1. general information
The following declaration informs you about what kind of personal data is collected by us as the responsible body and for what purpose, and to what extent this data is made accessible to third parties.
1.1 Responsible body and data protection officer
ELHA-MASCHINENBAU Liemke KG
Allee 16, 33161 Hövelhof
Phone: 05257 5080
E-Mail: info@elha.de
Data protection officer
Mrs Carola Sieling
Technologiewerft GmbH
c/o law firm Sieling
Gurlittstraße 24, 20099 Hamburg
Phone: 040/24192702
E-Mail: info@technologiewerft.de
1.2 Rechtsgrundlagen der Verarbeitung Ihrer personenbezogenen Daten
The processing of personal data requires a legal basis, which we would like to present to you below.
Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis for the processing of personal data for which we obtain the consent of the data subject.
Article 6(1)(b) GDPR serves as the legal basis for the processing of personal data required for the fulfilment of a contract to which the data subject is a party. This also includes processing operations that are necessary for the performance of pre-contractual measures.
Soweit eine Verarbeitung personenbezogener Daten zur Erfüllung einer rechtlichen Verpflichtung erforderlich ist, denen unser Unternehmen unterliegt, dient Artikel 6 Absatz 1 lit. c DSGVO als Rechtsgrundlage. Ist die Verarbeitung zur Wahrung eines berechtigten Interesses unseres Unternehmens oder eines Dritten erforderlich und überwiegen die Interessen, Grundrechte und Grundfreiheiten des Betroffenen das erstgenannte Interesse nicht, so dient Artikel 6 Absatz 1 lit. f DSGVO als Rechtsgrundlage für die Verarbeitung. Das berechtigte Interesse unseres Unternehmens liegt in der Durchführung unserer Geschäftstätigkeit sowie in der Analyse, Optimierung und Erhaltung der Sicherheit unseres Onlineangebotes.
1.3 Rechte der betroffenen Person
You have a right to information about the personal data we have stored about you. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.
In accordance with the statutory provisions, you also have the right to rectification of incorrect data, restriction of processing, data portability and erasure of your personal data. To do so, please send us an e-mail with the subject "Data protection".
You also have the right to lodge a complaint with a data protection supervisory authority if you are of the opinion that the processing of your personal data violates the statutory provisions.
For reasons arising from your particular situation, you can object at any time to the processing of personal data concerning you by us, which is carried out on the basis of Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions (Art. 21 GDPR). If the legal requirements are met, we will then no longer process your personal data.
In the case of direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.
Your objection means that the personal data will no longer be processed for these purposes.
If you have given your consent, you have the right to withdraw your consent at any time. This does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.
We do not currently carry out automated decision-making, including profiling.
If you exercise one of the aforementioned rights as a data subject, we will process your personal data collected in this context in order to respond to your enquiry. Your personal data is processed to fulfil a legal obligation.
In the event of an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing of this data which override your interests, rights and freedoms or your personal data serves the establishment, exercise or defence of legal claims.
1.4 Speicherdauer der personenbezogenen Daten
Unless we have provided storage information on the specific points, the following applies: We store personal data for the duration of the respective statutory retention period or as long as the purpose of the collection exists. After the retention period has expired, the data is routinely deleted, unless there is a need to initiate or fulfil a contract. If the user's data is not deleted because it is required for other and legally permissible purposes, its processing is restricted as far as possible. Accordingly, the data will be blocked where possible and not processed for other purposes. This applies, for example, to user data that must be retained for commercial or tax law reasons.
2. contractual processing
When you enter into a contractual relationship with us or enquire about this, we generally collect the following data: Title, first and last name, e-mail address, address, telephone/mobile phone number, information necessary for the execution and initiation of the contract.
We require this data so that we can identify you as a contractual partner, fulfil the contract, contact you and for invoicing purposes. The data processing takes place at your / our request or order and is necessary for the purposes mentioned for the mutual fulfilment and obligation arising from the contractual relationship.
We may also process data on the basis of a legitimate interest, e.g. in the assertion or defence of claims arising from the contractual relationship. The personal data collected will be stored until the end of the contractual relationship and then deleted, unless we are obliged to store it for a longer period of time in accordance with legal obligations due to tax and commercial law retention and documentation obligations (from HGB, StGB or AO).
We use the data of our (future) contractual partners and employees (first name, surname and, if applicable, address) to carry out comparisons against so-called sanctions lists. Sanctions lists are centrally compiled and maintained lists of persons, associations or companies against whom state economic or legal restrictions have been imposed. Various regulations oblige us to take measures to prevent support for business partners, suppliers and also our (potential) employees if they are included on the lists. We only use the data to ensure that these persons are not included on any of the sanctions lists. We need this information in order to fulfil our legal obligations and avert possible sanctions. This is also in our legitimate interest.
3. application data
When you apply for a job with us, we receive data from you. We process the data that you have sent us in connection with your application in order to check your suitability for the position and to carry out the application process. Please note that your data will be accessible to our HR department and the relevant departments for the position to be filled. For data protection reasons, please ensure that you only provide the data required for the application. The legal basis for the processing of your personal data in application procedures is § 26 BDSG or Art. 6 para. 1 b) GDPR. Accordingly, the processing of data required in connection with the decision on the establishment of an employment relationship is permitted. Should the data be required for legal prosecution after completion of the application process, data processing may be carried out on the basis of the requirements of Art. 6 para. 1 lit. f) GDPR to safeguard legitimate interests. Our interest then lies in the assertion or defence of claims.
Applicant data will be deleted after 6 months at the latest in the event of a rejection. In the event that you have consented to your personal data being stored further, we will transfer your data to our applicant pool. There the data will be deleted after two years. If you have been accepted for a position as part of the application process, the data will be stored permanently for the purposes of the employment relationship. You can change or delete your application at any time and revoke any consent you may have given at any time.
4. data processing in the context of the website
4.1 Log files, hosting
The server statistics automatically store data that the browser transmits to us as part of our legitimate interest in analysing and for security reasons (so-called "log files"). For our website www.elha.de we have deactivated this collection of statistical data. For our website https://elha-robotic-automation.com applies:
These are the following data in detail:
- Language and version of the browser software
- Operating system used and its interface
- Referrer URL (the previously visited page)
- Host name of the accessing computer (IP address)
- Date and time of the server request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Amount of data transferred
- Access status/ HTTP status code
As a rule, we cannot assign this data to specific persons. This data is not merged with other data sources. The data is also deleted within 7 days after a statistical analysis. Data whose further retention is required for evidentiary purposes is excluded from deletion until the respective incident has been finally clarified.
We make use of hosting services. These serve to provide infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services in order to maintain the operation of this online offering.
In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online offer on the basis of our legitimate interests in the efficient and secure provision of this online offer.
4.2 Making contact
When you contact us by e-mail or via a contact form, your details will be stored by us in order to answer your questions.
Your data will not be passed on to third parties unless applicable data protection regulations justify a transfer or we are legally obliged to do so. You can revoke your consent at any time with effect for the future. In the event of cancellation, your data will be deleted immediately, unless there is a legal exception for further processing. Your data will otherwise be deleted once we have processed your enquiry or the purpose of storage no longer applies and there are no other legal exceptions to the contrary.
4.3 Cookies
Cookies are small text files that are stored on your end device and through which certain information flows to the location that sets the cookie. They are used to make the website more user-friendly and effective and/or to make it easier for you to navigate our website.
We only set cookies that are not absolutely necessary with your consent. You can revoke this consent at any time for future use.
Consent is voluntary and you can also use our website without accepting cookies. You can also configure your browser settings according to your wishes and, for example, refuse to accept third party cookies or all cookies or delete cookies that have already been saved. If you do not accept cookies, please note that our website may not function properly in this case. Unless we provide other information on the individual topics mentioned in this privacy policy or in the cookie banner, the lifespan of cookies is 24 months.
Welche Funktion auf unserer Webseite Cookies setzt, erfahren Sie bei den einzelnen Funktionsbeschreibungen in unserer Datenschutzerklärung und im CookieBanner.
4.4 Login
Our website offers a login option for our employees. When logging in, the user's IP address and the date and time of login are saved. This serves to prevent misuse of the services. The data is not passed on to third parties. An exception is made if there is a legal obligation to pass on the data.
The registration of data is necessary for the provision of content or services. The data subject can obtain information about the personal data stored about them at any time.
5. information to interested parties
If you, as our contractual partner, have concluded a contract for our services, we will offer you further information about our own similar services via the e-mail address sent to you when the contract was concluded (Section 7 III UWG). You can object to this transmission at any time.
These mailings are made on the basis of our legitimate interest in advertising.
6. disclosure of the data: General and contractual purpose
We pass on data to third parties if this is necessary for the fulfilment of the contract and / or if we are legally obliged and / or authorised to do so in individual cases. The data is typically passed on to contracted service providers, including hosting, operation, maintenance and support of IT systems, communication systems and disposal under certain circumstances. In addition, your data may also be transmitted to postal or delivery services, your bank, tax advisors/auditors and lawyers.
6.1 Use of audio - video conferencing
Among other things, we use and offer online conference tools for our communication and the organisation of online meetings. This is done on the basis of your consent to participate in online meetings and communications.
If you communicate with us via video or audio conference over the Internet, your personal data will be collected and processed by us and the provider of the conference tool.
The scope of the data also depends on the data you provide before or during participation. The following personal data is subject to processing, depending on the information you provide:
User details: first name, surname, telephone, e-mail address, password, profile picture, department
Meeting metadata: Topic, description (optional), participant LP addresses, device/hardware information
For recordings: Video, audio and presentation recordings, text file of the online meeting chat.
When dialling in with the telephone: information on the incoming and outgoing call number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be saved.
Text, audio and video data: You may have the opportunity to use the chat, question or survey functions in an online conference. In this respect, the text entries you make are processed in order to display them in the online conference and, if necessary, to log them. In order to enable the display of video and the playback of audio, the data from the microphone of your end device and from any video camera of the end device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time.
To take part in an online conference or enter the "meeting room", you must at least provide information about your name. This can always be pseudonymised.
For further information on data processing by the conference tools used, please refer to the data protection declarations of the respective tools used.
7. transfer of the data: Tools as part of the operation of the website and online services
In some cases, we use external service providers within the scope of your consent or our legitimate interests with regard to the analysis, optimisation and economic operation of the online offer. If you have given your consent for tools that are not necessary for the operation of the website, you can have these settings changed again at any time. We list our service providers below.
If your data is to be used for other purposes, we will inform you in advance and only use the data if you have expressly given your further consent to this in advance.
7.1 Google
With your consent, we use services for which Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") is responsible for the optimisation and economic operation of our online offering.
Google LLC is certified under the Data Privacy Framework and EU standard contractual clauses have been concluded, so that possible measures have been taken to ensure compliance with European data protection law.
7.1.1 Google Maps
Our website www.elha.de besitzt Inhalte von Google Maps. Dieses eingebundene Kartenmaterial möchten wir Ihnen gemäß Ihrer Einwilligung durch Anklicken der Kartedarstellung anzeigen, damit Sie die dargestellten/genannten Orte besser finden können. Bei dieser Verarbeitung erfolgt unsere Zusammenarbeit mit Google auf Grundlage eines Vertrags über die gemeinsame Verantwortlichkeit gemäß Art. 26 DSGVO, den Sie hier finden können: https://privacy.google.com/intl/de/businesses/mapscontrollerterms
By clicking on the Google map integration, the third-party provider receives the information that you have accessed the corresponding subpage of our website. In addition, the data automatically sent via your browser, such as your IP address, is transmitted to Google Maps in the USA and stored there. The provider may store this data as a user profile and use it for advertising and market research purposes. If you are logged in to Google at the same time, this data is assigned directly to your account. If you do not wish to be associated with your profile, you must log out before activating the button.
We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Google. Detailed information on the purpose and scope of data collection and its processing by Google Maps can be found in the provider's privacy policy at http://www.google.de/intl/de/policies/privacy/
7.1.2 YouTube
We use the provider YouTube, a Google service, to embed videos on our websites. These videos are stored on www.youtube.com and can be played directly from our website. YouTube uses cookies for data collection and statistical data analysis. YouTube uses cookies to collect reliable video statistics, prevent fraud and improve user-friendliness, among other things. The information generated by the cookie about your use of this website (including your IP address) is also transmitted to YouTube servers in the USA and stored there. Your IP address cannot be assigned unless you have logged in to YouTube or another Google service before accessing the page or are permanently logged in. If you do not wish this, you must log out of your YouTube account and your other Google accounts.
YouTube cookies provide us with statistical values for the retrieval of individual videos embedded in the website without any reference to the respective user.
Die eingebetteten Videos von YouTube werden im Rahmen der erlaubten Verwendung durch YouTube genutzt, welche alle Nutzer akzeptieren müssen. Falls Sie Urheberrechte verletzt sehen, melden Sie dies bitte direkt an YouTube. Wir verwenden eingebettete YouTube-Videos im erweiterten Datenschutzmodus. Das bedeutet, dass YouTube keine Cookies für einen Nutzer speichert, der eine Website mit einem eingebetteten YouTube-Videoplayer anzeigt, jedoch nicht auf das Video klickt, um die Wiedergabe zu starten. Wird auf den YouTube-Videoplayer geklickt, kann YouTube unter Umständen Cookies auf dem Computer des Nutzers speichern. Wir weisen darauf hin, dass wir als Anbieter der Seiten keine Kenntnis vom Inhalt der übermittelten Daten sowie deren Nutzung durch Youtube erhalten. Weitere Informationen zur offiziellen Datenschutz-Politik von YouTube entnehmen Sie bitte https://www.google.de/intl/de/policies/privacy/ sowie unter https://support.google.com/youtube/answer/171780?hl=de
7.2 Matomo
This website uses Matomo, an open source software for the statistical analysis of visitor access. We use Matomo in "device fingerprinting" mode (data transmission of the device you use to our web service) and with local storage on our own servers. Matomo does not use cookies in this mode. This also does not allow us to analyse the use of the websites by generating information about your user behaviour on our websites. The information sent from your device through "device fingerprinting" is not passed on to third parties. This site uses Matomo with the extension "AnonymizeIP". As a result, IP addresses are further processed in abbreviated form, so that direct personal references can be ruled out.
Informationen des Drittanbieters zum Datenschutz erhalten Sie auch unter https://matomo.org/privacy-policy/
8. data storage outside the EU/EEA
Where recognisable in the individual tool descriptions, we use tools from US third-party providers. Insofar as this is necessary for the purposes communicated, your IP address may be processed outside the European Economic Area, where a level of data protection corresponding to the European standard is not always consistently guaranteed and confirmed (e.g. by a suitable guarantee within the meaning of Art. 46 GDPR or an adequacy decision of the European Commission). It can therefore not be ruled out in particular that security authorities in a third country may gain access to your IP address without you being able to take legally effective action against this.
The IP address is transmitted to these third-party providers in accordance with Art. 49 para. 1 lit. a GDPR on the basis of your express consent given in the consent banner. This consent is voluntary. You can revoke it at any time with effect for the future. You will not suffer any disadvantages as a result.
In the opinion of some US third-party providers, a level of protection corresponding to the European standard is already guaranteed due to the conclusion of so-called standard contractual clauses and additional measures taken in accordance with the Schrems II case law. However, as the suitability of such measures to guarantee an adequate level of data protection is disputed, we have decided to transmit your IP address exclusively with your consent.
Die Zertifizierung einiger Unternehmen unter dem Data Privacy Framework (DPF) dient der Sicherstellung des Schutzniveaus und kann hier für die Unternehmen abgefragt werden: https://www.dataprivacyframework.gov/s/. Diese Zertifizierung ist als Maßnahmen zur Gewährleistung eines hinreichenden Datenschutzniveaus ausreichend.
9 Our presence in social media
You can find us under online presences within social networks and platforms. We would like to use these presences to communicate with our customers, interested parties and users active there and inform them about our services and our company in this way.
The processing of the personal data of users active there is based on our legitimate interests in communicating and providing information to and with users. If users have given their consent to data processing within the framework of the respective social platform, the processing is carried out on the basis of this consent.
If you visit one of our social media sites, we are jointly responsible with the operator of the social platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, rectification, erasure, restriction of processing, data portability and complaint, see the following point "Rights of the data subject") both against us and against the operator of the respective social platform.
We would like to point out that, despite the joint responsibility, we do not have full influence on the data processing operations of the social platform and may forward the rights request to the respective operator in order to better process the rights of the data subject. Our options generally depend on the company policy of the respective provider.
You can find our information on storage below. We have no influence on the storage period of your data that is stored by the operator of the social platform for its own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).
Depending on the social platform named below, user data processing may also take place outside the European Union. EU standard contractual clauses have been agreed with the US companies or they are certified under the Data Privacy Framework (DPF), so that we have taken possible measures to ensure compliance with European data protection law.
As a rule, user data is processed by the platforms for market research and advertising purposes. For example, user profiles can be created from the user behaviour and the resulting interests of the users. The user profiles can in turn be used, for example, to place adverts inside and outside the platforms that presumably correspond to the interests of the users. For this purpose, cookies are usually stored on the user's computer, in which the user's usage behaviour and interests are stored. Data can also be stored in the user profiles independently of the devices used by the users. This occurs in particular if the users are members of the respective platforms and are logged in to them.
For a detailed description of the respective processing and the possibilities of objection, we refer to the following linked information from the providers.
9.1 Facebook (Meta)
(Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland)
Grundlage ist eine Vereinbarung über gemeinsame Verarbeitung personenbezogener Daten: https://www.facebook.com/legal/terms/page_controller_addendum
Privacy policy: https://www.facebook.com/about/privacy/ Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com
9.2 Google / YouTube
(Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland)
Privacy policy: https://policies.google.com/privacy
Opt-Out: https://adssettings.google.com/authenticated
9.3 Instagram (Meta)
(Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland)
Datenschutzerklärung/ Opt-Out: http://instagram.com/about/legal/privacy
9.4 Twitter (X)
(Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland)
Privacy policy: https://twitter.com/de/privacy Opt-Out: https://twitter.com/personalization
9.5 LinkedIn
(LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland)
Privacy policy https://www.linkedin.com/legal/privacy-policy
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
9.6 Xing
(New Work SE, Am Strandkai 1, 20457 Hamburg)
Datenschutzerklärung/ Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung
9.7 TikTok
(TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland)
Privacy policy: https://www.tiktok.com/legal/privacy-policy-eea?lang=de
EN 
DE 
FR 
ES 
IT 
ZH