Privacy Policy

1. General

Scope and Changes 

Scope 

This Privacy policy concerns the following processes in personal data by LCTech GmbH 

  • The website at the address: 
  • www.hasenkopf.de 
  • Contact via our email address, telephone or fax 
  • Presence with cooperation partners and in social networks (social media) 
  • How we handle job applicant data 

This privacy policy informs you about 

  • Data processing as Data Controller, 
  • Data processing in Joint Controller Agreement and 
  • Third-Party providers who process data as their own Data Controller 

For other providers referred to via links, their data protection regulations apply. 

Changes to Privacy Policy 
If necessary, this data protection declaration will be adjusted or updated. 
The currently valid version applies. 

Contact Person and Data Controller 
Data Controller: 

HASENKOPF Industrie Manufaktur GmbH 
Stöcklstraße 1-2 
84561 Mehring 
Tel.: +49 (0) 8677 9847 0 
Fax: +49 (0) 8677 9847 99 
E-Mail: info@hasenkopf.de 

Authorised representative partner: Patrick Löchelt, Holger Klimaschewski 

Privacy officer of the Data Controller 

Monika Kefer-Spieleder 
Kefer IT-Beratung 
Blumenstr. 9A 
83569 Vogtareuth 
E-Mail: info@kefer-it.de 
Internet: www.kefer-it.de 

Additional Data Controller 

There are other parties responsible for processing your personal data. According to Art. 26 GDPR, there is a shared responsibility. The joint controllers have determined in an agreement which responsible party fulfills which obligation under the GDPR. For the respective data processing, you will find further information about those joint controllers and the agreements made. 

Questions about Data Protection 

If you have any questions about the handling of your personal data, you can contact our Data Protection Officer any time. Please also contact our Privacy Officer if you have any questions about exercising your rights as a data subject. You can find the contact details above. 

2. How we handle your personal data

Website Provision and Creation of Log Files 

a) Description an Extent of Data Handling 

Every time our website is requested our system automatically saves data and information regarding the requesting computer’s system. The data are also stored in the log files of our system. The following data is being collected: 

  • Websites from where the user’s system reached our website 
  • Date and time of request 
  • Time zone difference to Greenwich Mean Time (GMT) 
  • Amount of data sent in bytes 
  • Websites, which the user’s system requests via our website 
  • Information regarding browser type and version 
  • The user’s operating system 
  • The user’s IP address 
  • Access status/HTTP status code 

Third-Party Provider: 

Webhoster 

ALL-INKL.COM - Neue Medien Münnich Owner: René Münnich 
Hauptstraße 68 | D-02742 Friedersdorf 
Telephone: +49 35872 353-10 
Telefax: +49 35872 353-30 
E-Mail:info@all-inkl.com 

Web designer: 

A365 
Agentur für neue Kommunikation GmbH 
Hannakstraße 9 
5023 Salzburg, Austria 
www.a365.at​​​​​​​

b) Legal Basis and purpose of Data Processing 

In order to correctly deliver the requested content from websites, the data processing mentioned is technically necessary. 

This data processing is absolutely necessary when using the internet. 

The legal basis for the temporary storage of data and log files is Article 6 (1) (f) GDPR. In the event of misuse of the website, e.g. Dos attacks, it is in our legitimate interest to carry out an error analysis, block the IP address and, if necessary, take legal action. 

The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. To do this, the user's IP address must remain stored for the duration of the session. 

The data collected is also used for statistical evaluations and to improve the website. If we see concrete evidence of illegal use, we reserve the right to subsequently check the server log files. 

c) Duration of Store und possibility of objection ​​​​​​​

Data will be deleted after 7 days. 

In order to ensure the provision and operation of the website, it is absolutely necessary that data is recorded and stored in log files. This gives the user no opportunity to object. 

Log files are deleted after 30 days at the latest in accordance with Section 25 of the Telecommunications Telemedia Data Protection Act (TTDSG). 

3. Cookies

A cookie is a piece of data that is placed on your device when you’re browsing the internet. These text files are automatically created by browsers and websites. 

a) Description an Extent of Data Handling 

We have different cookies, also session-cookies. A session-cookie helps track real-time changes in a user's activity while on a website, such as adding items while shopping on e-commerce websites. If you visit the homepage in two windows in a browser, the session cookie recognizes that both visits relate to your session. 

b) Legal Basis and purpose of Data Processing 

Technically necessary cookies are not absolutely obligatory to display the website. 

– Legal Basis for temporary storage of the data is: 

Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

c) Duration of Store und possibility of objection 

– At the end of your visit to the website, session cookies are automatically deleted. 

There is no possibility for the user to object; these cookies can be deactivated by setting the respective browser. 

4. Other Cookies

4.1. Google Analytics 

a) Description an Extent of Data Handling 

This website uses functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For users from the EU or Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, EU, is responsible. Google Ireland is affiliated with Google LLC and must comply with the GDPR. 

Google Analytics uses cookies. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. 

The following data is processed: 

  • Access statistics 
  • Location data of access 
  • Device data 
  • duration of access and time 
  • Keyboard and mouse behavior 
  • The user’s IP address 

IP anonymization 

The IP anonymization function is activated on this website. The IP address is shortened by Google (within the EU) before transmission. In exceptional cases, the full IP address is transferred to Google USA. It is then shortened by Google in the USA. Google will use this information on behalf of the website operator to evaluate the activities on the website. With these reports, Google provides the requested services. The IP address transmitted by your browser as part of Google Analytics is not combined with other Google data. 

We have no influence on data collection and further processing by Google. 

b) Legal Basis and purpose of Data Processing 

– Legal Basis for data processing: 

Art. 6 Abs. 1 S. 1 lit. a. GDPR: Consent to the processing 

– Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

The website operator has a legitimate interest in analyzing and evaluating user behaviour in order to optimize both its website and its advertising. 

c) Duration of Store und possibility of objection 

– you can prevent participation in this tracking process in various ways: You can set your browser software. If third-party cookies are suppressed, you will not receive any advertisements from them. You can install the plugin provided by Google. Link to plugin: 

http://www.google.com/settings/ads/plugin 

– you can deactivate permanently. This works in browsers Firefox, Edge, or Google Chrome. 

http://www.google.com/settings/ads/plugin 

– you can make cookie settings for the website. We would like to point out that in this case you may not be able to fully use all of the functions of this offer. 

Further information about data protection at Google can be found here: 

http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html 

Google is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. www.dataprivacyframework.gov/list 

– You can revoke your consent to cookies at any time on our website. You will find the corresponding button for changing the cookie settings in the footer of our website. 

– The cookies are stored for 14 months. 

4.2. Google Tag Manager 

a) Description an Extent of Data Handling 

This website uses the Google-Tag-Manager. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For users from the EU or Switzerland, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, EU, is responsible. Google Ireland is affiliated with Google LLC and must comply with the GDPR. 

With the Google Tag Manager, it is possible to manage keywords (tags). These tags trigger other tags via the tool, which also record personal data. The Google Tag Manager sends the IP address to the Google servers, including to Google servers in a third country (USA). This internal setting is not visible in the page source code of this page. 

Further information about data protection at Google can be found here: 

https://marketingplatform.google.com/intl/de/about/tag-manager/
​​​​​​​https://policies.google.com/privacy?hl=de&gl=de 

We have no influence on data collection and further processing by Google. 

b) Legal Basis and purpose of Data Processing 

– Legal Basis for data processing: 

Art. 6 Abs. 1 S. 1 lit. a. GDPR: Consent to the processing 

– Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

The website operator has a legitimate interest in analyzing and evaluating user behaviour in order to optimize both its website and its advertising. 

a) Duration of Store und possibility of objection 

– you can prevent participation in this tracking process in various ways: You can set your browser software. If third-party cookies are suppressed, you will not receive any advertisements from them. You can install the plugin provided by Google. Link to plugin: 

http://www.google.com/settings/ads/plugin 

– you can deactivate permanently. This works in browsers Firefox, Edge or Google Chrome. 

http://www.google.com/settings/ads/plugin 

– you can make cookie settings for the website. We would like to point out that in this case you may not be able to fully use all of the functions of this offer. 

Further information about data protection at Google can be found here: 

http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html ​​​​​​​

Google is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. www.dataprivacyframework.gov/list 

– There is no automatic expiration date for these cookies. You can preset your browser not to accept cookies or to delete them after a certain period of time. 

– You can revoke your consent to cookies at any time on our website. You will find the corresponding button for changing the cookie settings in the footer of our website. 

5. Our social media presences and their links on our website

5.1. Facebook 

We run a business-page on Facebook. When you visit our Facebook business-page, a direct connection is established with the Facebook servers. 

https://m.facebook.com/people/Hasenkopf-GmbH/100094511914911/?locale=de_DE 

Facebook is a part of: Meta Platforms Inc., One Hacker Way Menlo Park, CA 94025 USA and processes your data in the USA. Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. applies for European users. 

We have no influence on data collection and further processing by Meta. 

Information about data protection at Facebook can be found here: 

https://de-de.facebook.com/privacy/policy/ 

The Facebook data processing conditions, which refer to the standard contractual clauses, can be found at www.facebook.com/legal/terms/dataprocessing 

Meta is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. www.dataprivacyframework.gov/list 

5.2. Instagram 

We link to our Instagram presence on our website (Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA). Instagram is a part of Meta-Platforms Inc. in the USA. For Europa it is: c/o Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The link is identified in the footer by the Instagram logo. If you click on the Instagram logo, a direct connection to the Instagram servers is established. 

https://www.instagram.com/hasenkopf_industrie_manufaktur/ 

We have no influence on data collection and further processing by Meta. 

Information about data protection at Instagram can be found here: 

https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect 

Meta is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. https://www.dataprivacyframework.gov/list 

5.3. LinkedIn 

We link on our website to our presence on the social network LinkedIn (LinkedIn Inc. 2029 Stierlin Court, Mountain View, CA 94043, USA). For Europe it is: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. The link is identified in the footer by the LinkedIn logo. If you click on the LinkedIn logo, a direct connection to the LinkedIn servers is established. 

https://de.linkedin.com/company/hasenkopf-industrie-manufaktur 

We have no influence on data collection and further processing by LinkedIn. 

Information about data protection at LinkedIn can be found here: 

https://de.linkedin.com/legal/privacy-policy? 

LinkedIn is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. https://www.dataprivacyframework.gov/list 

5.4. YouTube 

We have a YouTube channel. This video platform was provided by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA – a subsidiary company of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043-1351, USA. 

If you visit our YouTube channel at www.youtube.com/c/hasenkopf, we process personal data exclusively to analyze user behavior via the statistics provided by YouTube. We also process users' personal data for communication if they have contacted us using the public comment function. 

YouTube provides the following personal user data in aggregated and anonymized form: 

  • Followers 
  • Range 
  • User demographics 

These statistics do not allow any conclusions to be drawn about individual users. 

Further contact options on YouTube can be found here: 

https://www.youtube.com/t/contact_us 

You can view YouTube's terms of use via the following link: 

https://www.youtube.com/static?gl=DE&template=terms&hl=de 

Google is a member of the EU-U.S. Data Privacy Framework. The Data Privacy Framework is a data protection agreement between the EU and the USA. It confirms US companies that have been certified to have an adequate level of data protection. www.dataprivacyframework.gov/list 

We have no influence on data collection and further processing by Google. 

5.5. Pinterest 

We link on our website to our presence on the social network Pinterest (Pinterest Inc. 505 Brannan St, San Francisco, CA 94107, USA). For Europe it is: Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. The link is identified in the footer by the Pinterest logo. If you click on the Pinterest logo, a direct connection to the Pinterest servers is established. 

https://www.pinterest.de/hasenkopf/ 

We have no influence on data collection and further processing by Pinterest. 

Information about data protection at Pinterest can be found here: 

https://policy.pinterest.com/de/privacy-policy 

5.6. Xing 

We have a platform presence on the business network XING. 

https://www.xing.com/pages/hasenkopfindustriemanufaktur 

When you visit our XING profile, a direct connection is established with the XING servers. XING is a business network for German-speaking countries and is operated by: New Work SE, Am Strandkai 1,20457 Hamburg, Germany. 

We have no influence on data collection and further processing by Xing. 

Information about data protection at Xing can be found here: 

https://privacy.xing.com/de 

6. Other Technologies

Encrypted Transmission 

We use encryption (SSL or TLS) to ensure secure transmission of content. You can see whether a website is transmitted encrypted by the lock symbol in the address bar of your browser. 

Shortening of the IP address 

In order to make it more difficult to identify the user, we use the option to shorten the IP address as far as possible. 

Data Security 

We implemented appropriate technical and organizational measures to protecting data from unauthorized access, lost, corruption or theft throughout its entire lifecycle. Our security measures are continuously improved in line with technological developments. 

Connection to other websites via links in graphics or text 

The links we offer generally lead you directly to your destination without additional information or detours. We have marked external links that lead outside of our offering accordingly. 

Intermediate and redirected links 

Redirect is a technique which is used to redirect your domain's visitors to a different URL. You can forward your domain name to any website, webpage, etc. which is available online. Redirected URL´s are most used to collect unnoticed personal data and sometimes they are phishing attacks. 

Active Content 

Active content is any web page element that can execute code or perform actions on your browser, such as animations, videos, games, or forms. While active content can enhance your online experience, it can also pose security risks, such as malware infection, phishing, or data theft. The most popular language for active content is Java and Javascript. 

This website uses the JavaScript library jQuery to increase the loading speed of our website. 

On our website we use active Java script content from external providers - web services. These external providers may receive personal information about your visit to our website. Processing of data outside the EU may be possible. 

You can protect yourself by installing a browser extension such as “NoScript” or “uBlock Origin” or disabling JavaScript in your browser. This may lead to functional restrictions on the websites you visit. 

Further information to JavaScript: https://en.wikipedia.org/wiki/JavaScript 

7. Implemented Fonts

All fonts used are integrated locally. There is no connection to other foreign servers and therefore no personal data is transmitted. 

8. Plugins

Typo3 Plugins

We use different TYPO3 plugins for the website. Great care is taken to ensure that the plugins are GDPR compliant. No personal data is collected through the plugins used. 

9. Contact Form

a) Description an Extent of Data Handling 

You can send us an inquiry using the contact form on our website. The personal data you provide when you contact us will be stored. In order to respond to you, all you need to do is provide your email address. 

In this context, the data will not be passed on to third parties. 

b) Legal Basis and purpose of Data Processing 

– Art. 6 Abs. 1 S. 1 lit. b. GDPR: performance of a contract, if the request is aimed at concluding a contract or the execution of the contract 

– Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

The data will only be processed to answer your query. 

c) Duration of Store und possibility of objection 

The data will be deleted immediately after your request has been processed, if there is no legal obligation to retain such data. 

If you have sent data via email, the process ends when the respective conversation has ended. Once an issue has been clarified, the conversation can be considered over. 

The data for which there is a legal obligation to retain data will continue to be retained (6 years para § 257 (1) 2, (4) HGB). 

10. Contact via our email address, by telephone or fax

a) Description an Extent of Data Handling 

You can contact us using the contact details provided on our website (telephone number, fax number and email address). The personal data you provide when you contact us will be stored. 

In this context, the data will not be passed on to third parties. 

b) Legal Basis and purpose of Data Processing 

– Art. 6 Abs. 1 S. 1 lit. b. GDPR: performance of a contract, if the request is aimed at concluding a contract or the execution of the contract 

– Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

The data will only be processed to answer your query. 

c) Duration of Store und possibility of objection 

The data will be deleted immediately after your request has been processed, if there is no legal obligation to retain such data. 

If you have sent data via email, the process ends when the respective conversation has ended. Once an issue has been clarified, the conversation can be considered over. 

The data for which there is a legal obligation to retain data will continue to be retained (6 years para § 257 (1) 2, (4) HGB). 

If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot continue. 

In this case, all data stored for contacting us will be deleted. 

11. Handling with job applicant data

a) Description an Extent of Data Handling 

You can send us spontaneous applications using the contact details (telephone number, fax number and email address) provided on our Website. 

It is also possible to send an application with all the necessary personal data and relevant documents to us using the application email address we provide directly with the respective job offer. 

b) Legal Basis and purpose of Data Processing 

Providing your personal data in an application is voluntary. Data processing and processing of special categories of personal data is based on your content. 

The data is used for the following purposes: 

  1. a) Contact you, based on your application. 
  2. b) Initiation and justification of the employment relationship. 
  3. c) If we have your consent, to send you personalized information about vacancies. 
  4. d) To fulfill legal obligations or to defend against asserted legal claims (duty of proof in accordance with the General Equal Treatment Act (AGG). 

– Legal Basis for data processing: 

Art. 6 Abs. 1 S. 1 lit. a. GDPR: Consent to the processing, voluntary sending of job application data 

– Legal Basis for carrying out the application process: 

Art. 6 Abs. 1 lit. b GDPR and § 26 BDSG 

– Legal Basis for temporary storage of your personal data 

– Art. 6 Abs. 1 lit. f GDPR: Legitimate interest, in all other cases 

c) Transfers to Third Party 

Only certain people and positions in our company receive your personal data in order to fulfill our contractual and legal obligations. These are, for example, the respective specialist areas and departments, representatives of the severely disabled employees and other. 

d) Duration of Store und possibility of objection 

Your data will be stored for as long as it is necessary to fulfill the respective purpose. It will be also stored as long as there are legal retention obligations and no different information is provided about individual processing (Duty of proof for the General Equal Treatment Act (AGG)). 

Six months after the end of the application process, this is the time of announcement of the decision. 

If you have agreed that we may store your data in our applicant pool for a longer period, we will do so with your consent for 24 months. Your data will then be deleted. 

Receipts/booking data for any reimbursement of travel expenses or expenses are archived in accordance with tax law requirements. 

If an employment relationship begins between us, your personal data will be included in our personnel file. 

You can revoke your consent at any time. 

Automated individual decision-making 

We don´t use purely Automated individual decision-making to decide. 

12. Data processing in third countries

Data transfer to third countries (countries outside the European Economic Area -EEA) takes place with the cookies and social media Sites described here. 

13. Links in graphics or text

The links we offer generally lead you directly to your destination without additional information or detours. We have marked external links that lead outside of our offering accordingly. We have marked external links that lead outside of our offering accordingly. 

14. Deletion of Data

Your data will be stored for as long as it is necessary to fulfill the respective purpose. It will be also stored as long as there are legal retention obligations and no different information is provided about individual processing. 

  • Revocation of your consent to processing in accordance with Art.6 (1) a or Art. 9 (2) a GDPR 
  • Objection of processing para Art. 21 (1) GDPR if there are no other overriding legitimate reasons, or you submit objection para 21 (2) GDPR 
  • The data for which there is a legal obligation to retain data, will be stored by law stored for a specified period (10 years after § 257 Abs. HGB, § 146 (2) AO) 
  • Log files are deleted after 30 days at the latest in accordance with Section 25 of the Telecommunications Telemedia Data Protection Act (TTDSG) 

15. Data Subject Rights

As a user of our website, you are a data subject and you have various rights under the GDPR. These result from Articles 15 to 18, 21 GDPR: 

Right of access 

You can obtain information in accordance with Art.15 GDPR to request information about your personal data processed by us. Please specify your request to make it easier for us to compile the necessary data. Please note that your right to information may be restricted under certain circumstances in accordance with legal regulations (in particular Section 34 BDSG). 

Right to rectification 

If your information is no longer correct, you can request a report para Art. 16 GDPR. If your data is not complete, you can request it to be completed. 

Right to erasure 

You can request (Art. 17 GDPR) the deletion of your personal data. This only applies to data that is not subject to a legal obligation to be stored. 

Right to restriction of processing 

You can request (Art. 18 GDPR) that the processing of your data be restricted. 

Right to object 

You can object to the processing of your personal data at any time (Art. 21 GDPR). We can only comply with this if no legal regulations stand in the way of fulfilling our tasks. 

Right for no Automated individual decision-making, including profiling 

You have the right to reject an Automated individual decision-making, including profiling. 

Right to complaint 

If you believe that we have not correctly followed all regulations when processing your personal data, you can contact us at any time with a complaint. 

Right to lodge a complaint with a supervisory authority 

In addition to other administrative or judicial options, you have the right to contact the supervisory authority with a complaint. You have this option in the member state of your place of residence, your place of work or the place of the alleged violation, if you believe that the processing of your personal data is not in compliant with the GDPR. 

If you file a complaint, you will be informed of the status of the matter and the outcome. The options for legal redress (Art. 78 GDPR) will also be explained to you. 

The supervisory authority responsible for is HASENKOPF Industrie Manufaktur GmbH: 

Bayerisches Landesamt für Datenschutzaufsicht Postfach 606 91511 Ansbach Germany Telefon: +49 (0) 981 53 1300 Telefax: +49 (0) 981 53 98 1300 E-Mail: poststelle@lda.bayern.de