Privacy Policy
Data protection information for service providers and suppliers of TSUBAKI KABELSCHLEPP GmbH
We take the protection of personal data seriously and observe the data protection regula-tions of the General Data Protection Regulation (DSGVO) and the Federal Data Protection Act (BDSG). In particular, this means that we only process personal data if a legal provision allows us to do so or if the data subject has consented to it.
We would like to inform you below about the processing of personal data in connection with the existing business relationship between you and us.
Person in charge
Data protection responsible for the processing of personal data is the
TSUBAKI KABELSCHLEPP GmbH
Daimlerstraße 2
D-57482 Wenden-Gerlingen
You will find further information about our company, details about the authorized repre-sentatives and also further contact options in the imprint of our website: https://tsubaki-kabelschlepp.com/en-int/imprint/
Insofar as this data protection information refers to "we" or "us", this refers in each case to the aforementioned responsible body.
What data is processed?
The execution of our business relationships requires the processing of data of our service providers and suppliers. Insofar as these data allow conclusions to be drawn about a natu-ralperson, if you e.B. as an individual merchant enter into a business relationship with us, this is personal data. Regardless of this, we also process data on the contact persons at our contractual partner. Therefore, please also make this data protection information availa-ble to the contact persons within your organization who are involved in the business rela-tionship with us.
The following personal data are the subject of the processing:
Reference data:
We process the following stammdaten to ourn contractual partnersn, the contact persons and den with ourn contractual partnersn existing business relationshipen:
- all information that was communicated to us when the business relationship was established or that we have requested from our contractual partner or a contact person (e.B. name, address and other contactdetails);
- such data that we have collected in connection with the establishment of the business relationship with us - in particular details of concluded contractsn.
Movementdata:
We process the following data, which arises in the course ofthe businessrelationship, which may go beyond a mere change of masterdata:
- Information on services provided or accepted on the basis of contracts concluded within the framework of the business relationship;
- Information including personal data provided to us by our contractual partner or contact person in the course of the business relationship – actively or at our request;
- To the extent permitted bylaw, we may also store personal data of third parties that we may legitimately obtain from publicly accessible sources - e.B. trade and association registers, the press or the Internet - about the master and movement data. This includes, for example.B data onthe economic situation of our contractual partners, if this is necessary for the assessment of economic risks – such as pay-ment defaults
Purposee and legal basis of data processing
- The processing of the master and historical data takes place regularly for the exe-cution of the existing contracts with our contractual partner or for the implementa-tion of pre-contractual measures on the basis of Article 6 (1 b) GDPR. Regardless of this,we process master and historical data with reference to one or more contact persons in order to safeguard our legitimate interest in the execution of the busi-ness relationship on the basis of Article6 (1) f) GDPR.
- We may also process master and historical data to fulfill legal obligations to which we are subject; this is done on the basis of Article 6 (1) (c) GDPR. These legal obliga-tions include e.B. mandatory notifications to (tax) authorities.
- If necessary, we process data beyond the execution of the contract and the fulfill-ment of legal obligations also to safeguard our legitimate interests or the interests of third parties; this is done on the basis of Article 6 (1) f) GDPR. Our legitimate in-terests include:
- Group-wide processes for the internal management of business partner data
- the identification of economic risks – such as payment defaults – in connection with our business relationships;
- the assertion of legal claims and the defence in the event of legal disputes;
- the prevention and investigation of criminal offences;
- the management and further development of our business activities, including risk management
- Insofar as we give a natural person the opportunity to give consent to the pro-cessing of personal data, we process the data included in the consent for the pur-poses stated in the consent; this is done on the basis of Article 6 (1) a) GDPR
In this context, we would like to point out that the granting of consent to us is vol-untary and can be revoked at any time with effect for thefuture. Nevertheless, the non-granting of consent or its subsequent revocation may be associated with consequences, about which we inform before giving consent
Obligation to provide the data
The provision of the aforementioned master data and movementdata is absolutely nec-essaryfor the establishment and execution of the business relationship with ourcontractual partners. If we also collect further personal data, we will inform you at the time of collec-tion whether the provision of this information is required by law or contract or is necessary for the conclusion of a contract. As a rule, we mark those information whose provision is voluntary and is not based on one of the aforementioned obligations or is not necessary for the conclusion of a contract.
Recipient / disclosure of data
Personal data is generally processed within our company. Depending on the type of per-sonal data, only certain departments have access to this information,regulated by a role and authorization concept, i.e. arenecessary for the respective purpose of the data de-velopment. This includes in particular the purchasing department and – in the case of data processed via the IT infrastructure – to a certain extent also the IT department.
We may also transfer personal data to the extent legally permissible outside our company. These external recipients include in particular:
- affiliated companies within the group of companies to which we transfer personal data for internal administrative purposes;
- service providers activated by us, who provide services for us on a separate con-tractual basis, which may also include the processing of personal data, as well as the subcontractors of our service providers who have been involved with our con-sent;
- non-public and public bodies, insofar as we are obliged to transfer your personal data due to legalobligations
Data processing outside the European Union
The processing of personal data usually takes place exclusively within the European Union.
If your personal data is transferred, e.B. to a service provider outside the European Eco-nomic Area (EEA), we will only transfer the data if the European Commission has confirmed an adequate level of data protection for this third country (so.B secure third countries such as Canada or Japan) or other appropriate data protection guarantees (e.B EU standard con-tractual clauses, which we then supplement with further protective measures) are provid-ed. Under the above contact details you can request detailed information.
Deletion of personal data
In principle, we delete personal data if there is no requirement for further storage. A re-quirement may exist in particular if the data is still needed to fulfill contractual services, to check warranty and, if necessary, warranty claims and to grant or defend against. In the case of statutory retention obligations, deletion is only considered after expiry of the re-spective retention obligation.
As a rule, the master data and the other personal data generated in the course of the busi-ness relationship are stored at least until the end of the business relationship. The data will be deleted at the time of their purpose being reached. Thisr may also occur only after the end of the business relationship or only after the expiry of the statutory retention obligations.
Data protection supervisor
We have appointed a data protection officer, whom you can reach as follows:
bits + bytes it-solutions GmbH & Co. KG
- Data Protection Officer –
Krombacher Straße 24
57223 Kreuztal
Phone: +49 (0) 700 20 30 10 30
E-Mail: datenschutz@bits-bytes.de
Your rights as a data subject
You have the right to information about the personal data concerning you. You can contact us at any time for information.
In the case of a request for information that is not made in writing, we ask for your under-standing that we may require proof from you that proves that you are the person you are pretending to be.
Furthermore, you have a right to correction or deletion or to restriction of processing, insofar as you are legally entitled to this.
Finally, you have the right to object to the processing of your personal data within the framework of the legal requirements.
There is also a right to data portability within the framework of data protection regulations.
Right of appeal to a supervisory authority
You have the right to complain about the processing of personal data by us to a supervisory authority for data protection.
Automated decision-making
In the establishment or in the course of the business relationship, we generally do not use automated decision-making (including profiling) within the meaning of Article 22 GDPR. If we use such procedures in individual cases, we will inform affected persons separately to the extent legally provided.
Change of this privacy policy
We revise this privacy policy in the event of changes to data processing or on other occa-sions that make this necessary. The current version can always be found on this website.
As of: 07.01.2021