Weißer+Grießhaber

Menu
Youtube Instagram Linkedin

Impressum | Datenschutz

Privacy policy

Weißer + Grießhaber GmbH takes your legitimate data protection concerns very seriously and observes the provisions of the General Data Protection Regulation (GDPR), the revised version of the Federal Data Protection Act (Bundesdatenschutzgesetz; BDSG-neu), the Telecommunications Digital Services Data Protection Act (Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz; TDDDG) and, if applicable, the provisions of other applicable data protection regulations.

Weißer + Grießhaber GmbH will handle any data provided by you carefully and conscientiously. As far as data of any kind are collected, processed, or used, this will always be done within the framework of the statutory provisions or with your explicit consent.

The protection of privacy is of crucial importance for the future of internet-based business models and for the development of an internet-based economy. Weißer + Grießhaber GmbH emphasises its commitment to the protection of privacy with this data protection declaration. Find information on how Weißer + Grießhaber GmbH handles personal data on this website below.

This privacy policy applies to this and all other websites that refer to this privacy policy. Other data protection provisions may apply to individual Weißer + Grießhaber GmbH companies under certain circumstances. Therefore, we ask that you read the privacy policies of all websites you visit with care.

The controller in accordance with Art. 4 (7) of the General Data Protection Regulation (GDPR) is:

Weißer + Grießhaber GmbH

Waldstraße 11

78087 Mönchweiler, Germany

Local court: Freiburg i. Br. HRB 600860

VAT identification: DE 811 307 121

Phone no.: +49 7721 9487-0

Fax: +49 7721 9487-50

Email: information@weisser-griesshaber.de

You may contact our data protection officer at Weißer + Grießhaber GmbH at:

Weißer + Grießhaber GmbH

Thomas Fletschinger

Email: dsb@weisser-griesshaber.de

Global data protection standards

Our handling of personal data has been aligned with global principles and standards relating to transparency in the use of personal data, the observance and granting of rights of choice, access regulations, rules on data integrity, data security, data transfer, and monitoring the lawfulness of processing. Weißer + Grießhaber GmbH complies in particular with the General Data Protection Regulation (GDPR).

Consent

By using this website, you consent to electronic storage and use of your data as described below. Any changes to this privacy policy shall be announced on this page so that you are always informed about which data Weißer + Grießhaber GmbH stores and how it is used.

We shall also explicitly request your consent for the further processing of the personal data collected on this website or provided by you where required by applicable data protection law.

Collection and processing of personal data

Weißer + Grießhaber GmbH would like to better understand your wishes and interests and offer you the best possible service. Therefore, Weißer + Grießhaber GmbH collects and uses personal information in the manner described below and in accordance with applicable data protection law.

We collect your IP address and use cookies and other Internet technologies (hereinafter referred to as “automated tools” and “integrated web links”) when you visit our website to obtain general information about visitors to our website and their interests. We will explain which technologies are used and what kind of information is collected below.

We also collect and process data that you provide to us voluntarily, for example when you register for events, subscribe to newsletters, take part in online surveys, join discussion groups or forums, or make purchases.

What data do we collect and why?

Weißer + Grießhaber GmbH would like to offer you optimal personalised support with the help of the collected data. Weißer + Grießhaber GmbH uses your data exclusively as described in this declaration. Any subsequent change in the purpose of use is subject to your explicit consent unless the change is otherwise legitimised by applicable legal provisions.

We shall always process your personal data for a specific purpose.

In particular, we may process your personal data for the following purposes:

  • to manage our relationship with you, e.g., through our databases in which we collate data about you from our various sources in order to gain an overview of how we work together and to improve and personalise our understanding of your preferences and our communications with you;
  • to process orders and deliver ordered services and products.
  • to perform tasks for the preparation or fulfilment of contracts;
  • to provide evidence of business transactions;
  • to provide you with appropriate and up-to-date information about our products and services;
  • to improve the quality of our products and services by customising our offering to your specific needs;
  • to respond to your enquiries and provide you with efficient support;
  • to manage communication and collaboration with you
  • to track our activities (e.g., measurement of collaboration or sales, number of appointments/meetings, topics discussed, documents presented);
  • to invite you to events sponsored or used by us (e.g., lectures, conferences);
  • to grant you access to our specified IT systems so that you can use certain services of Weißer + Grießhaber GmbH;
  • to manage our IT resources, including infrastructure management and business continuity;
  • to protect the commercial interests of the company and to ensure compliance and reporting (e.g., compliance with our policies and local legal requirements, taxes and deductions, compliance with internally defined grant limits, management of alleged cases of misconduct or fraud, conducting audits and defence in legal disputes);
  • for archiving and logging;
  • to process any of job enquiries
  • for invoicing and accounting and
  • for any other purposes required by law and the authorities
  • In particular cases, we are legally obligated to transmit data to a requesting government agency (institution or authority). The legal basis for processing is Art. 6 (1) c GDPR and § 24 (2) no. 1 BDSG.
  • Business partners require personal data from our customers in some cases. This usually takes place as part of order fulfilment (e.g., in the event of complaints). This is explicitly provided for by law. Weißer + Grießhaber GmbH also remains responsible for the protection of your data in this case – in addition to the processor, if applicable. The respective business partner works in accordance with our instructions, which Weißer + Grießhaber GmbH ensures through strict contractual regulations.
  • for documenting and reporting to the responsible authorities to comply with the legal obligations to record.

 

IP addresses

IP addresses are used to analyse malfunctions, to administer the website and to obtain demographic information. We also use IP addresses and any other information that you have made available to us on this website in order to find out which pages of our website are accessed, and which topics interest our visitors. We use the knowledge gained to offer you an optimised range of information about our products and services. Weißer + Grießhaber GmbH only collects such data in anonymised form and will not link it to a registered user’s profile without their consent.

Weißer + Grießhaber GmbH only collects data in connection with your visit to the Weißer + Grießhaber website. We do not collect any personal data during your visits to the websites of other companies or organisations that do not belong to Weißer + Grießhaber GmbH.

Cookie tool

We use the “Real Cookie Banner” consent tool to manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents. Details on how “Real Cookie Banner” works can be found at https://devowl.io/de/rcb/datenverarbeitung/.

The legal basis for the processing of personal data in this context is point (c) of Art. 6 (1) GDPR and point (f) of Art. 6 (1) GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.

The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obligated to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.

Cookies

  1. a) We use cookies on our website and our web pages. These are small text files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our websites. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans, or other malware. Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we will immediately become aware of your identity. On the one hand, use of cookies is intended to make use of our website more pleasant for you. For example, we use session cookies to recognise that you have already visited individual pages of our website. These are automatically deleted after you leave our site.
  2. b) In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for a specified period of time. If you visit our website again to use our services, it will automatically recognise that you have already visited us and which entries and settings you have made so that you do not have to enter them again.
  3. c) On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. These cookies enable us to automatically recognise that you have already visited our website when you return. More on this can be found in the “Analysis tools” section.
  4. d) The cookies process data and are necessary for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with point (f) of Art. 6 (1) sentence 1 GDPR.
  5. e) Most browsers accept cookies automatically. However, you may configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.

Email addresses

If you provide us with your email address or enter it via the contact form, we shall also contact you by email. We shall not pass on your email address to third parties. You can decide at any time that you no longer wish to receive emails from Weißer + Grießhaber GmbH.

Use of external service providers

We work together with service providers who process certain data on our behalf. This is done exclusively in accordance with the applicable data protection law. In particular, we have concluded data processing agreements with our service providers that fulfil the requirements of Article 28 of the GDPR.

Disclosure of data, transfer to third countries

Your personal data will not be transferred to third parties for purposes other than those listed below. We shall only pass on your personal data to third parties if:

  1. a) you have given your explicit consent in accordance with point (a) of Art. 6 (1) sentence 1 GDPR, § 26 (2) Federal Data Protection Act (Bundesdatenschutzgesetz; BDSG),
  2. b) disclosure in accordance with point (f) Art. 6 (1) sentence 1 GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
  3. c) if there is a legal obligation for disclosure in accordance with point (c) of Art. 6 (1) sentence 1 GDPR and
  4. d) this is legally permissible and necessary in accordance with point (b) of Art. 6 (1) sentence 1 GDPR, § 26 (1) BDSG for the processing of a contractual relationship with you or for pre-contractual measures at your instigation.

A transfer to a third country or an international organisation is not intended and no automated decision-making takes place, unless otherwise provided for in this privacy policy.

Weißer + Grießhaber GmbH will also pass information on to business partners, service providers, third parties, or subcontractors where necessary. This may become necessary to provide a service or transaction requested by you, such as order processing, for customer service purposes or to inform you about services or products and services.

Your personal data will not be passed on, sold, or otherwise made available to third parties for marketing purposes without your prior consent.

Weißer + Grießhaber GmbH may be forced to disclose your data and related information by court or official order. We also reserve the right to use your data for the assertion of or defence against legal claims.

In the event of a takeover or merger with another company, it may be necessary to disclose or pass on personal data to potential or actual buyers. In such a case, Weißer + Grießhaber GmbH shall strive to protect the data as far as possible.

In accordance with applicable law, we reserve the right to store and pass on personal and other data to detect and combat illegal activities and attempted fraud or a violation of the Weißer + Grießhaber GmbH terms of use.

Analysis tools

The tracking measures listed below and used by us are performed based on point (f) of Art. 6 (1) sentence 1 GDPR. We want to ensure a needs-based design and the continuous optimisation of our website with the tracking measures used. On the other hand, we use tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimising our offer for you. Such interests are to be regarded as legitimate within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the tracking tools described in more detail below.

Privacy policy for the use of YouTube plug-ins

Our website uses plug-ins from YouTube, which is operated by Google. is the operator of this site: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, fax: +353 (1) 436 1001.

Connection to the YouTube servers will be established when you visit one of our pages equipped with a YouTube plug-in. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behaviour directly to your personal profile. You may prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an appealing presentation of our online offers. This constitutes a legitimate interest within the meaning of point (f) of Art. 6 (1) GDPR. Please refer to YouTube’s privacy policy at: https://www.google.com/analytics/terms/de.html, overview of data protection: https://support.google.com/analytics/answer/6004245?hl=de, and the privacy policy: https://policies.google.com/privacy?hl=de&gl=de for more information on the handling of user data.

If you do not wish to participate in the tracking process, you can generally deactivate the automatic setting of cookies in your browser settings. You can also block cookies specifically for conversion tracking by modifying your browser settings so that cookies from the domain “googleadservices.com” are not permitted.

Further information and Google’s privacy policy can be found here and here.

Links to other websites

Our website may contain links to third-party websites. Weißer + Grießhaber GmbH is not responsible for the data protection precautions or the content of websites outside of Weißer + Grießhaber GmbH.

Data management

Weißer + Grießhaber GmbH only retains personal data for as long as required by the purpose or legal provisions for which it was collected.

Data protection information in the application process

(1) We process the applicant data only for the purpose and in the context of the application process in accordance with the legal requirements. The processing of applicant data is performed to fulfil our (pre-)contractual obligations in the context of the application process within the meaning of point (b) of Art. 6 (1) GDPR. Point (f) of Art. 6 (1) GDPR applies if data processing becomes necessary for us, e.g., in the context of legal proceedings (§ 26 BDSG shall also apply in Germany).

(2) The application procedure requires applicants to provide us with their application data. Necessary applicant data includes personal details, postal and contact addresses and the documents relating to the application, such as cover letter, CV, and certificates. Applicants may also voluntarily provide us with additional information.

(3) Applicants consent to the processing of their data for the purposes of the application process in accordance with the type and scope set out in this privacy policy by submitting their application to Weißer + Grießhaber GmbH.

(4) As far as special categories of personal data within the meaning of Art. 9 (1) GDPR are voluntarily communicated as part of the application process, their processing is also performed in accordance with point (b) of Art. 9 (2) GDPR (e.g., health data, such as status as severely disabled or ethnic origin). As far as special categories of personal data within the meaning of Art. 9 (1) GDPR are requested from applicants as part of the application process, their processing is also performed in accordance with point (a) of Art. 9 (2) GDPR (e.g., health data if this is necessary for the exercise of the profession).

(5) Applicants can send us their applications via the online portal under Working at W+G.

(6) In the event of a successful application, the data provided by the applicants may be further processed by us for the purposes of the employment. Otherwise, if the application for a job offer is not successful, the applicant’s data shall be erased. Applicants’ data shall also be erased if an application is withdrawn, which applicants have the right to do at any time.

(7) Erasure shall take place, subject to a justified revocation by the applicant, after the application procedure has been completed for six months, so that we can answer any follow-up questions about the application and comply with our obligations to provide evidence under the Equal Treatment Act (Gleichbehandlungsgesetz).

The data will be erased from the applicant portal after two years.

If you have been accepted for a position as part of the application process, the data from the applicant data system will be transferred to our personnel information system and erased 10 years after the end of the employment relationship.

Invoices for any reimbursement of travel expenses are archived in accordance with tax regulations.

Rights of data subjects

You have the right,

  1. a) to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you may request information regarding processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction, processing, or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, as well as the existence of automated decision-making and, if applicable, meaningful information about its details;
  2. b) to demand correction of incorrect or the completion of your personal data stored by us without undue delay in accordance with Art. 16 GDPR;
  3. c) to demand the erasure of personal data stored by us in accordance with 17 GDPR, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation in the public interest or for the establishment, exercise, or defence of legal claims;
  4. d) to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR if the accuracy of the data is disputed by you, the processing is unlawful but you do not wish them erased and we no longer need the data, but you need them for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR;
  5. e) in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or to request that they be transmitted to another controller;
  6. f) in accordance with Art. 7 (3) GDPR, to revoke your consent once given to us at any time. As a result, we may no longer continue the data processing that was based on this consent in the future, and
  7. g) to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or the registered office of our company.

The competent supervisory authority for data protection at Weißer + Grießhaber GmbH is:

 

Baden-Württemberg supervisory authority

The State Commissioner for Data Protection of Baden-Württemberg

P.O. Box 10 29 32, 70025 Stuttgart, Germany

Urbanstr. 32, 70182 Stuttgart, Germany

Phone +49 (0)711 615541 – 0

Fax: +49 (0)711 615541 – 15

Email: poststelle@lfd.bwl.de

http://www.baden-wuerttemberg.datenschutz.de

You may contact the person responsible or send an email to dsb(at)weisser-griesshaber.de to assert the above rights and for questions regarding data protection.

Right to object

If your personal data are processed based on legitimate interests in accordance with point (f) of Art. 6 (1) sentence 1 GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation. If you wish to exercise your right of cancellation or objection, simply send an email to dsb(at)weisser-griesshaber.de

Data security

  1. a) We use the widespread SSL (Secure Sockets Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this involves 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can recognise whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.
  2. b) We also use suitable technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

 

Changes to this privacy policy

We shall update this privacy policy if necessary due to current circumstances, such as a change in the relevant data protection regulations.

As of: 18/09/2024