Siehe deutsche Übersetzung   |   See also the IMPRINT

Privacy Policy

Last Updated January 7, 2020.

Our company is committed to protecting personal data and respects your desire for privacy. Here we provide you with information on the collection of personal data when our website is used. If you have further questions relating to use of your personal data, please do not hesitate to contact our Data Protection Officer.

Contact

When you get in touch with us by e-mail or using a contact form, we store the data you provide (such as your e-mail address, name and phone number) so that we can respond to your questions and handle your requests. The legal basis for that is Article 6 (1) sentence 1 point (f) GDPR. Inputs that we request in our contact form, but that are not necessary for contacting us, are always indicated as optional. This information helps us ascertain more concrete details about your request so that it can be better handled. It is provided expressly on a voluntary basis and with your consent in accordance with Article 6 (1) point (a) GDPR.

The data we obtain from you when you contact us is erased as soon as it is no longer required for achieving the purpose for which it was collected, your request has dealt with in full, and no further communication with you is necessary or wanted by you.

As the controller under data protection law, our company has implemented numerous technical and organizational measures to ensure that personal data processed on this website is protected as fully as possible. Nevertheless, the transfer of data over the Internet may have security vulnerabilities. Total protection cannot be guaranteed, and sending unencrypted e-mails is not a secure means of transfer. We therefore ask you not to send sensitive data by unencrypted e-mail, but instead to use encrypted means of communication (such as our contact form) or regular postal mail.

We use a service provider for our contact form, namely Smartsheet Inc., 10500 NE 8th St #1300, Bellevue, Washington 98004, USA. Smartsheet is certified under the Privacy Shield Framework: https://www.privacyshield.gov/participant?id=a2zt0000000CbpFAAS&status=Active

Your rights

We will be pleased to provide you with information on whether and what personal data about you is processed by us and for what purposes (Article 15 GDPR). You also have the right, subject to the statutory conditions being met, to rectification of data (Article 16 GDPR), to restriction of processing (Article 18 GDPR), to erasure of data (Article 17 GDPR), and to data portability (Article 20 GDPR).

Subject to the statutory conditions being met, you have a right to object to the processing of personal data about you (Article 21 GDPR).

If you wish to exercise these rights, please contact us by sending an e-mail to GDPR@aevi.com or by postal mail under the address AEVI International GmbH, Heinz-Nixdorf-Ring 1, 33106 Paderborn, Germany. The exercise of these rights is free of charge for you.

Without prejudice to these rights and the possibility of any other administrative or judicial remedy, you can at any time lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or place of the alleged infringement, if you consider that the processing of personal data about you infringes data protection regulations (Article 77 GDPR).

The supervisory authority responsible for us is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
(The North Rhine-Westphalia State Commissioner for Data Protection and Freedom of Information)
P.O. Box 20 04 44
40102 Düsseldorf
Germany

Phone: +49 (0)211/38424-0
Fax: +49 (0)211/38424-10
E-mail: poststelle@ldi.nrw.de

 

Legal bases for our data processing

There may be various legal grounds for processing personal data. If we need your data to fulfill a contract with you or to reply to your inquiry relating to a contract, the legal basis for such data processing is Article 6 (1) sentence 1 point (b) GDPR. If we obtain your consent to a specific type of data processing, the legal basis is Article 6 (1) sentence 1 point (a) GDPR. We carry out some types of data processing on the basis of our legitimate interests. In this case, your interests in protecting your personal data are always weighed against our legitimate interests. The legal basis for that is Article 6 (1) point (f) GDPR. If the processing of personal data is necessary for compliance with a legal obligation our company has, the legal basis for that is Article 6 (1) point (c) GDPR.

In the following, we explain how we process personal data in connection with our website.
 

Data processing when the website is called

If you only use the website to obtain information, i.e. if you do not register or otherwise send us information (using a contact form, for example), we collect the following technical information (log file data):

– The operating system of the device you use to visit our website
– Your browser (type, version and language settings)
– The current IP address of the device you use to visit our website
– The date and time you accessed the website
– The URL of the website you previously visited
– The URL of the (sub-)page you call on the website
– The Internet service provider of the system accessing our website

This data must be collected for technical reasons so that we can display our website to you and ensure its stability and security. We (and our service provider) do not normally know the identity of the person behind an IP address. We do not combine the above data with other data.

The legal basis for that is Article 6 (1) sentence 1 point (f) GDPR. Since the collection of this data is absolutely necessary so that we can deliver the website and since the data must be stored in log files so that the website can be operated and we can prevent misuse, our legitimate interest in processing the data outweighs your interests in this case.

We use a service provider for web hosting and infrastructure services, namely Amazon Web Services, Inc., 410 Terry Avenue North, Seattle WA 98109, USA. AWS is certified under the Privacy Shield Framework:

https://www.privacyshield.gov/participant?id=a2zt0000000TOWQAA4&status=Active.

 

Data security

We have taken extensive technical and organizational precautions to protect your data against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security procedures are reviewed regularly and adapted to technological advances.

 

Transfer of data

On principle, your personal data is not transmitted to third parties unless we are obliged by law to do so, transmission of the data is required to fulfill a contract, or you have given your express prior consent to transmission of your data.

Where our service providers process your personal data on our behalf, we ensure as part of such commissioned data processing in accordance with Article 28 GDPR that they likewise comply with data protection laws. Please also take note of the privacy policies of the providers in question.

We place value on processing your data within the EU / EEA. However, it may be the case that we engage service providers who process data for us outside the EU / EEA. In such cases, we ensure before transmitting your personal data that an adequate level of data protection comparable to EU standards has been established at the recipient. This can be achieved, for example, by means of EU standard contractual clauses, Binding Corporate Rules or special agreements, such as the EU-U.S. Privacy Shield framework, to which the company may subject itself.

 

Applications

You can apply to work for our company electronically by e-mail or web forms or by regular postal mail. Please note that if you send unencrypted e-mails, they are not protected against being accessed.

Your statements are used to handle your application and enable us to decide whether to establish an employment relationship with you. The legal basis for that is Section 26 (1) in conjunction with (8) sentence 2 of the German Federal Data Protection Act (BDSG). In addition, personal data about you may be processed where that is required for the defense of legal claims against us from the job application process. The legal basis for that is Article 6 (1) sentence 1 point (f) GDPR. The above purposes also constitute our legitimate interest in processing the data.

If we establish an employment relationship with you, under Section 26 (1) of the German Federal Data Protection Act (BDSG) we can continue processing the personal data obtained from you for purposes of the employment relationship, if that is required for performing or terminating the employment relationship or for the exercise of rights or discharge of duties by employee representative bodies under the law or under a collective bargaining, company or works agreement (collective agreement).

Your application data is not processed above and beyond the specified uses.

Your personal data will be deleted no later than 6 months after the application process has been concluded, unless we have other legitimate interests for not erasing it or you have given us your consent to it being stored for a longer period of time. Another legitimate interest here is, for example, the requirement to furnish proof in the event of legal action under the German General Act on Equal Treatment (AGG).

 

Registration on our developer site

You can register on our websites and create a user account. The personal data you are required to provide is indicated as a mandatory field in the registration form; any other information you provide is given voluntarily.

We collect and store the following data from you as part of registration:

– First name
– Surname
– Organization
– Password
– E-mail

We use the double opt-in procedure for registration, i.e. your registration is completed only when you click on a link in an e-mail sent to you for the purpose of confirming your registration. If you do not confirm your registration, it is automatically erased from our database. After registering, you receive a personal, password-protected means of access and can view and manage the data you have stored. Registration is voluntary, but may be necessary if you wish to use certain services we offer.

We store data about you that is required to fulfill the contract until you definitively delete your means of access. You can manage and change all the information in the protected customer area.

You can delete your user account at any time. If you delete your account, all your personal data is erased, unless it has to be retained by law or is covered by Article 17 (3) GDPR.

The legal basis for processing the data in this way is Article 6 (1) points (a), (b) and (f) GDPR.

 

What are cookies?

Cookies are items of data which are stored on your computer system by a website you visit and enable your browser to be identified again. Cookies transmit information to the party using them. Cookies can store various items of information, such as your language setting, the length of time you visited our website, or the information you entered there. That eliminates the need to enter the required form data again every time you use the website, for example. The information stored in cookies can also be used to identify preferences and tailor content to fields of interest.

There are two different types of cookie: Session cookies are strings of data that are stored temporarily in the working memory and deleted when you close your browser. Persistent cookies are deleted automatically after a predefined time, which may differ depending on the cookie. With this type of cookie, information can also be stored in text files on your computer system. However, you can delete these cookies as well using your browser settings.

First-party cookies are always placed by the website you are currently visiting. Only that website is allowed to read information from these cookies. Third-party cookies are placed by organizations that are not the operator of the website you are visiting. They are used by marketing companies, for example.

The legal basis for the possible processing of personal data using cookies and the length of time they are stored may vary. If you have given us your consent, the legal basis is Article 6 (1) sentence 1 point (a) GDPR. If we have legitimate interests in processing the data and they outweigh your interests, the legal basis is Article 6 (1) sentence 1 point (f) GDPR. The specified purpose then constitutes our legitimate interest.

We use cookies in order to ensure the website is operated properly, to provide basic features, to measure the reach of our website, and – with your consent – to tailor our services to your preferred fields of interest.

The cookies used on this website are:

Cookie Provider Validity Purpose Legal basis
_ga Google 2 years Website analytics Consent
_gat Google 1 minute Website analytics Consent
_gid Google 1 day Website analytics Consent
OptanonConsent .aevi.com 1 year Storage of the selection in the cookie banner Legitimate interest
__cfduid .onetrust.com 1 year Storage of the selection in the cookie banner Legitimate interest

Please use the links above to the different browsers to change your saved settings. You can delete cookies already stored on your device at any time. If you wish to prevent the storage of cookies, you can do so in your browser settings. You can find instructions on how to do that for common browsers here: Internet ExplorerFirefoxGoogle ChromeGoogle Chrome mobileMicrosoft EdgeSafari, and Safari mobile. Alternatively, you can install ad blockers. Please note that individual functions on our website might not work if you have disabled the use of cookies. 

When our website is called, an info banner also notifies all users of our website that we use cookies and refers them to this Privacy Policy. You as a user are also asked to consent to the use of certain cookies, in particular those relating to the personalization of services and marketing measures. After giving your consent, you can withdraw it at any time with future effect by … [description of the ways to withdraw consent; example: By calling the cookie manager using the link below and removing the checkmark from the processing you have consented to.]

Google Analytics

This website uses Google Analytics, a web analytics service from Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. The controller for users in the EU / EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. The version Universal Analytics is used here. It enables data, sessions and interactions to be assigned to a pseudonymous user ID across multiple devices and so allows analysis of a user’s activities on all devices.
Google Analytics uses cookies that enable an analysis of how you use the website. The information on your use of this website generated using the cookie is usually transferred to and stored on a server operated by Google in the USA. Because IP anonymization is enabled on this website, however, your IP address will be truncated by Google within the member states of the European Union or other countries that are party to the Agreement on the European Economic Area. The complete IP address is sent to a Google server in the USA and truncated there only in exceptional cases.
Personal data is transmitted to the USA under the EU-U.S. Privacy Shield Framework on the basis of the European Commission’s adequacy decision. You can call the certificate at:
https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

The IP address sent from your browser as part of Google Analytics is not combined by Google with other data. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide other services for the website operator relating to website and Internet use. These purposes also constitute our legitimate interest in processing data using Google Analytics.
The data that we send and that is linked with cookies or user identifiers (e.g. a user ID) is automatically erased after 14 months. Data whose retention period has ended is erased automatically once a month.

You can prevent storage of the cookies by making the appropriate setting in your browser software; however, we point out that if you do so, you might not be able to use all the functions of this website in full. You can also prevent Google recording the data on your use of the website and generated by the cookie (including your IP address) and its processing of this data by downloading and installing the browser add-on available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Opt-out cookies prevent future recording of your data when you visit this website. In order to prevent your data being recorded by Universal Analytics across different devices, you have to opt out on each system you use. You can set the opt-out cookie by clicking here: Disable Google Analytics.
You can find more information on the terms of service for Google Analytics and data privacy at Google at https://www.google.com/analytics/terms/us.html or at https://policies.google.com/?hl=en.

 

YouTube (extended data protection mode)

We use services from YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA, a company of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA, on our website. As part of that, we use the extended data protection mode option YouTube provides in order to protect your personal data. If you call a page on which a YouTube video is embedded, a connection to YouTube’s servers is established and the content is shown on the website by being transmitted to your browser. According to YouTube, however, data is sent to the YouTube server in extended data protection mode only if you actively start the video. If you are logged on to YouTube at the time, information on the videos you have watched is assigned to your YouTube account. You can prevent that by logging off your YouTube account before visiting our website.
More information on data protection on YouTube is provided by Google at: https://policies.google.com/privacy?hl=en&gl=de

Google Web Fonts (online variant)

We use web fonts from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”) to ensure consistent fonts are displayed on our website. When you call our website, the required data is loaded in your browser cache so that texts and fonts are displayed correctly. That requires a connection to Google’s servers and may mean that personal data, in particular your IP address, is transmitted to servers of Google LLC in the USA. Google web fonts are transferred to your browser’s cache so that they do not need to be loaded multiple times. If your browser does not support web fonts or prevents access to them, a default font from your computer is used.

The legal basis for data processing is our legitimate interest in ensuring a consistent and appealing presentation of our online offering. If data is also transmitted to Google LLC in the USA as part of that, Google holds a valid Privacy Shield certificate ensuring that it complies with the level of data protection prevailing in the EU. You can find an up-to-date certificate at: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI

You can find more information on Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://policies.google.com/privacy?hl=en

Twitter

We use services from Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, on our website. If you call a page on which a tweet is embedded, a connection to Twitter’s servers is established and the content is shown on the website by being transmitted to your browser. Twitter may record this visit, including the page in question, the IP address, the type of browser, the operating system and the cookie information. If you are logged on to Twitter at the time, information on the tweets you have viewed may be assigned to your Twitter account. According to Twitter, however, it protects privacy by ensuring that the browser history recorded for websites by means of Twitter is never linked with your name, e-mail address, phone number or Twitter user name and by deleting, hiding or aggregating the data after a maximum of 30 days.

More information on data protection on Twitter is provided at: https://twitter.com/personalization

Privacy Shield (ensures an adequate level of protection when data is processed in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active

Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is:

AEVI International GmbH
Heinz-Nixdorf-Ring 1
33106 Paderborn
Germany

If you have any questions, please do not hesitate to contact our Data Protection Officer:

Mr. Jörg Rübben
Heinz-Nixdorf-Ring 1
33106 Paderborn
Germany
E-mail: gdpr@aevi.com

 

Cookie Settings