Data protection according to EU-GDPR
Collection and processing of personal data
Deletion of personal data
We only store personal data for the period of time necessary to achieve the storage purpose. If the purpose of storage ceases to apply or a storage period expires, the personal data will be deleted in accordance with the statutory provisions.
Access data / server log files
When you visit our website, data about each access to the offering (so-called server log files) is collected. Access data includes: name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. We use this technical access information on the basis of Art. 6 (1) (f) GDPR (legitimate interest) exclusively to improve the attractiveness and usability of our websites and, if necessary, to identify technical problems and faults on our website at an early stage. The data is stored for a period of two weeks.
The newsletter serves to inform you about us and our offers. If you would like to receive the newsletter, we require a valid email address as well as information that allows us to verify that you are the owner of the email address specified. It is also possible to state the title, company, first and last names. This data will only be used for sending the newsletter, and will not passed on to third parties. When you register for the newsletter, we store your IP address and the date of registration. This storage serves solely as proof, should a third party misuse an email address and register for the newsletter without the knowledge of the party authorised to do so. You can revoke your consent to the storage of the data, the email address as well as their use for sending the newsletter at any time. You can exercise this right of revocation via a link in the newsletters themselves or by notification using one of the contact options below. The legality of the data processing steps already performed remains unaffected by the revocation. We will store saved data until you unsubscribe from the newsletter, after which it will be deleted.
The data entered when registering for the newsletter will be processed exclusively based on your consent (Art. 6  [a] GDPR).
Use of reCAPTCHA
To protect input forms on our site, we use the “reCAPTCHA” service from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. By using this service, it can be distinguished whether the corresponding input is of human origin or has been misused and made through automated machine processing. To our knowledge, the referrer URL, the IP address, the behaviour of website visitors, information about the operating system, browser and dwell time, cookies, display instructions and scripts, the user’s input behaviour and mouse movements in the “reCAPTCHA” checkbox are transmitted to “Google”. Among other things, Google uses the information obtained in this way to digitise books and other printed matter and to optimise services such as Google Street View and Google Maps (e.g. house number and street name recognition). The IP address transmitted as part of “reCAPTCHA” will not be merged with other Google data unless you are logged in to your Google account at the time you use the “reCAPTCHA” plug-in. If you want to prevent “Google” from transmitting and storing this data about you and your behaviour on our website, you must log out of “Google” before you visit our site or use the reCAPTCHA plug-in.
Cookies are files that are stored on your computer when you visit our website and that your browser “remembers”. A cookie file is stored in your web browser, allowing the website – or a third-party provider – to recognize you and to better match the site to you the next time you visit. Cookies and web beacons allow us to better and more efficiently provide services to you and to optimize your experience on our website. We also use web beacons or GIF files to support online advertising and, if required, for metering purposes. In this manner, we can evaluate how many visitors have visited our site and what content they have called up. The information collected using cookies or GIF files does not contain your name, your address, phone number, or email address.
We use two types of cookies: persistent cookies and session cookies. Session cookies are stored only for the duration of your visit and are automatically deleted when you quit your browser. These cookies do not contain any personal data; they merely identify the browser used to call up the webpage. Persistent cookies make it possible to store device-specific information on the device used to call up the website (PC, smartphone, etc.) for longer than a session. They are used to, for example, provide page settings for future website visits. These cookies remain stored on your device until you delete them. These cookies allow us to recognize your browser the next time you visit.
Cookies can be blocked by your browser in such a way that, for example, only the site that has set them can read them out. The next time that you visit this site, the cookie is sent from your browser to the server in order to, for example, offer you new information in your field of interest during your visit.
When you call up and use our website, we put a number of cookie files in your web browser. The cookies are used to record the number of visitors, the type of content and pages that a user calls up on our website, the length of time spent by each user in each specific area of our site, and the specific functions that the users utilize. We process cookie data that represent personal data only with your consent. We use both session cookies and persistent cookies on our site; in addition, we use different kinds of cookies for the operation of our site:
- Basic cookies. These are required for the operation of our website. We use basic cookies to authenticate users, to prevent the fraudulent use of user accounts, and to provide the functions of our website.
- Analytical / performance cookies. These record the number of visitors and the way visitors move through the website. This allows us to improve the functioning of the site.
- Functionality cookies. These are used to recognize you when you visit the site again. This allows us to tailor our content to you.
- Targeting cookies. These record your visit to the site, the pages that you visit, and the links that you click. We use this information to better tailor the site to your interests. We also provide this information to third-party providers.
Data is processed on the basis of the statutory provisions of § 96 (3) of the German Telecommunications Act (TKG) as well as Art. 6 (1) a (consent) and/or f (legitimate interest) of the GDPR. Our concern within the meaning of the GDPR (legitimate interest) is the improvement of our offering and our website. As our users’ privacy is important to us, the user data is pseudonymised by shortening the IP address. Your IP address will be shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transferred to a Google server in the US and shortened there. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other Google data.
Disabling Google Analytics
You can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the following browser plug-in: http://tools.google.com/dlpage/gaoptout?hl=de.
Use of Facebook (social plug-ins)
Use of Xing, Kununu and LinkedIn (social plug-ins)
The data protection provisions published by Xing, which can be accessed at https://www.xing.com/privacy, provide information about the collection, processing and use of personal data by Xing. Xing has also published privacy notices for the XING share button at https://www.xing.com/app/share?op=data_protection. Kununu is an application of the Xing service, for which the aforementioned explanations apply accordingly.
Use of Tumblr (social plug-ins)
Integration of third-party services and content
It may be the case that third-party content, such as videos from YouTube, maps from Google Maps, RSS feeds or graphics from other websites, is integrated into this website. This always assumes that the providers of this content (“third-party providers”) obtain the user’s IP address. This is because without the IP address, they could not send the content to the respective user’s browser and display it to them. We make every effort to use only that content whose respective providers use the IP address solely for the delivery of the content. However, we have no influence on the fact that the third-party providers may store the IP address, e.g. for statistical purposes. Insofar as we are aware of this, we will inform you accordingly.
This data is processed on the basis of legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
Use of Google Maps
Use of YouTube
Data protection in the application process
We collect and process personal data from applicants in order to process the application. If the application is made to another company of the Schüßler-Plan Group, the data will be collected accordingly by this company. The data may also be processed electronically. This is particularly the case if an applicant sends the corresponding documents by email. If the entity responsible for processing the data concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the entity responsible for processing the data does not conclude an employment contract with the applicant, the application documents shall be automatically deleted three months after notification of the rejection, provided that deletion is not contrary to any other legitimate interests of the entity responsible for processing the data, for example a duty of proof in proceedings under the German General Act on Equal Treatment.
Rights of the person concerned
As the person concerned, you have the fundamental right to information about what personal data about you has been stored. Unless your request conflicts with a legal obligation to retain data, you have a right to have false data corrected and to have the personal data that is processed deleted or restricted. If the data is processed based on a consent (pursuant to Art. 6  [a] GDPR or Art. 9  [a] GDPR), this consent may be revoked at any time without affecting the legality of the processing carried out on the basis of the consent until revocation. In addition, you have a right to data transferability.
To exercise these rights, please use one of the contact options listed below (“responsible body”) or contact our data protection officer. You also have the option of getting in touch directly with the supervisory authority. For Schüßler-Plan GmbH, this is the North Rhine-Westphalia State Commissioner for Data Protection and Information Security: https://www.ldi.nrw.de/
Security of your data
We protect the data that you transmit using appropriate technical and organisational means to secure it from accidental or intentional manipulation, loss, destruction or access by unauthorised persons. Our security measures are continually monitored and improved in accordance with technological development and organisational possibilities.
Legal basis for the data processing
Art. 6 (I) (a) GDPR serves our company as a legal basis for processing steps for which we obtain consent for a specific processing purpose. In the processing of personal data that is required for the performance of a contract to which the person concerned is a party, Art. 6 (I) (b) GDPR serves as the legal basis. This also applies to processing steps that are required to carry out pre-contractual measures. Insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6 (I) (c) GDPR serves as the legal basis. In the event that the vital interests of the person concerned or of another natural person require the processing of personal data, Art. 6 (1) (d) GDPR serves as the legal basis. If processing is required to safeguard a legitimate interest of our company or of a third party, and if the interests, fundamental rights and freedoms of the person concerned do not outweigh the aforementioned interest, Art. 6 (I) (f) GDPR serves as the legal basis for processing.
You can contact Schüßler-Plan GmbH or any other company of the Schüßler-Plan Group at any time by using the contact options below. All information is provided voluntarily and is collected directly from you as the person concerned. Your voluntarily provided personal data will be stored for the purpose of processing your request as well as for any follow-up questions that may arise and for the establishment of contact as required in this context. This personal data is not passed on to third parties. If you contact us by email, telephone or post, please note that further data arising from the selected communication channel may be collected.
The data is processed on the basis of Art. 6 (I) (a) GDPR (consent) for voluntary information, and Art. 6 (1) (f) GDPR (legitimate interest) for the use of the information for processing the request. Please note that encrypted and/or signed communication may not be possible via the contact channels provided. It is recommended that sensitive information be sent by post.
Name and address of the responsible body
The body responsible within the meaning of the GDPR, the BDSG nF and other data protection laws in force in the member states of the European Union and other provisions of a data protection nature is:
Tel.: +49 (0)211 610 201
Name and address of the data protection officer
You can contact our data protection officer with all questions and suggestions regarding data protection under the following contact options:
Tel.: +49 (0)6103 374 1600