We are delighted that you are visiting our site and are interested in our products and services. The protection of personal data is an important concern for us. We should now like to advise you what information we will collect during your visit to our website and how it will be used to ensure that you feel safe when on our site.
1. Responsible for data processing
HAWE Hydraulik SE
2. Contact details for data protection officer
Data protection officer
Intersoft consulting services AG
Beim Strohhause 17
datenschutz (at) hawe.de
3. Personal data
Personal data is individual information about the personal or material circumstances of an identified or identifiable natural person. This includes information such as your correct name, your address, your telephone number, your position and your company. Information which cannot be directly linked to your real identity - such as the number of users of a page - is not personal data.
4. General data collection when accessing our website
If you merely use the website for information purposes, i.e. without registering or otherwise transmitting information to ourselves, we will collect only the personal data transmitted to our server by your browser (known as server log files). This information includes for example the IP address, the type and version of the web browser used, the operating system used, the web page from which you accessed the site and the time of the request. Server log files are technically necessary to display our website to you and to ensure stability and security (the legal basis is thus the legitimate interest according to Art. 6 para. 1 s. 1 point f GDPR). This does not therefore involve any special function of our website. We carry out statistical evaluation of the data collected in this manner.
5. Collection and processing of personal data
You will possibly be asked to provide personal information. It is not obligatory to answer such questions. We use personal data made available by yourself solely for the purpose of offering you individual service, i.e. in general to respond to your enquiry. Moreover, personal data made available by yourself will not be stored or passed on for any further purpose. We would like to assure you that your information will be treated as confidential in accordance with the applicable data protection regulations. Where we employ external service providers for individual offers on this site, for example in the case of our applicant portal, they are selected with the greatest possible care subject to aspects of data protection and according to the statutory provisions. The nature and scope of the data processing operations to be performed are regulated on a contractual basis and the service providers engaged for this purpose are bound by a special obligation to comply with the same data protection level as is customary at our company.
6. Collection of personal data when using HAWE Hydraulik mobile apps from App Stores
You can download HAWE Hydraulik's mobile apps onto your mobile device and use them without accessing the Internet. HAWE Hydraulik does not collect any personal data when you use the mobile apps.
When downloading mobile apps, however, the necessary information is transferred to the respective App Store, e.g. user ID of your account, time of download and, if applicable, the device code number. We have no influence on this data collection and are not responsible for it. We process this data only to the extent necessary for downloading the mobile app to your mobile device.
When using the download functions implemented in the mobile app, access to our website is executed. The data described in the section "General data collection when accessing our website" will be collected.
7. Rights of the data subject
In conjunction with the processing of your data you have the right to access according to Art. 15 GDPR, the right to correction according to Art. 16 GDPR, the right to erasure according to 17 GDPR, the right to restriction of processing according to Art. 18 GDPR, the right to object under Art. 21 GDPR and the right to data portability under Art. 20 GDPR. In the case of the right to access and to erasure, they are subject to the restrictions pursuant to Sections 34 and 35 of the German Federal Data Protection Act (BDSG). You moreover have a right to lodge a complaint with the competent supervisory authority (Art. 77 GDPR in conjunction with Section 19 BDSG).
8. Contact via e-mail or contact form
If you get in touch with us either via e-mail or using a contact form, we will store the data you submit to us (your e-mail address, and possibly your name and telephone number) in order respond to your questions. Where we ask you to enter in our contact form information which is not necessary to establish contact, we shall always indicate such inputs as being optional. We will use this information to categorise your enquiry and to improve the handling of your concern. This information is given on an explicitly voluntary basis and with your consent, Art. 6 para. 1 a GDPR. Where this involves information relating to communication channels (e.g. e-mail address, telephone number), you additionally agree that we may contact you, also via this communication channel as appropriate, in order to respond to your concern. You can of course revoke this consent for the future at any time.
We delete data which comes into being in this context once storage is no longer necessary, or restrict processing if subject to statutory obligations of data retention.
9. Registration and usage of portal
You have the option of registering with us and creating a customer account. For registration we collect and store the following data from you:
- First name
- Last name
- E-mail (user name)
We use what is known as the double opt-in procedure for registration, i.e your registration is not complete until you have previously confirmed it. To this end, we send you a confirmation e-mail and you confirm opt-in by clicking on the link contained in the mail. Provision of the above data is mandatory; you can voluntarily disclose all further information through usage of our portal.
You can submit an application to us electronically. We will of course use your information solely to deal with your application and will not pass it on to third parties. Please note that e-mails which are sent without having been encrypted are not access-protected during transmission.
We additionally place our application portal at your disposal. In this case your online application is directly forwarded to the HR department via an encrypted connection and of course treated as confidential.
In the applicant tool you can supply information about yourself and your profile. Certain information is necessary for you to be able to send off your application. This information includes e.g. your first and last name and your address. Such data is marked as being mandatory fields. You can also voluntarily provide us with further information and submit documents such as your CV, references, cover letter, etc. Please note that such documents may contain sensitive data (revealing racial and ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health status or sexual life). Should you transmit corresponding information, you also declare your consent to its processing.
Where an application is sent by post or e-mail, the data may be captured and input in the tool by the HR department.
You can find further information about data processing in the framework of the application procedure in the privacy statement of our application portal.
Your personal data will be erased following completion of the application procedure after a maximum period of 6 months, unless you have explicitly given us consent to store your data for longer, or where a contract has been concluded. The legal basis here is Art. 6 para. 1 a, b and f GDPR and Section 26 BDSG.
With your consent according to Art. 6 para. 1 a GDPR you can subscribe to our newsletter, in which we inform you about our latest offers. We use what is known as the double opt-in procedure for registration to our newsletter. This means that, after you have registered, we then send you an e-mail to the e-mail address you stated, asking you to confirm your wish to be mailed the newsletter. If you do not confirm your registration within [24 hours], your information will be blocked and automatically erased after one month.
We moreover store the IP addresses you used and the times of registration and confirmation. The purpose of this procedure is to secure evidence of your registration and to be able to identify any possible misuse of your personal data.
For the newsletter to be mailed, it is necessary to state your first and last name and your e-mail address. The provision of further, separately marked data is voluntary and will be used so we can address you personally. Following your confirmation we will store your e-mail address for the purpose of sending you the newsletter. The legal basis here is Art. 6 para. 1 a GDPR.
You can revoke your consent to mailing of the newsletter at any time and cancel the newsletter. To revoke consent, you can click on the link included in every e-mail with the newsletter or do so via a contact enquiry.
12. Direct advertising authorisation according to Section 7 para. 3 German Law against Unfair Competition (UWG)
The e-mail addresses captured with the purchase of a product or service on our website are used by our company for the purpose of direct advertising for our own and for similar products and services. If you no longer wish to receive direct advertising, you can object to the use of your e-mail address at any time. Every newsletter also includes a relevant link designed for this purpose.
13. Data transfer
Transfer of your data to third parties does not fundamentally take place, unless we are subject to a statutory obligation to do so, the transmission of data is necessary for the performance of a contract, or you have previously given us your explicit consent to the transmission of your data.
External service providers and partner companies such as online payment providers or shipping companies entrusted with delivery will be provided with your data only where this is necessary for execution of your order. In these cases the scope of the data transmitted will however be kept to the minimum necessary. Where our service providers come into contact with your personal data, we ensure in the context of third-party processing pursuant to Art. 28 GDPR that they comply with the legal data protection regulations in the same manner. Please also take note of the relevant data protection information of the providers. The responsibility for the content of third-party services is incumbent on the individual service provider, whereby we verify these services for compliance with the statutory requirements to the extent that can be reasonably expected of ourselves.
We attach importance to the processing of your data within the European Union / European Economic Area. It may however come about that we employ service providers which process data outside the European Union / European Economic Area. In these cases we ensure that an appropriate level of data protection is established by the recipient prior to the transfer of your personal data. This means that EU standard contracts or an adequacy decision such as the EU Privacy Shield should be used to attain a level of data protection that is comparable with the standards existing within the European Union.
In order to fulfil our contractual and statutory obligations, your personal data will be disclosed to various public agencies or internal departments and to external service providers.
We work with selected external service providers to fulfil our contractual and statutory obligations:
- IT service providers (e.g. maintenance service providers, hosting service providers)
- Service providers for document / data destruction
- Printing services
- Payment service providers
- Consulting - Service providers for sales or marketing
- Credit agencies
- Authorised dealers
- Service providers for telephone support (call centres)
- Web hosting service providers
We may moreover be obliged to transmit your personal data to other recipients such as the authorities in order to comply with statutory duties of disclosure.
-Social security institutions
14. Social bookmarks
Social bookmarks are incorporated on our website (e.g. from Twitter and YouTube). Social bookmarks are Internet bookmarks with which the users of such a service can collect links and news items. They are incorporated on our website merely as a link to the relevant services. After clicking on the embedded graphic, you will be taken to the site of the individual provider, i.e. only then will user information be transferred to this provider. Please consult the data protection provisions of the providers for information on the handling of your personal data when using each site.
15. Use of social plug-ins
This website uses social plug-ins of the provider(s)
• Twitter (operator: Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA)
These plug-ins normally collect data from you as standard and transmit it to the servers of the relevant provider. To ensure the protection of your privacy, we have taken technical measures which guarantee that your data cannot be collected by the provider of the individual plug-in without your consent. When you access a page incorporating such plug-ins, they are initially deactivated. Only when you click on the relevant symbol will the plug-in be activated, and you so give your consent to your data being transferred to the relevant provider. The legal basis for the usage of plug-ins is Art. 6 para. 1 a and f GDPR.
Following activation, the plug-ins also collect personal data such as your IP address and send it to the servers of the relevant provider, where it is stored. When you access the website in question, activated social plug-ins additionally set a cookie with a unique identifier. This allows providers to also create profiles about your usage behaviour. This additionally happens when you are not a member of the social network of the relevant provider. If you are a member of the provider's social network and you are logged in to the social network during your visit to this website, your data and information can be linked to your profile on the social network via your visit to this site. We have no influence on the exact extent of the data collected from you by the relevant provider. Please consult the data protection information of the relevant provider of the social network for further information on the extent, nature and purpose of such data processing and the rights and possible settings to safeguard your privacy. This can be found at the following addresses:
16. Usage of YouTube in extended data protection mode
If you do not wish to receive any user-based advertising, you can disable the display of advertising using Google's Ads Settings.
17. Use of Google Maps
You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or refuse all cookies. We should like to point out that you may then not be able to use all functions of this website.
19. Website analysis
We use various services, which are listed below, for the purposes of analysis and optimisation of our website. This allows us, for example, to analyse how many users visit our site, what information is most in demand, or how users locate offers. The data we collect includes the Internet page from which a data subject accessed a web page ("referrer"), the subpages of the Internet site which were accessed, or how often and the length of time during which a subpage was viewed. This helps us to make our offers user-friendly and to improve them. The data collected here is not used to personally identify individual users. The data collected is anonymous, or at least pseudonymous. The legal basis for this is Art. 6 para. 1 f GDPR.
This website employs the services of etracker GmbH from Hamburg, Germany (www.etracker.com) for the analysis of usage data. This involves cookies, which permit statistical analysis of the use of this website by visitors to it and the display of usage-related content or advertising. Cookies are small text files which are stored by the Internet browser on the user's terminal device. etracker cookies do not include any information that could identify a user.
The data generated with etracker is processed and stored by etracker at the request of the provider of this website solely in Germany and is thus subject to stringent German and European data protection laws and standards. etracker has been independently inspected and certified in this regard and awarded the data protection seal of quality ePrivacyseal.
The data is processed on the legal basis of Art. 6 para .1 point f (legitimate interest) of the European Union General Data Protection Regulation (EU GDPR). Our legitimate interest lies in the optimisation of our online offer and our website. As the privacy of our visitors is very important to us, etracker anonymises the IP address as early as possible and converts login or device IDs into a unique key, which cannot however be associated with any specific person. etracker does not use it for any other purpose, combine it with other data or pass it on to third parties. You can object to the above data processing at any time, provided it is related to your person. Your objection will have no detrimental consequences for you.
Further information on data protection with etracker can be found here.
We have taken extensive technical and operational precautions to protect your data from accidental or wilful manipulation, loss, destruction or access by unauthorised persons. Your data is stored in a secure operating environment, which is not accessible to the general public. We moreover regularly review our security procedures and update them according to technological progress. Should you wish to get in touch with us by e-mail, we should however like to remind you that the confidentiality of the information transmitted is not guaranteed. The content of unencrypted e-mails can be viewed by third parties. We therefore recommend that you only send us confidential information either by post or following encryption.
21. Amendments to privacy statement
We reserve the right to amend or adapt this privacy statement at any time subject to the data protection regulations applicable at that time.
As at: October 2018