Pri­va­cy pol­i­cy

We take da­ta pro­tec­tion se­ri­ous

The pro­tec­tion of your pri­va­cy when pro­cess­ing per­son­al da­ta is an im­por­tant con­cern for us. When you vis­it our web­site, our web servers by de­fault store the IP ad­dress of your In­ter­net ser­vice provider, the web­site from which you vis­it us, the web pages you vis­it on our site, and the date and du­ra­tion of your vis­it. This in­for­ma­tion is ab­solute­ly nec­es­sary for the tech­ni­cal trans­mis­sion of the web pages and se­cure serv­er op­er­a­tion. A per­son­al­ized eval­u­a­tion of this da­ta does not take place.

If you send us da­ta via con­tact form, this da­ta will be stored on our servers. Your da­ta will on­ly be used by us to process your re­quest. Your da­ta will be treat­ed strict­ly con­fi­den­tial. Your da­ta will not be passed on to third par­ties.

Re­spon­si­ble en­ti­ty:

Gün­ter Stahl GmbH
Per­son­al- und IT-Un­ternehmens­ber­atung
Eichen­straße 12
92442 Wack­ers­dorf
Ger­many
Phone: +49 9431 5287–0
Fax: +49 9431 5287–10
E‑mail: info@ubstahl.de

Per­son­al da­ta

Per­son­al da­ta are da­ta about your per­son. This in­cludes your name, ad­dress and email ad­dress. You do not have to dis­close any per­son­al da­ta to vis­it our web­site. In some cas­es we need your name and ad­dress as well as fur­ther in­for­ma­tion to be able to of­fer you the re­quest­ed ser­vice.

The same ap­plies in the case that we sup­ply you with in­for­ma­tion ma­te­r­i­al on re­quest or when we an­swer your in­quiries. In these cas­es we will al­ways point this out to you. In ad­di­tion, we on­ly store the da­ta that you have trans­mit­ted to us au­to­mat­i­cal­ly or vol­un­tar­i­ly.

When you use one of our ser­vices, we usu­al­ly on­ly col­lect the da­ta that is nec­es­sary to pro­vide you with our ser­vice. We may ask you for ad­di­tion­al in­for­ma­tion, but this is vol­un­tary. When­ev­er we process per­son­al da­ta, we do so to pro­vide you with our ser­vice or to pur­sue our com­mer­cial ob­jec­tives.

Con­tact­ing

When con­tact­ing us (e.g. via con­tact form, email, tele­phone or via so­cial me­dia), the in­for­ma­tion of the in­quir­ing per­sons is processed to the ex­tent nec­es­sary to re­spond to the con­tact re­quests and any re­quest­ed ac­tions.

The re­sponse to the con­tact in­quiries in the con­text of con­trac­tu­al or pre-con­trac­tu­al re­la­tion­ships is car­ried out to ful­fill our con­trac­tu­al oblig­a­tions or to re­spond to (pre)contractual in­quiries and oth­er­wise on the ba­sis of le­git­i­mate in­ter­ests in re­spond­ing to the in­quiries.

  • Types of da­ta processed: in­ven­to­ry da­ta (e.g. names, ad­dress­es), con­tact da­ta (e.g. e‑mail, tele­phone num­bers), ap­pli­ca­tion doc­u­ments,  con­tent da­ta (e.g. en­tries in on­line forms).
  • Da­ta sub­jects: Com­mu­ni­ca­tion part­ners.
  • Pur­pos­es of pro­cess­ing: con­tact re­quests, ap­pli­cant man­age­ment and com­mu­ni­ca­tion.
  • Le­gal ba­sis: con­tract per­for­mance and pre-con­trac­tu­al in­quiries (Art. 6 para. 1 lit. b. GDPR), Le­git­i­mate in­ter­ests (Art. 6 para. 1 lit. f. GDPR).

Au­to­mat­i­cal­ly stored da­ta

Serv­er log files

The provider of the pages au­to­mat­i­cal­ly col­lects and stores in­for­ma­tion in so-called serv­er log files, which your brows­er au­to­mat­i­cal­ly trans­mits to us. These are:

  • Date and time of the re­quest
  • Name of the re­quest­ed file
  • Page from which the file was re­quest­ed
  • Ac­cess sta­tus (file trans­ferred, file not found, etc.)
  • Web brows­er and op­er­at­ing sys­tem used
  • Com­plete IP ad­dress of the re­quest­ing com­put­er
  • Amount of da­ta trans­ferred

This da­ta is not merged with oth­er da­ta sources. The pro­cess­ing is car­ried out in ac­cor­dance with Art. 6 para. 1 lit. f GDPR on the ba­sis of our le­git­i­mate in­ter­est in im­prov­ing the sta­bil­i­ty and func­tion­al­i­ty of our web­site.

For rea­sons of tech­ni­cal se­cu­ri­ty, in par­tic­u­lar to de­fend against at­tempt­ed at­tacks on our web serv­er, we store this da­ta for a short pe­ri­od of time. It is not pos­si­ble for us to draw con­clu­sions about in­di­vid­ual per­sons on the ba­sis of this da­ta. Af­ter sev­en days at the lat­est, the da­ta is anonymized by short­en­ing the IP ad­dress at do­main lev­el, so that it is no longer pos­si­ble to es­tab­lish a link to the in­di­vid­ual user. The da­ta is al­so processed anony­mous­ly for sta­tis­ti­cal pur­pos­es; it is not com­pared with oth­er da­ta or passed on to third par­ties, even in part.

Cook­ies

When you vis­it our web­site, we may store in­for­ma­tion on your com­put­er in the form of cook­ies. Many cook­ies con­tain a so-called cook­ie ID. A cook­ie ID is a unique iden­ti­fi­er of the cook­ie. It con­sists of a string of char­ac­ters by which In­ter­net pages and servers can be as­signed to the spe­cif­ic In­ter­net brows­er in which the cook­ie was stored. This en­ables the vis­it­ed In­ter­net pages and servers to dis­tin­guish the in­di­vid­ual brows­er of the da­ta sub­ject from oth­er In­ter­net browsers that con­tain oth­er cook­ies. A spe­cif­ic In­ter­net brows­er can be rec­og­nized and iden­ti­fied via the unique cook­ie ID.

Through the use of ses­sion cook­ies, the re­spon­si­ble par­ty can pro­vide the users of this web­site with a user-friend­ly ser­vice that would not be pos­si­ble with­out the cook­ie set­ting. With­out con­sent, we on­ly use tech­ni­cal­ly nec­es­sary cook­ies on the le­gal ba­sis of le­git­i­mate in­ter­est pur­suant to Art. 6 (1) lit. f GDPR.

We on­ly use per­son­al cook­ies to im­prove our web­site or for marketing/advertising pur­pos­es with your con­sent. On your first vis­it, you can vol­un­tar­i­ly agree to track­ing or analy­sis via the cook­ie ban­ner that ap­pears. If nec­es­sary, your da­ta will be passed on to part­ners or third-par­ty providers. On­ly if you ex­plic­it­ly agree to this will these cook­ies be stored, the le­gal ba­sis is then your con­sent in ac­cor­dance with Art. 6 para. 1 lit. a GDPR.
You can change your set­tings for the use of cook­ies at any time here:

Mato­mo (lo­cal)

This web­site us­es the open source web an­a­lyt­ics ser­vice Mato­mo. Mato­mo us­es tech­nolo­gies that en­able cross-page recog­ni­tion of the user to an­a­lyze user be­hav­ior (e.g. cook­ies or de­vice fin­ger­print­ing). The in­for­ma­tion col­lect­ed by Mato­mo about the use of this web­site is stored on our serv­er. The IP ad­dress is anonymized be­fore stor­age.

With the help of Mato­mo, we are able to col­lect and an­a­lyze da­ta about the use of our web­site by web­site vis­i­tors. This al­lows us to find out, among oth­er things, when which page views were made and from which re­gion they come. We al­so col­lect var­i­ous log files (e.g. IP ad­dress, re­fer­rer, browsers and op­er­at­ing sys­tems used) and can mea­sure whether our web­site vis­i­tors per­form cer­tain ac­tions (e.g. clicks, etc.).

The use of this analy­sis tool is based on Art. 6 para. 1 lit. f GDPR. The web­site op­er­a­tor has a le­git­i­mate in­ter­est in the anonymized analy­sis of user be­hav­ior in or­der to op­ti­mize both their web­site and ad­ver­tis­ing. In­so­far as a cor­re­spond­ing con­sent has been re­quest­ed, the pro­cess­ing is car­ried out ex­clu­sive­ly on the ba­sis of Art. 6 para. 1 lit. a GDPR and 25 para. 1 TTDSG, in­so­far as the con­sent in­cludes the stor­age of cook­ies or ac­cess to in­for­ma­tion in the user’s de­vice (e.g. de­vice fin­ger­print­ing) with­in the mean­ing of the TTDSG. The con­sent can be re­voked at any time.

We use IP anonymiza­tion for the analy­sis with Mato­mo. In this case, your IP ad­dress is short­ened be­fore analy­sis so that it can no longer be clear­ly as­signed to you.

We host Mato­mo ex­clu­sive­ly on our own servers, so that all analy­sis da­ta re­mains with us and is not passed on.

You may choose to pre­vent this web­site from ag­gre­gat­ing and an­a­lyz­ing the ac­tions you take here. Do­ing so will pro­tect your pri­va­cy, but will al­so pre­vent the own­er from learn­ing from your ac­tions and cre­at­ing a bet­ter ex­pe­ri­ence for you and oth­er users.

Ap­pli­ca­tion form: On­line ap­pli­ca­tion on the web­site https://www.ubstahl.de

What da­ta is col­lect­ed?

Gün­ter Stahl GmbH on­ly col­lects the in­for­ma­tion re­quired for an ap­pli­ca­tion process with us. If you ap­ply for a po­si­tion with us, you will be asked for cer­tain per­son­al da­ta (name, ad­dress, e‑mail). In ad­di­tion, po­si­tion-re­lat­ed ques­tions may be asked. For an ap­pli­ca­tion at our com­pa­ny, it is al­so manda­to­ry to in­clude your pro­fes­sion­al back­ground. Please note that your da­ta will not be stored anony­mous­ly, but will be ac­ces­si­ble to the HR de­part­ment and to the de­part­ments at our com­pa­ny that are rel­e­vant to the po­si­tion.

Ap­pli­ca­tion in­for­ma­tion

By sub­mit­ting your ap­pli­ca­tion, you rep­re­sent that the in­for­ma­tion you have pro­vid­ed is true and ac­cu­rate. Please note that any false state­ment or omis­sion may be grounds for re­jec­tion or sub­se­quent dis­missal. Gün­ter Stahl GmbH seeks the best ap­pli­cants re­gard­less of race, eth­nic ori­gin, gen­der, re­li­gion, ide­ol­o­gy, dis­abil­i­ty, age or sex­u­al iden­ti­ty. We do not re­quire any in­for­ma­tion from you that is not us­able un­der the Gen­er­al Equal Treat­ment Act. Please al­so do not for­ward to us any con­fi­den­tial in­ter­nal in­for­ma­tion or even trade se­crets of your for­mer or cur­rent em­ploy­er. In ad­di­tion, please do not pro­vide any un­nec­es­sary in­for­ma­tion re­gard­ing: Ill­ness­es, preg­nan­cy, eth­nic ori­gin, po­lit­i­cal views, philo­soph­i­cal or re­li­gious be­liefs, trade union mem­ber­ship, phys­i­cal or men­tal health, sex life, defam­a­to­ry or slan­der­ous in­for­ma­tion, as well as in­for­ma­tion that has noth­ing to do with the job pro­file.

Who process­es the da­ta?

The da­ta we col­lect is processed ex­clu­sive­ly in­ter­nal­ly or by con­trac­tu­al­ly as­so­ci­at­ed ser­vice providers. Per­son­al da­ta is on­ly passed on for spe­cif­ic pur­pos­es with­in the frame­work of or­der pro­cess­ing in ac­cor­dance with da­ta pro­tec­tion reg­u­la­tions to bod­ies which, for ex­am­ple, op­er­ate our servers or pro­vide cer­tain ser­vices. These bod­ies are lo­cat­ed in Ger­many and in the coun­tries of the EU and are bound by con­trac­tu­al oblig­a­tions and da­ta pro­tec­tion in­struc­tions to han­dle per­son­al da­ta in ac­cor­dance with da­ta pro­tec­tion law. The da­ta and files you pro­vide will be processed and used ex­clu­sive­ly for the pur­pose of pro­cess­ing your ap­pli­ca­tion. The da­ta and files pro­vid­ed by you may, if your ap­pli­ca­tion is suc­cess­ful, be fur­ther processed and used in an em­ploy­ment re­la­tion­ship by our client for em­ploy­ment pur­pos­es. If the ap­pli­ca­tion for a job of­fer is un­suc­cess­ful and you gave your con­sent to the stor­age of the da­ta when up­load­ing it, Gün­ter Stahl GmbH will store the trans­mit­ted da­ta and files in an ap­pli­cant data­base un­til you re­voke this con­sent, in or­der to be able to an­swer lat­er ques­tions about the ap­pli­ca­tion or to con­tin­ue to pro­pose new job of­fers that match your pro­file. If you re­voke the stor­age, the da­ta and files will be delet­ed. You have the op­tion of with­draw­ing your ap­pli­ca­tion at any time. If you with­draw your ap­pli­ca­tion, your da­ta and files will be delet­ed from the ap­pli­cant data­base im­me­di­ate­ly, sub­ject to the re­stric­tions set out be­low. Fur­ther­more, you can re­quest at any time that in­di­vid­ual da­ta or files you have sub­mit­ted to Gün­ter Stahl GmbH be delet­ed as part of the ap­pli­ca­tion process. How­ev­er, we re­serve the right to store a lim­it­ed amount of your da­ta for a lim­it­ed pe­ri­od of three months in or­der to be able to com­ply with le­gal re­quire­ments, in par­tic­u­lar oblig­a­tions to pro­vide ev­i­dence un­der the Gen­er­al Equal Treat­ment Act (AGG).

With whom do we share your per­son­al da­ta?

The in­for­ma­tion you pro­vide to us will be treat­ed con­fi­den­tial­ly and will on­ly be shared with those per­sons (in­ter­nal­ly or at our client) who are in­volved with the spe­cif­ic ap­pli­ca­tion process for which you have ap­plied. If you have giv­en us your con­sent to store your da­ta even af­ter a con­crete ap­pli­ca­tion pro­ce­dure un­til re­voked, we will con­tin­ue to match your pro­file with suit­able po­si­tions. If nec­es­sary, we will then for­ward your anonymized pro­file to in­ter­est­ed clients or con­tact you in ad­vance to de­ter­mine whether the va­can­cy is suit­able for you.

Right of ac­cess, edit­ing and dele­tion of your re­sume

Of course you have the pos­si­bil­i­ty to have your da­ta and doc­u­ments delet­ed at any time. To do so, please con­tact us via our con­tact form or send us an e‑mail to info@ubstahl.de. Please un­der­stand that, for le­gal rea­sons, it is not pos­si­ble to change or delete da­ta dur­ing an on­go­ing ap­pli­ca­tion process or for a pe­ri­od of ap­prox­i­mate­ly three months af­ter the end of an on­go­ing ap­pli­ca­tion process.

Se­cu­ri­ty

We have tak­en tech­ni­cal and ad­min­is­tra­tive se­cu­ri­ty pre­cau­tions to pro­tect your per­son­al da­ta against loss, de­struc­tion, ma­nip­u­la­tion and unau­tho­rized ac­cess. All our em­ploy­ees as well as ser­vice providers work­ing for us are bound by the ap­plic­a­ble da­ta pro­tec­tion laws.

When­ev­er we col­lect and process per­son­al da­ta, it is en­crypt­ed be­fore it is trans­mit­ted. This means that your da­ta can­not be mis­used by third par­ties. Our se­cu­ri­ty mea­sures are sub­ject to a con­tin­u­ous im­prove­ment process and our da­ta pro­tec­tion state­ments are con­stant­ly be­ing re­vised. Please make sure to read the lat­est ver­sion.

Da­ta sub­ject rights

You have a right to in­for­ma­tion, cor­rec­tion, dele­tion or re­stric­tion of the pro­cess­ing of your stored da­ta at any time, a right to ob­ject to the pro­cess­ing as well as a right to da­ta porta­bil­i­ty and to lodge a com­plaint in ac­cor­dance with the re­quire­ments of da­ta pro­tec­tion law.

Right to in­for­ma­tion:

You can re­quest in­for­ma­tion from us as to whether and to what ex­tent we process your da­ta.

Right to rec­ti­fi­ca­tion:

If we process your da­ta that is in­com­plete or in­cor­rect, you can de­mand that we cor­rect or com­plete it at any time.

Right to era­sure:

You can re­quest that we delete your da­ta if we process it un­law­ful­ly or if the pro­cess­ing dis­pro­por­tion­ate­ly in­ter­feres with your le­git­i­mate in­ter­ests in pro­tec­tion. Please note that there may be rea­sons that pre­vent im­me­di­ate dele­tion, e.g. in the case of legal­ly reg­u­lat­ed re­ten­tion oblig­a­tions.

Ir­re­spec­tive of the ex­er­cise of your right to dele­tion, we will delete your da­ta im­me­di­ate­ly and com­plete­ly, pro­vid­ed that there is no le­gal or statu­to­ry oblig­a­tion to re­tain da­ta in this re­spect.

Right to re­stric­tion of pro­cess­ing:

You may re­quest us to re­strict the pro­cess­ing of your da­ta if

  • you dis­pute the ac­cu­ra­cy of the da­ta, for a pe­ri­od of time that al­lows us to ver­i­fy the ac­cu­ra­cy of the da­ta.
  • the pro­cess­ing of the da­ta is un­law­ful, but you refuse era­sure and re­quest re­stric­tion of da­ta use in­stead,
  • we no longer need the da­ta for the in­tend­ed pur­pose, but you still need this da­ta to as­sert or de­fend le­gal claims, or
  • you have ob­ject­ed to the pro­cess­ing of the da­ta.

Right to da­ta porta­bil­i­ty:

You may re­quest that we pro­vide you with your da­ta that you have pro­vid­ed to us in a struc­tured, com­mon and ma­chine-read­able for­mat and that you may trans­fer this da­ta to an­oth­er con­troller with­out hin­drance from us, pro­vid­ed that

  • we process this da­ta on the ba­sis of a re­vo­ca­ble con­sent giv­en by you or for the per­for­mance of a con­tract be­tween us, and
  • this pro­cess­ing is car­ried out with the aid of au­to­mat­ed pro­ce­dures.

If tech­ni­cal­ly fea­si­ble, you may re­quest us to trans­fer your da­ta di­rect­ly to an­oth­er con­troller.

Right to ob­ject:

If we process your da­ta for le­git­i­mate in­ter­est, you may ob­ject to this da­ta pro­cess­ing at any time; this would al­so ap­ply to pro­fil­ing based on these pro­vi­sions. We will then no longer process your da­ta un­less we can demon­strate com­pelling le­git­i­mate grounds for the pro­cess­ing that over­ride your in­ter­ests, rights and free­doms, or the pro­cess­ing is for the as­ser­tion, ex­er­cise or de­fense of le­gal claims. You may ob­ject to the pro­cess­ing of your da­ta for the pur­pose of di­rect mar­ket­ing at any time with­out giv­ing rea­sons.

Right of com­plaint:

If you are of the opin­ion that we vi­o­late Ger­man or Eu­ro­pean da­ta pro­tec­tion law when pro­cess­ing your da­ta, please con­tact us so that we can clar­i­fy any ques­tions. Of course, you al­so have the right to con­tact the su­per­vi­so­ry au­thor­i­ty re­spon­si­ble for you, the re­spec­tive state of­fice for da­ta pro­tec­tion su­per­vi­sion.

If you wish to as­sert any of the afore­men­tioned rights against us, please con­tact our da­ta pro­tec­tion of­fi­cer. In case of doubt, we may re­quest ad­di­tion­al in­for­ma­tion to con­firm your iden­ti­ty.

Changes to this da­ta pro­tec­tion state­ment

We re­serve the right to change our pri­va­cy pol­i­cy if nec­es­sary due to new tech­nolo­gies. Please make sure that you read the lat­est ver­sion. If fun­da­men­tal changes are made to this pri­va­cy state­ment, we will an­nounce them on our web­site.

All in­ter­est­ed par­ties and vis­i­tors to our web­site can con­tact us re­gard­ing da­ta pro­tec­tion is­sues at:

Mr. Fabi­an Fromm
Project 29 GmbH & Co. KG
Os­ten­gasse 14
93047 Re­gens­burg
Ger­many
Phone: +49 941 2986930
Fax: +49 941 29869316
E‑mail: anfrage@projekt29.de
In­ter­net: www.projekt29.de

Da­ta trans­paren­cy ac­cord­ing to Art. 5, 12, 13 & 26 GDPR:

Pri­va­cy Pol­i­cy Face­book Page: https://www.facebook.com/Guenter.Stahl.GmbH

Re­spon­si­ble par­ties:

Meta Plat­forms Ire­land Lim­it­ed (here­inafter re­ferred to as “Face­book”)
4 Grand Canal Square
Grand Canal Har­bour
Dublin 2
Ire­land

and

Gün­ter Stahl GmbH
Per­son­al und Di­en­stleis­tungs GmbH
Eichen­straße 12
92442 Wack­ers­dorf
Ger­many
Phone: +49 9431 5287–0
Fax: +49 9431 5287–10
E‑mail: info@ubstahl.de

In­for­ma­tion about the Face­book page of: Gün­ter Stahl GmbH
Per­son­al- und IT-Un­ternehmens­ber­atung

We use the tech­ni­cal plat­form and ser­vices of Meta Plat­forms Ire­land Lim­it­ed for the in­for­ma­tion ser­vice of­fered here.
We would like to point out that you use this Face­book page and its func­tions on your own re­spon­si­bil­i­ty. This ap­plies in par­tic­u­lar to the use of the in­ter­ac­tive func­tions (e.g. com­ment­ing, shar­ing, rat­ing). Al­ter­na­tive­ly, you can al­so ac­cess the in­for­ma­tion of­fered via this page on our web­site at https://www.ubstahl.de/. When you vis­it our Face­book page, Face­book col­lects, among oth­er things, your IP ad­dress and oth­er in­for­ma­tion that is present on your PC in the form of cook­ies. This in­for­ma­tion is used to pro­vide us, as op­er­a­tors of the Face­book pages, with sta­tis­ti­cal in­for­ma­tion about the use of the Face­book page. Face­book pro­vides more de­tailed in­for­ma­tion on this at the fol­low­ing link: http://de-de.facebook.com/help/pages/insights.

The da­ta col­lect­ed about you in this con­text is processed by Face­book Ltd. and may be trans­ferred to coun­tries out­side the Eu­ro­pean Union in the process. Face­book de­scribes in gen­er­al terms what in­for­ma­tion it re­ceives and how it is used in its da­ta us­age guide­lines. There you will al­so find in­for­ma­tion on how to con­tact Face­book and on the set­tings op­tions for ad­ver­tise­ments.

The da­ta us­age guide­lines are avail­able at the fol­low­ing link:

http://de-de.facebook.com/about/privacy

Facebook’s full da­ta poli­cies can be found here (lo­gin re­quired):

https://de-de.facebook.com/full_data_use_policy

In what way Face­book us­es da­ta from vis­its to Face­book pages for its own pur­pos­es, to what ex­tent ac­tiv­i­ties on the Face­book page are as­signed to in­di­vid­ual users, how long Face­book stores this da­ta and whether da­ta from a vis­it to the Face­book page is passed on to third par­ties, is not con­clu­sive­ly and clear­ly stat­ed by Face­book and is not known to us.

When you ac­cess a Face­book page, the IP ad­dress as­signed to your de­vice is trans­mit­ted to Face­book. Ac­cord­ing to Face­book, this IP ad­dress is anonymized (for “Ger­man” IP ad­dress­es). Face­book al­so stores in­for­ma­tion about the de­vices of its users (e.g. as part of the “lo­gin no­ti­fi­ca­tion” func­tion); this may en­able Face­book to as­sign IP ad­dress­es to in­di­vid­ual users.

If you are cur­rent­ly logged in to Face­book as a user, a cook­ie with your Face­book ID is lo­cat­ed on your de­vice. This en­ables Face­book to track that you have vis­it­ed this page and how you have used it. This al­so ap­plies to all oth­er Face­book pages. Via Face­book but­tons em­bed­ded in web­sites, it is pos­si­ble for Face­book to record your vis­its to these web­site pages and as­sign them to your Face­book pro­file. Based on this da­ta, con­tent or ad­ver­tis­ing can be of­fered tai­lored to you.

If you want to avoid this, you should log out of Face­book or de­ac­ti­vate the “stay logged in” func­tion, delete the cook­ies present on your de­vice and ex­it and restart your brows­er. In this way, Face­book in­for­ma­tion through which you can be di­rect­ly iden­ti­fied will be delet­ed. This will al­low you to use our Face­book page with­out re­veal­ing your Face­book iden­ti­fi­er. When you ac­cess in­ter­ac­tive fea­tures of the page (like, com­ment, share, mes­sage, etc.), a Face­book lo­gin screen will ap­pear. Af­ter any lo­gin, you will again be rec­og­niz­able to Face­book as a spe­cif­ic user.

In­for­ma­tion on how to man­age or delete in­for­ma­tion about you can be found on the fol­low­ing Face­book sup­port pages: https://de-de.facebook.com/about/privacy#.

As the provider of the in­for­ma­tion ser­vice, we do not col­lect or process any oth­er da­ta from your use of our ser­vice.

You can find this da­ta pro­tec­tion de­c­la­ra­tion in the cur­rent­ly valid ver­sion un­der the item “Da­ta pro­tec­tion” on our Face­book page.

If you have any ques­tions about our in­for­ma­tion ser­vice, you can con­tact us at info@ubstahl.de.

The shared re­spon­si­bil­i­ty agree­ment pur­suant to Art. 26 GDPR (as of 21.8.2020) with Face­book can be found at:

https://www.facebook.com/legal/controller_addendum

Da­ta sub­ject rights of the users

Un­for­tu­nate­ly, I/we can­not ful­fill our in­for­ma­tion oblig­a­tions ac­cord­ing to Art. 13 GDPR, as on­ly Face­book has full ac­cess to user da­ta. If you wish to ex­er­cise your da­ta sub­ject rights, please con­tact Face­book di­rect­ly here. These rights in­clude the fol­low­ing:

Right of ac­cess:

You can re­quest in­for­ma­tion from us as to whether and to what ex­tent we process your da­ta.

Right to rec­ti­fi­ca­tion:

If we process your da­ta that is in­com­plete or in­cor­rect, you can re­quest that we cor­rect or com­plete it at any time.

Right to era­sure:

You may re­quest that we delete your da­ta if we process it un­law­ful­ly or if the pro­cess­ing dis­pro­por­tion­ate­ly in­ter­feres with your le­git­i­mate in­ter­ests in pro­tec­tion. Please note that there may be rea­sons that pre­vent im­me­di­ate dele­tion, e.g. in the case of legal­ly reg­u­lat­ed re­ten­tion oblig­a­tions.

Ir­re­spec­tive of the ex­er­cise of your right to dele­tion, we will delete your da­ta im­me­di­ate­ly and com­plete­ly, pro­vid­ed that there is no le­gal or statu­to­ry oblig­a­tion to re­tain da­ta in this re­spect.

Right to re­stric­tion of pro­cess­ing:

You may re­quest us to re­strict the pro­cess­ing of your da­ta if

  • you dis­pute the ac­cu­ra­cy of the da­ta, for a pe­ri­od of time that al­lows us to ver­i­fy the ac­cu­ra­cy of the da­ta.
  • the pro­cess­ing of the da­ta is un­law­ful, but you refuse era­sure and re­quest re­stric­tion of da­ta use in­stead,
  • we no longer need the da­ta for the in­tend­ed pur­pose, but you still need this da­ta to as­sert or de­fend le­gal claims, or
  • you have ob­ject­ed to the pro­cess­ing of the da­ta.

Right to da­ta porta­bil­i­ty:

You may re­quest that we pro­vide you with your da­ta that you have pro­vid­ed to us in a struc­tured, com­mon and ma­chine-read­able for­mat and that you may trans­fer this da­ta to an­oth­er con­troller with­out hin­drance from us, pro­vid­ed that

  • we process this da­ta on the ba­sis of a re­vo­ca­ble con­sent giv­en by you or for the per­for­mance of a con­tract be­tween us, and
  • this pro­cess­ing is car­ried out with the aid of au­to­mat­ed pro­ce­dures.

If tech­ni­cal­ly fea­si­ble, you may re­quest us to trans­fer your da­ta di­rect­ly to an­oth­er con­troller.

Right to ob­ject:

If we process your da­ta for le­git­i­mate in­ter­est, you may ob­ject to this da­ta pro­cess­ing at any time; this would al­so ap­ply to pro­fil­ing based on these pro­vi­sions. We will then no longer process your da­ta un­less we can demon­strate com­pelling le­git­i­mate grounds for the pro­cess­ing that over­ride your in­ter­ests, rights and free­doms, or the pro­cess­ing is for the as­ser­tion, ex­er­cise or de­fense of le­gal claims. You may ob­ject to the pro­cess­ing of your da­ta for the pur­pose of di­rect mar­ket­ing at any time with­out giv­ing rea­sons.

Right of com­plaint:

If you are of the opin­ion that we vi­o­late Ger­man or Eu­ro­pean da­ta pro­tec­tion law when pro­cess­ing your da­ta, please con­tact us to clar­i­fy any ques­tions. Of course, you al­so have the right to con­tact the su­per­vi­so­ry au­thor­i­ty re­spon­si­ble for you, the re­spec­tive state of­fice for da­ta pro­tec­tion su­per­vi­sion.

If you wish to as­sert any of the afore­men­tioned rights against us, please con­tact our da­ta pro­tec­tion of­fi­cer. In case of doubt, we may re­quest ad­di­tion­al in­for­ma­tion to con­firm your iden­ti­ty.

Meta Plat­forms Ire­land is sole­ly re­spon­si­ble for im­ple­ment­ing these rights un­der Ar­ti­cles 15–20 of the GDPR with re­spect to da­ta stored by Meta Plat­forms Ire­land af­ter joint pro­cess­ing. You al­so have a right of ob­jec­tion and right of com­plaint, as de­scribed here­in, against us.

If you re­quire as­sis­tance in this re­gard or have any oth­er ques­tions, please feel free to con­tact us by email at info@ubstahl.de.

If you no longer wish to have the da­ta pro­cess­ing de­scribed here in the fu­ture, please can­cel the con­nec­tion of your user pro­file to our site by us­ing the func­tions “I no longer like this page” and/or “Do not sub­scribe to this page”.

If you have any ques­tions about da­ta pro­tec­tion, you are al­so wel­come to con­tact our da­ta pro­tec­tion of­fi­cer at:

Mr Fabi­an Fromm
Project 29 GmbH & Co. KG
Os­ten­gasse 14
93047 Re­gens­burg
Ger­many
Phone: +49 941–2986930
Email: anfrage@projekt29.de

Gen­er­al in­for­ma­tion oblig­a­tions ac­cord­ing to Art. 13 GDPR

The pro­tec­tion of your per­son­al da­ta is of par­tic­u­lar con­cern to us. We there­fore process your per­son­al da­ta (in short “da­ta”) ex­clu­sive­ly on the ba­sis of the statu­to­ry pro­vi­sions. With this da­ta pro­tec­tion de­c­la­ra­tion, we want to in­form you about the pro­cess­ing of your da­ta in our com­pa­ny and the da­ta pro­tec­tion claims and rights to which you are en­ti­tled com­pre­hen­sive­ly ac­cord­ing to Art. 13 of the Gen­er­al Da­ta Pro­tec­tion Reg­u­la­tion (GDPR).

1. Who is re­spon­si­ble for da­ta pro­cess­ing and whom can you con­tact?

Re­spon­si­ble is

Gün­ter Stahl GmbH
Per­son­al- und IT-Un­ternehmens­ber­atung
Eichen­straße 12
92442 Wack­ers­dorf
Ger­many
Phone: +49 9431 5287–0
Fax: +49 9431 5287–10
E‑mail: info@ubstahl.de

The com­pa­ny da­ta pro­tec­tion of­fi­cer is

Fabi­an Fromm
Project 29 GmbH & Co. KG
Os­ten­gasse 14
93047 Re­gens­burg
Ger­many
Phone: +49 941–2986930
E‑mail: anfrage@projekt29.de

2. Which da­ta are processed and from which sources do these da­ta orig­i­nate?

We process the da­ta that we have re­ceived from you in the con­text of con­tract ini­ti­a­tion or pro­cess­ing, based on con­sent.

Per­son­al da­ta in­cludes:

Your master/contact da­ta, for cus­tomers, in­ter­est­ed par­ties, ap­pli­cants, this in­cludes e.g. first and last name, ad­dress, con­tact da­ta (e‑mail ad­dress, tele­phone num­ber, fax), ap­pli­ca­tion doc­u­ments, health da­ta, bank da­ta.

In the case of busi­ness part­ners, this in­cludes, for ex­am­ple, the des­ig­na­tion of their le­gal rep­re­sen­ta­tives, com­pa­ny, com­mer­cial reg­is­ter num­ber, VAT reg­is­tra­tion num­ber, com­pa­ny num­ber, ad­dress, con­tact per­son con­tact da­ta (e‑mail ad­dress, tele­phone num­ber, fax), bank da­ta.

In ad­di­tion, we al­so process the fol­low­ing oth­er per­son­al da­ta:

  • In­for­ma­tion on the type and con­tent of con­tract da­ta, or­der da­ta, sales and doc­u­ment da­ta, cus­tomer and sup­pli­er his­to­ry and con­sult­ing doc­u­ments,
  • ad­ver­tis­ing and sales da­ta,
  • in­for­ma­tion from your elec­tron­ic deal­ings with us (e.g. IP ad­dress, log-in da­ta),
  • oth­er da­ta that we have re­ceived from you in the course of our busi­ness re­la­tion­ship (e.g. in cus­tomer meet­ings),
  • da­ta that we gen­er­ate our­selves from mas­ter / con­tact da­ta and oth­er da­ta, e.g. by means of cus­tomer de­mand and cus­tomer po­ten­tial analy­ses,
  • doc­u­men­ta­tion of your de­c­la­ra­tion of con­sent to re­ceive e.g. newslet­ters.

3. For what pur­pos­es and on what le­gal ba­sis is the da­ta processed?

We process your da­ta in ac­cor­dance with the pro­vi­sions of the Gen­er­al Da­ta Pro­tec­tion Reg­u­la­tion (GDPR) and the Fed­er­al Da­ta Pro­tec­tion Act 2018, as amend­ed:

  • for the ful­fill­ment of (pre-)contractual oblig­a­tions (Art 6 para. 1 lit.b GDPR):
  • Your da­ta will be processed on­line or at our lo­ca­tion in Wack­ers­dorf for the pur­pose of con­tract pro­cess­ing. In par­tic­u­lar, the da­ta is processed when ini­ti­at­ing busi­ness and ex­e­cut­ing con­tracts with you.
  • For the ful­fill­ment of le­gal oblig­a­tions (Art 6 para. 1 lit.c GDPR):
  • Pro­cess­ing of your da­ta is nec­es­sary for the pur­pose of ful­fill­ing var­i­ous le­gal oblig­a­tions, e.g. from the Ger­man Com­mer­cial Code or the Ger­man Fis­cal Code.
    For the pro­tec­tion of le­git­i­mate in­ter­ests (Art 6 para. 1 lit.f GDPR):
  • Based on a bal­anc­ing of in­ter­ests, da­ta pro­cess­ing may be car­ried out be­yond the ac­tu­al ful­fill­ment of the con­tract to safe­guard le­git­i­mate in­ter­ests of us or third par­ties. Da­ta pro­cess­ing for the pro­tec­tion of le­git­i­mate in­ter­ests oc­curs, for ex­am­ple, in the fol­low­ing cas­es:

- Ad­ver­tis­ing or mar­ket­ing (see No. 4)
— Mea­sures for busi­ness man­age­ment and fur­ther de­vel­op­ment of ser­vices
— Main­te­nance of an in­ter­nal cus­tomer data­base to im­prove cus­tomer ser­vice
— in the con­text of le­gal pros­e­cu­tion

  • with­in the scope of your con­sent (Art 6 para. 1 lit. a GDPR):
    If you have giv­en us con­sent to process your da­ta

4. Pro­cess­ing of per­son­al da­ta for ad­ver­tis­ing pur­pos­es

You can ob­ject to the use of your per­son­al da­ta for ad­ver­tis­ing pur­pos­es at any time, ei­ther in whole or for in­di­vid­ual mea­sures, with­out in­cur­ring any costs oth­er than the trans­mis­sion costs ac­cord­ing to the ba­sic rates.

We are en­ti­tled, un­der the le­gal con­di­tions of § 7 para.3 UWG, to use the e‑mail ad­dress you pro­vid­ed when con­clud­ing the con­tract for di­rect ad­ver­tis­ing for our own sim­i­lar ser­vices. You will re­ceive these rec­om­men­da­tions from us re­gard­less of whether you have sub­scribed to a newslet­ter.

If you do not wish to re­ceive such rec­om­men­da­tions from us by e‑mail, you can ob­ject to the use of your ad­dress for this pur­pose at any time with­out in­cur­ring any costs oth­er than the trans­mis­sion costs ac­cord­ing to the prime rates. A mes­sage in text form is suf­fi­cient for this pur­pose. Of course, an un­sub­scribe link is al­ways in­clud­ed in every e‑mail.

5. Who re­ceives my da­ta?

If we use a ser­vice provider in the sense of com­mis­sioned pro­cess­ing, we still re­main re­spon­si­ble for the pro­tec­tion of your da­ta. All com­mis­sioned proces­sors are con­trac­tu­al­ly ob­lig­at­ed to treat your da­ta con­fi­den­tial­ly and to process it on­ly in the con­text of pro­vid­ing the ser­vice. The proces­sors we com­mis­sion re­ceive your da­ta in­so­far as they re­quire the da­ta to ful­fill their re­spec­tive ser­vice. These are, for ex­am­ple, IT ser­vice providers that we re­quire for the op­er­a­tion and se­cu­ri­ty of our IT sys­tem as well as ad­ver­tis­ing and ad­dress pub­lish­ers for our own ad­ver­tis­ing cam­paigns.

Your da­ta is processed in our cus­tomer data­base. The cus­tomer data­base sup­ports the en­hance­ment of the da­ta qual­i­ty of the ex­ist­ing cus­tomer da­ta (du­pli­cate cleans­ing, moved/deceased in­di­ca­tors, ad­dress cor­rec­tion), and en­ables the en­rich­ment with da­ta from pub­lic sources.

In the event of a le­gal oblig­a­tion and in the con­text of le­gal pros­e­cu­tion, au­thor­i­ties and courts as well as ex­ter­nal au­di­tors may be re­cip­i­ents of your da­ta.

In ad­di­tion, for the pur­pose of con­tract ini­ti­a­tion and ful­fill­ment, in­sur­ance com­pa­nies, banks, cred­it agen­cies and ser­vice providers may be re­cip­i­ents of your da­ta.

6. How long will my da­ta be stored?

We process your da­ta un­til the ter­mi­na­tion of the busi­ness re­la­tion­ship or un­til the ex­piry of the ap­plic­a­ble statu­to­ry re­ten­tion pe­ri­ods (such as from the Com­mer­cial Code, the Fis­cal Code); in ad­di­tion, un­til the ter­mi­na­tion of any le­gal dis­putes in which the da­ta is re­quired as ev­i­dence.

7. Will per­son­al da­ta be trans­ferred to a third coun­try?

In prin­ci­ple, we do not trans­fer any da­ta to a third coun­try. A trans­fer takes place in in­di­vid­ual cas­es on­ly on the ba­sis of an ad­e­qua­cy de­ci­sion of the Eu­ro­pean Com­mis­sion, stan­dard con­trac­tu­al claus­es, ap­pro­pri­ate guar­an­tees or your ex­press con­sent.

8. What da­ta pro­tec­tion rights do I have?

You have the right to in­for­ma­tion, cor­rec­tion, dele­tion or re­stric­tion of the pro­cess­ing of your stored da­ta at any time, the right to ob­ject to the pro­cess­ing as well as the right to da­ta porta­bil­i­ty and to lodge a com­plaint in ac­cor­dance with the re­quire­ments of da­ta pro­tec­tion law.

Right to in­for­ma­tion:
You can re­quest in­for­ma­tion from us as to whether and to what ex­tent we process your da­ta.

Right to rec­ti­fi­ca­tion:
If we process your da­ta that is in­com­plete or in­cor­rect, you can re­quest that we cor­rect or com­plete it at any time.

Right to era­sure:
You may re­quest that we delete your da­ta if we process it un­law­ful­ly or if the pro­cess­ing dis­pro­por­tion­ate­ly in­ter­feres with your le­git­i­mate in­ter­ests in pro­tec­tion. Please note that there may be rea­sons that pre­vent im­me­di­ate dele­tion, e.g. in the case of legal­ly reg­u­lat­ed re­ten­tion oblig­a­tions.

Ir­re­spec­tive of the ex­er­cise of your right to dele­tion, we will delete your da­ta im­me­di­ate­ly and com­plete­ly, pro­vid­ed that there is no le­gal or statu­to­ry oblig­a­tion to re­tain da­ta in this re­spect.

Right to re­stric­tion of pro­cess­ing:
You may re­quest us to re­strict the pro­cess­ing of your da­ta if

  • you dis­pute the ac­cu­ra­cy of the da­ta, for a pe­ri­od of time that al­lows us to ver­i­fy the ac­cu­ra­cy of the da­ta.
  • the pro­cess­ing of the da­ta is un­law­ful, but you refuse era­sure and re­quest re­stric­tion of da­ta use in­stead,
  • we no longer need the da­ta for the in­tend­ed pur­pose, but you still need this da­ta to as­sert or de­fend le­gal claims, or
  • you have ob­ject­ed to the pro­cess­ing of the da­ta.

Right to da­ta porta­bil­i­ty:
You may re­quest that we pro­vide you with your da­ta that you have pro­vid­ed to us in a struc­tured, com­mon and ma­chine-read­able for­mat and that you may trans­fer this da­ta to an­oth­er con­troller with­out hin­drance from us, pro­vid­ed that

  • we process this da­ta on the ba­sis of a re­vo­ca­ble con­sent giv­en by you or for the per­for­mance of a con­tract be­tween us, and
  • this pro­cess­ing is car­ried out with the aid of au­to­mat­ed pro­ce­dures.

If tech­ni­cal­ly fea­si­ble, you may re­quest us to trans­fer your da­ta di­rect­ly to an­oth­er con­troller.

Right to ob­ject:
If we process your da­ta for le­git­i­mate in­ter­est, you may ob­ject to this da­ta pro­cess­ing at any time; this would al­so ap­ply to pro­fil­ing based on these pro­vi­sions. We will then no longer process your da­ta un­less we can demon­strate com­pelling le­git­i­mate grounds for the pro­cess­ing that over­ride your in­ter­ests, rights and free­doms, or the pro­cess­ing is for the as­ser­tion, ex­er­cise or de­fense of le­gal claims. You may ob­ject to the pro­cess­ing of your da­ta for the pur­pose of di­rect mar­ket­ing at any time with­out giv­ing rea­sons.

Right of com­plaint:
If you are of the opin­ion that we vi­o­late Ger­man or Eu­ro­pean da­ta pro­tec­tion law when pro­cess­ing your da­ta, please con­tact us to clar­i­fy any ques­tions. Of course, you al­so have the right to con­tact the su­per­vi­so­ry au­thor­i­ty re­spon­si­ble for you, the re­spec­tive state of­fice for da­ta pro­tec­tion su­per­vi­sion.

If you wish to as­sert any of the afore­men­tioned rights against us, please con­tact our da­ta pro­tec­tion of­fi­cer. In case of doubt, we may re­quest ad­di­tion­al in­for­ma­tion to con­firm your iden­ti­ty.

9. Am i oblig­ed to pro­vide da­ta?

The pro­cess­ing of your da­ta is nec­es­sary for the con­clu­sion or ful­fill­ment of your con­tract with us. If you do not pro­vide us with this da­ta, we will usu­al­ly have to refuse to con­clude the con­tract or will no longer be able to per­form an ex­ist­ing con­tract and con­se­quent­ly have to ter­mi­nate it. How­ev­er, you are not oblig­ed to give your con­sent to da­ta pro­cess­ing with re­gard to da­ta that is not rel­e­vant for the ful­fill­ment of the con­tract or that is not re­quired by law.

Ap­pli­cant man­age­ment In­for­ma­tion re­quire­ments ac­cord­ing to Art. 13

In the em­ploy­ment re­la­tion­ship, per­son­al da­ta is col­lect­ed from you. There­fore, due to the new reg­u­la­tions in the Gen­er­al Da­ta Pro­tec­tion Reg­u­la­tion (GDPR), we are oblig­ed to in­form you in ac­cor­dance with Art. 13 ff. GDPR to in­form you about the fol­low­ing:

Your em­ploy­er is re­spon­si­ble for the col­lec­tion and pro­cess­ing of your da­ta:

Gün­ter Stahl GmbH
Per­son­al- und IT-Un­ternehmens­ber­atung
Eichen­straße 12
92442 Wack­ers­dorf
Ger­many
Tele­phone: +49 9431 5287–0
Fax: +49 9431 5287–10
E‑mail: info@ubstahl.de

The con­tact de­tails of our da­ta pro­tec­tion of­fi­cer are:

Fabi­an Fromm
Project 29 GmbH & Co. KG
Os­ten­gasse 14
93047 Re­gens­burg
Ger­many
Phone: +49 941–2986930
Email: anfrage@projekt29.de

Your da­ta will be col­lect­ed and processed as part of the re­cruit­ment process or to im­ple­ment the em­ploy­ment re­la­tion­ship.

The re­quired da­ta in­cludes, in par­tic­u­lar, your mas­ter da­ta (es­pe­cial­ly first and last name, name af­fix­es, na­tion­al­i­ty), your con­tact da­ta (es­pe­cial­ly pri­vate ad­dress, mo­bile and land­line num­ber, e‑mail ad­dress), oth­er da­ta from the em­ploy­ment re­la­tion­ship, such as time record­ing da­ta, va­ca­tion pe­ri­ods, pe­ri­ods of in­ca­pac­i­ty to work, so­cial da­ta, bank de­tails, so­cial in­sur­ance num­ber, pen­sion in­sur­ance num­ber, salary da­ta, tax iden­ti­fi­ca­tion num­ber, spe­cial health da­ta and, if ap­plic­a­ble, crim­i­nal records) as well as log da­ta that ac­crue when us­ing the IT sys­tems.

Your per­son­al da­ta is main­ly col­lect­ed di­rect­ly from you. How­ev­er, due to le­gal reg­u­la­tions, your da­ta is al­so some­times col­lect­ed from oth­er of­fices, such as the tax of­fice for oc­ca­sion-re­lat­ed queries of tax-rel­e­vant in­for­ma­tion, the health in­sur­ance com­pa­ny for in­for­ma­tion on pe­ri­ods of in­ca­pac­i­ty for work or, if ap­plic­a­ble, from oth­er third par­ties, such as an em­ploy­ment agency or from pub­licly ac­ces­si­ble sources (e.g. pro­fes­sion­al net­works).

With­in our com­pa­ny, your per­son­al da­ta will be dis­closed on­ly to those per­sons who need it to ful­fill our con­trac­tu­al and le­gal oblig­a­tions, such as the hu­man re­sources de­part­ment, the ac­count­ing de­part­ment or the spe­cial­ist de­part­ment.

If we use ser­vice providers to ful­fill our con­trac­tu­al and le­gal oblig­a­tions, they al­so re­ceive the re­quired da­ta. These are, for ex­am­ple, the fol­low­ing ser­vice providers: IT com­pa­nies, soft­ware com­pa­nies, waste dis­pos­al ser­vice providers.

Out­side of the com­pa­ny, we trans­mit your da­ta to oth­er re­cip­i­ents, in­so­far as this is nec­es­sary for the ful­fill­ment of our con­trac­tu­al and le­gal oblig­a­tions. These are in par­tic­u­lar the so­cial in­sur­ance in­sti­tu­tions, the health in­sur­ance fund, the pen­sion in­sur­ance fund, pro­fes­sion­al pen­sion in­sti­tu­tions, the em­ploy­ment agency, the em­ploy­ers’ li­a­bil­i­ty in­sur­ance as­so­ci­a­tion, the tax au­thor­i­ties, ac­ci­dent and li­a­bil­i­ty in­sur­ers, courts, banks, com­pe­tent bod­ies in or­der to be able to guar­an­tee claims from the com­pa­ny pen­sion scheme or cap­i­tal-form­ing ben­e­fits, third-par­ty debtors in the case of wage and salary gar­nish­ments or in­sol­ven­cy ad­min­is­tra­tors in the case of pri­vate in­sol­ven­cy.

Your da­ta will not be trans­ferred to a third coun­try.

We process your per­son­al da­ta in com­pli­ance with all rel­e­vant laws, such as the GDPR, the Fed­er­al Da­ta Pro­tec­tion Act (BDSG), the TTDSG, the Work­ing Hours Act, etc.

Pri­mar­i­ly, the da­ta pro­cess­ing serves the pur­pose of es­tab­lish­ing, im­ple­ment­ing and ter­mi­nat­ing the em­ploy­ment re­la­tion­ship. The rel­e­vant le­gal ba­sis for this is Art. 6 para. 1 b) GDPR in con­junc­tion with. § Sec­tion 26 (1) BDSG. In ad­di­tion, col­lec­tive agree­ments and col­lec­tive bar­gain­ing pro­vi­sions pur­suant to Art. 6 (1) b) in con­junc­tion with Art. 88 (1) GDPR may ap­ply. Art. 88 para. 1 GDPR in con­junc­tion with. § 26 para. 4 BDSG as well as, if ap­plic­a­ble, your sep­a­rate con­sents pur­suant to Art. 6 para. 1 a), 7 GDPR in con­junc­tion with. § 26 para. 2 BDSG (e.g. in the case of video record­ings) may be used as a da­ta pro­tec­tion per­mis­sion pro­vi­sion.

We al­so process your da­ta in or­der to be able to ful­fill our le­gal oblig­a­tions as an em­ploy­er, in par­tic­u­lar in the area of tax and so­cial se­cu­ri­ty law. This is done on the ba­sis of Art. 6 (1) c) GDPR in con­junc­tion with § 26 BDSG.

Where nec­es­sary, we al­so process your da­ta on the ba­sis of Art. 6 (1) f) GDPR in or­der to pro­tect le­git­i­mate in­ter­ests of us or of third par­ties (e.g. au­thor­i­ties). This ap­plies in par­tic­u­lar to the in­ves­ti­ga­tion of crim­i­nal of­fences (le­gal ba­sis § 26 para. 1 p. 2 BDSG) or for ad­min­is­tra­tive pur­pos­es.

In­so­far as spe­cial cat­e­gories of per­son­al da­ta are processed pur­suant to Art. 9 (1) GDPR, this serves the ex­er­cise of rights or the ful­fill­ment of le­gal oblig­a­tions aris­ing from la­bor law, so­cial se­cu­ri­ty law and so­cial pro­tec­tion with­in the frame­work of the em­ploy­ment re­la­tion­ship (e.g. dis­clo­sure of health da­ta to the health in­sur­ance fund, record­ing of se­vere dis­abil­i­ty due to ad­di­tion­al leave and de­ter­mi­na­tion of the se­vere dis­abil­i­ty levy). This is done on the ba­sis of Art. 9 para. 2 b) GDPR in con­junc­tion with. § 26 (3) BDSG. In ad­di­tion, the pro­cess­ing of health da­ta for the as­sess­ment of your abil­i­ty to work pur­suant to Art. 9 para. 2 h) in con­junc­tion with. § 22 para. 1 b) BDSG may be nec­es­sary.

In ad­di­tion, the pro­cess­ing of spe­cial cat­e­gories of per­son­al da­ta may be based on con­sent pur­suant to Art. 9 (2) a) GDPR in con­junc­tion with. § 26 (2) BDSG (e.g. oc­cu­pa­tion­al health man­age­ment).

If we want to process your per­son­al da­ta for a pur­pose not men­tioned above, we will in­form you in ad­vance.

If your job ap­pli­ca­tion is re­ject­ed, the da­ta you sub­mit­ted will be delet­ed six months af­ter no­ti­fi­ca­tion of the re­jec­tion. This does not ap­ply if longer stor­age is nec­es­sary due to le­gal re­quire­ments (for ex­am­ple, the du­ty of proof un­der the Gen­er­al Equal Treat­ment Act) or if you have ex­press­ly con­sent­ed to longer stor­age in our data­base of in­ter­est­ed par­ties.

The stor­age pe­ri­od of the col­lect­ed da­ta is lim­it­ed to the em­ploy­ment re­la­tion­ship. We delete your per­son­al da­ta as soon as they are no longer re­quired for the above-men­tioned pur­pos­es. Af­ter ter­mi­na­tion of the em­ploy­ment re­la­tion­ship, the da­ta will be stored and then delet­ed in ac­cor­dance with the statu­to­ry or of­fi­cial re­ten­tion pe­ri­ods, which re­sult, among oth­er things, from the Ger­man Com­mer­cial Code and the Ger­man Fis­cal Code. The stor­age pe­ri­ods there­after amount to up to ten years. In ad­di­tion, per­son­al da­ta may be stored for the statu­to­ry lim­i­ta­tion pe­ri­od of three or up to 30 years if claims can be as­sert­ed against us.

You have the right to in­for­ma­tion from the em­ploy­er about the da­ta stored about you. Un­der cer­tain con­di­tions, you can de­mand the cor­rec­tion or dele­tion of your da­ta. You may fur­ther­more have the right to re­strict the pro­cess­ing of your da­ta as well as the right to have the da­ta pro­vid­ed by you re­turned to you in a struc­tured, com­mon and ma­chine-read­able for­mat.

Right of ob­jec­tion:

You al­so have the right to ob­ject to the pro­cess­ing of your per­son­al da­ta for di­rect mar­ket­ing pur­pos­es with­out giv­ing rea­sons. If we process your da­ta to pro­tect le­git­i­mate in­ter­ests, you may ob­ject to this pro­cess­ing on grounds re­lat­ing to your par­tic­u­lar sit­u­a­tion. We will then no longer process your per­son­al da­ta un­less we can demon­strate com­pelling le­git­i­mate grounds for the pro­cess­ing that over­ride your in­ter­ests, rights and free­doms, or the pro­cess­ing serves to as­sert, ex­er­cise or de­fend le­gal claims.

You have the right to lodge a com­plaint re­gard­ing the han­dling of your per­son­al da­ta with the above-men­tioned da­ta pro­tec­tion of­fi­cer or the da­ta pro­tec­tion su­per­vi­so­ry au­thor­i­ty. The su­per­vi­so­ry au­thor­i­ty re­spon­si­ble for you is:

Bay­erisches Lan­desamt für Daten­schutza­uf­sicht
Prom­e­nade 18
91522 Ans­bach
Ger­many
Phone: +49 981 180093–0
Fax: +49 981 180093–800
E‑mail: poststelle@lda.bayern.de

The pro­vi­sion of per­son­al da­ta is nec­es­sary for the es­tab­lish­ment, im­ple­men­ta­tion and ter­mi­na­tion of the em­ploy­ment re­la­tion­ship and rep­re­sents a sec­ondary con­trac­tu­al oblig­a­tion of the em­ploy­ee. If we do not re­ceive the re­quired da­ta, it will not be pos­si­ble to car­ry out the em­ploy­ment re­la­tion­ship with you.

Gen­er­al in­for­ma­tion oblig­a­tions ac­cord­ing to Art. 13 GDPR about the LinkedIn page of Gün­ter Stahl GmbH

Re­spon­si­ble par­ties

LinkedIn Ire­land Un­lim­it­ed Com­pa­ny
Wilton Place,
Dublin 2, Ire­land

and

Gün­ter Stahl GmbH
Per­son­al- und IT-Un­ternehmens­ber­atung
Eichen­straße 12
92442 Wack­ers­dorf
Ger­many
Phone: +49 9431 5287–0
Fax: +49 9431 5287–10
E‑mail: info@ubstahl.de

In­for­ma­tion about the LinkedIn page of: Gün­ter Stahl GmbH

We use the tech­ni­cal plat­form and ser­vices of LinkedIn Ire­land Un­lim­it­ed Com­pa­ny for the in­for­ma­tion ser­vice of­fered here.

We would like to point out that you use this LinkedIn page and its func­tions on your own re­spon­si­bil­i­ty. This ap­plies in par­tic­u­lar to the use of the in­ter­ac­tive func­tions. Al­ter­na­tive­ly, you can al­so ac­cess the in­for­ma­tion of­fered via this page on our web­site at https://www.ubstahl.de/.

When you vis­it our LinkedIn page, LinkedIn col­lects, among oth­er things, your IP ad­dress and oth­er in­for­ma­tion that is present on your PC in the form of cook­ies. This in­for­ma­tion is used to pro­vide us, as op­er­a­tors of the LinkedIn pages, with sta­tis­ti­cal in­for­ma­tion about the use of the LinkedIn page.

The da­ta col­lect­ed about you in this con­text is processed by LinkedIn and, if nec­es­sary, trans­ferred to coun­tries out­side the Eu­ro­pean Union. What in­for­ma­tion LinkedIn re­ceives and how it is used is de­scribed in gen­er­al terms by LinkedIn in its da­ta us­age guide­lines. There you will al­so find in­for­ma­tion on how to con­tact LinkedIn and on the set­tings op­tions for ad­ver­tise­ments.

The da­ta us­age guide­lines are avail­able at the fol­low­ing link:
https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy

In which way LinkedIn us­es the da­ta from the vis­it of LinkedIn pages for its own pur­pos­es, to what ex­tent ac­tiv­i­ties on the LinkedIn page are as­signed to in­di­vid­ual users, how long LinkedIn stores this da­ta and whether da­ta from a vis­it of the LinkedIn page is passed on to third par­ties, is not con­clu­sive­ly and clear­ly stat­ed by LinkedIn and is not known to us.
When ac­cess­ing a LinkedIn page, the IP ad­dress as­signed to your end de­vice is trans­mit­ted to LinkedIn. Ac­cord­ing to in­for­ma­tion from LinkedIn, this IP ad­dress is anonymized (for “Ger­man” IP ad­dress­es). LinkedIn al­so stores in­for­ma­tion about the de­vices of its users (e.g. as part of the “lo­gin no­ti­fi­ca­tion” func­tion); LinkedIn may thus be able to as­sign IP ad­dress­es to in­di­vid­ual users.
If you are cur­rent­ly logged in to LinkedIn as a user, a cook­ie with your LinkedIn iden­ti­fi­ca­tion is lo­cat­ed on your de­vice. This en­ables LinkedIn to track that you have vis­it­ed this page and how you have used it. This al­so ap­plies to all oth­er LinkedIn pages. Via LinkedIn but­tons em­bed­ded in web­sites, it is pos­si­ble for LinkedIn to record your vis­its to these web pages and as­sign them to your LinkedIn pro­file. Based on this da­ta, con­tent or ad­ver­tis­ing can be of­fered tai­lored to you.
If you want to avoid this, you should log out of LinkedIn or de­ac­ti­vate the “stay logged in” func­tion, delete the cook­ies present on your de­vice and ex­it and restart your brows­er. In this way, LinkedIn in­for­ma­tion through which you can be di­rect­ly iden­ti­fied will be delet­ed. This al­lows you to use our LinkedIn page with­out re­veal­ing your LinkedIn iden­ti­fi­er. When you ac­cess in­ter­ac­tive fea­tures of the site (like, com­ment, share, news, etc.), a LinkedIn lo­gin screen will ap­pear. Af­ter any lo­gin, you will again be rec­og­niz­able to LinkedIn as a spe­cif­ic user.
In­for­ma­tion on how to man­age or delete in­for­ma­tion about you can be found on the fol­low­ing LinkedIn sup­port pages: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.

We, as the provider of the in­for­ma­tion ser­vice, do not col­lect or process any oth­er da­ta from your use of our ser­vice.

You can find this da­ta pro­tec­tion de­c­la­ra­tion in the cur­rent­ly valid ver­sion un­der the item “Da­ta pro­tec­tion” on our LinkedIn page.

If you have any ques­tions about our in­for­ma­tion ser­vice, you can con­tact us at info@ubstahl.de.

The shared re­spon­si­bil­i­ty agree­ment pur­suant to Art. 26 GDPR (as of 21.8.2020) with LinkedIn can be found at:
https://legal.linkedin.com/pages-joint-controller-addendum

Da­ta sub­ject rights of the users

Un­for­tu­nate­ly, I/we can­not ful­fill our in­for­ma­tion oblig­a­tions ac­cord­ing to Art. 13 GDPR, as on­ly LinkedIn has full ac­cess to the user da­ta. If you wish to ex­er­cise your da­ta sub­ject rights, please con­tact LinkedIn di­rect­ly. These rights in­clude the fol­low­ing:

Right of ac­cess:

You can re­quest in­for­ma­tion from us about whether and to what ex­tent we process your da­ta.

Right to rec­ti­fi­ca­tion:

If we process your da­ta that is in­com­plete or in­cor­rect, you can re­quest that we cor­rect or com­plete it at any time.

Right to era­sure:

You may re­quest that we delete your da­ta if we process it un­law­ful­ly or if the pro­cess­ing dis­pro­por­tion­ate­ly in­ter­feres with your le­git­i­mate in­ter­ests in pro­tec­tion. Please note that there may be rea­sons that pre­vent im­me­di­ate dele­tion, e.g. in the case of legal­ly reg­u­lat­ed re­ten­tion oblig­a­tions.
Ir­re­spec­tive of the ex­er­cise of your right to dele­tion, we will delete your da­ta im­me­di­ate­ly and com­plete­ly, in­so­far as there is no le­gal or statu­to­ry oblig­a­tion to re­tain da­ta in this re­spect.

Right to re­stric­tion of pro­cess­ing:

You may re­quest us to re­strict the pro­cess­ing of your da­ta if

  • you dis­pute the ac­cu­ra­cy of the da­ta, for a pe­ri­od of time that al­lows us to ver­i­fy the ac­cu­ra­cy of the da­ta.
  • the pro­cess­ing of the da­ta is un­law­ful, but you refuse era­sure and re­quest re­stric­tion of da­ta use in­stead,
  • we no longer need the da­ta for the in­tend­ed pur­pose, but you still need this da­ta to as­sert or de­fend le­gal claims, or
  • you have ob­ject­ed to the pro­cess­ing of the da­ta.

Right to da­ta porta­bil­i­ty:

You may re­quest that we pro­vide you with your da­ta that you have pro­vid­ed to us in a struc­tured, com­mon and ma­chine-read­able for­mat and that you may trans­fer this da­ta to an­oth­er con­troller with­out hin­drance from us, pro­vid­ed that

  • we process this da­ta on the ba­sis of a re­vo­ca­ble con­sent giv­en by you or for the per­for­mance of a con­tract be­tween us, and
  • this pro­cess­ing is car­ried out with the aid of au­to­mat­ed pro­ce­dures.

If tech­ni­cal­ly fea­si­ble, you may re­quest us to trans­fer your da­ta di­rect­ly to an­oth­er con­troller.

Right to ob­ject:

If we process your da­ta for le­git­i­mate in­ter­est, you may ob­ject to this da­ta pro­cess­ing at any time; this would al­so ap­ply to pro­fil­ing based on these pro­vi­sions. We will then no longer process your da­ta un­less we can demon­strate com­pelling le­git­i­mate grounds for the pro­cess­ing that over­ride your in­ter­ests, rights and free­doms, or the pro­cess­ing is for the as­ser­tion, ex­er­cise or de­fense of le­gal claims. You may ob­ject to the pro­cess­ing of your da­ta for the pur­pose of di­rect mar­ket­ing at any time with­out giv­ing rea­sons.

Right of com­plaint:

If you are of the opin­ion that we vi­o­late Ger­man or Eu­ro­pean da­ta pro­tec­tion law when pro­cess­ing your da­ta, please con­tact us to clar­i­fy any ques­tions. Of course, you al­so have the right to con­tact the su­per­vi­so­ry au­thor­i­ty re­spon­si­ble for you, the re­spec­tive state of­fice for da­ta pro­tec­tion su­per­vi­sion.
If you wish to as­sert any of the afore­men­tioned rights against us, please con­tact our da­ta pro­tec­tion of­fi­cer. In case of doubt, we may re­quest ad­di­tion­al in­for­ma­tion to con­firm your iden­ti­ty.

LinkedIn Ire­land is sole­ly re­spon­si­ble for im­ple­ment­ing these rights un­der Ar­ti­cles 15–20 of the GDPR with re­spect to da­ta stored by LinkedIn Ire­land af­ter joint pro­cess­ing. You al­so have a right of ob­jec­tion and right of com­plaint, as de­scribed here­in, against us.
If you re­quire as­sis­tance in this re­gard or have any oth­er ques­tions, please feel free to con­tact us by email at info@ubstahl.de. If you no longer wish to have the da­ta pro­cess­ing de­scribed here in the fu­ture, please can­cel the con­nec­tion of your user pro­file to our site by us­ing the func­tions “I no longer like this page” and/or “Do not sub­scribe to this page”.
If you have any ques­tions about da­ta pro­tec­tion, you are al­so wel­come to con­tact our da­ta pro­tec­tion of­fi­cer at:

Mr Fabi­an Fromm
Project 29 GmbH & Co. KG
Os­ten­gasse 14
93047 Re­gens­burg
Ger­many
Phone: +49 941–2986930
E‑mail: anfrage@projekt29.de