Privacy Policy
The person responsible for processing your personal data
The controller, hereinafter referred to as "Administrator", "We" or "Company", is
Ecotec Deutschland GmbH with registered office in: 12435 Berlin, Heidelberger Straße 65.
Administrator contact details:
We hereby expressly prohibit the use of contact data published within the scope of the imprint obligation by third parties for sending unsolicited advertising and information material. The operator expressly reserves the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
We only use the personal data received for the specific, legitimate purposes for which the data was collected. The scope of the personal data, the purpose of its processing, the legal basis for this processing, the duration of the processing and the categories of recipients of the data are set out in this privacy policy.
Purpose of the processing of personal data: | Legal basis for the processing: | Retention period and information as to whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, and whether the data subject is obliged to provide this data and the possible consequences of failure to provide it: |
---|---|---|
(a) Communication, in particular answering the questions asked via the contact form on https://www.ecotec-deutschland.de/en/contact or by e-mail to us | Art. 6, para. 1, letter b) GDPR (taking action on your request, i.e. answering the question you have asked, the contact request you have made via the form on the website or by e-mail) | Personal data will be stored for the duration of the statutory limitation period for claims if a complaint, request, etc. (usually 3 years, maximum 6 years calculated from the termination of the contract/relationship), unless there is another legal basis for further processing, e.g. our processing of the data for the purpose of handling possible complaints or requests and to comply with the principle of accountability under Article 5(2) of the GDPR. The provision of data is voluntary, but failure to provide it prevents communication by electronic means. |
(b) Communication with those who contact us via social networks (responding to comments and messages, etc.) | Art. 6(1)(f) GDPR (“legitimate interests of the administrator”) | The data will be stored for the duration of the legitimate interest pursued by the administrator and for the duration of the limitation period for possible claims (generally 3 years, maximum 6 years calculated from the termination of the relationship/contract). The provision of data is voluntary, but failure to provide data prevents communication via social networks. |
(c) Marketing of the Administrator’s products and services | Art. 6(1)(a) GDPR (your consent to processing) and/or Art. 6(1)(f) GDPR (“legitimate interests of the controller”) | Data will be stored until you withdraw your consent. You can revoke your consent to the administrator at any time. |
(d) the storage of cookies or the use of other similar technologies on your end device (PC, laptop, tablet, telephone/smartphone, smart TV) | Art. 6(1)(a) GDPR (your consent to processing) | The data will be stored until the data subject withdraws their consent to the further processing of their personal data. The provision of data is not a contractual or legal obligation. Failure to provide the data (blocking the installation of cookies) may result in limited functionality of the website. |
(e) conducting direct marketing of the Administrator’s products and services | Art. 6(1)(f) GDPR (“legitimate interests of the Administrator”), which is an independent ground that legalizes the processing of personal data and no consent is required. Recital (47) of the preamble to the GDPR states: “The processing of personal data for the purposes of direct marketing may be regarded as an activity carried out in the legitimate interest.” | The data will be stored for the duration of the legitimate interest pursued by the controller or until an objection to the further processing of personal data for marketing purposes is raised (Art. 21 GDPR). Abs. 3 GDPR). If the data subject objects to the processing of their data (e.g. e-mail address, first name, surname, employer’s name) for direct marketing purposes, the personal data will no longer be processed by the administrator for this purpose. |
(f) Conclusion and fulfillment of the contract (including quality assurance) | Art. 6(1)(b) GDPR (the data subject is a contracting party) | The data will be stored for the period necessary for the performance, termination or expiry of the contract and invoicing, as well as for the period after which any claims become time-barred (usually 3 years, maximum 6 years calculated from the termination of the contract/relationship), unless there is another legal basis for further processing, e.g. for our processing of the data in the context of processing possible complaints or claims and to fulfill the accountability principle pursuant to Art. 5 para. 1 lit. a GDPR. 2 of the GDPR. The provision of the data is a legal obligation (obligation of the contractual partners), the non-provision of the data prevents the conclusion and/or fulfillment of the contract. |
(g) entering, recording and storing invoices and accounting documents and bookkeeping | Art. 6(1)(c) GDPR (“compliance with a legal obligation”) in relation to Art. 74(2) of the Accounting Act and in relation to Art. 86 § 1 of the Tax Ordinance Act. | The data is kept for the period during which the regulations require the keeping of books and accounting documents (i.e. for 5 years from the beginning of the year following the financial year to which the data relates) and for the period after which any tax liabilities become time-barred. The provision of data is a legal obligation. Failure to do so prevents the fulfillment of a legal obligation. |
(h) Detection and prevention of fraud | Art. 6(1)(c) GDPR (“compliance with a legal obligation”) | The data is stored for the duration of the contract and thereafter for the period after which claims arising from the contract become time-barred. In the event of claims being asserted by the administrator or notification of the competent authorities – for the duration of such proceedings and “for 5 years from the beginning of the year following the financial year in which the processes, transactions and proceedings are finally concluded, paid off, settled or time-barred” |
(i) Responding to complaints within the time and in the form required by law | Art. 6(1)(c) GDPR (“fulfillment of a legal obligation”) | The data will be stored for a period of 1 year after expiry of the warranty period or settlement of the claim and thereafter for the duration of the limitation period for any claims. The provision of the data is a contractual requirement; failure to provide the data will prevent the complaint from being fulfilled. |
(j) the determination, defense and enforcement of claims brought by or against the Administrator | Art. 6(1)(f) GDPR (“legitimate interests of the administrator”) | The data is stored for this period:
|
(k) handling any complaints or requests, processing for archiving and security purposes, | Art. 6(1)(f) GDPR (“legitimate interests of the administrator”) | The data will be stored for the duration of the legitimate interest pursued by the administrator. The data will be stored until the legally binding conclusion of the proceedings and for the duration of the limitation period for possible claims (generally 3 years, maximum 6 years calculated from the termination of the relationship/contract). If the personal data and the content of the correspondence constitute evidence in the proceedings conducted on the basis of the Act or the administrator has become aware that they may constitute evidence in the proceedings, the retention period of the data shall be extended until the final conclusion of the proceedings. |
(l) Recruitment | Article 6(1)(c) of the GDPR (“legal obligation to which the controller is subject”), Labor Code, Article 6(1)(a) of the GDPR and Article 9(2)(a) of the GDPR (“consent of the data subject”) | Data will be stored for 9 months after the end of employment. The provision of the data is required by law; failure to provide the data makes participation in the recruitment process impossible. |
(m) keeping employment records | Article 6(1)(c) of the GDPR (“legal obligation to which the controller is subject”) | Data is stored for a period in accordance with current legislation, i.e. 10 years or 50 years. The provision of data is required by law; failure to provide it will result in a ban on employment. |
The administrator uses the services of external bodies that cooperate with him. Personal data is only transmitted to external bodies if and insofar as this is necessary for the purpose of processing. External bodies may only use the transmitted (entrusted) personal data to fulfill the task commissioned by the administrator.
- Entities that provide technical support services to the administrator and suppliers of IT solutions that enable the administrator to carry out its business activities (e.g. software providers, email providers and hosting providers),
- entities that provide the administrator with technical support services and suppliers of IT solutions that enable him to conduct his business (e.g. software providers, e-mail providers and hosting providers)
- Institutions that provide postal, courier and similar services (e.g. courier brokers) – insofar as this is necessary to carry out deliveries and correspondence,
- selected bodies that process accounting, tax, consulting, translation and legal matters on behalf of the administrator – insofar as this is necessary to achieve the specific processing purpose,
Your personal data will not be transferred outside the EEA or made available to international organizations. In exceptional cases, your personal data may also be transferred to third countries, i.e. outside the European Economic Area, if this is necessary for the provision of services to you or if this is required by another valid legal basis. In this case, the data will be transferred on the basis of appropriate guarantees in accordance with data protection laws. You can find out more about these warranties and how and where you can obtain a copy of these warranties by contacting us using the contact details above.
If consent is required to process personal data for a specific purpose, the controller shall obtain this consent. The consent given can be revoked at any time by contacting the administrator. If consent is withdrawn, the data will no longer be processed to the extent to which consent was given, but the withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
- Entities that provide technical support services to the administrator and suppliers of IT solutions that enable the administrator to carry out its business activities (e.g. software providers, email providers and hosting providers),
- entities that provide the administrator with technical support services and suppliers of IT solutions that enable him to conduct his business (e.g. software providers, e-mail providers and hosting providers)
- Institutions that provide postal, courier and similar services (e.g. courier brokers) – insofar as this is necessary to carry out deliveries and correspondence,
- selected bodies that process accounting, tax, consulting, translation and legal matters on behalf of the administrator – insofar as this is necessary to achieve the specific processing purpose,
- Entities that provide technical support services to the administrator and suppliers of IT solutions that enable the administrator to carry out its business activities (e.g. software providers, email providers and hosting providers),
- entities that provide the administrator with technical support services and suppliers of IT solutions that enable him to conduct his business (e.g. software providers, e-mail providers and hosting providers)
- Institutions that provide postal, courier and similar services (e.g. courier brokers) – insofar as this is necessary to carry out deliveries and correspondence,
- selected bodies that process accounting, tax, consulting, translation and legal matters on behalf of the administrator – insofar as this is necessary to achieve the specific processing purpose,
You also have the right to lodge a complaint with the supervisory authority, i.e. the Office for Personal Data Protection, if you believe that the processing of your personal data is unlawful.
7. Server log files
Our server saves certain information that your browser sends automatically. This applies in particular to the following data:
- the IP address of your device,
- time and date of the server request,
- information about the browser you are using (type/name, version),
- operating system,
- referring URL,
Records of server log file data are analyzed to:
- debugging,
- manage server performance,
- protect against
- protect against DDoS attacks
- adaptation of content,
We cannot attribute this information to any specific individual; we do not cross-reference it with other data sources. However, we reserve the right to inspect this information at a later date if we reasonably suspect a breach of the law.
8. etracker
Our website uses the services of etracker GmbH from Hamburg, Germany(www.etracker.com) to analyze usage data. We do not use cookies for web analysis by default. If we use analysis and optimization cookies, we will obtain your explicit consent separately in advance. If this is the case and you agree, cookies are used to enable a statistical analysis of the reach of this website, to measure the success of our online marketing measures and test procedures, e.g. to test and optimize different versions of our online offer or its components. Cookies are small text files that are stored by the Internet browser on the user’s end device. etracker cookies do not contain any information that enables a user to be identified.
The data generated with etracker is processed and stored by etracker on behalf of the provider of this website exclusively in Germany and is therefore subject to the strict German and European data protection laws and standards. etracker has been independently tested, certified and awarded the ePrivacyseal data protection seal of approval.
Data processing is carried out on the basis of the legal provisions of Art. 6 para. 1 lit. f (legitimate interest) of the General Data Protection Regulation (GDPR). Our concern within the meaning of the GDPR (legitimate interest) is the optimization of our online offer and our website. Since the privacy of our visitors is important to us, the data that may allow a reference to an individual person, such as the IP address, login or device identifiers, are anonymized or pseudonymized as soon as possible. No other use, merging with other data or forwarding to third parties takes place.
You can object to the data processing described above at any time by clicking on the slider. The objection has no negative consequences. If no slider is displayed, data collection is already prevented by other blocking measures.
Further information on data protection at etracker can be found here.
9. Leadinfo
We use the lead generation service provided by Leadinfo B.V., Rotterdam, The Netherlands, which recognizes visits of companies to our website based on IP addresses and shows us related publicly available information, such as company names or addresses. In addition, Leadinfo places two first-party cookies for providing transparency on how our visitors use our website and the tool processes domains from provided form inputs (e.g. “leadinfo.com”) to correlate IP addresses with companies and to enhance its services. For additional information, please visit www.leadinfo.com. On this page: www.leadinfo.com/en/opt-out you have an opt-out option. In the event of an opt-out, your data will no longer be used by Leadinfo.
10. Cookies
Our website may use “cookies” to identify returning users. A “cookie” is a small text file that is stored on the hard disk of a user’s computer. It is not able to read data from your computer. Most browsers are set to accept cookies. You can deactivate this function or ensure that your browser asks you for permission each time it sets a cookie.
11. Automated decision-making and profiling
Personal data will not be used for automated decision-making that has legal consequences for you, including profiling.
12. Final provisions
The websites of the administrator may contain links (references) to external websites of third parties over whose content we have no influence. Therefore, we cannot accept any liability for this third-party content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal contents were not recognizable at the time of linking. However, permanent monitoring of the content of the linked pages is not reasonable without concrete evidence of an infringement. If we become aware of any legal infringements, we will remove such links immediately.
This document is protected by copyright. The author as creator holds the exclusive personal and proprietary copyrights and owns these rights. The document is a “trade secret” of the author within the meaning of the Unfair Competition Act. The document has been created solely for the use of the recipient of the document (customer). The author does not permit any other provision, use, reproduction, distribution or resale of this document or parts thereof without his prior written consent. A breach of the above conditions may result in liability, including criminal liability, under the Unfair Competition Act, the Criminal Code Act and/or the Copyright and Related Rights Act. In particular, but not exclusively, the author has the right to demand the cessation of the prohibited acts, the elimination of the consequences of the prohibited acts, the compensation of the damage caused, the return of the unlawfully obtained benefits and the submission of one or more declarations by the author with appropriate content and form. It is also prohibited to send or otherwise make this document available to any person or entity that may provide services that compete with those of the author – e.g. lawyers, auditors, advisors, IT specialists, consultants, accountants, auditors, legal advisors, lecturers, trainers, etc. – without the prior written consent of the author.