Thank you for your interest in our online presence. Protection of your personal data is deeply important to us. Therefore, we would now like to inform you about data privacy protection in our company. As a matter of course, we observe statutory provisions of data privacy protection, e.g.: Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG), etc.
Personal data is data regarding a real person. This includes their name, address and email address. You do not need to divulge any personal data to be able to visit our web pages. In some cases, we need your name and address and additional information to be able to offer the desired service to you.
The same applies in case we provide information requested or when we answer your requests. We will always inform you in these cases. Additionally, we only save the data you have automatically or willingly transmitted to us.
If you use one of our services, we typically only collect the data necessary to be able to offer our service to you. It is possible that we ask you for further information, which is solely voluntary. When we process personal data, we do that to be able to offer our services or pursue our commercial goals.
We process the data we received within the scope of contract negotiation or contract settlement based on consent, or within the scope of a job application with us, or within the scope of your employment with us.
Counted as personal data are:
your basic/contact data, among this for customers, e.g.: first and last name, address, contact information (email address, telephone number, fax), bank data.
For job applicants and employees, this includes, for example, first and last name, address, contact information (email address, telephone number, fax), birth date, data from your resume and work references, bank data, religion, pictures.
For business partners, this includes, for example, designation of their legal representative, company, commercial register number, VAT ID no., standard company number, address, contact person contact information (email address, telephone number, fax), bank data.
For visitors to our company, this includes name and signature.
For journalists, this includes first and last name, email address and fax number.
For contest winners, this includes first and last name, email address and fax number.
In addition to this we also process the following other personal data:
information about the type and content of contract data, order data, revenue and document data, customer and supplier history as well as consultation documents,
advertisement and sales and distribution data,
information from electronic communication with us (e.g.: IP address, log-in data),
other data we received within the scope of our business relationship (e.g.: in customer discussions),
data we generate ourselves from basic/contact data as well as other data, such as using customer demand and customer analyses,
the documentation of your declaration of consent for the receipt of newsletters, for example.
photographs within the framework of events.
We process your data in unison with the provisions of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act of 2018 in its currently valid version.
• for the fulfillment of (pre-) contractual obligations (Art. 6 Para. 1 lit.b GDPR):
Processing of your data occurs for contract execution online or in one of our branches for contract execution of your employment with our company. The data is processed in particular during the initial business contact and upon execution of the contracts with you.
• for the fulfillment of legal obligations (Art 6 Abs. 1 lit.c GDPR):
Processing of your data is for the purpose of fulfillment of various legal obligations, for example, from the German Commercial Code or tax code.
• for the fulfillment of legal obligations (Art 6 Para. 1 lit.c GDPR):
Based on the weighing of interests, data processing can occur above the actual fulfillment of the contract for the safeguarding of the vital interests of us or third parties. Data processing to safeguard vital interests occurs in the following cases, for example:
advertisement or marketing (see no. 4)
measures for business management and further development of services and products,
maintaining a corporate-wide customer database to improve customer service
within the scope of the assertion of legal rights.
• within the scope of your consent (Art 6 Para. 1lit.a GDPR):
When you have granted us consent for the processing of your data, for example, for sending our newsletter.
We process your data up to the end of our business relationship or the expiration of the applicable statutory retention periods (such as from the German Commercial Code, the tax code, German Nursing Home Law or Labor Law); beyond that up to the end of any possible legal disputes for which the data is needed as evidence.
Basically, no data is ever transmitted by us to a third country. Transmission only takes place in individual cases based on an adequacy decision by the European Commission, standard contract clauses, suitable guarantees or your express approval.
We have implemented technical and organizational measures to protect your personal data from loss, destruction, manipulation and unauthorized access. We routinely prove this with certifications like ISO 27001 and TISAX (https://www.zollner.de/unternehmen/zertifizierungen).
All of our employees and all service providers acting for us are applicably obligated to valid data protection laws.
Whenever we collect and process your personal data, it is encrypted before it is transmitted. That means your data cannot be misused by third parties. Our security precautions are subject to a constant improvement process, and our Data Privacy Protection Declarations are constantly revised.
You always have the right to information, rectification, erasure or restriction of the processing of your stored data, an objection to the processing as well as a right to data portability and to complaints in accordance with the prerequisites of data privacy protection rights.
Right of access by the data subject (§15 GDPR): You have the right to demand confirmation from us as to whether we are processing your personal data. If this is the case, you can request information about this data and further information in accordance with §15 GDPR.
Right to rectification (§16 GDPR): If your personal data is inaccurate or incomplete, you have the right to demand rectification or completion of that data.
Right to erasure (“right to be forgotten” §17 GDPR): You have the right to demand erasure of your personal data without undue delay if one of the justifications stated in §17 Para. 1 GDPR exists. Please be aware that in some cases we may be legally obligated to further retain your information.
Right to restriction of processing (§18 GDPR): You can demand the restriction of your data, if
- you dispute the correctness of the data, and that for a period of time that allows us to check the correctness of the data,
- the processing of the data is unlawful but you reject erasure and demand instead restriction on use of the data,
- we no longer need the data for the intended purpose but you need this data yet for enforcement or defense of legal claims or
- you have submitted an objection to the processing of your data.
Right to data portability (§20 GDPR): You can demand of us to provide you data to you that you have provided to us in a structured manner, conventional and machine-readable format and that this data can be transmitted by us to another responsible entity without hindrance, if
- we process this data based on irrevocable consent you have granted us or for the fulfillment of a contract between us, and
- this processing occurs with the help of automated processes.
If it is technically possible, you can demand that we directly transmit your data to another responsible entity.
Right to object (§21 GDPR): If we process your data for vital interests, you can submit an objection to this data processing at any time. This would also apply for profiling supported by these provisions. Then we no longer process your data unless we can prove compelling reasons worthy of protection for processing, which outweigh your interests, rights and freedoms or the processing serves enforcement, exercising or defending legal claims. You can object to the processing of your data for the purpose of direct advertisement at any time and without reason.
Right to lodge a complaint with a supervisory authority (§77 GDPR): If you believe we are processing your data in violation of German or European data privacy protection laws, we ask you to contact us so we can clarify any questioning. Of course, you also have the right to contact the supervisory authority, the regional authorities for data protection supervision.
If you want to claim one of the stated rights against us, please contact our Data Security Officer. In cases of doubt, we can request additional information to confirm your identity.
Notification obligation regarding rectification, erasure or restriction of processing: If you assert your rights to rectification, erasure or restriction of processing, we are obligated to inform all recipients to which your personal data has been disclosed of the rectification. Erasure or restriction of processing unless this proves to be impossible or is associated with excessive expenditure and effort. You have the right to be informed of these recipients.
Right to withdraw consent (§ 7 Para. 3 GDPR): You can withdraw consent you granted for the processing of your personal data at any time. The withdrawal has no impact on the legality of processing that occurred up to the withdrawal.
Automated individual decision-making, including profiling (§ 22 GDPR): When personal data processing is automated in order to make decisions (e.g.: through profiling), the data subject has the right to no be subjected to decisions made on the basis of fully automated processing, which effectuate lawful impact or significantly affects you adversely. An exception exists when this is required by contract.
The processing of your data is necessary up to the finalization or fulfillment of the contract entered into with us. If you do not provide us with this data, we will normally have to reject the finalization of the contract, or an existing contract can no longer be executed and must therefore be ended. However, you are not obligated to grant consent to the processing of irrelevant data or data not required by law regarding contract fulfillment.
Zollner Elektronik AG retains the right to make changes to the Data Privacy Protection Declaration at any time. Therefore, we ask you to routinely review this Data Privacy Protection Declaration. If significant changes are made, you will be made aware of this by a note on our home page.
Upon establishing contact with us (e.g.: via contact form, email or telephone), the information of the requesting people are processed inasmuch as this is necessary to answer the contact question and any other requested actions.
The response to contact questions within the framework of contractual or pre-contractual relationship is made for the fulfillment of our contractual obligations or to answer (pre-) contractual requests as well as on the basis of vital interests in the response to the request.
Processed data types: Master data (e.g.: names, addresses), contact data (e.g.: email, telephone numbers), content data (e.g.: input into online forms).
Data subjects: Communication partners.
Processing purpose: Contact requests and communication.
Legal basis: Contract fulfillment and pre-contractual requests (Art. 6 Para. 1 lit. b. GDPR), Vital interests (Art. 6 Abs. 1 lit. f. GDPR).
Server log files
(1) The provider of our pages automatically collects and stores information in so-called server log files, which are automatically transmitted to us. It deals with the following data:
(2) This data is not combined with other data sources. Processing is done in accordance with Art. 6 Para. 1 lit. f GDPR based on vital interest in the improvement of the stability and functioning of our website.
(3) This data is stored temporarily for reasons of technical security, especially to defend against attempts to attack our web server. Inference to individuals is not possible based on this data.
(4) After seven days at the latest, the data is made anonymous through truncating of the IP address to the domain level so no reference can be made to individual users. In their anonymous form, the data is also processed for statistical purposes. Comparison with other data inventory or transmission to a third party, even in excerpts, does not take place.
When you visit our web pages, we may possibly store information on your computer in the form of cookies. Many cookies have a so-called Cookie ID. A Cookie ID is an unmistakable identification of the cookie. It consists of a series of characters through which web pages and servers can be allocated to a specific Internet browser in which the cookie was stored. This allows differentiation by the visited web pages of the individual browser of the data subject from other Internet browsers, which contain other cookies. A specific Internet browser can be recognized and identified by the unmistakable Coolie ID.
With the use of Session cookies, the responsible person can provide the user of this web page a user-friendly service, which would not be possible without setting cookies. Without consent we only use technically necessary cookies based on vital interests in accordance with Art. 6 Para. 1 lit. f GDPR.
(1) We have integrated videos from Vimeo LLC with headquarters at 555 West 18th Street, New York, New York 10011.
(2) Some of our web pages have videos from Vimeo. When you call up such a web page on our Internet presence, a connection is made to the Vimeo servers. Through this, the Internet pages you visited are transmitted to the Vimeo servers. If you are logged in as a member of Vimeo, Vimeo allocates this information to your personal user account. This information can also be allocated to an existing user account by clicking on the start button of a video. You can prevent this allocation in that, prior to using our web page you log out of your Vimeo user account and delete the applicable cookies from Vimeo.
(3) We set this service within our online offering based on vital interests - on the analysis, optimization and economically viable operation of our online offering. The legal basis is Art. 6 Para. 1 lit. f.) GDPR.
(4) You can find further information on data processing and helpful information about data privacy protection by Vimeo at vimeo.com/privacy.
(5) Vimeo also calls up the Google Analytics Tracker via an iFrame in which the Video is called up. This is Vimeo’s own tracking to which we have no access. You can prohibit tracking by Google Analytics in that you use the deactivate tool Google offers for some Internet browsers. The user can also prevent recording of the data created by Google Analytics related to your use of the website (including your IP address) to Google as well as the processing of this data by Google in that you download and install the browser plugin available under the following link: tools.google.com/dlpage/gaoptout.
(1) Zollner Elektronik AG uses the online applicant platform BITE-Bewerbermanager (BITE recruiting and candidate management), provided within the framework of order processing by BITE GmbH, Magirus-Deutz-Str. 16, 89077 Ulm.
(2) We collect and process the following data within the scope of the application process:
(3) Data collection and processing occurs based on Art. 6 Para. 1 lit. b GDPR in connection with § 26 BDSG and is necessary for the preparation and possible justification for an employment or training relationship. Here we pay attention to the principles of data economy and data reduction. Only the data necessary for the complete examination of your application documents is queried, such as application letters, resumes, reference letters and/or qualification certificates. Your IP address is also processed for technical reasons as well as legal safeguarding.
(4) By clicking on the “Online job application” button in an open job advertisement from Zollner Elektronik AG, you will automatically be forwarded to the BITE-Bewerbermanager online platform. All data in the BITE-Bewerbermanager is encrypted to best protect the security and confidentiality of your data. All servers are solely operated at German server locations by BITE GmbH. BITE GmbH is certified in accordance with ISO/IEC 27001. All of the requirements of the GDPR have been included and implemented in the BITE-Bewerbermanager.
(5) If we have received application documents from you through other channels as the BITE-Bewerbermanager (e.g.: mail or email), we transfer that data manually into the BITE-Bewerbermanager to ensure data security and standardized execution of the application process.
(6) We store your data for the purposes mentioned above up to the closure of the application process and expiration of relative grace periods. Erasure takes place six months after receipt of a decision at the latest.
(7) You have the option of allowing us to save your application documents for a longer period and compare them with other vacant positions relative to your profile. We need your consent, which you can grant us by clicking on the “Applicant pool” checkbox prior to uploading your application documents. We save your data for 12 months in this case. You can withdraw your consent at any time without reason with future effect by telephone or email to info(at)zollner.de.
(1) We also use LinkedIn Conversions API, a tool from the LinkedIn Corporation.
For users outside the European Economic Area, LinkedIn is operated by the LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085, USA.
For users residing within the European Economic Area and Switzerland, LinkedIn is operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
(2) LinkedIn Insight Tag allows is to analyze the behavior of visitors to our website and place targeted advertisements on LinkedIn. When our web pages are visited, a direct link is established to LinkedIn servers. LinkedIn receives information that you visited our website and can link that data with your LinkedIn user account if you are logged into LinkedIn. Anonymized reports for ad performance and website demography can also be created.
(3) We set this service within our online offering based on vital interests - on the analysis, optimization and economically viable operation of our online offering. The legal basis is Art. 6 Para. 1 lit f GDPR.
(4) You can find further information about data processing by LinkedIn and your data privacy protection rights at: https://www.linkedin.com/legal/privacy-policy.
(5) LinkedIn also processes personal data in the US. Standard contract clauses (SCCs) are used for this in accordance with Art. 46 GDPR to ensure an appropriate level of data privacy protection.
(6) Users can deactivate processing by LinkedIn Insight Tag in that you shut off personalized advertisements in your LinkedIn account settings: https://www.linkedin.com/psettings/advertising. In addition to that, you can limit the recording of data on our website by using browser plugins or applicable tools, which prevent tracking.
(1) When visiting our Facebook page, Facebook records your IP address and other information saved to your end device in the form of cookies. This information is used to provide statistical information about the use of the page as operators of the Facebook page. Facebook provides further information about this under the following link: de-e.facebook.com/help/pages/insights.
(2) The data collected in association with your visit is processed by Facebook Ltd. And possibly transmitted to countries outside of the European Union. The information Facebook receives and how it is used is described by Facebook in its data use guidelines: de-de.facebook.com/about/privacy. There you will find information on contract options and setting options for advertisements.
(3) It is not conclusively known to us how Facebook uses your visit, in which scope activities are allocated to individual users, how long this data is stored or whether it is transmitted to third parties.
(4) When you access our Facebook page, the IP address assigned to your end device is transmitted to Facebook. According to their own information, Facebook anonymizes these IP addresses (for German IP addresses) and deletes them after 90 days. Facebook also stores information about your end device. If you are logged into Facebook, a cookie with your Facebook ID is saved on your end device. With that, Facebook can track how you use our Facebook page and other Facebook pages. To prevent this, log out of Facebook, deactivate the “Keep me logged in” function, delete existing cookies and restart your browser.
(5) Because transmission of personal data occurs into the US, we have negotiated Standard Data Protection Clauses with Facebook in accordance with Art. 46 Abs. 2 lit. c GDPR. This obligates Facebook to process the data in accordance with the European data privacy protection level. You can find further information at: de-de.facebook.com/about/privacy.
(6) Via the so-called “Insights” on the Facebook page, we have access to statistical data in various categories, which is generated and provided by Facebook. Among this are:
(7) We use this aggregated data to make our content and activities on Facebook more attractive. For example, we adapt the content in preferred visitor times or end device types.
(8) Within the framework of the agreement between us and Facebook for mutual responsibility, Facebook Ireland assumes primary responsibility in accordance with the GDPR for the processing of Insight data and fulfillment of applicable obligations (e.g.: Articles 12, 13, 15–22 and 32–34 GDPR).
(9) You can contact us or Facebook directly with questions. If we cannot answer your question, we will forward you to Facebook. Facebook will process this in unison with existing obligations.
(1) We operate this page as a communication and information channel to provide information about our offerings. Personal data is processed in accordance with Art. 6 Para. 1 lit. f GDPR based on vital interests in the use of this contemporary information and interaction opportunity with users of and visitors to our page.
(2) We make you aware that you are using this LinkedIn page and its functions on your own account. This applies especially to the use of interactive functions, like:
(3) We have no influence on the type and scope of data processed by LinkedIn, the type of processing and use or forwarding the data to third parties. We also do not have any effective control options. With using LinkedIn, your personal data can be collected, transferred, disclosed and used by LinkedIn.
(4) Options for restriction of data processing:
You can restrict the processing of your data in the general settings of your LinkedIn account. With mobile devices (smart phones, tablets), you can restrict access from LinkedIn to contact and calendar data, photos and locations, etc., in the operating system settings.
(5) Because transmission occurs of personal data into the US, additional protective mechanisms are needed to ensure the data privacy protection level of the GDPR. We have negotiated Standard Data Protection Clauses with LinkedIn in accordance with Art. 46 Para. 2 lit. c GDPR. This obligates LinkedIn to process data in accordance with the European data privacy protection level. If these measures are inadequate, we strive for additional regulations and assurances from recipients.
(6) You can find further information about data processing by LinkedIn in the LinkedIn Data Protection Guideline: www.linkedin.com/legal/privacy-policy.
You can find information about personalization and data protection settings here: www.linkedin.com/help/linkedin/answer/66.
(7) We also process your data when you communicate with us via LinkedIn. We receive anonymized statistics and use profiles from LinkedIn based on the interactions on and call-ups of our LinkedIn page. Among this are:
(8) The created statistics are solely transmitted to us in anonymized form. We have no access to the underlying personal data. Evaluations provided by LinkedIn help us to better understand which content interests our users to applicable adapt our offering.