Data protection

MS-Schramberg considers the protection of your personal data to be extremely important. The observance of and compliance with legal regulations regarding data protection and security are a matter of course for us. All details regarding your identity, such as title, first name, last name, address, phone number, fax, e-mail address, IP address, etc., are considered personal data. We would like to inform you about when we collect what personal data of yours and how we use it.

We have taken technical and organisational measures to ensure that both we and our service providers observe regulations regarding data protection. Your data is protected within the scope of the legal regulations of the EU General Data Protection Regulation and the Federal Data Protection Act.

We collect, store and use your personal data to provide you with access to certain information and to communicate with you. In the following, you’ll find information about what data is collected when you visit

and how it is used.

If you have questions or concerns regarding data protection, please contact our external data protection officer, Dr Rainer Harwardt of MS-Schramberg GmbH & Co. KG via e-mail at DATENSCHUTZ@MS-SCHRAMBERG.DE or by post at Datenschutzbeauftragter, MS-Schramberg GmbH & Co. KG, Max-Planck-Str. 15, 78713 Schramberg-Sulgen, Germany.

Data Collection and processing

By transmitting your personal data to us, you agree that your data will be collected, processed and used in accordance with this privacy statement. This is done in the following ways:

Website access

Every time you access our homepage or a file on our homepage, this is logged. Storing this data serves internal system-related purposes. What is logged: Date and time of access, the requested URL, the protocol used for access (e.g. http/1.1), origin, or the page from which access originates (e.g. Google), and the caller’s user agent (information on browser, e-mail program, etc.). The IP address will be logged for security reasons. This log is only accessed in the event of security breaches related to criminal tracking; data will be stored for 4 weeks. No personal user profiles are generated!

The legal basis for the processing of this data is our legitimate interest in accordance with Art. 6 (1) (f) GDPR regarding the security of our website.

Transmitting information

Contact form

When you contact us through our website, we collect various personal information from you through our contact form. Required fields that allow us to meaningfully process your request with the minimum data needed are: First name, last name, e-mail address, post code, and the message itself. Providing a phone number or the name of your company is voluntary. An unencrypted e-mail with the data you provided will be generated via an application with temporary storage, which you can transmit to us by clicking Submit. This cache will be deleted after 90 days.

Your inquiry is processed on the basis of Art. 6 (1) (a) GDPR with your consent through the voluntary provision of your information.

Cookies

The websites use “cookies” in several places. They serve to make our websites more secure, user-friendly, and effective. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are called “session cookies”. They are automatically deleted at the end of your visit. Cookies do not cause damage to your computer and do not contain viruses.

We use a so-called cookie consent, which appears as a banner when you access our website (if you have not already changed the settings). You can find additional information at the bottom of our privacy statement along with a list and explanation of the cookies we may use.

The legal basis in the case of so-called necessary cookies, which are required for the functionality of the website, is our legitimate interest in accordance with Art. 6 (1) (f) GDPR. In the case of additional cookies that require consent (which you have to activate in the cookie consent banner), the processing is done on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

iFrames

An iFrame is an HTML element that makes it possible to embed another HTML page within a website. It acts as a container that displays the content of another web page in a small window on the page. iFrames are used to integrate external content such as videos, maps or other web pages into a website without the user having to leave the page. We use iFrames (location marketing tool) from FAMIGO GmbH, In der Spöck 10, 77656 Offenburg ("FAMIGO") on our website.

These iFrames are only used to enable the provision and display of content such as graphics from FAMIGO. For this purpose, FAMIGO collects the following log files: browser type and browser version, operating system used, referrer URL, host name of the accessing computer, time of the server request. The log files are stored for a period of 90 days. Any use for other purposes is excluded. The database and the cloud solution are hosted in secure data centers in Germany. An AV contract has been concluded with FAMIGO. The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. f GDPR. .

Use of web analysis programs

Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses "cookies", text files that are stored on your computer and make it possible to analyse your use of the website. The information generated by the cookie concerning your use of this website is generally transmitted to a Google server in the USA and stored there. If IP anonymisation is activated on this website, however, your IP address will be truncated in advance by Google within member states of the European Union or other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google uses this information to analyse your use of the website, compile reports concerning website activities for the website operators and render additional services linked with the use of the website and the Internet on behalf of the website’s operator. The IP address transmitted from your browser within the scope of Google Analytics will not be conflated with other Google data.

In order to comply with the requirements of GDPR, the use of Google Analytics requires your express consent, which you can provide in the cookie consent banner that appears when you access our website. Otherwise, Google Analytics is deactivated by default.

For more information about the terms and conditions of use and data protection, please refer to HTTP://WWW.GOOGLE.COM/ANALYTICS/TERMS/DE.HTML or HTTPS://WWW.GOOGLE.DE/INTL/DE/POLICIES/.

Please note that Google Analytics is extended by the code “gat._anonymizeIp();” on this website, which guarantees the anonymous collection of IP addresses (“IP masking”).

Use of web-based services

Google Maps

We would like to use the Google Maps product from Google Inc. on our website to display maps. No cookie is set for this purpose. The legal basis for its use is our legitimate interest in making it easier for you to navigate to us. The integration takes place as a so-called iFrame, so there is no interaction with the rest of the document However, if you interact with the map (e.g. when using the route planner), your location coordinates or the start address you provided will be used. In this case, this automatically collected data is also processed by Google Inc, its representatives and third parties. The terms of use of Google Maps can be found Terms of use for Google Maps HTTP://WWW.GOOGLE.COM/INTL/DE_EN/HELP/TERMS_MAPS.HTML

NEWSLETTER

On our website you can subscribe to an email newsletter. In addition to voluntary details in the commensurate form, we also process your email address, title, first name and surname. These details are required to send you the newsletter and address you personally.

Newsletter content encompasses general information about our company, products and services as well as other information relating to our company.

You may unsubscribe from the newsletter at any time. A link to unsubscribe is contained in every newsletter email.

To send you our newsletter we require your consent. We acquire this in two steps via the so-called double opt-in procedure. You 'apply' for delivery of the newsletter and we will then send you a confirmation email. You must actively confirm this email to subsequently declare your consent to receive the newsletter. Only then will you be added to the newsletter mailing list. To comply with statutory requirements in relation to the registration confirmation, we log the date and time of registration and deregistration as well as the IP address used. Storage of this information serves our legitimate interests to protect against claims and as evidence of the legal conformity in terms of mailing the newsletter.

In accordance with Section 6 (1) (f) GDPR in conjunction with Section 7 (3) of the German Unfair Competition Act (UWG), the newsletter can also be sent on the basis of a legitimate interest within the meaning of direct marketing within the scope of an existing business relationship. In this case, you can object to any further receipt of the newsletter at any time, whereby at that point you will be expressly notified of such!

In the case of new customers, the processing is done on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

To analyse and optimise the popularity of our newsletter emails, we log when the emails are opened and links clicked (so-called newsletter tracking). This user analysis is carried out on the basis of balanced interests. You are not afforded a separate right to object to this processing; but rather may do so by unsubscribing from the newsletter, i.e. revoke your consent or object to our legitimate interest.

Use of social media plug-ins

We use social media plug-ins in part based on your consent in accordance with Art. 6 (1) (a) GDPR and in part on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR. You can select your preferences in the cookie consent banner. In accordance with Art. 6 (1) (f) GDPR, the plug-ins of Xing, LinkedIn and Instagram are used on the basis of our legitimate interest regarding our public image and advertising as well as that of our products.

Facebook
We are represented on the social network Facebook, Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA (hereinafter referred to as "Facebook"), by operating a so-called fanpage. Via this page, you can get contact us directly and receive information on current events at MS-Schramberg.

As operators, we receive data from Facebook via this page, which includes personal data. As described below, we use and/or process these so-called "Facebook Insights" by invoking our legitimate interests in accordance with Art. 6 (1) (f) GDPR. For example, we are able to access different types of information from Facebook, such as:

  • Number of page views
  • "Like" information
  • Page activities
  • Video views
  • Reach of posts
  • Comments
  • Shared content
  • Share of male/female
  • Origin related to country and city
  • Language
  • Views
  • Clicks

We use this data to optimise our own posts. For example, we can find out which types of content are not popular among the desired target audiences and can then decide to leave them out. In addition, we will use the analysis of "Like" data regarding our posts in order to invite those "liking" the post to follow our page ("Like" information for the fanpage as a whole).

Furthermore, the aforementioned data will tell us what types of content are most often interacted with on which day and at what time. We use this information to optimise the times at which we publish our posts.

Article 26 GDPR governs the joint responsibility – in this case between Facebook and us – with regard to protecting your personal data. Facebook has published a contract that governs the aforementioned joint responsibility. The company calls this contract the "Page Controller Addendum". You can find it here: WWW.FACEBOOK.COM/LEGAL/TERMS/PAGE_CONTROLLER_ADDENDUM

Xing
We use the services of XING. The provider is New York SE, Dammtorstraße 30, 20354 Hamburg, Germany, Tel.: +49 40 419 131-0, Fax: +49 40 419 131-11, E-mail: info@xing.com.

As part of our use of the services of XING, the operator of XING will know that you have accessed our website if you are logged in to XING at the same time. XING will collect this information and assign it to your XING account.

If you want to prevent this link to your XING account, then you can do so by logging out of your XING account prior to accessing our XING page.

XING will also process your data for its own purposes. This includes so-called tracking. The data of users and visitors will be collected via cookies, pixels and other tracking technologies. Tracking helps XING offer and ensure the security of its service, and measure and optimise advertisements. As a user, it is possible to use cookie consent to prevent or allow certain types of tracking. In addition, information made available, such as address or list uploads or the participation in events (offered through XING), is stored. You can find details on how XING will process your data here: DATA PROTECTION AT XING

YouTube
On our website, we use the video platform YouTube, operated by YouTube LLC, 901 Cherry Ave. San Bruno, CA 94066, USA ("YouTube"). YouTube is a platform that enables the rendering of audio and video files. If you visit a page on our website, the integrated YouTube player there will establish a connection to YouTube to ensure the technical transmission of the video or audio file. Data will be transmitted to YouTube when this connection is established. Please note that we do not receive any information about the content of the data transmitted or its use by YouTube. Please read up on how your data is handled by YouTube, as well as your rights related to this and settings options for protecting your privacy, on YouTube’s website.

This website contains at least one plug-in of YouTube, which is owned by Google Inc. and based in San Bruno/California, USA. For the embedding of our YouTube videos, we have activated the expanded data protection mode on the YouTube page. In this case, YouTube will not store any information regarding your visit to our website unless the visitor views the video. This is indicated by the link of the embed code. "www.youtube.com" becomes "WWW.YOUTUBE-NOCOOKIE.COM". Otherwise, accessing the pages can lead to a link to YouTube and the DoubleClick network (tracking cookies). We have no influence on how the data is processed further after you click on the link. However, we are aware that we have a shared responsibility as provider. That is why you can direct any possible inquiries to us.

You can find additional information on the collection and use of your data by YouTube in its data protection notice at WWW.YOUTUBE.COM.

Instagram
Our website uses social plug-ins (“plug-ins”) for Instagram, which is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). Plug-ins are marked with the Instagram logo or with an “Instagram camera.”

If you visit a page of our website that contains one of these plug-ins, your browser will establish a direct connection to Instagram’s servers. The contents of the Instagram plug-in will be transmitted directly to your browser and integrated into the website. This integration will provide Instagram with the information that your browser visited the corresponding page on our website, even if you do not have an Instagram profile or are not logged into Instagram. This information (including your IP address) will be transmitted directly from your browser to an Instagram server in the USA and stored there.

If you are logged into Instagram, Instagram can immediately match your visit to our website with your Instagram account. If you interact with the plug-ins, for example by clicking the “Instagram” button, this information will likewise be transmitted directly to an Instagram server and stored there. The information will also be published on your Instagram account and displayed to your contacts there.

The purpose and extent of data collection and further processing and use of data by Instagram, as well as your rights related to this and settings options to protect your privacy, can be found in Instagram's privacy statement: HELP.INSTAGRAM.COM/155833707900388/

If you do not want Instagram to match the data collected on our website directly with your Instagram account, you will need to log out of Instagram before visiting our website. You can also prevent the Instagram plug-in from loading entirely by using add-ons for your browser, such as the “NoScript” script blocker (http://noscript.net/).

LinkedIn
We use the services of the LinkedIn Corporation. LinkedIn is an Internet-based social network that allows its users to network with existing and new business contacts. LinkedIn is operated by the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible for privacy protection matters outside the US.

As part of our use of the services of LinkedIn, LinkedIn will know that you have accessed our website if you are logged in to LinkedIn at the same time. This information will be collected by LinkedIn and assigned to the respective LinkedIn account of the data subject by LinkedIn.

If you do not want this information to be used by LinkedIn, then you can prevent its use by logging out of your LinkedIn account prior to accessing our LinkedIn page.

At HTTPS://WWW.LINKEDIN.COM/PSETTINGS/GUEST-CONTROLS, LinkedIn offers the option of unsubscribing from e-mails, text messages and targeted ads as well as managing ad settings.

In addition, LinkedIn uses partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame that may place cookies. These cookies can be declined at HTTPS://WWW.LINKEDIN.COM/LEGAL/COOKIE-POLICY. The current privacy provisions of LinkedIn can be viewed at HTTPS://WWW.LINKEDIN.COM/LEGAL/PRIVACY-POLICY. The cookie guideline of LinkedIn can be viewed at HTTPS://WWW.LINKEDIN.COM/LEGAL/COOKIE-POLICY.

TikTok
The social media app TikTok is an international video portal. It serves us as a platform to present ourselves, e.g. for recruiting new employees.

For permanent residents of Germany and Austria, TikTok is offered by:

TikTok Technology Limited
10 Earlsfort Terrace
Dublin, D02 T380
Ireland

The privacy statement of TikTok is the basis on which TikTok processes all data that is collected from TikTok users or made available by TikTok users: HTTPS://WWW.TIKTOK.COM/LEGAL/PRIVACY-POLICY?LANG=DE#SECTION-1. In addition, TikTok notes that it has special conditions for users between the ages of 13-18: If you are between the ages of 13 and 18, we have created a separate summary of our privacy statement. It explains what the privacy statement means for you. In the app, you can find this version under "privacy statement".

If you have consented to receive advertisements via the cookie content banner of TikTok, then TikTok will use your data in order to display personalised advertisements.

Legal basis
The personalised ads displayed by TikTok are based on your consent (Art. 6 (1) (a) GDPR) via the cookie consent. In addition, TikTok processes the data of registered users on the basis of a contract (Art. 6 (1) (b) GDPR), as a result of balanced interests (Art. 6 (1) (f) GDPR), e.g. for analysing the reach and/or for meeting legal obligations (Art. 6 (1) (c) GDPR). Users can revoke their consent and object to a processing based on balanced interests in accordance with Art. 21 GDPR. You can find details in the privacy statement and terms of use of TikTok (see the link below).

Purpose
TikTok processes personal data for different purposes, such as providing its services, notifying users about changes to the services, for user support, to allow users to share user contents with other users, for developing new services and for complying with legal obligations.

The user data TikTok collects includes: Profile data, user content and user data, location information, information about respective contacts/friends.

Duration of the storag
TikTok stores the data of its users for as long as it is required to make its services available to the user, to meet its contractual obligations and to exercise its rights in connection with the respective information. If the user information is not needed to provide the service, then TikTok will only store the user data as long as the storage of the data has a legitimate business interest.

If a TikTok user asks for their account to be deleted, it will first be deactivated for 30 days. The account will then be deleted. As the same time, the personal data of the user regarding the in-app messaging function will also be deleted. The messages that you have sent to other users of the TikTok service will continue to be stored on their devices.

Storage location
The personal data TikTok collects from you is sent to a destination outside of the European Economic Area (EEA) and stored there.

If this personal data is sent to countries outside of the EEA, then this is done within the framework of sample contracts of the European Commission regarding the transmission of personal data to third countries (e.g. standard contractual clauses) in accordance with the decision of the commission 2004/915/EC or 2010/87/EU (depending on the case) or in accordance with a fallback mechanism authorised by EU law. To receive a copy of the standard contractual clauses, please complete the form at HTTPS://WWW.TIKTOK.COM/LEGAL/REPORT/PRIVACY.

Revocation, objection and the end of processing
TikTok offers its users the option to control and manage their own user data (personal data) via the settings. In addition, TikTok offers its users automated information services that let them know how their data is processed. In accordance with legal requirements, you also have the right to deletion and correction of the data, can object to the use of the data or limit its use. In addition, you can revoke your declared consent at any time.

Information related to children
TikTok is not intended for children under the age of 13. If you believe that we are in possession of personal data concerning a child below that age, or if we have collected such data from a child below this age, then please fill out the form at HTTPS://WWW.TIKTOK.COM/LEGAL/REPORT/PRIVACY.

Supplementary note
Please note that the terms of use and the privacy statement of TikTok may change at any time. Therefore, please check regularly whether the texts are up to date. MS Schramberg is not responsible for ensuring that the aforementioned information regarding the terms of use and privacy statement of TikTok is up-to-date, accurate or complete. In accordance with Art. 12 ff GDPR, the data protection information provided above serves the purpose of showing the scope in which MS Schramberg uses the services of TikTok by embedding videos in one of our websites or the way in which our employees use TikTok on behalf of our customers.

Terms of use of TikTok
https://www.tiktok.com/legal/terms-of-service-eea?lang=de

Privacy statement:
https://www.tiktok.com/legal/privacy-policy-eea?lang=de

Questions about the privacy statement of TikTok:
TikTok has provided a contact form, a link for which is included in the privacy statement, for users who have questions about the privacy statement of TikTok or who want to contact the data protection officer of TikTok.

Miscellaneous
We do not use automated processes that could lead to reaching an automated decision regarding your application or that would profile you.

USE AND TRANSFER OF PERSONAL DATA

If you have given us personal data, we will only use this to respond to your queries, for technical administration, and for marketing if you have consented to this. Your personal data will only be shared with or otherwise transmitted to third parties where necessary for the purposes of processing contracts – especially forwarding order data to suppliers – where necessary for accounting purposes, we are legally obliged or you have given your prior consent.

You have the right to revoke your consent at any time with effect for the future.

Stored personal data will be deleted if you revoke your consent to storage, if it is no longer necessary for you to receive information about the fulfilment of the purpose for which storage is necessary, i.e. the process has been handled and no statutory deletion period applies, or if the storage of your data is not permitted for other legal reasons. If data cannot be deleted, you will be blocked from further processing until the statutory deletion period has lapsed.

LINKS TO OTHER WEBSITES

The district court of Hamburg ruled on 12 May 1998 – under file number 312 O 85/98 – that a company/individual can adopt the contents of a third-party website as their own through a link to that site unless the company/individual clearly disassociates themselves from this linked content. For this reason, MS-Schramberg GmbH & Co.KG hereby expressly disassociates itself from the contents of all linked websites. MS-Schramberg has no influence whatsoever over the contents of linked sites and does not accept any liability whatsoever for their currency, accuracy, completeness, quality or future design. The operator bears sole responsibility for the contents of linked sites.

Please also observe the respective third-party privacy statements for the pages to which the link directs you. This privacy statement only applies to the website of MS-Schramberg GmbH & Co.KG.

YOUR RIGHTS AS A DATA SUBJECT

As detailed below, under applicable data protection law you are granted comprehensive data subject rights vis-à-vis the controller with regard to the processing of your data (right of access and intervention):

  • Right of access in accordance with Art. 15 GDPR: as the subject of the data processing, you have the right to request provision without charge of information regarding your personal data stored on our part.
  • In addition, where the statutory requirements are met, you have the right to rectification (Art 16 GDPR), erasure (Art. 17 GDPR), restriction of data processing (Art. 18 GDPR) and data portability (Art. 20 GDPR).
  • Right to object in accordance with Art. 21 GDPR: If the processing of data is based on Art. 6 (1) (f) GDPR (data processing on the basis of a legitimate interest), you, as the data subject and for reasons arising from your special circumstances, have the right to object to the processing of your personal data at any time. The controller will then no longer process the personal data unless they can provide compelling legitimate grounds for processing the data that outweigh the interests, rights and liberties of the data subject or if the processing serves to establish, exercise or defend legal claims.
  • To the extent that data processing is based on consent in accordance with Art. 6 (1) (a) or Art. 9 (2) (a) GDPR, you may withdraw your consent at any time with future effect. The revocation does not affect the legality of the processing of your data up to the point of the revocation.
  • If you consider that the processing of personal data relating to you infringes GDPR provisions, you have the right to lodge a complaint with a commensurately responsible data protection supervisory authority (Art.77 GDPR).

If you believe that the processing of your personal information violates the General Data Protection Regulation, you have the right to contact the respective data protection supervisory authorities of your jurisdiction. In the case of Baden-Württemberg, this is the

State Data Protection and Freedom of Information Officer for Baden-Württemberg

Street address: Lautenschlagerstraße 20, 70173 Stuttgart
Postal address: Postfach 10 29 32, 70025 Stuttgart
Tel.: 0711/615541-0, FAX: 0711/615541-15,
E-mail: POSTSTELLE@LFDI.BWL.DE

SECURITY NOTICE

We endeavour to take every technical and organisational measure possible to store your data in such a way that it cannot be accessed by third parties. We cannot guarantee full data security when communicating through unencrypted e-mails, so we recommend sending confidential information by post.

Privacy statement from: 3/8/2021

Privacy policy for online applications

 

Controller

MS-Schramberg GmbH & Co. KG

HR department
Max-Planck-Str. 15
D-78713 Schramberg-Sulgen
E-Mail: BEWERBUNG@MS-SCHRAMBERG.DE

Data collection

Im Zuge Ihrer Online-Bewerbung werden von uns die nachfolgend aufgezählten persönlichen Bewerbungsdaten von Ihnen erhoben und verarbeitet:

  • Salutation
  • Name, first name
  • Address (House number / street / town or city / ZIP)
  • Email
  • Preferred job or position
  • Details of how you became aware of the job vacancy
  • Apllication documents (cover letter, CV, references, certifications, etc.)

Voluntary information (optional)

  • Title
  • Country
  • Nationality
  • Date of birth
  • Country / place of birth
  • Telephone and mobile number

PURPOSE OF THE DATA COLLECTION/DISSEMINATION

The sole purpose of collecting and processing your personal application information is to fill positions within our corporate group. Processing the data serves primarily to help select and establish the suitability of applicants, insofar as this is necessary to facilitate decision-making with regard to establishing an employment relationship. Your data will only be shared with internal offices and specialist departments responsible for the specific application procedure, unless you allow us (using our application form) to consider your application for other fitting positions.

Please note that the data you are transmitting may be used for statistics on the (online) application process. These statistics are compiled solely for internal purposes and the information is always used in an anonymous form and never personalised.

Legal basis

Your data are collected/processed in accordance with Art. 88 GDPR in combination with Section 26 of the German Data Protection Act (BDSG) within the scope of initiation/establishment of an employment relationship.

Processing of special categories of personal data (Art. 9 (1) GDPR) may be required, for example, where details of severe disability have been provided. Any such processing is performed on the legal basis pursuant to Art. 6 (1) (c) GDPR in combination with Section 26 (3) BDSG

With your consent in accordance with Art. 6 (1) (a) GDPR in respect of further desired storage of your data for future job vacancies.

For analysis for statistical purposes and, if necessary, for the defence of legal claims pursuant to Art. 6 (1) (f) GDPR.

DATA RETENTION PERIOD OF APPLICATION INFORMATION

Your personal application information will generally be deleted four months after the application process has ended. This does not apply if statutory provisions prevent the deletion, if the continued retention is needed for the purpose of collecting evidence or if you have expressly agreed to a longer retention period.

RETENTION FOR FUTURE JOB OPENINGS

If we are unable to offer you a current vacant position, but believe on the basis of your profile that your application may be of interest for future job vacancies, we will store your application information for up to three years provided you have expressly consented to the information being retained and used in this way. With your permission, we will compare your information to the requirements for job openings and contact you if there is a suitable opening. 

Data security

In order to protect the data collected as part of your application from manipulation and unauthorised access, we have taken various technical and organisational precautions. In particular, the transmission of your online application will be encrypted according to the accepted current state of the art.

Rights as a data subject

As detailed below, under applicable data protection law you are granted comprehensive data subject rights vis-à-vis the controller with regard to the processing of your data (right of access and intervention):

  • Right of access in accordance with Art. 15 GDPR: as the subject of the data processing, you have the right to request provision without charge of information regarding your personal data stored on our part.
  • In addition, where the statutory requirements are met, you have the right to rectification (Art 16 GDPR), erasure (Art. 17 GDPR), restriction of data processing (Art. 18 GDPR) and data portability (Art. 20 GDPR).
  • Insofar as the data processing is based on Art. 6 (1) (f) (data processing on the basis of a legitimate interest), you also have the right to object in accordance with Art. 21 GDPR. Should you object to the data processing, your data will not be processed in future, save for where the controller is able to demonstrate compelling legitimate grounds for continued processing that override your interests, rights and freedoms, or insofar as processing serves to establish, exercise or defend legal claims.
  • To the extent that data processing is based on consent in accordance with Art. 6 (1) (a) or Art. 9 (2) (a) GDPR, you may withdraw your consent at any time with future effect. Please note that withdrawal has future effect and will not apply to processing carried out prior to withdrawal, meaning that any such withdrawal of consent shall not affect the lawfulness of processing of your data prior to withdrawal. Please also note that to comply with statutory provisions we may be required to hold specific data on file for a certain period.
  • If you consider that the processing of personal data relating to you infringes GDPR provisions, you have the right to lodge a complaint with a commensurately responsible data protection supervisory authority (Art.77 GDPR).

Should you have any questions about the collection, processing or use of your personal information, or regarding the access, rectification or erasure of data or withdrawal of consent granted, please contact the MS-Schramberg GmbH & Co. KG external data protection officer, Dr. Rainer Harwardt, at DATENSCHUTZ@MS-SCHRAMBERG.DE, or write to the Data Protection Officer, MS-Schramberg GmbH & Co. KG, Max-Planck-Str. 15, D-78713 Schramberg-Sulgen, Germany.

ADDITIONAL INFORMATION ON DATA PROCESSING

  • Provision of personal data within the scope of the application process is not a legal or contractual requirement. Accordingly, you are not obliged to provide personal data information. However, please note that such information is required to facilitate decision-making with regard to a job application or the conclusion of a contract of employment with us. Insofar as you do not provide us with your personal data, we will be unable to take any decision regarding the establishment of an employment relationship. We recommend that within the scope of your application you only provide the personal data necessary for processing the application.
  • Data will not be transmitted to third-countries (outside the EU).
  • Automated decision-making, e.g. to select applicants on the basis of their qualifications, is not generally carried out.

For additional information, please also see our general PRIVACY POLICY for the MS-Schramberg website.

Privacy policy for the processing of customer and supplier data

 

Responsible party

MS-Schramberg GmbH & Co. KG
Max-Planck-Str. 15
D-78713 Schramberg-Sulgen
E-mail: INFO@MS-SCHRAMBERG.DE

Data collection

Customer and supplier data are processed in our merchandise management and contact management systems as part of our business relationships and/or their initiation, order processing and the associated processes, the sale and procurement of products and services, the illustration of the history of business processes and the documentation of business transactions (within the scope of quality management) as well as marketing activities. In addition, purchasing behaviour is evaluated for the purpose of market anal-yses and new developments within the product portfolio. No automated profiles are generated and there is no scoring of affected parties within the scope of the market analyses.

In the case of customers and suppliers, the following information of the respective contact person is pro-cessed:

  • Personal salutation
  • Title
  • Name
  • Contact information
  • E-Mail address
  • Phone / landline / mobile
  • Address
  • Area of responsibility, department

Legal basis

Your data are collected/processed in accordance with Art. 6 paragraph 1 lit. b) GDPR for the initiation of contracts or the performance of a contract within the scope of a business relationship and/or with Art. 6 paragraph 1 lit. a) GDPR with consent during the initial collection of the contact information of a contact person for the customer or supplier and/or in order to receive the newsletter.

Any possible consent to receive the newsletter can be revoked at any time. The consent for storing the information can only be revoked until the information is used for processing an order.

Recipient

Within our company, your data will be used and/or processed by the following departments: Sales, Pro-curement, Production, Construction, Shipping, Marketing, Controlling, Accounting and Project Manage-ment. It is possible that the required information will be transmitted to sales representatives in France and Italy if doing so is required for meeting contractual obligations.

The information will not be transmitted to countries outside of the EU or third countries.

RETENTION PERIOD OF CUSTOMER AND SUPPLIER DATA

In order to meet fiscal requirements, we will store those documents that are part of the business relation-ships and that are required for verification purposes or those subject to mandatory archiving requirements for a period of 10 years. In the case of paper documents, they will then be destroyed unless individual doc-uments are subject to further archiving requirements, e.g. those pertaining to guarantees.

The contact information of the contact person for a customer or supplier will be set to inactive ("limitation of processing") upon request.

Data security

In order to protect the data collected as part of our business relationship (or the initiation of such a business relationship) from manipulation and unauthorised access, we have taken various technical and organisa-tional precautions.

RIGHT TO INFORMATION AND REVOCATION

You have the right to learn what data is stored with us (right of access) and have inaccurate data corrected or deleted/blocked. Upon written request, we will be happy to provide you with information about the data stored that is related to you as an individual. You will receive a registered letter from us with the relevant documents. Please understand that we naturally must also verify you as the recipient – to protect your per-sonal data.

If you believe that the processing of your personal information violates the General Data Protection Regula-tion, you have the right to contact the respective data protection supervisory authorities of your jurisdiction. In the case of Baden-Württemberg, this is the:

State Data Protection and Freedom of Information Officer.

Street address: Königstrasse 10 a, 70173 Stuttgart
Postal address: Postfach 10 29 32, 70025 Stuttgart
Tel.: 0711/615541-0, FAX: 0711/615541-15,
E-mail: POSTSTELLE@LFDI.BWL.DE

Data protection information video surveillance in the company

 

ANGABEN NACH ART. 13 DSGVO - VIDEOÜBERWACHUNG UNTERNEHMEN

Stand: 01.04.2022

VERANTWORTLICHER FÜR DIE DATENVERARBEITUNG

MS-Schramberg GmbH & Co. KG
Max-Planck-Straße 15 | D-78713 Schramberg
Tel.: +49 7422 519-0
E-Mail: info@ms-schramberg.de

DATENSCHUTZBEAUFTRAGTER

Unseren Datenschutzbeauftragten erreichen Sie per Post unter der o.g. Adresse mit dem Zusatz - Datenschutzbeauftragter - oder per E-Mail unter: Datenschutz@ms-schramberg.de.

Zweckbestimmung der Datenerhebung, Datenverarbeitung, Datennutzung, Rechtsgrundlage

Zum Zwecke der Zutrittskontrolle, ist auf dem Gelände der MS-Schramberg eine Videoüberwachung installiert. Die Datenverarbeitung erfolgt aufgrund von berechtigtem Interesse. Rechtsgrundlage für die Verarbeitung der Daten ist somit Artikel 6, Absatz 1 lit. f der Datenschutz-Grundverordnung. Das berechtigte Interesse liegt in der Wahrnehmung des Hausrechtes, der Sicherheit unserer Gäste und Mitarbeiter, der Verhinderung von Straftaten (insb. Diebstahl, Einbruch, Überfälle, Betrug, Sachbeschädigungen und Vandalismus), Schutz von Eigentum und Vermögen, dem Schutz von Mitarbeitern, Kunden und Besuchern der MS-Schramberg.

BESCHREIBUNG DER BETROFFENEN PERSONENGRUPPEN UND DER INVOLVIERTEN DATEN ODER DATENKATEGORIEN

 

Personengruppe Daten / Datenkategorie
Intern: Beschäftigte Im Fall einer Aufzeichnung Bilddaten
Extern: Kunden, Besucher, Lieferanten / Dienstleister Im Fall einer Aufzeichnung Bilddaten

 

EMPFÄNGER ODER KATEGORIE VON EMPFÄNGERN, DENEN DIESE DATEN MITGETEILT WERDEN KÖNNEN

 

Intern Geschäftsführer, IT-Abteilung, Betriebsrat, Datenschutz-Manager, Datenschutzbeauftragte
Extern Keine, ansonsten nur gesetzliche Organe, wenn dies zur Aufklärung einer Straftat notwendig ist.
Sonstiges / Bemerkungen Es erfolgt keine Datenübermittlung in Drittstaaten (außerhalb der EU)

 

REGELFRISTEN FÜR DIE LÖSCHUNG DER DATEN UND PRÜFUNG

 

Speicherdauer der Daten (Lebenszyklus, Aufbewahrung) Im Falle einer Aufzeichnung werden die Daten maximal 5 Tage gespeichert und dann automatisch gelöscht bzw. überschrieben. Eine längere Speicherdauer erfolgt nur, sofern dies zur Durchsetzung von Rechtsansprüchen oder zur Verfolgung von Straftaten im konkreten Einzelfall erforderlich ist. Eine Datenübermittlung an Dritte (z. B. Polizei) erfolgt nur, wenn dies zur Aufklärung einer Straftat erforderlich ist.

 

HINWEISE AUF DIE RECHTE DER BETROFFENEN

Die betroffene Person hat das Recht, von dem Verantwortlichen eine Bestätigung darüber zu verlangen, ob sie betreffende personenbezogene Daten verarbeitet werden; ist dies der Fall, so hat sie ein Recht auf Auskunft über diese personenbezogenen Daten und auf die in Art. 15 DSGVO im einzelnen aufgeführten Informationen.

Die betroffene Person hat das Recht, von dem Verantwortlichen unverzüglich die Berichtigung sie betreffender unrichtiger personenbezogener Daten und ggf. die Vervollständigung unvollständiger personenbezogener Daten zu verlangen (Art. 16 DSGVO).

Die betroffene Person hat das Recht, von dem Verantwortlichen zu verlangen, dass sie betreffende personenbezogene Daten unverzüglich gelöscht werden, sofern einer der in Art. 17 DSGVO im einzelnen aufgeführten Gründe zutrifft, z. B. wenn die Daten für die verfolgten Zwecke nicht mehr benötigt werden (Recht auf Löschung).

Die betroffene Person hat das Recht, von dem Verantwortlichen die Einschränkung der Verarbeitung zu verlangen, wenn eine der in Art. 18 DSGVO aufgeführten Voraussetzungen gegeben ist, z. B. wenn die betroffene Person Widerspruch gegen die Verarbeitung eingelegt hat, für die Dauer der Prüfung durch den Verantwortlichen.

Die betroffene Person hat das Recht, aus Gründen, die sich aus ihrer besonderen Situation ergeben, jederzeit gegen die Verarbeitung sie betreffender personenbezogener Daten Widerspruch einzulegen. Der Verantwortliche verarbeitet die personenbezogenen Daten dann nicht mehr, es sei denn, er kann zwingende schutzwürdige Gründe für die Verarbeitung nachweisen, die die Interessen, Rechte und Freiheiten der betroffenen Person überwiegen, oder die Verarbeitung dient der Geltendmachung, Ausübung oder Verteidigung von Rechtsansprüchen (Art. 21 DSGVO).

Jede betroffene Person hat unbeschadet eines anderweitigen verwaltungsrechtlichen oder gerichtlichen Rechtsbehelfs das Recht auf Beschwerde bei einer Aufsichtsbehörde, wenn die betroffene Person der Ansicht ist, dass die Verarbeitung der sie betreffenden personenbezogenen Daten gegen die DSGVO verstößt (Art. 77 DSGVO). Die betroffene Person kann dieses Recht bei einer Aufsichtsbehörde in dem Mitgliedstaat ihres Aufenthaltsorts, ihres Arbeitsplatzes oder des Orts des mutmaßlichen Verstoßes geltend machen. Im Falle Baden-Württembergs ist dies der Landesbeauftragte für den Datenschutz und die Informationsfreiheit, Königstraße 10 a, 70173 Stuttgart.

Nutzung der SalesViewer®-Technologie

Auf dieser Webseite werden mit der SalesViewer®-Technologie der SalesViewer® GmbH auf Grundlage berechtigter Interessen des Webseitenbetreibers (Art. 6 Abs.1 lit.f DSGVO) Daten zu Marketing-, Marktforschungs- und Optimierungszwecken gesammelt und gespeichert.

Hierzu wird ein javascript-basierter Code eingesetzt, der zur Erhebung unternehmensbezogener Daten und der entsprechenden Nutzung dient. Die mit dieser Technologie erhobenen Daten werden über eine nicht rückrechenbare Einwegfunktion (sog. Hashing) verschlüsselt. Die Daten werden unmittelbar pseudonymisiert und nicht dazu benutzt, den Besucher dieser Webseite persönlich zu identifizieren.

Die im Rahmen von SalesViewer® gespeicherten Daten werden gelöscht, sobald sie für ihre Zweckbestimmung nicht mehr erforderlich sind und der Löschung keine gesetzlichen Aufbewahrungspflichten entgegenstehen.

Der Datenerhebung und -speicherung kann jederzeit mit Wirkung für die Zukunft widersprochen werden, indem Sie bitte diesen Link https://www.salesviewer.com/opt-out anklicken, um die Erfassung durch SalesViewer® innerhalb dieser Webseite zukünftig zu verhindern. Dabei wird ein Opt-out-Cookie für diese Webseite auf Ihrem Gerät abgelegt. Löschen Sie Ihre Cookies in diesem Browser, müssen Sie diesen Link erneut anklicken.

Cookie declaration

Newsletter


Subscribe to our free service and stay up to date on current topics.