Customers, vendors, business partners – information on General Data Protection Regulation (Art. 13 EU-DSGVO)
We welcome you on our website and are excited about your interest in our company. The protection of your personal data is very important to us.
The handling of your personal data, for example of name, address, email address, or telephone number is done within all rules and regulations of the General Data Protection Regulation (DSGVO) and in accordance with the country-specific data protection regulations.
By means of this data protection information we would like to inform you about the type, extent, and purpose of the personal data compiled and processed by us. Moreover, we would like to inform you about your rights.
1. Name and address of the party responsible for the handling
The party responsible in regards to the General Data Protection Regulation and others in member countries of the European Union is:
CARL RÖNTGEN GMBH, Hammesberger Straße 11, D-42855 Remscheid
2. Affected Individuals
The data protection regulation at hand only applies to natural persons, customers, vendors, or business partners of Carl Rontgen GmbH and its employees, who cooperate with Carl Rontgen.
The general data protection regulation explains how Carl Rontgen GmbH, Hammesbergerstr.11, 42855 Remscheide (hereafter “Roentgen,” “we,” “us”) imposes and treats your personal data in correlation with execution of our business relationship.
3. Categories of Personal Data
As long as not restricted by local laws, Roentgen imposes, treats, and uses the following categories of your personal data:
- Title / Position / Sex / Job
- Corporate contact information (address, phone number, fax, email address)
- Content of the communication (e.g. email, conversational records or business letters)
- Provided or offered services or products
- Invoice and payment information
Usage of Websites
When visiting our web page it could be that we impose certain technical data pertaining to users that are automatically transmitted to us via your web browser when selecting and using a website.
These data are automatically recorded by our servers. Part of that are IP-address, the type of browser, date and time of your request as well as uniform resource locators, respectively URLs (i.e. web page addresses) that you visited before and/or after the visit on our website.
Depending on the location of the user and each of the affected data, such data might be personal.
Usage of Cookies
When visiting our website no cookies are currently set.
4. Purpose of Data Processing
If necessary, we process your personal data solely to ensure an effective business relationship with you. This includes amongst other things:
- the processing of your inquiries and complaints
- the correction of previously submitted personal data due to changes in contact information, or similar reasons
- the implementation of pre-contractual measures
- the implementation of the contractual relationship
- invoice processing
- communicating with you
- the documentation of the business relationship
- the sending of advertising, offer and product information
- ensuring the security of our IT systems
5. Legal Foundation for Data Processing
All our processing of your personal data always complies with the General Data Protection Regulation (DSGVO) and is in accordance with all prevailing national data privacy protection.
Following you will find a description of all legal foundations, on which we process your personal data. Please be aware that these specifications are only examples and do not present a complete or concluding list of all possible legal foundations of data processing.
Compliance (Art. 6 Abs. 1 lit.a DSGVO)
We only process specific personal data with your previously given consent, for example after you have allowed us to provide you with electronic advertisement-, product-, or offering information. You have the right to cancel your agreement at any time so that the continuing processing can be ended.
Fulfillment Of a Contract With You (Art. 6 Abs. 1 lit.b DSGVO)
The data processing is necessary for the fulfillment of a contract or precontractual measures. Roentgen processes your personal information solely to meet the legal obligations of these contracts.
Fulfillment of a Legal Obligation (Art. 6 Abs. 1 lit.c DSGVO)
Roentgen is subject to a number of legal requirements. To comply with these requirements, we must process certain personal data. These include, in particular, storage requirements, tax laws or customs regulations.
Maintaining Legitimate Interests of Roentgen or a Third Party (Art. 6 Abs. 1 lit.f DSGVO)
Roentgen processes certain personal data in order to safeguard your legitimate interests or the interests of third parties. However, this will only happen if your interests as a victim in individual cases do not take precedence over the interests of Roentgen.
6. Recipients or categories of recipients of personal data
Roentgen generally ensures that your personal data are accessible only to a limited number of authorized persons who need to know this information for the purpose of providing the above processing purposes.
A transfer, sale or other transmission of your personal data to third parties does not take place, unless this is necessary for the purpose of fulfilling the contract with you or if you have expressly given your consent to do so.
As part of processing your inquiries and your use of our services, we also hire external contractors. These service providers are contractually obliged to comply with data protection regulations and process personal data only in accordance with our instructions. Under these conditions, recipients of personal data may include, but are not limited to, service providers, processors or other third parties providing the following services:
- Support and maintenance of IT / IT application
- Data Destruction
- Payment Processing
- Purchasing / Procurement
The processing of data only takes place in Germany or other countries of the European Union.
7. Duration of Data Storage
Your personal data will routinely be deleted according to Art. 17 para. 1 lit. a DSGVO if they are no longer necessary for the fulfillment of the contract and are no longer subject to legal retention periods.
In place of a deletion, the blocking of the data occurs, as far as legal or actual obstacles to deletion of the data, e.g. in the case of special commercial or fiscal retention obligations, for the preservation of evidence under the statute of limitations or in the case of outstanding claims.
8. Automated Decision-making
In principle, we do not use automated decision-making in accordance with Art. 22 DSGVO to justify and implement the business relationship. If we use these procedures in individual cases, we will inform you about this separately in advance, if this is required by law.
9. Data Security
Roentgen has taken technical and organizational measures to prevent unauthorized or unlawful disclosure of your personal data, unauthorized or unlawful access to your personal data or loss, destruction, alteration or damage to your personal data, whether unintentionally or unlawfully. These measures ensure a level of security that reflects the risks posed by processing and the nature of the personal data to be protected.
Our security measures are continuously improved in line with technological developments.
10. Victim Rights
If you have questions regarding the processing of your personal data, you may contact us at any time:
As affected party, you have legal rights in relation to the personal data that Roentgen collects and processes about you.
According to the law you have the following rights:
- the right to access of information about you (right of disclosure),
- the right to correct wrong data or, taking into account the processing purposes, the right to complete incomplete data (right of rectification)
and, provided that certain grounds are met and all legal requirements are met,
- the right to delete your personal data (cancellation right),
- the right to restrict the processing of your personal data (right to restriction of processing),
- the right to receive and transfer the personal data you have provided us, to another party responsible (right to data transferability) and
- the right to object to the processing of your personal data (right of objection).
Furthermore, you have the right of appeal at any time to the responsible regulating authority for data protection.
11. Date of Data Privacy Protection Information
This data privacy statement information is dated May 24th, 2018 and is currently valid.