Privacy Policy
Thank you
for visiting our website shop.unitec.de and for your interest in our company.
The
protection of your personal data, such as date of birth, name, telephone
number, address, etc., is an important concern for us.
The purpose
of this Privacy Policy is to inform you about the processing of your personal
data that we collect from you when you visit a Site. Our data protection
practice is in accordance with the legal regulations of the EU General Data
Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
The following data protection declaration serves to fulfil the information
obligations arising from the GDPR. These can be found, for example, in Art. 13
and Art. 14 et seq. GDPR.
The
controller within the meaning of Art. 4 No. 7 GDPR is the person who, alone or
jointly with others, decides on the purposes and means of the processing of
personal data.
With regard
to our website, the controller is:
UNITEC
Systemhaus Dreicad GmbH & Co. OHG
Maria-Montessori-Allee
1063457 Hanau
Germany
E-Mail: info@unitec.de
Phone: +49 (0)6181 57043 0Fax: +49 (0)6181 57043 10
Contact
details of the data protection officer
If you have
any questions about data protection, please contact
Provision
of the website and creation of log files
Every time
our website is accessed, our system automatically collects data and information
from the respective device (e.g. computer, mobile phone, tablet, etc.).
What
personal data is collected and to what extent is it processed?
(1)
information about the browser type and version used; (2) The operating system
of the retrieval device; (3) Host name of the accessing computer; (4) The IP
address of the retrieval device; (5) the date and time of access; (6) websites
and resources (images, files, other page content) accessed on our website; (7)
websites from which the user's system reached our website (referrer tracking);
(8) Notification of whether the retrieval was successful; (9) Amount of data
transferred
This data
is stored in the log files of our system. This data is not stored together with
personal data of a specific user, so that individual site visitors are not
identified.
Legal basis
for processing personal data
Art. 6 (1)
(f) GDPR (legitimate interest). Our legitimate interest is to ensure the
achievement of the purpose described below.
Purpose of
data processing
The
temporary (automated) storage of the data is necessary for the course of a
website visit in order to enable the website to be delivered. The storage and
processing of personal data is also carried out in order to maintain the
compatibility of our website for as many visitors as possible and to combat
abuse and eliminate faults. For this purpose, it is necessary to log the
technical data of the accessing computer in order to be able to react as early
as possible to display errors, attacks on our IT systems and/or errors in the
functionality of our website. In addition, the data is used to optimise the
website and to ensure the general security of our information technology
systems.
Duration of
storage
The
aforementioned technical data will be deleted as soon as they are no longer
needed to ensure the compatibility of the website for all visitors, but no
later than 3 months after accessing our website.
Objection
and deletion option
You can
object to the processing at any time in accordance with Art. 21 GDPR and
request the deletion of data in accordance with Art. 17 GDPR. You can find out
what rights you are entitled to and how to assert them at the bottom of this
privacy policy.
Special
functions of the website
Our site
offers you various functions that we collect, process and store personal data
when you use it. Below we explain what happens to this data:
Contact
form(s)
- What personal data is collected
and to what extent is it processed?
We will
process the data you have entered into our contact forms, which you have
entered in the input mask of the contact form, to fulfil the purpose stated
below.
- Legal basis for processing
personal data
Art. 6 (1)
(a) GDPR or Art. 9 (2) (a) GDPR (consent by unambiguous affirmative action or
conduct or explicit consent)
- Purpose
of data processing
We will
only use the data collected via our contact form or via our contact forms to
process the specific contact request received through the contact form.
- Duration
of storage
After
processing your request, the collected data will be deleted immediately,
provided that there are no statutory retention periods.
- Revocation
and deletion option
The
revocation and deletion options are based on the general regulations on the
right of revocation and the right to deletion under data protection law
described below in this privacy policy.
- Necessity
of providing personal data
The use of
the contact forms is voluntary and is neither contractually nor legally
required. You are not obliged to contact us via the contact form, but can also
use the other contact options given on our website. If you want to use our
contact form, you must fill in the fields marked as mandatory. If you do not
fill in the necessary information of the contact form with content, you will
either not be able to send the request, or we will unfortunately not be able to
process your request.
Login Area
- What personal data is collected
and to what extent is it processed?
We will
process the registration and login data you enter with us to fulfil the purpose
stated below.
- Legal basis for processing
personal data
Art. 6 (1)
(b) GDPR (implementation of (pre-)contractual measures)
- Purpose
of data processing
You have
the option of using a separate login area on our website. In order for us to be
able to check your authorization to use the protected area or documents, you
must enter your login data (e-mail or username and password) in the appropriate
form.
- Duration
of storage
The data
collected will be stored for as long as you maintain a user account with us.
- Objection
and deletion option
You can
find out what rights you are entitled to and how to assert them at the bottom
of this privacy policy.
- Necessity
of providing personal data
The use of
the login area on our website is contractually prescribed for the use of the
protected area. The use of the content protected by the login area is not
possible without entering the personal data. If you want to use our login area,
you must fill in the fields marked as mandatory (username and password). The
entry of the data requires the existence of a user account. Registration is not
possible if the data you have entered is incorrect. If the data is entered
incorrectly or not by you, the protected area cannot be used. However, the rest
of the site can still be used without a login.
Newsletter registration form
- What personal data is collected
and to what extent is it processed?
By
registering for the newsletter on our website, we receive the e-mail address
entered by you in the registration field and, if applicable, other contact
details, if you provide them to us via the newsletter registration form.
- Legal basis for processing
personal data
Art. 6 (1)
(a) GDPR or Art. 9 (2) (a) GDPR (consent by unambiguous affirmative action or
conduct or explicit consent)
- Purpose
of data processing
The data
recorded in the registration mask of our newsletter will be used by us
exclusively for the purpose of sending our newsletter, in which we inform you
about all our services and our news. After you have registered, we will send
you a confirmation email containing a link that you must click to complete the
subscription to our newsletter (double opt-in).
- Duration
of storage
Our
newsletter can be unsubscribed at any time by clicking on the unsubscribe link,
which is also included in each newsletter. Your data will be deleted by us
immediately after you have logged out. Likewise, your data will be deleted by
us immediately in the event of an incomplete registration. We reserve the right
to delete without giving reasons and without prior or subsequent information.
- Revocation
and removal option
You can
revoke your consent at any time in accordance with Art. 7 (3) GDPR. However,
the processing carried out up to the time of revocation remains unaffected by
this. With regard to other rights, we refer to the overview at the end of this
privacy policy.
- Necessity
of providing personal data
If you
would like to use our newsletter, you must fill in the fields marked as
mandatory and confirm your e-mail address by clicking on the double opt-in
link. The information on newsletter registration is neither necessary to enter
into a contract with us nor legally binding. They are used exclusively to send
our newsletter. If you do not fill in the necessary information with content,
we will unfortunately not be able to provide you with our newsletter service.
Appointment booking form
- What personal data is collected
and to what extent is it processed?
We will
process the data you enter as part of our appointment booking form to fulfil
the purpose stated below.
- Legal basis for processing
personal data
Art. 6 (1)
(b) GDPR (implementation of (pre-)contractual measures)
- Purpose
of data processing
We will
only use the data collected via our appointment booking form to process
appointment requests received through the appointment booking form.
- Duration
of storage
Your
appointment booking will be deleted by us immediately after 12 months after the
appointment was scheduled, unless there are any legal retention obligations. We
reserve the right to delete without giving reasons and without prior or
subsequent information.
- Objection
and deletion option
You can
find out what rights you are entitled to and how to assert them at the bottom
of this privacy policy.
- Necessity
of providing personal data
The use of
our appointment booking form is neither contractually nor legally required, but
necessary if you want to book an appointment with us online. To book online,
you must provide certain mandatory information. If you do not fill in the
mandatory information completely, your appointment booking cannot be accepted
or processed.
Automated
credit check / scoring
If you wish
to enter into a contract with us, we reserve the right to process your personal
data exclusively by automated means in order to check your creditworthiness. We
are also entitled to make such an automated decision in accordance with Art. 22
(2) (a) GDPR. Whether the contract can be concluded or not depends on the
result of the automated credit check. A credit check calculates statistical
probabilities of default. The credit report can contain probability values
(score values) that are calculated on the basis of scientifically recognized
mathematical-statistical methods. A variety of characteristics, such as income,
address data, occupation, marital status and previous payment history, are used
to infer the customer's future risk of default. The result is expressed in the
form of a payment value (so-called score). The information obtained in this way
is the basis for our decision on the establishment, implementation or
termination of a contractual relationship. If you believe that you have been wrongly
excluded from concluding the contract due to the credit check, you are welcome
to explain your point of view to us by e-mail. We will then review the
automated decision in accordance with Art. 22 para. 3 GDPR in the specific
individual case. In order to be able to carry out the credit check, we may
store and process your personal data in accordance with Art. 6 (1) (b) GDPR.
On the
basis of the upcoming contract, we transmit your data to the following
provider(s) in the following cases:
- Creditreform
Hanau:
Our company
regularly checks your creditworthiness when concluding contracts and, in
certain cases where there is a legitimate interest, also for existing
customers. To this end, we work together with Creditreform Hanau, Hammfelddamm
13, 41460 Neuss, Germany (http://www.creditreform.de/), from whom we receive the
necessary data. On behalf of Creditreform Hanau, we would like to provide you
with the following information in advance in accordance with Art. 14 EU-GDPR:
Creditreform
Hanau is a consumer credit agency. It operates a database in which
creditworthiness information about private individuals is stored.
On this
basis, Creditreform Hanau provides credit information to its customers.
Customers include, for example, credit institutions, leasing companies,
insurance companies, telecommunications companies, receivables management
companies, shipping, wholesale and retail companies as well as other companies
that supply or provide goods or services. Within the framework of the legal
provisions, part of the data available in the information database is also used
for the supply of other company databases, including for use for address
trading purposes.
In
particular, the database of Creditreform Hanau stores information about the
name, address, date of birth, e-mail address, payment behaviour and
shareholding of persons. The purpose of the processing of the stored data is to
provide information about the creditworthiness of the requested person. The
legal basis for the processing is Art. 6 para. 1f EU GDPR. According to this
provision, information about this data may only be provided if a customer
credibly demonstrates a legitimate interest in knowing this information. If
data is transferred to countries outside the EU, this is done on the basis of
the so-called "standard contractual clauses", which you can find
under the following link:
http://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32001D0497&from=DE
or have it
sent to you from there.
The data
will be stored for as long as knowledge of it is necessary for the fulfilment
of the purpose for which it was stored. As a rule, knowledge is necessary for
an initial storage period of three years. After expiration, it is checked
whether storage is still necessary, otherwise the data will be deleted on a
daily basis. In the event that a matter is settled, the data will be deleted
three years after it has been dealt with on a day-to-day basis. Pursuant to
Section 882e of the Code of Civil Procedure, entries in the register of debtors
are deleted on a day-to-day basis after the expiry of three years from the date
of the registration order.
Legitimate
interests within the meaning of Art. 6 para. 1f EU GDPR can be: credit
decision, business initiation, shareholdings, receivables, credit checks,
insurance contracts, enforcement information. You have a right to information
from Creditreform Hanau about the data stored there about your person. If the
data stored about you is incorrect, you have the right to have it corrected or
deleted. If it cannot be determined immediately whether the data is incorrect
or correct, you have a right to have the respective data blocked until
clarification. If your data is incomplete, you can request that it be
completed.
If you have
given your consent to the processing of the data stored by Creditreform Hanau,
you have the right to revoke this consent at any time. The revocation does not
affect the lawfulness of the processing of your data on the basis of your
consent until any revocation.
If you have
any objections, wishes or complaints regarding data protection, you can contact
the data protection officer of Creditreform Hanau at any time. He will help you
quickly and confidently in all questions of data protection. You can also
complain about the processing of the data by Creditreform Hanau to the State
Commissioner for Data Protection responsible for your federal state.
The data
that Creditreform Hanau has stored about you comes from publicly accessible
sources, from debt collection agencies and from their customers.
To describe
your creditworthiness, Creditreform Hanau calculates a score value for your
data. The score value includes data on age and gender, address data and, in
some cases, payment history data. This data is included in the score value
calculation with different weightings. Creditreform Hanau customers use the
score values as a tool when making their own credit decisions.
Right to
object:
The
processing of the data stored by Creditreform Hanau is carried out for
compelling reasons of creditor and credit protection worthy of protection,
which regularly outweigh your interests, rights and freedoms, or serves to
assert, exercise or defend legal claims. You can only object to the processing
of your data for reasons that arise from a special situation in your case and
must be proven. If such special reasons are demonstrably present, the data will
no longer be processed. If you object to the processing of your data for
advertising and marketing purposes, the data will no longer be processed for
these purposes.
Responsible
within the meaning of Art. 4 No. 7 EU-GDPR is Creditreform Hanau, Hammfelddamm
13, 41460 Neuss, Germany (http://www.creditreform.de/). You can reach Creditreform Hanau
for all questions at the following contact details: Phone: +49 2131 109-0 ,
Fax: +49 2131 109-8000 , E-Mail: kontakt@creditreform.de
You can
contact the responsible data protection officer at the following contact
details: Creditreform Hanau, Data Protection Officer, Hammfelddamm 13, 41460
Neuss, Germany, http://www.creditreform.de/.
Statistical
analysis of visits to this website - Webtracker
When you
access this website or individual files on the website, we collect, process and
store the following data: IP address, website from which the file was accessed,
name of the file, date and time of access, amount of data transferred and
notification of the success of the access (so-called web log). We use this
access data exclusively in non-personalized form for the continuous improvement
of our Internet offer and for statistical purposes. We also use the following
web trackers to evaluate the visits to this website:
We use the
Google Analytics service of the company Google Ireland Ltd., Gordon House,
Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. The transfer of personal data also
takes place to the USA. With regard to the transfer of personal data to the
USA, there is an adequacy decision on the EU-US Data Privacy Framework of the
EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is
certified under the DPF, so that the usual level of protection of the GDPR
applies to the transmission.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
Google
Analytics is a web tracker that analyzes the behavior of site visitors and
their interactions with our website and provides us with evaluations and
forecasts about the content and products of our website and their popularity
(so-called tracking). We have integrated Google Analytics so that the service
can compile an analysis of the surfing behavior of the site users. For this
purpose, Google collects the page interactions of site visitors with our
website and, if applicable, existing information resulting from the reading of
cookies or other storage technologies and prepares it statistically for us.
Google Analytics uses data processing technologies that enable the tracking of
individual site visitors and their interaction with other Google services, such
as the Google Ads advertising network. Data from other Google services is also
used to close data gaps using machine learning technologies, modelled
statistics and forecasting functions and to create comprehensive statistics on
the content of our website. If Google Analytics is active on our website, the
data determined by Google Analytics will be transmitted to servers of the
company Google Ireland Limited. As part of the order processing, personal data
may also be transmitted to the servers of the parent company Google LLC, 1600
Amphitheatre Parkway, 94043 Mountain View, United States. We carry out the
analysis through Google Analytics in order to constantly optimize our Internet
offer and make it more accessible. This is a so-called range measurement.
For the
processing itself, the service or we collect the following data: data on the
interactions of site visitors with the content of the website, data on the
handling of the services presented on our website, data from external Google
services, insofar as they interact with our website, such as advertising data
or data on behavior in relation to advertising, data on gross geographical
origin, the browser used, operating
system and other information about the device used.
Google
Analytics will store the data relevant to the provision of web tracking for as
long as it is necessary to fulfill the booked web service. The data collection
and storage is anonymized. Insofar as it is possible to subsequently establish
a personal reference to specific actions through individual interactions of
site visitors, we will delete the collected data when the purpose has been
achieved. The data will be deleted at the latest when it is not subject to any
statutory retention obligations. As a rule, we will delete this data after 12
months at the latest. You can access the provider's certification under the
EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://policies.google.com/privacy.
The
provider also offers an opt-out option under https://tools.google.com/dlpage/gaoptout?hl=de.
We use the
Google Tag Manager service of the company Google Ireland Ltd., Gordon House,
Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, website: https://www.google.com/. The transfer of personal data also
takes place to the USA. With regard to the transfer of personal data to the
USA, there is an adequacy decision on the EU-US Data Privacy Framework of the
EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is
certified under the DPF, so that the usual level of protection of the GDPR
applies to the transmission.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
Google Tag
Manager offers a technical platform to execute other web tools and web tracking
programs by means of so-called "tags" and to be able to control them
in a bundled manner. In this context, Google Tag Manager stores cookies on your
computer and, if web tracking tools are executed using Google Tag Manager,
analyzes your surfing behavior (so-called "tracking"). The data
generated by the "tags" is merged, stored, and processed by Google
Tag Manager under a unified user interface. All integrated "tags" are
listed separately in this privacy policy. As part of the use of our website
when the integration of "tags" from Google Tag Manager is activated,
data such as your IP address and your user activities are transmitted to
servers of the company Google. The tracking tools used in Google Tag Manager
ensure that the IP address is anonymized by Google Tag Manager before
transmission by IP anonymizing the source code. Tag Manager can be used to link
and evaluate measured values from different service providers (Google and
third-party providers) on the basis of so-called tag management. Google Tag
Manager helps us compile reports on website activity and control our website's
web tools.
For the
processing itself, the service or we collect the following data: cookies, web
tracking data, outgoing or inbound links, information generated by the
integration and activation of JavaScript code on the website by Google Tag
Manager and the web tools triggered by Google Tag Manager.
You can
access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://policies.google.com/privacy.
The
provider also offers an opt-out option under https://policies.google.com/privacy.
On our
site, we use the Leadinfo service of the company Leadinfo / Team.Blue Gmbh,
Bunsenstr. 19, 40215 Düsseldorf, Germany, e-mail: privacy@leadinfo.com,
website: https://www.leadinfo.com/.
The transfer of personal data
takes place exclusively to servers in the European Union.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
Our website
uses the Leadinfo service to collect information about visitors to our website.
With the help of Leadinfo, we gain insights into the companies that visit our
website, as well as their interests and behavior on the site. This enables us
to identify potential customers and address them in a targeted manner. This is
B2B lead generation, i.e. the generation of potential business contacts.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.leadinfo.com/de/rechtliches/datenschutz/.
Integration
of external web services and processing of data outside the EU
On our
website, we use active content from external providers, so-called web services.
By accessing our website, these external providers may receive personal
information about your visit to our website. In this case, it may be possible
to process data outside the EU. You can prevent this by installing a
corresponding browser plugin or deactivating the execution of scripts in your
browser. This may lead to functional restrictions on websites that you visit.
We use the
following external web services:
We use the
AddToAny service on our site from the company AddToAny, 4520 Irving Street
Suite 2, 94122 San Francisco, CA 94122, United States, Website: https://www.addtoany.com/. The transfer will also take place
to a third country for which no adequacy decision has been taken by the
Commission. Therefore, the usual level of protection for the GDPR cannot be
guaranteed during the transfer, as it cannot be ruled out that authorities in
the third country, for example, can access the collected data.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
AddToAny is
a service that enables simplified sharing of websites. This is made possible by
buttons that display a list of bookmarking and sharing services when hovered
over with the mouse pointer or clicked. The service also allows us to display
follow buttons.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.addtoany.com/privacy.
On our
site, we use the CloudFlare service of the company Cloudflare, Inc., 101
Townsend St, 94107 San Francisco, United States, e-mail: support@cloudflare.com, website: https://www.cloudflare.com/de-de/. The transfer of personal data also
takes place to the USA. With regard to the transfer of personal data to the
USA, there is an adequacy decision on the EU-US Data Privacy Framework of the
EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is
certified under the DPF, so that the usual level of protection of the GDPR
applies to the transmission.
The legal
basis for the processing of personal data is our legitimate interest in
accordance with Art. 6 (1) (f) GDPR. Our legitimate interest lies in achieving
the purpose described below.
Cloudflare
is a so-called content delivery network that provides security functions in
addition to dividing the website into several servers. Cloudflare also acts as
a reverse proxy for our website.
You can
access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
With regard
to processing, you have the right to object as set out in Art. 21. You can find
more information at the end of this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.cloudflare.com/privacypolicy/.
We use the
Font Awesome service of the company Fonticons Inc., 6 Porter Road, Apartment
3R, MA 02140 Cambridge, United States, e-mail: hello@fontawesome.com, website: https://fontawesome.com/. The transfer will also take place
to a third country for which no adequacy decision has been taken by the
Commission. Therefore, the usual level of protection for the GDPR cannot be
guaranteed during the transfer, as it cannot be ruled out that authorities in
the third country, for example, can access the collected data.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
Fonts are
loaded on our site via the Font Awesome service in order to be able to show you
the page in a visually better version.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://fontawesome.com/privacy.
We use the
Jsdelivr service of the company Prospect One Sp., Krolweska 65A, 30-081 Krakow,
Poland, e-mail: hello@prospectone.io, website: https://prospectone.io/. The transfer of personal data
takes place exclusively to servers in the European Union.
The legal
basis for the processing of personal data is our legitimate interest in
accordance with Art. 6 (1) (f) GDPR. Our legitimate interest lies in achieving
the purpose described below.
JSDelivr is
a content delivery network that mirrors our content across different servers to
ensure optimal accessibility worldwide.
With regard
to processing, you have the right to object as set out in Art. 21. You can find
more information at the end of this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.jsdelivr.com/privacy-policy-jsdelivr-com.
On our
site, we use the OpenJS Foundation service of the company OpenJS Foundation, 1
Letterman Drive, Building D, Suite D4700, 94129 San Francisco, United States,
e-mail: privacy@openjsf.org, website: https://js.foundation/. The transfer will also take place
to a third country for which no adequacy decision has been taken by the
Commission. Therefore, the usual level of protection for the GDPR cannot be
guaranteed during the transfer, as it cannot be ruled out that authorities in
the third country, for example, can access the collected data.
The legal
basis for the processing of personal data is your consent in accordance with
Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, which you have given on our
website.
jQuery is a
free JavaScript library that is required for the proper operation of our
website. It contains a code database, which is a basic requirement for many
functions of our website.
You can
revoke your consent at any time. You can find more information on how to
withdraw your consent either at the time of consent itself or at the end of
this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://openjsf.org/wp-content/uploads/sites/84/2021/04/OpenJS-Foundation-Privacy-Policy-2019-11-15.pdf.
On our
site, we use the legal text snippet and modules service of the company
Website-Check GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/. The transfer of personal data
takes place exclusively to servers in the European Union.
The legal
basis for the processing is Art. 6 (1) (c) GDPR. The use of the service helps
us to meet our legal obligations.
With the
help of the service, content of our legal texts is loaded on our website. The
current legal texts are loaded via the integration on our website. This
integration can also be used to load further technical modules with regard to
the legal texts or legally necessary elements.
You can
find out what rights you have with regard to processing at the end of this
privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.website-check.de/datenschutzerklaerung/.
On our
site, we use the Website-Check Siegel service of the company Website-Check
GmbH, Beethovenstraße 24, 66111 Saarbrücken, Germany, e-mail: support@website-check.de, website: https://www.website-check.de/. The transfer of personal data
takes place exclusively to servers in the European Union.
The legal
basis for the processing of personal data is our legitimate interest in
accordance with Art. 6 (1) (f) GDPR. Our legitimate interest lies in achieving
the purpose described below.
The script
of Website-Check GmbH is the technical integration of the Website-Check seal.
With this seal, we want to show that we take the issue of data protection very
seriously. The transmission of data to Website-Check GmbH takes place for
delivery and display of the seal on our site.
With regard
to processing, you have the right to object as set out in Art. 21. You can find
more information at the end of this privacy policy.
Further
information on the handling of the transmitted data can be found in the
provider's privacy policy under https://www.website-check.de/datenschutzerklaerung/.
Information
about the use of cookies
- What personal data is collected
and to what extent is it processed?
We
integrate and use cookies on various pages to enable certain functions of our
website and to integrate external web services. The so-called
"cookies" are small text files that your browser can store on your
access device. These text files contain a characteristic string of characters
that uniquely identifies the browser when you return to our website. The
process of storing a cookie file is also known as "setting a cookie".
Cookies can be set by the website itself as well as by external web services.
The cookies are set by our website or external web services in order to
maintain the full functionality of our website, to improve the
user-friendliness or to pursue the purpose specified with your consent. Cookie
technology also allows us to recognize individual visitors by pseudonyms, such
as an individual or random ID, so that we can offer more customized services. Details
are listed in the table below.
- Legal basis for processing
personal data
Insofar as
the cookies are processed on the basis of consent in accordance with Art. 6 (1)
(a) GDPR, this consent shall also be deemed to be consent within the meaning of
Section 25 (1) TDDDG for the setting of the cookie on the user's end device. If
another legal basis is mentioned in accordance with the GDPR (e.g. for the
fulfilment of a contract or for the fulfilment of legal obligations), the
storage or setting is based on an exception in accordance with Section 25 (2)
TDDDG. This is the case "if the sole purpose of storing information in the
end-user's terminal equipment or the sole purpose of accessing information
already stored in the end-user's terminal equipment is to carry out the
transmission of a message over a public telecommunications network" or
"if the storage of information in the end-user's terminal equipment or
access to information already stored in the end-user's terminal equipment
information is strictly necessary for the provider of a digital service to be
able to provide a digital service expressly requested by the user". The
relevant legal basis can be found in the cookie table listed later in this
point.
- Purpose
of data processing
The cookies
are set by our website or external web services in order to maintain the full
functionality of our website, to improve the user-friendliness or to pursue the
purpose specified with your consent. Cookie technology also allows us to
recognize individual visitors by pseudonyms, such as an individual or random
ID, so that we can offer more customized services. Details are listed in
the table below.
- Duration
of storage
Our cookies
are stored in your browser until they are deleted or, if it is a session
cookie, until the session has expired. Details are listed in the table
below.
- Objection
and removal option
You can set
your browser according to your wishes in such a way that the setting of cookies
is generally prevented. You can then decide on a case-by-case basis whether to
accept cookies or accept cookies in principle. Cookies can be used for various
purposes, e.g. to recognise that your access device is already connected to our
website (persistent cookies) or to remember recently viewed offers (session
cookies). If you have expressly given us permission to process your personal
data, you can withdraw this consent at any time. Please note that this does not
affect the lawfulness of processing carried out on the basis of consent before
its withdrawal.
_Ga |
unitec.de |
This
cookie assigns an ID to a user so that the web tracker can summarize the
user's actions under this ID. |
Art. 6
(1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) |
approx. 24 months |
Analytics |
|
_Ga_ |
unitec.de |
This
cookie, in conjunction with Google Analytics or Google Tag Manager, stores a
unique ID for a website visitor and tracks how the visitor uses the website. |
Art. 6
(1) (a) GDPR or Art. 9 (2) (a) GDPR (consent) |
approx. 24 months |
Analytics |
|
fe_typo_user |
unitec.de |
The
cookie is required by the Typo3 Web Content System. The cookie is stored
during the session. It is required to save certain website settings during
the website visit (session). |
Art. 6 (1) (f) GDPR (legitimate interests) |
Session |
Basic functionality |
|
of course |
unitec.de |
The
cookie stores the individual settings that a site visitor has set when
entering them in the Klaro! . |
Art. 6
(1) (c) GDPR (fulfilment of legal obligations) |
approx. 12 months |
Cookie-Banner |
Data
security and data protection, communication by e-mail
Your
personal data is protected by technical and organisational measures during
collection, storage and processing in such a way that they are not accessible
to third parties. In the case of unencrypted communication by e-mail, we cannot
guarantee complete data security on the transmission path to our IT systems, so
we recommend encrypted communication or post for information with a high need
for confidentiality.
Automatic e-mail archiving
- Scope
of personal data processing
We would
like to expressly point out that our mail system has an automated archiving
process. All incoming and outgoing e-mails are thus digitally archived in an
audit-proof manner.
- Legal basis for processing
personal data
Art. 6 (1)
(c) GDPR (legal obligation). The legal obligation is to comply with tax and
commercial law requirements (e.g. §§ 146, 147 AO, §§ 238, 257 HGB).
- Purpose
of data processing
The purpose
of archiving is to comply with tax law (e.g. §§ 146, 147 AO – obligation to
retain e-mails of tax relevance) and commercial law requirements (e.g. §§ 238,
257 HGB – obligation to archive business correspondence).
- Duration
of storage
Our e-mail
communication is stored until the expiry of retention obligations under tax and
commercial law. The retention period can be up to 10 years.
- Objection
and deletion option
You can
object to the processing at any time in accordance with Art. 21 GDPR and
request the deletion of data in accordance with Art. 17 GDPR. You can find out
what rights you are entitled to and how to assert them at the bottom of this
privacy policy.
- Handling
of application documents
If you have
any questions regarding our e-mail archiving system, please contact our data
protection officer. In addition, we would like to point out that we only
consider application documents in PDF file form. Zipped files (WinZip, WinRAR,
7Zip, etc.) are filtered out by our security systems and are not delivered. We
do not pay attention to applications in Word file format and other file formats
and delete them unread. Please note that application documents sent by e-mail
in unencrypted form may be opened by third parties before they arrive in our IT
systems. We assume that we are also allowed to answer unencrypted application
e-mails unencrypted. If you do not wish this, please let us know in your
application email.
Right to
information and correction requests – deletion & restriction of data –
revocation of consent – right to object
Right to
information
You have
the right to request confirmation as to whether we are processing your personal
data. If this is the case, you have a right to information about the
information specified in Art. 15 (1) GDPR, provided that the rights and
freedoms of other persons are not impaired (cf. Art. 15 (4) GDPR). We will also
be happy to provide you with a copy of the data.
Claim
for correction
In
accordance with Art. 16 GDPR, you have the right to have any incorrectly stored
personal data (such as address, name, etc.) corrected at any time. You can also
request that the data stored by us be completed at any time. A corresponding
adjustment will be made immediately.
Right to
erasure
In
accordance with Art. 17 para. 1 GDPR, you have the right to have us delete the
personal data collected about you if:
- the data is either no longer
needed;
- the legal basis for the
processing has ceased to exist without replacement due to the revocation
of your consent;
- you have objected to the
processing and there are no legitimate grounds for the processing;
- your data is processed
unlawfully;
- a legal obligation requires
this or a collection has taken place in accordance with Art. 8 para. 1
GDPR.
According
to Art. 17 para. 3 GDPR, the right does not exist if:
- the processing is necessary for
the exercise of the right to freedom of expression and information;
- your data has been collected on
the basis of a legal obligation;
- the processing is necessary for
reasons of public interest;
- the data is necessary for the
assertion, exercise or defence of legal claims.
Right to
restriction of processing
In accordance
with Art. 18 (1) GDPR, you have the right to request the restriction of the
processing of your personal data in individual cases.
This is the
case if:
- the accuracy of the personal
data is contested by you;
- the processing is unlawful and
you do not consent to its erasure;
- the data is no longer required
for the purpose of processing, but the data collected serves to assert,
exercise or defend legal claims;
- an objection has been lodged
against the processing in accordance with Art. 21 para. 1 GDPR and
it is still unclear which interests prevail.
Right of withdrawal
If you have
given us explicit consent to the processing of your personal data (Art. 6 para.
1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR), you can revoke this consent at
any time. Please note that this does not affect the lawfulness of the
processing carried out on the basis of consent before its revocation.
Right to
object
In
accordance with Art. 21 GDPR, you have the right to object at any time to the
processing of personal data concerning you that have been collected on the
basis of Art. 6 (1) (f) (in the context of a legitimate interest). You are only
entitled to this right if special circumstances speak against the storage and
processing.
How do
you exercise your rights?
You can
exercise your rights at any time by contacting the contact details below:
UNITEC
Systemhaus Dreicad GmbH & Co. OHGMaria-Montessori-Allee 1063457
HanauGermanyE-Mail: info@unitec.de
Phone: +49 (0)6181 57043 0Fax: +49 (0)6181 57043 10
Right to
data portability
In
accordance with Art. 20 GDPR, you have a right to the transfer of personal data
concerning you. We provide the data in a structured, commonly used and
machine-readable format. The data can be sent either to yourself or to a
controller designated by you.
We will
provide you with the following data upon request in accordance with Art. 20
para. 1 GDPR:
- Data collected on the basis of
explicit consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR;
- data that we have received from
you in accordance with Art. 6 (1) (b) GDPR within the framework of
existing contracts;
- Data processed by automated
means.
We will
transfer the personal data directly to a controller of your choice, insofar as
this is technically feasible. Please note that we are not allowed to transfer
data that interferes with the freedoms and rights of other persons in
accordance with Art. 20 para. 4 GDPR.
Right to
lodge a complaint with the supervisory authority pursuant to Art. 77 (1) GDPR
If you
suspect that your data is being processed illegally on our site, you can of
course have the problem clarified in court at any time. In addition, any other
legal option is open to you. Irrespective of this, you have the option of
contacting a supervisory authority in accordance with Art. 77 (1) GDPR. You
have the right to lodge a complaint in accordance with Art. 77 GDPR in the EU
member state of your place of residence, your place of work and/or the place of
the alleged infringement, i.e. You can choose the supervisory authority you are
contacting from the above locations. The supervisory authority to which the
complaint was lodged will then inform you of the status and results of your
submission, including the possibility of a judicial remedy pursuant to Art. 78
GDPR.