Data privacy statement

Data Privacy Statement

We guarantee that we only collect, process, store and use your data in connection with the processing of your inquiries, as well as for internal purposes and to provide services or content requested by you.

Principles of Data Processing

We process personal data of users only in compliance with the relevant data protection regulations. The data of users will only be processed if the following legal permission facts exist:

– to provide our contractual services (e.g. processing of orders) as well as online services

– the processing is required by law

– if you have given your consent

– due to our legitimate interests (i.e. interest in the analysis, optimization and economic operation and security of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR, in particular in the measurement of reach, creation of profiles for advertising and marketing purposes as well as collection of access data and use of the services of third-party providers)

We would like to show you where the above legal bases are regulated in the GDPR:

Consent, Art. 6 para. 1 lit. a. and Art. 7 GDPR

Processing to fulfill our services and carry out contractual measures, Art. 6 para. 1 lit. b. GDPR

Processing to fulfill our legal obligations, Art. 6 para. 1 lit. c. GDPR

Processing to protect our legitimate interests, Art. 6 para. 1 lit. f. GDPR

Data Transfer to Third Parties

A transfer of data to third parties only takes place within the framework of legal requirements. We only pass on the data of users to third parties if this is necessary, e.g. for contractual purposes or on the basis of legitimate interests in the economic and effective operation of our business.

If we use subcontractors to provide our services, we take appropriate legal precautions as well as appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant legal regulations.

We would like to point out that due to the use of Google Analytics, a data transfer takes place when using our online offer.

Data Transfer to a Third Country or an International Organization

A third country is understood to be countries in which the GDPR is not directly applicable law. This generally includes all countries outside the EU or the European Economic Area.

A data transfer to a third country or an international organization takes place. It is taken into account that appropriate/adequate guarantees are in place and that you have enforceable rights and effective remedies available.

You can obtain a copy of the appropriate guarantees under the following links:

_ Privacy Shield: https://www.privacyshield.gov/list

_ Standard contractual clauses: http://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:2010:039:0005:0018:DE:PDF

Storage Period of your Personal Data

We adhere to the principles of data minimization and data avoidance. This means that we only store your data provided to us for as long as is necessary to fulfill the aforementioned purposes or as stipulated by the various storage periods provided for by the legislator. If the respective purpose no longer applies or after the expiry of the corresponding periods, your data will be routinely blocked or deleted in accordance with the statutory provisions.

For this purpose, we have created an internal company concept to ensure this procedure.

Contact

If you contact us by e-mail, telephone, fax, contact form, etc., you agree to electronic communication. Personal data is collected as part of contacting us. Which data is collected in the case of a contact form can be seen from the respective contact form. Your data will be transmitted SSL-encrypted. The information you provide will be stored exclusively for the purpose of processing the request and for possible follow-up questions.

We would like to name the legal bases for this:

Processing to fulfill our services and carry out contractual measures, Art. 6 para. 1 lit. b. GDPR

Processing to protect our legitimate interests, Art. 6 para. 1 lit. f. GDPR

We use software for the maintenance of customer data (CRM system) or comparable software on the basis of our legitimate interests (efficient and fast processing of user inquiries).

The system is operated by us in-house. There is therefore no transfer of data to third parties.

We would like to point out that e-mails can be read or changed by unauthorized parties unnoticed during transmission. Furthermore, we would like to point out that we use software to filter unwanted e-mails (spam filter). E-mails can be rejected by the spam filter if they are falsely identified as spam by certain characteristics.

What Rights Do You Have?

a) Right to information

You have the right to obtain free information about your stored data. Upon request, we will inform you in writing in accordance with applicable law which personal data we have stored about you. This also includes the origin and the recipients of your data as well as the purpose of the data processing.

b) Right to rectification

You have the right to have your data stored by us corrected in the event of inaccuracy. In this case, you can request a restriction of the processing, e.g. in the event of a dispute regarding the accuracy of your personal data.

c) Right to blocking

Furthermore, you can have your data blocked. In order to ensure that a blocking of your data can be taken into account at any time, this data must be kept in a blocking file for control purposes.

d) Right to erasure

You may also request the deletion of your personal data, provided that there are no statutory retention obligations. If such an obligation exists, we will block your data at your request. If the corresponding legal requirements are met, we will delete your personal data even without a corresponding request from you.

e) Right to data portability

You are entitled to request from us the provision of the personal data transmitted to us in a format that allows the transmission to another location.

f) Right to lodge a complaint with a supervisory authority

You have the option of contacting one of the data protection supervisory authorities with a complaint.

Bavarian State Office for Data Protection Supervision (BayLDA)

Promenade 27, D-91522 Ansbach

Telephone: +49 981 53-1300

Telefax: +49 981 53-981300

You can open the complaint form of the Bavarian State Office for Data Protection Supervision via the following link: https://www.lda.bayern.de/de/beschwerde.html

g) Right to object

You have the possibility to revoke the use of your data for internal purposes with effect for the future at any time. For this purpose, it is sufficient to send a corresponding e-mail to info@harter-gmbh.de. However, such a revocation does not affect the lawfulness of the processing operations carried out by us up to that point. This does not affect the data processing with regard to all other legal bases, such as the initiation of a contract (see above).

Protection of your Personal Data

We take contractual, organizational and technical security measures in accordance with the state of the art to ensure that the provisions of data protection laws are complied with and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

The security measures include in particular the encrypted transmission of data between your browser and our server. A 256-bit SSL (AES 256) encryption technology is used for this purpose. Your personal data is protected within the framework of the following points (excerpt):

a) Protection of the confidentiality of your personal data

In order to protect the confidentiality of your personal data stored by us, we have taken various measures for access, login and access control.

b) Protection of the integrity of your personal data

In order to protect the integrity of your personal data stored by us, we have taken various measures for transfer and input control.

c) Protection of the availability of your personal data

In order to protect the availability of your personal data stored by us, we have taken various measures for order and availability control.

The security measures in use are continuously improved in line with technological developments. Despite these precautions, we cannot guarantee the security of your data transmission to our online offer due to the insecure nature of the Internet. Due to this, any data transmission from you to our online offer is at your own risk.

Protection of Minors

Personal information may only be made available to us by persons who have not yet reached the age of 16 if the express consent of the parents or guardians is available. This data will be processed in accordance with this data protection declaration.

Cookies

We use cookies. Cookies are small text files that are stored locally in the cache of your Internet browser. The cookies enable the recognition of the Internet browser. The files are used to help the browser navigate through the online offer and to be able to use all functions to their full extent.

Our online offer uses: Browser cookies

Control of cookies by the user

Browser cookies: You can set all browsers so that cookies are only accepted on request. Also, only cookies from pages that are currently being visited can be accepted via settings. All browsers offer functions that allow the selective deletion of cookies. The acceptance of cookies can also be generally disabled, but then, if necessary, restrictions in the user-friendliness of this online offer must be accepted.

Matomo

1. Scope of processing of personal data

Our website uses Matomo (formerly Piwik), an open-source software for the statistical evaluation of visitor access. Matomo uses cookies that are stored on your computer and that enable an anonymized analysis of your use of the website. A conclusion to a specific person is not possible, as your IP address is anonymized immediately after processing and before storage.

2. Legal basis for the processing of personal data

The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f GDPR.

3. Purpose of data processing

With Matomo, we analyze the use of our website and individual functions and offers in order to continuously improve the user experience. Through the statistical evaluation of user behavior, we improve our offer and make it more interesting for visitors.

4. Duration of storage, possibility of objection and removal

The cookies used by Matomo are stored on the user’s computer and transmitted from there to our site. Therefore, you as a user also have full control over the use of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically.

You can object to the storage and evaluation of this data by Matomo at any time. In this case, a so-called opt-out cookie is permanently stored in your browser, which causes Matomo to not collect any data for storage and evaluation. However, should you intentionally or unintentionally delete this cookie, the objection to data storage and evaluation will also be lifted and can be renewed via the link mentioned above.

Alternatively, most modern browsers have a so-called “Do Not Track” option, with which they tell websites not to track your user activities. Matomo respects this option.

Amendment of our Data Protection Regulations

We reserve the right to occasionally adapt our data protection declaration so that it always complies with current legal requirements or to implement changes to our services in the data protection declaration. This could be e.g. affect the introduction of new services. The new data protection declaration then applies to your renewed visit.

Trademark Protection

Each company or trademark mentioned here is the property of the respective company. The mention of brands and names is for purely informative purposes.