The protection of personal data and the responsible handling of information that you entrust us with are important and special concerns to us. SDA SE (SDA) processes personal data only in accordance with the legal regulations, the EU GDPR (GDPR) and the Bundesdatenschutzgesetz (BDSG, Federal Data Protection Act), in particular.
1. Data Controller and Data Protection Officer
The Data Controller within the meaning of the data privacy laws is SDA SE Open Industry Solutions, Neue Rabenstrasse 3, 20354 Hamburg, Germany, telephone + 49 40 33 44 25 06, email@example.com. Please refer to the Legal Notice for more details.
Contact details of our Data Protection Officer:
SDA SE Open Industry Solutions
Neue Rabenstrasse 3
2. Processing of your personal data
The subject matter of data protection are personal data, i.e. information which is related to an identified or identifiable person, such as name, address, email address and telephone number.
In general, the processing of personal data is not required for using this website. Data collection and data processing occurs, if you voluntarily supply us with your personal data. We will explain this to you in detail in paragraph 4.
The kind of data that we automatically collect when a user visits our website will be explained below in paragraph 3.
3. Automatic collection and processing of data when visiting the website
3.1. Data processing to enable the use of website
When you visit our website we will collect the required data to enable you to use the site (usage data). This includes your IP address and data regarding the start, end and subject matter of your use of the website as well as, if applicable, identification data (for example, your login details when logging into your personal area). Moreover, it also includes technical data submitted by your browser, such as browser type / browser version, previously visited website (referrer URL), screen resolution, operating system and, if applicable, information regarding your device (such as the type of device), etc. We process such usage data in our legitimate interest to provide and design this website in a way that it meets the demands (Art. 6 Paragraph. 1 S. 1 lit. f GDPR).
When you visit our website, information in the form of cookies might be placed on your computer. Cookies are small text files that are sent to your browser by a web server and are stored on the hard drive of your computer. This way the website will recognize you on your next visit and we will be able to ensure a better functionality of the website and to avoid, for example, that you have to log in repeatedly or to perform a web analysis (see paragraph 5.3).
|_ga, _gat, _gid, test_cookie||Google: statistics on website usage||Session|
|_op, _os, collect||Google Analytics||Session|
|-Ou, IDE||Google Analytics||1 year|
Most browsers are set in a way that they will accept cookies automatically. You can deactivate the storage of cookies in your browser and you can also delete them from your hard drive at any time. We would like to point out to you that without cookies you can use our online shop only to a limited extent. In particular, placing an order is not possible without cookies.
However, you can modify your browser settings to only block the storage of certain cookies (e.g. third-party cookies), for example if you want to disable web tracking. Further information about this can be found in the help section of your browser. More information about third-party cookies which will be stored or processed when visiting our website can be found in paragraph 3.3 and in the privacy policies of the providers listed there.
3.3. Pseudonymous user profiles for advertising and market research purposes (web tracking and web analysis)
For advertising and market research purposes and to make your user experience as comfortable as possible when using our website SDA uses web tracking systems where data related to the use of our website is stored in pseudonymous user profiles. This allows us to further develop our website and to adjust the content to your needs even better. The pseudonymous user profiles will not be merged with personal data.
You can object to the compiling of pseudonymous user profiles. To do so, you can either disable the placement of cookies in your browser (see paragraph 3.2) or you can install a browser plugin to protect your privacy which includes the option to prevent tracking - for example AdBlock, Ghostery or NoScript (please note the data privacy statements of the relevant plugin provider).
3.3.1. Google Analytics
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage for the website operator. Google will not associate your IP address transmitted by your browser as part of Google Analytics with any other data held by Google.
Furthermore, you can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed on to Google and the processing of such data by Google by downloading and installing the browser plugin available here: tools.google.com/dlpage/gaoptout. Alternatively, you can prevent data collection by Google Analytics by placing a so-called “anti-tracking cookie” on your computer. To do so, please use this link: Place anti-tracking cookie.
For more information on data protection at Google Analytics please visit https://www.google.de/intl/de/policies/.
3.4. Social networks and integrated YouTube videos
Our website includes links to social networks (for example Facebook, Instagram) as well as integrated videos provided by the streaming service YouTube. These social networks are exclusively operated by third parties. When you follow those links or play the videos, information may be transmitted to those third parties, for example your IP address, about you using our website and which link you clicked.
Please read the relevant data protection statements of the applicable operators to find out about the purpose and the scope of data collection through social networks as well as their further processing and use of your data and your relevant rights and setting options to protect your privacy. You will find those statements by following the links listed below:
Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA
Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA
Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA
YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA
4. Contact form
When you contact us by using the contact form, we will store and process your details (title, first and last name, email address, reference and the text of your message and, if applicable, your telephone number) to process your enquiry. The legal basis for this data processing is - depending on the subject matter of your message - the admissibility of such processing as part of a contract initiation, a contract or our legitimate interest in providing a contact form for general enquiries (Art. 6 Paragraph. 1 lit. b or f GDPR).
5. Google Maps
The contact form page includes a plugin which show a map provided by Google Maps. Google Maps is a web service to display interactive maps for the visual representation of geographic information. By using this service our location will be displayed to make it easier for you to find us and to provide directions.
Google Maps is operated by Google LLC. (hereinafter referred to as “Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. A connection is established between your browser and the Google servers, as if you were visiting the website of the Google search engine. If you are logged into your Google account, your data will be directly associated to your account. If you do not wish this data to be associated to your Google profile, you need to log out prior to activating the button. Google is responsible for any data processing performed by Google. There will be no tracking by Google on our website.
6. Transfer to third parties – recipients of personal data
Apart from that, we only transfer personal data to third parties if authorised by law or if you have given prior consent to such transfer. In case you have given consent, you may revoke this consent at any time, to be effective in the future. We will only transfer your data to government agencies as part of our legal obligations or based on a regulatory action or court decision and only to the extent that is permissible by data protection laws.
7. Transfer to non-EU countries
The analysis and web service provider Google (see 3.3) is certified in compliance with the EU-U.S. Privacy Shield and thus an adequate data protection level is ensured.
9. Data security
We have taken the necessary technical and organisational measures to protect the personal data provided by you against loss, damage, manipulation and unauthorised access.
Our staff and all people involved in data processing are obliged to comply with the GDPR, the BDSG and other data protection laws and to treat personal data as confidential. Our staff has been trained, accordingly. Both internal and external checks will ensure compliance with all data protection processes at SDA.
To protect the personal data of our users we use a secure online transmission method, the so-called “Secure Socket Layer” (SSL) transmission. You will recognize it by the “s” that has been added to the http:// in the URL (https://) and by the green, closed lock icon displayed in the browser. By clicking on the icon you will see information about the SSL certificate used. The SSL encryption ensures the secure and complete transmission of your data.
10. Your rights
The data privacy law grants you a number of rights with regard to data related to you as an individual (the so-called “rights of the data subject”). In general, those are
- the right to obtain information about personal data concerning you that are stored by us,
- the right to rectify inaccurate data,
- the right to erasure of data that may no longer be stored,
- the right to restrict data processing in certain cases,
- the right to object to processing of personal data if based on legitimate interests and on grounds relating to your particular situation, demonstrating compelling legitimate grounds which override the interests (Article 21, Paragraph 1 GDPR),
- the right to object to processing for the purposes of direct marketing (Article 21, Paragraph 2 GDPR),
- the right to data portability, meaning the right to have the personal data that you provided transmitted electronically to you or a third party, and
- the right to revoke any given consent, to be effective in the future.
Whether and insofar as those rights apply in individual cases and which conditions apply follows from the GDPR and the BDSG. Furthermore, you have the right to file a complaint with a supervisory authority for data protection. However, if you have any questions or complaints regarding data protection at SDA or would like to exercise your rights, we recommend to contact our Data Protection Officer first (see paragraph 1).
11. No automated individual decision-making
We do not use your personal data for automated individual decision-making within the meaning of Article 22, Paragraph 1 GDPR.
Effective: May 2018