Go to Search
Contact us

Search

Privacy Policy

We are pleased that you have visited our website,www.schillinggroup.de, andare interested in our company.

The protection of your personal data—such as your date of birth, name, phone number, address, etc.—is very important to us.

The purpose of this Privacy Policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 et seq. of the GDPR.

Person in charge

The controller within the meaning of Article 4(7) of the GDPR is the person who, alone or jointly with others, determines the purposes and means of the processing of personal data.

The controller for our website is:

C.ENTER GmbH & Co. KG
Eisenerzstr. 36
53819 Neunkirchen-Seelscheid
Germany
Email:info@cdotenter.de
Tel.: +49 (0) 2247 9239 0
Fax: +49 (0) 2247 9239 19

Contact information for the Data Protection Officer

We have appointed a Data Protection Officer in accordance with Article 37 of the GDPR. You can contact our Data Protection Officer using the following contact information:

Patrick A. Scholz
Eisenerzstr. 36
53819 Neunkirchen-Seelscheid
Germany
Email:dsb@cdotenter.de
Tel.: +49 (0) 2247 9239 0
Fax: +49 (0) 2247 9239 19
Website:http://www.schillinggroup.de/

Website hosting and log file generation

Every time you visit our website, our system automatically collects data and information about the device used to access the site (e.g., computer, mobile phone, tablet, etc.).

What personal data is collected, and to what extent is it processed?

(1) Information about the browser type and version used;
(2) The operating system of the device used to access the site;
(3) Hostname of the accessing computer;
(4) The IP address of the device used to access the site;
(5) Date and time of access;
(6) Websites and resources (images, files, other page content) accessed on our website;
(7) Websites from which the user’s system accessed our website (referrer tracking);
(8) Notification of whether the request was successful;
(9) Amount of data transferred

This data is stored in our system's log files. This data is not stored together with the personal data of any specific user, so individual visitors to the site cannot be identified.

Legal basis for the processing of personal data

Art. 6(1)(f) of the GDPR (legitimate interest). Our legitimate interest is to ensure that the purpose described below is achieved.

Purpose of data processing

The temporary (automated) storage of data is necessary for the proper functioning of a website visit in order to enable the website to be displayed. The storage and processing of personal data also serves to ensure that our website remains compatible for as many visitors as possible, as well as to combat misuse and resolve technical issues. To this end, it is necessary to log the technical data of the accessing computer in order to be able to respond as quickly as possible to display errors, attacks on our IT systems, and/or malfunctions in the functionality of our website. In addition, the data helps us optimize the website and generally ensure the security of our IT systems.

Duration of storage

The aforementioned technical data will be deleted as soon as it is no longer needed to ensure the website’s compatibility for all visitors, but no later than 3 months after the website is accessed.

Right to object and request deletion

You may object to the processing of your data at any time in accordance with Article 21 of the GDPR and request the erasure of your data in accordance with Article 17 of the GDPR. You can find information about your rights and how to exercise them at the bottom of this Privacy Policy.

Special features of the website

Our website offers various features, and when you use them, we collect, process, and store personal data. Below, we explain what happens to this data:

Application Form

  • What personal data is collected, and to what extent is it processed?

    The data you enter in the fields of the application form and any files you upload will be processed solely for the purpose described below.

  • Legal basis for the processing of personal data

    The legal basis for the collection and processing of applicant data is Article 6(1)(b) (pre-contractual measures) and Article 88(1) of the GDPR in conjunction with Section 26 of the BDSG. To the extent that special categories of personal data are collected that are necessary for the fulfillment of legal obligations under labor law, social security law, and social protection law pursuant to Article 9(2)(b) of the GDPR in conjunction with Section 26(3) of the BDSG, processing is carried out on this legal basis. To the extent that special categories of personal data are to be processed beyond this, we will obtain consent for this in accordance with Article 9(2)(a) of the GDPR.

  • Purpose of data processing

    The purpose of processing your data is to review and process the application materials you have uploaded via the form.

  • Duration of storage

    The data will be deleted as soon as your application has been processed and there is no longer a legitimate interest in retaining your application data. Therefore, if an employment relationship is not established, your application documents will be deleted no later than 6 months from the date of processing.

  • Right to object and request deletion

    You can find information about your rights and how to exercise them at the bottom of this privacy policy.

  • Requirement to Provide Personal Information

    The information on the application form is not required by contract or by law, but it is necessary for submitting and processing your application. If you do not fill out the required fields, or do not fill them out completely, your application cannot be submitted or processed.

Contact form(s)

  • What personal data is collected, and to what extent is it processed?

    We will process the data you have entered into our contact forms—specifically, the information you have provided in the contact form fields—for the purpose described below.

  • Legal basis for the processing of personal data

    Art. 6(1)(a) of the GDPR (Consent through a clear affirmative action or conduct)

  • Purpose of data processing

    We will use the data collected via our contact form(s) solely for the purpose of processing the specific inquiry submitted through the contact form.

  • Duration of storage

    Once your request has been processed, the collected data will be deleted immediately, unless there are any legal retention requirements.

  • Right to Withdrawal and Right to Erasure

    The options for revocation and deletion are governed by the general provisions regarding the right of revocation and the right to erasure under data protection law, as described below in this Privacy Policy.

  • Requirement to Provide Personal Information

    The use of the contact forms is voluntary and is not required by contract or law. You are not obligated to contact us via the contact form; instead, you may use the other contact options listed on our website. If you wish to use our contact form, you must fill out the fields marked as required. If you do not fill in the required fields on the contact form, you will either be unable to submit your inquiry, or we will unfortunately be unable to process your inquiry.

  • Gravity Forms

    We use the WordPress plugin “Gravity Forms” from Rocketgenius Inc., USA, to provide our contact form. The data entered in the form (e.g., name, email address, message content) is stored exclusively on our web server and used to process your inquiry. The data entered is not transmitted to Rocketgenius Inc. The legal basis for processing is Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(f) GDPR (legitimate interest in processing inquiries). The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected and there are no legal retention obligations to the contrary.

Automated Credit Check / Scoring

If you wish to enter into a contract with us, we reserve the right to process your personal data exclusively by automated means in order to assess your creditworthiness. We are also authorized to make such an automated decision pursuant to Article 22(2)(a) of the GDPR. Whether or not the contract can be concluded depends on the result of the automated credit assessment. During a credit assessment, statistical probabilities of default are calculated. The credit report may contain probability values (score values) calculated using scientifically recognized mathematical and statistical methods. These methods use a variety of characteristics—such as income, address data, occupation, marital status, and past payment history—to assess the customer’s future risk of default. The result is expressed as a payment value (so-called score). The information obtained in this way forms the basis of our decision regarding the establishment, execution, or termination of a contractual relationship. If you believe that you have been wrongfully excluded from entering into a contract due to the credit check, please feel free to explain your position to us via email. We will then review the automated decision in accordance with Article 22(3) of the GDPR on a case-by-case basis. In order to conduct the credit check, we are permitted to store and process your personal data in accordance with Article 6(1)(b) of the GDPR.

In connection with the upcoming contract, we will transfer your data to the following provider(s) in the cases listed below:

  • Creditreform Bonn Rossen, LLC:

    Our company regularly checks your creditworthiness when entering into contracts and, in certain cases where there is a legitimate interest, also for existing customers. To this end, we collaborate with Creditreform Bonn Rossen KG, Graurheindorfer Str. 92, 53117 Bonn, Germany (https://www.creditreform.de/bonn), from whom we receive the necessary data. On behalf of Creditreform Bonn Rossen KG, we are providing you with the following information in advance in accordance with Art. 14 of the EU GDPR:

    Creditreform Bonn Rossen KG is a consumer credit reporting agency. It maintains a database that stores credit information on private individuals.

    On this basis, Creditreform Bonn Rossen KG provides credit reports to its clients. Clients include, for example, banks, leasing companies, insurance companies, telecommunications companies, debt collection agencies, mail-order, wholesale, and retail companies, as well as other businesses that supply goods or provide services. In accordance with legal provisions, a portion of the data in the credit report database is also used to supply other corporate databases, including for use in address-based marketing.

    The database maintained by Creditreform Bonn Rossen KG stores, in particular, information regarding the name, address, date of birth, email address (if applicable), payment history, and ownership interests of individuals. The purpose of processing the stored data is to provide information regarding the creditworthiness of the person in question. The legal basis for the processing is Article 6(1)(f) of the EU GDPR. According to this provision, information regarding this data may only be provided if a customer credibly demonstrates a legitimate interest in obtaining this information. If data is transferred to countries outside the EU, this is done on the basis of the so-called “Standard Contractual Clauses,” which you can find at the following link:

    http://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32001D0497&from=DE

    can view or have sent to them from there.

    The data is stored for as long as it is necessary to fulfill the purpose of storage. As a rule, the data must be retained for an initial period of three years. After this period, a review is conducted to determine whether continued storage is necessary; if not, the data is deleted on the exact date. If a matter is resolved, the data is deleted on the exact date three years after resolution. Entries in the debtor registry are deleted on the exact date three years after the date of the entry order, in accordance with § 882e of the German Code of Civil Procedure (ZPO).

    Legitimate interests within the meaning of Article 6(1)(f) of the EU GDPR may include: credit decisions, business development, ownership interests, claims, credit checks, insurance contracts, and information on debt enforcement. You have the right to request information from Creditreform Bonn Rossen KG regarding the data stored there about you. If the data stored about you is incorrect, you have the right to have it corrected or deleted. If it cannot be immediately determined whether the data is incorrect or correct, you have the right to have the relevant data blocked until the matter is clarified. If your data is incomplete, you may request that it be completed.

    If you have given your consent to the processing of the data stored by Creditreform Bonn Rossen KG, you have the right to withdraw this consent at any time. Withdrawal of consent does not affect the lawfulness of the processing of your data that took place on the basis of your consent prior to such withdrawal.

    If you have any concerns, requests, or complaints regarding data protection, you can contact the Data Protection Officer at Creditreform Bonn Rossen KG at any time. The Data Protection Officer will assist you promptly and confidentially with any questions you may have regarding data protection. You may also file a complaint regarding Creditreform Bonn Rossen KG’s processing of your data with the State Data Protection Commissioner responsible for your state.

    The data that Creditreform Bonn Rossen KG has stored about you comes from publicly available sources, debt collection agencies, and their clients.

    To assess your creditworthiness, Creditreform Bonn Rossen KG calculates a credit score based on your data. This score takes into account information such as your age, gender, address, and, in some cases, payment history. These factors are weighted differently in the calculation of the credit score. Creditreform Bonn Rossen KG’s clients use these credit scores as a tool to assist them in making their own credit decisions.

    Right to object:

    The processing of data stored by Creditreform Bonn Rossen KG is carried out for compelling legitimate reasons related to creditor and credit protection, which generally outweigh your interests, rights, and freedoms, or serves to assert, exercise, or defend legal claims. You may object to the processing of your data only if there are reasons arising from a specific situation on your part that must be substantiated. If such specific reasons are demonstrably present, the data will no longer be processed. If you object to the processing of your data for advertising and marketing purposes, the data will no longer be processed for these purposes.

    The controller within the meaning of Article 4(7) of the EU GDPR is Creditreform Bonn Rossen KG, Graurheindorfer Str. 92, 53117 Bonn, Germany (https://www.creditreform.de/bonn). You can contact Creditreform Bonn Rossen KG regarding any questions using the following contact information: Tel.: +49 228 26794-0, Fax: +49 228 26794-919, Email:info@bonn.creditreform.de

    You can contact the data protection officer using the following contact information: Creditreform Bonn Rossen KG, Data Protection Officer, Graurheindorfer Str. 92, 53117 Bonn, Germany,https://www.creditreform.de/bonn.

Integration of external web services and processing of data outside the EU

On our website, we use active content from external providers, known as web services. When you visit our website, these external providers may receive personal information about your visit. This may involve the processing of data outside the EU. You can prevent this by installing a corresponding browser plugin or by disabling the execution of scripts in your browser. This may result in functional limitations on the websites you visit.

We use the following external web services:

  • OpenStreetMap

    We use the OpenStreetMap service provided by FOSSGIS e. V., Römerweg 5, 79199 Kirchzarten, Germany, email:kast@openstreetmap.de, website:http://www.openstreetmap.de/, on our site. Personal data is transmitted exclusively to servers located within the European Union.

    The legal basis for the processing of personal data is our legitimate interest pursuant to Article 6(1)(f) of the GDPR. Our legitimate interest lies in achieving the purpose described below.

    We use OpenStreetMap to integrate a map service into our website, which enables navigation and the display of our business locations.

    With regard to the processing of your data, you have the right to object as set forth in Article 21. Further information can be found at the end of this Privacy Policy.

    For more information on how the transferred data is handled, please refer to the provider’s privacy policy athttps://www.fossgis.de/datenschutzerkl%C3%A4rung/.

  • Legal text snippets and modules

    We use the Rechtstextsnippet service and modules provided by Website-Check GmbH, located at Beethovenstraße 24, 66111 Saarbrücken, Germany, email:support@website-check.de, website:https://www.website-check.de/, on our site. Personal data is transmitted exclusively to servers located in the European Union.

    The legal basis for the processing is Article 6(1)(c) of the GDPR. Using this service helps us comply with our legal obligations.

    This service is used to load the content of our legal texts onto our website. The integration on our site ensures that the most up-to-date legal texts are loaded. This integration may also be used to load additional technical modules related to the legal texts or legally required elements.

    You can find out what rights you have regarding the processing of your data at the end of this privacy policy.

    For more information on how the transferred data is handled, please refer to the provider’s privacy policy athttps://www.website-check.de/datenschutzerklaerung/.

Data Security and Privacy, Email Communication

Your personal data is protected by technical and organizational measures during collection, storage, and processing to ensure that it remains inaccessible to third parties. Since we cannot guarantee complete data security during transmission to our IT systems via unencrypted email, we recommend using encrypted communication or sending information by mail for matters requiring a high level of confidentiality.

Automatic Email Archiving

  • Scope of the processing of personal data

    Please note that our email system uses an automated archiving process. All incoming and outgoing emails are digitally archived in an audit-proof manner.

  • Legal basis for the processing of personal data

    Art. 6(1)(c) GDPR (legal obligation). The legal obligation consists of complying with tax and commercial law requirements (e.g., Sections 146 and 147 of the German Fiscal Code (AO), Sections 238 and 257 of the German Commercial Code (HGB)).

  • Purpose of data processing

    The purpose of archiving is to comply with tax law requirements (e.g., Sections 146 and 147 of the German Fiscal Code [AO]—the obligation to retain emails relevant to tax matters) and commercial law requirements (e.g., Sections 238 and 257 of the German Commercial Code [HGB]—the obligation to archive business correspondence).

  • Duration of storage

    Our email correspondence is retained until the expiration of the retention periods required under tax and commercial law. The retention period may be up to 10 years.

  • Right to object and request deletion

    You may object to the processing of your data at any time in accordance with Article 21 of the GDPR and request the erasure of your data in accordance with Article 17 of the GDPR. You can find information about your rights and how to exercise them at the bottom of this Privacy Policy.

  • Handling Application Materials

    If you have any questions regarding our email archiving system, please contact our Data Protection Officer. Please also note that we only accept application documents in PDF format. Compressed files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and will not be delivered. We do not accept applications in Word format or other file formats and will delete them unread. Please note that application documents sent via unencrypted email may be opened by third parties before they reach our IT systems. We assume that we may also respond to unencrypted application emails in an unencrypted manner. If you do not wish this, please let us know in your application email.

Right to access information and requests for correction – Deletion and restriction of data – Withdrawal of consent – Right to object

Right to information

You have the right to request confirmation as to whether we process your personal data. If this is the case, you have the right to access the information specified in Article 15(1) of the GDPR, provided that this does not infringe upon the rights and freedoms of others (see Article 15(4) of the GDPR). We would also be happy to provide you with a copy of the data.

Right to correction

In accordance with Article 16 of the GDPR, you have the right to have any personal data we hold that is incorrect (such as your address, name, etc.) corrected at any time. You may also request that we complete any incomplete personal data we hold at any time. We will make the necessary changes without delay.

Right to erasure

Pursuant to Article 17(1) of the GDPR, you have the right to request that we erase the personal data we have collected about you if

  • the data is no longer needed;
  • the legal basis for the processing has ceased to exist without replacement due to the withdrawal of your consent;
  • you have objected to the processing and there are no legitimate grounds for the processing;
  • your data is being processed unlawfully;
  • a legal obligation requires it, or data has been collected in accordance with Article 8(1) of the GDPR.

Pursuant to Article 17(3) of the GDPR, this right does not apply if

  • the processing is necessary for the exercise of the right to freedom of expression and information;
  • your data has been collected based on a legal obligation;
  • the processing is necessary for reasons of public interest;
  • the data is necessary for the assertion, exercise, or defense of legal claims.

Right to restriction of processing

Pursuant to Article 18(1) of the GDPR, you have the right to request the restriction of the processing of your personal data in certain cases.

This is the case when

  • you dispute the accuracy of your personal data;
  • the processing is unlawful and you do not consent to its erasure;
  • the data is no longer needed for the purpose for which it was processed, but the collected data is necessary for the establishment, exercise, or defense of legal claims;
  • an objection to the processing has been lodged pursuant to Article 21(1) of the GDPR, and it is still unclear which interests prevail.

Right of withdrawal

If you have given us your explicit consent to process your personal data (Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR), you may withdraw this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of your consent prior to its withdrawal.

Right to object

Pursuant to Article 21 of the GDPR, you have the right to object at any time to the processing of your personal data that has been collected on the basis of Article 6(1)(f) (on the grounds of a legitimate interest). You are entitled to this right only if there are specific circumstances that justify your objection to the storage and processing of your data.

How do you exercise your rights?

You can exercise your rights at any time by contacting us using the contact information below:

C.ENTER GmbH & Co. KG
Eisenerzstr. 36
53819 Neunkirchen-Seelscheid
Germany
Email:info@cdotenter.de
Tel.: +49 (0) 2247 9239 0
Fax: +49 (0) 2247 9239 19

Right to data portability

Pursuant to Article 20 of the GDPR, you have the right to receive the personal data concerning you. We will provide the data in a structured, commonly used, and machine-readable format. The data may be sent either to you or to a controller designated by you.

Upon request, we will provide you with the following data in accordance with Article 20(1) of the GDPR:

  • Data collected on the basis of explicit consent pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR;
  • Data that we have received from you pursuant to Article 6(1)(b) of the GDPR in connection with existing contracts;
  • Data that has been processed as part of an automated procedure.

We will transfer your personal data directly to the data controller of your choice, provided this is technically feasible. Please note that, pursuant to Article 20(4) of the GDPR, we are not permitted to transfer data that infringes upon the freedoms and rights of other individuals.

Right to lodge a complaint with the supervisory authority pursuant to Article 77(1) of the GDPR

If you suspect that your data is being processed unlawfully on our website, you may, of course, seek a judicial resolution of the matter at any time. In addition, you may pursue any other legal remedies available to you. Regardless of this, pursuant to Article 77(1) of the GDPR, you have the option to contact a supervisory authority. You have the right to lodge a complaint under Article 77 of the GDPR in the EU Member State where you reside, where you work, and/or where the alleged infringement occurred; that is, you may choose the supervisory authority to which you wish to appeal from among the locations mentioned above. The supervisory authority to which the complaint was submitted will then inform you of the status and results of your submission, including the possibility of a judicial remedy pursuant to Article 78 of the GDPR.

Created by:

© DURY LEGAL Attorneys at Law –www.dury.de

© Website-Check GmbH –www.website-check.de