We are happy to welcome you on our website. Hectronic GmbH (subsequently “Hectronic”, “we” or “us”) places great emphasis on the security of the user data and the compliance with privacy regulations. We would like to inform you about the processing of your personal data on our website.
Download as PDF
Responsible Body:
Hectronic GmbH
Allmendstrasse 15
D-79848 Bonndorf
Germany
Tel: +49 7703 9388-0
Fax: +49 7703 9388-60
Email: mail@hectronic.com
External Data Protection Officer:
DDSK GmbH
Stefan Fischerkeller
Tel.: +49 7542 949 21 -01
E-Mail: datenschutz@hectronic.com
Terms
The technical terms used in this data protection declaration are to be understood as legally defined in art. 4 GDPR.
Automated Data Processing (Log Files, etc.)
Our site can be visited without actively providing personal details of the users. However, with every calling up of the website we automatically save access data (server log files) such as the name of the Internet service provider, the operating system used, the website from which the user visits us, the date and duration of the visit or the name of the requested file and, for security reasons (e.g. to detect attacks of our website) the IP address of the end device used for a period of seven days. These data are exclusively evaluated to improve our service and do not allow any conclusions on the person of the user. These data are not merged with other data sources. Art. 6 para. 1 lit. f) GDPR is the legal foundation of the data processing. We process and use the data for the following purposes: 1. Provision of the website, 2. Improvement of our websites, and 3. Prevention and detection of errors/malfunctions and misusage of the website. The processing is made to pursue justified interests in ensuring the functionality and the faultless and secure operation of the website and to adapt this website to the requirements of the users.
In order to make the visit to our website attractive and to allow the usage of certain functions we use so-called cookies on our website. The use of cookies serves our justified interest to make the visit to our website as pleasant as possible and is based on art. 6 para. 1 lit. f) GDPR. Cookies are a standard Internet technology for the storage and retrieval of login and other usage information for all website users. Cookies are small text files stored on the end device. They allow us to save user settings so that our website can be displayed in a format customized to the user device. Some of the cookies used by us are deleted again after the browser session, i.e. after the browser has been closed (so-called session cookies). Other cookies remain on the end device of the user and allow us or our partner companies to recognize the browser during the next visit (so-called permanent cookies).
The browser can be set in such a way as to inform the user on the setting of cookies so that they can decide individually about their acceptance or generally exclude the acceptance of cookies for certain cases or in general. Furthermore, the cookies can be deleted in retrospect to remove data that the website has deposited on the computer of the user. The deactivation of the cookies (so-called opt out) may result in a few constraints of the website functionality.
Categories of Users Concerned:
Website visitors, users of online services
Opt Out:
Internet Explorer:
https://support.microsoft.com/de-de/help/17442
Firefox:
https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
Google Chrome:
https://support.google.com/chrome/answer/95647?hl=de
Safari
https://support.apple.com/de-de/HT201265
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR); justified interests (art. 6 para. 1 lit. f) DSGVO)
In each case the legal foundation is explicitly named with the respective tool.
Justified Interests:
Storage of opt-in preferences, presentation of website, assurance of website functionality, preservation of user status for complete web presence, recognition for next website visitor, user-friendly online offer, assurance of chat function.
Web-based application with data transfer to CMS providers via installed plugins
We use a content management system (CMS) to edit, organize and display digital content on our website. The application is used web-based on the provider's servers.
With the help of the CMS, our website can be created, edited and managed and equipped with the necessary functions (e.g. forms, blogs, images and other digital content). In addition, the website designed by the CMS helps our website to be found more easily by users on the search engine results page (SERP).
By supporting an integrated firewall within the CMS, we ensure that our website is protected from external attacks and thus prevent misuse of the website.
In addition, we ensure that the CMS is regularly updated and patched to guarantee the security of our website, which is based on the CMS.
Data categories:
Usage data (e.g. websites visited, access time), meta and communication data (e.g. device information,
Purposes of processing:
Creating, editing and managing page content, storing and archiving data, creating landing pages, website security
Legal basis: legitimate interest (Art. 6 para. 1 lit. f) GDPR)
Legitimate interests: protection against spambots
TYPO3
Recipient:
TYPO3 Association, Gewerbestrasse 10, CH-4450 Sissach, Switzerland
Privacy policy:
typo3.org/privacy-policy
In order to continuously increase our reach and popularity of our online offer we process personal data within the framework of online marketing, in particular with respect to potential interests and measuring the effectiveness of our marketing measures.
In order to measure the effectiveness of our marketing measures and recognition of potential interests, information relevant for this purpose is saved in cookies or similar processes are used. The data saved in the cookies may include viewed contents, visited websites, settings and used functions and systems. As a rule, no clear data of the users are processed for the purposes described. The data are modified in such a way that the actual identity of the users is neither known to us nor to the provider of the tool used. The data modified hereby are often saved in user profiles.
In case the user profiles are saved the data can be read out, complemented and complemented on the server of the online marketing provider when visiting other online offers using the same online marketing process.
We can determine the success of our advertisements based on summarized data which are made accessible to us by the provider of the online marketing process (so-called conversion measurement). Within the framework of these conversion measurements, we can track if a marketing measure has led the visitor of our online offer to a purchase decision. This evaluation serves the analysis of the success of our online marketing.
Categories of Persons Concerned:
Website visitors, users of online services, interested parties, communication partners, business and contractual partners
Categories Data:
User data (e.g. visited websites, interest in contents, access times), meta and communication data (e.g. device information, IP addresses), location data, contact data, content data (e.g. text details, photos, videos)
Purposes of Processing:
Marketing (in part interest-based and behaviour-related), conversion measurement, target group formation, click-tracking, development of marketing strategies and increase of campaign efficiency)
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR); justified interests (art. 6 para. 1 lit. f) DSGVO)
Justified Interests:
Optimization and further development of website, profit increase, winning and retention of customers
Google Analytics
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data protection:
https://policies.google.com/privacy
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or
https://myaccount.google.com/
Legal foundation:
Acceptance (art. 6 para. 1 lit. a) GDPR)
Matomo
You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.
Opt-out complete; your visits to this website will not be recorded by the Web Analytics tool. Note that if you clear your cookies, delete the opt-out cookie, or if you change computers or Web browsers, you will need to perform the opt-out procedure again.
We entertain online presences in social networks and career platforms to exchange information with the users registered there and to be able to contact them easily.
The data of users in social networks are partially used to do market research, thus pursuing marketing purposes. By means of the behaviour of the users, e.g. by their specified interests, user profiles can be created and used to adapt advertisements to the interests of target groups. For this purpose, cookies are regularly saved on the end devices of the users, sometimes independent of the question if they are registered users of the social network.
In connection with the social media usage, we also use the corresponding messengers to be able to communicate with the users easily. We would like to point out that the security of individual services may depend on the account settings of the users. Even in case of end-to-end-encryption the service provider can conclude that and when users communicate with us and possibly record location data.
Depending on where the social network is operated the user data may be processed outside the European Union resp. outside the European Economic Area. This may involve risks for the users as it may impede the enforcement of their rights.
Categories of People Concerned:
Registered users and non-registered users of the social network
Categories Data:
Master data (e.g. name, address), contact data (e.g. e-mail address, phone number), content data (e.g. text details, photos, videos), user data (e.g. visited websites, interests, access times), meta and communication data (e.g. device information, IP address)
Purposes of Processing:
Extension of reach, networking
Legal Foundations:
Justified interests (art. 6 para. 1 lit. f) GDPR), acceptance (art. 6 para. 1 lit. a) GDPR)
Justified Interests:
Interaction and communication on social media presence, increase of profit, understanding of target groups
Service used:
Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection:
https://help.instagram.com/519522125107875
and
https://www.facebook.com/about/privacy
Opt-out link:
https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_security/
Service used:
Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Data protection:
https://www.facebook.com/privacy/explanation
and
https://www.facebook.com/legal/terms/page_controller_addendum
Opt-out link:
https://www.facebook.com/settings?tab=ads
Service used:
LinkedIn Corporation, 1000 West Maude Avenue, Sunnyvale, CA 94085, USA
Data protection:
https://www.linkedin.com/legal/privacy-policy
Opt-out link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Service used:
Twitter International Company, One Cumberland Place, Fenian Street Dublin 2, D02 AX07 Ireland
Data protection:
https://twitter.com/de/privacy
Opt-out link:
https://help.twitter.com/de/rules-and-policies/twitter-cookies#privacy-options
YouTube
Service used:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Data protection:
https://policies.google.com/privacy?hl=de&gl=de
Opt-out link:
https://tools.google.com/dlpage/gaoptout?hl=de
or
https://myaccount.google.com/
Service used:
New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany
Data protection:
https://privacy.xing.com/de/datenschutzerklaerung
We have integrated functions and contents procured from third-party providers. In this way, videos, representations, buttons or contributions (subsequently called contents) can be integrated.
To allow the visitors of our online offer to see contents the respective third-party provider processes, among other information, the IP address of the user so that the contents can be transferred to the browser and presented. Without this processing procedure it is not possible to present third-party contents.
Sometimes further information is collected by so-called pixel tags or web beacons providing the third-party provider with information on the use of the content or the visitor traffic on our online offer, technical information on the browser or the operating system of the user, the time of visit or referring websites. The data collected in this way are stored in cookies on the end device of the user.
In order to protect the personal data of the visitors of our online offer we have taken certain security precautions to prevent the automatic transfer of these data. These data are only transmitted when you use the buttons resp. the third-party contents.
Categories of Persons Concerned:
Users of the plug-in or integrated third-party contents
Categories Data:
Usage data (e.g. used websites, interests, access time), meta and communication data (e.g. device information, IP address), contact data (e.g. e-mail address, phone number), master data (e.g. name, address)
Purposes of Processing:
Design of our online offer, increase of reach of advertisements in social media, sharing of contributions and contents, interest and behaviour-based marketing, cross-device tracking
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR)
Vimeo
Service used: Vimeo Inc, 555 West 18th Street New York, New York 10011, USA
Data protection: https://vimeo.com/privacy
Opt-out link: https://vimeo.com/cookie_policy
Legal basis: Consent (Art. 6 para. 1 lit. a) GDPR)
We take advantage of the possibility to hold online conferences, meetings and webinars. For this purpose, we use the service of other providers that we have carefully selected.
During the active use of such services data of the communication partners are processed and saved on the servers of the third-party providers used insofar as the data are required for the communication process. Furthermore, usage and metadata may be processed.
Categories of Persons Concerned:
Participants in the respective online offer (conference, meeting, webinar)
Categories Data:
Master data (e.g. name, address), contact data (e.g. e-mail address, phone number), content data (e.g. text details, photos, videos), meta and communication data (e.g. device information, IP addresses)
Purposes of Processing:
Processing of enquiries, increase of efficiency, promotion of cross-company resp. cross-location cooperation
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR)
TeamViewer
Service used:
TeamViewer GmbH, Jahnstr. 30, 73037 Göppingen, Germany
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR)
Users of our online offer have the option to subscribe to our newsletter or possible notifications via different channels (subsequently called newsletters). Within the framework of the legal regulations we only send newsletters to recipients who have agreed to receive the newsletter. We use a selected service provider to send the newsletter.
In order to subscribe to a newsletter, it is required to specify an e-mail address. We may collect further data such as the name to add a personal salutation to the newsletter.
Our newsletter is only sent upon completion of the so-called double-opt-out procedure. If visitors of our online offer decide to subscribe to our newsletter, they receive a confirmation mail designed to prevent the misusage of wrong e-mail addresses and the possibly accidental sending of the newsletter triggered by a single click. The reception of our newsletter can be terminated for the future at any time. A link to unsubscribe (opt-out link) is included at the end of every newsletter.
Furthermore, we are obliged to prove that our subscribers really want to receive the newsletter. For this purpose, we collect and save the IP addresses and the dates of subscription and unsubscription.
Our newsletters are designed in such a way as to allow us to obtain knowledge of improvements, target groups or the reading behaviour of our subscribers. We can do so by a so-called web beacon or tracking pixel which reacts to interactions with the newsletter, e.g. if links are clicked on, if the newsletter is opened at all or at what time the newsletter is read. For technical reasons we can assign this information to individual subscribers.
Categories of Persons Concerned:
Subscribers of newsletter
Categories Data:
Master data (e.g. name, address), contact data (e.g. e-mail address, phone number), meta and communication data (e.g. device information, IP address), usage data (e.g. interests, access times)
Purposes of Processing:
Marketing, winning and retention of customers, analysis and evaluation of success of campaign
Legal Foundation:
Acceptance (art. 6 para. 1 lit. a) GDPR)
Mailchimp
Service used:
The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA
Data Protection:
https://mailchimp.com/legal/privacy/
With our online offer we provide the opportunity to contact us directly or obtain information on different contacting options.
If a contact is established, we process the data of the enquiring person in the scope required for answering resp. processing the enquiry. Depending on the channel used for contacting us the data processed may vary.
Categories of Persons Concerned:
Enquiring persons
Categories Data:
Master data (e.g. name, address), contact data (e.g. e-mail address, phone number), content data (e.g. text details, photos, videos), usage data (e.g. interests, access times), meta and communication data (e.g. device information, IP address)
Purposes of Processing:
Processing of enquiries
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR), fulfilment or initiation of contract (art. 6 para. 1 lit. b) GDPR)
We offer the opportunity to create a user account with our online offer. Within the framework of registration, we collect the required data of the interested visitors to provide a user account and the corresponding functions.
In order to protect the usage of the internal area we collect the IP-addresses and the times of access in order to prevent the misusage of a user account and unauthorized usage. We do not transfer these data to third parties unless this is necessary to pursue our claims or we are legally obliged to do so.
Categories of Persons Concerned:
Registered users
Categories Data:
Master data (e.g. name, address), contact data (e.g. e-mail address, phone number), content data (e.g. text details, photos, videos), meta and communication data (e.g. device information, IP addresses), usage data (e.g. used websites, interests, access times)
Purposes of Processing:
Simplification of website function, fulfilment of contract, customer retention
Legal Foundations:
Acceptance (art. 6 para. 1 lit. a) GDPR)
We transfer the personal data of the visitors of our online offer for internal purposes (e.g. for internal administration or to the HR department to comply with legal or contractual obligations). The internal data transfer resp. revealing of the data is only made in the required scope and in compliance with the applicable privacy regulations.
For the execution of contracts resp. the fulfilment of a legal obligation it may be required to transfer personal data. If the data internally required are not provided it may happen that the contract with the person concerned cannot be closed.
We transfer data to countries outside the EEA (so-called third countries). This is made for the purposes listed above. The transfer is only made to fulfil our contractual and legal obligations or based on an acceptance previously granted by the person concerned. Furthermore, this transfer is made in compliance with the applicable privacy regulations, in particular under consideration of art. 44 ff. GDPR, e.g. based on adequacy decisions adopted by the European Commission or other suitable guarantees (e.g. standard privacy clauses, etc.).
We generally save the data of visitors of our online offer as long as this is required to render our service or insofar as this has been provided by the European regulator and legislator or another legislator in laws and regulations we are subject to. In all other cases, we delete the personal data upon accomplishment of the purpose, with the exception of such data that we have to store further to fulfil legal obligations (e.g. we are obliged to keep documents such as contracts and invoices for a certain period in accordance with tax and commercial laws).
Relevant legal foundations primarily arise from the GDPR. These are supplemented by national laws of the member states and may be applicable together with or supplementary to the GDPR.
Acceptance:
Art. 6 para. 1 lit. a) GDPR serves as the legal foundation of processing procedures for which we have sought acceptance for a particular processing purpose.
Fulfilment of Contract:
Art. 6 para. 1 lit. b) GDPR serves as the legal foundation of processings that is required for the fulfilment of a contract the contracting party of which is the person concerned or for the execution of pre-contractual measures taken at the request of the person concerned.
Legal Obligation:
Art. 6 para. 1 lit. c) GDPR serves as the legal foundation of processings that is required for the fulfilment of a legal obligation.
Vital Interests:
Art. 6 para. 1 lit. d) GDPR serves as the legal foundation if the processing is required to protect vital interests of the person concerned or of another natural person.
Public Interest:
Art. 6 para. 1 lit. e) GDPR serves as the legal foundation of processings that are required for the accomplishment of a task that is in the public interest or in execution of public authority which has been transferred to the person responsible.
Justified Interest:
Art. 6 para. 1 lit. f) GDPR serves as the legal foundation of processings that are required for the protection of the justified interests of the person responsible or a third party unless the interests or fundamental rights and liberties of the person concerned that require the protection of personal data prevail, in particular if the person concerned is a child.
Right of Information:
Acc. art. 15 GDPR persons concerned have the right to demand confirmation if we process data related to them. They can demand information on these data and on the further information stated in art. 15, para. 1 GDPR as well as a copy of their data.
Right of Correction:
Acc. art 16 GDPR persons concerned have the right to demand the correction or completion of the data related to them and processed by us.
Right of Deletion:
Acc. art. 17 GDPR persons concerned have the right to demand the immediate deletion of the data related to them. Alternatively, acc. art. 18 GDPR they can demand to restrict the processing of their data.
Right of Data Transfer:
Acc. art. 18 GDPR persons concerned have the right to demand the provision of the data they have made available to us and their transfer to another person responsible.
Right of Complaint:
Furthermore, persons concerned have the right to complain with the supervisory authority responsible as provided by art. 77 GDPR.
Right of Objection:
Insofar as personal data based on justified interests acc. art. 6 para. 1 p.1 lit f) GDPR are processed persons concerned have the right to object acc. art. 21 GDPR against the processing of their personal data insofar as there are reasons arising from their peculiar situation or if the objection is directed against direct advertising. In the latter case persons concerned have a general right of objection that is implemented by us without stating a particular situation.
Some data processing procedures are only possible with the explicit consent of the persons concerned. You have the opportunity to revoke a consent already granted at any time. For this purpose, an informal message resp. e-mail to us (datenschutz@hectronic.com) is sufficient. The righteousness of the data processing performed up to the revocation remains unaffected by the revocation.