Privacy Policy & Terms Of Use
Thank you for visiting our website and your interest in our company and services. The protection and confidential handling of your personal data are important to us.
Your personal data is processed exclusively within the scope of the statutory provisions of the EU Data Protection Law, in particular, the General Date Protection Regulation (in the following referred to as GDPR).
In this privacy policy, we inform you about our processing of your personal data and your rights as data subject when using our website.
1. General Information
This privacy policy informs you about the processing of your personal data by Eisenmann GmbH, Tübinger Straße 81, 71032 Böblingen (in the following referred to as “Eisenmann“) and serves the purpose of informing you in particular about the collection and use of your personal data in connection with your visit on the website provided by Eisenmann (http://www.eisenmann.com). Personal data is individual information about the personal or factual circumstances of an identified or identifiable natural person. It is all data that can be related to you personally, such as name, address, email address, user behavior (for this purpose, refer to “6. Details Regarding Data Processing”).
2. Company And Contact Information Of The Data Processing Controller And Corporate Data Protection Officer
Eisenmann GmbH
Tübinger Straße 81
D-71032 Böblingen
E-Mail: datenschutzbeauftragter@eisenmann.com
Telefon: +49 (0)7031 78 – 0
Fax +49 (0) 7031 78-1000
The corporate Data Protection Officer of Eisenmann GmbH can be reached at above mentioned address, Attn.: Data Protection Officer.
3. Data Processing Requirements
We collect and use your personal data only to the extent permitted by law, in particular to the extent that is necessary to establish, structure or terminate a contractual relationship with you, to enable you to visit our website and web presence and to use the services offered there, or if you have consented to the processing of your personal data. Your data will only be transferred under the conditions mentioned or if a court or official order requires us to pass on the data.
4. Privacy And Third Party Websites
Our website and web presence may include links to third party websites. If you follow a link to such a website, please note that we cannot assume any responsibility for the adherence of the data protection regulations. Please check the applicable data protection regulations before submitting personal data to these websites.
5. Data Security
We implement the latest technical measures to ensure data security, in particular, to protect your personal data from any risks arising during data transfers and from third parties gaining knowledge of such data. These measures are adapted to the current state of the art. When using the website, we apply the common SSL process (Secure Socket Layer) in conjunction with the highest level of encryption supported by your browser. This usually means 256 bit encryption. If your browser does not support 256 bit encryption, we will fall back to 128 bit v3 technology. You can tell whether an individual page of our website is transferred via a secure connection by the browser address bar changing from “http://” to “https://” and by the closed key or a lock symbol shown in the status bar at the bottom of your browser.
6. Details Regarding Data Processing
a) Visiting The Website For Informational Purposes
When using the website merely for informational purposes, i.e. if you do not register, log in to use individual services or otherwise provide us with information, we do not collect any personal data, with the exception of the data that your browser transmits to enable you to visit the website. This data includes the following:
- IP address,
- date and time of access,
- time zone difference to Greenwich Mean Time (GMT),
- content accessed (specific page),
- access status/HTTP status code,
- respective volume of data transferred,
- website, from which the user’s system accesses our website,
- browser,
- operating system and its interface,
- language and version of the browser software.
On a temporary basis, this information is automatically collected in a so-called log file and stored until it is automatically deleted. We use aforementioned data to ensure a smooth connection to and comfortable use of our website and to evaluate system security and stability.
Data processing for these purposes is necessary to protect our legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the General Data Protection Regulation (“GDPR”). Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.
b) Cookies
Furthermore, so-called cookies are stored on your receiving device when using the website. Cookies are small text files that are stored on your receiving device associated with the browser you are using and through which the site that sets the cookie (in this case us) receives specific information. Cookies cannot run programs or transmit viruses to your receiving device. They are used to make the website more user-friendly and effective overall.
Our Website Uses Cookies To The Following Extent:
Transient cookies (temporary application) are deleted automatically when you close the browser. These include, in particular, session cookies. They store a so-called session ID, with which various requests of your browser can be assigned to a shared session. This allows your receiving device to be recognized when you return to the website. The session cookies are deleted when you log out or close the browser. This saved information is stored separately from any other data you may provide to us. Above all, the cookie data is not linked to your other data.
Most of the browsers accept cookies automatically. Nevertheless, you can configure your browser so that no cookies are stored on your computer or that you receive a notification before a new cookie is set. Disabling cookies completely, however, may mean that you cannot use all functions of our website.
Using cookies for these purposes is necessary to protect our legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally.
When accessing our website, users are informed about the use of cookies and referred to this privacy policy via a banner. In this context, options for deletion are also pointed out.
c) Google Analytics
We also use Google Analytics, a web analysis service provided by Google Ireland Limited (“Google“), Gordon House, Barrow Street, Dublin 4, Ireland.
By using Google Analytics, we want to ensure a needs-based design and ongoing optimization of our website. On the other hand, this measure is implemented to statistically record the use of our website, to monitor its functionality and to evaluate it for the purpose of technically optimizing our website for you.
Google Analytics uses cookies, which enable an analysis of your use of the website. The information about your visit of the website generated by the cookie is usually transferred to a Google server in the US where it is stored. The data is processed, subject to the express consent of the user, on the basis of our legitimate interests within the meaning of Article 6 Paragraph 1 Letter a) of the GDPR and §25 Paragraph 1 of the TTDSG (German Telecommunications-Telemedia Data Protection Act), namely our interest in analysis, optimization and efficient operation of our website. The consent can be revoked at any time.
Google will process the information transferred on our behalf in order to evaluate the use of our website by users, to compile reports regarding the activities within this website and to provide us with other services related to the use of our website. In doing so, pseudonymous user profiles of the users can be created from the data processed.
Anonymize IP
Due to the activation of IP anonymization on the website, Google will shorten your IP address within member states of the European Union or in other signatory states of the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the US and shortened there. On our behalf, Google will use this information to evaluate your visit to the website, to compile reports on website activity and to provide us with other services related to website and Internet usage. The IP address transferred by your browser as part of Google Analytics is not combined with other Google data.
Browser Plugin
You can block the collection and processing of your data by Google through the corresponding configuration in your browser software. However, we would like to point out that in doing so, you may not be able to use all functions on our website. You can also block Google from collecting the data generated by the cookie and relating to the use of the website (including your IP address) as well as from processing this data by installing the browser plugin available via the following link: https://tools.google.com/dlpage/gaoptout?hl=de
Data transfer to the US is based on the standard contractual clauses of the EU Commission. Further details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/
Order Processing
In order to fully comply with legal data protection requirements, we have concluded an order processing contract with Google.
Objection To Data Collection
You can find detailed information regarding the use of data by Google, configuration and objection options on the Google websites, among others, via the following links: https://www.google.de/intl/de/policies/privacy/ or https://www.google.com/analytics/terms/de.html.
d) AddThis Plugins
Our website uses so-called social plugins (“Plugins”) of the bookmarking service AddThis, which is operated by Oracle America, Inc., 500 Oracle Parkway, Redwood Shores, CA 94065, USA (“Oracle“). The plugins are usually marked with an AddThis logo, for example, in the form of a white plus on orange background. An overview of the AddThis plugins and the appearance thereof can be found here:
www.addthis.com/get/share
When calling up one of our websites containing such a plugin, your browser establishes a direct connection to the servers of AddThis. The content of the plugin is transferred directly to your browser by AddThis and integrated into the page. Through this integration, AddThis receives the information that your browser has accessed the respective page of our website and sets a cookie on your end device to identify your browser. This information (including your IP address) is transferred from your browser directly to an AddThis server in the US where it is stored. AddThis uses the data to generate an anonymized user profile, which serves as the basis for a personalized and interest-based advertising approach to visitors of websites with AddThis plugins. Details regarding the purpose and scope of the data acquisition and the further processing and use of the data by AddThis can be found in the privacy policy of AddThis at: https://www.addthis.com/privacy/privacy-policy.
If you would like to object to data collection by AddThis in the future, you can set a so-called opt-out cookie, which you can download from the following link: https://www.addthis.com/privacy/opt-out
You can also completely block the AddThis plugins from loading using add-ons for your browser, e.g. with the script blocker “NoScript”: https://noscript.net/.
The measures implemented with AddThis are carried out based on Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR. In cases where personal data is transferred to the US, Oracle has subjected to the EU-US Privacy Shield:
https://www.privacyshield.gov.
e) Social Media Links & Web Presences And Map Services
Our website also contains links to services such as LinkedIn, Xing, Facebook, YouTube, Personio and Google Maps, where we have our own web presence.
In doing so, we primarily use the double-click solution, i.e. when you visit our website, no personal data is initially passed on to the plugin providers.
After clicking on the integrated graphic, you will be redirected to the website of the respective provider, i.e. only then will user information be transferred to the respective provider.
If you click onto a link to the corresponding service on our website, your browser will establish a direct connection to the servers of the respective service provider. By clicking on the link, the provider receives the information that your browser has accessed the respective page on our website, even if you do not have your own user account with the respective provider or are currently logged in there. This information is transferred from your browser directly to a server of the respective service provider where it is stored.
If you are logged in with a service provider, the service provider will be able to assign the visit of our website directly to your user account. If you interact with relevant plugins, for example, if you press the “LIKE” or “SHARE” button on Facebook, the corresponding information will also be transferred directly to the service provider’s respective server where it is stored. The information may also be published on your profile with the respective service provider and displayed to your contacts.
The respective service provider can use this information for the purposes of advertising, market research and the needs-based design of its service. For this purpose, the service provider creates profiles regarding usage, interests and relationships, e.g. to evaluate your use of our website with regard to the advertisements shown to you by the service provider, to inform other users about your activities on our website and to provide further related services with the use of the service provider.
If you do not want the service provider to assign the data collected via our website to your user account, you will have to log out of the respective service provider account before visiting our website.
We use our websites on the basis of Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR in order to increase awareness of our company and to provide the user with additional information. In cases where personal data is transferred to the US, the service providers or their representatives have subjected to the EU-US Privacy Shield:
https://www.privacyshield.gov
Further details regarding the services integrated into the website can be found in the following sections.
e1. Facebook Plugins
Plugins of the social network Facebook, service provider Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA (“Facebook“) are integrated on our website. The Facebook plugins on our website can be recognized by the Facebook logo. An overview of the Facebook plugins can be found here: https://developers.facebook.com/docs/plugins/
When visiting our website, a direct connection between your browser and the Facebook server is established via the plugin. This is how Facebook receives the information that you have visited our website with your IP address. By clicking the Facebook “Like” button while you are logged into your Facebook profile, you can link the content of our website to your Facebook profile. This allows Facebook to assign the visit of our website to your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Facebook. Further details regarding this matter can be found in the privacy policy of Facebook at: https://facebook.com/policy.php
If you object to Facebook assigning your visit of our website to your Facebook user account, please log out of your Facebook account.
e2. YouTube Plugins
Our website uses plugins of YouTube. Service provider is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (“YouTube“). When visiting our website featuring a YouTube plugin, a connection to the servers of YouTube is established. In doing so, the YouTube server is notified that you have visited our website. If your are logged into your YouTube account, you will allow YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account. Further details regarding the handling of user data can be found in the
privacy policy of YouTube at: https://policies.google.com/privacy?hl=de
e3. Linkedin
Our website uses plugins of LinkedIn. Service provider is LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland. When visiting our website containing a LinkedIn plugin, a connection is established to the servers of LinkedIn. In doing so, the LinkedIn server is notified that you have visited our website. If you are logged into your LinkedIn account, you will allow LinkedIn to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your LinkedIn account. Further details regarding the handling of user data and configuration options to protect your privacy can be found in the privacy policy of LinkedIn at https://www.linkedin.com/legal/privacy-policy and for an opt-out at https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
LinkedIn Java-Script
Javascript code from LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland (LinkedIn) is downloaded on this website. If you have JavaScript activated in your browser and no JavaScript blocker is installed, your browser may transfer personal data to LinkedIn.
We do not know which data LinkedIn links with the data received and for what purposes LinkedIn uses this data. Further details regarding this matter can be found in the privacy policy of LinkedIn at: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv. To prevent LinkedIn's JavaScript code from being executed altogether, you can install a JavaScript blocker or block this accordingly in your browser settings.
e4. Xing
Our website uses plugins of Xing. Service provider is Xing AG, Gänsemarkt 43, 20354 Hamburg, GERMANY. When visiting our website containing an Xing plugin, a connection is established to the servers of Xing. In doing so, the Xing server is notified that you have visited our website. If you are logged into your Xing account, you will allow Xing to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Xing account. Further details regarding the handling of user data and configuration options to protect your privacy can be found in the privacy policy of Xing at https://privacy.xing.com/de/datenschutzerklaerung)
e5. Personio
In order to be able to show you our job vacancies, our website uses a recruiting page operated by Personio SE & Co. KG, a company with its office in Germany, which provides a personnel administration and application management software (https://www.personio.de/impressum/). Personio is merely the operator of the software and this recruiting page and in this context the order processor according to Article 28 of the GDPR. Basis for the processing by Personio is hereby an order processing contract between the responsible service provider and Personio. In addition, Personio SE & Co. KG processes further data, some of which may also be personal data, in order to provide its services, in particular for the operation of this recruiting site.
e6. Google Maps Services
On our website, we use a plugin of the Internet service Google maps. Google Maps is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. As soon as the Google Maps plugin is activated on our website, information regarding your use of our website and your IP address are transferred to a Google server in the US where it is stored. We have no knowledge of the exact content of the transmitted data or its use by Google. In this context, the company denies linking the data with information from other Google services and the collection of personal data.
By activating the plugin, you agree to the collection and processing of information by Google as described. Further details regarding the data protection regulations and user terms for Google Maps can be found here: https://www.google.com/intl/de_de/help/terms_maps.html
Transfer Of Data To Third Parties
The data transferred as part of your application are transmitted using TLS encryption and stored in a database. According to Article 24 of the GDPR, the company that carries out this online application process is solely responsible for this data.
Principles And Purposes For Processing Personal Data In Case Of Applications And During Application Processes
If you apply electronically, including by email or our form on the website, we will collect and process your personal data for the purpose of processing the application and implementing pre-contractual measures. By sending an application via our recruiting page, you express your interest in an employment with us. In this context, you transfer personal data to us, which we will use and store exclusively for the purpose of your search for employment/application.
The privacy policy, which refers exclusively to data collected as part of the online application process, can be found here: https://eisenmann-gmbh.jobs.personio.de/privacy-policy?language=de. It contains information regarding our internal handling of your personal data collected as part of the application process.
f) Use Of Our Email Addresses And Our Contact Form
If you have any questions, do not hesitate to contact us via the email addresses listed on our website or the contact forms provided there. In case you contact us, we will process your personal data provided for the purpose of responding to your inquiry. All information is given voluntarily.
Data provided for the purpose of contacting us is processed in accordance with Article 6 Paragraph 1 Sentence 1 Letter a of the GDPR based on your voluntarily given consent.
The personal data we collect in this context will be deleted after your inquiry has been processed.
Our website also lists email addresses of our subsidiaries. Aforementioned information regarding the handling of your personal data when using the email addresses also applies to the processing of your personal data by our subsidiaries when you address the inquiry to them.
g) Application As Supplier
If you would like to apply to us as a supplier, we will collect general information about the company, contact partners of the company (particularly communication data) and the product categories in question.
The data is processed for the purpose of implementing pre-contractual measures at your request (Article 6 Paragraph 1 Sentence 1 Letter b of the GDPR).
h) Application As Employee
We will provide you with further information regarding data protection as part of your application as an employee at the appropriate place in the applicant tool on our website. See section e5 “Personio”.
Duration Of Data Retention
The personal data we collect in this context will be deleted after your inquiry has been processed, and if a supply relationship is established, will be stored to process the contractual relationship.
i) Portals
Upon request, Eisenmann will provide employees, clients and suppliers with special portals, for example, to allow for data exchange between Eisenmann, clients and suppliers, and secure access for employees and authorized external parties to the Eisenmann network or parts of it by setting up a VPN tunnel as well as to enable the proper processing of contractual relationships with suppliers (supplier relationship management).
Upon registering, a user name and password is assigned to you, with which you can log into the respective portal.
Communication data to the portals is saved in so-called log files, which will be deleted automatically after an appropriate period of time. If you use our portals, we will save the data required to fulfill the contract until your access expires permanently.
We use services of the Microsoft Corporation (“OneDrive”, “Eisenmann employees” and “Eisenmann partners” portals) or the SAP SE (“SAP Supplier Portal”).
Legal basis for the use of the portals is your consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a of the GDPR.
j) Newsletter Or Email Marketing
If you have given your express consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a of the GDPR, we use your email address to send you information or a newsletter by email. To receive this email or newsletter, it is sufficient to provide an email address.
Please note that we evaluate your user behavior when sending this email or our newsletter. We make use of the Mircrosoft services (“Outlook”) in doing so. This can be used to determine whether a message has been opened. The data is only collected using pseudonyms, i.e. the data will not be linked to your other personal data and any direct reference to you as a person will be excluded. You can unsubscribe at any time, for example, via a link at the end of each email or newsletter. Alternatively, you can send a request to unsubscribe at any time by email to datenschutzbeauftragter@eisenmann.com. If you revoke your consent, we will delete the data saved exclusively for the purpose of sending you the newsletter.
7. Rights Of the Data Subject
You have the right,
- in accordance with Article 15 of the GDPR, to request access to your personal data processed by us. In addition, you have the right to obtain information regarding the purposes of processing, categories of the personal data, categories of recipients to whom your data has been or will be disclosed, the planned retention period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to complain, the origin of your data if it was not collected by us as well as the existence of automated decision making including profiling and if necessary, meaningful information about its details;
- in accordance with Article 16 of the GDPR, to obtain without undue delay the rectification of inaccurate or incomplete personal data of you stored with us;
- in accordance with Article 17 of the GDPR, to obtain the erasure of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims;
- in accordance with Article 18 of the GDPR, to obtain restriction of processing your personal data insofar as the accuracy of the data is contested by you, the processing is unlawful, but you oppose the erasure and we no longer need the data, but they are required by you for the establishment, exercise of defense of legal claims, or you have objected to processing pursuant to Article 21 of the GDPR;
- in accordance with Article 20 of the GDPR, to receive your personal data you have provided to us in a structured, commonly used and machine readable format or to request the transfer to another responsible party;
- in accordance with Article 7 Paragraph 3 of the GDPR, to withdraw your consent at any time; all you need to do is send an email accordingly
to datenschutzbeauftragter@eisenmann.com That will mean that we may no longer continue processing the data based on this consent in the future; - For information regarding your data or to request to have data corrected or deleted, please email our data privacy officer at datenschutzbeauftragter@eisenmann.com
- in accordance with Article 77 of the GDPR, to lodge a complaint with a supervisory authority. Usually, you can turn to the supervisory authority in your habitual residence, place of work or our place of business.
8. Right To Object & Data Breaches
If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 of the GDPR, provided there are reasons for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have the general right to object, which we will implement without specifying a particular situation. If you would like to exercise your right to object or report a data breach, simply send an email to datenschutzbeauftragter@eisenmann.com.
9. Updating The Privacy Policy
This privacy policy is currently applicable.
Due to the further development of the offers on our websites, web presence and apps or due to changed legal or official requirements, it may become necessary to change this privacy policy. Necessary updates of the privacy policy are not expressly announced by us. We therefore recommend that you read the privacy policy over at regular intervals.
Our up-to-date privacy policy can be downloaded and printed from our website and our web presence at any time.
Revision: November 2023
© Eisenmann GmbH
All rights reserved. All texts, images, graphics, audio, video and animation files as well as their arrangements are subject to copyright and other laws protecting intellectual property.
Content may only be used with the express approval of Eisenmann GmbH. If you have questions, please call us at +49 7031 78-0.
Disclaimer
If our website contains links to third-party websites, we will neither assume any liability for these websites nor will we take ownership of these websites and their content. Eisenmann has no control over the linked information and is therefore not responsible for the content and information provided there. Users have to use these links at their own risk.