Schiedrum on the subject of data protection

We appreciate your interest in our company and our products and services, and we want you to feel secure about the protection of your personal information.

By using our contact form (Web page: Contact), personal data about you will be saved. That includes your name, company data and your email address. These data are linked to your person. It is therefore our duty to inform you that that data is being collected and processed and what rights you have in that regard.

We ensure, that internally only those persons have access to that information, who absolutely need that access. Personal data will be treated confidentially and will not be made available to third parties.

You enter the data yourself. Therefore, you already know that data. In addition, logs of your usage are automatically created on the server. These are used to solve technical problems and to continuously improve the content presented on our websites.

1. Name and address of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

Schiedrum Hydraulik Nachfolge GmbH
Cruthovenerstr. 9
40231 Düsseldorf
Germany

You can contact our company data protection officer at:

Privacy Policybeauftragter der Schiedrum Hydraulik Nachfolge GmbH
Cruthovenerstr. 9
40231 Düsseldorf
Germany
E-Mail: privacy@schiedrum.com

Controller means the natural or legal person, which alone or jointly wotj others, determines the purpose and means of the processing of personal data (e.g. names, phone number, email addresses and such).

Further contact options can be found under the page Imprint.

2. General information on data processing

Scope of the processing of personal data

As a matter of principle, we only process the personal data of our users insofar as it is necessary to provide a functional website and our content and services. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in those cases in which prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is required to fulfill a contract to which the data subject is a party, Article 6 (1) (b) GDPR serves as the legal basis. That also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Article 6 (1) (c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 (1) (d) GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.

Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage no longer applies. Storage can also take place if that has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by one of the aforementioned norms expires, unless a necessity exists in relation to the further storage of the data for the arrangement of a contract or the fulfilment of a contract.

3. Provision of the website and creation of log files

Description and scope of data processing

Each time you visit our website, our service and applications automatically record data and information from the computer system of the visiting computer.

The following data are collected in that process:

• Information about the browser type and the version used
• The user's operating system
• The user's IP address (anonymized)
• Date and time of access
• Websites from which the user's system reached our website (referrer)
• Websites that are accessed by the user's system via our website

The data is also stored in the log files of our system. That data is not stored together with other personal data of the user.

Legal basis for data processing

The legal basis for the temporary storage of the data and the log files is Art. 6 (1) (f) GDPR.

Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer.

The storage in log files takes place in order to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

Our legitimate interest in data processing according to Art. 6 (1) (f) GDPR also lies in those purposes.

Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, that is the case when the respective session has ended.

In order to be able to recognize attack patterns, accesses to the server must be saved. As soon as that data is no longer needed, it will be deleted.

Opposition and removal option

The collection of the data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no possibility of objection on the part of the user.

4. Contact form and email contact

Description and scope of data processing

There is a contact form on our website that can be used to contact us electronically. If a user makes use of that option, the data entered in the input mask will be transmitted to us and saved. These data are:

• The given name
• The specified email address
• The specified company (optional)
• The specified phone number (optional)
• The composed message

The following data is also stored at the time of registration:

• Date and time of the submitted form

For the processing of the data, your consent is obtained as part of the sending process and reference is made to this data protection declaration.

In that context, the data will not be passed on to third parties. The data will only be used to process the conversation.

Legal basis for data processing

If the user has given his / her consent, the legal basis for processing the data is Article 6 (1) (a) GDPR.

The legal basis for the processing of the data that is transmitted in the course of sending an email is Article 6 (1) (f) GDPR. If the aim of the email contact is to conclude a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR.

Purpose of data processing

The processing of the personal data from the input mask serves us only to process the contact. If you contact us by e-mail, there is also the necessary legitimate interest in processing the data.

The personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

Duration of storage

The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those that were sent by e-mail, that is the case when the respective conversation with the user has ended. The conversation is ended, when it can be inferred from the circumstances, that the matter in question has been finally clarified.

Opposition and removal option

The user has the option to revoke his consent to the processing of personal data at any time. If the user contacts us by email, he can object to the storage of his personal data at any time. In such case, the conversation cannot be continued.

In that case, all personal data stored in the course of contacting us will be deleted.

5. Web analysis by Matomo

Scope of the processing of personal data

We use the open source software tool Matomo (formerly PIWIK) on our website to analyze the websites accessed by our users. The results of the analysis help us to find errors and optimize our website..

The software runs exclusively on the servers of Strato AG (https://www.strato.com/). The storage of the pseudo-anonymous data of the users only takes place there. Within our website system, data for the Matomo software can be transmitted via our hosting provider IONOS SE (https://www.ionos.com/). Corresponding contracts for commissioned data processing exist with Strato AG and IONOS SE in accordance with Article 28 GDPR.

If individual pages of our website are called up, the following data is transmitted and stored:

• Two bytes of the IP address of the calling system of the user (anonymized)
• The accessed website
• Website from which the user has accessed (Referrer)
• The sub-pages that are navigated to from the accessed website
• The length of stay on the website
• The frequency with which the website is accessed

A cookie (small text file) called "MATOMO_SESSID" is also saved on your computer. The cookie remains on your computer until you delete it or is automatically deleted as soon as a defined expiry date has passed.

The cookie does not contain any personalized data. It is only used to signal your consent as to whether an analysis by us may take place on our website.

Legal basis for the processing of personal data

The legal basis for processing users' personal data is Article 6 (1) (f) GDPR.

Purpose of data processing

The processing of the personal data of the users enables us to analyze the surfing behavior of our users. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. That helps us to continuously improve our website and its user-friendliness. For these purposes, our legitimate interest lies in the processing of the data according to Art. 6 (1) (f) GDPR. By anonymizing the IP address, the interests of users in protecting their personal data are adequately taken into account.

Duration of storage

The data will be deleted as soon as they are no longer required for our recording purposes.

Opposition and removal option

Cookies are stored on the user's computer and transmitted to our site from there. As a user, you therefore have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your internet browser. Cookies that have already been saved can be deleted at any time. That can also be done automatically. If cookies are deactivated for our website, it is possible that not all functions of the website can be used to their full extent.

Below on our website, we offer our users the option of opting out of the analysis process. In that way, the "MATOMO_SESSID" cookie is described in such a way that it signals to our system not to save the user's data. If the user deletes the corresponding cookie from his own system in the meantime, he must set the opt-out cookie again.

Rights of the data subject

If your personal data is processed, you are affected within the meaning of the GDPR and you have the following rights towards the controller:

Right of access

You can request confirmation from the controller as to whether we are processing personal data relating to you.

If such processing is the case, you can request information from the controller specified in Art. 15 (1) (a-h) GDPR.

You have the right to request information about whether your personal data is being transmitted to a third country or to an international organization. In that context, you can request to be informed about the appropriate guarantees in accordance with Art. 46 GDPR in connection with the transmission.

Right to rectification

You have a right to rectification and / or completion of processed personal data, if the data concerning you is incorrect or incomplete. The contoller must make the correction immediately.

Right to restriction of processing

In accordance with the requirements of Art. 18 (1) (a-d) GDPR, you can request the restriction of the processing of your personal data.

If the processing of your personal data has been restricted, such personal data shall, with the exception of storage, only be used with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest processed by the Union or a Member State.

If the processing restriction has been restricted according to the above conditions, you will be informed by the controller before the restriction is lifted.

Right to erasure

You can demand from the contoller that the personal data concerning you be erased immediately, and the contoller is obliged to erase that data immediately, provided that the requirements specified in Art. 17 (1) (a-f) GDPR are met.

If the controller has made the personal data relating to you public and is obliged to erase personal data in accordance with Art. 17 (1) GDPR, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

Art. 17 (3) GDPR provides for exceptions in which the right to erasure does not exist if processing is necessary.

Right of Notification

If you have asserted the right to rectification, erasure or restriction of processing personal data against the controller, the controller is obliged to notify all recipients to whom the personal data have been disclosed about the rectification, erasure or restriction of processing personal data, unless that turns out to be impossible or involves a disproportionate effort.

You have the right to be informed about these recipients by the controller.

Right to data portability

You have the right to receive the personal data concerning you in a structured, common and machine-readable format from the controller. According to Art. 20 (1) (a-b) GDPR, you also have the right to transmit that data to another controller without hindrance from the controller to which the personal data have been provided.

In exercising that right, you also have the right to have the personal data relating to you transmitted directly from one controller to another, insofar as that is technically feasible. That must not adversely affect the rights and freedoms of others.

The right to data portability does not apply to the processing of personal data that is necessary for the performance of a task that is in the public interest or takes place in the exercise of official authority that has been transferred to the controller.

Right to object

You have the right, for reasons that arise from your particular situation, to object at any time to the processing of your personal data, which is based on Art. 6 (1) (e) or (f) GDPR; that also applies to profiling based on these provisions.

The controller will no longer process the personal data concerning you unless he can prove compelling legitimate reasons for the processing that override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

If the personal data relating to you are processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data relating to you for such marketing; that also applies to profiling insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data relating to you will no longer be processed for such purposes.

In the context of the use of information society services- regardless of Directive 2002/58 / EC - you have the option of exercising your right to object by automated means using technical specifications.

Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. That does not apply if the decision is made in accordance with Art. 22 (2) (a-c) and therefore the controller takes appropriate measures to protect the rights and freedoms as well as your legitimate interests, including at least the right to obtain human intervention on the part of the controller, to express his or her point of view and to contest the decision.

Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged infringement, if you are of the opinion that the processing of your personal data infringes the regulations of GDPR.

The supervisory authority to which the complaint was submitted informs the complainant about the status and the outcome of the complaint, including the possibility of a judicial remedy in accordance with Art. 78 GDPR.