Privacy

The purpose of this privacy policy is to inform you as a user about the collection of personal data on this website. In doing so, we attach great importance to the presentation of all essential information for the protection of your data that is as transparent as possible.

We reserve the right to adapt this privacy policy so that it always meets current legal requirements.

If the information on data protection provided on this page does not help you, you are welcome to contact our data protection officer.

You can contact them at the email address datenschutz@tributech.de.

In accordance with the General Data Protection Regulation (Art. 4 para. 7 GDPR), the following is responsible for the collection of personal data:

Tributech GmbH
Windhauser Weg 2
41366 Schwalmtal
Germany

T +49 2163 8893444
F +49 2163 8893456
info@tributech.de

Represented by the managing director Holger Reiff.

In accordance with article 13 GDPR we inform you about the legal basis of our data processing. If the legal basis is not stated in the privacy policy, the following applies:

Legal basis for obtaining consent:
Art. para. 1 a and Art. 7 GDPR

Legal basis for the processing to fulfil our services and implementation of contractual measures and answering enquiries:
Art. 6 para. 1 b GDPR

Legal basis for the processing to fulfil our legal obligations:
Art. 6 para. 1 c GDPR

Legal basis for processing to protect our legitimate interests:
Art. 6 para. 1 f GDPR

Legal basis for processing when vital interests of the data subject or of another physical person so require:
Art. 6 para. 1 d GDPR

The hosting services we use are designed to provide the following services:

• Infrastructure and platform services
• Computing capacity
• Storage space
• Database services
• Security services
• Technical maintenance services

Here we or our provider process the following information from customers, interested parties and visitors to this website

• Stock data
• Contact details
• Content data
• Contract data
• Usage data
• Meta and communication data.

The processing of the data is based on our legitimate interest in an efficient and secure provision of this website within the meaning of Art. 6 para. 1 f GDPR in conjunction with Art. 28 GDPR (conclusion of a contract for commissioned data processing).

When you access our website, we automatically collect data and information from the computer system used to access the website. The following data is collected:

• Browser type and version
• Information about the operating system
• Date and time of access
• The website from which the system reached our website
• Internet pages that are called up by the system via our website
• IP address of the system

Log files are anonymised or deleted as soon as possible.

The data collected is processed for the purpose of providing the contents of our website, to ensure the functionality of our technical systems and to optimise our website.

Its processing is therefore necessary to protect our legitimate interests according to Art. 6 para. 1 f GDPR.

In order to optimise user-friendliness, we also use temporary cookies that are stored on your terminal device for a certain defined period of time. When you visit our website again, we automatically recognise that you have already visited said website which entries and settings you have made, so that you do not have to enter them again.

The data processed by means of cookies is required for the above purposes, in order to protect our legitimate interests and the interests of third parties in accordance with Art. 6 Paragraph 1 sentence 1 f GDPR.

Fonts that are not stored on our servers are integrated on our website. These fonts are provided by:

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Irland
Tel: +353 1 543 1000
Fax: +353 1 686 5660

When the embedded fonts are displayed, your IP address is transmitted to the provider.

Google’s privacy policy can be viewed here:
https://www.google.com/policies/privacy/

The processing of data is based on our legitimate interest according to the art. 6 paragraph 1 f GDPR to optimise our website, which is necessary for the performance of our business activities.

Our website uses the reCAPTCHA function, which is provided externally:

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Irland
Tel: +353 1 543 1000
Fax: +353 1 686 5660

This function is mainly used to distinguish whether an entry is made by a physical person or whether it is abusive through automatic and automated processing.

For this purpose, reCAPTCHA automatically analyses the visitor’s behaviour based on various characteristics as soon as the Internet page is called up. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, time spent on the website or user interactions). The data collected during the analysis is forwarded to Google.

The processing of the data is based on our legitimate interest in accordance with Art. 6 Para. 1 f GDPR on the basis of our legitimate interest in preventing abuse and spam.

For the visual presentation of map material on our website we use the “Google Maps API” of the following provider:

Google Ireland Limited
Gordon House, Barrow Street
Dublin 4
Irland
Tel: +353 1 543 1000
Fax: +353 1 686 5660

In order to use the functions of Google Maps, it is necessary to store your IP address. This is transmitted to a Google server in the USA and stored there. We have no influence on this data transfer.

Google’s privacy policy can be viewed here:
https://www.google.com/policies/privacy/

Data collection and processing is carried out exclusively for the purpose of optimising our website. The processing of the above data is necessary to safeguard our legitimate interests in accordance with Art. 6 Para. 1 F GDPR for the performance of our business activities.

We maintain publicly accessible profiles in social networks. The specific social networks used by us are listed at the end of this article.
Social networks such as Facebook and Twitter etc. can generally analyse your user behaviour in detail when you visit their website or a website that incorporates social media content (e.g. Like buttons or banner ads). When one of our social media presences are accessed, numerous processing transactions are triggered which involve data protection. Specifically:

If you are logged into your social media account and you visit our social media presence, the operator of the social media platform can assign that visit to your user account. However, your personal data may also be recorded if you are not logged in, or if you don’t have an account with the social media platform in question. In this case the recording of data will be carried out, for example, via cookies which are stored on your end user device, or through the recording of your IP address.

The operators of the social media platforms can use the data which is recorded in this way to create user profiles in which your preferences and interests are stored. This enables advertising which relates to your interests to be displayed to you, both inside and outside of the respective social media presence. If you have an account with the respective social network, the interests-related advertising can be displayed on all the devices that you are logged into or have been logged into.

Please also note that we cannot track all the processing transactions on the social media platforms. So, depending on the provider, other processing transactions may be carried out by the operators of the social media platforms. For details relating to this, please see the conditions of use and the data protection provisions of the respective social media platforms.

Legal basis

Our social media presence is intended to maximise our online presence. This constitutes a legitimate interest within the meaning of GDPR (General Data Protection Regulation) Art. 6 para. 1 (f). The analytical processes initiated by the social networks may have different legal bases, which must be stated by the operators of the social networks (e.g. consent within the meaning of GDPR Art. 6 para. 1 (a)).

The controller and the asserting of rights

If you visit one of our social media presences (e.g. Facebook), we are jointly responsible together with the operator of the social media platform for the data processing transactions that are triggered by that visit. As a matter of principle, you may assert your rights (to information and the correction or deletion of data, the restriction of processing, as well as the right to data portability and the right to object) both against us and against the operator of the respective social media platform (e.g. against Facebook).

Please note that despite being jointly responsible together with the operators of the social media platforms, we do not have unrestricted influence over the data processing transactions that are undertaken by the social media platforms. Our scope of action is largely determined by the business policies of the respective provider.

Storage period

The data that is directly recorded by us via the social media presence is deleted from our systems once the purpose for which it is stored ceases, or once you request us to delete it or revoke your consent to its storage, or once the purpose for the data storage no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal provisions – in particular retention periods – are unaffected by this provision.

We have no influence over the storage period for your data that is stored by the operators of the social networks for their own purposes. For details regarding this please obtain information directly from the operators of the social networks (e.g. in their data protection declarations, see below).

We have a Facebook page. The provider of this service is

Facebook Ireland Limited
4 Grand Canal Square
Grand Canal Harbour
Dublin 2
Republic of Ireland

According to Facebook, the recorded data is also transferred to the USA and other third countries.

We have concluded a joint processing agreement (Controller Addendum) with Facebook. In this agreement it is specified for which data processing transactions we or Facebook are responsible when you visit our Facebook page. You can view this agreement via the following link:
https://www.facebook.com/legal/terms/page_controller_addendum

You can independently adjust the advertising settings in your user account. To do this, click on the following link and log in:
https://www.facebook.com/settings?tab=ads

Details can be found in the data protection declaration
https://www.facebook.com/about/privacy/

and in Facebook’s Terms of Service
https://de-de.facebook.com/terms

You can contact us via a form on our website, by phone or by email. In this case, the data you enter in the form, send to us by email or communicate by telephone, will be transmitted to us and stored by us.

Data that may be collected when you use one of the above methods:

• Name
• Phone number
• Email
• Date and time of contact

Due to your contact, the legal basis for data processing is Art. 6 para. 1 b GDPR. Otherwise, the processing will be carried out on the basis of our legitimate interest in accordance with Art. 6 para. 1 b GDPR for the exercise of our business activities.

Data transmitted to us will only be used to conduct an exchange in the context of establishing contact and will not be passed on to third parties.

If the data collected is no longer required for the respective purpose, it will be deleted. This is usually the case when the exchange has ended in the course of contacting you and we have processed your request in full.

Use of applicants’ data

We offer you the opportunity to send us a job application (e.g. via email, by post, or via an online application form). In the following we tell you about the scope, purpose and use of your personal data that is gathered in the context of the application process. We assure you that the collection, processing and use of your data is carried out in accordance with the applicable data protection legislation and any other legal provisions, and that your data is handled on a strictly confidential basis.

Scope and purpose of the collection of data

If you send us an application, we process your personal data that is associated with it (e.g. contact and communication details, application documents, notes relating to job interviews etc.) insofar as this is required in order for us to make a decision about establishing an employment relationship with you. The legal bases for doing this are § 26 of the amended BDSG (German Federal Data Protection Act) under German law, (initiating of an employment relationship), GDPR Art. 6 para. 1 (b) (general initiating of a contract), and – if you have provided your consent – GDPR Art. 6 para. 1 (a). The consent may be withdrawn at any time. Your personal data is forwarded within our company exclusively to persons who are involved in handling your application.

If the application is successful, the data submitted by you on the basis of § 26 of the amended BDSG and of GDPR Art. 6 para. 1 (b) for the purpose of implementing the employment relationship is stored in our data processing systems.

Data retention period

If we are unable to make you a job offer, or if you turn a job offer down or withdraw your application, we reserve the right – based on our legitimate interests (GDPR Art. 6 1 (f)) – to retain the data that you have sent to us for up to 6 months after the ending of the application procedure (rejection of the job offer or withdrawal of the application). The data will then be deleted and the physical application documents will be destroyed. The data is retained, in particular, for verification purposes in the event of a legal dispute.

If it is clear that the data will be required after the expiry of the 6-month period (e.g. due to an imminent or pending legal dispute), deletion will only take place once the purpose for continued retention no longer exists.

Data may also be retained for a longer period if you have given your consent to this (GDPR Art. 6 para. 1 (a)), or if statutory retention duties prevent deletion.

Inclusion in the pool of applicants

If we do not make a job offer to you, it may be possible to include you in our pool of applicants. If you are included, all the documents and information from the job application will be incorporated into the pool of applicants data so that we can contact you if suitable vacancies arise.

Inclusion in the pool of applicants will only take place on the basis of your explicit consent (GDPR Art. 6 para. 1 (a)). The giving of consent is voluntary and is not in any way linked to the ongoing application procedure. The data subject can withdraw his consent at any time. In this case, the data is irrevocably deleted from the pool of applicants data provided that there are no legal reasons for its retention.

The data within the pool of applicants data is irrevocably deleted no later than two years after the giving of the consent.

As far as we have collected and processed personal data from you, you are a data subject within the meaning of the GDPR and are entitled to the following rights against us.

You have the right to request information about your personal data processed by us. In particular, you may request information as to the purposes of the processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the envisaged storage period, the existence of a right of rectification, cancellation, limitation of processing or opposition, the existence of a right of opposition, the origin of your data if not collected by us, the existence of automated decision making including the creation of profiles and, where applicable, informative details of the data.

You have the right to demand the immediate correction of incorrect or complete personal data stored with us.

You have the right to demand the deletion of your personal data stored with us, unless its processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

You have the right to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, if the processing is unlawful but you refuse to delete the data and we no longer need the data, but you need the data for the assertion, exercise or defence of legal claims or you have given your consent to the processing under Art. 21 GDPR.

You have the right to receive your personal data that you have provided us with in a structured, generally accepted and machine-readable format or to request that it be forwarded to another responsible party.

You have the right to revoke your consent to us at any time. As a result, we are not permitted to continue data processing based on this consent in the future.

You have the right to complain to a regulatory authority. As a rule, you can contact the regulatory authority at your usual place of residence or at our company headquarters.

If the processing of personal data is based on legitimate interests within the meaning of Article 6 paragraph 1 sentence 1 f GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR if there are reasons arising from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection, which we will implement without specifying a special situation.

The data protection officer of Tributech GmbH is provided by:

EU-CON BeraterForum GmbH
Waldfeuchter Str. 266
52525 Heinsberg
Germany

+49 2452 993311
datenschutz@tributech.de

​