Data protection declaration
Status: 01.06.2021
1. Name and contact data of the data controller
Chemische Fabrik Wocklum | Gebr. Hertin GmbH & Co KG
Glärbach 2
58802 Balve
Tel.: +49 (0) 2375 9250
E-mail:
–
2. Contact data of the data protection officer
Riske IT GmbH
Mr Pascal Riske
Keldenicher Straße 23
50389 Wesseling
Web: www.riske-it.de
Email:
–
3. Data processing when visiting our website
Each time our website is called up, we temporarily collect and store data with each access to contents of this website through so-called log files, which may permit an identification. The following data are collected hereby:
- the date and time of the access to the website
- the used browser types and versions
- IP address of the computer that calls up the website
- Host name of the accessing computer
- the operating system used by the accessing system
- website from which the website was called
- websites which were called up via the website
- page that was visited on our website
- transferred data volume
- report whether the call was successful
- information about the browser type and the used version.
These data are processed in order to safeguard our legitimate interests pursuant to Art. 6 Para. 1 Sentence 1 lit. f GDPR (General Data Protection Regulation).
The temporary storage of the data, above all the IP address, is necessary for the operation of a website visit in order to enable the provision of the website. A further storage of the log data is carried out in order to ensure the functionality of the website and the security of the IT systems, in particular the web server. These purposes form our legitimate interests.
We store the server log files for 7 days. However, we reserve the right to store the server log files longer for a subsequent check should there be concrete indications of an unlawful use.
We also use services of foreign third-party providers, which collect server log files for their own purposes, on which we have or may have no influence. Please refer to the corresponding section in this privacy policy (Points 7 – 10) for more details.
The North Rhine-Westphalia State Commissioner for Data Protection and Freedom of Information provides information on how to pseudonymise your IP address. You can find out more in this respect under:
–
4. Cookies
We use cookies on our site. They are small files, which are created automatically by your browser and which are stored on your terminal device (laptop, tablet, smartphone or similar device) when you visit our site.
Information is stored in the cookie, which respectively arises in connection with the specifically used terminal device. However, this does not mean that we directly receive knowledge of your identity hereby. Cookies do not cause any damages to your terminal device either.
By using technical cookies, we aim to make the use of our service more convenient for you. We therefore use so-called session cookies in order to recognise that you have visited individual pages of our website already. The majority of cookies are, as a rule, deleted automatically once you have left our site (“maximum age: end of session”).
Example: If you agree to the use of website tracking technologies of third parties when our website is called up for the first time, then your selection will be stored in a cookie. This cookie notes your selection, even if you now call up other sub-pages of our homepage.
The data processed by cookies are necessary for the stated purposes in order to safeguard our legitimate interests as well as those of third parties according to Art. 6 Para. 1 Sentence 1 lit. f GDPR.
The majority of browsers accept cookies automatically. You can, however, configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. The full deactivation of cookies may, however, lead to the fact that you cannot use all functions of our website.
We also use services that may set cookies of third-party providers on your terminal device. For more details, in this respect please refer to the corresponding section in this privacy policy. You have the option of configuring your browser in such a way that JavaScript is not executed. In this case, it is possible that you will only be able to use our website to a limited extent or may not be able to use all functions.
–
5. Contact
If you contact us (e.g. via our contact form under https://wocklum-gruppe.de/kontakt/, by email or phone), we will process your details to the extent that this is necessary to reply to the contact request and for possibly requested measures.
If your message is carried out with the aim to initiate a contractual relationship with us or is necessary to fulfil or (reverse) process an existing contract between you and us, we shall carry out the processing of the corresponding data based on Art. 6 Para. 1 Sentence 1 lit. b GDPR.
If your message is of a general nature, we base the processing of your request on our legitimate interest pursuant to Art. 6 Para. 1 Sentence 1 lit. f GDPR. Our legitimate interest lies in finally processing the received message and to contact you externally. We will store your message until the processing has been completed. It will only be stored for a longer period of time if we are explicitly entitled hereto by law.
Please note that, despite applying the greatest possible care, we cannot ensure that communication via the internet is secure. Therefore, we recommend that you always send encrypted messages.
–
6. Application procedure
Should you submit a job application to us, we shall process the application documents submitted by you. Which personal data we process when doing so will depend upon which data you send in to us. In addition to this, we shall process data collected in the course of the job interview.
The legal basis for processing you application documents is Article 6 Paragraph 1 Sentence 1 b in conjunction with Article 88 GDPR, Section 26 of the German Federal Data Protection Regulations [BDSG].
It is possible that your personal details will be passed on to other businesses within the Wocklum Group in the course of the application procedure. It is necessary that your application documents may be processed across the Wocklum Group to maintain our justified interests and those of our companies in accordance with Article 6 Paragraph 1 Sentence 1 f GDPR.
These justified interests are the optimisation and centralisation of our HR systems, reciprocal support across the Group in our recruitment systems as well as for internal administration reasons.
In the event that your application is rejected by us, we shall retain your data for six months from the date on which you receive our rejection. In the event that we offer you an employment contract and you sign it, we shall delete your application data as soon as the reason for keeping it no longer applies. Data associated with your application, (e.g. settlement of travelling expenses) and subject to commercial law or tax law safekeeping obligations shall be archived in accordance with the regulations governing statutory safekeeping periods.
We shall obtain your consent in advance in accordance with Article 6 Paragraph 1 Sentence 1 a GDPR should we wish to save your data for a longer period of time than that above, e.g. in the event that while there is admittedly no suitable position vacant within our company at present, but such a position could become vacant at a subsequent point in time. Your consent for your application documents to be saved for a period of time longer than that specified above will be voluntary. Should you not grant your consent, we shall be unable to take your application into consideration in the event that we subsequently have a vacancy which would be suitable for you. Your application documents will be removed from the pool of applicants when we receive your rejection.
We would recommend that you send in your application documents in a password protected PDF file / ZIP file or similar. Your application documents will be handled in total confidence.
–
7. Google tag manager / Google Analytics
We use the analysis service “Google tag manager / Google Analytics” of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and of the EU subsidiary Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google) for our website. Each time our website is called, information about your use of our website is collected. Google tag manager / Google Analytics hereby examines among others the origin of the visitors, their dwell-time on individual pages, their interactions with forms available on our site as well as the use of search engines and therefore allows us to better and more successfully create, control and evaluate visitor statistics. In doing so, Google may set a cookie on your terminal device. Personal data may be stored and evaluated hereby, above all the activity of the user (in particular which pages were visited and which elements were clicked on), Device and browser information (in particular the IP address and the operating system), data regarding the displayed advertisements (in particular which advertisements were presented and whether the user clicked on these) and also data of advertising partners (in particular pseudonymised user IDs). In addition, we aspire to continuously improve our search engine optimisation and therefore to enhance our popularity in the face of competition. Furthermore, by using Google tag manager / Google Analytics, we can recognise cyberattacks against our servers quickly and initiate countermeasures, e.g., we see reliably and graphically whether suspicious requests are made increasingly, which intend to establish a connection to our web server and we can react accordingly to avoid further damages.
The information generated through the cookie regarding your use of this online presence is transferred to servers of Google in the USA and is stored there. By the activation of the IP anonymisation on this online presence, your IP address is however previously truncated by Google within member states of the European Union or in other contracting states of the Treaty on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a server of Google in the USA and will be truncated there.
The legal basis for the processing by using Google tag manager / Google Analytics is your consent, according to Art. 6 Para. 1 Sentence 1 lit. a GDPR, Art. 7 et seq. GDPR. You have the right to revoke your consent at any time without this affecting the lawfulness of the processing carried out owing to the consent until the revocation. Your consent is neither stipulated by law, nor stipulated as per contract or necessary for the conclusion of a contract and you are not obliged to make personal data available. No statistics will be recorded without your consent.
As Google tag manager / Google Analytics is the property of the Google Group and Google has distributed its servers all over the world, it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. Owing to the possibly lower level of data protection in third countries, it is possible, under certain circumstances, that you cannot assert your rights as a data subject with these recipients or only partly assert such rights. Furthermore, your data could be exposed to access by third party authorities and legal remedies at courts and authorities overseas may not lead to success. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. You can find a copy of the standard contractual clauses approved by the EU Commission, which Google refers to, under:
https://policies.google.com/privacy/frameworks?hl=en-GB&gl=en%20de
The IP anonymisation is active on this online presence. By order of the operator of this online presence, Google will use this information in order to evaluate your use of the online presence, compile reports on the activities of the online presence and to provide further services associated with the use of the online presence and the internet use towards the operator of the online presence. You can prevent the storage of the cookies by a corresponding setting of your browser software; however, we would like to point out to you that in this case you may, if applicable, not be able to use all functions of our online presence in full.
You can find further information regarding the processing of the data by Google here:
https://policies.google.com/privacy?gl=DE&hl=en-GB
Your personal information will be stored as long as this is necessary in order to fulfil the purposes described in this privacy policy or as long as this is stipulated by law. Advertising data in server log files are anonymised by the fact that Google, according to its own details, erases parts of the IP address and cookie information after 9 or 18 months.
You can prevent the collection as well as the processing of your personal data by Google by preventing the storage of cookies of third-party providers on your computer, by using the “Do Not Track” function of a supporting browser, by deactivating the execution of Script Code in your browser or by installing a Script blocker such as. NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser.
You can additionally prevent the collection of the data generated by the cookie and which refer to your use of the online presence (incl. your IP address) and transfer to Google as well as the processing of these data by Google by downloading and installing the browser plugin available under the following link:
https://tools.google.com/dlpage/gaoptout?hl=en-GB
You can find further information relating to possibilities for objection and remedies towards Google under:
https://policies.google.com/privacy?gl=DE&hl=en-GB
–
8. Google Maps
We have integrated services from Google Maps into our website to display interactive maps and to create directions. The operator is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the EU subsidiary Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google).
By using Google Maps, information can be transferred to Google in the USA regarding the use of this website including your IP address and the (start) address (location data) entered within the scope of the route planner. If you call up a website of our internet presence, which contains Google Maps, your browser will establish a direct connection with the servers of Google. The map content is transmitted directly to your browser by Google and integrated hereby into the website. Therefore, we have no influence on the scope of the data collected by Google in this manner. In line with our level of knowledge, these are at least the following data:
Date and time of the visit to the website concerned,
Internet address or URL of the website accessed,
IP address, (start) address entered within the scope of the route planning.
We use Google Maps in order to safeguard our legitimate interests, according to Art. 6 Para. 1 Sentence 1 lit. f GDPR. This way, we would like to make it possible to find us interactively so that you can find our premises easily and efficiently in the event of an appointment in our company.
As Google Maps is the property of the Google Group and Google has distributed its servers all over the world, it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. Owing to the possibly lower level of data protection in the third countries, it is possible, under certain circumstances, that you cannot assert your rights as a data subject at these recipients or only partly assert such rights. Furthermore, your data could be exposed to access by third party authorities and legal remedies at courts and authorities overseas may not lead to success. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. You can find a copy of the standard contractual clauses approved by the EU Commission, which Google refers to, under:
https://policies.google.com/privacy/frameworks?hl=en-GB&gl=de
If you do not want Google to collect, process or use data about you via our internet presence, you can deactivate JavaScript in your browser settings. In this case, you can however not use the map display.
For the purpose and scope of the data collection and the further processing and use of the data by Google, as well as your rights and settings options in this respect for the protection of your privacy, please refer to the privacy policy of Google (https://policies.google.com/privacy?hl=en-GB).
–
9. Google Web fonts
We have integrated fonts of Google on our website, which are loaded automatically by servers of Google: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the EU subsidiary Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). As soon as you call contents of our website a connection is automatically established to servers, from which Google Web Fonts are loaded. Log files are regularly collected in this case, in particular the IP address. However, this does not mean that we receive knowledge of your identity.
We base the processing when using Google Web Fonts on Art. 6 Para. 1 Sentence 1 lit. f GDPR in order to safeguard our legitimate interests.
The aim here is a standard presentation of our website on the internet as well as to promote the optimisation of our range by using a font, which is suitable for the indexation in search engines: Search engine optimisation. Through the outsourcing our website additionally gains in loading speed, which has a positive impact with the search engine optimisation. Our interests lie in these purposes.
As Google Web Fonts is the property of the Google Group and Google has distributed its servers all over the world, it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. Owing to the possibly lower level of data protection in the third countries it is possible, under certain circumstances, that you cannot assert your rights as a data subject at these recipients or only partly assert such rights. Furthermore, your data could be exposed to access by third party authorities and legal remedies at courts and authorities overseas may not lead to success. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer. You can find a copy of the standard contractual clauses approved by the EU Commission, which Google refers to, under:
https://policies.google.com/privacy/frameworks?hl=en-GB&gl=de
–
10. Facebook fan page
We have set up a Facebook fan page for our company. We are jointly responsible for the data processing together with Facebook: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. You can find details regarding the delimitation of the responsibility in the following agreement:
https://en-gb.facebook.com/legal/terms/page_controller_addendum
You can find further information here https://facebook.com/policy.php.
We would like to point out to you that you use this Facebook page and its functions at your own responsibility. This applies in particular to the use of the interactive functions (e.g. comments, sharing, assessment). Alternatively, you can also call the information offered through this page on our internet offering at https://wocklum-gruppe.de.
When visiting our Facebook page, Facebook collects among others your IP address as well as further information, which is available in the form of cookies on your PC. This information is used in order to make statistical information available to us as the operator of the Facebook page about the use of the Facebook page. Facebook makes more detailed information available in this respect under the following link: https://en-gb.facebook.com/help/pages/insights
The data collected in this context about you are processed by Facebook Ltd. and, if applicable, transferred to countries outside of the European Union. Which information Facebook receives and how this is used is described by Facebook in a general form in its data usage guidelines. You will also find information there regarding possibilities for contacting Facebook as well as the setting options for advertisements. The data usage guidelines are available under the following link: https://en-gb.facebook.com/about/privacy. You can find the full data policies of Facebook here: https://de-de.facebook.com/full_data_use_policy
In which way Facebook uses the data from the visit to Facebook pages for its own purposes, to what extent activities on the Facebook page are allocated to individual users, how long Facebook stores these data and whether data from a visit to the Facebook page are forwarded to third parties, is not conclusively and clearly stated by Facebook and is not known to us. When accessing a Facebook page, the IP address allocated to your terminal device is transmitted to Facebook. According to information from Facebook, this IP address is anonymised (in case of “German” IP addresses). Facebook additionally stores information about the terminal devices of its users (e.g. within the scope of the function “registration notification”); if applicable it is possible for Facebook to therefore allocate IP addresses to individual users. If you as a user are currently registered with Facebook, a cookie will be located on your terminal device with your Facebook ID. This way Facebook is in the position to track that you have visited this site and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons into websites, it is possible for Facebook to record your visits to these website pages and to allocate these to your Facebook profile. Based on these data contents or advertising can be offered tailormade to suit your interests. If you would like to avoid this, you should log out of Facebook or deactivate the function “stay logged in”, delete the cookies existing on your device and end and re-start your browser. This way Facebook information, through which you can be directly identified, will be erased. This way you can use our Facebook page without your Facebook identifier being disclosed. If you access interactive functions of the page (like, comment, share, messages, etc.), a Facebook login screen will appear. After a possible login, you will again be recognisable to Facebook as a specific user. You can find information in this respect, how you can manage or erase information about you, on the following Facebook Support pages: https://en-gb.facebook.com/about/privacy
We as the provider of the information service possibly additionally collect and process data from your use of our service if you contact us via our Facebook page. Alternatively, you can contact us directly. You can find this privacy policy in the respectively valid version under the point “Data protection” on our Facebook page. In case of questions regarding our information offer, you can contact us at any time. You can also find further information relating to Facebook and other social networks and how you can protect your data, at www.youngdata.de.
As Facebook has distributed its servers all over the world, it cannot be excluded that your personal data are stored and further processed worldwide, among others on servers in the USA. These could be countries in which the level of data protection is not as high as within the European Union. There is no adequacy decision of the EU Commission within the meaning of Art. 45 GDPR for the USA. Used EU standard contractual clauses form suitable guarantees here within the meaning of Art. 46 GDPR for the data transfer.
You can find a copy of the standard contractual clauses approved by the EU Commission, which Google refers to, under: https://www.facebook.com/help/566994660333381?ref=dp
–
11. Your rights
According to Art. 15 GDPR, you have the right to receive information about the data stored in relation to your person including possible recipients and the planned storage duration.
You have the right to revoke your consent, without this affecting the lawfulness of the processing carried out owing to the consent until the revocation.
Should incorrect personal data be processed pursuant to Art. 16 GDPR, you have a right to rectification.
If the statutory prerequisites exist, then you have the right to erasure or restriction of the processing of the data concerned (Art. 17 and Art. 18 GDPR).
According to Art. 21 GDPR, you have the right, for reasons which arise from your particular situation, to file an objection at any time against the processing of your personal data, which is carried out owing to Art. 6 Para. 1 Sentence 1 lit. f GDPR. We will then no longer process the personal data unless we can essentially prove reasons that are worthy of protection for the processing, which outweigh your interests, rights and freedoms, or the processing serves the assertion, exercising or defence of legal claims. The collection of the data is absolutely essential for the provision of the website and the storage of the log files for the operation of the website.
Pursuant to Art. 77 Para. 1 GDPR, you have the right to lodge a complaint at a data protection supervisory authority if you are of the opinion that the processing of your data breaches applicable data protection law.