Protecting your personal data during the collection, processing and use of personal data when you visit our website is important to us. Your data is prtected in accordance with statutory provisions. In the following, we would like to inform you about the nature and scope of the processing of personal data through this website in accordance with Article 13 of the General Data Protection Regulation (GDPR).
I. Information on the responsible controller
Breffka & Hehnke GmbH & Co. KG
Mörsenbroicher Weg 151
Tel.: 0211 / 6 10 71 - 0
II. Information on the data protection officer
Our external data protection officer is happy to answer any questions about data protection:
Herr Arndt Halbach von der GINDAT GmbH
Wetterauer Str. 6, 42897 Remscheid
Tel. 02191 / 909 430
III. Dataprocessing through the website
Your visit to our website is recorded. We generally collect the following data that your browser sends to us:
• IP-adress currently used by your computer or your router
• Date and time
• Browser type and version
• Operating system of your computer
• Webpages you visit
• Name and size of requested file(s)
• URL of referral website, if applicable
This data is only collected for the purposes of data security, improving our website offer and analysing errors on the basis of Art. 6 (1) f) GDPR. The IP adress of your PC is only analysed in anonymised form (shortened by the last three digits).
In all other respects, you are able to visit our website without providing information on your identity.
We would like to point out that data transmission on the Internet (such as email communication) is subject to security vulnerabilities. Itis not possible to completely protect data from access by third parties. Conidential data should therefore be sent to us by other means, such as by post.
Personal data (such as your name, adress data or contact details) which you voluntarily disclose to us, for example in connection withb a request or otherwise, will be stored by us and only processed for correspondence with you and only for the purpose for which you have provided us with this data. This data is processed on the basis of Art. 6 (1) a) and Art. 6 (1) f) GDPR.
Secure data transmission
In order to protect the security of your data during transmission, we use encryption techniques (SSL) via HTTPS, which accord with state-of-the-art technology.
IV. Recipients of personal data
We may utilise service providers in connection with data processing in order to perform and execute processes.
Specifically, we have involved service providers for the purpose of hosting our website.
Contractual relationships are established with our service providers, which meet the requirements of Art. 28 GDPR; the contractual provisions contain the statutorily required points on data protection and data security.
V. Data collection by Google Analytics
This website uses Google Analytics, a web analysis service by Google Inc. ('Google'). Google Analytics uses 'cookies' - text files that are stored on your computer and enable analysis of your visit to the website. The information obtained by the cookie regarding your use of the website are generally transmitted to a Google server in the USA, where it is then stored. The basis for data processing is Art. 6 (1) f) GDPR.
In the event that IP anonymisation is activated on this website, your IP address will first be shortened by Google within the member states of the European Union or in other contractual states of the agreement onthe European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. We would like to point out that Google Analytics has been expanded on this website with the code 'anonymezeIp', in order to ensure the anonymised collection of the IP address.
Google uses this information on behalf of the operator of this website in order to analyse your use of the website, to compile reports on website activity and to provide other services relating to website use and Internet use to the website operator. The IP address transmitted by your browser in connection with Google Analytics is not combined with other data held by Google.
You may prevent the storage of cookies by configuring your browser software settings accordingly; however, we would like to point out that, in this case, you may not be able to use the full functionality of this website. Moreover, you may prevent the collection of the data obtained by cookie relating to your use of the website (including your IP address) by Google as well as the processing of this data by Googly by downloading and installing the browser plug-in available via the following link:
The basis for data processing is Art. 6 (1) f) GDPR.
VI. Social Media
Our site uses functions from the LinkedIn network. The service is provided by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time one of our pages containing LinkedIn features is accessed, your browser establishes a direct connection to the LinkedIn servers. LinkedIn is informed that you have visited our web pages from your IP address. If you use the LinkedIn "Recommend" button and are logged into your LinkedIn account, it is possible for LinkedIn to associate your visit to our website to your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used dy LinkedIn.
VII. Your rights
According to Articles 15-21 GDPR, you may exercise the following rights with respect to personal data we store provided the relevant requirements of the GDPR are met.
Right of access
You have the right to access information about your personal data that we process.
Right of rectification
You are able to request the correction of incomplete or incorrectly processed personal data.
Right of erasure
You have the right to the deletion of your personal data, in particular on the basis of one of the following reasons:
- Your personal data is no longer required for the purposes for which it was collected or processed.
- You withdraw your consent on which the processing of your data was based.
- You have asserted a right of objection to processing.
- Your data was unlawfully processed.
The right of erasure does not apply, however, if such deletion is opposed by legitimate interest of the controller. For instance, this may include:
- Personal data that is required for the assertion, exercising or defence of legal claims.
- Deletion is not possible due to retention obligations.
Insofar as data cannot be deleted, you may exercise a right to the restriction of prcessing (as follows).
Right to the restriction of processing
You have the right to request us to restrict the processing of your personal data, if:
- You dispute the correctness of the data and we must therefore review the correctness.
- The processing is unlawful and you decline data erasure and instead request restriction of use.
- We no longer require the data, but you still need the data in order to assert, exercise or defend legal claims.
- You have submitted an objection to the processing of your data and it has not yet been determined whether our legitimate interests prevail over your interests.
Right of data portability
You have the right to receive your personal data, which you have provided to us, in a structured, commonly available and machine-readable format. Moreover, you have the right to have us transmit this data to another controller without hindrance by us, provided that the processing is based on a contract or consent, and our processing takes place with the aid of automated processes.
Right of withdrawal
The data subject has the right at any time to submit an objection to the processing of their personal data, which takes place on the basis of Art. 6 (1) e) or f), for reasons arising from their particular situation; this also applies to profiling based on one of these conditions. Insofar as the processing of your personal data is based on a consent, you have the right to withraw this consent at any time.
VIII. Statutory deadlines for the erasure of data
Insofar no statutory retention obligation applies, the data shall be deletet or destroyed once it is no longer required for fulfilling the purpose of data processing. Various deadlines apply to the retention of personal data. For instance, data of tax relevance is generally stored for ten years, while other data is typically retained for six years in accordance with provisions under the Commercial Code. Furthermore, the storage period may also be determined by statutory limitation periods, which may generally amount to three years in the case of Articles 195 et seqq. of the Civil Code, for example, or in cases up to even thirty years.
IX. Right to lodge a complaint with a supervisory authority
In accordance with Art. 77 GDPR, each data subject has the right to lodge a complaint with a supervisory authority, if they believe that the processing of their personal data is in violation of the GDPR. The competent supervisory authority in data protection matters is the state data protection officer of the federal state in which our company has its registered office.
Liability for content
As service provider, we are responsible for our own content on these webpages in accordance with general laws (pursuant to Art. 7 (1) Telemedia Act, ‘TMG’). However, as service provider, we are not obliged to monitor transmitted or stored external information or to investigate circumstances that indicate unlawful activity (Articles 8–10 TMG). This shall be without prejudice to obligations to remove or block the use of information according to general laws. Liability in this connection is only possible from the time we receive knowledge of an actual violation of the law. We will immediately remove the relevant content as soon as we become aware of corresponding violations of the law.
Liability for links
Our offer contains links to the external websites of third parties, over whose content we have no influence. For this reason, we are unable to accept any liability for this external content. The respective provider or operator of the website is always responsible for the content of the linked webpages. The linked webpages will be reviewed for possible violations of the law at the time of linking. Unlawful content could not be found at the time of linking. However, it is not feasible to review the content of the linked webpages on an ongoing basis, without specific indications of a violation of the law. We will immediately remove corresponding links as soon as we become aware of violations of the law.