Data Protection Statement
We are very pleased with the interest you have shown in SC Werner Seeger Qualitätsmanagement Romania SRL. The management of our company gives great importance to data protection. The use of SC Werner Seeger Qualitätsmanagement Romania SRL’s Internet pages is possible without the obligation to provide personal data. However, if a person wishes to use certain services through our website, it may be necessary to provide personal data. If the processing of these data becomes necessary and if there is no legal basis for such processing, we will seek the individual’s consent.
The processing of personal data, such as names, addresses, email addresses, or phone numbers of an interested person, will always be done in accordance with the Data Protection Regulation and in compliance with the specific national data protection provisions applicable to SC Werner Seeger Qualitätsmanagement Romania SRL. Through this data protection statement, our company aims to make public the information regarding the manner, extent, and purpose for which we collect, use, and process personal data. With this data protection statement, individuals will be informed of their rights.
SC Werner Seeger Qualitätsmanagement Romania SRL, as the entity responsible for processing personal data, has implemented numerous technical and organizational measures to ensure the most secure protection of the personal data processed via this website. However, data transmission over the Internet may have security breaches, meaning that absolute protection cannot be guaranteed. For this reason, any affected person has the option of sending personal data to us through other communication channels, such as by phone.
Terminology
SC Werner Seeger Qualitätsmanagement Romania SRL’s data protection statement includes the terminology used by the European regulations and guidelines when issuing the General Data Protection Regulation (GDPR). We want our data protection statement to be easy to read and understand by both the general public and our customers and business partners. To this end, we would like to explain a few terms upfront.
In this data protection statement, we will use, among others, the following terms:
a) Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, especially by referencing an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
b) Data subject
The data subject is the identified or identifiable natural person whose personal data is processed by the data controller.
c) Processing
Processing is any operation or set of operations performed on personal data or on sets of personal data, whether by automated means or not, such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, restriction, erasure, or destruction.
d) Restriction of processing
Restriction of processing is the marking of stored personal data to limit its future processing.
e) Profiling
Profiling is any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning the natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
f) Pseudonymization
Pseudonymization is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not attributed to an identified or identifiable natural person.
g) Controller or data controller
The controller or data controller is the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data. If the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
h) Processor
A processor is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
i) Recipient
A recipient is a natural or legal person, public authority, agency, or another body to which personal data is disclosed, whether a third party or not. However, public authorities that may receive personal data in the framework of a particular inquiry under Union or Member State law shall not be regarded as recipients.
j) Third party
A third party is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
k) Consent
Consent of the data subject is any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
Name and address of the entity responsible for processing
The entity responsible within the meaning of the Data Protection Regulation, other applicable data protection laws in the EU, and other provisions concerning data protection is:
SC Werner Seeger Qualitätsmanagement Romania SRL
Valea Argintului Nr. 151
555301 Cisnădioara/Michelsberg
Romania
Tel.: +40 (0)269 206426
E-Mail: test@seeger-quality.ro
Website: https://www.seeger-quality.ro/
Cookies
The Internet pages of SC Werner Seeger Qualitätsmanagement Romania SRL use cookies. Cookies are text files that can be stored and saved on a computer system via an Internet browser.
Many Internet sites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier for the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited Internet sites and servers to distinguish the individual’s browser from other browsers that contain different cookies. A particular Internet browser can be recognized and identified using the unique cookie ID.
By using cookies, SC Werner Seeger Qualitätsmanagement Romania SRL can provide users with more user-friendly services, which would not be possible without the use of cookies.
Through cookies, the information and offers on our website can be optimized with the user in mind. As previously mentioned, cookies allow us to recognize our website users. The purpose of this recognition is to make it easier for users to utilize our website. For example, the user of a website that uses cookies does not need to enter their access data each time they visit the site because this is handled by the website and the cookie stored on the user’s computer system. Another example is the online shopping cart. The online store remembers the items that a customer has placed in the virtual shopping cart via a cookie.
The individual concerned may, at any time, prevent the setting of cookies by our website through an appropriate setting in their Internet browser, thus permanently refusing the setting of cookies. In addition, cookies already set can be deleted at any time via an Internet browser or other software programs. This is possible in all common Internet browsers. If the individual deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable.
Recording of general data and information
With each visit to our website or by an automated system, the website of SC Werner Seeger Qualitätsmanagement Romania SRL collects a series of general data and information. These general data and information are stored in the server’s log files. The information recorded may include (1) the types and versions of browsers used, (2) the operating system used by the accessing system, (3) the website from which an accessing system arrives at our site (so-called referrer), (4) the sub-websites, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) other similar data and information that may be used in the event of attacks on our information technology systems.
When using this general data and information, SC Werner Seeger Qualitätsmanagement Romania SRL does not draw conclusions about the individual concerned. This information is primarily needed to (1) deliver the content of our website correctly, (2) optimize the content of our website and its advertising, (3) ensure the long-term functionality of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, SC Werner Seeger Qualitätsmanagement Romania SRL analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our company and ensuring an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by an individual.
Subscription to our newsletter
On the website of SC Werner Seeger Qualitätsmanagement Romania SRL, users are given the opportunity to subscribe to our company’s newsletter. The input form used for this purpose determines what personal data is transmitted and when the newsletter is ordered from the controller.
SC Werner Seeger Qualitätsmanagement Romania SRL informs its customers and business partners at regular intervals through a newsletter about the company’s offers. The company’s newsletter can only be received by the individual concerned if (1) they have a valid email address and (2) they register to receive the newsletter. A confirmation email will be sent to the email address registered for the first time for newsletter delivery, for legal reasons, in a double opt-in procedure. This confirmation email is used to prove whether the owner of the email address is authorized to receive the newsletter.
When registering for the newsletter, we also store the IP address of the computer system assigned by the Internet service provider (ISP) and used by the individual at the time of registration, as well as the date and time of registration. The collection of this data is necessary to understand the possible (mis)use of the email address of the individual concerned at a later date and thus serves the legal protection of the controller.
The personal data collected as part of a newsletter subscription will only be used to send our newsletter. In addition, subscribers may be informed via email if necessary for the newsletter service or a related registration, as could be the case in the event of modifications to the newsletter offering or technical changes. The subscription to our newsletter may be terminated by the individual concerned at any time. The consent to the storage of personal data that the individual has given for the receipt of the newsletter may be revoked at any time. A corresponding link to revoke consent can be found in each newsletter. It is also possible to unsubscribe from the newsletter at any time directly on the website of the controller or by communicating this to the controller in another way.
Newsletter tracking
The newsletters of SC Werner Seeger Qualitätsmanagement Romania SRL contain tracking pixels. A tracking pixel is a miniature graphic embedded in email messages sent in HTML format to enable log file recording and analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixels, SC Werner Seeger Qualitätsmanagement Romania SRL may see if and when an email was opened by the individual concerned and which links in the email were accessed.
Such personal data collected in the tracking pixels contained in the newsletters are stored and analyzed by the controller to optimize the sending of the newsletter and to better adapt the content of future newsletters to the interests of the individual concerned. These personal data will not be passed on to third parties. Individuals are entitled at any time to revoke their respective consent granted via the double opt-in procedure. After a revocation, these personal data will be deleted by the controller. SC Werner Seeger Qualitätsmanagement Romania SRL automatically regards a withdrawal from receiving the newsletter as a revocation.
Contact possibility via the website
The website of SC Werner Seeger Qualitätsmanagement Romania SRL contains information that enables a quick electronic contact to our company, as well as direct communication with us, which also includes a general address of electronic mail (email address). If an individual contacts the controller via email or through a contact form, the personal data transmitted by the individual is automatically stored. Such personal data voluntarily transmitted by an individual to the controller are stored for processing or contacting the individual concerned. There is no transfer of this personal data to third parties.
Routine deletion and blocking of personal data
The controller will process and store the personal data of the individual concerned only for the period necessary to achieve the purpose of storage or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or deleted in accordance with legal requirements.
Rights of the Data Subject
a) Right to Confirmation
Every data subject has the right granted by the European Data Protection Authority to request from the data controller confirmation as to whether or not personal data concerning them is being processed. Anyone wishing to exercise this right can contact an employee of the data controller at any time.
b) Right to Information
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to request, at any time, free information about their stored personal data, including a copy of this information. In addition, the European data protection regulation grants individuals the right to obtain the following information:
The data subject also has the right to be informed if personal data is transferred to a third country or an international organization. In such cases, the data subject also has the right to be informed of the appropriate safeguards related to the transfer.
If a data subject wishes to exercise the right to information, they can contact an employee of the data controller at any time.
c) Right to Rectification
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to request the immediate rectification of inaccurate personal data concerning them. Additionally, taking into account the purposes of the processing, the data subject has the right to request the completion of incomplete personal data – including by means of a supplementary statement.
If a data subject wishes to exercise this right, they can contact an employee of the data controller at any time.
d) Right to Erasure (“Right to be Forgotten”)
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to request the controller to erase personal data concerning them without undue delay if one of the following grounds applies and the processing is not necessary:
If one of the above reasons applies and a data subject wishes to request the erasure of personal data stored by SC Werner Seeger Qualitätsmanagement Romania SRL, they may contact an employee of the data controller at any time. The employee of SC Werner Seeger Qualitätsmanagement Romania SRL will ensure that the erasure request is promptly processed.
If SC Werner Seeger Qualitätsmanagement Romania SRL has made the personal data public and is obliged, pursuant to Art. 17(1) GDPR, to erase the personal data, SC Werner Seeger Qualitätsmanagement Romania SRL, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform other controllers processing the published personal data that the data subject has requested the erasure of all links to or copies or replications of the personal data. The employee of SC Werner Seeger Qualitätsmanagement Romania SRL will arrange the necessary measures on a case-by-case basis.
e) Right to Restriction of Processing
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to request the controller to restrict processing if one of the following conditions is met:
If one of the above conditions is met, and a data subject wishes to request the restriction of personal data stored by SC Werner Seeger Qualitätsmanagement Romania SRL, they can contact an employee of the data controller at any time. The employee of SC Werner Seeger Qualitätsmanagement Romania SRL will arrange the restriction of the processing.
f) Right to Data Portability
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to receive the personal data concerning them, which they have provided to a controller, in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance from the controller to whom the data was provided, as long as the processing is based on consent pursuant to Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, or on a contract pursuant to Art. 6(1)(b) GDPR, and the processing is carried out by automated means, provided that the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
In exercising the right to data portability pursuant to Art. 20(1) GDPR, the data subject also has the right to have the personal data transmitted directly from one controller to another, where technically feasible and where this does not affect the rights and freedoms of others.
To assert the right to data portability, the data subject may contact an employee of SC Werner Seeger Qualitätsmanagement Romania SRL at any time.
g) Right to Object
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority to object, on grounds relating to their particular situation, at any time to the processing of personal data concerning them which is based on Art. 6(1)(e) or (f) GDPR. This also applies to profiling based on these provisions.
SC Werner Seeger Qualitätsmanagement Romania SRL shall no longer process the personal data in the event of an objection unless we can demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject, or for the establishment, exercise, or defense of legal claims.
If SC Werner Seeger Qualitätsmanagement Romania SRL processes personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data concerning them for such marketing, which includes profiling to the extent that it is related to such direct marketing. If the data subject objects to SC Werner Seeger Qualitätsmanagement Romania SRL to the processing for direct marketing purposes, SC Werner Seeger Qualitätsmanagement Romania SRL will no longer process the personal data for these purposes.
Additionally, the data subject has the right, on grounds relating to their particular situation, to object to the processing of personal data concerning them for scientific or historical research purposes, or for statistical purposes pursuant to Art. 89(1) GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
To exercise the right to object, the data subject may contact any employee of SC Werner Seeger Qualitätsmanagement Romania SRL or another employee. In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, the data subject is free to exercise their right to object by automated means using technical specifications.
h) Automated Individual Decision-Making, Including Profiling
Every data subject whose personal data is processed has the right granted by the European Data Protection Authority not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them, as long as the decision (1) is not necessary for entering into, or the performance of, a contract between the data subject and the data controller, or (2) is not authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is not based on the data subject’s explicit consent.
If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and the controller, or (2) is based on the data subject’s explicit consent, SC Werner Seeger Qualitätsmanagement Romania SRL shall implement suitable measures to safeguard the data subject’s rights and freedoms and legitimate interests, which include, at least, the right to obtain human intervention on.
Data protection in the context of job applications and the application process
The controller collects and processes the personal data of job applicants for the purpose of processing the application procedure. The processing can also be carried out electronically. This is particularly the case when an applicant submits application documents to the controller electronically, for example by e-mail or via a form on the website. If the controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with legal requirements. If the controller does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after the rejection notification, provided that no other legitimate interests of the controller prevent such deletion. Other legitimate interests in this context may include the obligation to provide evidence in a procedure under the anti-discrimination law.
Data protection notices regarding the use of Facebook services
The controller has integrated components of the Facebook company into this website. Facebook is a social network.
A social network is an online meeting point operated on the Internet, a virtual community that generally allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for exchanging opinions and experiences or enabling the Internet community to provide personal or business information. Facebook allows social network users, among other things, to create private profiles, upload photos, and network with friends.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If individuals live outside the USA or Canada, the controller of personal data is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Whenever an individual page of this website, operated by the controller and into which a Facebook component (Facebook plug-in) has been integrated, is accessed, the Internet browser on the data subject’s system is automatically prompted by the respective Facebook component to download a display of the corresponding Facebook component. A complete overview of all Facebook plug-ins can be accessed at https://developers.facebook.com/docs/plugins/?locale=en_US. During this technical procedure, Facebook is informed about which specific subpage of our website was visited by the data subject.
If the data subject is logged in to Facebook at the same time, Facebook recognizes which specific subpage of our website the data subject visited each time it is accessed and for the entire duration of their stay on our website. This information is collected through the Facebook component and assigned by Facebook to the respective Facebook account of the data subject. If the data subject clicks on one of the Facebook buttons integrated into our website, for example, the “Like” button, or if the data subject submits a comment, Facebook assigns this information to the data subject’s personal Facebook user account and stores this personal data.
Through the Facebook component, Facebook always receives information that the data subject has visited our website, provided that the data subject is logged in to Facebook at the time of visiting our website; this occurs regardless of whether the data subject clicks on the Facebook component or not. If the data subject does not want this information to be transmitted to Facebook, they can prevent this by logging out of their Facebook account before accessing our website.
The data policy published by Facebook, available at https://www.facebook.com/about/privacy/, provides information about the collection, processing, and use of personal data by Facebook. It also explains the settings Facebook offers to protect the privacy of the data subject. In addition, various applications are available that make it possible to prevent data transmission to Facebook. Such applications can be used by the data subject to prevent the transmission of data to Facebook.
Data protection notices regarding the use of LinkedIn
The controller has integrated components of the LinkedIn Corporation into this website. LinkedIn is a social network that facilitates business connections and the establishment of new business relationships. Over 400 million registered users in more than 200 countries use LinkedIn. LinkedIn is thus currently the largest business contacts platform and one of the most visited websites in the world.
The operator of LinkedIn is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. For privacy issues outside of the USA, LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.
Each time one of our website pages that is equipped with a LinkedIn component (LinkedIn plug-in) is accessed, this component prompts the browser used by the data subject to download the corresponding display of the LinkedIn component. More information about LinkedIn plug-ins can be found at https://developer.linkedin.com/plugins. During this technical procedure, LinkedIn receives information about which specific subpages of our website were visited by the data subject.
If the data subject is logged in to LinkedIn at the same time, LinkedIn recognizes which specific subpages of our website the data subject visited each time it is accessed and for the entire duration of their stay on our website. This information is collected through the LinkedIn component and linked by LinkedIn to the respective LinkedIn account of the data subject. If the data subject clicks on a LinkedIn button integrated into our website, LinkedIn assigns this information to the personal LinkedIn account of the data subject and stores this personal data.
Through the LinkedIn component, LinkedIn always receives information that the data subject has visited our website, provided that the data subject is logged in to LinkedIn at the time of visiting our website; this occurs regardless of whether the data subject clicks on the LinkedIn component or not. If the data subject does not want this information to be transmitted to LinkedIn, they can prevent this by logging out of their LinkedIn account before accessing our website.
LinkedIn offers the option to opt-out of email, SMS, and targeted advertising at https://www.linkedin.com/psettings/guest-controls and provides controls for managing ad settings. LinkedIn also works with partners such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua, and Lotame, which may place cookies. These cookies can be rejected by visiting https://www.linkedin.com/legal/cookie-policy. The LinkedIn privacy policy is available at https://www.linkedin.com/legal/privacy-policy. The LinkedIn cookie policy is available at https://www.linkedin.com/legal/cookie-policy.
Legal basis for data processing
Article 6 I lit. RGPD provides our company with the legal basis for processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, such as when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6 I lit. b RGPD. The same applies to such processing operations as are necessary for carrying out pre-contractual measures, for example, in cases of inquiries concerning our products or services. If our company is subject to a legal obligation by which the processing of personal data is required, such as for fulfilling tax obligations, the processing is based on Article 6 I lit. c RGPD. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor in our company were injured and their name, age, health insurance data, or other vital information had to be passed on to a doctor, hospital, or other third party. Then the processing would be based on Article 6 I lit. d RGPD. Finally, processing operations could be based on Article 6 I lit. f RGPD. This legal basis is used for processing operations that are not covered by any of the aforementioned legal grounds, if processing is necessary for the legitimate interests pursued by our company or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject that require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47, Sentence 2, RGPD).
Legitimate interests pursued by the controller or a third party
Where the processing of personal data is based on Article 6 I lit. f RGPD, our legitimate interest is to carry out our business in favor of the well-being of all our employees and shareholders.
Duration of personal data storage
The criterion used to determine the period of storage of personal data is the respective statutory retention period. After the expiration of this period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment or initiation of a contract.
Provision of personal data as required by law or contract; necessity for entering into a contract; obligation of the data subject to provide personal data; possible consequences of failure to provide such data
We clarify that the provision of personal data is partly required by law (e.g., tax regulations) or can also result from contractual provisions (e.g., information on the contractual partner). Sometimes it may be necessary to conclude a contract that the data subject provides us with personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company signs a contract with them. Failure to provide the personal data would result in the contract not being able to be concluded. Before personal data is provided by the data subject, the data subject must contact any employee. The employee clarifies to the data subject whether the provision of the personal data is required by law or contract, or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data, and the consequences of non-provision of the personal data.
Existence of automated decision-making
As a responsible company, we do not use automatic decision-making or profiling.
© 2024 seeger-quality.ro Toate drepturile rezervate | Powered by WEBinIT