Privacy
The responsible party within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (DSGVO), is:
Pütz Security AG
Carl-Zeiss-Strasse 38-40
24568 Kaltenkirchen
Tel.: 0 41 91 – 99 66 0
Fax.: 0 41 91 – 99 66 33
Email: kontakt@puetz-security.de
General
We have designed the development of the website to collect as little data from you as possible. In principle, it is possible to visit our website without providing personal data. Only if you decide to use certain services (e.g. use of a contact form), the processing of personal data becomes necessary. In doing so, we always take care to process your personal data only in accordance with a legal basis or consent given by you. We comply with the regulations of the General Data Protection Regulation (DSGVO) in force since 25.5.2018 and the respective applicable national regulations, such as the Federal Data Protection Act, the Telemedia Act or other more specific laws on data protection.
Definitions
We use the following terms, among others, in this Privacy Policy:
a) personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
b) person concerned
Data subject is any identified or identifiable natural person whose personal data are processed by the controller.
c) Processing
Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.
e) Profiling
Profiling is any type of automated processing of personal data that consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person’s job performance, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.
f) Pseudonymization
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
g) Controller or person responsible for processing
Controller or data controller is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.
h) Processor
Processor means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the Controller.
i) Recipient
Recipient means a natural or legal person, public authority, agency or other body to whom Personal Data is disclosed, whether or not a third party. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.
j) Third
Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.
k) Consent
Consent shall mean any freely given indication of the data subject’s wishes for the specific case in an informed and unambiguous manner in the form of a statement or any other unambiguous affirmative act by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.
Your data subject rights
You can exercise the following rights at any time using the contact details provided by our data protection officer:
- Information about your data stored by us and its processing (Art. 15 DSGVO),
- Correction of inaccurate personal data (Art. 16 GDPR),
- Deletion of your data stored by us (Art. 17 DSGVO),
- Restriction of data processing if we are not yet allowed to delete your data due to legal obligations (Art. 18 DSGVO),
- object to the processing of your data by us (Art. 21 DSGVO) and
- Data portability, provided that you have consented to the data processing or have concluded a contract with us (Art. 20 DSGVO).
If you have given us consent, you can revoke this at any time with effect for the future.
You may at any time submit a complaint to a supervisory authority, e.g. the competent supervisory authority in the federal state of your residence or the authority responsible for us as the responsible body.
A list of supervisory authorities (for the non-public sector) with address can be found at: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Application procedure
If you apply electronically to Pütz Security AG, your details will only be used to process your application and will not be passed on to third parties. Please note that applications sent to Pütz Security AG by e-mail are transmitted unencrypted. In this respect, there is a risk that unauthorized persons can intercept and use this data.
Collection of general information when visiting our website
Nature and purpose of the processing:
When you access our website, i.e., if you do not register or otherwise submit information, information of a general nature is automatically collected. This information (server log files) includes, for example, the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and the like.
In particular, they are processed for the following purposes:
- Ensuring that the website connection is established without any problems,
- Ensuring a smooth use of our website,
- Evaluation of system security and stability, and
- for other administrative purposes.
We do not use your data to draw conclusions about your person. Information of this kind will be used by us if necessary. evaluated statistically in order to optimize our Internet presence and the technology behind it.
Legal basis:
The processing is carried out in accordance with Art. 6 para. 1 lit. f DSGVO on the basis of our legitimate interest in improving the stability and functionality of our website.
Recipient:
Recipients of the data may be technical service providers who act as order processors for the operation and maintenance of our website.
Storage period:
The data is deleted as soon as it is no longer required for the purpose of collection. This is generally the case for the data used to provide the website when the respective session has ended.
Provision prescribed or required:
The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website is not guaranteed. In addition, individual services and services may not be available or may be restricted. For this reason, an objection is excluded.
Contact form
Nature and purpose of the processing:
The data you enter will be stored for the purpose of individual communication with you. For this purpose, it is necessary to provide a valid e-mail address and your name. This is used for the assignment of the request and the subsequent response to the same. The specification of further data is optional.
Legal basis:
The processing of the data entered in the contact form is based on a legitimate interest (Art. 6 para. 1 lit. f DSGVO).
By providing the contact form, we would like to enable you to contact us in an uncomplicated way. The information you provide will be stored for the purpose of processing the request and for possible follow-up questions.
If you contact us to request a quote, the data entered in the contact form will be processed to carry out pre-contractual measures (Art. 6 para. 1 lit. b DSGVO).
Recipient:
Recipients of the data are, if applicable, order processors.
Storage period:
Data will be deleted no later than 6 months after processing the request.
If a contractual relationship arises, we are subject to the statutory retention periods according to the German Commercial Code (HGB) and delete your data after these periods have expired.
Provision prescribed or required:
The provision of your personal data is voluntary. However, we can only process your request if you provide us with your name, e-mail address and the reason for the request.
General notes on presence in social networks
In order to present our company in the best possible way and to communicate with you as a user, customer or interested party and to inform you about the services we offer, we make use of our presence in social networks.
You can find us on the following platforms or social networks
The use of social networks involves the processing of data outside the European Union (EU) and the European Economic Area (EEA). An equivalent level of data protection as exists in the EU cannot be guaranteed in all countries outside the EU.
In this context, it may lead to risks for you as a user if the transmitted data is processed in so-called third countries with an inadequate level of data protection.
This makes it more difficult to enforce known user rights. In addition, it may happen that your data is not processed in your interest, by the provider in the third country.
Provided that providers from the USA have certified themselves under the so-called Privacy Shield Agreement – an agreement on data protection between the USA and the EU – these providers are obliged to comply with the data protection standards of the EU.
The processing purposes pursued by the social networks usually differ from ours. Thus, it mostly happens that the data collected from you in social networks is processed for purposes of market research, advertising and creation of user profiles for personalized advertising (e.g. Facebook, Google, Instagram, etc.).
To realize this, cookies are used, which record user behavior and enable profiling of the user. In the case of Facebook, it also comes to a creation of a user profile of people who do not maintain a registered account on Facebook.
A specific list of the purposes for which user data is processed can be found in the data protection notices of the respective providers. By making the appropriate settings in your user account, the profiling of you can be restricted, at least to a certain extent. For the exact procedure, please read the corresponding data protection information of the respective provider.
Facebook Fanpage
When you visit our Facebook page, Facebook collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used to provide us, as operators of the Facebook pages, with statistical information about the use of the Facebook page. For more information, Facebook provides the following link: http://de-de.facebook.com/help/pages/insights.
By means of the transmitted statistical information, it is not possible for us to draw conclusions about individual users. We use them only to respond to the interests of our users and to continuously improve and ensure the quality of our online presence.
We collect your data via our fan page only to realize a possible provision for communication and interaction with us. This collection usually includes your name, message content, comment content, and the profile information you “publicly” provide.
The processing of your personal data for our above-mentioned purposes is based on our legitimate business and communicative interest in offering an information and communication channel in accordance with. Art. 6 par. 1 lit. f GDPR. If you as a user have given your consent to the data processing to the respective provider of the social network, the legal basis of the processing extends to Art. 6 para. 1 lit. a, Art. 7 DSGVO.
Due to the fact that the actual data processing is carried out by the provider of the social network, our access to your data is limited. Only the provider of the social network is authorized to fully access your data. Due to this, only the provider can directly take and implement appropriate measures to fulfill your user rights (information request, deletion request, objection, etc.). The most effective way to assert the corresponding rights is therefore directly against the respective provider.
If you still need help with this matter, please feel free to contact us.
Data subject rights
With the Facebook “Page Controller Addendum”, the rights and obligations to be complied with together with Facebook are shown. This can be found at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
If you wish to request information, please use the appropriate contact form at the following link: https://www.facebook.com/help/contact/308592359910928.
Below you will find a detailed description of the respective data processing by the providers and their objection options (so-called opt-out) via the corresponding links to the providers’ websites:
- Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) – Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active https://www.facebook.com/legal/terms/page_controller_addendum.
- LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung, Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.
Use of script libraries (Google Web Fonts)
Nature and purpose of the processing:
In order to display our content correctly and in a graphically appealing manner across browsers, we use “Google Web Fonts” from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter “Google”) on this website to display fonts.
The privacy policy of the library operator Google can be found here: https://www.google.com/policies/privacy/
Legal basis:
The legal basis for the integration of Google Webfonts and the associated data transfer to Google is your consent (Art. 6 para. 1 lit. a DSGVO).
Recipient:
Calling script libraries or font libraries automatically triggers a connection to the operator of the library. It is theoretically possible – but currently also unclear whether and for what purposes – that the operator collects Google data in this case.
Storage period:
We do not collect any personal data through the integration of Google Web Fonts.
For more information on Google Web Fonts, please visit https://developers.google.com/fonts/faq and see Google’s privacy policy: https://www.google.com/policies/privacy/.
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield https://www.privacyshield.gov/EU-US-Framework.
Provision prescribed or required:
The provision of personal data is neither legally nor contractually required. However, without the correct display of the contents of standard fonts can not be enabled.
Withdrawal of consent:
The JavaScript programming language is regularly used to display the content. You can therefore object to the data processing by deactivating the execution of JavaScript in your browser or by installing a JavaScript blocker. Please note that this may result in functional restrictions on the website.
Use of Google Maps
Nature and purpose of the processing:
On this website we use the offer of Google Maps. Google Maps is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter “Google”). This allows us to show you interactive maps directly in the website and enables you to use the map function comfortably.
You can find more information about data processing by Google in the Google privacy policy. There you can also change your personal privacy settings in the Privacy Center.
Detailed instructions on how to manage your own data in connection with Google products can be found here.
Legal basis:
The legal basis for the integration of Google Maps and the associated data transfer to Google is your consent (Art. 6 para. 1 lit. a DSGVO).
Recipient:
By visiting the website, Google receives information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data is directly assigned to your account.
If you do not want the assignment in your profile at Google, you must log out of Google before activating the button. Google stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the provision of tailored advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact Google to exercise this right.
Storage period:
We do not collect any personal data through the integration of Google Maps.
Third country transfer:
Google processes your data in the USA and has submitted to the EU_US Privacy Shield https://www.privacyshield.gov/EU-US-Framework.
Withdrawal of consent:
If you do not want Google to collect, process or use data about you via our website, you can deactivate JavaScript in your browser settings. In this case, however, you will not be able to use our website, or only to a limited extent.
Provision prescribed or required:
The provision of your personal data is voluntary, based solely on your consent. If you prevent access, this may result in functional restrictions on the website.
SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.
Change to our privacy policy
We reserve the right to adapt this data protection declaration so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new privacy policy will then apply to your next visit.
Questions for the data protection officer
If you have any questions about data protection, please write us an e-mail or contact the person responsible for data protection in our organization directly:
Sascha Kornberger
Data Protection Officer
Certified according to DSC Standard, § 4f BDSG, Art. 37 DSGVO
E-mail: datenschutz@kornberger-net.de
