Privacy Policy

This data protection information applies to data processing on the www.fwshats.de website and all associated sub-domains, and is carried out by the following responsible entity:

Friedrich W. Schneider GmbH & Co. KG
Oskar-Schindler-Str. 11
50769 Cologne
Germany
tel.: +49 20221/963558-0
email: [email protected]

The external data protection officer of the Friedrich W. Schneider GmbH & Co. KG is available to you under the following contact details:

Markus Weber
dokuworks GmbH
Essener Str. 1
57234 Wilnsdorf
[email protected]

Definitions

We use the following terms, among others, in this Privacy Policy:

Personal Data

Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Data subject

Data subject means any identified or identifiable natural person whose personal data are processed by the controller.

Processing

Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Restriction of processing

Restriction of processing is the marking of stored personal data with the aim of limiting their future processing.

Profiling

Profiling is any type of automated processing of personal data that consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person’s job performance, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.

Pseudonymization

Pseudonymization is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.

Controller or person responsible for processing

The controller or data processor is the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for under Union or Member State law.

Processor

Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Recipient

Recipient means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.

Third Party

Third party means a natural or legal person, public authority, agency or other body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.

Consent

Consent shall mean any freely given indication of the data subject’s wishes for the specific case in an informed and unambiguous manner, in the form of a statement or any other unambiguous affirmative act by which the data subject indicates that he or she consents to the processing of personal data relating to him or her.

Collection and Storage of Personal Data as well as the Type and Purpose of their Use

When visiting the website
When you visit our website www.fwshats.de, the browser on your device automatically sends information to the server on our website. This information is temporarily stored in a so-called log file. The following information is recorded without any action on your part and stored until it is automatically deleted, usually after one week:

IP address of the requesting computer,
Date and time of access,
Name and URL of the data being called up,
Website from which access is being made (referrer URL),
Browser used and, if applicable, the operating system of your computer and the name of your access provider.

The data mentioned is processed by us for the following purposes:

Ensuring a smooth connection to the website,
Ensuring comfortable use of our website,
Evaluation of system security and stability,
Clarification of any abusive page accesses (DoS/DDoS attacks or the like) and
for further administrative purposes.

The legal basis for data processing is Art. 6 (1) (1) (f) General Data Protection Regulation [GDPR]. Our legitimate interest results from the data collection purposes listed above. As a rule, we do not use the collected data to draw conclusions about you personally. We reserve the right to do this should it become necessary in order to clear up abusive page access.

In addition, we use cookies and analysis services when you visit our website (see Cookies and Analysis Tools)

Hosting

We host the content of our website with the following provider:
IONOS SE
Elgendorfer Str. 57
56410 Montabaur
[email protected]

Details can be found in the provider’s privacy policy:
Datenschutzerklärung – IONOS AGB

The use of IONOS SE is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG (German Telecommunications Digital Services Data Protection Act), insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be withdrawn at any time.

When using our contact form

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. It is necessary to provide a valid e-mail address so that we know who sent the request and can answer it. Further information can be provided voluntarily.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily given consent.

The personal data collected by us for the use of the contact form will be automatically deleted after your inquiry has been dealt with.

Data Transfer

No transfer of your personal data to third parties for purposes other than those listed below shall take place. We will only pass on your personal data to third parties if:

• according to Art. 6 (1) (1) (a) GDPR, you have given express consent to this,
• the transfer according to Art. 6 (1) (1) (f) GDPR is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,
• in the event that there is a legal obligation for the transfer under to Art. 6 (1) (1) (c) GDPR, and
• this is legally permissible and according to Art. 6 (1) (1) (b) GDPR is required for the processing of contractual relationships with you.

Online job application and publication of job advertisements

We offer you the opportunity to apply for a job via our website. For these digital applications, your applicant and application data will be collected and processed electronically by us for the purpose of handling the application process.

The legal basis for this processing is Section 26 (1) sentence 1 BDSG in conjunction with. Art. 88 para. 1 DSGVO.

If an employment contract is concluded after the application process, we will store the data you provided during the application in your personnel file for the purpose of the usual organizational and administrative process – this, of course, in compliance with the more extensive legal obligations.

The legal basis for this processing is also Section 26 (1) sentence 1 BDSG in conjunction with. Art. 88 para. 1 DSGVO.

If an application is rejected, we automatically delete the data provided to us two months after notification of the rejection. However, the deletion does not take place if the data requires longer storage of up to four months or until the conclusion of legal proceedings due to legal provisions, e.g. due to the obligation to provide evidence according to the AGG.

In this case, the legal basis is Art. 6 Para. 1 lit. f) DSGVO and § 24 Para. 1 No. 2 BDSG. Our legitimate interest lies in the legal defense or enforcement.

If you expressly consent to a longer storage of your data, e.g. for your inclusion in a database of applicants or interested parties, the data will be further processed based on your consent. The legal basis is then Art. 6 para. 1 lit. a) DSGVO. However, you can of course revoke your consent at any time in accordance with Art. 7 (3) DSGVO by declaration to us with effect for the future.

Data protection notice for business partners

We are pleased that you are interested in Friedrich W. Schneider GmbH Co. KG and that you are contacting us.

The protection of your data is very important to us. With the data protection notice, we provide you with the following information in accordance with Art. 13 DSGVO on the processing of your personal data in connection with our business relationship.

Further information about our company, details of the persons authorized to represent us and further contact options can be found at https://fwshats.de/privacypolicy/?lang=en

What data do we process and for what purposes?

We only process personal data that we have received from you or, if applicable, from publicly accessible sources in the course of our business relationship.

Personal data in the sense of Art. 4 No. 1 DSGVO can be: Names, telecommunication data and address data. In addition, we also process offer, inquiry and order data, data from the fulfillment of our contractual obligations, product data, documentation data, as well as other data comparable with the aforementioned categories.

The provision of your personal data is necessary for the initiation, implementation and processing of the contractual relationship. If it is not provided, it is unfortunately not possible for us to contact you to clarify the pre-contractual or contractual issues.

On what legal basis is the processing of your personal data based?

Your personal data is processed in accordance with the legal provisions of the DSGVO and the Federal Data Protection Act for the fulfillment of contractual obligations or for measures to initiate a contract (Art. 6 para. 1 p. 1 lit. b DSGVO),

Furthermore, we may use this data for additional purposes within the scope of our business relationship.

How long is the data stored?

We process and store your personal data for the duration of our business relationship and at least in accordance with the statutory retention periods such as the German Commercial Code or the German Fiscal Code.

To whom is the data passed on and where is it processed?

We use the personal data only for our own purposes in the course of the business relationship.

We would like to point out that we generally assume that our e-mail correspondence is business-related and therefore forward e-mails to your representatives in the absence of employees for better service.

Cookies

Cookies are small text files that are placed on your device and collect data that can later be read by a web server of the domain that placed the cookie.

Cookies and similar technologies are used on our website to provide users of this website with a more user-friendly service, to analyze the performance of our products and for other legitimate purposes.

The data subject may, at any time, prevent the setting of cookies through our website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

A distinction can be made between the following types of cookies:

Technically necessary cookies

Technically necessary cookies are those that ensure the basic functions of the website and thus enable its operation. This only concerns technical necessity, not economic aspects.
The legal basis is our legitimate interest in the provision of a functional website in accordance with Art. 6 para. 1 lit. f GDPR or the fulfillment of a legal obligation in accordance with Art. 6 para. 1 lit. c GDPR.

For the aforementioned purposes, we use the services of the third parties listed below, who are responsible for the data processing that takes place via their respective service in accordance with Art. 4 para. 7 GDPR. Further information on data processing by these providers and your rights as a data subject can be found in the providers’ privacy policies linked below:

Statistics cookies, marketing cookies and functional cookies

Statistics cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously.

Marketing cookies store user information regarding the website visited. This data is used, for example, to display advertisements tailored to the user’s interests, to optimize offers, to recognize the user or to simplify website use.

Functional cookies make it possible to increase the user-friendliness of the website by storing personal data such as location or form data. In particular, improved and personalized functions can be provided.
The legal basis is your consent in accordance with Art. 6 para. 1 lit. a GDPR.

Google Analytics 4 (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) https://policies.google.com/privacy?hl=de https://support.google.com/analytics/answer/12017362?hl=de

Google Tag Manager (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) https://www.google.com/policies/privacy/

YouTube with extended data protection

Our website uses plugins from the YouTube website. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.
We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode. For example, YouTube establishes a connection to the Google DoubleClick network regardless of whether you watch a video.
As soon as you start a YouTube video on our website, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

Des Weiteren kann YouTube nach Starten eines Videos verschiedene Cookies auf Ihrem Endgerät speichern. Mit Hilfe dieser Cookies kann YouTube Informationen über Besucher unserer Website erhalten. Diese Informationen werden u. a. verwendet, um Videostatistiken zu erfassen, die Anwenderfreundlichkeit zu verbessern und Betrugsversuchen vorzubeugen. Die Cookies verbleiben auf Ihrem Endgerät, bis Sie sie löschen.

Gegebenenfalls können nach dem Start eines YouTube-Videos weitere Datenverarbeitungsvorgänge ausgelöst werden, auf die wir keinen Einfluss haben.

Die Nutzung von YouTube erfolgt im Interesse einer ansprechenden Darstellung unserer Online-Angebote. Wir nutzen YouTube ausschließlich nach Einholung einer Einwilligung gem. Art. 6 Abs. 1 lit. a DSGVO. Weitere Informationen über Datenschutz bei YouTube finden Sie in deren Datenschutzerklärung unter: http://www.youtube.com/t/privacy_at_youtube.

Vimeo video integration

We use “Vimeo” on our website to display videos. This is a service provided by Vimeo, LL C, 555 West 18th Street, New York, New York 10011, USA, hereinafter referred to as “Vimeo”.

Partial processing of user data takes place on Vimeo servers in the United States.

The legal basis is your consent, pursuant to Art. 6 (1) (a) GDPR, to the processing of your personal data.

If you visit a page of our website in which a video is embedded, a connection is established to the servers of Vimeo in the United States in order to display the video. For technical reasons, it is necessary for Vimeo to process your IP address. The date and time of your visit to our website are also recorded.

If you are logged into Vimeo at the same time as you visit one of our websites that embeds a Vimeo video, Vimeo may assign the information collected in this way to your personal user account there. If you want to prevent this, you must either log out of Vimeo before visiting our website or configure your user account with Vimeo accordingly.

For the purpose of functionality and usage analysis, Vimeo uses the web analytics service Google Analytics. Google Analytics stores cookies on your end device via your internet browser and sends information to Google about the use of our internet pages in which a Vimeo video is embedded. Google may process this information in the United States.

If you do not agree to this processing, you have the option of preventing the installation of cookies by changing the appropriate settings in your Internet browser. Details on this can be found above under the item “Cookies”.

The legal basis is your consent pursuant to Art. 6 (1) (a) of the GDPR.

Vimeo offers further information on the collection and use of data and on your rights and options for protecting your privacy at http://vimeo.com/privacy.

Data transfer to third countries

We only transfer or process data to countries outside the scope of the GDPR (so-called “third countries”) if you consent to this processing or other legal permission exists. This applies in particular if the processing is required by law or necessary to fulfill a contractual relationship and in any case only to the extent that this is generally permitted.

If data is processed outside the EU/EEA and there is no data protection level corresponding to the European standard, we conclude EU standard contractual clauses alongside a Transfer Impact Assessment (TIA) with relevant service providers to ensure an adequate level of data protection.

With regard to data transfer to U.S. companies, the transatlantic data protection agreement (so-called “Data Privacy Framework”) came into force on July 10, 2023; also known as the “Privacy Shield 2.0”. This means that—under certain conditions—the use of tracking/analysis and marketing tools with data transfer to the USA is permitted again. In order for a U.S. company to be considered a secure data recipient and comply with the principles of the Data Privacy Framework, it must go through a self-certification process by the U.S. Department of Commerce (DoC). This self-certification requires a company to submit a series of documents. If these are complete, the organization is included in the DPF list (short for “Data Privacy Framework”) and is considered self-certified in accordance with the requirements of the new data protection framework.

Data processing by U.S. services that are not active participants in the EU-U.S. Data Privacy Framework may result in data not being processed and stored anonymously. Furthermore, U.S. government authorities may be able to access individual data. Data collected also may be linked to data from other services of the same provider if you have a corresponding user account. Where possible, we try to use server locations within the EU if this is offered.

Social media
Integration of a social media button

The data controller has integrated social media components on this website. For this purpose, we use the services of the third-party providers listed below, who are responsible for the data processing that takes place via the service in accordance with Article 4, No. 7 GDPR. The providers only collect personal data from you when you click on the button and are redirected to the respective page. Further information on data processing by these third-party providers and on your rights as a data subject can be found in the providers’ privacy policies linked below:

The legal basis for the processing is our legitimate interest in offering and advertising our offers and services on social media is Article 6, paragraph 1, lit. f. GDPR.

YouTube(Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) https://support.google.com/youtube/answer/7671399?p=privacy_guidelines&hl=de&visit_id=0-636644030056539000-341535836&rd=1
Xing (New Work SE, Am Strandkai 1, 20457 Hamburg, Deutschland) https://privacy.xing.com/de/datenschutzerklaerung/

Use of social media profiles

We use the technical platform and services of the respective social media providers to display our content on a social media profile.

As the operator of the social media profile, we, Friedrich W. Schneider GmbH & Co. KG, are jointly responsible with the operator of the social network within the meaning of Article 4, No. 7 of the General Data Protection Regulation (GDPR). When you visit our social media profile, personal data is processed by the data controllers. In the following, we will inform you about what data is involved, how it is processed, and what rights you have in this regard.

We would like to point out that you use this website and its functions at your own risk. This applies in particular to the use of interactive functions (e.g., commenting, sharing, rating, etc.). We may take your comments and ratings as an opportunity to respond to them with our own comments. For this purpose, we make use of our legitimate interest in interacting with our profile’s active users (Article 6, paragraph 1, lit. f GDPR).

If you have questions of any kind, you can contact us via personal messages. Your username may automatically be communicated to us. Further information can be provided voluntarily, in particular options for contacting us outside of social media. Data processing for the purpose of contacting us is carried out in accordance with Article 6, paragraph 1, sentence 1 lit. a GDPR on the basis of your voluntarily granted consent. The personal data processed by us for contacting you will be automatically deleted after your request has been dealt with, unless statutory retention obligations prevent this (e.g., because a contractual relationship has been established between us on the basis of your request).

When you visit our social media profile, the provider collects, among other things, your IP address and other information that is stored on your PC in the form of cookies. As the operator of the social media profile, this information is used to provide us with statistical information about the use of the website.

The data collected about you in this context is processed by the providers and may be transferred to countries outside the European Union. What information the provider receives and how it is used is described by the provider in general terms in its data usage guidelines. There you will also find information on how to contact the provider and the setting options for advertisements.

The social media provider has not clearly and conclusively stated the way in which the providers use the data from visits to social media profiles for their own purposes, the extent to which activities on the websites are assigned to individual users, how long this data is stored, and whether data is passed on to third parties. As such, we have no knowledge of this information. When you access a social media profile, the IP address assigned to your end device is transmitted to the provider. This may enable the provider to assign IP addresses to individual users. If you are currently logged in to a social media provider as a user, a cookie with your identifier is stored on your end device. This enables the provider to understand that you have visited this page and how you have used it. If you want to prevent this, you should log out of the respective social media provider or deactivate the “stay logged in” function, delete the cookies on your device, and close and restart your browser.

Additional details about your rights as a data subject under the GDPR are provided in Point 2, “Data Subject Rights.”

Further information on this topic is offered by the provider at the following link:

YouTube(Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) https://support.google.com/youtube/answer/7671399?p=privacy_guidelines&hl=de&visit_id=0-636644030056539000-341535836&rd=1
Xing (New Work SE, Am Strandkai 1, 20457 Hamburg, Deutschland) https://privacy.xing.com/de/datenschutzerklaerung/

Affected Rights

You have the right:

* to access information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can access information about the purposes of the processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data, if we have not collected it, as well as the existence of automated decision-making including profiling and, if necessary, meaningful information on the details of these;

We may only refuse to provide you with access if and to the extent that the access reveals information that, according to a legal provision or by its nature, in particular because of the overriding legitimate interests of a third party, must be kept confidential (Section 29 (1) (2) of the Federal Data Protection Act [BDSG]), the responsible public authority has determined for us that the disclosure of the data would endanger public safety or order, or otherwise be detrimental to the well-being of the federal government or a state (Section 34 (1) (1) BDSG in conjunction with Section 33 (1) (2) (b) BDSG), or the data are only stored because they may not be deleted due to legal or statutory retention requirements, or are used exclusively for data backup or data protection purposes and the provision of access to the information would require a disproportionate effort, and processing for other purposes is excluded through suitable technical and organizational measures (Section 34 (1) (2) BDSG).

* in accordance with Art. 16 GDPR, to immediately request the rectification of incorrect or incomplete personal data stored by us;

* to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest, or for the assertion, exercise or defense of legal claims;

* to request the restriction of the processing of your personal data in accordance with Art. 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you refuse its deletion and we no longer need the data, but you do need them for the assertion, exercise or defense of legal claims, or you have objected to processing in accordance with Art. 21 GDPR;

* in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another responsible entity;

* to revoke your consent given to us at any time in accordance with Art. 7 (3) GDPR. As a result, we are no longer allowed to continue the data processing based on this consent in the future,

* if your personal data is being processed based on legitimate interests in accordance with Art. 6 (1) (1) (f) GDPR, to object to the processing of your personal data in accordance with Art. 21 GDPR, provided there are reasons for this that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection which we will implement without specifying a particular situation.

In addition, you have a general right to complain to the data protection supervisory authority with jurisdiction over you. The authority with jurisdiction over us is the “State Commissioner for Data Protection of North Rhine-Westphalia”.

If you would like to exercise your right of revocation or objection, an email to [email protected] is sufficient.

Data Security

During your visit to our website, we use the popular SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form, based on whether the closed padlock symbol in the lower status bar of your browser is displayed.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

Updates and changes to this Privacy Policy

This Privacy Policy is currently valid and is dated December 2024. Due to the ongoing development of our website and the offers conveyed therein, or changes in legal or regulatory requirements, it may be necessary to modify this Privacy Policy. You can access and print out the current Privacy Policy on the website https://fwshats.de/privacypolicy/?lang=en at any time.

Contact

Friedrich W. Schneider GmbH & Co. KG
Oskar-Schindler-Straße 11
D-50769 Köln

Phone: +49 (0) 221 963 558 – 0
[email protected]
www.fwshats.de

HRA 1022 Köln | UST-Ident.-Nr. DE122906259

represented by its General Partner:
Friedrich W. Schneider Verwaltungs GmbH
Commercial Register no. HRB 2625 Cologne, Oskar-Schindler-Strasse 11, D – 50769 Cologne,
which is, in turn, represented by the Managing Directors: Sebastian Boekholt

Contact details of the external Data Protection Officer:

Markus Weber
dokuworks GmbH
Essener Str. 1
57234 Wilnsdorf
[email protected]

Webdesign und Programmierung:
Mintellity® GmbH – Rothenburg 14-16 – 48143 Münster
www.mintellity.com