Using our website

Data protection on the Internet "J. D. Theile GmbH & Co. KG"

 

 

 Data Privacy Statement

I.
Name and Address of the Body Responsible

For the purposes of the General Data Protection Regulations [DSGVO] and other national
data protection regulations of the member states as well as other regulations laid down in
data privacy laws:
Firm                           J. D. Theile GmbH & Co. KG
Street, No                  Letmather Str. 26-45
Postcode, Town        58239 Schwerte
Country                     Germany
Tel                             +49 2304 757-0
E-mail address          info(at)jdt.de 
Website                     www.jdt.de

II.
Contact details of the Data Protection Officer

E-mail address          datenschutz(at)jdt.de

III.
General data processing information

1.  Scope of data processing for personal data
As a matter of principle, we only process the personal data of our users if this is necessary
for providing a functioning website in addition to our contents and services. Normally our
users’ personal data will only be processed with their consent. An exception will apply in
those cases in which it is not possible to obtain the prior consent for factual reasons and
data processing is allowed by the statutory regulations.

2. The legal basis for processing personal data
Insofar as we obtain the consent of the person concerned for processing procedures,
Article 6 Para 1 a EU General Data Protection Regulations [DSGVO] will apply as the
legal basis.

When processing personal data, necessary for the fulfilment of a contract a party to which is
the person concerned Article 6 Para 1 b EU General Data Protection Regulations [DSGVO]
will apply as the legal basis. This shall also apply for the processing procedures necessary for carrying out pre-contractual measures.

Insofar as it is necessary to process personal data to fulfil a legal obligation incumbent upon
our business Article 6 Para 1 c EU General Data Protection Regulations [DSGVO] will apply as the legal basis.

In the event that vitally important interests of the person concerned, or of another natural
person make it necessary for personal data to be processed, Article 6 Para 1 d DSGVO shall serve as a legal basis. 

If processing is necessary in order to protect the justified interests of our business, or that of
a third party, and if the interests, basic rights and basic freedoms of the person concerned 
do not prevail over the interests of the first named person, Article 6 Para 1 f DSGVO shall
consequently serve as a legal basis for processing the data.  


3. Deletion of data and Duration of data storage 
The personal data of the person concerned will be deleted or blocked as soon as the purpose for which the data has been saved no longer applies. Data may, moreover, be saved, if provision has been made for this by European or national legislative bodies in European laws embodied in ordinances, laws or other regulations to which the responsible body is subject. The data may also be blocked or deleted in those cases in which storage periods prescribed by the named laws expire, unless there is a requirement for the data to still be saved for a contract to be entered into or fulfilled. 

IV.
Making the website available

1. Description and scope of the data processing
Our system automatically records data and information about the computer system of the
computer contacting it on every occasion our website is called up. Our system records
the following data:

(1) Information about the browser model and the version used;
(2) The User’s operating system;
(3) The User’s internet service provider;
(4) The User’s IP address;
(5) The date and time of access;
(6) Websites from which the User’s system has accessed our website;
(7) Websites, which are called up by the User from our website;
(8) The User’s image resolution

The data shall likewise be saved in our system logfile. The IP addresses of the User or other
data making it possible for the data to be ascribed to a user will not be affected by this. This
data will not be saved together with other personal data of the User.

2. The legal basis for data processing
The legal basis for saving the data and logfiles on a temporary basis is Article 6 Para 1 f DSGVO.


3. Purpose of data processing
The temporary storage of the IP address by the system is necessary to enable the website to be supplied to the User’s computer. For this the User’s IP address must be saved throughout the duration of the session.

Storage in log files is done to ensure that the website functions properly. Added to which,
the data serves for us to optimise the website and to ensure that our information technology
systems remain secure. The data will not be evaluated for marketing purposes in connection
with this.

Our justified interest in processing data in accordance with Article 6 Para 1 f DSGVO is also in these purposes.

4. Duration of storage
The data will be deleted as soon as they are no longer required for achieving the purpose for which it has been collected. In the event that the data is recorded for the website to be made available, this will be the case when the respective session has come to an end.

In the event that the data is saved in logfiles this shall be the case after 14 days have elapsed at the latest. Data may be saved for longer periods. In this case the IP addresses of the User will be deleted or anonymized so that it is no longer possible to identify the computer calling up the website.

5. Objection and removal option
It is absolutely vital that data is recorded to make the website accessible and the data has to be saved (in logfiles) to run the website. Consequently the User has no right of objection thereto.

V.
Use of cookies

1. Description and scope of data processing
Our website uses cookies. Cookies are text files which are saved in the internet browser on
the User’s computer system. If the User calls up a website, a cookie may be saved on the
User’s operating system. This cookie contains a distinguishing string making it possible
for the browser to be clearly identified when our website is called up again.

We use cookies to make our website user-friendly. Some elements of our website require
the browser calling up our website to be identifiable even after there has been a change in
website.  

The User’s data collected by this means will be anonymized by taking technical precautions.
Consequently it is no longer possible to ascribe the data to the user calling up our website.
The data will not be saved together with the User’s other personal data. 

When calling up our website the User will be informed by means of an information banner
that we use cookies for analysis purposes and attention will be drawn to this data privacy
statement. In connection with this there will also be a reference to how the saving of cookies
can be prevented in browser settings.

2. Legal basis for data processing
The legal basis for processing personal data by using cookies required for technical reasons is Article 6 Para 1 f, DSGVO.

3. Purpose for which data is processed
The purpose for which cookies required for technical reasons is necessary, is to simplify the
use of our website for users. Some functions of our website cannot be made available
without using cookies. For these it is necessary that the browser is recognised again even if
there has been a change in website.

We need cookies for the following applications:

(1) Adoption of language settings

The user data collected by means of cookies required for technical reasons will not be used
to produce user profiles.

4. Duration of storage, Objection and removal option
Cookies shall be saved on the User’s computer and sent from there to our website.
Consequently, as User, you will also have complete control of the use of the cookies. You
may deactivate or restrict the transfer of cookies by changing the settings on your internet
browser. Cookies already saved may be deleted at any time. This can also be done automatically.
If cookies are deactivated for our website, it is possible that not all functions of the
website will still work properly.


VI.
Vacant

VII.
Registration

1. Description and scope of data processing
On our website we offer users the option of registering in a customer portal be entering
their personal data. When doing so the data will be entered into an entry mask, sent to us
and saved. The data will not be forwarded to third parties. The following data will be
collected in the course of the registration process:


Name
Firm
E-mail
Customer number
Language
User name
Password

In addition to this, the following data will be saved at the point in time of registration:

(1) Date and time of registration

In the course of the registration process the User’s consent for this data to be processed will
be obtained. 

2. Legal basis for data processing 
The legal basis for data processing is that the User’s consent has been obtained as in Article 6 Para 1 a GDPR [DSGVO].

3. Purpose for which data is processed
The User’s registration is required for certain contents and services to be kept
available on our website.
 
(1) Document call off (Certificates)
(2) Order history  (Customer)

4. Duration of storage
The data will be deleted as soon as it is no longer needed for achieving the objective for
which it was saved.

This will be the case for the data collected during the registration process, if the registration
is saved and modified on our webpage.  

Contractual obligations require the personal data to be saved throughout the term of the
contract. In addition to this warranty periods have to be observed and the data has to be
saved for tax purposes. It is not possible to make a blanket statement specifying the length
of time over which has to be saved for the above purposes, but the length of time will be
determined on a case-by-case basis for the respective contracts entered into and for the
parties to such contracts. 

5. Objection and removal option
As the User, you will have the option at any time to cancel your registration. You can have the data saved about you amended at any time. The User can amend the data in the dialogue within the customer portal. The User will have to contact JDT to delete the data.
The data can only be deleted by JDT.


VIII.
Contact form and E-mail contact

1. Description and scope of the data processing
There is a contact form on our website which can be used for making contact with us
electronically. If a user does avail himself of this option, the data entered in the entry mask
will be sent to us and saved.
This data is:

Selection of catalogue request  Country
Selection of reference                Tel    
Surname*                                   Fax    
Christian name*                         E-mail*
Firm                                            Internet
Address                                      Messages
Post code / Town
 
*Obligatory boxes

At the point in time at which the webpage on which the contact form is site is called off the
following data will be saved in addition: 

(1) The User’s IP address,
(2) The date and time of registration.

In the course of processing the contact form your consent for processing the data will be
obtained and your attention will be drawn to this data privacy statement.

Data will not be forwarded to third parties in connection with this. The data will only be used
for handling and processing the conversation.


2.  Legal basis for data processing
The legal basis for processing the data if the User’s consent has been obtained is
Article 6 Para 1 a GDPR [DSGVO].

The legal basis for processing data transmitted in the course of sending an e-mail is
Article 6 Para 1 f GDPR [DSGVO].

3. Purpose of data processing
Personal data from the entry mask will only be processed by us for handling your making
contact with us. In the event that you should contact us by e-mail, this shall also constitute a
justified interest for us to process the data. The other personal data be processed in the
course of the dispatch procedure serves to prevent the misuse of the contact form and to
ensure the security of our information technology systems.


4. Duration of data storage
The data will be deleted as soon as it is no longer required to achieve the purpose for which
it has been collected. This shall apply for personal data from the entry mask in the contact
form and for that data which has been sent by e-mail and shall be carried out when the
respective conversation with the User has ended. The conversation shall have ended when it can be seen from the circumstances that the facts and circumstances concerned have been definitively clarified.

The personal data collected during the send procedure will be deleted straightaway after the
contact data (e-mail) has been sent!

5. Objection and removal option
The User shall have the option at all times to revoke his consent to his personal data being processed. If the User contacts us by e-mail, he may, at any time, object to his personal data being saved. In such a case the conversation cannot be continued.

The revocation of consent and objection to personal data being saved must be sent in
writing to JDT and action will be taken straightaway unless this is contrary to other statutory
or quasi-legal regulations (e.g. periods of time for which data must be saved etc.)!

All personal data which has been saved in the course of contact shall in this case be deleted.

IX.
Webanalysis by Matomo (formerly PIWIK)

1. Scope of processing personal data
We use the open-source-software-tool Matomo (formerly PIWIK) on our website to analyse
the browsing habits of our Users. The software places a cookie on the User’s computer (for
cookies see above). If individual pages of our website are called off, the following data will
consequently be saved:

(1) 2 Bites of the IP address of the User’s system calling up the page,
(2) The website called up,
(3) The website from which the User came to the web site called up (referrer),
(4) The subpages which are called up from the website called up,
(5) the length of time the User spends on the website,
(6) the frequency with which the website is called up.

In doing so the software will only run on the servers of our website. The User’s personal data will only be saved there. It will not be passed on to third parties.

The software has been set up in such a way so that the IP addresses will not be completely
saved, but instead 2 bites of the IP address will be masked (Example: 192.168.XXX.XXX). In this way it will no longer be possible to ascribe the abbreviated IP address to the computer
calling it up.

2. Legal basis for processing personal data
The legal basis for processing the personal data is Article 6 Para 1 f GDPR [DSGVO].

3. The purpose for processing data
Processing the User’s personal data enables us to analyse the browsing habits of our users.
By analysing the data we have gained we are in a position to compile information about how
the individual components of the website are used. This helps us to improve our website and make it more user-friendly all the time. These objectives are also our justified interest, in
processing data in accordance with Article 6 Para 1 f GDPR [DSGVO]. By anonymizing the
IP address the interest of the User in having his personal data protected will be taken into
adequate account.

4. Duration for which data is stored
The data shall be deleted as soon as it is no longer needed for our recording purposes.
In our case this is so after 30 days.

5. Objection and removal option
Cookies shall be saved on the User’s computer and sent by it to our website.
Consequently, as User, you will also have full control of how your cookies are used.
By changing the setting on your internet browser you can deactivate or restrict the
transfer of cookies. Cookies already saved may be deleted at any time. This can also
be done on an automatic basis. If cookies are deactivated for our website, it is
possible that it will not be possible to have full use of all of the functions on our
website.

X.
Corporate contact data

Data from potential customers and customers which is set up from daily processes and
which is collected for setting up orders, the fulfilment of contracts and to maintain business
relationships will be saved in our computer and only used for the intended purposes.
The receipt of personal data may be by various means (Written correspondence,
electronic correspondence, business cards, publications in the websites etc.)


XI.
Your rights as a concerned person (GDPR [DSGVO] Article 12-22 and Article 34)

(1) You have the following rights against us with regard to the personal data concerning
      you:
- Right to information (Article 15),
- Right to have data corrected or deleted (Article 16 and Article 17),
- Right to restrict processing or to type of processing (Article 18),
- Right to raise an objection to processing (Article 21),
- Right to have your data transferred to another responsible body (Article 20).

(2) If you have asserted your right against the responsible body to have your data
     corrected, deleted or to processing being restricted, he shall be obliged to inform all
     the recipients to whom the personal data concerning you has been disclosed of the
     correction or deletion of data or restriction of processing, unless this turns out to be
     impossible or entails disproportionate expense (Article 19).

You are entitled to have the responsible body inform you of the recipients of the data
(Article 15 Para 1 c).

(3) You are entitled to revoke your declarations of consent under data privacy laws.
     As a result of revoking your consent the lawfulness of the processing carried
     out prior to revocation on the basis of your consent already granted shall not
     be affected as a result. (Article 7 Para 3 GDPR [DSGVO]).

(4) You are entitled to not be subject to a decision made on the basis of automated
      processing – including profiling – and having legal effect on you or which us
      considerably detrimental to you in similar ways. This shall not apply if the
      decision is made with your express consent, is allowed on the basis of
      applicable legal regulations or which is necessary for concluding or fulfilling
      an agreement/contract made between you and us (Art 22).

(5) You will, moreover, be entitled to lodge a complaint about how your personal data
      has been processed by us at a data protection supervisory authority
      (Article 15 Para 1 f).

Date of first version: 20.11.2018
Revision date: 20.11.2018

Tel.: +49 (0) 2304 / 757 0