Privacy policy

1. Data protection at a glance

General information

The following information provides a simple overview on what happens to your personal data when you visit this website. Personal data is all data that can be used to identify you personally. Please refer to our data protection policy shown below this text for detailed information on data protection.

Data capture on this website

Who is responsible for recording data on this website?
The website operator undertakes data processing on this website. Please refer to the legal notes on this website for their contact details.

How do we record your data?
On the one hand, your data is collected when you provide it to us. This may be, for example, data that you enter in a contact form.
Other data is collected automatically or after your consent by our IT systems when visiting the website. This is in particular technical data (e.g. internet browser, operating system or the time the page was called up). This data is collected automatically as soon as you enter this website.

How do we use your data?
Some of the data is collected to ensure and error-free depiction of the website. Other data can be used to analyse your user behaviour.

What rights do you have that relate to your data?
You have the right to receive at any time information on the origin, recipient and purpose of the stored personal data free of charge. You also have the right to request the correction or deletion of this data. If you have issued consent for data processing, you can revoke this consent at any time for future use. You also have the right to request a restriction on the processing of your personal data in certain circumstances. You also have a complaint right to the relevant supervisory body.
You can contact us about data protection at any time using the address stated in the Legal Notes section.

Analysis tools and tools from third-party suppliers

When visiting this website, your browsing behaviour can be analysed statistically. This is done in particular with cookies and so-called analysis programs. You will find detailed information on these analysis programs in the following data protection policy.

 

2. Hosting

We host the content of our website with the following provider:

IONOS
The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter referred to as IONOS). When you visit our website, IONOS collects various log files including your IP addresses. Details can be found in the IONOS privacy policy: https://www.ionos.de/terms-gtc/terms-privacy.

IONOS is used on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in displaying our website as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

Order processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract prescribed by data protection law, which ensures that it processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

 

3. General information and compulsory information

Data protection

The operator of this site takes the protection of your personal data very seriously. We treat your personal data confidentially and according to the statutory data protection regulations and this data protection policy.
If you use this website, various types of personal data are collected. Personal data is data that can be used to identify you personally. This data protection policy explains which data we collect and how it is used. It also explains how and the purpose for which this happens.
We point out that data transfer over the internet (e.g. for email communication) can reveal security gaps. Seamless protection of data from access by third parties is not possible.

Notification of the responsible party

The responsible party for data processing on this website is:

Pütz Group Holding GmbH
Am Saarufer 8
54439 Saarburg
GERMANY

Phone: +49 6581 92 99 0
Email: info@SPAMPROTECTIONpuetzgroup.de 

The responsible party is the natural person or legal entity that solely or jointly with others takes decisions on the purposes and means of processing personal data (e.g. name, email addresses etc.).

Storage period

Unless a more specific storage period has been specified in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a justified request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, the deletion will take place after these reasons no longer apply.

General information on the legal basis for data processing on this website

If you have consented to data processing, we process your personal data on the basis of Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, insofar as special categories of data are processed in accordance with Art. 9 para. 1 GDPR. In the event of express consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 para. 1 lit. a GDPR. If you have consented to the storage of cookies or access to information in your end device (e.g. via device fingerprinting), the data processing is also carried out on the basis of Section 25 (1) of the GDPR. Consent can be revoked at any time. If your data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, we process your data if this is necessary to fulfil a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR. Data processing may also be carried out on the basis of our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. Information on the relevant legal bases in each individual case is provided in the following paragraphs of this privacy policy.

Recipients of personal data
As part of our business activities, we work together with various external organisations. In some cases, it is also necessary to transfer personal data to these external organisations. We only pass on personal data to external bodies if this is necessary for the fulfilment of a contract, if we are legally obliged to do so (e.g. passing on data to tax authorities), if we have a legitimate interest in passing on data in accordance with Art. 6 para. 1 lit. f GDPR or if another legal basis permits the passing on of data. When using processors, we only pass on our customers' personal data on the basis of a valid contract for order processing. In the case of joint processing, a joint processing agreement is concluded.

Revocation of your consent to data processing
Many data processing processes are only possible with your explicit consent. You may withdraw your consent at any time. This simply requires notification by email with no specific form. The legality of the data processing that has taken place before the revocation is unaffected by the revocation.

Objection right to data collection in special cases and direct advertising (Art. 21 GDPR)
IF THE PROCESSING TAKES PLACE ON THE BASIS OF ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT AT ANY TIME FOR REASONS ARISING FROM THE SPECIFIC SITUATION TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA; THIS ALSO APPLIES TO PROFILING SUPPORTED BY THESE PROVISIONS. THE RELEVANT LEGAL BASIS ON WHICH PROCESSING IS BASED IS STATED IN THIS DATA PROTECTION POLICY. IF YOU SUBMIT AN OBJECTION WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN PROVIDE COMPELLING GROUNDS FOR PROCESSING YOUR PERSONAL DATA THAT OUTWEIGH YOUR INTERSTES, RIGHTS AND FREEDOMS OR THE PROCESSING IS USED TO EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21 ABS. 1 GDPR). IF YOUR PERSONAL DATA HAS BEEN PROCESSED FOR DIRECT ADVERTISING PURPOSES YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING FOR THE PURPOSES OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING IF THIS RELATES TO SUCH DIRECT ADVERTISING. IF YOU OBJECT YOUR PERSONAL DATA IS NO LONGER USED FOR THE PURPOSES OF DIRECT ADVEERTISING (OBJECTION UNDER ART. 21 ABS. 2 GDPR).

Complaint right to the relevant supervisory body
In the event of infringements of GDPR, the affected person has a right to complain to a supervisory authority, in particular the member state in which they normally reside, their workplace or the location of the presumed infringement. The complaint right exists notwithstanding other legal remedies available under administrative law or in court.

Right to data transfer
You have the right to hand over data that we process automatically on the basis of your consent or the fulfilment of a contract to yourself or a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this only takes place if it is technically feasible to do so.

Information, deletion and correction
You have a right under the applicable statutory provisions to be informed, at any time and free of charge, about which data about you is held on our database as well as its sources, recipients and the purpose for which they are processed, and if relevant you have a right to correct or delete these data. You can contact us at any time on this matter or other questions concerning personal data using the address stated in the Legal Notes section.

Right to restriction on processing
You have the right to request a restriction on the processing of your personal data. You can contact us at any time using the address stated in the Legal Notes section for this purpose. The right to restrict processing exists in the following cases:

  • If you dispute the correctness of the personal data we have stored, we usually need some time to check this. You have the right to request a restriction on the processing of your personal data for the duration of the check.
  • If your personal data is being/has been processed illegally, instead of deletion you can request the restriction on data processing.
  • If we no longer require your personal data but you require it to implement, defend or assert legal claims, you have the right instead of deletion to restrict the processing of your personal data.
  • If you have placed an objection under Art. 21 Para. 1 GDPR, your and our interests must be considered. You have the right to request a restriction on the processing of your personal data if no decision has been made on whose interests outweigh the others.

If processing your personal data was restricted, then this data – aside from saving it – may only be processed with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural person or legal entity or for reasons of an important public interest of the European Union or a Member State.

SSL or TLS encryption
This site uses SSL or TLS encryption for security reasons and to protect the transfer of confidential content, such as orders or queries that you send to us as the site operator. You can recognise an encrypted connection by the change in the browser's address line from “http://” to “https://” and the padlock icon in your browser header. If the SSL or TLS encryption is activated, the data that you send to us cannot be read by third parties.

Objection to advertising emails
The use of contact data published under the obligation to state the owner of the website to transfer advertising and information materials not explicitly requested is hereby explicitly opposed. The operator of these pages explicitly reserves the right to undertake legal measures in the event of being sent unwanted advertising materials, e.g. spam emails.

 

4. Data capture on this website

Cookies

Our website uses so-called cookies in several places. Cookies are small text files and do not damage your device. They are either stored temporarily on your device for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are deleted automatically when your visit ends. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them. Some cookies may be saved on your device by third-party companies if you open our site (third-party cookies). These enable us or you to use certain services provided by a third-party company (e.g. cookies to handle payment services).

Cookies have various functions. Numerous cookies are technically necessary as certain website functions do not work without them (e.g. the shopping basket function or displaying videos). Other cookies are used to analyse user behaviour or show adverts.

Cookies that are required to implement the electronic communication process (necessary cookies) or to provide certain functions you have requested (functional cookies, e.g. the shopping basket function) or to optimise the website (e.g. cookies to measure the web audience) are stored on the basis of Art. 6 Para. 1 lit. f GDPR if no other legal basis is stated. The website operator has a justified interest in storing these cookies to provide its services in a technically perfect and optimised manner. If consent is requested for storing cookies, the relevant cookies are stored exclusively on the basis of this consent (Art. 6 Para. 1 lit. a GDPR); the consent can be revoked at any time.

You can set your browser so that you are informed about when cookies are used and only permit their use in particular situations, refuse cookies for particular cases or generally exclude them as well as activate the automatic deletion of cookies when closing the browser. Deactivating cookies may restrict the functionality of this website.

If cookies are used by third-party companies or for analysis purposes, you will be informed about this separately under this data protection policy and if relevant consent is obtained.

Server log files

The provider of the pages collects and automatically saves information in so-called server log files that your browser transmits to us automatically. This includes:

  • Browser type and browser version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of server enquiry
  • IP address

This data is not merged with other data sources.

This data is collected on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a justified interest in the technically perfect depiction and optimisation of their website - which requires recording the server log files.

Contact form

If you send us enquiries using the contact form, your information from the contact form including the contact data stated there is used to process the enquiry and is stored by us in the event of subsequent questions. We do not pass this data on without your consent.

This data is processed on the basis of Art. 6 Para. 1 lit. b GDPR if your request is associated with fulfilling a contract or implementing pre-contractual measures. In all other cases the processing is based on our justified interest in the effective processing of the queries addressed to us (Art 6 Para. 1 lit. f GDPR) or your consent (Art 6 Para. 1 lit. a GDPR) if this was requested.

The data you have entered in the contact form remain with us until you request deletion, revoke your consent to storage or the purposes of the data storage no longer applies (e.g. when your request has been completed). Binding statutory provisions - in particular storage periods - remain unaffected.

Query by email, phone or fax

If you contact us by email, phone or fax, your enquiry including all personal data that it generates (name, request) is stored and processed for the purposes of handling your request. We do not pass this data on without your consent.

This data is processed on the basis of Art. 6 Para. 1 lit. b GDPR if your request is associated with fulfilling a contract or implementing pre-contractual measures. In all other cases the processing is based on our justified interest in the effective processing of the queries addressed to us (Art 6 Para. 1 lit. f GDPR) or your consent (Art 6 Para. 1 lit. a GDPR) if this was requested.

revoke your consent to storage or the purposes of the data storage no longer applies (e.g. when your request has been completed). Binding statutory provisions - in particular storage periods - remain unaffected.

 

5. Analytics tools and advertising

Matomo

With the help of Matomo, we are able to collect and analyse data about the use of our website by website visitors. This enables us to find out, among other things, when which pages were accessed and from which region. We also record various log files (e.g. IP address, referrer, browser and operating system used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analysing user behaviour in order to optimise both its website and its advertising. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent is revocable at any time.

IP anonymisation
We use IP anonymisation for the analysis with Matomo. Your IP address is shortened before the analysis so that it can no longer be clearly assigned to you.

Hosting
We host Matomo exclusively on our own servers so that all analysis data remains with us and is not passed on.

 

6. Newsletter

If you subscribe to our company newsletter, the data in the respective input mask will be transmitted to the controller. Subscriptions to our newsletter make use of a so-called double opt-in process. This means that once you have registered, you will receive an email asking you to confirm your registration. The confirmation is required to ensure that no one can subscribe using another person's email address. When registering for the newsletter, the user's IP address as well as the date and time of registration are stored. This serves to prevent a misuse of the services or of the affected individual’s email address. The data will not be passed on to third parties. An exception is made if there is a legal obligation to disclose said data. The data will be used exclusively for sending the newsletter. The data subject can terminate the subscription to our newsletter at any time. Likewise, consent to the storage of personal data can be revoked at any time. For this purpose, a relevant link can be found in every newsletter. Following the subscription to the newsletter, if the user's consent to the processing of the data has been obtained, the legal basis for said processing of the data is Art. 6 para. 1 lit. a GDPR. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 para. 3 UWG [Unfair Competition Act].

Use of rapidmail

Description and purpose: we use rapidmail to send out newsletters. The provider is rapidmail GmbH, Wentzingerstraße, 21, 79106 Freiburg, Germany. rapidmail is a service which organises and analyses the distribution of newsletters. The data you provide to subscribe to our newsletter will be stored on rapidmail servers in Germany. If you do not want rapidmail to perform their analyses, you will have to unsubscribe from the newsletter. We provide a link to do this in every newsletter we send. For analysis purposes, emails sent with rapidmail contain a so-called tracking pixel which connects to the rapidmail servers when the email is opened. This makes it possible to determine whether a newsletter message has been opened. Furthermore, using rapidmail, we can also to determine which links in the newsletter message have been clicked on. Optionally, links in the email may be set up as tracking links that can be used to count your clicks.

Legal basis
The legal basis for the data processing is Art. 6 para. 1 lit. a GDPR.

Recipient
The recipient of the data is rapidmail GmbH.

Transmission to third countries
The data will not be transmitted to third countries.

Duration
The data regarding you stored by us within the scope of consent for the purposes of the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from our servers as well as from rapidmail’s servers once you have unsubscribed from the newsletter. Data we have stored for other purposes, e.g. email addresses for the members’ area, remains unaffected by this.

Option of revocation
You have the option to revoke your consent to the processing of the data with effect for the future at any time. The legality of the data processing that has taken place prior to the revocation remains unaffected by the revocation.

Order processing
We have concluded a data processing agreement (DPA) for the use of the aforementioned service. This is a contract prescribed by data protection laws, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

Further data protection notices
For more information, see rapidmail’s data protection notices at: https://www.rapidmail.de/datensicherheit
For more information about rapidmail’s analysis functions, please click on the following link: https://www.rapidmail.de/wissen-und-hilfe 

 

7. Plugins und Tools

Google Fonts (local hosting)

This site uses so-called Google Fonts, which are provided by Google, for the standardised display of fonts. Google Fonts are installed locally. There is no connection to Google servers. Further information on Google Fonts can be found at https://developers.google.com/fonts/faq
and in Google's privacy policy:
https://policies.google.com/privacy?hl=de.

YouTube with extended data protection

This website embeds videos from the YouTube website. The operator of the website is Google Ireland Limited (‘Google’), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of these websites on which YouTube is integrated, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube in extended data protection mode. According to YouTube, videos that are played in extended data protection mode are not used to personalise browsing on YouTube. Ads that are played in extended data protection mode are also not personalised. No cookies are set in extended data protection mode. Instead, so-called local storage elements are stored in the user's browser, which, similar to cookies contain personal data and can be used to recognise the user. Details on the extended data protection mode can be found here: https://support.google.com/youtube/answer/171780.

After activating a YouTube video, further data processing operations may be triggered over which we have no influence.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. A GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. Further information about data protection at YouTube can be found in their privacy policy at https://policies.google.com/privacy?hl=de.

The company is certified in accordance with the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google Maps

This site uses the map service Google Maps. The provider is Google Ireland Limited (‘Google’), Gordon,House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can integrate map material on our website.

To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google may use Google Fonts for the purpose of standardising the display of fonts. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.

The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. A GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/
and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.

You can find more information on the handling of user data in Google's privacy policy: https://policies.google.com/privacy?hl=de 

The company is certified in accordance with the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

 

8. Handling of applicant data

We offer you the opportunity to apply to us (e.g. by e-mail, post or online application form). In the following, we inform you about the scope, purpose and use of your personal data collected as part of the application process. We assure you that your data will be collected, processed and used in accordance with applicable data protection law and all other statutory provisions and that your data will be treated in strict confidence.

Scope and purpose of data collection

If you send us an application, we process your associated personal data (e.g. contact and communication data, application documents, notes taken during job interviews, etc.) insofar as this is necessary for the decision on the establishment of an employment relationship. The legal basis for this is § 26 BDSG under German law (initiation of an employment relationship), Art. 6 para. 1 lit. b GDPR (general contract initiation) and - if you have given your consent - Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time. Your personal data will only be passed on within our company to persons who are involved in processing your application.

If the application is successful, the data submitted by you will be stored in our data processing systems on the basis of § 26 BDSG and Art. 6 para. 1 lit. b GDPR for the purpose of implementing the employment relationship.

Retention period of the data

If we are unable to make you a job offer, you reject a job offer or withdraw your application, we reserve the right to retain the data you have submitted on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR) for up to 6 months from the end of the application process (rejection or withdrawal of the application). The data will then be deleted and the physical application documents destroyed. The retention serves in particular as evidence in the event of a legal dispute. If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will only be deleted when the purpose for further storage no longer applies.

Longer storage may also take place if you have given your consent (Art. 6 para. 1 lit. a GDPR) or if statutory retention obligations prevent deletion.

Inclusion in the applicant pool

If we do not make you a job offer, you may have the opportunity to join our applicant pool. If you are accepted, all documents and details from your application will be transferred to the applicant pool in order to contact you in the event of suitable vacancies.

Inclusion in the applicant pool is based exclusively on your express consent (Art. 6 para. 1 lit. a GDPR). Giving consent is voluntary and is not related to the current application process. The data subject can withdraw their consent at any time. In this case, the data will be irrevocably deleted from the applicant pool, provided there are no legal grounds for retention.

The data from the applicant pool will be irrevocably deleted no later than two years after consent has been given.

 

Your contact to Pütz Group

When will you begin your project with us?

Go to contact enquiry