In the following, we inform you about the collection of personal data when using our website. Personal data is all data that can be personally related to you, e.g. name, address, email addresses, usage behavior.
Controller
The controller according to Art. 4 Para. 7 EU General Data Protection Regulation (GDPR) is:
Heinrichs & Co. KG
Kathrin Heinrichs
Wilhelm-Heinrichs-Str. 1
56290 Dommershausen-Dorweiler
info@heinrichs.de
Managing Director: Kathrin Heinrichs
Our imprint can be found at: https://www.heinrichs.de/impressum
We have appointed a data protection officer for the company:
Heinrichs & Co. KG
- Data Protection Officer -
Wilhelm-Heinrichs-Str. 1
56290 Dommershausen-Dorweiler
datenschutz@heinrichs.de
When you contact us by email or through a contact form, we store the data you provide (your email address, possibly your name) in order to answer your inquiries. We delete the data collected in this context when storage is no longer necessary, or restrict processing if there are statutory retention obligations.
If we rely on contracted service providers for individual functions of our service or would like to use your data for advertising purposes, we will inform you in detail about the respective processes below.
Your rights
You have the following rights regarding your personal data:
- Right to information,
- Right to rectification or deletion,
- Right to restriction of processing,
- Right to object to processing,
- Right to data portability.
Many data processing operations are only possible with your express consent. You can revoke any consent already given at any time by informal notification via email.
You also have the right to complain to a data protection supervisory authority about our processing of your personal data (Art. 77 GDPR). An overview of the data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
Objection or revocation against the processing of your data
If you have given consent to the processing of your data, you can revoke it at any time. Such revocation affects the permissibility of processing your personal data after you have expressed it to us.
Insofar as we base the processing of your personal data on the balancing of interests, you may object to the processing. This is the case if processing is not necessary in particular for the fulfillment of a contract with you, which is presented by us in each case in the following description of functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the case of your justified objection, we will examine the situation and will either stop or adjust the data processing or show you our compelling legitimate grounds on which we continue the processing.
Of course, you can object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us about your advertising objection using the contact details above, or simply by email to: info@heinrichs.de
Types of data, purpose of processing and their legal bases
On this website, we process the following types of data:
- Inventory data (e.g. name, address)
- Contact data (e.g. email)
- Usage data (e.g. visited subpages, search terms, access times, areas of interest)
- Other communication data (e.g. device information, IP address)
We process this data to fulfill the following purposes:
- Provision of this website, its functions and contents
- Answering contact requests
- Security measures
- Reach measurement and marketing
Unless the legal basis is specified more precisely in the following points, the following legal bases apply as a standard for our data processing:
- Art. 6 Para. 1 S. 1 lit. a and Art. 7 GDPR: Consent for specific purposes (e.g. newsletter dispatch)
- Art. 6 Para. 1 S. 1 lit. b GDPR: Processing for the fulfillment of services and implementation of (pre-)contractual measures, as well as answering inquiries (e.g. contact form)
- Art. 6 Para. 1 S. 1 lit f GDPR: Processing to protect our legitimate interests (e.g. use of statistics/analysis tools)
Data portability
For data that we process automatically on the basis of your consent or in fulfillment of a contract, you have the right to have it handed over to yourself or a third party. The handover takes place in a common, machine-readable format. If the transfer is to be made directly to another controller, this is only possible if it is technically feasible.
Collection of personal data when visiting our website
When merely using the website, i.e. if you do not transmit any other information to us, we only collect the personal data that your browser transmits to our server. If you want to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security (legal basis: Art. 6 Para. 1 S. 1 lit. f GDPR):
- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status/HTTP status code
- Amount of data transferred in each case
- Website from which the request comes
- Browser
- Operating system and its interface
- Language and version of the browser software.
This collected data is automatically deleted after 1 week. These data are not merged with data from other sources. IP addresses are only stored anonymously.
In addition to the previously mentioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive. In your browser settings, you determine where these are stored on your computer. The cookies we set allow us to access certain information. Cookies cannot execute programs or transfer viruses to your computer. They serve to make the internet offer more user-friendly and effective overall.
Use of cookies
Cookies are text files that are stored on your computer and enable an analysis of your use of the website. There are two types of cookies; this website uses both transient and persistent cookies.
Transient cookies are automatically deleted when you close the browser. These include in particular session cookies. These store a so-called session ID, which allows various requests from your browser to be assigned to the common session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
Persistent cookies are automatically deleted after a predetermined period, which can differ depending on the cookie. You can delete the cookies in your browser's security settings at any time.
You can configure your browser settings according to your wishes and, for example, refuse the acceptance of third-party cookies or all cookies. If you refuse cookies, please note that you may not be able to use all functions of this website.
Use of the contact form
If you would like to send us an inquiry via the contact form, the data you provide (your email address, possibly your name) will be stored in order to process your inquiries. (Legal basis: Art. 6 Para. 1 S. 1 lit. b GDPR). This data will not be passed on to third parties without your prior consent.
We delete the data collected in this context when storage is no longer necessary (e.g. when the request has been completed), or restrict processing if there are statutory retention obligations.
Data protection for applications
By sending applications to us by email or via the contact form, we store the data you provide (e.g. your name, your address, your email address, your callback number, documents provided if applicable) in order to process them as part of the application process. (Legal basis: Art. 6 Para. 1 S. 1 lit. b GDPR and Art. 6 Para 1 S. 1 lit. f GDPR)
This data will not be passed on to third parties without your prior consent.
In the event of a successful application, the data will be further processed by us in the context of an employment relationship and will continue to be stored. Otherwise, the applicant's data will be deleted. The data will also be deleted if the application is withdrawn by the applicant.
If the applicant voluntarily transmits special categories of personal data (Art. 9 Para. 1 GDPR, e.g. health data (e.g. severely disabled person's certificate), religion, ethnic origin) as part of the application process or is asked about them (e.g. health data, if necessary for the exercise of the profession), then processing takes place in accordance with Art. 9 Para. 2 lit. b GDPR.
We keep applicant data for six months. This allows us to follow up on individual applications and we fulfill our verification obligations under the Equal Treatment Act. We delete the data after this period, subject to a justified revocation by an applicant.
Last updated: May 25, 2018