Thank you for your interest in our website brugger-feinmechanik.de (hereinafter “the website”). We respect your privacy and take the protection of your personal data very seriously. We therefore only collect and process your personal data in accordance with the relevant legal provisions. This privacy statement explains what types of personal data are collected on the website when you visit it and how this data is processed
1. Responsible party
The responsible party within the meaning of the EU General Data Protection Regulation (Art. 4 (7) GDPR) is Brugger Feinmechanik GmbH, Erzgießereistraße 30, 80335 Munich, Germany, e-mail: firstname.lastname@example.org (hereinafter “we”, “our”, etc.).
2. Definition of personal data
Personal data is all information that can be assigned to you individually. This includes, for example, your name, address, date of birth, e-mail address and telephone number. Non-personal data, on the other hand, is information of a general nature that cannot be used to establish your identity. This is, for example, the number of users of the website
3. Types of personal data that are collected and processed on the website
In principle, you can visit the website, which is primarily for information purposes, without providing us with information that directly identifies you.
3.1 Web server logs
When you visit the website, the web server of the website automatically records your IP address, the date and time you are on the website, the pages you visited on the website, the website on which you were previously, the browser you used (e.g. Mozilla Firefox, Google Chrome, etc.), the operating system you used (e.g. Windows 10) and the domain name and address of your Internet provider (e.g. Deutsche Telekom).
This information is evaluated exclusively on an anonymised basis and serves to display the requested content correctly and to optimise and improve the design of the website.
In addition, in the event of system misuse, we may process the information collected by the web server in cooperation with your Internet provider and/or local authorities in order to identify the originator of this misuse. The legal basis for this is our legitimate interest (Art. 6 para. 1 (f) GDPR), which is to protect the integrity of the website, system and users.
3.2 Personal data that you have voluntarily provided to us
Furthermore, we only collect personal data from you if you have voluntarily provided it to us. In this way, we collect your e-mail address and, if applicable, other information provided by you as part of your request by e-mail or your name, your e-mail and, if applicable, other information provided by you as part of your request via our contact form. We process this personal data in order to respond to and process your request.
The legal basis for this is the fulfilment of pre-contractual measures at your request (Art. 6 para. 1 (b) GDPR).
3.3 Data transfer
We take reasonable steps to safeguard your personal data. All data transfer on the website and within the scope of the services provided there takes place using state-of-the-art encryption methods via HTTPS.
However, we would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) may have security vulnerabilities. Unfortunately, seamless protection of the data against access by third parties is not possible.
4. Disclosure of personal data
We do not share your personal data with third parties unless this is necessary for the fulfilment of your request, otherwise permitted by applicable legal provisions, or you have given us your consent.
We are also entitled to outsource all or part of the processing of personal data within the framework of data protection regulations to external service providers who work for us as processors (Art. 4 (8) GDPR). If these service providers are located outside the European Union or the Treaty on the European Economic Area (EEA), we will take appropriate security measures in accordance with the legal and regulatory requirements to ensure the security of your personal data.
A corresponding list of these external service providers, including a description of the respective services and the existence of an adequate level of data protection, can be found in the overview shown below:
Description of service
Adequate level of data protection in place?
Hetzner Online GmbH
Hosting of the website and hosting and administration of the server systems
ANEXIA Deutschland GmbH
Hosting email and domain
5. Retention period
We will only store your personal data for as long as it is necessary to achieve the purposes for which it was collected or, insofar as there are additional statutory retention periods, for the duration of the legally stipulated retention period. Your personal data will then be deleted.
|Browser||How to delete cookies|
|Microsoft Internet Explorer||https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies|
6.2 The following types of cookies are used on the website for the purposes listed below:
Technically required session cookies
So-called session cookies are used on the website to provide you with an optimal user experience on the website. These session cookies ensure that your visit to the website can also be assigned to you across several browser tabs. This session cookie is deleted at the latest when the browser is closed. The legal basis for this is our legitimate interest (Art. 6 para. 1 (f) GDPR), which is to provide you with a user-friendly website that meets your expectations and needs.
7. Contact form
If you send us enquiries via the contact form, your details from the enquiry form, including the contact details you provide there, will be stored by us for the purpose of processing the enquiry and in case of follow-up questions.
We will not pass on this data without your consent. This data is processed on the basis of Art. 6 para. 1 lit. b GDPR, insofar as your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of enquiries addressed to us (Art. 6 para. 1 lit. f GDPR) or on your consent (Art. 6 para. 1 lit. a GDPR) insofar as this has been requested; consent can be withdrawn at any time.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.
8. YouTube with enhanced data protection
This website integrates videos from the YouTube website. The website is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in enhanced data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. On the other hand, the enhanced data protection mode does not necessarily exclude the transfer of data to YouTube partners. This is how YouTube connects to the Google DoubleClick network, regardless of whether you are watching a video.
As soon as you start a YouTube video on this website, a connection to YouTube’s servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing habits directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, after starting a video, YouTube can store various cookies on your end device or similar recognition technologies (e.g. device fingerprinting). In this way, YouTube can receive information about visitors to this website. Among other things, this information is used to collect video statistics, improve usability and prevent fraud attempts.
If necessary, further data processing operations can be triggered after starting a YouTube video, over which we have no influence. YouTube is used in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of Article 6 para. 1 lit. f GDPR. If consent has been requested, processing is carried out exclusively on the basis of Article 6 para. 1 lit. a GDPR and Section 25 para. 1 TTDSG, insofar as consent is required for the storage of cookies or access to information on the user’s end device (e.g. device fingerprinting) within the meaning of TTDSG. Consent can be withdrawn at any time. Further information about data protection at YouTube can be found in their privacy statement at: https://policies.google.com/privacy?hl=en.
9. Ninja Firewall
We have incorporated Ninja Firewall into this site. The provider is NinTechNet Limited, Unit 1603, 16th Floor, The L. Plaza 367–375 Queen’s Road Central Sheung Wan, Hong Kong (hereafter Ninja Firewall).
Ninja Firewall is designed to protect our website from unwanted access or malicious cyber attacks. For this purpose, Ninja Firewall collects the IP address, request, referrer and time of page access. Ninja Firewall is integrated on our own servers and does not transfer any personal data to the provider of the tool or other third parties.
The use of ninja firewalls is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from cyber attacks as effectively as possible.
10. Your rights under data protection law
You may have the right to object to the processing of your personal data for special reasons arising from your particular situation.
Furthermore, you are entitled to the following rights in particular in accordance with the applicable data protection law. To do so, please use the contact details provided in Section 1 above.
- Right of access: You have the right to request information about your personal data stored by us at any time.
- Right to rectification: When we process your personal data, we will take reasonable steps to ensure that your personal data is accurate and up to date for the purposes for which it was collected. If your personal data is inaccurate or incomplete, you can request the rectification of this data.
- Right to deletion and restriction: You have the right to request the erasure or restriction of the processing of your personal data if, for example, there is no longer a legitimate business purpose for such processing in accordance with this privacy statement or applicable law and statutory retention obligations do not prevent further storage.
- Right to data portability: You may have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format or to transfer this data to another responsible party.
- Supervisory authority responsible for possible complaints: Furthermore, in the event of a complaint, you can contact the supervisory authority responsible for us, namely the Bavarian State Office for Data Protection Supervision, Postfach 606, 91522 Ansbach, Germany, telephone +49,981.53-1300, fax +49,981.5398-1300, e-mail email@example.com. A list of other relevant supervisory authorities can be found at https://www.bfdi.bund.DE/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
11. Links to other websites
The website may also contain links to other websites. This privacy statement does not apply to these other websites. We ask that you visit these other websites directly in order to obtain information about data protection and the handling of your personal data. We cannot be held liable for actions taken by these other websites or for their content.
12. Right to amendment
We reserve the right to amend this privacy statement at any time in compliance with legal requirements. This may be necessary, for example, when complying with new legal provisions or in the case of new services.