical person or for reasons of an important public interest of the European Union or a Member State.
2.6.2. Objection to advertising emails
The use for the purpose of sending unsolicited advertising and informational materials of contact data published within the scope of the obligation to provide legal information is herewith objected to. The site operators expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, for example through spam emails.
2.6.3. Withdrawal of your consent to data processing
Many data processing operations are only possible with your explicit consent. You can withdraw your granted consent at any time. To do so just send a formless message to us by email. The lawfulness of any data processing that has already occurred up to the time of withdrawal remains unaffected by the withdrawal.
2.6.4. Right to object to data collection in special cases as well as to direct advertising (Art. 21 of the GDPR)
If your personal data are processed for direct advertising you have the right to object to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling if it is connected to direct advertising. If you object, your personal data will then no longer be used for the purpose of direct advertising (objection in accordance with Art. 21(2) of the GDPR).
- Obligation to provide personal data
Insofar as there is a contract between Contec Kromiss and you, you must provide the personal data which are necessary for the establishment, performance and ending of the contract and the fulfilment of the associated contractual obligations or which we are legally obligated to collect. If these data are not provided, we will usually not be able to conclude a contract with you or to perform and end the contract. Insofar as data processing within the scope of use of this website is not necessary for the establishment, performance and ending of a contract or for fulfilment of contractual obligations and is also not legally prescribed, provision of your data is voluntary. Please note that if you do not provide the necessary data, you may not be able to use certain features of the website or services.
- Transfer of data
We will only transmit your personal data to other responsible parties insofar as it is necessary for the performance of the contract, the third party or we have a legitimate interest in the transfer or we have your consent to do so. Third parties can also be subsidiaries of Contec Kromiss.
Beyond that, data can be transmitted to other responsible parties insofar as we are obligated to do so due to legal provisions or by an enforceable official or court order.
4.1. External service providers
We commission external service providers with tasks such as sales and marketing services, programming and data hosting. We have selected these service providers carefully and monitor them on a regular basis, in particular with respect to their careful handling and safeguarding of the data stored by them. All service providers are obligated by us to maintain confidentiality and adhere to legal requirements.
4.2. Right to lodge a complaint with the responsible supervisory authority
In the event of violation of the GDPR, the data subject has the right to lodge a complaint with a supervisory authority, in particular in the Member State in which the data subject habitually resides, his or her place of work or the place in which the alleged violation occurred. This is:
Bayerisches Landesamt fuer Datenschutzaufsicht (BayLDA)
91522 Ansbach, Germany
Phone +49 981 53 1300
Fax +49 981 53 98 1300
The right to lodge a complaint exists without prejudice to any other administrative or judicial remedies.
4.3. Right to data portability
You have the right to have data which we process in an automated manner on the basis of your consent or for performance of a contract handed out to you or a third party in a standard machine-readable format. If you demand direct transmission of the data to another responsible party, this will only occur as far as is technically possible.
- Plugins and tools
5.1. YouTube with enhanced privacy
Our website uses plugins from the YouTube website. The operator of the webpages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. We use YouTube in the privacy-enhanced mode. According to YouTube, this mode causes YouTube to not save information about the visitors to this website before they watch the video. However, sharing of data with YouTube partners is not necessarily ruled out through the privacy-enhanced mode. YouTube establishes a connection to the Google DoubleClick network – irrespective of whether you watch a video.
As soon as you start a YouTube video on our website a connection to the YouTube servers is established. In the process the YouTube server is informed of which of our pages you visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account. YouTube can also save various cookies on your device after you start a video. With the help of these cookies YouTube can receive information about visitors to our website. This information is used to obtain video statistics, improve usability and prevent fraud, amongst other things. The cookies remain on your device until you delete them.
After you start a YouTube video other data processing operations which we have no control over may be triggered.
YouTube is used in the interest of attractively presenting our online offerings. This represents a legitimate interest in the sense given in Art. 6(1)(f) of the GDPR.
5.2. Google Maps
This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For you to be able to use the features of Google Maps, your IP address must be saved. This information is usually transferred to and saved on a Google server in the US. The provider of this site has no influence over this data transmission. Google Maps is used in the interest of attractively presenting our online offerings and making it easy to find the locations specified by us on the website. This represents a legitimate interest in the sense given in Art. 6(1)(f) of the GDPR.