Kraftwerk-E. data protection

  • data protection

    Privacy Policy

    This website is provided by Handelsfabrik Sachsen GmbH.

    Handelsfabrik Sachsen GmbH

    Barthhügelsstrasse 40a

    01689 Weinböhla

    Tax number: 207 / 110 / 00 / 500

    VAT ID: DE346251432

    We take the privacy of our website users and the security of their personal information very seriously.

    Legal Notice:

    Handelsfabrik Sachsen GmbH constantly checks and updates the information on its websites. Despite all care, data and information of any kind may not be up to date. Any liability, guarantee or other responsibility for the topicality, correctness and completeness of the information provided is therefore excluded.

    The same applies to all other websites to which reference is made directly via hyperlink or in any other way. Handelsfabrik Sachsen GmbH is not responsible for the content of websites that are accessed as a result of such a connection or reference.

    Handelsfabrik Sachsen GmbH expressly rejects any form of liability, whether contractual liability, tort liability, strict liability or other liability, for direct or indirect damages, compensation for incidental damages, penalties including damages or specific damages resulting from or in connection with the fact that the Handelsfabrik Sachsen GmbH pages can be accessed, used or not used, or for a failure of performance, an interruption, a defect, a delay in transmission, a computer virus or other harmful elements or a line and system failure in connection with the Handelsfabrik Sachsen GmbH websites, regardless depends on whether Handelsfabrik Sachsen GmbH and/or its subsidiaries were aware of the possibility of such damage or not.

    Furthermore, Handelsfabrik Sachsen GmbH reserves the right to make changes or additions to the information provided at any time. Handelsfabrik Sachsen GmbH The content, structure and design of the websites are protected by copyright. Reproduction, modification, representation, distribution, transmission, publication, sale, licensing, processing, alienation or use of information or data for whatever purpose, in particular the use of texts, parts of texts or images, requires the prior written consent of Handelsfabrik Sachsen GmbH .

    Data protection declaration Handelsfabrik Sachsen GmbH

    1. Privacy Policy

    We look forward to your visit to our websites. Below we would like to inform you about the handling of your data in accordance with Article 13 of the General Data Protection Regulation (GDPR).

    Responsible person

    The body named in the legal notice is responsible for the data collection and processing described below.

    Storage of the IP address

    We store the IP address transmitted by your web browser strictly for a specific purpose for a period of seven days in the interest of being able to detect, limit and eliminate attacks on our websites. After this period of time, we delete the IP address. The legal basis is Article 6 Paragraph 1 Letter f) GDPR.

    Usage Data

    When you visit our websites, so-called usage data is temporarily stored as a log on our web server for statistical purposes in order to improve the quality of our websites. This data set consists of

    the page from which the file was requested,

    the name of the file,

    the date and time of the query,

    the amount of data transferred,

    the access status (file transferred, file not found),

    the description of the type of web browser used, the IP address of the requesting computer, which is deleted after seven days so that a personal reference can no longer be established.

    The log data mentioned is only stored anonymously.

    2. Data transfer to third parties

    Data transfer to third parties:

    We transmit your data as part of order processing in accordance with Art. 28 GDPR to service providers who support us in operating our websites and the associated processes. Our service providers are strictly bound to our instructions and are contractually obliged accordingly. We use the following service providers: Shopify Hosting.

    Data transfer to third countries:

    We sometimes transfer personal data to a third country outside the EU. We have ensured an appropriate level of data protection in each case.

    3. Explanations of security measures


    Data security:

    In order to protect your data as comprehensively as possible from unwanted access, we take technical and organizational measures. We use an encryption process on our pages. Your information is transmitted from your computer to our server and vice versa over the Internet using TLS encryption. You can recognize this because the lock symbol in your browser's status bar is closed and the address line begins with https://.

    4. User rights

    Your rights as a user:

    When processing your personal data, the GDPR grants you as a website user certain rights:

    a. Right to information (Article 15 GDPR):

    You have the right to request confirmation as to whether personal data concerning you is being processed; If this is the case, you have the right to information about this personal data and to the information listed in detail in Art. 15 GDPR.

    b. Right to rectification and deletion (Articles 16 and 17 GDPR):

    You have the right to immediately request the correction of incorrect personal data concerning you and, if necessary, the completion of incomplete personal data.

    You also have the right to request that personal data concerning you be deleted immediately if one of the reasons listed in detail in Article 17 GDPR applies, e.g. B. if the data is no longer needed for the purposes pursued.

    c. Right to restriction of processing (Article 18 GDPR):

    You have the right to request that processing be restricted if one of the conditions listed in Article 18 GDPR is met, e.g. B. if you have objected to the processing, for the duration of any examination.

    d. Right to data portability (Article 20 GDPR):

    In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request that this data be transmitted to a third party.

    e. Right to object (Art. 21 GDPR):

    If data is collected on the basis of Article 6 Paragraph 1 Letter f) (data processing to protect legitimate interests), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate reasons for the processing which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.

    f. Right to lodge a complaint with a supervisory authority

    According to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your data violates data protection regulations. The right to lodge a complaint can be asserted in particular with a supervisory authority in the member state of your place of residence, your place of work or the place of the alleged violation.

    5. Contact details for data protection officer

    Contact details of the data protection officer

    Our company data protection officer will be happy to provide you with information or suggestions on the subject of data protection:

    information follows

    6. Contact form

    You have the option of contacting us via a web form. To use our contact form we need your name and email address. You can provide further information, but you do not have to. By sending your message to us, you agree that we may process your personal data to process your request. Your request will be sent encrypted via https to our server.

    The legal basis for processing is Article 6 Paragraph 1 Letter b) GDPR. Your data will only be processed to answer your request and then deleted. It will not be passed on to third parties.

    7. Online applications

    We process your personal data in accordance with the applicable data protection regulations based on Section 26 BDSG. We process the data that you provide to us as part of your online application exclusively for the purpose of selecting applicants. Data processing for other purposes does not take place.
    You yourself determine the extent of the data that you would like to transmit to us as part of your online application. Online applications are transmitted electronically to our HR department and processed there as quickly as possible. The transmission is encrypted. As a rule, applications are forwarded to the heads of the responsible departments in our company. Beyond that, your data will not be passed on. Your information will be treated confidentially in our company. If your application is unsuccessful, your documents will be deleted after [6 months].

    In the event that we may also consider your application for other or future job advertisements, we ask that you make a corresponding note on the application. We then process your data on the basis of Art. 6 Para. 1 lit. a GDPR.

    Information in accordance with Article 13 of the General Data Protection Regulation for applicants

    Compliance with data protection regulations is very important to our company. We would like to inform you below about how we collect your personal data:


    Responsible body:

    The company to which you applied is responsible for data collection and processing.

    Data we need:

    When you apply, we process data from you that we need as part of the application. This can include contact details, all data related to the application (curriculum vitae, certificates, qualifications, answers to questions, etc.) and, if necessary, bank details (to reimburse travel costs). The legal basis for this results from Section 26 of the Federal Data Protection Act.

    Data transfers to third countries:

    Our company is part of an international agency network in which personnel responsibilities extend across departmental, company and national borders. For this reason, responsible supervisors in the UK and the USA can also access your applicant data. According to Section 26 BDSG, this data processing is necessary for the decision on the establishment of an employment relationship. If the parent company in the USA has not already subjected itself to the EU-US Privacy Shield, data transfers to the USA are secured via a so-called EU standard contract.

    Data deletion:

    If there is no statutory retention period, the data will be deleted as soon as storage is no longer necessary or the legitimate interest in storage has expired. If no recruitment takes place, this is usually the case six months after the application process has been completed.

    In individual cases, individual data may be stored for a longer period of time (e.g. travel expense reports). The duration of storage then depends on the legal retention obligations, for example from the tax code (6 years) or the Commercial Code (10 years).

    If you have not been hired, but your application is still of interest to us, we will ask you whether we can keep your application for future vacancies.

    Confidential treatment of your data:

    We will of course treat your data confidentially and will not pass it on to third parties.

    If necessary, we use service providers who are strictly bound to instructions, for example: B. support in the areas of IT or the archiving and destruction of documents and with whom separate contracts for order processing have been concluded.

    Your data protection rights:

    As a data subject, you have the right to information about the personal data concerning you as well as to correct incorrect data or to delete it if one of the reasons listed in Article 17 GDPR applies, for example if the data is no longer needed for the purposes pursued. There is also the right to restrict processing if one of the conditions specified in Art. 18 GDPR is met and in the cases of Art. 20 GDPR there is the right to data portability.

    Every data subject has the right to lodge a complaint with a supervisory authority if they believe that the processing of data concerning them violates data protection regulations. In particular, the right to lodge a complaint can be asserted with a supervisory authority in the Member State of the place of residence or work of the person concerned or the place of the alleged violation.

    Our data protection officer:

    You also have the right to contact our data protection officer at any time, who is obliged to maintain confidentiality regarding your request. The contact details of our data protection officer can be found above under point 5.

    8. Facebook business page

    We operate an official Facebook page under the URL on the basis of Art. 6 Para. 1 lit. f) GDPR.

    We operate our Facebook company page on the basis of Article 6 Paragraph 1 Letter f) GDPR. Facebook provides us with statistical data through the so-called “Insights”, which can be used to recognize user interactions on or with the site. We use this data, available in aggregate form, to make our posts and activities on our Facebook page more attractive to users.

    Facebook also uses so-called web tracking methods on this site. Please be aware: It cannot be ruled out that Facebook will use your profile data, for example to evaluate your habits, personal relationships, preferences, etc. We have no influence on the processing of your data by Facebook.

    We do not carry out or initiate any other data processing. The data you enter on our Facebook page, such as comments, videos or images, will not be used or processed by us for any other purposes at any time.

    User rights:
    According to the decision of the European Court of Justice, the operator of a Facebook page is jointly responsible with Facebook for the processing of personal data. With regard to the GDPR regulations on shared responsibility, we have reached an agreement with Facebook, according to which Facebook assumes responsibility for the processing of “Insights” data and will fulfill all resulting obligations under the GDPR towards users.

    You can find more information about Facebook's privacy policy here .

    We will forward requests for information about “Insights” addressed to us directly to Facebook.