Privacy Policy

Privacy Policy of Schoepe Display GmbH

Thank you for your interest in our website. In the following data privacy policy, we inform you which personal data Schoepe Display GmbH (in short: Schoepe) processes, for which purposes this is done and how you can object to certain data processing.

 

General information

1. Name and contact details of the responsible person

Schoepe Display GmbH
Ludwig-Erhard-Ring 19
15827 Blankenfelde-Mahlow

Tel.: +49 (33708) 542-0

 

2. Contact details of the data protection officer

You can reach our data protection officer by e-mail at Datenschutz@Schoepe-Display.com.

 

3. Website hosting and security

We host our website ourselves. We are supported by Short Cuts GmbH design+kommunikation, Mehringdamm 55, 10961 Berlin, Germany, in maintaining and servicing the website.

Our website uses SSL encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection in the address bar of the browser by "https://" and the lock symbol.

 

Collection and use of your data

In this data protection declaration we inform you

  • which data we process when you visit our website,
  • which data we process when you contact us,
  • which data we process from applicants,
  • which data we process from customers, suppliers and other business partners.

 

1. When you visit our website

a) Usage data

If you visit our website without registering or otherwise providing us with information, we only collect the information that is technically necessary to provide you with our website and ensure its stability and security:

  • IP address,
  • the date and time of your visit,
  • time zone difference from Greenwich Mean Time (GMT),
  • webpages visited,
  • access status/HTTP status code,
  • amount of data transferred in each case,
  • website from which you came to us,
  • your browser,
  • your operating system and its interface,
  • language and version of your browser software

The processing of this technically necessary information is carried out to provide the website and to ensure the security of our information technology systems. In these purposes also lies our legitimate interest in the data processing according to Art. 6 para. 1 letter f DSGVO.

The data will be deleted after 30 days at the latest, unless storage for evidence purposes is required. In this case, the data is exempt from deletion in whole or in part until the incident has been clarified.

b) Cookies and similar technologies

No cookies are set when you visit our website. However, we do use local storage technology (local memory). In this process, information is stored locally in the cache ("buffer memory") of your browser and can be read by us.

The data from the local storage helps us to make the website more secure and user-friendly.

The following information is stored in the browser's local storage:

  • inline SVGdata and inline SGVrev for the graphical representation of icons.

This data is stored without an expiration date and is not automatically deleted after the browser is closed. If the data is not actively deleted, it can be read out when our website is called up again.

Depending on the browser type, you can manage, restrict and delete local storage content in your browser settings (e.g. in Firefox under "Privacy & data security" under "Cookies and website data" and "Clear history").

Third parties cannot access the data stored in the local storage. It is not passed on to third parties and is not used for advertising purposes.

We use the local storage technology to offer you an attractive and user-friendly website. The data processing takes place on the basis of Article 6 para 1 letter f DSGVO.

c) YouTube videos

On our website, we publish videos that are embedded via the YouTube service. YouTube LLC, headquartered at 901 Cherry Avenue, San Bruno, CA 94066, USA is a subsidiary of Google Inc.

The integration takes place in the extended data protection mode "YouTube NoCookie". This means that, among other things, the IP address and browser data are transmitted to Google as YouTube operator when the website is visited. No other data is transmitted at this time. Only when the video is played cookies and pixel tags are set by YouTube for the personalization of advertising and search results.

We also use a two-click solution for our YouTube videos. This means that no data is transmitted to Google as YouTube operator and used until you have consented to this data processing by clicking the "Accept" button. Insofar as you consent to the data transfer, your data may be transferred to Google and used to create usage profiles.

In addition, YouTube may set cookies with you for this purpose. If you are logged into YouTube at the same time as playing our videos, your data can be assigned to your member account.

When you play a YouTube video, data is automatically transmitted to Google as YouTube operator. Google as the operator of YouTube is solely responsible for this data processing. Which data is processed in this process is beyond our knowledge and influence. Further information on the use of your data by YouTube can be found here: https://policies.google.com/privacy.

We would like to point out that Google may receive further data via cookies already stored on your computer. The extent to which this data is used by Google is beyond our control.

When YouTube videos are played, data is transmitted to the USA. The USA does not have a level of data protection comparable to that of the EU and is therefore classified as an unsafe third country. In particular, there is a risk of government agencies gaining access to this data. EU citizens have no effective legal remedies against such access. If you have consented to the transfer of this data, you also consent to the transfer of your data to a third country.

The use of the NoCookie variant is based on our legitimate interest pursuant to Art. 6 (1) f DSGVO to design our website in a data protection-friendly manner.

The legal basis for the transfer of your data to Google is your consent, Art. 6 (1) a DSGVO. The transfer to a third country is based on your consent, Art. 49 (1) a DSGVO. You can revoke your consent at any time with effect for the future by not agreeing to any further data transfer and deleting the cookies already set from your device.

 

2. When contacting us

a) Contacting us by e-mail

If you communicate with us by e-mail, you thereby transmit data to us such as your sender address, information that is in the content or your signature (e.g. your position and contact data), general data such as the time of sending as well as special data which you transmit in an attachment, if applicable.

The processing is based on our legitimate interest in the effective processing of requests addressed to us as well as the handling of business relations with our B2B partners (Art. 6 para. 1 letter f DSGVO).

The data you send to us by e-mail will remain with us until you request us to delete it or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular legal storage obligations - remain unaffected.

b) Contact via a contact form

On our website, you also have the option of contacting us via our contact forms. For this purpose, we store your name, telephone number, postal code, city and e-mail address as well as the name of the company from which you are contacting us.

The processing is based on our legitimate interest in the effective processing of the inquiries addressed to us as well as the handling of business relations with our B2B partners (Art. 6 para. 1 lit. f DSGVO).

The data you provide to us in this way will remain with us until you request us to delete it or the purpose for storing the data no longer applies. Mandatory statutory provisions - in particular statutory retention obligations - remain unaffected.

c) Contact by telephone

When you make a telephone call to one of our employees, we record certain traffic and communication data such as the connection telephone number used. Likewise, our employees are required to briefly record the content of the conversation, if necessary.

The processing is based on our legitimate interest in the effective handling of inquiries addressed to us as well as the handling of business relations with our B2B partners (Art. 6 para. 1 lit. f DSGVO).

The data you provide to us in this way will remain with us until you request us to delete it or the purpose for storing the data no longer applies. Mandatory statutory provisions - in particular statutory retention obligations - remain unaffected.

d) Contact by mail

If you contact us by mail, we collect data on your sender address and the content of the document. The processing is based on our legitimate interest in the effective processing of requests addressed to us as well as the handling of business relations with our B2B partners (Art. 6 para. 1 lit. f DSGVO). The documents sent are also partly stored digitally for faster processing. Here, too, we rely on Art. 6 (1) f DSGVO as the legal basis.

The data you send us by mail will remain with us until you request us to delete it or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular legal storage obligations - remain unaffected.

e) Via personal contact, e.g. at trade fairs

You can also contact us at trade fairs and other events and leave us your data, e.g. in the form of a business card. We digitize the data collected in this way by transferring it to our CRM system. If applicable, the associated content of the conversation is logged.

The processing of this data regularly takes place on the basis of Art. 6 para. 1 letter f DSGVO. Staying in contact with interested parties and potential business partners is a legitimate interest of any company. The logging of the associated conversation is based on our legitimate interest in being able to provide you with optimal advice in a subsequent conversation (Art. 6 (1) (f) DSGVO).

In this case, the data will also remain with us until you request us to delete it or the purpose for storing the data no longer applies. Mandatory statutory provisions - in particular statutory retention obligations - remain unaffected.

 

3. Information for applicants

a) General

With the following information on data protection, we inform you about how Schoepe processes your personal data when you apply for a position advertised by us or on your own initiative, either by mail or electronically.

b) Processing of personal data

We process all data that you provide to us in the course of your application (e.g. cover letter, resume, references). In addition, we also process all other data related to your application (e.g. correspondence or records in the course of job interviews). If you provide us with them, we may also process special categories of personal data (e.g. health data).

We may also obtain the above data about you from other sources. This may be the case if we involve temporary employment agencies, head-hunters, recruitment agencies or employment agencies in the application process. You have provided your data there yourself. In addition, we may use data from other publicly accessible data on the Internet. This includes, for example, data that you have obviously made public as part of an online profile (e.g. XING, LinkedIn). We may also receive data that you submit to us via third-party websites, e.g. from job boards such as Stepstone or Monster.

If you contact us by e-mail, we process the data you provide (e-mail address of the sender, subject of the e-mail, content of the e-mail, documents sent) as well as data related to the communication process (e.g. e-mail address of the recipient).

If supported by your e-mail provider, transport encryption (TLS) is used. If you consider content encryption to be necessary, please consult with us before applying. You also have the option of using the postal service for your application.

c) Purposes of data processing

We process this data in order to be able to carry out the selection procedure. The data you provide will be processed for the purpose of processing your application and, if an employment relationship is established, also for the purpose of implementing the employment relationship. Processing for any other purpose will not take place.

d) Legal basis for data processing

The legal basis for data processing is § 26 (1) BDSG as well as § 22 (1) letter b BDSG or, in the case of public profiles, Art. 6 (1) letter f DSGVO in conjunction with. Art. 9 para. 2 letter e DSGVO. The legitimate interest in this case is to receive from you a clear short profile, which you, in the sense of Art. 9 para. 2 letter e DSGVO, have obviously made public.

If consent is required for processing (e.g. for inclusion in our talent pool), § 26 BDSG in conjunction with. Art. 7 DSGVO the legal basis.

Furthermore, we may process personal data about you to the extent necessary to defend asserted legal claims against us arising from the application process. The legal basis for this is Art. 6 para. 1 letter b and letter f DSGVO. The legitimate interest may, for example, be a duty to provide evidence in proceedings under the General Equal Treatment Act (AGG).

If an employment relationship is established, we may further process the personal data already received from you for the purposes of the employment relationship in accordance with § 26 (1) BDSG.

e) Recipients of personal data

Your personal data will not be transferred or disclosed to any external parties.

f) Duration of data storage

We store your personal data only for the duration of the retention period for application data for six months or for as long as we need it for the legitimate interest of our company in accordance with applicable law, unless you give us permission to use your documents for other positions that become available (talent pool). If data storage is no longer necessary, the data will be deleted. Data from the talent pool will be deleted after 12 months.

If you accept employment with us, we store your personal data for the entire duration of your employment in accordance with the data protection information for employees.

 

4. Information for customers, suppliers and other business partners

a) General

We process personal data from our customers, suppliers and other business partners primarily for the purpose of initiating, establishing and processing contractual and delivery relationships. For this purpose, we collect in particular professional contact information, such as name, professional contact address, professional telephone number or e-mail address. In addition, we process - insofar as necessary within the framework of the contractual relationship and/or other cooperation - personal data that we obtain from publicly accessible sources (e.g. public registers, press, Internet) in a permissible manner or that are transmitted by other third parties (e.g. a credit agency) in a justified manner. The data is stored in our ERP system, which we host on our own servers.

At Schoepe, personal data is only accessed by those persons and bodies who need this information to fulfill our contractual and legal obligations or to protect our legitimate interests. In addition, we may transfer your personal data to recipients outside the company, insofar as this is necessary for the fulfillment of contractual and legal obligations. These may be, for example:

  • public bodies and institutions (e.g. tax authorities, courts),
  • auditors, tax consultants, appraisers,
  • bank of the customer, supplier or business partner (SEPA payment medium).

The processing is either based on our legitimate interest to process the necessary (contact) data of our B2B partners for the handling of the business relationship (Art. 6 para. 1 lit. f DSGVO) or is necessary for the fulfillment of a legal obligation (Art. 6 para. 1 lit. c DSGVO).

We delete your personal data as soon as they are no longer required for the above purposes. After termination of the contractual relationship, your personal data will be stored as long as we are legally obliged to do so. This regularly results from legal obligations to provide proof and to retain data, which are regulated, among other things, in the German Commercial Code and the German Fiscal Code. The storage periods are then up to ten years.

b) Use of our "Schoepedia" customer portal

For our customers, we offer the "Schoepedia" portal for offer and order processing and document management (customer history). To set up the customer account in the portal, the necessary data from the ERP system is provided. This includes professional contact information such as name, professional contact address, professional telephone number and e-mail address. After receiving an invitation e-mail, the user completes the creation of the customer account by assigning personal login data. In the customer account, the user can optionally add the date of birth and subscribe to the customer newsletter.

The purpose of the processing is to provide a customer account through which processes such as offer clarification, commissioning and order processing can be centrally controlled and efficiently handled. For this purpose, the following data may be processed in addition to the aforementioned personal data from the customer portal:

  • users' email communication,
  • comments of the users,
  • log data

The recipients of this data are exclusively employees of our company who require this information to perform their tasks. The hosting of the customer portal also takes place on an IT infrastructure operated by Schoepe itself.

The processing of this data is based on the legitimate interest according to Art. 6 Para. 1 Letter f DSGVO to make the contract processing efficient and user-friendly.

The deletion periods of the ERP system apply to the deletion of data in the customer portal. This means that the data will generally be deleted by Schoepe after the purpose has been fulfilled, unless the deletion conflicts with legal obligations to provide proof or to retain data. If a user deletes his customer account, the data will be deleted from the portal, but will continue to be stored in the ERP system depending on the purpose. There will be no further use of the data.

c) Use of our data exchange portal

For our customers we offer the portal "Data Exchange" for the transfer of large amounts of data. For the setup, the customer can register free of charge on the website. After the confirmation link has been requested and released by Schoepe, the user completes the setup of the customer account by providing personal login data such as last name, first name and email address. Optionally, the customer can add the phone number, address, website and profile picture.

The purpose of the processing is to provide a customer account through which processes such as the exchange of large amounts of data can be centrally controlled. For this purpose, the following data may be processed in addition to the aforementioned personal data from the data exchange portal:

  • time of the last change of the data
  • comments

The processing of this data is based on the legitimate interest pursuant to Art. 6 (1) f DSGVO with the aim of enabling more efficient customer contact.

Account deletion and thus the deletion of your data can be requested at any time via the menu item "Settings".

d) Newsletter

We offer our customer contacts the option of subscribing to a newsletter with which we will regularly inform you about news on our products, general company information, sales activities, personnel announcements and events.

For this purpose, we ask you when you first contact us whether we may send you our newsletter. We document your consent in our ERP system.

Please note that we evaluate the success of our newsletters. Among other things, we analyze how many recipients have opened the newsletter and clicked on a link in the e-mail (so-called conversion tracking). This allows us to draw conclusions about what is well received - and what we can do even better in the next newsletter. You can find more information here.

By agreeing to receive the newsletter, you also consent to us evaluating the success of our newsletters as described above.

You can revoke your consent to the sending of the newsletter as well as your consent to the newsletter evaluation at any time and unsubscribe from the newsletter. You can declare the revocation by clicking on the link provided in each newsletter e-mail, by e-mail to Datenschutz@Schoepe-Display.com or by sending a message to the contact details provided in the imprint.

Upon revocation of your consent, the data processed by you for the purpose of sending the newsletter will generally be deleted. We may store the unsubscribed e-mail addresses for up to three years on the basis of legitimate interests before deleting them. Our interest here is to be able to prove consent that was previously given. The processing of this data is limited to the purpose of a possible defense against claims.

Please note that the data also used for the newsletter (name, e-mail address) will continue to be processed by us if this is necessary for the initiation or implementation of the contractual relationship. In this case, the processing of the data will be limited to the aforementioned purpose and your data for the newsletter will be blocked.

When sending the newsletter, we are supported by CleverReach GmbH & Co. KG, Mühlenstraße 43, 26180 Rastede. The data used for newsletter delivery and conversion tracking is stored on CleverReach servers in the EU.

 

You have these rights

If personal data is processed by you, you are a "data subject" within the meaning of the GDPR and you have the following rights vis-à-vis Schoepe:

 

1. Right to information

You have the right to request confirmation as to whether we are processing personal data concerning you. If this is the case, you have the right to obtain information about this personal data as well as further information, e.g. the purposes of processing, the categories of personal data processed, the recipients and the planned duration of storage or the criteria for determining the duration.

 

2. Right to rectification

You have the right to request that inaccurate data be corrected without undue delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete data.

 

3. Right to restriction of processing

You have a right to restrict processing, e.g. if you believe the personal data is inaccurate.

 

4. Right to erasure

You have a right to erasure insofar as the processing is not necessary. This is the case, for example, if your data is no longer necessary for the original purposes, you have revoked your declaration of consent under data protection law or the data was processed unlawfully.

 

5. Right to information

If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.

You have the right against the controller to be informed about these recipients.

 

6. Right to data portability

You have the right to receive the personal data concerning you, in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another controller without hindrance from the controller to whom the personal data was provided, provided that

  • the processing is based on consent pursuant to Art. 6 (1) (a) DSGVO or Art. 9 (2) (a) DSGVO or on a contract pursuant to Art. 6 (1) (b) DSGVO and
  • the processing is carried out with the help of automated procedures.

In exercising this right, you also have the right to obtain that the personal data concerning you be transferred directly from one controller to another controller, insofar as this is technically feasible. Freedoms and rights of other persons must not be affected by this.

The right to data portability does not apply to processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

 

7. Right of objection

If the data processing is based on Article 6 (1) (e) or (f) DSGVO, you have the right to object to the processing of your personal data at any time on grounds relating to your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this privacy policy.

If you object, we will no longer process your personal data concerned, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims (objection under Article 21(1) DSGVO).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing. If you object, your personal data will subsequently no longer be used for the purpose of direct marketing (objection pursuant to Article 21 (2) DSGVO). The objection is free of charge and can be made form-free, if possible to e-mail: Datenschutz@Schoepe-Display.com.

 

8. Right to revoke the declaration of consent under data protection law

You have the right to revoke your declaration of consent under data protection law at any time. The revocation of the consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

 

9. Automated decision in individual cases including profiling

You have the right not to be subject to a decision based solely on automated processing - including profiling - except in the exceptional circumstances mentioned in Art. 22 GDPR.

No decision-making based exclusively on automated processing - including profiling - shall take place.

 

10. Right to complain to a supervisory authority

You have the right to complain to a data protection supervisory authority about the processing of your personal data by us. Responsible is:

Dagmar Hartge
The State Commissioner for Data Protection and for the Right to Inspect Files
Stahnsdorfer Damm 77
14532 Kleinmachnow

Poststelle@LDA.Brandenburg.de

 

Status: 26.03.2021