Privacy Policy

We are pleased that you are visiting our website and thank you for your interest in our company and our products. Protecting your privacy when using our website is important to us. When you use this website, various types of personal data are collected. Personal data are data that can be used to personally identify you. This Privacy Policy explains which data we collect and how we use them. It also explains how and for what purpose this is done.

Controller responsible within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR):

Hasenkopf Industrie Manufaktur GmbH
Stöcklstraße 1-2
84561 Mehring

Germany
Phone: +49 (0) 8677 9847 0
E-mail: info@hasenkopf.de

1. General Information

Scope and Amendments

Scope

This Privacy Policy applies to the following data processing activities of Hasenkopf Industrie Manufaktur GmbH:

The website address: https://www.hasenkopf.de
the configurator for 3D planning
Contact us via e-mail address, by telephone or fax
Presence with cooperation partners and in social networks (social media)
Handling of applicant data

In this privacy policy we inform you about:

data processing where we are solely responsible,
data processing where we are jointly responsible with others controllers, and
the third-party providers used who process data under their own responsibility.

For the data processing of other providers to which reference is made, e.g. via links, the data protection notices there apply.

Amendments to this Privacy Policy

We reserve the right to amend or update this Privacy Policy as required. The version valid at the time of use shall apply.

Contact Persons and Responsible Party

Name and contact details of the controller

HASENKOPF Industrie Manufaktur GmbH
Stöcklstrasse 1-2
84561 Mehring
Phone: +49 (0) 8677 9847 0
Fax: +49 (0) 8677 9847 99
info@hasenkopf.de
Managing directors: Holger Klimaschewski, Bernhard Schnaus

Name and contact details of the data protection officer

Monika Kefer-Spieleder
Kefer IT Consulting
Blumenstr. 9A
83569 Vogtareuth

Germany

E-Mail: info@kefer-it.de
Website: https://www.kefer-it.de

Further Controllers

Other parties are also responsible for the processing of your personal data. In this respect, there is joint controllership in accordance with Art. 26 GDPR. The jointly responsible parties have set out in an agreement which controller fulfils which obligations under the GDPR. Information on the other jointly responsible parties as well as the essential content of the respective agreements can be found in the context of the relevant data processing activities.

Questions regarding Data Protection

If you have any questions regarding the handling of your personal data and the exercise of your rights as a data subject, you can contact our data protection officer at any time using the contact details given above.

2. Our handling of your data

Provision of the website and creation of log files

a) Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The data is also stored in the log files of our system. The following data is collected:

Visited website
Date and time at the time of access
Time zone difference to Greenwich Mean Time (GMT)
Amount of data transmitted in bytes
Source/referrer from which you accessed the website
Browser used
Language and version of the browser software
Operating system used and its interface
IP address used
Access status/HTTP status code

Third party provider

ALL-INKL.COM - New Media Münnich

Owner: René Münnich
Hauptstraße 68 | D-02742 Friedersdorf
Phone: +49 35872 353-10
Fax: +49 35872 353-30
E-Mail: info@all-inkl.com

Web designer acting as a data processor:

A365 / Agency for new communication GmbH

Hannakstrasse 9
5023 Salzburg
Austria

b) Legal basis and purpose of data processing

The data processing activities described above are technically necessary in order to correctly deliver the requested website content and are unavoidable when using the internet.

The legal basis for the temporary storage of the data and log files is Art. 6(1)(f) GDPR. Our legitimate interests lie in the analysis of errors on the website and in preventing misuse, including blocking IP addresses and, if necessary, enabling legal prosecution in cases of misuse of the website, for example in the event of denial-of-service (DoS) attacks.

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s device. For this purpose, the user’s IP address must remain stored for the duration of the session. The data collected is also used for statistical evaluations and to improve the website. We reserve the right to subsequently review the server log files if there are concrete indications of unlawful use.

c) Duration of Storage and Right to Object

The data will be deleted after 7 days.

The collection of data for the provision of the website and the storage of data in log files is strictly necessary for the operation of the website. Consequently, there is no right of objection for the user.

Log files are deleted at the latest after 6 months in accordance with Section 15 (7) of the German Telemedia Act (TMG).

3. Cookies

Our website uses tracking cookies.

Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's end device.

a) Description and scope of data processing

The cookies we use are so-called “session cookies”. Session cookies store information about the current session. They are used to assign a user’s settings on a website to their session. If you visit the homepage in two browser windows at the same time, the session cookie recognizes that both requests belong to your session

b) Legal basis and purpose of data processing

Technically necessary cookies are not absolutely necessary to display the website.

The legal basis for the temporary storage of data is:
Art. 6(1)(f) GDPR – legitimate interest, in all other cases.

c) Duration of storage and right to object

Session cookies are automatically deleted at the end of your visit to the website.

The user has no option to object; these cookies can be deactivated by changing the settings of the respective browser.

d) Cookie information website

https://hasenkopf.de/cookies

4. Further Cookies

4.1 Google Analytics

a) Description and scope of data processing

This website uses functions of the web analytics service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For users whose habitual residence is in the European Economic Area or Switzerland, the responsible entity for Google services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, EU. Google Ireland Limited is therefore the company affiliated with Google LLC whose services are integrated and which must also comply with the GDPR.

Google Analytics uses cookies. The information generated by the cookie about your use of this website is generally transmitted to a Google server in the USA and stored there. The following data is processed:

Access statistics
Location data of access
Device data
Duration and time of access
Navigation behavior
Click behavior
IP addresses

IP anonymization

IP anonymization is activated on this website. As a result, your IP address is shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity, and to provide further services related to website and internet usage to the website operator. The IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data.

We have no influence on data collection and further processing by Google.

b) Legal basis and purpose of data processing

Legal basis for data processing:

Art. 6(1)(a) GDPR – consent

Art. 6(1)(f) GDPR – legitimate interest, in all other cases

The website operator has a legitimate interest in analyzing user behavior and evaluating visitor behavior in order to optimize both its website and its advertising.

c) Duration of storage and right to object

You can prevent participation in this tracking process in various ways:

by setting your browser software accordingly; in particular, suppressing third-party cookies means that you will not receive any ads from third-party providers; by installing the plug-in provided by Google at the following link: www.google.com/settings/ads/plugin;
by permanently deactivating them in your Firefox, Edge or Google Chrome browsers at the link www.google.com/settings/ads/plugin;
by using the appropriate cookie settings for the website. We would like to point out that in this case you may not be able to use all functions of this website to their full extent.
Further information on data protection at Google can be found here: www.google.com/intl/de/policies/privacy and services.google.com/sitestats/en.html;
Google is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms an appropriate level of data protection for certified US companies. www.dataprivacyframework.gov/list;
You can revoke your consent to cookies on our website at any time. You will find the corresponding button for changing the cookie settings in the footer of our website.
The cookies remain stored for 14 months.

4.2 Google Tag Manager

a) Description and scope of data processing

This website uses Google Tag Manager provided by Google. Google is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For users whose habitual residence is in the European Economic Area or Switzerland, the responsible entity for Google services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, EU. Google Ireland Limited is therefore the company affiliated with Google LLC whose services are integrated and which must also comply with the GDPR.

Google Tag Manager is a solution that allows us to manage so-called tags (keywords) via an interface. The tool triggers other tags which, in turn, collect data within the scope of this Privacy Policy. Google Tag Manager transmits the IP address to Google servers. Transmission to a third country is also possible. This takes place via an internal setting and is not visible in the source code of this website.

Further information can be found at:
https://marketingplatform.google.com/intl/de/about/tag-manager
https://policies.google.com/privacy?hl=de&gl=de

We have no influence on data collection and further processing by Google.

b) Legal basis and purpose of data processing

The legal basis for data processing is

Art. 6(1), sentence 1, lit. a GDPR – consent
Art. 6(1)(f) GDPR – legitimate interest, in all other cases

Purpose: Organization of the tracking tools

c) Duration of storage and right to object

You can prevent participation in this tracking process in various ways:

by setting your browser software accordingly; in particular, suppressing third-party cookies means that you will not receive any ads from third-party providers; by installing the plug-in provided by Google at the following link: www.google.com/settings/ads/plugin;
by permanently deactivating them in your Firefox, Edge or Google Chrome browsers at the link www.google.com/settings/ads/plugin;
by using the appropriate cookie settings for the website. We would like to point out that in this case you may not be able to use all functions of this website to their full extent.
Further information on data protection at Google can be found here: www.google.com/intl/de/policies/privacy and services.google.com/sitestats/en.html;
Google is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms that certified US companies have an adequate level of data protection. www.dataprivacyframework.gov/list;
These cookies do not have an automatic expiration date. You can set your browser so that it does not accept cookies or so that they are deleted after a certain time.

You can revoke your consent to cookies on our website at any time. You will find the corresponding button for changing the cookie settings in the footer of our website.

4.3 HubSpot

We use HubSpot, a digital marketing tool, on our website. The service provider is the American company HubSpot, Inc, 25 First Street, 2nd Floor Cambridge, MA, USA. For users who have their habitual residence in the European Economic Area or Switzerland, HubSpot, Sir John Rogerson's Quay, Dublin 2, Ireland, EU is the responsible controller for the services.

HubSpot is an integrated software solution for our own marketing, lead generation and customer service. This includes email marketing, which regulates the sending of newsletters and automated mailings, social media publishing and reporting, contact management such as user segmentation and CRM, landing pages and contact forms.

HubSpot sends the following data to the servers: IP address, geographical location, type of browser, duration of visit and pages viewed. Data is transferred to the USA.

You can find further information at:

https://legal.hubspot.com/privacy-policy
https://legal.hubspot.com/de/privacy-policy?hubs_content=www.hubspot.de/products/get-started-f049&hubs_content-cta=Datenschutzbestimmungen

4.3.1 HubSpot Analytics

Analysis service for the statistical evaluation of our online offering. This includes, for example, the number of visits to our website, subpages visited and the time spent by visitors.

a) Description and scope of data processing

HubSpot Analytics uses cookies and other browser technologies to evaluate user behaviour and recognize users. We have no influence on data collection and further processing by HubSpot.

b) Legal basis and purpose of data processing

The legal basis for data processing is
Art. 6 para. 1 sentence 1 lit. a. GDPR: Consent

c) Duration of storage and right to object

The specific storage period of the processed data cannot be influenced by us, but is determined by HubSpot, Inc. Further information can be found in the privacy policy for HubSpot Analytics: https://legal.hubspot.com/privacy-policy

4.3.2 HubSpot Pixel

a) Description and scope of data processing

We use the HubSpot Pixel provided by HubSpot, Inc., Cambridge, Massachusetts, USA. The HubSpot Pixel is used to create custom audiences, i.e. visitor groups of our online offering, to measure conversion rates and subsequently optimize them. This occurs, for example, when you interact with advertisements that we have placed via HubSpot, Inc.

b) Legal basis and purpose of data processing

The legal basis for data processing is
Art. 6(1), sentence 1, lit. a GDPR – consent

c) Duration of storage and right to object

4.3.3 HubSpot LeadFlow

a) Description and scope of data processing

HubSpot LeadFlow uses cookies and other browser technologies to evaluate user behavior and recognize users.

HubSpotLeadFlow allows us to analyze and see which companies have visited our website and determine the history of your visit. We see all the pages you have visited and viewed and the length of your stay on our website.

HubSpot LeadFlow collects and processes data about companies such as company name, phone number, address, web address, industry, company profile, turnover and key people on LinkedIn.

b) Legal basis and purpose of data processing

The legal basis for data processing is
Art. 6(1), sentence 1, lit. a GDPR – consent

c) Duration of storage and right to object

4.3.4 Hubspot newsletter dispatch

We use the HubSpot marketing component to send our newsletters

a) Description and scope of data processing

To subscribe to the newsletter, it is sufficient to provide your e-mail address. Further data such as first and last name, company and telephone number are optional and are only used to address you personally in the newsletter.

A web beacon is used — a pixel-sized file that is automatically retrieved from the HubSpot server when the newsletter is opened. In this process, the following information is collected:

IP address
Date and time the newsletter is accessed
Browser type, browser configuration and plugins
system settings
Clicked links

b) Legal basis and purpose of data processing

Double opt-in: The registration procedure for our newsletter is called double opt-in. This means that you will receive an email from us immediately after you have registered for the newsletter, in which we ask you to confirm your registration once again. In this way, we ensure that only people who actually have access to the e-mail address listed register for the newsletter.

The legal basis for data processing is
Art. 6(1), sentence 1, lit. a GDPR – consent

The legal basis for logging is
Art. 6(1)(f) GDPR – legitimate interest, in all other cases

c) Duration of storage and right to object

Newsletter registrations, including the storage of the registration and confirmation timestamps as well as your IP address, are logged by us as proof that the registration process complies with legal requirements.

Changes to your stored data with the newsletter service provider are recorded in the log.

5. configurator

We offer customers the opportunity to select and assemble our products using our configurator.

a) Description and scope of data processing

To use the configurator, we need your contact details. We will create a personal account for you with a user name and password. This will allow you to log in to the protected configurator area.

Orders can be placed directly from the configurator area.

b) Legal basis and purpose of data processing

Provision of the 3D configurator, creation of a user account with user name and password to configure the products offered. Offering an online order - processing of the purchase contract.

Art. 6(1), sentence 1, lit. b GDPR – performance of a contract, insofar as the request relates to the conclusion or performance of a contract with us.

The legal basis for data processing is:

Art. 6(1), sentence 1, lit. a GDPR – consent, through the voluntary submission of application documents

Art. 6(1)(f) GDPR – legitimate interest, in all other cases

c) Duration of storage and right to object

The configurator customer account will remain until you request deletion. The deletion request can be complied with at any time. Please get in touch with your contact person for this purpose.

The data will be deleted immediately after your request has been processed, provided that there are no statutory retention obligations, the fulfillment of legal obligations or the data is necessary for the defense of asserted legal claims.

5.1 Roomle

The 3D configuration platform of the provider Roomle Gmbh, Peter-Behrens-Platz 2, 4020 Linz, Austria, is used to show our products as realistically as possible in the configurator and to enable 3D configuration. The data protection provisions of Roomle GmbH https://www.roomle.com/en/privacy-statement and its subcontractors https://www.roomle.com/en/subprocessors apply

a) Description and scope of data processing

When providing this technology service via the Internet, the following data is processed by Roomle

IP address
the address of the website visited before using the website or services
Date and time of use of the services
Browser type and settings
Browser configuration and plug-ins
Language settings and cookie data

b) Legal basis and purpose of data processing

Provision of the 3D configurator, login with user name and password and configuration of the products offered

Art. 6(1), sentence 1, lit. b GDPR – performance of a contract, insofar as the request relates to the conclusion or performance of a contract with us.

The legal basis for data processing is:

Art. 6(1), sentence 1, lit. a GDPR – consent, through the voluntary submission of application documents

Art. 6(1)(f) GDPR – legitimate interest, in all other cases

c) Duration of storage and right to object

The data specified under a) will only be used temporarily by Roomle in connection with security services and then deleted.

6. Contact via our contact form

a) Description and scope of data processing

You can contact us via the contact form provided on our website. In this case, the personal data transmitted by the user when making contact will be stored. To respond to your inquiry, providing your email address is sufficient.

The data will not be passed on to third parties in this context.

b) Legal basis and purpose of data processing

Art. 6(1), sentence 1, lit. b GDPR – performance of a contract, insofar as the inquiry relates to the conclusion or performance of a contract with us.

Art. 6(1)(f) GDPR – legitimate interest, in all other cases.

The data will be processed exclusively for the purpose of responding to your request.

c) Duration of storage and right to object

The data will be deleted immediately after your request has been processed, provided there are no statutory retention obligations.

For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

Data for which a statutory retention obligation applies is stored for the legally prescribed period
(6 years in accordance with Section 257 (1) No. 2 and (4) of the German Commercial Code (HGB)).

7. Contact via our e-mail address, by telephone or fax

a) Description and scope of data processing

It is possible to contact us via the contact details provided on our website (telephone number, fax number and e-mail address). In this case, the user's personal data transmitted when contacting us will be stored.

The data will not be passed on to third parties in this context.

b) Legal basis and purpose of data processing

Art. 6(1), sentence 1, lit. b GDPR – performance of a contract, insofar as the inquiry relates to the conclusion or performance of a contract with us.

Art. 6(1)(f) GDPR – legitimate interest, in all other cases.

The data will be processed exclusively for the purpose of responding to your request.

c) Duration of storage and right to object

The data will be deleted immediately after your request has been processed, provided that there are no statutory retention obligations.

For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

Data for which a statutory retention obligation applies is stored for the legally prescribed period
(6 years in accordance with Section 257 (1) No. 2 and (4) of the German Commercial Code (HGB)).

If the user contacts us by e-mail, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued. All personal data stored in the course of contacting us will be deleted in this case.

8 Our social media presences and links on our website

8.1 Facebook

We have a presence on Facebook. When you visit our Facebook fan page, a direct connection is established with the Facebook servers.

https://m.facebook.com/people/Hasenkopf-GmbH/100094511914911/?locale=de_DE

Facebook is a part of: Meta Platforms Inc, One Hacker Way Menlo Park, CA 94025 USA and processes your data in the USA. For Europe, Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.

We have no influence on data collection and further processing by Meta.

Information on data protection at Facebook can be found here:
https://de-de.facebook.com/privacy/policy

The Facebook data processing conditions, which refer to the standard contractual clauses, can be found at www.facebook.com/legal/terms/dataprocessing.

Meta is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms that certified US companies have an adequate level of data protection: https://www. dataprivacyframework.gov/list

8.2 Instagram

We link to our Instagram presence (Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA) on our website. Instagram is part of Meta-Platforms Inc. in the USA. For Europe: c/o Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The link is identified by the Instagram logo in the footer. If you click on the Instagram logo, a direct connection to the Instagram servers is established.

https://www.instagram.com/hasenkopf_industrie_manufaktur
We have no influence on data collection and further processing by Meta.

Information on data protection at Instagram can be found here:
https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect

Meta is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms that certified US companies have an adequate level of data protection. https://www.dataprivacyframework.gov/list

8.3 LinkedIn

On our website, we link to our presence on the social network LinkedIn (LinkedIn Inc. 2029 Stierlin Court, Mountain View, CA 94043, USA). For Europe: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. The link is identified by the LinkedIn logo in the footer. If you click on the LinkedIn logo, a direct connection to the LinkedIn servers is established.

https://de.linkedin.com/company/hasenkopf-industrie-manufaktur

We have no influence on data collection and further processing by LinkedIn.

Information on data protection at LinkedIn can be found here:

https://de.linkedin.com/legal/privacy-policy

LinkedIn is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms an appropriate level of data protection for certified US companies: https://www.dataprivacyframework.gov/list

8.4 YouTube

We operate a YouTube channel. The video platform is provided by YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA - a subsidiary of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043-1351, USA. - provided.

When you visit our YouTube channel at www.youtube.com/c/hasenkopf, we process personal data solely for the purpose of analyzing user behavior via the statistics provided by YouTube and for communicating with the user if they have initiated contact with us via the public comment function. YouTube provides the following personal data of users in aggregated and anonymized form:

Followers
reach
Demographics of the users

These statistics do not allow any conclusions to be drawn about individual users.

You can find further contact options on YouTube here:
https://www.youtube.com/t/contact_us

You can view YouTube's terms of use via the following link:
https://www.youtube.com/static?gl=DE&template=terms&hl=de

Google is a member of the EU - U.S. Data Privacy Framework, a data protection agreement between the EU and the USA. The agreement confirms an appropriate level of data protection for certified US companies: https://www.dataprivacyframework.gov/list

We have no influence on data collection and further processing by Google.

8.5 Pinterest

On our website, we link to our presence on the social network Pinterest (Pinterest Inc. 505 Brannan St, San Francisco, CA 94107, USA). For Europe: Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. The link is identified by the Pinterest logo in the footer. If you click on the Pinterest logo, a direct connection to the Pinterest servers is established.

https://www.pinterest.de/hasenkopf

We have no influence on data collection and further processing by Pinterest.

Information on data protection at Pinterest can be found here:
https://policy.pinterest.com/de/privacy-policy

8.6 Xing

We have a platform presence on the business network XING.

https://www.xing.com/pages/hasenkopfindustriemanufaktur

When you visit our XING profile, a direct connection is established with the XING servers. XING is a business network for German-speaking countries and is operated by New Work SE, Am Strandkai 1, 20457 Hamburg, Germany.

We have no influence on data collection and further processing by XING.

Information on data protection at XING can be found here:

https://privacy.xing.com/de

9. Further technologies

Encrypted transmission

We use encryption (SSL or TLS) to ensure the secure transmission of content. You can recognize whether a website is transmitted in encrypted form by the lock symbol in your browser’s address bar.

Truncation of the IP Address

By truncating the IP address, the identification of users is made more difficult. Where technically possible, we make use of this measure.

Data security

We use suitable technical and organizational security measures to protect data against manipulation, loss, destruction or unauthorized access. Our security measures are continuously improved in line with technological developments.

Links to other websites via graphics or text

The links we provide will always take you directly to the specified destination without any additional information.

External links that lead to pages outside our offering are marked accordingly, unless this is already clearly apparent.

Intermediate and forwarded links

A link can automatically redirect to a website other than the one requested or, instead of leading directly to the new page, first lead to another page without the user noticing. This is usually used to process the visitor's data unnoticed or to trigger actions.

Active content

Active content in websites is content that is executed directly on the user's device after loading and therefore always represents a security risk. Frequently used active content includes Java and JavaScript.

This website uses the JavaScript library jQuery to increase the loading speed of our website.

On our website, we use active JavaScript content from external providers, so-called web services. By accessing our website, these external providers may receive personal information about your visit to our website. This may involve the processing of data outside the EU.

You can protect yourself by installing a browser extension such as "NoScript" or "uBlock Origin" or by deactivating JavaScript in your browser. This may result in functional restrictions on websites that you visit.

You can find more information about JavaScript at:

https://de.wikipedia.org/wiki/JavaScript#Verwendung

10. Embedded fonts

Fonts from third-party providers are used. These are embedded locally; no connection to external servers takes place. No transmission of personal data (e.g. IP address) occurs.

11. Plugins

Typo3 Plugins

We use various Typo3 plugins for our website. When selecting the plugins, strict attention is paid to using GDPR-compliant plugins. No personal data is collected by the plugins used.

12. Handling of applicant data

a) Description and scope of data processing

The contact details provided on our website (address, telephone number, fax number and e-mail address) can be used to contact us to send unsolicited applications and applications for an advertised position.

It is also possible to send us an application with all the necessary personal data and relevant documents directly via our online application form, which is linked directly to the respective job offer.

b) Legal basis and purpose of data processing

Providing your personal data as part of an application is voluntary.

The processing of your personal data and special categories of personal data is based on your consent.

The data is used for the following purposes:

Contacting you on the basis of your application or unsolicited application
Initiation and establishment of the employment relationship
To send you personalized information about vacancies in accordance with the consent you have given
To fulfill legal obligations or to defend against asserted legal claims (burden of proof under the General Equal Treatment Act (AGG))

The legal basis for data processing is

Art. 6(1), sentence 1, lit. a GDPR – consent, through the voluntary submission of application documents

Legal basis for carrying out the application process:

Art. 6(1)(b) GDPR

The legal basis for the temporary storage of data is

Art. 6(1)(f) GDPR – legitimate interest, in all other cases

c) Disclosure to third parties

Within our company, only those persons and bodies (e.g. specialist departments, departments, representatives of severely disabled persons) receive your personal data that need it to fulfill our contractual and legal obligations.

d) Duration of storage and right to object

Your data will be stored for as long as it is necessary to fulfill the respective purpose or as long as there are statutory retention obligations and no deviating information on individual processing is provided.

For the fulfilment of legal obligations or the defense against asserted legal claims (burden of proof under the German General Equal Treatment Act (AGG)).

Six months after the end of the application process (e.g. notification of the rejection decision).

In the event that you have consented to your personal data being stored for a longer period, your data will be stored in our applicant pool for a maximum of 24 months with your consent and then deleted.

Receipts/booking data relating to any reimbursement of travel costs or expenses will be archived in accordance with tax law requirements.

If a contractual relationship is established (= employment), the necessary information will be transferred to the personnel file.

You can revoke your consent at any time.

Automated individual decision making

We do not use any purely automated processing procedures to reach a decision.

13. Data processing in third countries

Data is not transferred to third countries (countries outside the European Economic Area EEA) and is currently not planned.

14. Links in graphics or text

The links we provide will always take you directly to the specified destination without any additional information.

We have marked external links that lead to pages outside our offer accordingly, unless this is already clearly recognizable.

15 Deletion of data

You revoke your consent on which the processing is based pursuant to Art. 6(1)(a) or Art. 9(2)(a) GDPR.
You object to the processing in accordance with Art. 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing in accordance with Art. 21(2) GDPR.
Data for which a statutory retention obligation applies is stored for the legally prescribed period
(10 years in accordance with Section 257 HGB and Section 146 (2) AO).
Log files are deleted at the latest after 6 months in accordance with Section 15 (7) of the German Telemedia Act (TMG).

16. Your rights

As a user of our online offering, you have various rights under the GDPR, in particular those arising from Articles 15 to 18 and 21 GDPR:

Right of access

You can request information about your personal data processed by us in accordance with Art. 15 GDPR. In your request for information, you should specify your request in order to make it easier for us to compile the necessary data. Please note that your right to information may be restricted under certain circumstances in accordance with the statutory provisions (in particular Section 34 BDSG).

Right to rectification

If the information concerning you is not (or no longer) correct, you can request a correction in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.

Right to erasure

You can request the erasure of your personal data under the conditions of Art. 17 GDPR. Your right to erasure depends, among other things, on whether the data concerning you is still required by us to fulfill our legal obligations.

Right to restriction of processing

Within the framework of the provisions of Art. 18 GDPR, you have the right to request that the processing of data concerning you be restricted.

Right to object

In accordance with Art. 21 GDPR, you have the right to object to the processing of data concerning you at any time for reasons arising from your particular situation. However, we are not always able to comply with this, e.g. if we are required by law to process data as part of our official duties.

Right not to be subject to an exclusively automated decision

In accordance with Art. 22 GDPR, you have the right not to be subject to a decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you.

Right to lodge a complaint

If you are of the opinion that we have not complied with data protection regulations when processing your data, you can contact us at any time with a complaint.

Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

The supervisory authority responsible for HASENKOPF Industrie Manufaktur GmbH is the Bavarian State Office for Data Protection Supervision (BayLDA). You can reach it under the following contact options

Bavarian State Office for Data Protection Supervision

P.O. Box 606

91511 Ansbach

Germany

Phone: +49 (0) 981 53 1300

Fax: +49 (0) 981 53 98 1300

E-mail: poststelle@lda.bayern.de

Copyright notice

This privacy policy is protected by copyright. It was created by Kefer IT-Beratung, Monika Kefer-Spieleder, www.kefer-it.de.