PRIVACY POLICY
In the following policy, we would like to inform you when, how and which personal data we collect and how we handle such data. We collect and process your personal data in accordance with national and European laws, in particular the German Federal Data Protection Act (BDSG) and the EU General Data Protection Regulation (EU-GDPR). If you have any further questions regarding data protection at Pfeifer & Langen Industrie- und Handels-KG, please feel free to contact us at one of the telephone numbers, fax numbers or e-mail addresses listed below.
Responsible Controller
Pfeifer & Langen Industrie- und Handels-KG, Aachener Straße 1042 a, 50858 Cologne, Germany, Tel. +49 221 4980-656, kontakt@pfeifer-langen-ihkg.com
Data Protection Officer
PricewaterhouseCoopers Legal Aktiengesellschaft Rechtsanwaltsgesellschaft, datenschutz@pfeifer-langen-ihkg.com
When you visit our website
In this section you will find information on data collection, data processing, data deletion, data security and the involvement of third-party providers in connection with your visit to our website www.pfeifer-langen-ihkg.com.
Server log files
Whenever you visit our website your browser automatically transmits access data, so-called “server log files” or “access logs” which we process to ensure system security. The following data is recorded in the log files:
· previously visited website (search engine used for search engine use, including keywords used),
· requested website including the number of pages called up and the last page opened before leaving the website,
· browser type and browser version,
· the operating system and device type used,
· language settings,
· date and time of access,
· retention time, and
· IP-address
The temporary data storage during your visit is necessary to enable delivery of the website. A further storage in log files takes place to ensure website functionality and system security.
These purposes serve our legitimate interests in data processing (Art. 6 1 f EU-GDPR). The data will be deleted as soon as they are no longer necessary for the achievement of these purposes. In case of the provision of the website, the data will be deleted when the respective session has ended. In addition, the log files are stored for seven days to ensure comprehensive system security and to be able to effectively analyze and eliminate errors. The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. Therefore, there is no possibility for the user to object.
Cookies
Our website does not use or set cookies.
Data Security
Our website uses effective encryption (TLS 1.2) for security reasons and to protect the transmission of confidential content that you send to us as website operator. You can recognize an encrypted connection by the fact that the address line of your browser changes from “http://” to “https://” and by the lock symbol in your browser line. If the encryption is activated, the data that you transmit to us cannot be read by third parties.
External Service Providers
In providing and operating our websites we work together with external service providers which we have carefully selected, whose activities we monitor and with which we have concluded data processing agreements pursuant to Art. 28 EU-GDPR. These service providers are located in Germany.
Links to external content
Please be informed that, where our websites link to third-party websites, we are not responsible for the content provided by such third party and have no influence on the data collection and data processing their websites. Please refer to the privacy policies provided on the respective websites.
Use of Google Maps (with opt-in)
If you wish to plan your journey to us, you may do so using Google Maps, a map service provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. If you click on the “Route” button, we will redirect you to this external Google Maps website after reconfirmation.
To ensure data protection on our website, Google Maps is not actively integrated. A direct connection to the servers of Google will only be established if you actively initiate and confirm this (via a link): If you click on “Route”, you will see a banner that asks again whether you really want to leave our site and be redirected to Google Maps. After your two clicks, you and with you also some of your data, such as your IP address, are forwarded to Google Maps. This prevents your data from being transferred to Google without your consent. Through our referrer policy, we have ruled out the possibility that the information about which page you came from is forwarded to Google.
If you allow us to forward you to Google Maps in this particular way, it is done with your consent (Art. 6 1 a EU-GDPR). You can revoke your consent with effect for the future at any time (see section “Your rights vis-a-vis Pfeifer & Langen Industrie- und Handels-KG” below).
Your IP address transmitted to Google in case of consent may be transferred to a Google server in the USA. We have no influence on this data processing. For the transfer of personal data to the USA, there may be no adequate level of data protection. You should therefore only click “OK” if you still want your data to be forwarded to Google, regardless of an inadequate level of data protection, if Google transfers your data to the USA.
More information on the handling of user data can be found in the Google privacy policy: https://www.google.de/intl/de/policies/privacy/.
Use of contact form
Our website features a contact form to get in touch with us on a voluntary basis. The use of the contact form is not required for the use of our website. If you use the contact form, we will collect your e-mail address as well as the message you send us and the time of transmission. You are also welcome to give us your name and a subject. This makes it easier for us to process your request and to address you personally.
We use the collected data to answer your request. We do not pass on your data to third parties unless this is necessary for processing your request. In particular, your inquiry may be forwarded to one of our associated companies if your request is directed or linked to that company.
We will delete your personal data after your request has been finally answered, unless statutory storage obligations or rights make longer storage necessary. For example, a longer storage period may be required if we establish a business relationship, begin a contractual relationship or are legally obligated to continue to store the data due to the nature of the information exchanged, such as in the case of commercial letters.
By processing the data, we pursue the legitimate interest in answering your inquiries (Art. 6 1 f EU-GDPR). Depending on your query, the data may also be processed for the purpose of initiating and / or fulfilling a contract (Art. 6 1 b EU-GDPR) or for the fulfillment of our legal obligations (Art. 6 1 c EU-GDPR). We do not transfer the data to third countries outside the European Economic Area in the regular course of business.
Job applications
We thank you for your interest in our company and your application. We collect and process personal data contained in the documents you submit on the basis of your consent (Art. 6 I 1 a EU-DSGVO) and for the purpose of deciding whether or not to establish an employment relationship (Art. 6 I 1 b EU-DSGVO). If we contact you following an application, you can find out below in section “When you contact us” how we handle the contents of the communication.
Jobs advertised
If you apply for a specific, advertised position, we will only process your application documents for the purpose of deciding whether you are suitable for the position to which the application relates. In the course of the application process, further personal data may also be collected and processed from you personally, from generally accessible sources or from former employers (Art. 6 I 1 b EU-GDPR). In addition, we are required by law to subject your person to a so-called “sanctions list check” or a so-called “anti-terror screening” in the course of which we will assess your personal data against the EU and U.S. sanctions lists. Such checks are carried out in fulfillment of our legal obligations (Art. 6 I 1 c EU-GDPR; REG 2580/2001/EG and REG 881/2002/EG).
Should your application be unsuccessful, your personal data will be deleted six months from the time the position is filled. Should your application be successful, the data collected, including your application documents, will be included in your personnel file (Art. 6 I 1 b EU-GDPR) and remain there for the duration of the employment relationship.
Unsolicited applications
Applications that do not relate to a specific position (unsolicited applications) are processed for the purpose of deciding whether or not your qualifications match any current vacancy (Art. 6 I 1 a, b EU-GDPR). In the course of the application process, further personal data may also be collected and processed from you personally, from generally accessible sources or from former employers (Art. 6 I 1 b EU-GDPR). In addition, we are required by law to subject your person to a so-called “sanctions list check” or a so-called “anti-terror screening” in the course of which we will assess your personal data against the EU and U.S. sanctions lists. Such checks are carried out in fulfillment of our legal obligations (Art. 6 I 1 c EU-GDPR; REG 2580/2001/EG and REG 881/2002/EG).
Your personal data will be deleted one year from the date of your submission unless they are still subject of ongoing application procedures. If no application procedure leads to your employment, your personal data will be deleted six months from the date on which the last position for which we have considered you is filled. If an application procedure leads to your employment, the data collected, including your application documents, will be included in your personnel file (Art. 6 I 1 b EU-GDPR) and remain there for the duration of the employment relationship.
Transfer of submitted data
Personal data you provide to us in the course of an application and / or which we collect from generally accessible sources or from former employers will be processed exclusively by us. Data will only be passed on to affiliated companies within the Pfeifer & Langen group of companies if and insofar as you expressly express this wish in your application (Art. 6 I 1 a EU-GDPR).
We may use, from time to time, external service providers or digital application portals to advertise vacancies or to process applications. Providers of such services and software are located in Germany or in the EU, have been carefully selected, we monitor their activities and have concluded data processing agreements pursuant to Art. 28 EU-GDPR with them.
If you contact us or collaborate with us
We are pleased that you are reaching out to us or working with us as our business partner. In this section you will find information on data collection, data processing, data deletion, data security and involvement of third-party providers in connection with a business contact.
Data collection, data processing and data deletion
In the course of a business contact, we regularly collect and process the following personal data:
· Full name
· Professional contact details (address, phone, e-mail, position in the company)
In addition, we may, in individual cases, ask you to provide further information, e.g. private contact data or your date of birth. Such queries are, however, limited to the absolutely necessary minimum. In particular, we make sure that there is a technical or organizational necessity behind any additional data requested.
When you communicate or collaborate with us via portals or software applications, our sytems will automatically collect IP addresses of your devices. Information on the use of cookies in our portals or software applications is provided in specific privacy policies or via cookie banners in the respective application.
We process your personal data in particular to initiate future business relationships or perform our mutual obligations under existing business relationships (Art. 6 I 1 b EU-GDPR) as well as to perform anti-terror and sanctions checks on our customers, suppliers and service providers to the extent required by law (Art. 6 I 1 c EU-GDPR, REG 2580/2001/EC, REG 882/2002/EC, REG 2017/1420/EU). Other purposes may be added depending on the individual case.
Your personal data will be promptly deleted as soon as the processing purpose has ceased to exist. Insofar as data is subject to statutory retention obligations in individual cases, it will remain stored until the respective retention period has expired and will then be deleted.
Data transfer
Aforementioned data is transferred to companies within the Pfeifer & Langen group only to the extent that we use such companies for the fulfillment of our contractual obligations (Art. 6 I 1 b EU-GDPR) or if such transfer is in our overriding, legitimate interest (Art. 6 I 1 f EU-GDPR).
Your personal data may be disclosed to authorities and courts as well as to lawyers, auditors, tax consultants, management consultants and similar service providers who are bound by legal secrecy.
External Service Providers
Your personal data is stored in our IT systems. To the extent that use external providers for IT infrastructure, IT applications and / or data processing, we select them carefully, monitor their activities and conclude with them data processing agreements in accordance with Art. 28 EU-GDPR.
We generally avoid transferring personal data to countries outside the EU. Should this occur in individual cases, we ensure an appropriate level of data protection in accordance with Art. 44 et seq. EU-GDPR at the recipient.
Your rights vis-a-vis Pfeifer & Langen Industrie- und Handels-KG
In this section, you will find out which are your rights vis-à-vis us if and to the extent we collect and process your personal data. Please note that we will comply with your legitimate requests as soon as possible and free-of-charge. Please exercise your rights at the following address: datenschutz@pfeifer-langen-ihkg.com
Pursuant to Art. 15 EU-GDPR, you can request information on your personal data stored by us, its origins, recipients or categories of recipients to whom we transfer your personal data, and the purpose of processing.
Pursuant to Artt. 16 – 18 EU-GDPR, you may have a right to rectification, erasure or restriction of the processing of your personal data in individual cases. In addition, pursuant to Art. 20 EU-GDPR, you may request the transfer of your personal data to another controller. Furthermore, you may have the right to object to the processing of your personal data pursuant to Art. 21 EU-GDPR if and to the extent that this processing takes place exclusively on the grounds of our overriding, legitimate interest (Art. 6 I 1 f EU-GDPR) or to the extent that the processing is carried out for direct marketing purposes.
You can revoke your consent given to data collection and data processing (Art. 6 I 1 a EU-GDPR) at any time. In this case, we will not further process your personal data unless such further processing is permitted or required by law.
The aforementioned objections or revocations only take effect for the future and do not render past data collection and data processing inadmissible.
Finally, you have the right to complain to the competent data protection supervisory authority in accordance with Art. 77 EU-GDPR.
[Version 01 / 2022]
