Thank you very much for your interest in our company. Data privacy is an especially high priority for the management of Schweikert GmbH. It is fundamentally possible to use the web pages of Schweikert GmbH without providing any personal information. However, if a data subject wishes to use specific services from our company through our website, this may require the processing of personal data. If personal data must be processed and there is no legal basis for such processing, we shall as a rule obtain consent from the data subject.
Processing of personal data, for instance the name, address, email address or phone number of a data subject, always takes place in accordance with the General Data Protection Regulation and in compliance with the country-specific data protection provisions that apply to Schweikert GmbH. Our company provides this Data Privacy Notice as a way to inform the public about the type, scope and purpose of the personal data that we collect, use and process. Furthermore, data subjects are notified of their rights by way of this Data Privacy Notice.
As the controller, Schweikert GmbH has implemented numerous technical and organizational measures to ensure seamless protection of the personal data processed through this website wherever possible. Nonetheless, web-based data transmissions can fundamentally involve security gaps, so absolute protection cannot be guaranteed. For this reason, every data subject has the right to transmit personal data to us by alternative means, for instance by telephone.
1. DEFINITION OF TERMS
Schweikert GmbH’s Data Privacy Notice is based on the terms used by the European legislative and regulatory authority in creating the General Data Protection Regulation (GDPR). Our Data Privacy Notice is intended to be legible and comprehensible for the public as well as for our customers and business partners. In order to ensure this, we would like to explain the utilized terms in advance.
Among others, we use the following terms in this Data Privacy Notice:
a) personal data
Personal data is all information referring to an identified or identifiable natural person (hereinafter: the “data subject”). A natural person is considered identifiable if he or she can be identified directly or indirectly, particularly by being attributed to an identifier such as a name, ID number, location data, online identification data or one or more special characteristics that are an expression of this natural person’s physical, physiological, genetic, mental, economic, cultural or social identity.
b) data subject
The data subject is any identified or identifiable natural person whose personal data can be processed by the controller.
Processing is any activity or series of activities performed with or without the help of automated procedures in conjunction with personal data, such as collection, recording, organization, sorting, storage, adaptation or modification, searching, retrieval, utilization, disclosure by transmission, dissemination or another form of provision, comparison or correlation, restriction, erasure or destruction.
d) restriction of processing
Restriction of processing means marking stored personal data with the objective of restricting its future processing.
Profiling means any type of automated processing of personal data which uses this personal data to evaluate certain personal aspects relating to a natural person, particularly in order to analyze or predict aspects with regard to the work performance, economic situation, health, personal preferences, interests, reliability, conduct, domicile or relocation of this natural person.
Pseudonymization means processing personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, where such additional information is stored separately and is subject to technical and organizational measures to ensure that the personal data cannot be attributed to an identified or identifiable natural person.
The controller is the natural or legal person, public agency, institution or other entity making decisions, alone or with others, regarding the purposes and means of processing of personal data. If the purposes and means of this processing are established by European Union law or the laws of member states, the controller and/or the specific criteria for appointing the controller can be determined according to Union law or the laws of the member states.
The processor is a natural or legal person, public agency, institution or other entity that processes personal data on behalf of the controller.
The recipient is a natural or legal person, public agency, institution or other entity to which personal data is disclosed, regardless of whether this is a third party or not. Public agencies that could potentially receive personal data in the context of a specific investigation request under Union law or the laws of the member states are not, however, considered recipients.
j) third party
A third party is a natural or legal person, public agency, institution or another entity other than the data subject, controller, processor and any persons under the direct responsibility of the controller or processor who are authorized to process the personal data.
Consent is any statement of intent provided voluntarily and unambiguously by the data subject in an informed manner for the specific case, in the form of a declaration or another unequivocal confirmatory act, by way of which the data subject communicates agreement with the processing of his or her personal data.