Personal data refers to any information that makes it possible to identify a natural person. This particularly includes your name, date of birth, address, telephone number, email address as well as your IP address.
Anonymous data exists if no personal reference can be established to the user.
Controller and Data Protection Officer
IVT GmbH & Co. KG, Gewerbering Nord 5, D-91189 Rohr
Tel. +49 9876 9786-0, Fax +49 9876 9786-90, E-Mail: firstname.lastname@example.org
Contact details for the Data Protection Officer: email@example.com
Your rights as the data subject
First, we would like to inform you of your rights as the data subject. These rights are stipulated in Art. 15 - 22 EU GDPR. They include:
- The right of access (Art. 15 EU GDPR)
- The right to erasure (Art. 17 EU GDPR)
- The right to rectification (Art. 16 EU GDPR)
- The right to data portability (Art. 20 EU GDPR)
- The right to restriction of data processing (Art. 18 EU GDPR)
- The right to object against data processing (Art. 21 EU GDPR)
To assert these rights, please contact:
Tel.: +49 9876 9786-0, firstname.lastname@example.org
The same applies if you have questions on data processing in our company. You also have a right to lodge a complaint with a data protection supervisory authority.
Rights of objection
Please note the following in relation to rights of objection:
If we process your personal data for direct marketing purposes, you have the right to object to this data processing at any time without providing reasons.
If you object to the processing for the purposes of direct advertising, we will no longer process your data for these purposes. An objection can be submitted free of charge and may be informal, but should be directed to:
Tel. +49 9876 9786-80, email@example.com
In the event that we process your data to safeguard legitimate interests, you can object to this processing for reasons that relate to your specific situation.
We will then no longer process your personal data, unless we are able to provide evidence of compelling legitimate grounds for the processing, which override your interests, rights and freedoms, or the processing serves to assert, enforce or defend against legal claims.
Purposes and legal basis of the data processing
The provisions of the EU GDPR and all other applicable data protection provisions are complied with when processing your personal data. The legal bases for data processing are primarily defined by Art. 6 EU GDPR.
We use your data to initiate business transactions, to meet contractual and legal obligations, to implement the contractual relationship, to offer products and services as well as to strengthen the customer relationship, which may also involve analyses for marketing purposes and direct marketing, e.g. for sending newsletters, advertising mail, customer surveys and invitations to trade fairs and customer workshops.
Your consent is also required for permission under data protection law. In this case, we inform you of the purposes of the data processing and your right of revocation. If the consent also relates to the processing of specific categories of personal data, we will expressly inform you of this circumstance in the consent, Art. 88 (1) EU GDPR.
Certain categories of personal data within the meaning of Art. 9 (1) EU GDPR are only processed if this is necessary based on legal requirements and there is no reason to assume that these are not overruled by your legitimate interests to the exclusion of processing, Art. 88 (1) EU GDPR.
Transmission to third parties
We will only forward your data on to third parties within the scope of the statutory provisions or if you have provided a corresponding consent. Otherwise, data will not be transmitted to third parties, unless we are obliged to do so based on mandatory legal requirements (transmission to external bodies, such as supervisory authorities or prosecution authorities).
Data recipients/categories of recipients
Within our company, we ensure that your personal data can only be accessed by persons who require this access to fulfil contractual and statutory obligations.
In many cases, service providers support our departments in fulfilling their tasks, e.g. when sending invoices, merge documents, advertising mails or as part of the dunning process, collection processes, etc. The necessary data protection arrangements have been reached with all service providers.
Data storage period
We save your data as long as it is required for the relevant processing purpose. Please note that numerous archiving periods also require your data to be stored. This particularly relates to commercial or fiscal archiving obligations (e.g. the German Commercial Code, German Tax Code, etc.). The data is routinely erased after it has fulfilled its purpose, unless other archiving obligations exist.
We may also store your data if you have granted your consent or if legal disputes arise and we use evidence within the scope of the statutory limitation periods, which can last for up to thirty years; the regular limitation period is three years.
Secure transmission of your data
We employ appropriate technical and organisational security measures to provide the best possible protection for our stored data against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. The security levels are constantly checked in cooperation with security experts and adapted to the new security standards.
Data exchange from and to our website is always encrypted. We use HTTPS as the transmission protocol for our website, always using the current encryption protocols. There is the option of using alternative communication paths, e.g. by post.
Obligation to provide data
Various personal data is required to establish, execute and terminate a contractual relationship and to meet the associated contractual and legal obligations. The same applies for the use of our website and the various features that it provides.
In certain cases, data also has to be collected or provided based on statutory provisions. Please note that the processing of your enquiry or the execution of the underlying contractual relationship is not possible if this data is not provided.
Categories, sources and origin of the data
The data that we process depends on the context: For example, it depends on whether you submit an online order or an enquiry using our contact form, whether you send us an application or would like to register as a new commercial customer.
Please note that we may also provide information to appropriate bodies for certain processing situations, e.g. when uploading application documents or in case of a contact request.
We collect and process the following data when you visit our website:
- Name of the internet service provider
- Information on the website from which you are visiting us
- Web browser and operating system used
- The IP address assigned to your internet service provider
- Requested files, transmitted data volume, downloads/file export
- Information on the websites that you access during your visit, incl. date and time
- This data is stored for reasons of technical security (especially to defend against attempts to attack our webserver) in accordance with Art. 6 (1) lit. f EU GDPR. The data is anonymised after no more than 7 days by shortening the IP address so that no reference can be established to the user.
We collect and process the following data as part of a contact request:
- Surname, name
- Contact details (tel., email)
- Postal address
- Information on your request
We collect and process the following data as part of an order process:
- Surname, name
- Customer number
- Contact details (tel., email)
- Delivery address
- Invoice address
- Shipping date
- Delivery option
We collect and process the following data as part of online applications:
- Surname, name
- Contact details (tel., email)
- Cover letter
- Curriculum Vitae
We collect and process the following data for newsletters:
- Email address
- Surname, name
- Analysis data from newsletter evaluation
Contact form/email contact (Art. 6 (1) lit. a and b EU GDPR)
Our website contains a contact form that can be used for electronic contact. If you write to us using the contact form, we will process your data provided as part of the contact form to contact you and respond to your questions and requests.
This takes place based on the principle of data minimisation and data avoidance in that you only need to provide the data that we require to contact you and correctly process your enquiry. Mandatory fields marked with an * are joined by voluntary fields for optional information (e.g. to provide a more individualised response to your enquiry).
If you contact us by email, we will only process the data provided in the email to respond to your enquiry. No additional data collection occurs if you do not use the contact form provided.
Newsletter (Art. 6 (1) lit. a EU GDPR)
You can subscribe to a free newsletter on our website. The email address and your name indicated when registering for the newsletter will be used to send the personalised newsletter.
This takes place based on the principle of data minimisation and data avoidance, as only the email address is marked as a mandatory field (potentially also your name for personalised newsletters). Your IP address will also be processed when ordering the newsletter for reasons of technical necessity and for legal protection.
You can naturally end the subscription at any time using the unsubscribe option provided in the newsletter and thereby revoke your consent. Moreover, there is the option of unsubscribing from the newsletter using the contact form on our website or by emailing marketing[at]ivt-group.com.
Web shop (Art. 6 (1) lit. b EU GDPR)
We only process the data that you provide in the order form to execute the contractual relationship, unless you consent to any additional use.
The principle of data minimisation and data avoidance is taken into account in that you only have to provide the data that is essential to execute the contract (i.e. your email address as well as the delivery address).
Your IP address is also processed for reasons of technical necessity and legal protection. Without this data, we would unfortunately have to refuse to conclude the contract, or would have to terminate an existing contract, as we would be unable to execute it. You can naturally also choose to provide more data if you wish.
Registration/customer account (Art. 6 (1) lit. a and b EU GDPR)
In our BtoB web shop, we give customers the opportunity to register for online orders or request an IVT customer account, if one does not already exist, by providing personal data. The benefit is that customers can, in particular, view the order history as well as customer conditions via the Online Shop and that the data that they provide is saved for the order form. This means that they do not have to re-enter their data when placing another order.
Registration or prior customer login is therefore required to fulfil a contract (order via our Online Shop) with you or to implement pre-contractual measures.
The principle of data minimisation and data avoidance is taken into account, as only the data required to register are marked as mandatory fields (*) to login to the Online Shop. For instance, this is your email address and a password.
To place orders in our Online Shop, we also need information on the delivery address (address and, where applicable, contact information) to make deliveries.
The user's IP address as well as the data and time of registration (technical background data) are also saved when registering on our website. By clicking the "Register now" button, you provide your consent to process your data.
Please note: The password that you enter is encrypted and saved by us. Our company employees cannot read this password. As a result, they cannot provide any information if you have forgotten your password.
In this case, use the "Forgotten password" function, which emails you a new, automatically created password. No employee is authorised to request your password via phone or in writing. Please never disclose your password, if you receive these kinds of enquiries.
At the end of the registration process, we store your data to allow you to use the protected customer area. This data is provided for actions that you have performed on our website (e.g. for orders in our Online Shop) as soon as you login to our web shop using your email address as the username and your password. Past orders can be tracked in the order history. This is where changes, such as to the delivery address, can be entered.
Registered persons can freely change/correct the password or the delivery address in the customer account. You can also contact our Customer Service department to perform changes/corrections. You can naturally also cancel and delete the registration or your customer account (describe how this is possible if necessary).
Payment systems (Art. 6 (1) lit. a and b EU GDPR), credit check (Art. 6 (1) lit. f EU GDPR)
You can only pay on account in our BtoB Online Shop. To do so, we collect the relevant payment data required to process your order and payment. Your IP address is also processed for reasons of technical necessity and legal protection.
The principle of data minimisation and data avoidance is taken into account in that you only have to provide the data that is essential to process the payment and execute the contract or which we are legally obliged to collect.
Marketing purposes for existing customers (Art. 6 (1) lit. f EU GDPR)
IVT GmbH & Co. KG is interested in maintaining the customer relationship with you and providing you with information and offers on our products and services, e.g. product news, special offers, service offers, information on product benefits and application tips, etc. We therefore process your data in order to email you corresponding information and offers.
If you do not want this to occur, you can object to the use of your personal data for direct marketing purposes at any time; this also applies for profiling, if this is related to direct marketing. If you submit an objection, we will no longer process your data for this purpose.
The objection can be submitted without indicating reasons, informally and free of charge, and should take place via the unsubscribe link in the email, by calling +49(0)98769786-80, emailing marketing[at]ivt-group.com or by post to IVT GmbH & Co. KG, Marketing, Gewerbering Nord 5, D-91189 Rohr, Germany.
Applicant portal (Art. 6 (1) lit. a and b EU GDPR)
Thank you for your interest in joining IVT GmbH & Co. KG. We are aware of the importance of your data and only process the personal data provided in the application form for the purposes of the effective and correct implementation of the application process and to contact you as part of the application process. The data is not forwarded to third parties without your consent.
The application form asks you to disclose personal data. This takes place based on the principle of data minimisation and data avoidance in that you only have to provide that data that we need to fully review your application documents and to contact you, such as your CV, your name and your contact details, or which we are required to collect by law. This mandatory information is marked with an * (asterisk). Your IP address is also processed for reasons of technical necessity and legal protection.
We implement appropriate security measures to ensure the best possible security and confidentiality of your data.
We store your data for the above purpose, until the application process is complete and the associated periods have expired, until no later than six months after receipt of a decision. However, you have the option of allowing us to store your application documents for a longer period and using this for other vacant positions that match your profile.
To do so, we require your consent. In this case, we store your data for 12 months (please check whether this is correct). You can naturally revoke your consent at any time, with effect for the future, by calling +49 9876 9786-75, E-Mail: firstname.lastname@example.org or by post at IVT GmbH & Co. KG, Personalabteilung, Gewerbering Nord 5, D-91189 Rohr, Germany.
We do not use purely automated processing operations to reach a decision.
Cookies (Art. 6 (1) lit. f EU GDPR / Art. 6 (1) lit. a EU GDPR in case of consent)
These cookies allow us to analyse how users use our website. This enables us to design the content of the website to reflect the user requirements. Cookies also give us the opportunity to measure the effectiveness of a certain advertisement and, for instance, ensure its place depending on user interests.
Most of the cookies we use are so-called "Session Cookies". They are automatically deleted after your visit. Permanent cookies are automatically deleted from your computer once their period of validity (generally six months) has been reached or you delete these yourself prior to the expiration of the period of validity.
Most web browsers automatically accept cookies. But, you can also change your browser settings if you prefer that this information is not sent. You will still be able to use the offers on our website without restrictions (exception: configurators).
Please note: Disabling the set cookies may mean that not all of the features on our website can be fully utilised in some circumstances.
Links to other providers
Our website also contains clearly identifiable links to the internet sites of our companies. If links to the websites of our providers are provided, we have no influence on their content. As a result, we cannot assume any responsibility and liability for this content. The relevant provider or operator of the websites is responsible for the content of the sites.
The linked sites were checked for potential legal violations and identifiable infringements at the time the link was established. No unlawful content was identified at the time the link was established. However, the permanent monitoring of the content of linked sites is not reasonable without specific evidence of a legal violation. We will immediately remove these kinds of links if we are made aware of legal violations.
Matomo web tracking
The web analysis service software Matomo (www.matomo.org), a service from the provider InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, ("Matomo"), collects and saves data on this website in order to carry out statistical analyses of user behaviour for optimisation and marketing purposes. Pseudonymised use profiles can be created from this data for the same purpose and evaluated. Cookies can be used for this. Cookies are small text files, which are saved locally in the temporary memory of the internet browser of the visitor to the site. Among other things, the cookies allow the internet browser to be recognised again.
We base these analyses on a justified interest according to Art. 6(1) lit. f GDPR. The justified interest here comprises adjusting our website and its contents as well as possible to the interests and wishes of our customers and site visitors. The analysis also served the improvement of our product offer.
The site visitors' interests in a restrained data processing is taken into account by the fact that on one hand the recorded IP addresses and user profiles are pseudonymised so that it is not possible to directly identify customers. On other hand, the data recorded with the Matomo technology (including your pseudonymised IP address) is processed exclusively on our own servers. This data is not transmitted to a third party.
The information in the pseudonymised user profile generated by the cookie is not used to identify the visitor to this website personally and is not collated with personal data about the carrier of the pseudonym.
If you do not consent to the storage and evaluation of this data from your visit, you can reject the storage and use below at any time with the click of the mouse. In this case, a so-called Opt-Out cookie is saved in your browser, resulting in Matomo not recording any session data. Please note that the complete deletion of your cookies means that the opt-out cookie is also deleted and, if applicable, will have to be reactivated by you.