Data Privacy Statement
With this data protection declaration, the companies of the Kremsmueller Group – hereinafter Kremsmueller – would like to inform readers and users of the website (hereinafter users) about the type, scope and purpose of the personal data that is processed. The entity responsible for the use of personal data in the meaning of the GDPR is the respective company of the Kremsmueller Group. You can find an overview of the companies of the Kremsmueller Group here.
If you visit the Kremsmueller website, you entrust us with your data. The protection of your privacy in the processing of personal data and the security of this data is an important matter for us, which we take into account in the framework of our business processes. We treat personal data collected during your visit to our website confidentially and use it only in accordance with the applicable data protection regulations. Data protection and data security are part of our corporate policy.
If you provide us with information, for example by giving feedback or searching for specific terms, we can further improve these services. We want you, as a user of our services, to understand how we use information and what options you have to protect your data.
In this data protection declaration, you will find out what data we collect, for what purposes we collect the data and what we do with the collected data. Since this is important, you should take the time to read the data privacy statement carefully.
If you have any questions regarding the collection and use of your personal data by Kremsmueller, we will be happy to provide you with information about your stored personal data at any time, free of charge and without delay. If you wish your data to be corrected, blocked or deleted, or in the event of complaints, requests for information or general questions on data protection, our data protection officer is at your service at firstname.lastname@example.org.
1. DATA PRIVACY STATEMENT
This data privacy statement explains:
- what information we collect and why;
- how we use this information;
- what choices we offer with regard to how information can be accessed and updated;
We have tried to make the explanation as simple as possible.
The protection of your data is important to Kremsmueller and therefore, whether you are a new or long-time user of our services, please take the time to learn about our practices; if you have any questions, please feel free to contact us at email@example.com
Our website uses or sets cookies in accordance with EU and Austrian law (Section 5 paragraph 3 E-Privacy-RL and § 96 paragraph 3 TKG 2003 -Austrian Telecommunications Law). Cookies help us to determine the usage frequency and the number of users of our Internet site, and allow us to design our offers so that they are as convenient and efficient as possible for you. The content of the cookies used is usually limited to an identification number and usage data that does not allow any personal reference to the user.
When cookies that contain personal data or that affect your privacy are used or set, Kremsmueller first obtains your proactive consent, in that you are required to navigate through a banner on our website that provides information about the purposes for which the cookies are being used, thus giving your consent to the setting of cookies.
We use data collected through cookies and other technologies to improve your user experience and the overall quality of our services. One of the products we use for this purpose in our own services is, as described, Google Analytics. For example, storing your preferred language setting allows us to display our services in your preferred language. Before we use information for purposes other than those stated in this Data Privacy Statement, we will ask for your consent.
2.1 What are cookies?
Cookies are small text modules that a website stores on the visitor’s device. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows websites and servers that have been visited to distinguish the individual’s browser from other Internet browsers that contain other cookies. A particular Web browser can be recognised and identified by the unique cookie ID.
A distinction is made between three categories of cookies:
- absolutely necessary cookies to ensure basic functions of the website
- functional cookies to ensure website performance
- targeted cookies to improve the user experience
2.2 Detailed listing of the cookies used
|CookieLawInfoConsent||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the summary of the consent given for cookie usage.|
|cookielawinfo-checkbox-non-necessary||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category “Non Necessary”.|
|cookielawinfo-checkbox-necessary||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category “Necessary”.|
|lidc||third-party||1 day||Saves performed actions on the website.|
|_gat||persistent||1 minute||Used by Google Analytics to throttle requests.|
|_gid||persistent||24 hours||Used by Google Analytics to distinguish users.|
|_ga||persistent||2 years||Used by Google Analytics to distinguish users.|
|Leadlab||Our website uses the pixel-code technology of WiredMinds GmbH (www.wiredminds.de) to analyze visitor behavior. The IP address of a visitor is processed. The processing is done solely for the purpose of collecting company-relevant information such as the company name. IP addresses of natural persons are excluded from further use (whitelist procedure). Under no circumstances will the IP address be stored in LeadLab. When processing the data, it is in our special interest to protect the data protection rights of natural persons. Our interest is based on Art. 6 para. 1 lit. (f) DSGVO. The data we collect at no time allows us to draw conclusions about an identifiable person. WiredMinds GmbH uses this information to create anonymous user profiles related to the visiting behavior on our website. The data collected in this way is not used to personally identify visitors to our website.|
2.3 Statistical evaluation (tracking)
Target-oriented cookies are used for the statistical evaluation of the use of our website.
2.4 Google Analytics
The Kremsmueller website uses features of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.
Google Analytics uses such target-oriented cookies.
You can find more information about the handling of user data by Google Analytics in Google’s data privacy declaration.
You can prevent the collection of data generated by the cookie and related to your use of the website, as well as the processing of this data by Google, by downloading and installing a browser plug-in. (http://tools.Google.com/dlpage/gaoptout?hl=de)
Alternatively, you can prevent Google Analytics from collecting your data by disabling it in in the cookie settings here.
2.5 Analysis by WiredMinds
Our website uses counting pixel technology provided by WiredMinds GmbH (www.wiredminds.de) to analyze visitor behavior. In connection with this, the IP address of the visitor is processed. The processing occurs only for the purpose of collecting company based information such as company name, for example. IP addresses of natural persons are excluded from any further processing by means of a whitelist. An IP address is not stored in LeadLab under any circumstances.
While processing data, it is our outmost interest to protect the rights of natural persons. Our interest in processing data is based on Article 6(1)(f) GDPR. At no time is it possible to draw conclusions from the collected data on an identifiable person.
WiredMinds GmbH uses this information to create anonymized usage profiles of the visit behavior on our website. Data obtained during this process is not used to personally identify visitors of our website. If you wish to reject this use, you can do so in the cookie settings here.
2.6 Analysis by LinkedIn
KREMSMÜLLER’s website uses conversion tracking with LinkedIn Insight Tag. The provider is LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland. The LinkedIn Insight Tag integrated on our pages sets a cookie on your end device and enables the collection of the following data: IP address, device and browser properties, and page events. The data is anonymized by LinkedIn within 7 days and deleted again within 90 days.
2.7 Analysis by Smartlook
In order to provide a technically flawless online offer, we use the Smartlook analysis software from Smartsupp.com s.r.o., Millay Horakove 13, 602 00 Brno, Czech Republic.
This software records anonymised mouse movements and interactions on the page. Your personal data will not be transferred and no record will be assigned to any user. If personal data of you or a third party is displayed on the Website, Smartlook will automatically fade it out and does not record it at any time.
If you do not agree with the recording, you can deactivate it using the opt-out switch under Smartlook Opt-Out (smartlook.com/opt-out).
2.8 Order data processing
We have signed a contract with Google for order data processing.
2.9 IP anonymisation
We use the “IP anonymisation activation” function on this website. As a result, Google will first truncate your IP address within the member states of the European Union or in other signatory countries to the European Economic Zone treaty. Only in exception cases will the full IP address be transmitted to a server of Google in the USA and abbreviated there. On behalf of the owner of this website, Google will then use this information to evaluate your use of the website, to compile reports about the website activities and to provide additional services to the website owner related to the website activity and Internet usage. Google will not combine the IP address – transmitted from your browser as a part of Google Analytics – with other data.
2.10 Social media cookies
By default, Kremsmueller does not use social media cookies and does not transmit any data to social networks. Only an active process in a social media service (“sharing”, “tweeting”, etc.) is recorded by it.
2.11 Restricted functions without cookies
3. REMARKETING / RETARGETING
Our website may contain hyperlinks to third-party websites (“external links”). Such websites may have different privacy and cookie policies. Comprehensive information about the data protection and cookie guidelines of other websites is absolutely necessary. It relates to the use of personal information that you provide yourself or that is collected through cookies when you visit these websites. Liability for these websites is that of the respective entities operating them. We assume no liability or responsibility of any kind for data protection on the websites of third parties. The inclusion of external links does not mean that Kremsmueller has adopted the contents of the reference or the link as its own. Constant monitoring of these external links by Kremsmueller without specific indications of legal violations is not feasible. Any use of such websites is therefore at your own risk.
4. USE OF THE DATA COLLECTED BY US
We use the data collected in the course of providing our services to provide, maintain, protect and improve our services, to develop new services and to protect Kremsmueller and our users. We also use this information to provide you with customized content – for example, to provide you with more relevant search results. Furthermore, your data will be used for market research.
If social media cookies get stored as a result of active participation in social media processes, Kremsmueller can use them for all services offered and for advertising purposes on our website. These primarily include cookies from YouTube, Facebook, Twitter, and LinkedIn.
Kremsmueller will use the analytics features for remarketing, reports on impressions in the Google Display Network, integration of DoubleClick Campaign Manager, Google Analytics reports on performance by demographics and interests. You can disable Google Analytics for display advertising and customize ads on the Google Display Network by visiting the ad settings at this link: https://www.google.de/settings/ads
When you contact Kremsmueller, we save your communications, to be able to help you resolve any problems that you may encounter. Notifications regarding your use of our services, including notices of upcoming changes or improvements, may be sent to you using your email address.
Kremsmueller processes personal data on its servers located in Austria. Therefore, we may be processing your personal data on a server located outside the country in which you live.
4.1 ONLINE CONTACT FORM
You can send inquiries, suggestions and requests to Kremsmueller using a contact form. In order to be able to contact us, it is necessary that you enter your title, first name, surname, e-mail address and telephone number. Furthermore, you must enter a subject and write text in the corresponding field. You acknowledge that Kremsmueller will process the aforementioned data for the purpose of processing or responding to your request. Processing is carried out on the basis of pre-contractual measures pursuant to Art. 6 para. 1 lit. b GDPR.
4.2 ONLINE APPLICATION
You can submit job applications to Kremsmueller through a wizard-supported application form. In order to apply for a job with us, you are required to provide us with all application-relevant personal data and supporting documents. You acknowledge that Kremsmueller will process the aforementioned data for the purpose of processing or responding to your request. Applications may relate to different company divisions, sister and subsidiary companies as well as other companies (external companies).
We will make personal data related to you available to our partners, other trustworthy companies or persons, who will process these data on our behalf and under our orders. This processing will be done in accordance with our instructions and in compliance with our data protection declaration, and based on other suitable confidentiality and security measures.
In the course of submitting the application data, data will be transmitted to the integrated e-recruiting portal of Prescreen (Prescreen International GmbH, Mariahilfer Strasse 17, 1060 – as e-recruiter – https://prescreen.io) Prescreen was commissioned by Kremsmueller within the meaning of Art. 28 of the GDPR to process the data and to ensure data security in accordance with § 24amd32 GDPR.
You expressly agree to the transfer of your application data to third parties to the extent described above. The processing is carried out on the basis of your consent in accordance with Art. 6 Section 1 lit. a GDPR.
5. WHISTLEBLOWER REPORTING SYSTEM
Whistleblowers have the opportunity to report breaches of Union law by using a reporting tool.
The whistleblowers are:
- Employees (including before and after the end of the employment), shareholders and persons who are members of the management of a company, including non-executive members, as well as volunteers and unpaid trainees.
- Employees working under the supervision and direction of contractors, subcontractors, suppliers and contractors.
- Contractors, subcontractors, suppliers and contractors.
- Third parties associated with the whistleblower (e.g. colleagues or relatives).
- Legal entities owned by the whistleblower or for whom the whistleblower works or is in a professional context.
For the purpose of dealing with this report, KREMSMÜLLER processes the contact details of the whistleblower (optional), the respective report of the whistleblower, as well as personal data contained in the report (e.g. in the body text or in documents). The provision or processing of this data is required by law. The recipient of the data is Jank Weiler Operenyi Rechtsanwälte GmbH | Deloitte Legal and Sage GmbH as processor of the data.
The purpose of the processing is to implement the EU Directive 2019/1937 of 23 October 2019 on the protection of persons who report breaches of Union law (“Whistleblowing Directive”) or the national transposition law in the company and thereby comply with the legal obligation. The purpose of the directive is to uncover misconduct on the topics listed below and thereby ensure compliance with the law:
- public procurement
- financial services, products and markets, and prevention of money laundering and terrorist financing
- product safety and compliance
- transport safety
- protection of the environment
- radiation protection and nuclear safety
- food and feed safety, animal health and welfare
- public health
- consumer protection
- protection of privacy and personal data, and security of network and information systems;
The processing is based on Art. 6 para. 1 lit. c DSGVO (fulfilment of a legal obligation) and Art. 6 para. 1 lit. f DSGVO (legitimate interests) in the form of ensuring compliance with laws and guidelines within the company.
Reports of reasonable suspicion are retained for the duration of any (extra)judicial or official proceedings. Reports of unreasonable suspicion are anonymised after one (1) calendar year.
6. TRANSPARENCY AND CHOICE
To best address your individual concerns with regard to data protection, our goal is to make clear exactly what information we collect.
You can also set your browser to block all cookies, including those linked to our services, or to display a message when a cookie is set by us. However, please note that some of our services may not function properly if you have cookies disabled on your computer. For example, we will then not be able to save your preferred language setting.
7. ACCESS TO AND UPDATING YOUR PERSONAL DATA
No matter when you use our services, we strive you give you access to your personal data. If these data are erroneous, we shall strive to provide you with options to update them quickly, or to delete them – unless we are obliged to preserve them for justified business or legal reasons. For updating your personal data, we may ask for proof of identity before we implement your request.
Wherever we provide access to and a facility to correct your data, it will always be free of cost, except in cases in which this would bring about a disproportionate cost. We strive to provide our services in a way that protects the data from accidental or deliberate destruction. For this reason, we do not immediately delete any remaining copies of data that you have deleted from our services from our active servers and do not remove this data from our backup systems.
8. INFORMATION PASSED ON BY US
We fundamentally do not share any personal data with companies, organisations or persons outside of Kremsmueller. If personal data is shared, this will only be done in one of the following cases:
8.1 With your consent
We will share personal data with companies, organisations or individuals outside of Kremsmueller if we have received your consent to do so. We need your explicit consent to share any sensitive category of personal data.
8.2 For processing by other agencies
8.3 For legal reasons
We will share personal data with companies, organisations or individuals outside Kremsmueller, if we can assume, in good faith, that access to these data or their use, preservation or sharing is reasonably necessary to
- comply with the applicable laws, regulations and legal proceedings or to comply with an enforceable official order.
- detect, prevent or otherwise combat fraud, security deficiencies or technical problems.
- protect the rights, property or safety of Kremsmueller, or of our users or of the public from damage to the extent permitted or required by law.
9. DATA SECURITY
We make every effort to protect Kremsmueller and our users from unauthorised access to or unauthorised modification, disclosure or destruction of data. In particular:
- we encrypt many of our services using SSL
- we review our collection, storage and processing practices, including physical security measures, to provide protection against unauthorised access to systems.
- we restrict access to personal information to Kremsmueller employees and contractors who must know the information in order to process it for us and who are subject to strict confidentiality obligations and may be subject to disciplinary action or termination from service if they fail to comply with those obligations.
10. SCOPE OF THE DATA PRIVACY STATEMENT
11. RIGHTS OF THE AFFECTED INDIVIDUALS
The legal data protection regulations entitle you to extensive rights concerning your data. These include, in particular:
11.1 Right to information (Art. 15 GDPR)
Upon request, Kremsmueller will provide you with comprehensive information on all data stored by Kremsmueller about you within the legally standardized period of time. Apart from personal data, this information also includes the purpose of processing and the type of processing. If you make excessive use of your right to information by sending excessive requests for information to Kremsmueller, we are entitled to charge a local fee for the administrative costs of providing the information.
11.2 Right to rectification (Art 16 GDPR)
You have the right to request Kremsmueller for correction of your personal data without undue delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data – also by means of a supplementary declaration.
11.3 Right to deletion / “Right to oblivion” (Article 17 GDPR)
Kremsmueller will delete all personal data relating to you which are stored at Kremsmueller within the time provided by law, provided that they are not necessary any more for the purposes for which they were collected, or processed in any other way, and that there is no legal reason against deletion. If you request deletion, Kremsmueller will check the aforementioned legal preconditions and inform you accordingly.
11.4 Right to restriction of processing (Art. 18 GDPR)
You have the right to request Kremsmueller to restrict processing.
11.5 Right to data transfer (Art 20 GDPR)
You have the right to have all data stored by Kremsmueller about you transferred to another company.
11.6 Right of objection (Art 21 GDPR)
If Kremsmueller processes personal data which are based on a public interest or carried out in the exercise of official authority or are necessary due to a legitimate interest, you have the right to object to this processing of your data at any time due to their particular situation. If Kremsmueller processes personal data for direct marketing purposes, you have the right to object at any time to this processing of your data. This also applies to profiling if it is connected to such direct advertising.
11.7 Right of complaint (Art. 77 GDPR)
If the person affected considers that the processing of his/her data violates the data protection regulations or that his/her data protection rights have otherwise been violated in any way, he/she may lodge a complaint with the supervisory authority. In Austria, this is the Datenschutzbehörde (Data Protection Authority) at Wickenburggasse 8, 1080 Wien (Vienna). If a user wishes to exercise this right, he can contact firstname.lastname@example.org at any time.
If you have any questions regarding data protection or the exercise of your rights as an affected person, please contact us at the following address:
- by e-mail to: email@example.com*
- by post to: Kremsmueller Anlagenbau GmbH, Kremsmuellerstraße 1, 4641 Steinhaus, Austria*
* Please attach a copy of an official ID.
12. REVOCATION OF CONSENT (Art 7 Para. 3 GDPR)
You can revoke your consent to the collection and use of your data as well as any registration at any time with effect for the future, in whole or in part. Till the time of revocation, your data will be processed in a lawful manner. In case of revocation, we will immediately delete the data, to the extent required by you, or block them for further processing. To that end, please contact us at firstname.lastname@example.org.
Your data will be stored for as long as is required for providing our services. If storage is required for a longer period owing to legal regulations, the data will be stored till the legally required time is over.
Our Data Protection Policy may change from time to time. We will not restrict your rights according to this Data Privacy Statement without your express consent. Any changes to the data privacy statement will be posted on this page. If the changes are significant, we will make an even clearer notification available (including – in the case of certain services – a notification by email about the changes to the data privacy statement).