Data protection

§ 1 – Information on the collection of personal data

(1) This text provides information on the collection of personal data when you use our website. “Personal data” means any information that can relate to you personally, such as your name, address, e-mail addresses, and user behavior.

(2) The controllers within the meaning of Article 4(7) of the EU General Data Protection Regulation (GDPR) are Dirk Kunz, Phil Penninger: managing directors, with representation authorization, of ASSMANN Electronic GmbH, Auf dem Schüffel 3, 58513 Lüdenscheid, Germany, datenschutz@assmann.com.
You can reach our data protection officer at datenschutz@agad.de or via our mailing address, adding “Der Datenschutzbeauftragte”.

(3) When you contact us by e-mail or using a contact form, we store the information you communicate (your e-mail address and, where applicable, your name) in order to answer your questions. Providing further information is voluntary. This merely makes it easier for us to contact you to respond to your inquiry. We erase the data collected in this context once storage thereof is no longer necessary or restrict the processing thereof if there are statutory obligations of storage.

(4) If we utilize service providers who have been commissioned for individual functions of our site or wish to use your data for advertising purposes, we will inform you in detail below regarding the relevant processes. We will also indicate the stipulated criteria that apply to the duration of storage.



§ 2 – Your rights

(1) You have the following rights toward us with regard to the personal data concerning you:

  • Right to access
  • Right to rectification or erasure
  • Right to restriction of processing
  • Right to object to processing
  • Right to data portability

(2) You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data.



§ 3 – Collection of personal data when you visit our website

(1) When you use the website for merely informational purposes, meaning if you do not register or otherwise transmit information to us, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are necessary for us in technical terms in order to display our website to you and ensure the stability and security thereof (the legal basis is Article 6(1), first sentence, point (f), GDPR):

  • IP address
  • Date and time of query
  • Time difference from Greenwich Mean Time (GMT)
  • Content of request (specific page)
  • Access status/HTTP status code
  • Volume of data transferred in each case
  • Website from which the request comes
  • Browser
  • Operating system and interface
  • Language and browser software version

(2) In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive, assigned to the browser you use, and that provide certain information to the body that places the cookie (in this case, us). Cookies cannot execute any programs or transmit viruses to your computer. They are used to make the website more user-friendly and effective on the whole.

(3) Use of cookies:
a) This website uses the following types of cookies, whose scope and function are explained below:
•    Transient cookies (see b)
•    Persistent cookies (see c)

b) Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. Session cookies store what is called a session ID, which can be used to identify different queries sent by your browser as belonging to the same session. This allows us to recognize your computer if you return to our website. Session cookies are deleted when you log out or close the browser.
c) Persistent cookies are automatically deleted after a specified amount of time, which may vary by cookie. You can use your browser’s security settings to delete cookies at any time.

d) You can configure your browser settings according to your preferences, including doing things like accepting third-party cookies or rejecting all cookies. Please note that you may not be able to use all of the features of this website.

e) [We use cookies in order to be able to identify you on subsequent visits if you have an account with us. Otherwise, you would have to log in again each time you visit.]

f) Apart from the cookies which we require for operating the website and providing our services, we would also like to collect additional data in order to improve the options for using our website and to show you content that matches your needs. To do so, your consent is required. Of course, you may withdraw this consent at any time.
The methods involved and how they work are defined in the relevant sections of this policy.



§ 4 – SSL or TLS encryption


For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as a website operator, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the address line of your browser changing from “http://“ to “https://” as well as the lock symbol in your browser line.
If the SSL or TLS encryption is active, data that you transfer to us cannot be read by third parties.



§ 5 – Additional functions and features of our website

(1) In addition to purely informational use of our website, we offer various services that you can use if you are interested. To do this, you are typically required to provide further personal data, which we will use to perform the service in question and to which the principles of data processing mentioned above apply.

(2) In some cases, we use external service providers to process your data. We have selected these service providers carefully and have commissioned them for this purpose. They are bound by our instructions and are checked regularly.

(3) We may also disclose your personal data to third parties when we offer participation in campaigns, contests, entry into contracts, or similar services jointly with partners. Further information on this is provided when you provide your personal data or at the bottom of the description of the service being offered.

(4) To the extent that our service providers or partners are based in a country outside the European Economic Area (EEA), we will inform you of the consequences of this circumstance in the description of the service being offered.



§ 6 – Objection or withdrawal concerning the processing of your data


(1) If you have granted consent to the processing of your data, you may withdraw this consent at any time. This withdrawal only influences the admissibility of processing concerning your personal data that is carried out after you have informed us that you are withdrawing consent.

(2) Insofar as we process your personal data based on our legitimate interests, you can object to this processing. This is the case in particular if processing is not required for the performance of a contract with you, which we indicate in each case for the following description of functions. When making such objections, we ask you to state the reasons why we should not continue to process your personal data as before. If your objection is justified, we will review the factual circumstances and either cease or adapt the data processing or indicate our compelling legitimate reasons for continuing processing.

(3) Of course, you can object to the processing of your personal data for the purposes of advertising and data analysis at any time. You can inform us of your objection to advertising by contacting us using the following contact details:

ASSMANN Electronic GmbH
Auf dem Schüffel 3
58513 Lüdenscheid
Germany

Tel.:    +49 2351 554 0
Fax:    +49 2351 554 99 865
Email: datenschutz@assmann.com



§ 7 – Use of our Web shop

(1) If you wish to place an order in our Web shop, it is necessary for you to provide your personal data, which we need to process your order, in order to enter into a contract. Required information that is necessary for processing orders is marked separately; additional information is voluntary. We will process the information you provide in order to process your order. To this end, we may disclose your payment information to our bank. The legal basis for this is Article 6(1), first sentence, point (b) GDPR.
We can also process the data you provide in order to inform you of other interesting products from our portfolio or send you e-mails containing technical information.

(2) Due to provisions of commercial and tax law, we are obligated to store your address, payment and order information for a period of ten years. Nevertheless, we restrict processing after [two years], which means that your data will only be used in compliance with the statutory obligations.

(3) To prevent unauthorized access by third parties to your personal data, especially financial data, the ordering process is encrypted via TLS technology.



§ 8 – Newsletter


(1) With your consent, you can subscribe to our newsletter, with which we inform you of our current interesting offerings. The goods and services advertised are mentioned in the declaration of consent.

(2) We use the “double opt-in” procedure for those registering to receive our newsletter. This means that after you register, we send an e-mail to the e-mail address you have indicated, asking you to confirm that you want to receive the newsletter. If you do not confirm your registration within 48 hours, your information is blocked and automatically erased one month later. We also store the IP addresses you have used and the times of your registration and confirmation in each case. The purpose of this procedure is to be able to prove that you have registered and clear up any possible abuse of your personal data.

(3) The only information that you are required to provide in order to receive the newsletter is your e-mail address. Providing further, specially marked information is voluntary. This information is used to allow us to address you personally. After you confirm, we store your e-mail address for the purpose of sending you the newsletter. The legal basis for this is Article 6(1) , first sentence, point (a) GDPR.

(4) You can withdraw your consent to receive the newsletter and unsubscribe at any time. You can withdraw your consent by clicking the link, provided in each newsletter e-mail, reading "Unsubscribe" which can also be reached here (https://seu2.cleverreach.com/f/312548-320273/wwu/) or via our contact form (https://www.assmann.com/en/company/contact/) or by sending a message to the contact information stated in the imprint.

(5) Cleverreach is used as newsletter software. Your data will be transmitted to CleverReach GmbH & Co. KG. Cleverreach is forbidden to sell your data and to use it for other purposes than the dispatch of newsletters. Cleverreach is a German, certified provider, which was selected after the requirements of the data security basic regulation and the Federal Law for Data Protection. Further information can be found here: https://www.cleverreach.com/en/privacy-policy/.

The legal basis for data processing is Art. 6 Para. a lit.a) DS-GVO, as you have given us your consent. You can revoke your consent to the storage of data, e-mail address and their use to send the newsletter at any time, for example via the "Unsubscribe" link in the newsletter (Sec. 8, Par. 4).

For this reason, we ask you to inform yourself about our data protection measures at regular intervals by inspecting our data protection declaration. Unsubscribed recipients of newsletters are automatically deleted from the Cleverreach system within 7 days.



§ 9 – Transfer to third states

We hereby inform you that your data may be processed in the USA. This applies both for the Google services we use as well as other services we use, for instance LinkedIn or Facebook.Connect. Although Google has outsourced a number of its services (Analytics, Webfonts, Maps) to European servers, it cannot be ruled out that American authorities may access your data due to American legislation without providing you sufficient opportunities of legal protection against this access. For this reason, we ask for your consent before activating these services or storing the relevant cookies. If you do not want this, you can refuse to grant consent in this regard. In that case, only technically necessary cookies will be stored; the services in question will not be activated.



§ 10 – Online marketing

We also process personal data for the purpose of online marketing with the services described below. We use these services in order to improve the user-friendliness of our website and to make our website easier to find.
This also includes advertising content that we show to users to the extent that we use such services. Insofar as the personal data and cookies of third-party providers are used, this only occurs if you have granted your consent to store cookies, Art. 6 I a (1) GDPR. Of course, you can withdraw your consent to the Privacy Policy at any time after granting it.

Our legitimate interest pursuant to Art. 6 I (1)(f) GDPR is also relevant as a legal basis. Accordingly, it is in our financial and economic interest to make the website more appealing for our user base and to improve the searchability of our website.


Use of Google Analytics

Type and scope of processing

(1) We use Google Analytics from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as an analysis service for the statistical evaluation of our online offering. This includes, for example, the number of visits to our website, subpages visited and the length of stay of visitors.

(2) Google Analytics uses cookies and other browser technologies to evaluate user behaviour and recognize users.

(3) This information is used, among other things, to compile reports on website activity.

 

Purpose and legal basis

(1) The use of Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG.

(2) We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

(3) In cases where no adequacy decision of the European Commission exists (including US companies that are not certified under the EU-U.S. DPF), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .

(4) In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of third country transfers, there may be risks that are unknown in detail (e.g. data processing by security authorities in the third country, the exact scope and consequences of which for you we do not know, over which we have no influence and of which you may not become aware).

 

Storage duration

(1) The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Analytics: https://policies.google.com/privacy?hl=en-US .

 

Use of Google Adwords Conversion

Type and scope of processing

(1) We have integrated Google Ads on our website. Google Ads is a service provided by Google Ireland Limited to display targeted advertising to users. Google Ads uses cookies and other browser technologies to evaluate user behaviour and recognize users.

(2) Google Ads collects information about visitor behavior on various websites. This information is used to optimize the relevance of advertising. Furthermore, Google Ads delivers targeted advertising based on behavioral profiles and geographical location. Your IP address and other identification features such as your user agent are transmitted to the provider.

(3) If you are registered with a Google Ireland Limited service, Google Ads can assign the visit to your account. Even if you are not registered with Google Ireland Limited or have not logged in, it is possible that the provider will find out and store your IP address and other identification features.

(4) In this case, your data will be passed on to the operator of Google Ads, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. 

Purpose and legal basis

(1) The use of Google Ads is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG

(2) We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

(3) In cases where no adequacy decision of the European Commission exists (including US companies that are not certified under the EU-U.S. DPF), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

(4) In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of third country transfers, there may be risks that are unknown in detail (e.g. data processing by security authorities in the third country, the exact scope and consequences of which for you we do not know, over which we have no influence and of which you may not become aware).

Storage duration

(1) The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Ads:https://policies.google.com/privacy?hl=en-US.

 

Google reCAPTCHA

Type and scope of processing

(1) We have integrated Google reCAPTCHA components on our website. Google reCAPTCHA is a service of Google Ireland Limited and enables us to distinguish whether a contact request comes from a natural person or is automated by means of a program. When you access this content, you establish a connection to the servers of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, whereby your IP address and possibly browser data such as your user agent are transmitted. Furthermore, Google reCAPTCHA records the time spent on the website and the user's mouse movements in order to distinguish automated requests from human requests. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of Google reCAPTCHA.

Purpose and legal basis

(1) The use of Google reCAPTCHA is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TTDSG

(2) We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA is carried out in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The US companies involved and/or their US subcontractors are certified in accordance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

(3) In cases where no adequacy decision of the European Commission exists (including US companies that are not certified under the EU-U.S. DPF), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR have been agreed. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of June 4, 2021. You can view a copy of these standard contractual clauses at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE.

(4) In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of third country transfers, there may be risks that are unknown in detail (e.g. data processing by security authorities in the third country, the exact scope and consequences of which for you we do not know, over which we have no influence and of which you may not become aware).

Storage duration

(1) The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google reCAPTCHA: https://policies.google.com/privacy?hl=en-US.

 

Remarketing

In addition to Adwords Conversion, we use the application Google Remarketing. This is a method we use for recurring contact with you. By using this application, our ads may be shown to you after visiting our website when you continue to use the internet. This occurs through cookies stored in your browser which Google uses to record and analyze your user behavior when visiting different websites. In this way, Google can identify your previous visit to our website. According to the information provided by Google, the data collected during remarketing will not be aggregated with your personal data that may be stored by Google. In particular, Google claims to use pseudonymization during remarketing.

(3) You can refuse to participate in this tracking process or withdraw your consent in various ways:

a) by changing the relevant settings of your browser software, in particular suppressing third-party cookies means that you will not receive ads from third-party providers;

b) by deactivating cookies for conversion tracking by changing your browser settings to block cookies from the domain “www.googleadservices.com”, www.google.de/settings/ads (note that this setting will be erased when you delete your cookies);

c) by deactivating interest-based ads from the provider that are part of the “About Ads” self-regulation campaign using the link www.aboutads.info/choices (note that this setting will be erased when you delete your cookies);

d) by permanently deactivating them in the browsers Firefox, Internet Explorer or Google Chrome by following the link www.google.com/settings/ads/plugin. We hereby inform you that you may not be able to use all features of this website to their full extent in that case.
You can also object to the collection of data by clicking the following link that prevents analysis for the purpose of remarketing and withdraws your consent: (https://www.assmann.com/en/#cmpscreenhttps://assmann.com/en/#cmpscreen)

(4) The legal basis for the processing of your data is your consent, Art. 6 (1) sentence 1 (a) GDPR. You can find more information about data protection at Google here: www.google.com/intl/de/policies/privacy and services.google.com/sitestats/de.htm. Alternatively, you can visit the website of the Network Advertising Initiative (NAI) at http://www.networkadvertising.org.
It cannot be ruled out that Google may transfer data to the USA for further processing. If this is the case, the legal basis for this transfer of data is the consent you expressly granted in the consent banner, Art. 49 I (1)(a) GDPR.
 


§ 11 – YouTube videos

(1) We have embedded YouTube videos on our website that are stored on www.YouTube.com and that can be played directly from our website. These are all embedded in “enhanced privacy mode”, which means that no data concerning you as a user will be transferred to YouTube if you do not play the videos. The data outlined in paragraph 2 will only be transferred once you play the videos. We have no influence on this transmission of data.  The legal basis for its collection is your consent, Art. 6 I (1)(a) GDPR. "

(2) When the video is played, YouTube is informed that you have accessed the relevant sub-page on our website. In addition, the data outlined in § 3 of this policy will be transmitted. This occurs regardless of whether or not you are logged into a YouTube user account, and whether or not such a user account exists. If you are logged into Google, your data will be directly identified with your account. If you do not want your data to be identified with your YouTube profile, you must log out before activating the button. YouTube stores your data as a usage profile and uses it for the purposes of marketing, market research and/or targeted design of its website. This analysis occurs particularly (even for users who are not logged in) to display targeted advertising and to inform other users on the social network about your activity on our website. You have the right to object against the creation of such user profiles.

(3) You can find more information concerning the purpose and scope of data collection and its processing by YouTube in the Privacy Policy. There, you can also obtain more information about your rights and optional settings to protect your privacy: www.google.de/intl/de/policies/privacy and policies.google.com/technologies/types. Google also processes your personal data in the USA. The legal basis for carrying out a data transfer is your express consent pursuant to Art. 49 I (1)(a) GDPR.
 


§ 12 – LinkedIn Insights

The Analytics feature provided by the LinkedIn Corporation is used on our website.
This technology makes it possible to display personalized ads on LinkedIn to the visitors of this website. It is also possible to create anonymized reports concerning ad performance and information about website interaction. The LinkedIn Insight tag on this website establishes a connection to the LinkedIn server if you visit this website while you are logged in to your LinkedIn account. The service is only activated once you have granted your express consent in this regard, Art. 6 I 1 (a) GDPR.
For more information about LinkedIn Insights, please visit: https://www.linkedin.com/legal/privacy-policy

There you can find more information about the collection and usage of data as well as your options and rights concerning the protection of your privacy. You can also deactivate the collection of data at any time by clicking on the following link (for users who are logged into LinkedIn): https://www.linkedin.com/psettings/enhanced-advertising.

Alternatively, you can also deactivate the collection of data by LinkedIn Insights by clicking on the following link: https://www.assmann.com/en/#cmpscreen
It cannot be ruled out that LinkedIn may process data in the USA. The legal basis for this transfer is your express consent, Art. 49 I GDPR.
 


§ 13 – Privacy notice for applicants

We process the data that you submitted in connection with your application to determine your suitability for the job (or other open position in our company, if relevant) and to carry out the application process.

The legal basis for processing your personal data during this application process is primarily Section 26 BDSG in its valid version as of 05/25/2018. According to this provision, data processing is permitted if this is necessary in order to make a decision about whether to establish an employment relationship.

In the area of online applications, we work with the applicant tool SD Worx of SD Worx Group NV, Brouwersvliet 2, 2000 Antwerp. There you have the possibility to register and release your application documents for the specific position relevant to you. The terms of use of SD Worx Group NV apply. SD Worx Group NV collects and processes your personal data on its own responsibility in order to provide you with a user account for the applicant portal. In this regard, we refer to the privacy policy of SD Worx Group NV.

We receive online access to your applicant data if you separately release this for us as part of your application. The legal basis for this is Section 26 BDSG in the version applicable as of 25.05.2018 and Article 88 (1) DSGVO.

If the data is required after the end of the application process, for instance to take legal action if necessary, data processing may occur based on the requirements of Art. 6 GDPR, in particular for the protection of legitimate interests in accordance with Art. 6 (1) f) GDPR. In that case, our interest is based on the exercise or defense of legal claims.

Data concerning applicants will be deleted after 6 months in case of rejection.If you have consented to the further storage of your data, we will incorporate your data into our applicant pool. The data in this pool will be deleted after two years have elapsed.

If you are hired for a position during the application process, the data from the applicant data system will be transfered to our personnel information system.
Your applicant data will be reviewed by the human resources department after your application has been received. Suitable applications will then be forwarded internally to the department head responsible for the open position in question. Then further steps will be coordinated. As a rule, your data can only be accessed by those persons in the company who require the data in order to properly carry out our application process.

The data is exclusively processed in data centers within the Federal Republic of Germany.
Of course, your rights outlined in Section 2 and Section 5 also apply here with respect to your data.



§ 14
– Microsoft Bookings

(1) Nature and scope of processing
The use of Microsoft Bookings is based on your consent pursuant to Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TTDSG.
We have integrated components of Microsoft Bookings on our website. Microsoft Bookings is a service of Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, United States.
Microsoft Bookings allows us to organize, manage and track appointments for meetings. Furthermore, Microsoft Bookings is used to process data entered in forms, e.g. when contacting us via contact form or newsletter registration.

(2) Purpose and legal basis
The service is used on the basis of our legitimate interests, i.e. interest in optimizing our website and marketing measures pursuant to Art. 6 para. 1 lit. f. DSGVO.

(3) Storage period
The concrete storage period of the processed data cannot be influenced by us, but is determined by Microsoft Corporation. Further information can be found in the privacy policy for Microsoft Forms: https://privacy.microsoft.com/de-de/privacystatement.

ASSMANN Group
The ASSMANN Group is a globally operating manufacturer of high-quality products for data network technology and network infrastructure. Today, both the German ASSMANN Electronic GmbH and the 11 international subsidiaries operate under the roof of ASSMANN Holding GmbH.
Contact
Telefon: +49 2351 554 0