PRIVACY POLICY
Thank you for visiting our website and for your interest in our services. We would like you to enjoy your visit to our website and not have to worry about the confidentiality of your data. We are very committed to data protection and consider transparency in the handling of your data to be highly important. Accordingly, we wish to inform you about what data we collect, the purposes for which we do this and how you can exercise control over your data at any time.
1. Data controller
The data controller within the meaning of the law governing the processing of personal data is:
RTSB Group
Industriestr. 24
61381 Friedrichsdorf
sales@rtsb.de
2. Categories of data, purpose and legal basis of the processing
You can of course visit our website without providing any personal information. You can access our privacy policy via the link at the bottom of each page.
We only use your personal data when you visit our website to operate and optimise our website. For this purpose, the IP address, various technical data of the end device (e.g. operating system, browser used, etc.) as well as data on the use of our website are collected. We do not store this data beyond the legal retention periods or the fulfilment of the intended purpose. Processing of this data is necessary to ensure the operation of the website. If you do not agree to this processing, we will not be able to provide you with our online services. We evaluate this information statistically in order to make the use of our website even more convenient for all visitors. It is not linked to any personal data already stored by us. The data collected in the course of your use of the website will be deleted after 14 months at the latest. In individual cases the storage of data may be extended in order to enforce legal claims, to defend against any legal claims or due to statutory obligations.
The processing of personal data for the purpose of operating the website as well as network and information security is based on Art. 6 Para. 1 S. 1 lit. f GDPR. There is no legal or contractual obligation on your part to provide data in the context of using our website. However, it is not possible to operate the website or respond to your enquiries without processing your date.
3. Data recipients
Your data will not be disclosed to third parties unless there is a legal obligation to disclose the data. Processing is carried out on the basis of Art. 6 Para. 1 lit. c) GDPR and in connection with the specific order or legal obligation to which we are subject in the individual case. In accordance with Art. 6 Para. 1 lit. c) GDPR, personal data may be processed if the processing is necessary for compliance with a legal obligation to which the controller is subject. Categories of recipients of the data are public bodies in the case of a legal obligation and contract processors who process the data collected online on our behalf, as well as joint controllers with us. The processors involved are:
Mailerlite
Joint Controllers with us are:
Facebook Ireland Ltd
LinkedIn Unlimited Company
4. Contact form
When you fill out the contact form, you provide us with personal data. We may collect the following types of data: name, email and information for the purpose of providing you with an individual offer. We only use this data to respond to your specific enquiry or request and to provide you with information. In order to protect your data, we use a recognised encryption process when it is transmitted to us. We will retain your personal data for the period necessary to fulfil the purposes described in this information. Statutory retention periods remain unaffected.
The legal basis for the processing is Art. 6 Para. 1 S. 1 lit a GDPR, and in the case of pre-contractual measures Art. 6 Para. 1 S. 1 lit b GDPR. Submitting the form constitutes your consent to the processing of your data.
5. Newsletter
If you would like to receive the newsletter offered on the website, we require an email address, as well as other information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form is based exclusively on your consent (Art. 6 Para. 1 lit. a GDPR). You can revoke your consent to the storage of the data, the email address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you have provided us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will then be deleted. Data that has been stored by us for other purposes remains unaffected by this.
Newsletters are sent by MailerLite (UAB “MailerLite”, J. Basanavičiaus 15, LT-03108 Vilnius, Lithuania). MailerLite is a service with which the distribution of newsletters can be organised and analysed. The data you enter for the purpose of receiving newsletters (e. g. email address) is stored on Mailerlite’s servers in the EU. The newsletters we send with MailerLite enable us to analyse the behaviour of the newsletter recipients. Among other things, we can analyse how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analysed whether a predefined action (e. g. purchase of a product on our website) has taken place after the link in the newsletter has been clicked.
For more information on MailerLite’s data analysis, please see:
https://www.mailerlite.com/legal/privacy-policy
If you do not wish any analysis by MailerLite you must object to being sent the newsletter. An informal letter/email to us is sufficient for this purpose.
The data you provide us with for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the MailerLite servers after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.
For more details, please refer to the privacy policy of MailerLite.
6. Applications
If you are interested in a vacancy and fill out the application form, we collect the following personal data, among others: name, email address, and the data that you send us with your application documents (e. g. references, CV, etc.).
We will only use your personal data as part of the application process for the purpose of selecting a suitable employee. For this purpose, the data you have submitted to us will be recorded and processed in our email and HR systems.
The data processing is based on Art. 88 GDPR and Section 26 Para. 1 of the Federal Data Protection Act (BDSG). We store this data for up to 6 months after the end of the application process. After that, the data will be deleted. The storage of data may be extended in individual cases to enforce legal claims, to defend against any legal claims or due to legal obligations.
In accordance with Art. 13 Para. 2 e) GDPR there is no legal or contractual obligation on your part to provide data as part of the application. However, we may refuse to consider your application due to incomplete information. In this case, we will inform you and delete your data.
Your data will not be disclosed to third parties unless there is a legal obligation to disclose it. This processing is based on Art. 6 Para. 1 S. 1 lit. c GDPR and in connection with the respective order or legal obligation to which we are subject in the individual case. Categories of recipients of the data are public bodies in the event of a legal obligation, HR managers and decision-makers in our company and contract processors who process your applicant data on our behalf.
7. Cookies
On our website we use two types of cookies: session cookies and persistent cookies. We would like to briefly explain the purpose of these cookies below. Cookies are short texts that we store on your computer. Cookies do not execute any commands on your computer, so they do not pose a security risk.
Session cookies store certain information while you browse our website and are not permanently stored but deleted again when you leave our website.
Session cookies are used on the basis of Art. 6 Para. 1 f) GDPR. The operation of the website is in the legitimate interest of the data controller.
You can determine the handling of cookies in your browser yourself, you can even reject cookies altogether or configure your browser so that cookies are deleted regularly. You will find sufficient information on this on the Internet.
To change your cookie preferences for this site please click here:
8. Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer to help the website analyse how users use the site. Because of the anonymization feature, google shortens your IP-address within the European Economic Area before transferring it outside the EEA.
You can find out more about how Google uses this data here: https://policies.google.com/technologies/partner-sites?hl=de
The transfer of data to the USA takes place on the basis of the standard contractual clauses that we have concluded with Google.
Google Analytics is only used if you have given your consent. The legal basis is Art. 6 Para. 1 S. 1 lit. a GDPR.
9. Google reCAPTCHA
This website uses Google reCAPTCHA (“reCAPTCHA” in the following) by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
ReCAPTCHA is supposed to confirm whether a data entry (e. g. contact form) has been done by a human being or an automated program. For this purpose, reCAPTCHA analyses the visitor’s behaviour by certain characteristics. The analysis starts automatically as soon as the visitor visits the website.
For the analysis reCAPTCHA assesses different information (e. g. IP-address, how long the visitor stays on the website and mouse movements). The data collected will be transferred to Google. The reCAPTCHA analyses are carried out completely in the background. Website visitors are not informed about the analyses.
Legal basis for the storage and analysis of the data is Art. 6 Para. 1 S. 1 lit. f GDPR.
The operator of the website’s legitimate interest is protecting his web content from abusive automated spying and SPAM.
More information about reCAPTCHA can be found in the Google data protection notice and the terms of service:
https://policies.google.com/privacy?hl=de and
https://policies.google.com/terms?hl=de
10. Google Web Fonts
For a uniform representation of fonts, we use the so-called Google Web Fonts, that are provided by Google. When calling up our webpage, your browser loads the web fonts needed into the browser cache in order to present fonts and texts correctly. Therefore, the browser used has to create a connection with the Google Servers. Hereby Google learns that our website has been called up via your IP-Address. We use Google Web Fonts in order to present our online offers in a uniform and attractive way. This is our legitimate interest (Art. 6 1 f GDPR).
In case your browser doesn’t support web fonts your computer uses a standard font.
More information about Google Web Fonts can be found here:
https://developers.google.com/fonts/faq and in the data protection notice of Google:
https://www.google.com/policies/privacy/.
11. Social Media Profiles
For enlarging our reach, we have profiles on different social media platforms. If you visit our profile the operator of those might process also your personal data.
Plug-ins
Our website uses the plug-ins and functions of the social networks Facebook and LinkedIn.
These services are operated by
Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA, and
LinkedIn Ireland Limited Company, Wilton Place, Dublin 2, Ireland,
You will find an overview of the Facebook plug-ins and their appearance here:
https://developers.facebook.com/docs/plugins
If you access Internet pages of our website that are provided with such a plug-in, your browser establishes a direct connection to the servers of Facebook and LinkedIn.
The content of the plug-ins is transmitted directly to your browser by the relevant provider and integrated into the page. Through the integration of the plug-ins the relevant provider receives the information that your browser has accessed the corresponding page of our website, even if you don’t have a profile or are not currently logged in. This information (including your IP address) is transmitted from your browser directly to a server of the relevant provider (e. g. in the USA, Ireland, Germany) and stored there.
If you are logged in to the particular service, the provider in question can directly assign your visit to our website to your profile. If you interact with the plug-ins, for example by clicking the “Like” button, using the Share Function, etc., the corresponding information is also transmitted directly to a server of the relevant provider and stored there. The information is also published on the relevant social media network and displayed there to your contacts or other visitors.
For the purpose and scope of the data collection and the further processing and use of the data by the providers, as well as your rights in this regard and setting options for protecting your privacy, please refer to the privacy policies of Facebook: http://www.facebook.com/policy.php
LinkedIn: https://www.linkedin.com/legal/privacy-policy
The legal basis for the transfer of your data is your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR.
We have a profile at Facebook. Supplier is Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. We entered a Joint-Controllership-Agreement with Facebook. This agreement states for which data processing operations we or Facebook are responsible when you visit our Facebook-Fanpage. Facebook-Ireland is primarily responsible according to GDPR for the processing of Insight data. You can view this agreement here:
https://www.facebook.com/legal/terms/page_controller_addendum
You can modify your advertising preferences in your profile by yourself. Therefore, click on the following link and log in. https://www.facebook.com/settings?tab=ads
You can find detailed information within the data protection notice of Facebook:
https://www.facebook.com/about/privacy/
We use a LinkedIn account operated byLinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. In order to modify your settings concerning advertising measures in your profile at LinkedIn, please use the following link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
We entered a Joint Controllership-Agreement with LinkedIn. This agreement states for which data processing operations we or LinkedIn are responsible when you visit our LinkedIn profile. LinkedIn Ireland is primarily responsible according to GDPR for the processing of Insight data. You can view this agreement here:
https://legal.linkedin.com/pages-joint-controller-addendum
The data protection notice of LinkedIn can be found here:
https://www.linkedin.com/legal/privacy-policy
Tencent WeChat
We use a Tencent WeChat account by Tencent International Service Europe B.V., 26.04 on the 26th floor of Amstelplein 54, 1096 BC Amsterdam, Netherlands.
You can find the data protection notice of WeChat here:
https://www.wechat.com/de/privacy_policy.html#pp_sharing
Sina Weibo
We use a Weibo account of the Chinese operator Sina Corporation. Currently there is no data protection notice available.
Vimeo
We use a Vimeo account provided by the operator Vimeo Inc, 555 West 18th Street New York, New York 10011, USA.
You can find more information on data processing by Vimeo at:
Yumpu
For the purpose of presenting our company, we use Yumpu, a service of i-magazine AG, Gewerbestrasse 3, 9444 Diepoldsau, CH. Yumpu provides a digital platform for publishing magazines, brochures, or catalogs. Using Yumpu, the contents of PDF files are displayed as a so-called sheet catalog/flipbook and displayed directly in the web browser without loading the PDF files.
Yumpu also uses cookies. These will only be set after you have given your consent. The legal basis is Art. 6 Para. 1 S. 1 lit. a GDPR.
In this context, we refer to point 2-5 of the Yumpu Privacy Policy under www.yumpu.com/de/info/privacy_policy and the Yumpu Cookie Policy: www.yumpu.com/de/info/cookie_policy
12. Your rights in relation to the processing of your personal data
With regard to the processing of personal data, you have various rights, which we would like to inform you about below. You can also find details of your rights in Articles 15 to 21 GDPR and Sections 32 to 37 of the German Federal Data Protection Act (“BDSG“).
You have the right to receive information about your personal data. You can also require the correction of incorrect data.
In addition, under certain conditions you have the right to the deletion of your data, the right to restriction of the data processing and the right to data portability. You may object to processing on the basis of Art. 6 Para. 1 lit f) GDPR, as well as to any profiling in accordance with Art. 21 GDPR. Consents that you have given in the context of website use can be revoked informally and without giving reasons at any time with effect for the future.
You can assert all of the above rights in accordance with Articles 15 to 21 GDPR informally towards the data controller by email or post.
You also have the right to complain to the competent data protection supervisory authority if you believe that the processing of your data is unlawful. You can find a list of data protection supervisory authorities and their contact details at:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
If you have any questions regarding data protection, please feel free to contact our data protection officer:
David Gabel – E-Mail: David.gabel@dsgvo-support.de
General information concerning data protection and processing of personal data can be found at:https://www.dsgvo-support.de
PRIVACY POLICY FOR FACEBOOK
Welcome to our Facebook page. We are very committed to data protection and consider transparency in the handling of your data to be highly important. For this reason, we would like to inform you accordingly.
There is an agreement between Facebook and us as joint data controllers in accordance with Art. 26 GDPR. You can access this agreement under the following link [https://www.facebook.com/legal/terms/page_controller_addendum]. This agreement stipulates that Facebook itself assumes all data protection obligations in connection with Page Insights.
1. Name and address of the data controllers
The persons jointly responsible for the operation of this Facebook page are:
a)
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland
You can reach the Facebook data protection officer via the following form:
www.facebook.com/help/contact/540977946302970.
and
b)
RTSB Group
Industriestraße 24
61381 Friedrichsdorf
info@rtsb.de
You can contact our data protection officer at:
Email: david.gabel@dsgvo-support.de
2. Categories of data, purpose and legal basis of the processing
With regard to the data processing by Facebook, we refer to its privacy policy https://www.facebook.com/privacy/explanation
Below we explain the data processing operations we carry out.
a. Statistical data
Statistical data of different categories are available to us via the so-called “Insights” of the Facebook page. (https://www.facebook.com/business/a/page/page-insights)
These statistics are generated and provided by Facebook. As the operator of the site, we have no influence on the generation and display of these statistics. We cannot disable this function or prevent the generation and processing of the data. For a selectable period of time as well as for the categories of fans, subscribers, persons reached and persons interacting, the following data is provided to us by Facebook in relation to our Facebook:
total number of page views, “Like” information, page activity, post interactions, coverage, video views, post reach, comments, shared content, replies, proportion of men and women, country and city of origin, language, shop views and clicks, clicks on route planners, clicks on telephone numbers. Data on the Facebook groups linked to our Facebook page is also provided in this way. Due to the constant development of Facebook, the availability and processing of the data changes, so that we refer to the above-mentioned Facebook privacy policy for further details.
The processing of personal data is based on Art. 6 Para. 1 f) GDPR. Our legitimate interest is to make our posts and activities on our Facebook page more attractive to users. For example, we use the distributions according to age and gender for customised addressing and the preferred visiting times of users for optimised scheduling of our posts. Information about the type of end devices used by visitors helps us to adapt the visual design of the posts accordingly.
b. Interaction with our account
It is also possible for you to interact with our account. You can do this, for example, by marking a post with “Like”, sharing or commenting on it, or by writing to us directly.
When you interact with us there is usually inevitably some data processing by us, as this allows us to see your account and thus gives us access to personal data about you, such as your username, your profile picture or the date or time of the interaction. In accordance with the Facebook terms of use, which each user has agreed to as part of creating a Facebook profile, we may identify subscribers and fans of the site and view their profiles and other information shared by them.
In this context the data collected is information that is only made available to us through an interaction by you with our profile. The processing of personal data is therefore based on Art. 6 Para. 1 b) GDPR.
3. Data recipients
We would like to point out that Facebook may pass on your data to third parties. However, we have no influence on this. You can find more details on this in Facebook’s privacy policy:www.facebook.com/privacy/explanation
We do not disclose your data unless we are under a legal obligation to do so. Such transfer is made on the basis of Article 6 Para. 1 c) GDPR and in connection with the respective order or legal obligation to which we are subject in the individual case. Categories of recipients of the data are public bodies in the event of a legal obligation and contract processors who process the data collected online on our behalf, such as web hosts and designers, providers of analytics services, etc.
4. Storage period and deletion
Information on data storage by Facebook can be found in its privacy policy:www.facebook.com/privacy/explanation.
We store all personal data that you transmit to us only for as long as it is needed to fulfil the purposes for which this data was transmitted or as long as this is required by law. On fulfilment of the purpose and/or expiry of the statutory storage periods, the data will be deleted or blocked by us.
5. Rights of the data subject
With regard to the processing of personal data, you have various rights, which we would like to inform you about below. You can also find details of your rights in Articles 15 to 21 GDPR and Sections 32 to 37 of the German Federal Data Protection Act (“BDSG”).
You have the right to receive information about your personal data. You can also request the correction of incorrect data.
In addition, under certain conditions you have the right to delete data, the right to restrict data processing and the right to data portability. You may object to processing on the basis of Art. 6 Para. 1 lit f) GDPR, as well as to any profiling in accordance with Art. 21 GDPR. Consents that you have given in the context of website use can be revoked informally and without giving reasons at any time with effect for the future.
You can assert all of the above rights in accordance with Articles 15 to 21 GDPR informally towards the data controller by email or post.
You also have the right to complain to the competent data protection supervisory authority if you consider that the processing of your data is unlawful. You can find a list of data protection supervisory authorities and their contact details at: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
If the processing is carried out by Facebook, you can also contact Facebook directly. This is especially the case if the processing is within the scope of Page Insights. You can contact Facebook using the following form:
https://www.facebook.com/help/contact/2061665240770586.
By post the following address can be used:
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland
Alternatively, you can of course also contact us, and we will forward your request in accordance with our agreement with Facebook in accordance with Art. 26 GDPR.