Our privacy policies
Link to the imprint: https://www.fabrik19.de/impressum
Data Privacy Officer: email@example.com
This data protection declaration informs you about the type, scope and purpose of personal data (hereinafter referred to as “pb. data”) within our online offer and the websites, functions and content connected with it as well as external online presences, such as our social media profiles (hereinafter jointly referred to as “online offer”). With regard to the terms used, such as “processing” or “controller”, we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
Cookies and right to object to direct advertising
Cookies” are small files that are stored on users’ computers. Different information can be stored within the cookies. The primary purpose of a cookie is to store information about a user (or the device on which the cookie is stored) during or after his visit to an online offer.
Temporary cookies, or “session cookies” or “transient cookies”, are cookies that are deleted after a user leaves an online offer and closes his browser. The contents of a shopping cart in an online store, for example, can be stored in such a cookie.
Cookies that remain stored even after the browser is closed are referred to as “permanent” or “persistent”. Thus, the interests of users can be stored in such a cookie, which is used for range measurement or marketing purposes.
Third-party cookies” are cookies that are offered by providers other than the responsible party that operates the online offer (otherwise, if they are only its cookies, they are referred to as “first-party cookies”).
If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.
Collection of access data and log files
We, or rather our hosting provider, collect data on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. DSGVO, we collect data about each access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Log file information is stored for security reasons (e.g. for the clarification of abuse or fraud) for a maximum of 7 days and then deleted. Data whose further storage is required for evidentiary purposes is exempt from deletion until the respective incident is finally clarified.
When contacting us (e.g. by contact form, email, telephone or via social media), the user’s details are processed for the purpose of handling the contact request and its processing pursuant to Art. 6 (1) lit. b) DSGVO. The user’s details may be stored in a customer relationship management system (“CRM system”) or comparable enquiry organisation.
We delete the enquiries if they are no longer necessary. We review the necessity every two years; furthermore, the statutory archiving obligations apply.
With the following information, we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedure and your rights of objection. By subscribing to our newsletter, you agree to receive it and to the procedures described.
Content of the newsletter: We send newsletters, e-mails and other electronic notifications with promotional information (hereinafter “newsletter”) only with the consent of the recipients or on the basis of a legal regulation. If the contents of the Newsletter are specifically described in the course of registration, they are decisive for the consent of the users. Otherwise, our newsletters contain information about our services and us.
Double opt-in and logging: Registration for our newsletter is carried out in a so-called double opt-in procedure. This means that after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other email addresses. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Likewise, changes to your personal data stored with the dispatch service provider are logged. Data stored with the shipping service provider are also logged.
Registration data: To register for the newsletter, it is sufficient to enter your e-mail address. Optionally, we ask you to enter a name for the purpose of a personal address in the newsletter.
The newsletter is sent and its success measured on the basis of the recipients’ consent in accordance with Art. 6 Para. 1 lit. a, Art. 7 DSGVO in conjunction with § 7 Para. 2 No. 3 UWG or on the basis of legal permission in accordance with § 7 Para. 3 UWG.
The logging of the registration process takes place on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f DSGVO. Our interest is directed towards the use of a user-friendly as well as secure newsletter system that serves our business interests as well as the expectations of the users and furthermore allows us to prove consent.
Cancellation/revocation – You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to cancel the newsletter at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them to be able to prove consent previously given. The processing of this pb. Data is limited to the purpose of a possible defence against claims. An individual deletion request is possible at any time, provided that the former existence of consent is confirmed at the same time.
Translated with www.DeepL.com/Translator (free version)
Newsletter - Monitoring
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened or, if we use a dispatch service provider, from their server. Within the scope of this retrieval, technical information such as information on the browser and your system, as well as your IP address and the time of the retrieval are initially collected.
This information is used for the technical improvement of the services on the basis of the technical data or the target groups and their reading behaviour on the basis of their retrieval locations (which can be determined with the help of the IP address) or the access times. Statistical surveys also include determining whether newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our intention nor, if used, that of the dispatch service provider to observe individual users. The analyses serve us much more to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
Google is certified under the Privacy Shield agreement and thereby offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google will use this information on our behalf for the purpose of evaluating your use of our website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. In doing so, pseudonymous user profiles can be created from the processed data.
We only use Google Analytics with IP anonymisation activated. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.
The IP address transmitted by the user’s browser will not be merged with other data from Google. Users can prevent the storage of cookies by setting their browser software accordingly; users can also prevent the collection of the data generated by the cookie and related to their use of the online offer to Google as well as the processing of this data by Google by downloading and installing the browser plugin available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
The users’ personal data is deleted or anonymised after 14 months.
Wordfence for WordPress
Wordfence is integrated on our pages. Wordfence is a WordPress plug-in that offers the operator of a website built on WordPress additional functions for the purpose of increasing security. Wordfence allows the website operator, among other things, an overview of the visitors to the site. In addition, security functions are integrated into Wordfence so that a website using Wordfence is better protected against brute force attacks.
Wordfence uses two types of cookies:
– To uniquely identify visitors in Wordfence Live Traffic mode.
– To identify users who have bypassed geo-blocking by visiting a third party site and still need to access this website.
Online job applications / publication of job advertisements
We offer you the opportunity to apply to us via our website. In the case of these digital applications, your application data will be collected and processed electronically by us for the purpose of handling the application process.
The legal basis for this processing is § 26 para. 1 p. 1 BDSG in conjunction with. Art. 88 para. 1 DSGVO.
If an employment contract is concluded after the application process, we will store the data you submitted during the application in your personnel file for the purpose of the usual organisational and administrative process – of course, in compliance with the more extensive legal obligations. The legal basis for this processing is also § 26 para. 1 p. 1 BDSG in conjunction with. Art. 88 para. 1 DSGVO.
If an application is rejected, we automatically delete the data provided to us two months after notification of the rejection. However, the deletion does not take place if the data requires longer storage of up to four months or until the conclusion of legal proceedings due to legal provisions, e.g. due to the obligation to provide evidence according to the AGG.
In this case, the legal basis is Art. 6 para. 1 lit. f) DSGVO and § 24 para. 1 no. 2 BDSG. Our legitimate interest lies in the legal defence or enforcement.
If you expressly consent to your data being stored for a longer period of time, e.g. for your inclusion in a database of applicants or interested parties, the data will be processed on the basis of your consent. The legal basis is then Art. 6 para. 1 lit. a) DSGVO. However, you can of course revoke your consent at any time in accordance with Art. 7 Para. 3 DSGVO by making a declaration to us with effect for the future.
Transfers to third countries
If we process personal data in a third country (i.e. outside the European Union EU or the EEA) or if this is done in the context of using third-party services or disclosing or transferring personal data to third parties, this is only done if it is done in order to fulfil our (pre-)contractual obligations, on the basis of your consent, due to a legal obligation or on the basis of our legitimate interests.
Subject to legal or contractual permissions, we process or allow the processing of personal data in a third country only if the special requirements of Art. 44 et seq. DSGVO are met. This means that the processing is carried out, for example, on the basis of special guarantees, such as the officially recognised determination of a level of data protection corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognised special contractual obligations (so-called “standard contractual clauses”).