The protection of your data is our concern
Welcome to our website. We thank you for your interest. PEMA GmbH (hereinafter “PEMA”) takes the protection of your personal data very seriously. Therefore, we would like to inform you below about what data is used during your visit and the purpose of such use. This Data Protection Policy applies to PEMA’s entire web presence, for which PEMA GmbH, as named in the imprint, is responsible.
What is personal data?
“Personal data" means any information relating to an identified or identifiable natural person (“data subject”), in other words, for instance, your civil name, your age, your marital status, your address, your email address, your phone number, your banking details and your date of birth
Unless stated otherwise in the following sections, personal data is as a rule not collected, processed or used when using our websites. When our website is accessed, some information is transferred, such as the IP address, type and version of the browser being used, operating system being used, the website that you came from and the time of day of access.
PEMA cannot attribute this data to any specific person. This data is not combined with other data sources. Moreover, the data is erased following statistical evaluation and used solely to improve the attractiveness, content and functionality of our websites.
1. Name and contact data of the processing controller and of the company’s data protection officer
This Data Protection Policy applies to data processing by:
Controller: PEMA GmbH, Northeimer Str. 90-94, 37412 Herzberg am Harz, Tel: +49 (0) 5521 860 0, Fax: +49 (0) 5521 860 1139, email: firstname.lastname@example.org
PEMA’s data protection officer can be reached at the foregoing address or by sending a personal/confidential message to the attention of Hans Joachim Metzen, SIZ GmbH, Simrockstr. 4, 53113 Bonn, email: email@example.com.
2. Collection and storage of personal data, as well as the nature and purpose of its use
a) When visiting the website
When visiting our website www.pema.eu, information is automatically sent by your device’s browser to our website’s server. This information is temporarily stored in a log file. In the process, the following information is collected without any action on your part and then stored until it is automatically deleted:
The legal basis for processing the data is Article 6(1)(f) GDPR. Our legitimate interest has to do with the above-listed purposes for data collection. Under no circumstances do we use the collected data for the purpose of drawing conclusions about your identity.
b) When subscribing to our newsletter
Provided that you have expressly provided consent pursuant to Article 6(1)(a) GDPR, we use your email address to periodically send you our newsletter. Indicating an email address is sufficient for receiving the newsletter.
You can unsubscribe at any time, for example by using the link at the end of each newsletter. Alternatively, you can send an email at any time with your request to unsubscribe to firstname.lastname@example.org.
c) When using our contact form
If you have any questions, you can get in touch with us by using the form provided on the website. To do so, you must provide a valid email address so that we know who is making the enquiry and can respond to it. Additional information may be provided voluntarily.
The processing of data for the purpose of contacting us takes places in accordance with Article 6(1)(a) GDPR on the basis of your voluntarily provided consent.
d) When using the online application procedure
Personal data is collected, processed and used in connection with an application only for the purpose of processing the application. Applicant data are not disclosed to third parties without your consent. Prior to providing your data, you expressly declare that you consent to the collection, processing and use of the data that you enter and to the possible forwarding of your applicant data to domestic and foreign branches of PEMA GmbH for the purpose of processing your application. The user is personally responsible for all content sent to PEMA. Your application will be reviewed by the responsible HR employees, by the responsible departments and possibly by the Works Council. It is disclosed solely in accordance with the applicable provisions of data protection law, particularly where PEMA is legally obligated to do so.
Please be advised that applications sent to us by email are transmitted without encryption.
3. Disclosure of data
Your personal data is not transmitted to third parties for purposes other than those listed in the following.
We disclose your personal data to third parties only if:
Information is stored in the cookie that relates to the specific device being used. However, this does not mean that we obtain direct knowledge of your identity through the cookie.
Cookies help make it easier for you to use our site. For instance, we use session cookies in order to recognise that you have previously visited individual pages on our website. These cookies are automatically deleted when your leave our site.
In addition, also for the purpose of optimising user-friendliness, we use temporary cookies, which are stored for a specified period of time on your device. If you visit our site again in order to make use of our services, it is automatically recognised that you have previously visited us and which entries and settings you made so that these do not have to be entered again.
The data processed by cookies is necessary for the aforementioned purposes of the legitimate interests pursued by us and third parties in accordance with Article 6(1)(f) GDPR.
Most browsers automatically accept cookies. However, you can configure your browser in such a way that no cookies are stored on your computer or that you always are prompted before a new cookie is placed. Complete deactivation of cookies may however mean that you will be unable to use all features of our website.
5. Analysis tools, tracking tools
The tracking measures described in the following and used by us are carried out on the basis of Article 6(1)(f) GDPR. We use these tracking measures in order to ensure that our website is designed to meet user requirements and is continually optimised. We also use tracking measures in order to compile statistics about the use of our website and to optimise our offering for you. These interests are to be considered legitimate within the meaning of the aforementioned provision.
The respective data-processing purposes and data categories can be found in the corresponding tracking tools.
Our website uses technologies of etracker GmbH for the purpose of analysing user data. In the process, cookies are placed (see Section 4). The data generated with etracker is processed and stored on our behalf by etracker exclusively in Germany. Registration and device identifiers are converted by etracker into an unambiguous key that is however not attributed to a person. Other use, combination with other data or disclosure to third parties does not take place.
You can refuse the tracking procedure and object at any time. This does not have any negative consequences for you:
For more information about data protection at etracker, please visit https://etracker.com/datenschutz.
b) Google AdWords conversion tracking
In order to compile statistics about the use of our website and to evaluate use for the purpose of optimising our website for you, we also use Google conversion tracking. In the process, Google AdWords places a cookie (see Section 4) on your computer when you reach our website through a Google advertisement.
These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages on the website of the AdWords customer and the cookie has not yet expired, Google and the customer can recognise that the user clicked on the advertisement and was redirected to this site.
Each AdWords customer receives a different cookie. Thus, cookies cannot be tracked across the websites of AdWords customers. The information obtained with the aid of conversion cookies is used to compile conversion statistics for AdWords customers that have elected to use conversion tracking. AdWords customers learn about the total number of users who clicked on their advertisements and were redirected to a site furnished with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
If you do not wish to participate in the tracking procedure, you can refuse the placement of a cookie required for this purpose, such as by configuring your browser to generally deactivate the automatic placement of cookies. You can also deactivate cookies for conversion tracking by configuring your browser in such a way that cookies are blocked from the domain www.googleadservices.com. For Google’s data protection policy concerning conversion tracking, please visit https://services.google.com/sitestats/de.html.
6. Social media plug-ins
On the basis of Article 6(1)(f) GDPR, our website uses social plug-ins from the social networks Facebook, Twitter, Google+ and Instagram in order to make ourselves better known. The underlying advertising purpose is to be considered a legitimate interest within the meaning of the GDPR. Responsibility for operation in compliance with data protection law is to be ensured by each provider. We embed these plug-ins using the so-called “double click” method in order to protect visitors to our website as best as possible.
On our website, you have the opportunity to use social plug-ins of the following companies:
Information about the collection and use of your data on the social networks can be found in the respective terms and conditions of use of the corresponding providers.
Social media plug-ins of Facebook are used on our website in order to make its use more personal. For this purpose, we use the “Like” and “Share” buttons. This has to do with an offer by Facebook.
By embedding the plug-ins, Facebook receives information that your browser has accessed the corresponding page on our website even if you do not have a Facebook account or are currently not logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the U.S. and stored there.
If you are logged in to Facebook, it can directly allocate the visit to our website to your Facebook account. If you interact with the plug-ins, such as the “Like” or “Share” button, the corresponding information is likewise directly transmitted to a Facebook server and stored there. In addition, the information is published on Facebook and displayed to your Facebook friends.
Facebook may use this information for the purpose of advertising, performing market research and designing Facebook pages to meet user requirements. In addition, Facebook creates use, interest and relationship profiles in order to, e.g., evaluate your use of our website with respect to the advertisements displayed to you on Facebook, notify other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.
If you do not wish to allow Facebook to allocate the data collected about our website to your Facebook account, you must log out of Facebook prior to visiting our website.
For more information about the purpose and scope of data collection and the further processing and use of the data by Facebook, as well as your rights and configuration options in this respect in order to protect your privacy, please see the Facebook data protection policy at https://www.facebook.com/about/privacy/.
Our website integrates the plug-ins of the short-messaging network of Twitter Inc. (“Twitter”). You can recognise the Twitter plug-ins (Tweet button) by the Twitter logo on our site. For an overview of Tweet buttons, please visit https://about.twitter.com/resources/buttons.
If you visit a page on our website that contains such a plug-in, a direct connection is generated between your browser and the Twitter server. In this way, Twitter receives information that you visited our site with your IP address. If you click on the Tweet button while logged in to your Twitter account, you can link the content of our site to your Twitter profile. In this way, Twitter can allocate the visit to our site to your user account. Please be advised that as the provider of the site, we receive no knowledge about the content of the transmitted data or about its use by Twitter.
If you do not wish to allow Twitter to allocate the visit to our site, please log out of your Twitter user account.
For more information about this, please see the Twitter data protection policy at https://twitter.com/privacy.
Our website uses social plug-ins of Instagram, which are operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, U.S. (“Instagram”).
The plug-ins are identified with an Instagram logo, for example in the form of an “Instagram camera”.
If you visit a page on our website that contains such a plug-in, your browser generates a direct connection to Instagram servers. The content of the plug-in is transmitted by Instagram directly to your browser and is embedded in the page. Through such embedding, Instagram receives information that your browser has accessed the corresponding page on our website even if you do not have an Instagram profile or are currently not logged in to Instagram.
This information (including your IP address) is transmitted by your browser directly to an Instagram server in the U.S. and stored there. If you are logged in to Instagram, Instagram can directly allocate the visit to our website to your Instagram account. If you interact with the plug-ins, such as by clicking on the “Instagram” button, this information is likewise directly transmitted to an Instagram server and stored there.
In addition, the information is published on your Instagram account and displayed there for your contacts.
If you do not wish to allow Instagram to allocate the data collected about our website to your Instagram account, you must log out of Instagram prior to visiting our website.
For more information about this, please see the Instagram data protection policy at https://help.instagram.com/155833707900388.
Use of YouTube plug-ins
To integrate videos we use such providers as YouTube. YouTube is operated by YouTube LLC with its main business address at 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is represented by law through Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
On some of our web sites we use plug-ins from the provider YouTube. If you call up our website’s page that has such a plug-in - e.g. our media page - a connection is made to the YouTube servers and the plug-in is depicted. The YouTube server is informed about which of our pages you have visited. If you are a member of YouTube and logged in, YouTube automatically assigns this information to your personal user account. When using the plug-in, e.g. clicking the start button for a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your YouTube user account and other user accounts of YouTube LLC and Google Inc. deleting the companies’ relevant cookies before using our website.
The purpose and scope of the data collection and the ongoing processing and use of the data by YouTube as well as your rights and setting options related to this to protect your private sphere are shown in the YouTube data protection information: www.google.de/intl/de/policies/privacy/
Use of Vimeo plug-ins
To integrate videos we use such providers as Vimeo. Vimeo is operated by Vimeo, LLC with its registered office at 555 West 18th Street, New York, New York 10011.
On some of our websites we use plug-ins from the provider Vimeo. If you call up our website’s page that has such a plug-in - e.g. our media page - a connection is made to the Vimeo servers and the plug-in is depicted. The Vimeo server is informed about which of our pages you have visited. If you are a member of Vimeo and logged in, Vimeo automatically assigns this information to your personal user account. When using the plug-in, e.g. clicking the start button for a video, this information is also assigned to your user account. You can prevent this assignment by logging out of your Vimeo user account before using our website and deleting the relevant Vimeo cookies.
The purpose and scope of the data collection and the ongoing processing and use of the data by Vimeo as well as your rights and setting options related to this to protect your private sphere are shown in the Vimeo data protection information: https://vimeo.com/privacy
7. Google Maps
The website uses Google Maps, which means that map content of Google Maps can be accessed from external servers in the U.S. It should be assumed that the IP address will be stored for a period of several months.
For more information about this, please see the Google data protection policy at https://policies.google.com/privacy?hl=de&gl=de.
8. Links to other providers
Our websites may contain links to the websites of other providers. Please be advised that this Data Protection Policy applies exclusively to PEMA websites. We have no influence over, nor can we control, whether other providers comply with the applicable provisions of data protection law.
9. No data transmissions to third parties
Your data is not transmitted to third parties, unless we are legally obligated to do so or you have consented to this. Where external service providers come into contact with your personal data, we must ensure through legal, technical and organisational measures, as well as through regular controls, that such service providers comply with the provisions of data protection law.
10. Rights of the data subject
You have the following rights:
Pursuant to Article 15 GDPR, to obtain information about your personal data processed by us. In particular, you can obtain information about the purposes of the processing, the category of the personal data, the categories of recipient to whom the personal data has been or will be disclosed, the envisaged storage period, the existence of the right to rectification, erasure, restriction of processing and to object, the right to lodge a complaint and the source of your data where it is not collected by us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information about it;
Pursuant to Article 16 GDPR, to obtain without undue delay the rectification of inaccurate personal data stored by us or, where incomplete, to have it completed;
Pursuant to Article 17 GDPR, to obtain the erasure of personal data stored by us, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise or defence of legal claims;
Pursuant to Article 18 GDPR, to obtain restriction of the processing of your personal data where the accuracy of the personal data is contested by you, the processing is unlawful but you oppose their erasure, we no longer need the data but it is required by you for the establishment, exercise or defence of legal claims, or you have objected to processing pursuant to Article 21 GDPR;
Pursuant to Article 20 GDPR, to receive the personal data that you provided to us in a structured, commonly used and machine-readable format or to obtain transmission to another controller;
Pursuant to Article 7(3) GDPR, to withdraw at any time the consent that you granted to us. This means that we may no longer continue with the data processing on which such consent was based; and
Pursuant to Article 77 GDPR, to lodge a complaint with a supervisory authority. To do so, you can normally write to the supervisory authority responsible for your customary place of residence, for your workplace, or for the offices of our law firm.
11. Right to object
If your personal data is processed on the basis of legitimate interests pursuant to Article 6(1)(f) GDPR, then pursuant to Article 21 GDPR, you have the right to object to the processing of your personal data on grounds relating to your particular situation or where the objection relates to direct marketing. In the latter case, you have a general right to object, which we must implement without a particular situation needing to be specified.
If you would like to make use of your right to revoke consent or your right to object, please send an email to email@example.com.
12. Data security
During website visits, we use the widespread SSL (secure socket layer) procedure in conjunction with the highest level of encryption that your browser supports. Normally, this is 265-bit encryption. If your browser does not support 256-bit encryption, we instead employ 128-bit v3 technology. You can recognise whether individual pages on our website are transmitted in encrypted form by the locked depiction of the key or lock symbol in the lower status bar of your browser.
In addition, we make use of suitable technical and organisational security measures in order to protect your data against accidental or intentional manipulation, total or partial loss or destruction and unauthorised access by third parties. Our security measures are continuously improved in keeping with technological developments.
13. Version and amendment of this Data Protection Policy
This Data Protection Policy is currently valid in the version of May 2018.
If our website or offers on it are enhanced, or if statutory or regulatory requirements should change, it may be necessary to amend this Data Protection Policy. The current version of this Data Protection Policy can be viewed and printed out by you at any time by visiting https://www.pema.eu/datenschutz.
14. Questions, suggestions, complaints
If you have further questions about our Data Protection Policy or about the processing of your personal data, please contact our data protection officer:
Hans Joachim Metzen
Data Protection Officer
D- 53113 Bonn
Tel. +49 (0)228/ 4495 – 7413
Fax +49 (0)228/ 4495 – 7555
Do you have questions or would you like a personal consultation? Feel free to contact us! We look forward to your inquiry.CONTACT