Deutsch
English

Data protection information

Clean thing

Thank you for your interest in our company and our services. Data protection is of a very high priority for the management of the Innotec GmbH and all operational components. The Innotec GmbH website can be used without providing any personal data. However, if a person concerned wishes to make use of special services of our company via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the data subject.

 

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to the Innotec GmbH. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed of their rights by means of this privacy policy.

 

As the controller, the Innotec GmbH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. Nevertheless, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.

 

 

A. General information

 

The following information applies to all data processing on this website.

 

 

1. responsible body and contact details

 

Responsible for this website is

Innotec GmbH

Köpenickerstr. 59

24111 Kiel

 

Further information about our company and contact details can be found in our legal notice.

 

Contact details of our data protection officer:

Innotec GmbH

Am Ihlberg 2-4

24109 Melsdorf

datenschutz(at)innotec.de

 

Innotec GmbH is responsible for the information obligations pursuant to Art. 13 and 14 GDPR, data protection impact assessments pursuant to Art. 24, 32 GDPR.

 

 

2 Data categories, purposes and legal bases of data processing

 

We process your personal data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG) as well as all other applicable legal provisions. The type and scope of data processing is generally determined by the service or information you have selected and the existing contractual relationship with you. For details of the data categories, purposes and legal bases, please refer to Part B.

 

 

3. data recipients

 

We transfer your personal data to the following data recipients:

 

  • The transfer takes place in fulfillment of a legal requirement according to which we are obliged to report or pass on the data (e.g. to authorities).
  • The data is transferred to external companies that act as processors on our behalf or that act on our behalf (e.g. subcontractors, external data centers, EDP and IT applications, website management, auditing services, credit institutions, data disposal, etc.).
  • The transfer of data to third parties takes place with your consent.
  • The transfer of data takes place for the processing of a contractual relationship with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR (e.g. to an affiliated company in the Group (see section 2) or a subcontractor or to a logistics company).
  • The transfer of data to subsidiaries or affiliated companies also takes place to fulfill legal obligations or on the basis of our legitimate interests. This may involve economic, administrative or other internal business purposes; this only applies insofar as your interests or fundamental rights and freedoms, which require the protection of personal data, do not prevail.
  • The data is transmitted to credit agencies to obtain credit information.
  • The data is transferred for the purpose of checking and asserting claims (e.g. debt collection agencies, legal advisors).
  • The data is transferred to process the planning, preparation and/or implementation of a (partial) sale of the company or a merger (or similar processes such as the takeover in the context of liquidation, insolvency, dissolution, etc.) with another company.

 

 

4 Deletion of data and duration of storage

 

In principle, we only process and store your data for the duration of our business relationship, including the initiation and execution of the contract and the statutory retention periods (e.g. under commercial or tax law).

If the data are no longer required for the fulfillment of contractual or legal obligations and rights, they are regularly deleted, unless their - temporary - further processing is necessary to fulfill the purposes listed above for an overriding legitimate interest.

Insofar as individual processing of personal data requires other deletion periods, these are mentioned in the description of the individual processing operations under Part B.

 

 

5. processing of your data in a third country

 

Data will only be transferred to bodies in third countries (countries outside the European Union (EU) or the European Economic Area (EEA)) if it is necessary for the execution of an order/contract from or with you, if it is required by law (e.g. reporting obligations under tax law), if there is an appropriate level of data protection or if you have given us your consent.

Your data may also be processed in a third country in connection with the involvement of service providers, e.g. as part of order processing. If there is no decision by the EU Commission on an appropriate level of data protection in the country in question, we will ensure that your rights and freedoms are adequately protected and guaranteed by means of appropriate guarantees (e.g. EU standard contractual clauses).

Information on the appropriate or adequate safeguards and on the possibility of obtaining a copy from you can be obtained from the Data Protection Officer on request.

 

 

6 Automated decisions in individual cases / profiling

 

We do not use procedures for automated decision-making / profiling that have a legal effect on you or significantly affect you in a similar way.

 

 

7 Obligation to provide data

 

You only need to provide the data that is necessary for the use of the website and its functions or for the establishment and implementation of a business relationship or for a pre-contractual relationship with us or that we are legally obliged to collect. Without this data, however, we will not be able to provide you with our website properly and securely, to answer your inquiries to us properly or to conclude or execute a contract with you. This may also relate to data required at a later date.

 

 

8 Data protection for applications and in the application process

 

The controller collects and processes the personal data of applicants for the purpose of handling the application process. Processing may also be carried out electronically. This is particularly the case if an applicant submits the relevant application documents to the controller by electronic means, for example by e-mail or via a web form on the website. If the controller concludes an employment contract with an applicant, the transmitted data will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after notification of the rejection decision, provided that no other legitimate interests of the controller stand in the way of deletion. Other legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

 

 

9. legal or contractual provisions for the provision of personal data; necessity for the conclusion of the contract; obligation of the data subject to provide the personal data; possible consequences of non-provision

 

We inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary for a contract to be concluded for a data subject to provide us with personal data that must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide the personal data would mean that the contract with the data subject could not be concluded. Before personal data is provided by the data subject, the data subject must contact one of our employees. Our employee will inform the data subject on a case-by-case basis whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and what the consequences would be if the personal data were not provided.

 

 

10 Your rights as a data subject

 

You are entitled to the following rights as a data subject under the legal requirements, which you can assert against us:

 

  • Right of access: you are entitled at any time to request confirmation from us within the scope of Art. 15 GDPR as to whether we process personal data concerning you; if this is the case, you are also entitled within the scope of Art. 15 GDPR to receive information about this personal data and certain other information (including processing purposes, categories of personal data, categories of recipients, planned storage period, the origin of the data, the use of automated decision-making and, in the case of transfer to a third country, the appropriate guarantees) and a copy of your data.
  • Right to rectification: In accordance with Art. 16 GDPR, you are entitled to demand that we rectify the personal data stored about you if it is inaccurate or incorrect.
  • Right to erasure: You have the right, under the conditions of Art. 17 GDPR, to demand that we erase personal data concerning you without undue delay. The right to erasure does not exist, among other things, if the processing of personal data is necessary for (i) the exercise of the right to freedom of expression and information, (ii) for compliance with a legal obligation to which we are subject (e.g. statutory retention obligations) or (iii) for the establishment, exercise or defense of legal claims.
  • Right to restriction of processing: You are entitled to demand that we restrict the processing of your personal data under the conditions of Art. 18 GDPR.
  • Right to data portability: You have the right to request that we provide you with the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format in accordance with the requirements of Art. 20 GDPR.
  • Right of revocation: You have the right to revoke your consent to the processing of personal data at any time with effect for the future.
  • Right to object: You are entitled to object to the processing of your personal data under the conditions of Art. 21 GDPR, which means that we must stop processing your personal data. The right to object exists only within the limits provided for in Art. 21 GDPR. In addition, our interests may conflict with the termination of processing, so that we are entitled to process your personal data despite your objection.
  • Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR, subject to the requirements of Art. 77 GDPR. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.

 

A list of the respective data protection supervisory authorities and their contact details can be found at the following link:
https://www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html

 

The supervisory authority responsible for us is

 

Unabhängige Landeszentrum für Datenschutz Schleswig-Holstein 
Holstenstraße 98
24103 Kiel
Phone: 0431/988-1200
Fax: 0431/988-1223
Email: mail(at)datenschutzzentrum.de

 

 

However, we recommend that you always address a complaint to our data protection officer first.

If possible, your requests to exercise your rights should be addressed in writing or electronically to the address given above under point 1 or directly to our data protection officer.

 

 

11. information on the right to object (Art. 21 GDPR)

 

If your personal data is processed on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR (data processing based on a balancing of interests) or Art. 6 para. 1 sentence 1 lit. e GDPR (data processing in the public interest), you have the right to object to the processing at any time without incurring any costs other than the transmission costs according to the basic tariffs.

We will then in any case no longer process the personal data for the purposes of direct marketing or related profiling, nor for any other purposes, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims. In this case, you must provide reasons for the objection that arise from your particular situation.

If possible, you should send your objection to the following contact address

datenschutz(at)innotec.de

 

 

12. changes

 

We may amend this data protection information at any time (e.g. in the event of changes to data processing or the legal framework). Any changes will be announced by publishing the amended data protection information on the website. Unless otherwise specified, such changes will take effect immediately. Please therefore check this data protection information regularly to view the latest version.

 

 

13 Disclaimer

 

Innotec GmbH assumes no liability for the topicality, correctness, completeness or quality of the information provided. An offer may become superfluous due to rental or changes in general conditions. The contractual basis is only the concluded service contract. Innotec GmbH is responsible for the content of its pages in accordance with the general laws. However, despite careful selection and occasional checking, Innotec GmbH accepts no responsibility for the content of pages to which only a link has been set (partner companies, service addresses) and distances itself from their content as a precautionary measure.

 

 

B. Individual processing, purposes and legal bases

 

1. logging

 

When you use the website, certain connection data and data provided by your Internet browser are temporarily stored. The following data is logged and stored in log files for the operation of the website

  • (Anonymized) IP address of the accessing computer
  • Operating system of the accessing computer
  • Browser version of the accessing computer
  • Name of the retrieved file
  • Date and time of access
  • Referring URL
  • Type of end device (e.g. desktop/smartphone)
  • Connection logging

The logging of data and its processing in log files is technically essential for the proper and secure operation of the website. The legal basis for the (initial) storage and/or reading of data from your end device is therefore Section 25 (2) No. 1 TDDDG. If automatically transmitted data (e.g. the public IP address of your terminal device) is processed, the processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR if you visit our website for the purpose of performing a contract with you or for pre-contractual measures (e.g. information about our products, inquiries), as well as within the scope of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the proper and secure provision of the website and our online offering.

The log file information is stored anonymously after the end of the session.

 

 

2. contact form/info order

 

In the interest of communicating with customers and interested parties, we offer a contact form on our website that you can use to request information about our products or to contact us in general. In addition to the voluntary information and your message content, we require the following information from you:

Title
Surname
First name

Telephone number:
E-mail address

We need this information in order to process your request, address you correctly and send you a reply. Inquiries received via the contact form are stored as emails and regularly checked to see whether data can be deleted. If data is no longer required in the context of a customer or prospective customer relationship or if a conflicting interest of the customer prevails, we will delete the data concerned after 180 days at the latest, provided that there are no statutory retention obligations to the contrary. The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR. This personal data will not be passed on to third parties.

Insofar as contact is made to initiate contractual relationships, the legal basis is Art. 6 para. 1 lit. b GDPR.

 

 

2 Matomo

 

On our websites, we use a version of Matomo implemented on our own servers. This is an open source analysis software for the purpose of statistical evaluation of visitor access. Based on this analysis, we would like to understand in particular which of our pages are accessed how often and for how long and are therefore of interest, but not by whom they are accessed. The version of Matomo implemented on our server does not use cookies. We only store anonymized user data to collect general statistical values without comprehensively analyzing user behavior. A comprehensive analysis of user behavior is also not possible due to the anonymized data collected. The IP address transmitted in the server log-in is anonymized on our server before it is transmitted to the Matomo installation and replaced by a random IP address. In addition, a UserID is created using a random HASH value. It is not possible for us to track the data automatically transmitted by your end device, such as the IP address and the UserID, using the anonymized and randomly generated data, as temporal entries are randomized during the Matomo installation and the real IP address is immediately anonymized in our log files. At the end of the session (i.e. usually when the browser is closed), the random IP address and user ID are deleted by Matomo.

The purpose of the processing is the statistical analysis of user behavior to optimize the functionality of our websites. Our legitimate interest lies in the improvement of our websites and our online offering.

The legal basis for the use of Matomo is Art. 6 para. 1 sentence 1 lit. f GDPR.

 

 

3. cookiebot

 

Cookiebot is an online service that helps us to ensure that the use of cookies and their online tracking complies with data protection regulations. By using the web service of Usercentrics A/S (Havnegade 39, 1058 Copenhagen, Denmark), your browser transmits personal data to the above-mentioned company. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR. The legitimate interest lies in the error-free functioning of the website. The data is deleted as soon as the purpose of its collection has been fulfilled. Further information on the handling of the transferred data can be found in cookiebot.com's privacy policy. You can prevent the collection and processing of your data by cookiebot.com by deactivating the execution of script code in your browser or by installing a script blocker in your browser (you can find this at www.noscript.net or www.ghostery.com, for example). You have the right to change or withdraw your consent at any time.

 

 

4. fulfillment of legal requirements

 

We also process your data to comply with legal requirements. We are subject to a large number of legal obligations. These are primarily legal requirements (e.g. from commercial and tax laws), but may also include other official requirements. These include, in particular, the fulfillment of control and reporting obligations under tax law as well as archiving and documentation obligations.

The legal basis for the processing is Art. 17 para. 3 lit. b GDPR and Art. 6 para. 1 sentence 1 lit. c) GDPR.

 

 

5. legal enforcement and legal defense

 

We may also process your personal data in order to assert our rights and enforce our legal claims and/or to defend ourselves against legal claims and/or insofar as this is necessary to defend against or prosecute criminal offenses.

The legal basis for the processing is Art. 17 para. 3 lit. e GDPR and Art. 6 para. 1 sentence 1 lit. f) GDPR. Our legitimate interest lies in the enforcement of rights and legal defense.

 

 

6. company sale, mergers, etc.

 

We may also process your personal data processed via the websites in order to handle a company sale or merger (or similar processes such as takeover in the context of liquidation, insolvency, dissolution, etc.) with another company. In the event that another company acquires or intends to acquire the assets/capital, which may include your personal data, from us or we carry out or seek to carry out a merger with another company, we may have to grant this company access to your personal data stored with us or transfer it for the purpose of examining and carrying out the company sale/merger (e.g. to determine the value of the company, business risks, etc.).

We process your personal data for this purpose to safeguard our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR in order to plan and implement a planned company sale or merger.

 

 

C. Overview of cookies

 

Cookies are small text files that are stored on your hard disk by your browser. We also use so-called session cookies. These are used to establish a unique connection between you and our website. Only a random number is stored for this purpose. The session cookie is automatically removed when you close your browser.

If you do not wish to allow cookies on your computer (or other device), you can deactivate them in your Internet browser. However, this may affect the user-friendliness and functionality of the website. The cookies we use are technically absolutely necessary in order to be able to offer the website and its functions or the functions you have requested (e.g. language settings). The legal basis for the (initial) storage and/or reading of data from your end device is Section 25 (2) No. 1 TDDDG.

Our website uses the following cookies:

 

1. fe_typo_user

 

Session cookie for Typo3 user management
This cookie is only relevant for web administrators. No personal data is processed.

 

2. PHPSESSID

 

Session cookie for the operation of a PHP website
It is used to recognize your browser for various purposes (for example, to remember your language setting). Storage duration: as long as the browser window is open.

 

3. cookieConsent

 

Saves the user's consent status for cookies on the current domain.

 

4._pk_id#

 

Records statistics about the user's visits to the website, such as the number of visits, average time spent on the website and which pages were read.

 

5._pk_ses#

 

Used by Piwik Analytics Platform to track the visitor's page views during the session.