We would like to welcome you on your visit to our website and appreciate your interest in our company. We take the protection of your personal data very seriously. We use your data in line with the applicable legislative provisions on the protection of personal data, in particular the EU General Data Protection Regulation (EU GDPR) and the German legislation that applies to us. We are using this data protection declaration to inform in detail you about how globalPoint ICS GmbH & Co. KG processes your personal data and your related rights.
In this context, personal data is that information that makes it possible to identify a natural person. In particular, this includes your name, date of birth, address, telephone number, email address and your IP address.
Anonymous data are deemed to exist if no kind of personal connection to the user can be established.
Responsible Authority and Data Protection Officer
globalPoint ICS GmbH & Co. KG
Tel.: +49 9342 800-266
Fax: +49 9342 800-127
Your Rights as an Affected Person
At this point we would firstly like to inform you of your rights as an affected person. These rights are set out in Sections 15 – 22, EU GDPR. These cover:
• the right to information (Section 15, EU GDPR);
• the right to have your data deleted (Section 17, EU GDPR);
• the right to have your data corrected (Section 16, EU GDPR);
• the right to data transportability (Section 20, EU-GDPR);
• the right to restriction of data processing (Section 18, EU GDPR) ;
• the right to object to having your data processed (Section 21, EU GDPR).
To assert these rights, please contact: firstname.lastname@example.org. The same applies if you have any questions to your data being processed by our company. You are also entitled to appeal to a data protection supervisory authority.
Rights of Objection
Please note the following in connection with the right to object:
If we use your personal data for the purpose of direct advertising, you will be entitled to object to our processing them for this purpose at any time without giving reasons. This will also apply to profiling if it is directly connected with direct advertising.
If you object to your data being processed purpose of direct advertising, we will no longer process your data for these purposes. You may object free of charge without following any particular form to: email@example.com.
If we process your data for the purpose of safeguarding your legitimate interests, you can object at any time for reasons arising from this particular situation; this also applies to profiling based on these provisions.
We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for doing so that outweigh your interests, rights and freedoms or if processing data serves to assert, exercise or defend legal interests.
Purposes and Statutory Bases of Data Using
When processing your personal data, we will observe the provisions of the EU GDPR and all other applicable data protection provisions. The statutory bases for data processing arise in particular from Section 6 EU GDPR.
We use your data to initiate business transactions, fulfil contractual and statutory obligations, carry out contractual relationships, offer products and services and to reinforce customer relationships, which may also include analyses for marketing purposes and direct advertising. The statutory bases of data processing are formed by the contract (purchase contract, Section 6, I, 1 (b) GDPR), consent (Section 6 I, 1 [a] GDPR) and data processing (Section 6 I, 1 [f] GDPR) in cases of legitimate interest.
Your consent also constitutes a data protection law-related provision that requires permission to be given. In this case, we are informing you here of the purposes of data processing and your right to rescind your consent. Should your consent also concern processing special categories of personal data, we will point this out to you explicitly in the consent (Section 88, Subsection 1 EU GDPR).
Special categories of personal data as defined by Section 9, Subsection 1 EU GDPR, will only be processed if this is required by legislative provisions and if there is no reason to assume that your legitimate interests outweigh exclusion from processing (Section 88, Subsection 1 EU GDPR).
Passing on Personal Data to Third Parties
We will pass on your data only on the basis of legislative provisions or if the related consent has been given. Otherwise, personal data will not be passed to third parties unless we are obliged to do so further to compelling legislative provisions (forwarding to external quarters such as regulatory authorities or criminal prosecution authorities).
Recipients of Data / Categories of Recipients
Within our company we will ensure that only those persons who need your data to carry out contractual and statutory obligations actually receive them. The data will be transmitted to the Sales, Service and Communications Departments only.
In many cases, service providers assist our operational departments to carry out their tasks. The necessary agreements have already been concluded with all service providers. Where orders are processed, our Purchasing Department will ensure that the necessary data-processing agreements have been concluded.
Transfer of Data to Third-Party Countries /
Intention to Transfer Data to Third-Party Countries
Data will only be transferred to third-party countries (outside the European Union and / or the European Economic Area) if this is required for fulfilling contractual obligations, if it is prescribed by law or if you have given us your consent to do so.
We will transfer your personal data to a service provider or a group member company outside the European Economic Area if your enquiries concern the branches in these third-party countries (USA, Mexico, Russia and China).
Maintaining this level of data protection is guaranteed by EU standard contractual clauses.
Storage Periods of Your Data
We will store your data for as long as we need them for each purpose of processing. Please note that numerous retention periods require that data will (need to) be stored for the future. In particular, this will affect retention periods required by commercial or tax law, such as the German Commercial Code or the German Fiscal Code, etc.). If there are no further retention obligations in place, the data will be routinely deleted after the intended purpose has been achieved.
We can also retain data if you have given us your consent to do so or if there is a legal dispute, in which case, we will use it as evidence as part of statutory expiry periods which can last up to 30 years; the regular expiry period is three years.
Secure Transfer of Your Data
In order to protect data stored with us as far as possible against coincidental or deliberate manipulation, loss, destruction or access by unauthorised persons, we use appropriate technical and organisational security measures. The security levels are constantly checked in cooperation with security experts and adapted to new security standards.
Data is transferred from and to our website in encrypted form only. For our web presence, we offer the HTTPS transfer protocol using the latest encryption protocols. We also offer our content encryption for users of our contact forms and for job applications. Only we are able to decrypt these data. Other modes of communication are also available, such as the postal system.
Obligation to Provide Data
Various kinds of personal data are necessary for establishing, performing and ending a contractual obligation and fulfilling the related contractual and statutory obligations. The same applies to the use of our website and the various functions it provides.
We have summed up details on this in the abovementioned point. In certain cases, data must be obtained or provided due to statutory requirements. Please note that we cannot use your enquiry or execute the contractual obligation on which it is based without these data being provided.
Categories, Sources and Origin of Data
Which data we use is determined by each situation. This depends on whether you place an order online, enter an enquiry in our contact form, send us a job application or submit a complaint.
Please note that, where appropriate, we may also make information available separately for special processing situations such as uploading job application documentation or in a contact enquiry.
We Collect and Use the Following Data on Visits to Our Website:
• name of the internet service provider;
• details about the website from which you are visiting us;
• the web browser and operating system used;
• the IP address allocated by your internet service provider;
• requested files, the data volume transferred, downloads/file export;
• details about the webpages on our site that you call up, including date and time.
For reasons of technical security, (in particular to ward off attempted attacks on our web server), these data are stored in accordance with Section 6, Subsection 1, (F) EU GDPR. After seven days at the latest, these data will be anonymised by shortening the IP address so that no reference to the user can be made.
We Collect and Use the Following Data from Contact Enquiries:
• last name, first name
• contact data
• details on requests and interests.
We Collect and Use the Following Data When an Order is Placed:
• last name, first name
• delivery address
• invoice address
• email address
• payment conditions
• delivery conditions
• current shopping cart.
We Collect and Use the Following Data from Online Job Applications:
• last name, first name
• contact data (email address, telephone number)
• documents sent, such as covering letter, professional/vocational qualifications (incl. further education/training), job references, CVs, internship certificates (data on previous employers)
• desired salary
• “how did you find us?”
• has the applicant worked for us before?
• earliest starting date
• we also use data from publicly available lists, e.g. job networks, if this is legally permitted.
We Collect and Use the Following Data from Newsletters:
• last name, first name
• email address
• analysis data from assessing newsletters
Contact Forms / Making Contact by Email
(Section 6, Subsection 1 (a & b) EU GDPR)
Our website has a contact form which can be used for contacting us electronically. If you write to us using this contact form, we will use the data you give us in the contact form to contact you and respond to your questions and requests.
In this connection, we will observe the principle of data economy and data avoidance by requiring you to give us only those data that we absolutely need from you in order to contact you. These are your email address and the message section itself. We also use your IP address for reasons of technical necessity and legal safety. All other data are voluntary and may be given or not as you wish, e.g. to answer your questions in a more individual manner.
If you contact us via email, we will use the personal data you give us in your email only in order to process your enquiry.
Newsletters (Section 6, Subsection 1 (a) EU GDPR)
You can subscribe to a free newsletter on our website. The email address you give when registering for the newsletter, your name and honorific will be used to send personalised newsletters.
In this context, the principle of data economy and data avoidance will be observed as only the email address is marked as a required field (where appropriate: your name for personalised newsletters). We also use your IP address for reasons of technical necessity and to protect ourselves legally when you subscribe to a newsletter.
We send newsletters using the so-called “double opt-in” method. This means that you will only receive advertising via email if you have explicitly confirmed beforehand that we should activate the newsletter service. We do this by notifying you by email and asking you to confirm by clicking on a link in this email that you would like to receive our newsletters at this email address.
We also use a newsletter tracking pixel which tells us whether you have opened the newsletter (or not) and which links in the newsletter you have clicked on.
Your personal data will not be passed on to third parties and will be used solely for the abovementioned purpose.
In future you will naturally have the opportunity to de-register from our distribution list at any time by using the “Abmelden” / “Unsubscribe” link. This will cancel your consent with effect for the future. You can do this via email at: firstname.lastname@example.org or in writing to:globalPoint ICS GmbH & Co. KG, Otto-Schott-Straße 1 , D-97877 Wertheim
Your data will be retained until such time as you revoke your consent and no further statutory storage deadline periods exist.
You can of course terminate this subscription at any time using the deregistration option in the newsletter, thereby rescinding your consent. Alternatively, you can terminate your newsletter subscription directly at any time via our internet site.