To maintain our business relationship (for example, when handling enquiries, providing consultancy or quotations, processing orders, providing support, making deliveries, etc.), we collect, process and use personal data and information relating to your company.

Personal data (e.g. your name, address or contact details) that you voluntarily provide to us – for example as part of an enquiry or in any other form – will be stored by us and used solely for correspondence with you and for the purpose for which you have provided this data. The processing of this data is based on Art. 6 (1) a and 6 (1) f GDPR.

To maintain our business relationship, we use our customers’ contact details to a very limited extent for interest-based internal marketing activities. We do not use your data for advertising purposes!

Recipients of Personal Data
In certain cases, it is necessary for us and our partners to receive specific information from you in order to provide appropriate support.

Any necessary, purpose-related transfer to companies/third parties involved in providing our services or fulfilling contracts (e.g. hardware and software manufacturers, companies providing support for hardware and software, distributors, suppliers/carriers, financing or leasing partners, insurers, etc.) is carried out in accordance with the latest provisions of the German Federal Data Protection Act (BDSG-new) and the EU GDPR. The legal requirements for commissioned data processing apply.

For the technical implementation of data processing (e.g. hosting our website, providing our ticketing system), we sometimes use external service providers.

External service providers who process personal data on our behalf (known as processors) are contractually bound to us in accordance with Art. 28 GDPR. These processors are carefully selected and bound by our instructions.

To protect your personal data, we have concluded specific contractual agreements with all our partners and have implemented technical and organisational measures. Our physical and electronic security measures comply with current technological standards and legal requirements, and are continuously updated in line with new developments. All our employees who may come into contact with personal data are obliged to comply with data protection regulations and are trained on the relevant legal provisions.

The customer shall ensure that the above-mentioned customer data may be collected, processed and used by SCADA-Automation GmbH within the scope of its intended use and that contact may be made with the relevant contacts.

Data Processing via Our Website
You can visit our website without having to provide any personal information. When you use our website, your internet browser automatically transmits the following data to our web server for technical reasons:

• the current IP address of your internet connection
• if you visit our website via a link, the page from which you are visiting us
• the pages you visit within our site
• the date and time of your visit
• the operating system you use, the name of your browser (e.g. Internet Explorer, Firefox, etc.) and its version

This data is stored anonymously and used solely for statistical purposes (e.g. how often specific pages of our site are accessed) or for technical network and system monitoring to detect server malfunctions (log files).

Applications
We can only process your application if it is sent to us via the email address bewerbung {at} scada-automation.de. If you use a different email address within our company, your application unfortunately cannot be considered.

To process your application, we collect the data you provide (usually first and last name, email address, application documents such as certificates and CV, earliest possible start date and salary expectations).

The legal basis for processing your application documents is Art. 6 (1) sentence 1 (b) and Art. 88 (1) GDPR in conjunction with Section 26 (1) sentence 1 BDSG.

We have no control over the route your application takes via the public internet and cannot guarantee the level of protection for your application during this transit. Once your application reaches our email server at the above-mentioned address, we protect your data with high-level technical and organisational measures.

If you wish to send us confidential information, we recommend using postal mail.

Your Rights
According to Articles 15–21 GDPR, you may exercise the following rights under the conditions described therein in relation to your personal data processed by us.

You have the right to request information about whether and which personal data concerning you is processed by us.

You have the right to request correction and/or completion if the personal data processed about you is incorrect or incomplete.

You have the right to request restriction of processing; in this case, your personal data – apart from storage – may only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

You have the right to data portability, meaning you may receive the personal data you have provided to us in a structured, commonly used and machine-readable format and have the right to transmit this data to another controller without hindrance from us, provided that the processing is based on consent or a contract and the processing is carried out by us using automated means.

You have the right to request deletion of your personal data when certain grounds apply.

Personal data of the data subject will be deleted or blocked as soon as the purpose for storing it no longer applies. Storage may also take place if this is required by European or national legislation in EU regulations, laws or other provisions to which the controller is subject. Blocking or deletion of data will also occur when a legally prescribed retention period expires, unless continued storage is required for the conclusion or fulfilment of a contract.

Different retention periods apply for storing personal data. Data relevant for tax purposes is generally stored for 10 years; other data is stored according to commercial law requirements, generally for 6 years. The retention period may also follow statutory limitation periods, which under Sections 195 et seq. of the German Civil Code (BGB) are usually three years, but can be up to thirty years in some cases.

Right to Withdraw Consent
The data subject has the right, for reasons arising from their particular situation, to object at any time to the processing of their personal data based on Article 6 (1) (e) or (f) GDPR, including profiling based on those provisions. If the processing of your personal data is based on your consent, you have the right to withdraw this consent at any time.

For any questions regarding data protection, please contact Jens Ramlow.

We reserve the right to amend this Privacy Policy from time to time in line with current legislation.