Data Protection
1. Data Protection at a Glance
General Information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data that can be used to personally identify you. Detailed information on the topic of data protection can be found in our privacy policy listed below this text.
Data Collection on Our Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the section “Information about the Responsible Party” in this privacy policy.
How do we collect your data?
Your data is collected in two ways: either by you providing it to us, for example, by entering data into a contact form. Other data is automatically collected by our IT systems when you visit the website, either automatically or after your consent. This primarily includes technical data (e.g., Internet browser, operating system, or the time of page access). The collection of this data occurs automatically as soon as you enter this website.
What do we use your data for?
Some of the data is collected to ensure the website is provided error-free. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right at any time to receive free information about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can revoke this consent at any time for the future. Furthermore, you have the right to request the restriction of processing of your personal data under certain circumstances. You also have the right to lodge a complaint with the competent supervisory authority.
For these matters and other questions regarding data protection, you can contact us at any time.
2. Hosting and Content Delivery Networks (CDN)
External Hosting
This website is hosted by an external service provider (host). The personal data collected on this website is stored on the host’s servers. This may include, in particular, IP addresses, contact inquiries, meta- and communication data, contract data, contact details, names, website accesses, and other data generated via a website.
The use of the host occurs to fulfill our contractual obligations toward our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast, and efficient provision of our online offering by a professional provider (Art. 6(1)(f) GDPR).
Our host will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions regarding this data.
Our host is:
STRATO AG
Pascalstraße 10
10587 Berlin
Conclusion of a Data Processing Agreement
To ensure GDPR-compliant processing, we have concluded a data processing agreement with our host.
3. General Information and Mandatory Information
Data Protection
The operators of this site take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can identify you personally. This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this happens.
Please note that data transmission over the Internet (e.g., when communicating via e-mail) can have security vulnerabilities. Complete protection of data from access by third parties is not possible.
Information about the Responsible Party
The responsible party for data processing on this website is:
Mr. Manfred Schuck and Mr. Matthias Peifer
POLY-TOOLS bennewart GmbH
Flurstrasse 28
66978 Donsieders
Phone: +49 (0) 63 33 92 13 0
E-mail: info@poly-tools-bennewart.de
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Data Retention Period
Unless a more specific retention period is stated in this privacy policy, your personal data will remain with us until the purpose for data processing ceases. If you assert a legitimate request for deletion or revoke consent for data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, deletion will occur after these reasons no longer apply.
Legally Required Data Protection Officer
We have appointed a data protection officer for our company:
Mr. Jonas Schuck
POLY-TOOLS bennewart GmbH
Flurstrasse 28
66978 Donsieders
Phone: +49 (0) 63 33 92 13 0
E-mail: datenschutz@poly-tools-bennewart.de
Notice Regarding Data Transfer to the USA and Other Third Countries
Our website includes tools from companies based in the USA or other countries that are not considered data protection safe. When these tools are active, your personal data may be transferred to these third countries and processed there. Please note that these countries may not offer a level of data protection comparable to the EU. For example, U.S. companies are obligated to provide personal data to security authorities without you being able to challenge this legally. Consequently, it cannot be ruled out that U.S. authorities (e.g., intelligence agencies) process, evaluate, and permanently store your data stored on U.S. servers for surveillance purposes. We have no influence over these processing activities.
Revocation of Your Consent to Data Processing
Many data processing operations are only possible with your explicit consent. You can revoke any previously given consent at any time. The legality of the data processing carried out up to the revocation remains unaffected.
Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)
If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right at any time to object to the processing of your personal data for reasons arising from your particular situation; this also applies to profiling based on these provisions. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms or the processing serves to assert, exercise, or defend legal claims (objection under Art. 21(1) GDPR).
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such advertising; this also applies to profiling insofar as it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Art. 21(2) GDPR).
Right to Lodge a Complaint with the Competent Supervisory Authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, workplace, or the location of the alleged infringement. This right exists without prejudice to other administrative or judicial remedies.
Right to Data Portability
You have the right to receive the data we process automatically based on your consent or to fulfill a contract in a commonly used, machine-readable format and to transfer it to yourself or a third party. If you request the direct transfer of the data to another controller, this will only occur if technically feasible.
SSL or TLS Encryption
This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us. You can recognize an encrypted connection when the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
When SSL or TLS encryption is enabled, the data you transmit to us cannot be read by third parties.
4. Data Collection on Our Website
Cookies
Our websites use so-called “cookies.” Cookies are small text files and do not cause any harm to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit. Persistent cookies remain stored on your device until you delete them yourself or until automatic deletion occurs through your web browser.
In some cases, cookies from third-party companies may also be stored on your device when you visit our site (third-party cookies). These allow us or you to use certain services of the third-party company (e.g., cookies for processing payment services).
Cookies serve various functions. Many cookies are technically necessary because certain website functions would not work without them (e.g., shopping cart function or video display). Other cookies are used to evaluate user behavior or display advertising.
Cookies that are necessary for the execution of electronic communication processes (necessary cookies), or for providing certain functions you request (functional cookies, e.g., for the shopping cart function), or to optimize the website (e.g., cookies for web audience measurement) are stored based on Art. 6(1)(f) GDPR unless another legal basis is specified. The website operator has a legitimate interest in storing cookies to provide its services technically error-free and optimized. If consent for cookie storage is requested, the storage of the relevant cookies is based solely on this consent (Art. 6(1)(a) GDPR); consent can be revoked at any time.
You can set your browser to inform you about the setting of cookies, allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
If cookies from third parties or for analysis purposes are used, we will inform you separately in this privacy policy and, if necessary, request your consent.
Cookie Consent with Usercentrics
This website uses the cookie consent technology from Usercentrics to obtain your consent for storing certain cookies on your device or for the use of certain technologies and to document this in compliance with data protection laws. Provider of this technology is Usercentrics GmbH, Rosental 4, 80331 Munich, Website: usercentrics.com/de/ (hereinafter “Usercentrics”).
When you visit our website, the following personal data is transmitted to Usercentrics:
- Your consent(s) or revocation of consent(s)
- Your IP address
- Information about your browser
- Information about your device
- Time of your website visit
Usercentrics also stores a cookie in your browser to associate the given consents or their revocation with you. The data collected this way is stored until you request deletion, delete the Usercentrics cookie yourself, or the purpose for data storage ceases. Mandatory legal retention obligations remain unaffected.
The use of Usercentrics serves to obtain the legally required consents for the use of certain technologies. Legal basis: Art. 6(1)(c) GDPR.
Data Processing Agreement
We have concluded a data processing agreement with Usercentrics. This is a data protection-required contract ensuring that Usercentrics processes the personal data of our website visitors only according to our instructions and in compliance with GDPR.
Server Log Files
The provider of the website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. This includes:
- Browser type and version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
These data are not merged with other data sources. Collection of this data is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website; server log files must be recorded for this purpose.
Contact Form
If you send us inquiries via the contact form, your information from the inquiry form, including the contact data provided there, will be stored to process the inquiry and for possible follow-up questions. We do not share this data without your consent.
Processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or required for pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if requested.
Data entered in the contact form remains with us until you request deletion, revoke consent for storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions, especially retention periods, remain unaffected.
Inquiry via E-Mail, Telephone, or Fax
If you contact us by e-mail, telephone, or fax, your inquiry, including all personal data arising from it (name, inquiry), will be stored and processed to handle your request. We do not share these data without your consent.
Processing of these data is based on Art. 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or required for pre-contractual measures. Otherwise, processing is based on our legitimate interest in effective handling of inquiries (Art. 6(1)(f) GDPR) or your consent (Art. 6(1)(a) GDPR) if requested.
Data sent via contact inquiries remains with us until you request deletion, revoke consent, or the purpose for data storage ceases (e.g., after processing your inquiry). Mandatory legal provisions, especially retention periods, remain unaffected.
Yumpu Brochures
For our brochures, we use https://www.yumpu.com/ of i-magazine AG (Gewerbestrasse 3, 9444 Diepoldsau, CH) on our website. Yumpu provides a digital platform for publishing magazines, brochures, or catalogs.
Yumpu Privacy Policy: https://www.yumpu.com/de/info/privacy_policy
Yumpu Cookie Policy: https://www.yumpu.com/de/info/cookie_policy
5. Plugins and Tools
Google Maps
This site uses the Google Maps service. Provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Using Google Maps requires storing your IP address. This information is usually transmitted to a Google server in the USA and stored there. The website provider has no influence on this data transmission. When Google Maps is activated, Google may use Google Web Fonts to display fonts uniformly. When accessing Google Maps, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.
Use of Google Maps is in the interest of an appealing presentation of our online offerings and easy accessibility of the locations we indicate on the website. This constitutes a legitimate interest under Art. 6(1)(f) GDPR. If consent is obtained, processing is based solely on Art. 6(1)(a) GDPR; consent can be revoked at any time.
Data transfer to the USA is based on the EU Commission Standard Contractual Clauses.
Details:
https://privacy.google.com/businesses/gdprcontrollerterms/
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/
More information on handling user data can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=de
6. Our Own Services
Handling Applicant Data
We offer you the opportunity to apply with us (e.g., via e-mail, post, or online application form). Below we inform you about the scope, purpose, and use of personal data collected during the application process. We assure you that the collection, processing, and use of your data is in accordance with applicable data protection laws and all other legal provisions, and your data is treated strictly confidentially.
Scope and Purpose of Data Collection
If you submit an application, we process your related personal data (e.g., contact and communication data, application documents, notes during interviews, etc.) to decide on the establishment of an employment relationship. Legal basis: §26 BDSG-new (Germany) (initiation of an employment relationship), Art. 6(1)(b) GDPR (general contract initiation), and – if you have given consent – Art. 6(1)(a) GDPR. Consent can be revoked at any time. Your personal data is shared internally only with persons involved in processing your application.
If the application is successful, the submitted data will be stored in our data processing systems based on §26 BDSG-new and Art. 6(1)(b) GDPR for the purpose of conducting the employment relationship.
Retention Period of Data
If we cannot make you a job offer, you decline a job offer, or withdraw your application, we reserve the right to retain the submitted data based on our legitimate interests (Art. 6(1)(f) GDPR) for up to six months from the end of the application process (rejection or withdrawal). Afterwards, the data will be deleted, and physical application documents destroyed. Retention serves especially as proof in case of legal disputes. If it is apparent that data will be required after the six-month period (e.g., due to a pending or threatened legal dispute), deletion occurs only when the purpose of further retention ceases.
Longer retention may also occur if you have given consent (Art. 6(1)(a) GDPR) or if statutory retention obligations prevent deletion.
Inclusion in the Applicant Pool
If no job offer is made, you may have the option to be included in our applicant pool. If included, all documents and information from your application will be transferred to the pool to contact you for suitable vacancies.
Inclusion in the applicant pool is based solely on your explicit consent (Art. 6(1)(a) GDPR). Giving consent is voluntary and not related to the ongoing application process. You may revoke consent at any time. In such a case, data in the applicant pool will be permanently deleted unless there are legal retention reasons.
Data in the applicant pool will be permanently deleted no later than two years after consent is given.