Go to content Go to main menu

Data Security

Privacy Policy

Thank you for visiting our website zenner.com and for your interest in our company.

The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.

The purpose of this privacy statement is to inform you about the processing of your personal data that we collect from you when you visit our site. Our data protection practice is in accordance with the legal regulations of the EU’s General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). The following data protection declaration serves to fulfil the information obligations resulting from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

1. Controller

The controller regarding this website within the meaning of Art. 4 (7) GDPR and other national data protection laws of the Member States and other provisions under the GDPR is:

ZENNER International GmbH & Co.KG
Roemerstadt 6, 66121 Saarbruecken, Germany
Mail: info@zenner.com
Phone: +49 681 99676-30
Fax: +49 681 99676-3100

2. Contact details of the data protection officer

We have named a data protection officer (DPO) within the meaning of Art. 37 GDPR. You can contact our data protection officer using the following contact details:

Christian Motsch
Roemerstadt 6, 66121 Saarbruecken, Germany
Mail: datenschutz@zenner.com

3. Logfiles

Each time you access our website, our system automatically collects data and information of your accessing device. The processing of personal data carried out in this context is as follows:

Scope of the processing of personal Data

(1)  Information concerning the browser type and the browser version used

(2)   The operating system of the accessing device

(3)   The IP address of the accessing device

(4)   Date and time of access

(5)   Websites and resources (images, files, additional page content) which were accessed

(6)   Websites which refers to our website and which directed the user’s device to our web-site (referrer tracking)

(8)   Message whether the retrieval was successful;

(9)   Amount of data transferred;

This data is stored in the log files of our system. This data is not stored together with personal da-ta of a specific user in such a way that individual users can be identified.

Legal basis for the processing of personal data

Art. 6 (1) (f) GDPR (legitimate interest). Our legitimate interest lies in the following, outlined purpose.

Purpose of data processing

The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable delivery of the website. The storage and processing of personal data is also carried out to maintain the compatibility of our website for as many visitors as possible and to combat abuse and eliminate malfunctions. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimise the website and to generally ensure the security of our information technology systems.

Duration of storage

The aforementioned technical data is erased as soon as it is no longer required to achieve the aforementioned purposes, but at the latest 3 months following the use of our website.

Possibility to object and demand deletion

You may object to this processing according to art. 21 GDPR and demand deletion of data according to Art. 17 GDPR by following the indications under point 9 of this Privacy Policy.

4. Special functions

Our site offers different functions which collect personal data as follows:

4.1 Contact Form

Scope of the processing of personal data

The data entered by you in our contact forms. Especially the data which you have entered in the input mask of the contact form. This includes your name, your e-mail address, the subject of the contact and everything you enter into the message field.

Legal basis for the processing of personal data

Art. 6 (1) (a) GDPR (consent by clear confirmatory act or conduct)

Purpose of data processing

We will only use the data that you have entered via our contact form for the processing of the specific contact enquiry received. Please note that in order to fulfil your contact request, we may also send you e-mails to the address provided. The purpose of this is to enable you to receive confirmation from us that your request has been correctly forwarded to us. And to provide you with the proper answer to your request. However, the sending of this confirmation e-mail is not binding on us and is for your information only.

Duration of storage

After processing your request, the collected data will be deleted immediately, unless there is a legal retention period.

Possibility to object, withdraw consent and demand deletion

You can withdraw your consent relating to Art. 7 (3) GDPR by following the indications under point 9 of this Privacy Policy.

Characteristics of the provision of personal data

The provision of personal data is neither a statutory nor a contractual requirement. It is also not a requirement necessary to enter into a contract. Furthermore, you are not contractually obliged to provide the personal data and it has no contractual consequences if you fail to provide such data. The only consequence is that you are not able to communicate with us over the contact form.

5. Integration of external web services and processing of data outside the EU

We use active content from external providers, so-called web services, on our website. By calling up our website, these external providers may receive personal information about your visit to our website. Processing of data outside the EU may be possible. You can prevent this by installing a corresponding browser plug-in or by deactivating the execution of scripts in your browser. This can lead to functional restrictions on the websites that you visit.

We use the following external web services:

Google

We use the following Google services on our site: Google, Gstatic, Google Photo, Google Video, Youtube, GoogleAds (Doubleclick). The external provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland together with Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, USA, Mail: support-de@google.com, Website: http://www.google.com/.

The processing also takes place in a third country for which there is no adequacy decision by the Commission. Therefore, the level of protection that is usual for the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that in third countries, e.g. authorities, can gain access to the data collected.

The legal basis for the transmission of personal data is your consent in accordance with Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR, which you have given on our website.

  • We use Google to be able to reload other Google services on the website.
  • Gstatic is a service used by Google to retrieve static content in order to reduce bandwidth usage and to preload required catalog files.
  • Videos from the YouTube platform are integrated into our website via the YouTube and the Google Video service.
  • Google Photo (ggpht.com) is a plug-in that we need in order to be able to display all of the contents of our website to you. The plugin makes our website more attractive and easier to experience for our site visitors.
  • Google Ads (DoubleClick) is a Google service that offers and delivers digital advertising on the Internet. It is used to be able to show individual advertising to the site users.

You can revoke your consent at any time. You can find more information on withdrawing your consent either with the consent itself or at the end of this data protection declaration.

Further information on the handling of the transferred data can be found in the provider’s data protection declaration at https://policies.google.com/privacy.

Google Maps

Which personal data are collected and to what extent are they processed?

On our site we use the map service of the company Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google Maps). Google Maps is integrated into the website via the Google API in order to visualize location information and display it in the form of a map. The processing of the IP address by Google Maps is technically necessary to display the map. With regard to the other web services integrated via Google APIs, the regulations in the respective section of this data protection declaration on Google APIs apply.

The processing also takes place in a third country for which there is no adequacy decision by the Commission. Therefore, the level of protection that is usual for the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that in third countries, e.g. authorities, can gain access to the data collected.

LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA

Art. 6 lit. f GDPR (legitimate interest). Our legitimate interest lies in being able to visualize the usual presentation of location information on the Internet.

Purpose of data processing

On our behalf, Google will use the information obtained from Google Maps to show you the map. You can find us faster and more precisely using Google Maps than with a simple, non-interactive route sketch.

Duration of storage

Google will save the data relevant for the function of Google Maps for as long as it is necessary to fulfill the booked web service. The data is collected and saved anonymously. If there is a personal reference, the data will be deleted immediately, provided that it is not subject to any statutory retention requirements. In any case, the deletion takes place after the retention period expires.

Opposition and cancellation option

You can prevent the collection and forwarding of personal data to Google (especially your IP address) and the processing of this data by Google by deactivating the execution of script code in your browser, installing a script blocker in your browser or Activate the “Do Not Track” setting in your browser. You can find Google’s security and data protection principles at https://policies.google.com/privacy.

Joint processing

We have concluded a joint processing agreement with Google with regard to Google Maps. You can find the content at https://privacy.google.com/intl/de/businesses/mapscontrollerterms/.

CloudFlare

On our site we use the service CloudFlare. The external provider is Cloudflare, Inc., 101 Townsend St, 94107 San Francisco, USA, Mail: support@cloudflare.com, Website: https://www.cloudflare.com/de-de/.

The processing also takes place in a third country for which there is no adequacy decision by the Commission. Therefore, the level of protection that is usual for the GDPR cannot be guaranteed during transmission, as it cannot be ruled out that in third countries, e.g. authorities, can gain access to the data collected.

The legal basis for the transmission of personal data is your consent in accordance with Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR, which you have given on our website.

You can revoke your consent at any time. You can find more information on withdrawing your consent either with the consent itself or at the end of this data protection declaration.

Further information on the handling of the transferred data can be found in the provider’s data protection declaration at https://www.cloudflare.com/privacypolicy/.

6. Information on the use of cookies

Scope of the processing of personal data

On various pages, we and the web services integrate and use cookies to enable certain functions of our website. The so-called “cookies” are small text files that your browser can store on your ac-cessing device. These text files contain a characteristic string of characters that uniquely identify the browser when you return to our site. The process of storing a cookie file is also called “setting a cookie”. Details are given in the table below.

Legal basis for the processing of personal data

Art. 6 (1) (f) GDPR (legitimate interest) or Art. 6 (1) (a) or Art. 9 para. (1) (a) GDPR (consent).

The relevant legal basis can be seen from the cookie table listed below in the section.  Regarding cookies, that we use on the legal basis of a legitimate interest, our legitimate interest is to ensure the functionality of our website and the services integrated into it (technically necessary cookies). It is also possible that the cookies increase their user-friendliness and enable a more individual approach. In this case we have weighed up your interests against ours.

With the help of cookie technology, we can only identify, analyse and track individual website visitors if the website visitor has consented to the use of the cookie in accordance with Art. 6 (1) (a) GDPR.

Purpose of data processing

The cookies are set by our website or external web services in order to maintain the full func-tionality of our website, to improve the user-friendliness, or for the purpose of cookie technology also enabling us to recognize individual visitors by means of pseudonyms, e.g., an individual or random ID, so that we can offer more individualized services. Details are shown in the following table.

Duration of storage

Our cookies are stored in your browser until they are deleted or, in the case of a session cookie, until the session has expired. Details are given in the table below:

Cookie-NameServerExternal ProviderPurposeLegal basisStorage periodType
youtube.comwww.youtube comYoutubeWith this cookie, Google collects data for the prevention of SPAM and for general reporting with regard to our website.ConsentSessionMarketing
CONSENT (Youtube).youtube.comYoutubeAfter the consent of the user, the consent of the user to forward the data to YouTube is saved by the CONSENT cookie.Erfüllung rechtl. Verpflichtungenaprox 17 YearsCookie-Banner
APISID.youtube.comYoutubeWith this cookie, Google collects data for the prevention of SPAM and for general reporting with regard to our website.ConsentAprox 2 YearsAnalytics
HSID.youtube.comYoutubeUsed for security purposes to keep records of a user’s Google Account ID and the last time they logged in, which enable Google to authenticate users, prevent fraudulent use of credentials, and protect user data from unauthorized persons. This can also be used for advertising purposes to display relevant and personalized advertising content.ConsentAprox 2 YearsMarketing
LOGIN_Info.youtube.comYoutubeUsed for security purposes to keep records of a user’s Google Account ID and the last time they logged in, which enable Google to authenticate users, prevent fraudulent use of credentials, and protect user data from unauthorized persons. This can also be used for advertising purposes to display relevant and personalized advertising content.ConsentAprox 2 YearsMarketing
PREF.youtube.comYoutubeThis cookie is used to assign a unique ID to the user. In this way, the page visitor can be assigned video visits across websites. The data is used to collect statistics on which YouTube videos have been viewed by the site visitor on various websites.ConsentAprox 2 YearsAnalytics
SAPISID.youtube.comYoutubeThis cookie is a cookie set by Google that collects data for reporting and spam prevention.ConsentAprox 2 YearsAnalytics
SID.youtube.comYoutubeMaintains the states of the user for all page requests.Berechtigte InteressenSessionTechnisch notwendig
SIDCC.youtube.comYoutubeThis cookie is a cookie set by Google that collects data for reporting and spam prevention.ConsentAprox 2 YearsAnalytics
SSID.youtube.comYoutubeThis cookie is a cookie set by Google that collects data for reporting and spam prevention.ConsentAprox 2 YearsAnalytics
VISITOR_INFO1_LIVE.youtube.comYoutubeThe cookie is used to estimate how the site visitors will accept the videos on the website.  ConsentAprox 6 MonateAnalytics
YSC.youtube.comYoutubeThis cookie assigns an ID to the site visitor. This ID is used to compile statistics on the visitor’s videos.ConsentSessionAnalytics
__Secure-3PAPISID.youtube.comYoutubeThe cookie is used for marketing purposes to create a profile of the interests of the website visitors in order to display relevant and personalized Google advertising.ConsentAprox 2 YearsMarketing
__Secure-3PSID.youtube.comYoutubeThe cookie is used for marketing purposes to create a profile of the interests of the website visitors in order to display relevant and personalized Google advertising.ConsentAprox 2 YearsMarketing
__Secure_-3PSIDCC.youtube.comYoutubeThe cookie is used for marketing purposes to create a profile of the interests of the website visitors in order to display relevant and personalized Google advertising.ConsentAprox 1 JahrMarketing

Possibility to object, withdraw consent and demand deletion

You can adjust your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on the acceptance of cookies on a case-by-case basis or accept cookies in principle. Cookies can be used for various purposes, e.g., to recognise that your accessing device has already been connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have given us express permission to process your personal data (Art. 6(1) (a) GDPR or Art. 9(2) (a) GDPR), you can withdraw it at any time. Please note that the lawfulness of the processing carried out on the basis of the consent up to the revocation is not affected by this.

7. Data security and data protection, communication via e-mail

Your personal data is protected by technical and organisational measures during collection, storage and processing such that they are not accessible to third parties. In case of unencrypted communication via e-mail, we cannot guarantee complete data security on the transmission path to our IT systems, so that we recommend encrypted communication or mail for information with a high confidentiality requirement.

8. Right to access and correct data – deletion of data – limitation of processing -withdrawal of consents – right to object

8.1 Right of access

You have the right to request confirmation as to whether we process your personal data. If this is the case, you have a right of access and information specified in Art. 15 (1) GDPR, provided that the rights and freedoms of other persons are not infringed (Art. 15 (1) GDPR). We will also be happy to provide you with a copy of the data.

8.2 Right to correction

Pursuant to art. 16 GDPR, you have the right to have incorrectly stored personal data (such as address, name, etc.) corrected by us at any time.

8.3 Right to erasure

Pursuant to Art. 17 (1) GDPR, you have the right to demand that we delete the personal data collected about you, where one of the following grounds applies:

  • the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
  • the processing is based according to point (a) of Article 6 (1), or point (a) of Article 9 (2) GDPR, and there is no other legal ground for the processing
  • you have objected to the processing pursuant to Article 21 (1) GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21 (2) GDPR
  • the personal data have been unlawfully processed
  • the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject
  • the personal data have been collected in relation to the offer of information society services referred to in art. 8 (1) GDPR

Pursuant to Art. 17 (3) GDPR, the right does not exist insofar as the processing is necessary for the exercise of the right to freedom of expression and information. Moreover, it does not exist if it has been collected on the basis of a legal obligation, or if the data serve the assertion, ex-ercise or defence of legal claims.

8.4 Right to limitation of processing

According to art. 18 (1) GDPR you have the right in individual cases to demand the restriction of the processing of your personal data.

This is the case if:

  • the accuracy of the personal data is disputed
  • the processing is unlawful
  • the data are no longer required for the processing purpose but are used for the assertion, exercise or defence of legal claims
  • an objection has been filed against the processing pursuant to art. 21 (1) GDPR and it is still unclear which interests predominate.

8.5 Right to withdraw consent

If you have given us express permission to process your personal data (Art. 6 (1) a GDPR or art. 9 (2) (a) GDPR), you can withdraw it at any time. Please note that the lawfulness of the pro-cessing carried out on the basis of the consent up to the revocation is not affected by this.

8.6 Right to object to data processing

Pursuant to Art. 21 GDPR, you may at any time object to the processing of your personal data if such processing is carried out on the basis of Art. 6(1) (f) GDPR e.g. where the processing is carried out on the basis of the legitimate interests.

8.7 How can I obtain my rights?

You can obtain your rights, if you inform us:

ZENNER International GmbH & Co.KG
Roemerstadt 6, 66121 Saarbruecken, Germany
Mail: info@zenner.com, Phone: +49 681 99676-30, Fax: +49 681 99676-3100

9. Data Portability

You have the right to receive the personal data that you have transmitted to us in a structured, common and machine-readable format and transfer it to another data controller provided that:

  • the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or a contract pursuant Art. 6 (1) (b) GDPR; and
  • the processing is carried out by automated means.

You can also request your personal data to be directly transferred to another controller, insofar as this is technically feasible. The exercise of this right shall not adversely affect the rights and free-doms of others.

10. Right to lodge a complaint to the competent supervisory authority

If you suspect that your data has been illegally processed on our site, you can take legal actions in order bring the problem to a judicial clarification. This option does not interfere with any other legal option you might have.

Regardless of this, you have the option of contacting any other competent supervisory authority. You have the right to lodge a complaint to the competent supervisory authority in the EU Member State of your place of residence, workplace and/or place of alleged infringement, i.e. you can choose the supervisory authority to which you will be lodging a complaint in the above places. The supervisory authority to which the complaint was submitted will then inform you of the status and results of your complaint, including the possibility of a judicial remedy under Art. 78 GDPR.

Drafted by:
© DURY LEGAL – www.dury.de